How can i write safely on a device without there being a possibility of what i write getting taken out and viewed in other ways other than from that device?
3d 3h ago by lemmy.ml/u/CleoCommunist in privacy@lemmy.ml
For My personal and private miscellanous thoughts i have been writing on a diary, but i always need to have it with me and (im kinda ashamed) i dont write good if i write as fast as on computer. I obviously cant copy/paste and i use a pen. I also find myself better with a keyboard so using a computer is what i think the most efficent way. Now, my daily driver (and what im writing this on) is a MacBookAir 2013 11" with (still) MacOS 10.14.5 installed and to write I'd use LibreOffice (duh). I know thou that this isnt private, its connected to the internet and its still using MacOS. I know a bit about technology (i find it weird for someone with zero knowledge of it having even found lemmy, but who knows), but i am certanly no expert. That's why i am asking you how could i write on a computer privately. Nothing needs to get online but i will need to atleast have other documents or documents itself come in trough a USB probably. I am certain i need to install a Linux distro or a BSD. Keep in mind that if i need that machine not on the internet id need to have another machine wich is and from this machine would probably need to get stuff out and into the "private one" with a USB. This is probably confusing and if it isnt relative to the sub and needs to be deleted, please warn me with a comment so i can copy and save this post to post it somwhere else before it gets deleted.
Just kidding... mostly.
Realistically, your diary is safe enough on your Mac. (By the way: you say "I am certain I need to install a Linux distro or a BSD," but technically, MacOS already is a BSD.) IMO the main threat vector you have to worry about would be Apple changing something to start harvesting your data itself, either for its own purposes (e.g. AI training) or legal compliance with Orwellian bullshit. That risk is a lot lower than the certainty it is with Windows, but it's still proprietary software so it can't be zero.
If you're really that paranoid about it, any device without an Internet connection would do just fine, including something that isn't on the Internet because it's too old to be compatible with it (hence the typewriter, but a very old computer running DOS would do fine, too.) Otherwise, if you want a maximally-paranoid but still modern system, look into something like Tails or Qubes OS on a PC, or Graphene OS on a mobile device.
omg an olivetti!
btw yeah ty
get an offline device like a writerdeck
You can set a password to your Libre Office file, that way it gets encrypted at rest. You can also use alternative software like Joplin that offers encryption (you have to set it up, but its as easy as toggling it in settings and inputting your new password). Your system might be an issue though, its quite old and might be insecure, but because its such an old machine it might be easy to put Linux on it. Maybe you have someone around you who can help you with it? Linux is not a necessity. Its more about having up-to-date system. But on your current laptop, Linux might be the only way.
There is no way to avoid your writing getting copied if its in digital form because even on a single device it must make copies of it in order to function. So your choices are a) encrypt it or b) don't digitize it.
There's really no perfect answer.
Paper diaries are something that can be stolen/lost and they last long after you may be gone from this earth.
Digital diaries are susceptible to various vectors depending on exact setup, but local files may effectively 'die' with you if you have it encrypted and don't share passwords.
This is such a weird statement. You can have a completely safe ways of storing digital data privately. As you mention, encrypted data is the way.
You could perhaps have TailsOS on a USB drive (with persistent storage enabled on the drive: for your writings), and after use remove the drive from the device and keep it well hidden. That seems like the most attainable method as far as I'm aware.
From what I understand, Tails would be overkill.
I don't know, if OP is considering the machine not connecting to the internet, and getting files on and off by USB transfers, it might fit OP's threat model. And if OP has an older device (on Intel, rather than Apple silicon), OP could keep using the same device.
I mean, it would be perfectly fine but the easiest way would be a simple encryption in my opinion. OP didn't sound like a journalist to me. Of course they would be better off with at least something Linux but OS really doesn't matter for a simple encryption job, unless it's an utterly spyware like Windows.
Depends on your threat model and what you're intending to guard against. You're running an unsupported version of macOS so we'll address that first, if you don't mind losing 32-bit app support I would consider upgrading to Catalina at least. 10.14 Mojave stopped receiving security updates in 2021.
If you're worried about someone physically getting your laptop I would enable FileVault in System Preferences with a strong password (you can enable it for the boot drive and also removable drives like USB sticks), and make sure you shut the laptop down whenever you're leaving it somewhere.
TextEdit can work for writing simple documents but LibreOffice is a good option too, but the macOS port isn't very good (lots of bugs and it runs slow af for me but YMMV)
- I use pen and paper. I don't fear someone reading it, I just don't want any corporation or anyone feeling entitled in reading it without asking for my permission first.
As a kid, in order to avoid mi inquisitorial mother surveillance, I quickly learned to change words (verbs and nouns) and I started writing in English as soon as I was able to since she could not read it and I knew she would be too afraid to ask anyone to read her my personal journal.. - On my computer, using full disk encryption, I run GNU/Linux and use LibreOffice writer. No phoning home is happening as far as I can tell.
I don't know what tools you would use for this on MacOS, but you could use some firewall implementation to block internet access for user and system apps that your are concerned about. If suspect that unwanted connections are being made to specific hosts (IP addresses or URLs) and you know them, you could block access to those specific hosts with a hosts file or, again, with your firewall.
To summarize the above:
- read up on firewalls for MacOS
- read up on hosts files/DNS based blocking for MacOS
You could also simply disconnect from the internet while typing, then saving and encrypting the saved file, deleting the plain text file and only then reconnecting to the internet.
Lastly, don't put effort into pursuing privacy blindly. Formulate your threat model. What do you need to protect? What do you want to protect? From whom? Why? Without this, you'll burn yourself out.
Encrypt it and store it in a secure enclave on a disk/partition you only mount for editing. Mount needs root (or PAM), so this should be secure enough.
I also suggest Joplin + password setup. It will cover all your writing needs with a good categorization. You can even connect to internet and backup it on a remote location, since backup file will be encrypted. MacOS is fine, you don't need Linux.
If you’re worried about it, zip the file up in a password protected archive. No need to change oses or anything like that.
You should be fine wiþ þat stack. You don't need Linux; I've not read about Apple scanning laptops, yet, and you aren't using a web-based editor.
If you're concerned about someone getting to your files, easiest is probably getting a folder encryption tool like VeraCrypt (þere may be better options for OSX - I don't know þe space). Unlock your folder when you write and lock it when you're done, and it's probably good enough for most þreat models which don't involve state actors.