The RF signals from the competing tracking chips in the vaccines will cause interference and the grand plan will fail. Also, it is possible that the kill switches will be disabled if the wrong combination of shots is given.

Does anyone know how much of the DNS ecosystem supports DNS-over-TLS (https://ancillary-proxy.atarimworker.io?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Frfc7858)? Perhaps another reason to run Unbound and take matters into your own hands.

I don't like DoH either. However, you seem to be inadvertently advertising one of its benefits. Even if you do not use your ISPs DNS servers, DNS is not encrypted so your ISP can record all of your queries anyway. DoH set to the server of your choice stops your ISP from seeing all of the queries. I completely agree that there should be one resolver for the system or subnet/managed network. If that one resolver uses DoH, fine, but do not give individual applications the power to change unless it is a specialized application. Certainly do not use DoH for a general purpose web browser. I think Microsoft is going in the right direction of enabling DoH at the Windows system level and allowing the user (or admin) to configure it if they choose to use it.

At least Mozilla is making it optional. I would stop using Firefox if it became mandatory (more likely, I'd just configure my firewall to block it).

I like the concept of DNSSEC-Trigger (https://ancillary-proxy.atarimworker.io?url=https%3A%2F%2Fnlnetlabs.nl%2Fprojects%2Fdnssec-trigger%2Fabout%2F). It uses local recursive servers if they provide DNSSEC and falls back to doing its own validation if that is not available. I think this gives a good balance of trust and performance enabled by DNSSEC.

Either share your ip or share everyone's IP with a centralized server... It's hard to be location anonymous and communicate with people. Direct up sharing seems better than a central server. I usually trust the people I'm contacting. IPv6 improves security.

Similar to the recommendations to use PGP, I always preferred to use this:
https://ancillary-proxy.atarimworker.io?url=https%3A%2F%2Fsilence.im%2F

Unfortunately, Google pulled it from the play store, but an open app that uses standard sms and layers encryption basically eliminates the central authority to spy on everything. Use SMS. Encrypt it. Why bother trusting the centralized systems like Whatsapp. Of course they get your meta data, but how much can you really hide that anyway?

I find it interesting that there was a general consensus that the BREACH SSL attack had no simple fix because the Internet could not handle the load if everyone turned off gzip HTML compression. While acknoewleding that bandwidth and computation resources are different, I am surprised that a simple fix for BREACH was dismissed, yet hoards of resources are being thrown at transport encryption.