List of Privacy, Security and Encryption Tools - For Business Email, FileHosting, etc

Victor John

New member
Feb 10, 2020
Security and Privacy are important concerns. Your communications, habits and general day-to-day life need to be shielded from occasionally hostile outside influences and the modern public. When you need to protect your Family or yourself these are the Tools I have found useful.

The Fabulous Five - The Must Haves

Get and use all of these. If you aren't using these, you should be.

Texting and Calls - Signal

Email (Simple) - ProtonMail OR TutaNota

Password Bank - BitWarden

VPN - ProtonVPN OR Mullvad

Browsing the Internet - Firefox with uBlock Origin (Adblocker)

The Basics



Encrypted Text Messaging and Voice Calls

Signal - Preferred


Encrypted Email - Hosted by Someone Else


Web Browsing
Firefox - I never use anything else.
Search Engines
Habit Building and Tracking
Task Assignment and Management
AdBlockers - Use this one. - Harder to use. Blocks ads from being visable, but it clicks all ads in the background to mess up Google and Facebooks tracking of you by creating a huge volume of fake date. Fun. - Creates fake Web Searches to throw off Google and Facebook. Preferred and Highly Recommended. - Intermediate to Advanced level. Redirects all home DNS queries from all network devices and blackholes all the advertisements. Blocks ads in everything, though a little complex to set up.
Password Managers and 2 Factor Authentication (2FA) - Get a Family Account
VPN Services - The best, by far. Highly Recomended. - A little easier to use than MullVad.
Two-Factor (2FA) Authentication - Get a Family Account
Not as Good, but still alright -,
Secure Notetaking Apps
The Extras - Not As Important but Still Good to Have
Running Multiple Identities to fool Advertisers
Sending Large Files Securely
Large Scale Encrypted, Anonymous Group Chat - Not Anonymous
Self Destructing, Read Once, Anonymous Messaging
Encrypted Email - Hosted by You
VPN - Hosted by You
Tracking Family Members Phones and Locations for Safety
GPS Tracking Lost or Stolen Devices
Security Focused Cloud Storage Services
Full Disk Encryption Software
Checking if your Service has been Hacked

Papi Knox

🇭🇹 🤴🏾P A P I 🍓
Staff member
Mar 11, 2019
BitWarden is new to me... I'll take a look

Everything else I'm doing

Looking forward to hearing more about you and your background

Victor John

New member
Feb 10, 2020
Whatever system we use to do the work we do, it can always be incrementally improved and refined.

Sounds like you're ahead of the curve.

Bitwarden is the best-in-class, everything on that list has been painstakingly and thoroughly tested and researched.

I have a few more lists of resources. I'll post them up in the appropriate areas.


New member
Jan 11, 2020
I generally agree with your choices in the different categories, but do have some suggestions on my own and one major disagreement.

For Firefox I recommend getting the Facebook container. It will isolate FB from whatever else you're doing online.
Multi-Account Containers is a more general container add-on, that can be super useful.

Password Managers
Bitwarden is also what I generally recommend to others, even if the UX could be better. If you don't mind a bit of DIY, however, I do think KeePass is probably the better choice.
My setup is KeePassXC on my PC and KeePass2Android on my Android phone. The database is synced using Nextcloud.

If you're paying for Bitwarden you may as well use that for TOTP 2FA code storage and generation. If not, Authy is probably the best option. KeePass can also be set up to support TOTP codes.
Prefer locally generated TOTP codes over receiving them by SMS, whenever possible. SMS can be hijacked in various ways. The best is using a hardware dongle such as a YubiKey.
Choosing 2FA authenticator apps can be hard. Ars did it so you don’t have to

If you might be the target of law-enforcement, don't use email at all. Stick to Signal. Otherwise you'll probably be just fine with whatever provider you have. As long as your connection to the server is encrypted, you really have nothing to worry about (apart from random hackers).
Email, by design, is horribly insecure and content encryption (as opposed to connection encryption) can't really do anything about that. If you use S-MIME or GPG to encrypt the content, all the headers are still plain-text - only the body will be encrypted. Very few providers encrypt at-rest emails on their servers, and even if they do they will have to decrypt when sending to a different server which means they would need to store the keys anyway, and thus can be compelled by law to hand over anything they have.

This is where I disagree rather strongly. Simply put: A VPN is (almost) always a waste of money. There are very few instances where a VPN makes sense. Most people recommending using a VPN don't seem to understand what it is and/or have been paid by a VPN company to spread FUD.
Others have already explained it better than I can, so I'll just link them here:
VPN - a Very Precarious Narrative
VPN Companies Are Lying To You
If you need a VPN for something, I recommend you go with one based on the WireGuard protocol.

DNS is one of the few pieces of the internet infrastructure that still isn't encrypted by default. That is however changing with both DNS over HTTPS and DNS over TLS getting close to mainstream adoption. There are still some wrinkles to iron out, but you can use it today if you want.
Apart from that, I recommend using Cloudflare DNS. They have some apps to help you set it up, but here are the IPs to do it manually:
  • For IPv4: and
  • For IPv6: 2606:4700:4700::1111 and 2606:4700:4700::1001