On Wednesday April 5th 2023 from 4:30pm to 6pm i will be conducting a workshop at the public library of the City of Mannheim (Zentralbibliothek im Stadthaus N1) regarding the privacy of android smartphones: Using an Android smartphone as an example, Arvid would like to show you how you can prevent trackers and malware from accessing your phone. The free App-Store F-Droid as well as the trackerblocking with the software Blokada play an important role. The appointment will take place on site and you are welcome to bring your smartphone and make the settings on the spot.
Continue reading...Security
Tutorial about smartphone privacy
Library Mannheim – Wednesday, 19. Oktober 2022, 5pm to 6:30pm (17:00 – 18:30 Uhr) Surveillance capitalism is omnipresent. Facebook, Google and others collect data that tell us who we are, what our habits are, what we want and dream of. This intimate knowledge about us only serves to sell us more products and let us consume more than we need and our environment can bear. Arvid Ortwig wants to show ways to tame the smartphone without sacrificing comfort. Speaker Info: Arvid Ortwig has been an IT professional for over 20 years and works as an IT manager in a medium-sized...
Continue reading...Use own letsencrypt ssl certs with Fritzbox
If you want to access the webui of the fritzbox underneath your own domain (static or dynamic dns) you can import the letsencrypt certs from your webserver (e.g. nginx in my case) to the fritzbox. First Step: Collect and install cert First login to your webserver and copy the certs for the fritzbox: Make sure you really paste privkey.pem AND fullchain.pem into the combined pem-file. Then import the fritz.pem file underneath: Internet –> Freigaben –> Fritzbox-Dienste –> Zertifikat Write down the IP and port at which the Fritzbox is reachable. Second step: Configure Fritzbox DNS-Rebind: Add your own domain e.g....
Continue reading...open source password safe “Bitwarden”
Bitwarden is an open source passwordsafe software similar to KeepassX, but with a huge difference: It is based on a webserver which stores and manages the passwords (and notes as creditcard info and identities) centrally. So the data can be synchronized end2end-encrypted easily throughout different plattforms like desktops, notebooks, tablets and smartphones. Bitwarden can be used as a cloud service run by bitwarden or, as in my case, installed on premise in your own environment. It provides saving and organizing of sensitive data/passwords/texts Multifactor authentication with app or token sharing of passwords in organizations propose safe passwords through password generator...
Continue reading...Website Privacytools.io
The website privacytools.io is a extensive collection of links to software (on different platforms) that supports your strive to privacy in the digital world. Most of the tools are already used by myself but I also found some quite interesting new ones. Go, check it out and donate a little if you like the service.
Continue reading...Pi-Hole on-the-go
My Pi-Hole which is running on a VM has now about 1 million entries in its blocklist. I have all entries whitelisted i need to and now I want to use the pi-hole not only at home but also from my mobile phone. At first i forwarded port 53 (tcp and udp) from my fritzbox cable modem to my turris omnia router to my pi-hole VM. In the mullvad-VPN app (for android) it is possbible to set a custom DNS server. Here I set my static external IP (on which this webserver is running to) and everything worked out fine....
Continue reading...Open Source Remote Control
There are many remote control solutions out there but none was open source. Now with remotely you have the choice.
Continue reading...Reconnect your openvpn tunnel if packets get lost
Check if your openvpn tunnel is still active and if it’s not reconnect it with this bash script: Thanks to: https://forum.turris.cz/t/guide-openvpn-reconnect-script-daily-restart-with-location-change-server-roulette-client-to-stay-allways-on-luci-vpn-nano-ssh-linux/10949
Continue reading...Import GPG-Keys on Fedora
Fix the permissions of the enclosing directory ~/.gnupg because an attacker with enough rights on the folder could manipulate folder contents. Make sure, the folder+contents belong to you: Correct access rights for .gnupg and subfolders: finally import your keys with your user (not sudo/root)
Continue reading...Autostart OpenVPN
Requirements for OpenVPN autostart on systemd Linux Before you begin setting up OpenVPN to autostart on systemd Linux, you’ll need a few prerequisites: OpenVPN A VPN provider A Linux distribution (distro) with systemd Configure OpenVPN for systemd Linux Now, let’s configure OpenVPN to autostart for systemd Linux. First open a terminal. We need to change the default behavior of OpenVPN. With the editor Nano, run the command: Remove the ‘#’ infront of ‘AUTOSTART=”all”‘ so that OpenVpn allows to start the .conf files. After that press “Ctrl X” to exit Nano and answer “Y” to save the file. configure openvpn to...
Continue reading...