Context: my gf mentioned getting a vpn for privacy, and I tried to explain that it “does” help, but it’s more like type of windows on a house. It certainly can be part of the package, but it’s no where near the foundation.
So i tried to explain the best that i could That if she was worried about online privacy the first step wasn’t to mask traffic, but to not submit personal data to anything online like FB, not use Google services that package everything on you together to sell to advertisers, and to limit phone apps to essentials.
But I’m curious on what other steps you guys would consider the “foundation” of online privacy that should be prioritized before a vpn. Any thoughts? Or am I way off base?
Note: this is in context of vpn for privacy. Using vpn to avoid Geo blocking and censorship I see as incredibly valid for those that need it.
If you’re talking OpenWRT, then I totally agree. But something like Asus Merlin is a relatively easy change and still provides additional protection. While part of the Asus code is closed-source, most is open-sourced and Asus has implemented improvements developed by the Merlin team. This shows Merlin knows what they’re doing and are trustworthy too.
I do not think trusting closed source for networking/mobile devices is a very smart idea. This is why I never recommend Pixels or iPhones either. Go OpenWRT or bust. The lesser and more common closed source hardware/software layers are, the safer, but still not safer than open sourcing.