Apparently this is a tough problem for mobile devices… GrapheneOS (security hardened OS based on Android) took months to fix a leak someone reported, and had to collaborate with the VPN app providers to do it https://github.com/GrapheneOS/os-issue-tracker/issues/3442
I would be interested to know why you are pushing this product across multiple places on Lemmy. Your post, despite disparaging “viral marketers”, has a viral marketing tone with statements such as “I feel like I’ve been wasting money on my VPN ever since I found Riseup”.
Additionally, while I do believe a free VPN using an autonomous collective, resource pooling approach is a great idea, in practice this VPN has had… not a great history from my point of view. A quick search shows that in 2017 they were forced to comply with US Law Enforcement https://en.m.wikipedia.org/wiki/Riseup, see the Warrant Canary section. VPNs based in the US are known to be at risk, and this is another good example.
When choosing a VPN provider, server location is important, as well as company location. You are repeatedly encouraging people to Torrent from a VPN based in one of the most zealous countries opposing file sharing worldwide, and one that has already worked with Law Enforcement.
FYI, for folks currently using a normal PIN and looking to use this, it’s intended that the 2nd factor PIN at least be different than the main unlock PIN. Otherwise you can just swipe up to dismiss the fingerprint prompt and get to the main PIN prompt; if its the same as your 2nd factor, that’s pointless.
I was told on the Graphene matrix channel that the most secure configuration for this is:
Main unlock method: 6 character diceware password
Secondary unlock method: biometric + 6 character 2nd factor PIN
Be aware that if you use this config that you will be prompted for the main unlock method (long password) at reboot, and also every 48 hours.
I use a text/limited voice only plan from https://tello.com/
Invidious still works very well, however it is an ongoing battle with YouTube. They ban an instance and the instance’s ban evasion routine tries again, or in the case of IP range bans migrates to another provider and the game goes on. Despite this, it is the only way I know of to access YouTube relatively pain free using a public VPN provider. By now YouTube has blocked a lot of public VPN IPs. To me, this advantage makes it worth it.
The best way to keep up with which instances are currently functional is via the Invidious Matrix room, https://matrix.to/#/#invidious:matrix.org. You can also check the instances list https://instances.invidious.io/ but it may get out of date sometimes.
Finally, I’ve found the best way to use Invidious is via FreeTube (Linux) or Clipious (Android).
Nope, pretty normal. You’ll find that you’ll need frontends and proxies for tons of things. For example Instagram hasn’t ever worked for me with a VPN. I no longer have an account anyway, but for the times someone sends me a link I’ve had to find sites that let you view the content without actually visiting Instagram. Same with reddit, reddit frontends are very good these days (I’d recommend any Redlib instance). Also, sometimes a specific VPN server is IP blocked and you can just connect to a different server to view a web site that blocked you initially. It is a fair amount of work, but honestly its helped me slow down my consumption of random bullshit anyway haha. I use ProtonVPN and pay for premium.
Relax and Recover for bare metal backup of the OS critical components and directories, and Deja Dup (or Gnome Backup) for user files
Invidious, one good instance is https://iv.nowhere.moe/
My experience so far as a new user, which might be a little redundant but here goes:
The openSUSE matrix server had this happen last year, and the admins came up with a good solution of bots that seems to keep things very clean now. I’m sure they might be happy to help if you asked in their admins group