Skip to content

TehZombiJesus/private

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 

Repository files navigation

📚 My Personal Digital Life Setup Guide

Table of Contents

Password Management & Identity

1. Install & Configure 1Password Everywhere

  1. Desktop:
    • Download and install 1Password for Windows.
    • Install the 1Password browser extension for your preferred browser.
    • Sign in with your master password and, if prompted, your setup key or QR code.
  2. Mobile:
    • Install 1Password from Google Play (or F-Droid if available).
    • Enable autofill for apps and browsers in phone settings.
  3. Migration (if needed):
    • Import or manually add all passwords, notes, license keys, recovery codes.
    • Remove weaker old vaults (e.g. from Proton Pass, browser-saved logins).
  4. Security Key Registration:
    • Register your YubiKey or other FIDO2 key as an additional factor—follow 1Password’s guide.
    • Add security key to other major accounts (Microsoft, Google, Discord, Facebook).
  5. Backups:
    • Print your 1Password Emergency Kit (contains recovery codes).
    • Store this in your safety deposit box.

2. Enable Multi-factor Authentication (2FA/MFA)

  1. For ALL sensitive accounts (email, Discord, Microsoft, banks, cloud), enable TOTP or hardware key authentication, not SMS where possible.
  2. Store backup codes in 1Password.

Email & Masked Identities

1. Primary Email (Proton Mail)

  • Login at Proton Mail.
  • Keep recovery options up-to-date (secondary email, phone).

2. Fastmail Masked Emails (via 1Password)

  1. Connect your Fastmail and 1Password accounts.
  2. Use 1Password masking or Fastmail’s alias function when signing up for new sites/services.
  3. Always use unique emails for online accounts.

3. Email Hygiene

  • Don’t reuse your real address for public signups.
  • Routinely check for breaches (e.g. via haveibeenpwned.com).

Cloud Storage & 3-2-1 Backup

1. OneDrive - Main Cloud

  1. Log into OneDrive on all devices.
  2. Set up sync for desktop, documents, and photos.
  3. Use OneDrive Personal Vault for extra-sensitive docs.

2. pCloud - Secondary Cloud

  1. Sign up at pCloud and install their desktop and mobile apps.
  2. Opt into the pCloud Crypto add-on for zero-knowledge encryption of sensitive files.
  3. Use pCloud for backing up critical documents, emergency contacts, and additional copies of essential photos.
  4. Take advantage of pCloud's Swiss privacy, file versioning, and high-speed sync.

3. Local/Offline Backup

  1. Buy a reliable USB stick or external SSD (128GB+).
  2. Encrypt with BitLocker:
    • Right-click drive > "Turn on BitLocker" > Set a strong password > Save recovery key securely (see Appendix A).
  3. Copy the latest essential files monthly.
  4. Rotate offline copy to your safety deposit box every few months.

Device Security & Updates

  1. Windows:
    • Keep all system/app updates automatic (Settings > Windows Update).
    • Enable BitLocker full disk encryption (Settings > Privacy & Security > Device Encryption).
  2. Android:
    • Go to Settings > Security > check "Encryption" or "Encrypt phone".
    • Keep automatic updates on.
  3. General:
    • Restart devices regularly for updates.
    • Don’t use outdated Windows or Android devices if possible.

Browser Hardening

  1. Choose your main browser (Edge or Comet):
    • Keep it updated.
  2. Install privacy extensions:
  3. Privacy settings checklist:
    • Disable third-party cookies (Settings > Privacy).
    • Turn off preloading pages/“Privacy Sandbox”.
    • Configure search engine (set Perplexity or DuckDuckGo as default).
    • Create two profiles if needed: one for private banking/work, one for regular browsing.
  4. Regular Maintenance:
    • Clear cookies/history monthly.
    • Remove unused extensions.
    • Occasionally review saved passwords and autofill data (should be in 1Password only).

VPN & Network Security

1. UniFi Dream Router (UDR): Your Future-Proof Home Network

  1. Once purchased and set up:
    • Place your ISP router/modem into bridge mode (disables its routing/Wi-Fi features; keeps modem/tv box working).
    • Connect the UDR’s WAN port to the modem’s LAN port—the UDR now controls your home network and Wi-Fi.
  2. UDR Initial Setup:
    • Complete the UniFi setup wizard via web interface or UniFi mobile app.
    • Create your primary Wi-Fi network with a unique SSID.
    • Choose WPA3 security if available.
    • Set an admin password and store it in 1Password.
    • Create one or more guest networks (for visitors).
    • Enable automatic firmware/security updates.
  3. Firewall & Threat Management:
    • Turn on Threat Management (IDS/IPS) for intrusion detection and blocking malicious traffic (consider “Detection” mode first; “Prevention” for stronger blocking—note that this may limit throughput on gigabit connections).
    • Monitor real-time traffic, device connections, and new devices from the UniFi dashboard.
    • Create VLANs if you wish to separate work-from-home, IoT, or guest devices.
    • Set up parental controls and schedule internet access if needed.
  4. VPN Integration:
    • Use the UDR’s built-in VPN server (OpenVPN or L2TP) if you want secure remote access to your home network.
    • Continue to use NordVPN apps for outbound privacy/anonymity on all personal devices, both at home and when away.
    • If needed, configure NordVPN on the UDR for network-wide VPN (advanced; usually keep device-level for individual privacy and optimal speeds).
  5. Wi-Fi & Device Security:
    • Connect all devices to the UDR Wi-Fi network(s).
    • Use the guest network for anyone outside your immediate family.
    • Regularly check for new/unknown devices using the UniFi dashboard.
  6. Router Maintenance:
    • Update UniFi OS and UDR firmware promptly when notified.
    • Review device logs/alerts as part of quarterly “digital review.”
    • Backup UDR configuration and store securely.

2. NordVPN: Always-On Privacy (Device-Level)

  1. Continue to use NordVPN:
    • Install on all devices (PC, laptop, Android, etc.).
    • Enable "Always-On" and Kill Switch in app settings.
    • Use NordLynx protocol for the highest speed and stability.
    • Optional: Use split tunneling in the app to bypass VPN on games/latency-sensitive apps.
    • Use server locations closest to your location or as required for content/geo-restriction needs.

3. Home Network Hygiene

  1. Physical and digital security:
    • Place UDR in a central location for best Wi-Fi coverage, away from exterior walls.
    • Set a unique, strong admin password for UDR.
    • Write down key Wi-Fi and admin credentials, store in 1Password.
  2. ISP modem/router:
    • Disable Wi-Fi and all routing functions on the ISP box (bridge mode) to eliminate security gaps.
    • Only connect devices directly to the UDR network(s).

With this upgrade, your home network will have best-in-class security, modern features, and improved privacy—all easily managed from the UniFi dashboard and your existing NordVPN setup for outbound traffic and device security.

Mobile Device Security

  1. Lock screen: Use strong passcode/PIN, optionally biometrics.
  2. Find My Device: Enable on Android (Settings > Security > Find My Device).
  3. Minimal local sensitive storage: Rely on cloud and 1Password for storing confidential info—don’t keep it in Notes, Downloads, or Photos unencrypted.
  4. App hygiene:
    • Stick to Google Play, but experiment with F-Droid for privacy-friendly apps if desired.
    • Remove unused apps every few months.
    • Check permissions for installed apps regularly.

Future-Proofing & Emergencies

  1. Passkeys/WebAuthn:
    • Enable on services as they become available (see each site’s Security Settings).
  2. Windows Hello/Android Biometrics:
    • Activate biometric logins for speed and security.
  3. Emergency Access Plan:
    • Write digital “how-to” instructions for your family or trusted party.
    • Place copies in both OneDrive and pCloud, and a printout in your safety deposit box.
  4. Periodically test: Recovery from phone or device loss—verify you can access essentials.

Appendices: Advanced How-Tos

Appendix A: BitLocker Setup

  1. Plug in your USB/external SSD.
  2. Open File Explorer, right-click the drive > "Turn on BitLocker."
  3. Follow prompts:
    • Use a strong password for unlock.
    • Save your recovery key (store in 1Password and print for physical backup).
    • Choose “encrypt entire drive” & "compatible mode."
    • Complete encryption process.

Appendix B: YubiKey/U2F Security Key

  1. Plug in your key, visit your account’s security panel (1Password, Google, Microsoft, etc.).
  2. Select “Add Security Key,” follow prompts to register key.
  3. Label/track which key is registered for easy recovery.

Appendix C: NordVPN Split Tunneling

  1. Open NordVPN app.
  2. Go to “Settings” > “Split Tunneling.”
  3. Add applications (e.g., Steam, game clients) to bypass VPN for stable low-latency connections.

TIP:

  • Update this guide as your workflow or preferences change.
  • Schedule a quarterly “digital review” to keep everything secure and up-to-date.

End of Guide

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published