ramenu

Codeberg for public repositories, cgit (if that even counts) on my own server for private ones

I personally use Claws Mail.

Absolutely essential is using a firewall and set it as strict as possible. Use MAC like SELinux or Apparmor. This is extremely overkill for a personal server, but you may also compile everything yourself and enable as many hardening flags as possible and compile your own kernel with as many mitigations and hardening flags enabled (also stripped out of features you don't need)

I've never heard of nsjail, so I wouldn't know. But there's also bubblewrap which is used by Flatpak for sandboxing. It's very small, although a bit annoying to use.

You can't teach old dogs new tricks.

No support for Monero despite it being requested on uservoice 6 years ago. A Bitcoin wallet (seriously?) which is easily traceable. Important email metadata is also not zero access encrypted (i.e., subject headers, from/to headers) which leaks a substantial amount of information even if the body is encrypted. Not to mention they had clearnet redirects from their onion service a while back, something a lot of honeypots usually do.

Even if it's not a honeypot, you're sure as hell not getting any privacy with Proton. That's for sure.

Well, I disagree about Signal. Proton however, I agree is extremely shady and should be avoided at all costs.

What? How is this a red flag? Having third party clients is not good for security.

I'm not a fan of GrapheneOS, but the point they bring up here is valid. There is already proprietary firmware on your computer. There's no reason why you shouldn't be updating it to protect yourself from serious exploits. The FSF takes an ideological stance rather than a practical one, unfortunately.

UMatrix still works fine though. I think Palemoon has their own fork of UMatrix they maintain.

We get around it! :)

I'm not sure if this is a good idea. Would people seriously pay just to access some subreddit? Why wouldn't they go on another forum?