This page contains security-related recommendations. Kindly note that we exclusively recommend hardware, software, and services that we use and own. We do not endorse any products based on sponsoring or things we only know from hearsay.

General information security topics | Home network | Disk and file encryption | DNS | Instant messaging | Operating systems | Repositories | Secure key and password storage

General information security topics

The following resources are useful to learn about InfoSec in general:


  • McCarty: Cyberjutsu, ISBN 978-1-7185-0054-9


  • Security Now (weekly podcast with Steve Gibson and Leo Laporte)
  • StormCast (daily 5-10 minute podcast about current InfoSec topics)
  • Darknet Diaries (bi-weekly podcast about “hacker” stories)

Q&A websites/forums

Other useful websites

Home network

We recommend learning the basics of computer networking. Then, read our special Home network security.




Disk and file encryption

We recommend the following applications or standards. Some recommendations are based on a talk of Mr. Schumacher from Magdeburger Institut für Sicherheitsforschung. Only use well-maintained and well-tested software for cryptography. Otherwise, your data could be exposed in some way, or you could lose your data.

Full-disk encryption

  • LUKS (Linux)
  • VeraCrypt (open-source disk encryption software for Windows, Mac OSX and Linux)

Built-in file encryption

The Linux file systems ext4, F2FS, and UBIFS natively support file encryption.

Other software

  • GoCryptFS (uses modern crypto but leaks metadata)
  • CryFS (uses modern crypto and hides metadata but is slower than GoCryptFS)


For advanced users, we recommend to validate DNS responses with DNSSEC and use DNS-over-TLS. This combination allows you to authenticate and encrypt your DNS traffic to the DNS resolver. Check our DNS-related articles.


Instant messaging

We recommend Signal for most users. Signal uses mandatory and modern end-to-end encryption for messaging and calls. See also our articles on Signal.

Operating systems

We recommend Arch Linux for advanced users. Arch Linux allows you to set up a minimal operating system that can be highly customized. Besides, you get current software packages. Try to avoid unmaintained packages from the AUR (Arch User Repository) to keep your system stable and secure.


The following repositories contain useful resources and links:

Secure key and password storage

We recommend storing private keys on dedicated security hardware. Furthermore, we recommend using password management software. If available, enable and use two-factor authentication for online services (WebAuthn, U2F, OATH-TOTP).