ad3laid3/Guides
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Guides Added

Browse source
This commit is contained in:
MiTHRAL 2026-05-14 22:26:43 -04:00
parent 59b4a3c328
commit 7af6fb3b55
8 changed files with 1125 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

162
Browser-Privacy-Basics/Guide.md Normal file
View file

@ -0,0 +1,162 @@
# Browser Privacy Basics
---
### 1. Goal
This guide is for reducing everyday tracking, cleaning up browser habits, and avoiding common privacy traps. It is not about becoming anonymous against every possible adversary.
Good browser privacy comes from a few boring habits:
* use a browser that respects your settings;
* limit extensions;
* block common trackers;
* separate accounts and identities;
* avoid leaking personal information into every site you visit.
---
### 2. Pick a Browser Setup
Use one main browser for normal browsing and a second isolated browser for accounts that should not mix.
Recommended split:
* **Daily browser:** general web use, searches, reading, shopping, and casual logins.
* **Private/account browser:** banking, email, admin panels, school, work, or anything tied to your real identity.
* **Throwaway/private window:** one-off links, unknown sites, and pages you do not plan to revisit.
Avoid signing into a browser sync account unless you actually need synced bookmarks and history. Browser sync is convenient, but it also centralizes a lot of personal data.
---
### 3. Recommended Apps
Use a small, boring tool stack.
* **Firefox:** best fit if you want profiles, containers, strong extension support, and a browser that is not built around an ad network.
* **Firefox Multi-Account Containers:** good for separating banking, shopping, social media, admin panels, and throwaway accounts without needing five browsers.
* **Brave:** good for people who want a Chromium-based browser with built-in ad and tracker blocking. Turn off Brave Rewards if you do not want browser ads or crypto features.
* **Mullvad Browser:** good for higher-privacy sessions where fingerprinting resistance matters more than convenience. Do not add a bunch of extensions to it.
* **Tor Browser:** use when anonymity or censorship resistance matters. Do not torrent through Tor, and do not add extra extensions.
* **uBlock Origin:** the default content blocker recommendation for Firefox and other supported browsers.
* **Bitwarden:** easiest password manager recommendation for most people who want sync across devices.
* **KeePassXC:** best fit if you want an offline local password vault instead of cloud sync.
Official links:
* Firefox Multi-Account Containers: `https://support.mozilla.org/en-US/kb/containers`
* Brave: `https://brave.com`
* Mullvad Browser: `https://mullvad.net/en/browser`
* Tor Browser: `https://www.torproject.org/download/`
* uBlock Origin: `https://github.com/gorhill/uBlock`
* Bitwarden: `https://bitwarden.com`
* KeePassXC: `https://keepassxc.org`
---
### 4. Extension Rules
Extensions can see a lot. Keep them minimal.
Good baseline:
* one trusted content blocker;
* one password manager extension if you use one;
* no coupon extensions;
* no random video downloaders;
* no "AI helper" extensions with broad page access;
* no duplicate privacy extensions fighting each other.
Remove anything you do not actively use. A stale extension with broad permissions is not harmless.
---
### 5. Browser Settings to Check
Review these settings in every browser you use:
* block third-party cookies where possible;
* disable ad personalization;
* disable search and URL suggestions if you do not want typed text sent to the provider;
* disable automatic sign-in;
* disable background apps after closing the browser;
* clear site permissions for camera, microphone, location, notifications, and clipboard;
* require confirmation before downloads open automatically.
Notifications are especially worth locking down. Most websites do not need notification access.
---
### 6. Identity Separation
Do not use one browser profile for everything.
Separate these when possible:
* real-name accounts;
* personal email;
* admin dashboards;
* shopping;
* social media;
* throwaway accounts;
* research or unknown links.
The goal is not perfection. The goal is to stop every site, cookie, extension, and login from living in the same bucket.
---
### 7. Practical Profiles
A simple profile layout:
```text
Default/
normal browsing, news, searches, casual accounts
Personal/
email, banking, medical, school, work
Admin/
server dashboards, DNS, hosting, domain registrar
Disposable/
unknown links, one-off accounts, testing
```
Rules:
* do not save payment methods in the disposable profile;
* do not use personal email in the disposable profile;
* keep admin dashboards out of the daily browser;
* use bookmarks for important login pages;
* clear the disposable profile often.
---
### 8. Search and Links
Privacy-friendly habits:
* search from the address bar only if you trust that provider;
* avoid clicking sponsored results;
* check domains before logging in;
* use bookmarks for important sites instead of search results;
* be suspicious of shortened links when the destination matters.
For sensitive accounts, type the domain manually or use a saved bookmark.
---
### 9. Quick Maintenance Routine
Once a month:
1. Remove unused extensions.
2. Clear site permissions.
3. Delete saved passwords from the browser if you use a dedicated password manager.
4. Review downloaded files.
5. Update the browser.
6. Check that your content blocker is still enabled.
Small maintenance beats trying to fix privacy after everything is already mixed together.

140
File-Verification-and-Checksums/Guide.md Normal file
View file

@ -0,0 +1,140 @@
# File Verification and Checksums
---
### 1. Goal
This guide explains how to verify downloaded files using hashes and signatures. Verification helps confirm that a file was not corrupted, swapped, or modified after release.
Checksums do not prove a file is safe by themselves. They prove that your copy matches a known value.
---
### 2. Common Verification Types
You will usually see:
* **SHA256:** the most common checksum for releases.
* **SHA512:** a longer checksum, also common.
* **GPG/PGP signature:** proves a file was signed by someone with a specific private key.
* **Code signing:** built into some operating systems for apps and installers.
If a project provides both a checksum and a signature, use both.
---
### 3. Recommended Tools
Use built-in commands first. Add a GUI only if it makes verification easier.
* **PowerShell `Get-FileHash`:** built into modern Windows and good for SHA256/SHA512 checks.
* **`sha256sum`:** standard on most Linux systems.
* **`shasum`:** available on macOS and many Unix-like systems.
* **GnuPG:** command-line OpenPGP tool for signature verification.
* **Gpg4win / Kleopatra:** practical Windows GUI for GnuPG signatures and certificates.
Official links:
* GnuPG: `https://gnupg.org`
* Gpg4win: `https://gpg4win.org`
---
### 4. Verify SHA256 on Windows
Open PowerShell in the folder containing the file:
```powershell
Get-FileHash .\filename.ext -Algorithm SHA256
```
Compare the output to the checksum published by the source.
The values must match exactly. Close is not good enough.
---
### 5. Verify SHA256 on Linux
Open a terminal in the folder containing the file:
```sh
sha256sum filename.ext
```
Compare the first long value to the published SHA256 checksum.
---
### 6. Verify SHA256 on macOS
Open Terminal in the folder containing the file:
```sh
shasum -a 256 filename.ext
```
Compare the output to the published checksum.
---
### 7. Verify a GPG Signature
Some projects publish a file plus a signature file:
```text
example.iso
example.iso.sig
```
Basic flow:
1. Download the file.
2. Download the signature.
3. Import the developer or project signing key from the official source.
4. Verify the signature.
5. Confirm the key fingerprint matches what the project publishes.
Example command:
```sh
gpg --verify example.iso.sig example.iso
```
A valid signature means the file matches the signer. It does not automatically mean the signer is trustworthy. Always check the signing key fingerprint from an official source.
---
### 8. What a Mismatch Means
If the checksum does not match:
1. Do not run the file.
2. Delete the file.
3. Download it again from the official source.
4. Recheck the hash.
5. If it still does not match, treat the release or mirror as untrusted.
Possible causes:
* incomplete download;
* wrong version;
* corrupted file;
* mirror replaced the file;
* malicious modification.
---
### 9. Keep Verification Notes
For important files, keep a small note next to the download:
```text
File: example.iso
Source: https://example.org/releases
Version: 1.2.3
SHA256: ...
Checked: 2026-05-14
```
This is useful for operating system images, firmware, backups, archives, and tools you may reinstall later.

227
Media-Library-Organization/Guide.md Normal file
View file

@ -0,0 +1,227 @@
# Media Library Organization
---
### 1. Goal
This guide gives a clean folder and naming system for movies, shows, music, books, and other media. A good library should be readable by humans and easy for media apps to scan.
The main rule: make filenames boring, consistent, and searchable.
---
### 2. Top-Level Layout
Start with clear categories:
```text
Media/
Movies/
Shows/
Music/
Books/
Podcasts/
Stand-Up/
Documentaries/
Unsorted/
```
Use `Unsorted` as a temporary inbox, not a permanent home.
---
### 3. Recommended Apps
The best tools depend on whether you want manual control or automation.
* **Jellyfin:** self-hosted media server for browsing and streaming your organized library.
* **FileBot:** strong paid renamer for movies, shows, and anime when you want fast batch renaming.
* **MusicBrainz Picard:** best first stop for tagging and renaming music.
* **Calibre:** best general ebook library manager.
* **MediaInfo:** quick way to inspect files before deciding where they belong.
* **MKVToolNix:** useful when you need to fix tracks, subtitles, language labels, or container metadata without re-encoding.
* **Radarr / Sonarr:** advanced automation tools for movie/show library management. Only connect them to sources and indexers you are legally allowed to use.
Official links:
* Jellyfin: `https://jellyfin.org`
* Jellyfin movie naming docs: `https://jellyfin.org/docs/general/server/media/movies/`
* FileBot: `https://www.filebot.net`
* MusicBrainz Picard: `https://picard.musicbrainz.org`
* Calibre: `https://calibre-ebook.com`
* MediaInfo: `https://mediaarea.net/MediaInfo`
* MKVToolNix: `https://mkvtoolnix.download`
* Radarr: `https://radarr.video`
* Sonarr: `https://sonarr.tv`
---
### 4. Movies
Recommended format:
```text
Movies/
Movie Title (Year)/
Movie Title (Year).mkv
```
Examples:
```text
Movies/
Heat (1995)/
Heat (1995).mkv
Alien (1979)/
Alien (1979) - Director's Cut.mkv
```
Keep extras in a separate folder:
```text
Movie Title (Year)/
Movie Title (Year).mkv
Extras/
Behind the Scenes.mkv
```
---
### 5. Shows
Recommended format:
```text
Shows/
Show Name/
Season 01/
Show Name - S01E01 - Episode Title.mkv
```
Examples:
```text
Shows/
Example Show/
Season 01/
Example Show - S01E01 - Pilot.mkv
Example Show - S01E02 - The Second Episode.mkv
```
Use two digits for season and episode numbers. It keeps sorting clean.
---
### 6. Music
Recommended format:
```text
Music/
Artist/
Album (Year)/
01 - Track Title.flac
```
Examples:
```text
Music/
Artist Name/
Album Name (2024)/
01 - Opening Track.flac
02 - Second Track.flac
```
Keep album art in the album folder as:
```text
cover.jpg
```
---
### 7. Books and Audiobooks
Books:
```text
Books/
Author Name/
Book Title (Year)/
Book Title - Author Name.epub
```
Audiobooks:
```text
Audiobooks/
Author Name/
Book Title (Year)/
01 - Chapter Title.m4b
```
For series:
```text
Author Name/
Series Name/
01 - First Book/
02 - Second Book/
```
---
### 8. Metadata IDs
When a media app keeps matching the wrong movie or show, add a metadata provider ID to the folder name when supported.
Examples:
```text
Movies/
Movie Title (Year) [imdbid-tt0000000]/
Movie Title (Year) [imdbid-tt0000000].mkv
Shows/
Show Name (Year) [tmdbid-000000]/
Season 01/
Show Name - S01E01 - Episode Title.mkv
```
Use IDs sparingly. They are most useful for remakes, duplicate titles, anime, specials, and titles with regional naming differences.
---
### 9. Cleanup Rules
Before adding files to the library:
* remove release tags that do not help you;
* keep edition labels that do help you;
* normalize capitalization;
* remove duplicate copies;
* keep subtitles beside the video file if they are external;
* avoid dumping loose files into top-level folders.
Useful edition labels:
* `Director's Cut`
* `Extended`
* `Remastered`
* `Theatrical`
* `Unrated`
---
### 10. Maintenance Routine
Once a month:
1. Empty `Unsorted`.
2. Fix duplicate folders.
3. Check failed metadata matches in your media app.
4. Remove partial downloads.
5. Back up new additions.
A media library gets messy when intake is faster than cleanup. Keep the intake folder small.

148
Media-Ripping-and-Backups/Guide.md Normal file
View file

@ -0,0 +1,148 @@
# Media Ripping and Backups
---
### 1. Goal
This guide is for making personal backups of media you own or have permission to archive. Laws vary by region, especially around copy protection, so keep your workflow legal where you live.
This guide does not cover bypassing DRM, cracking services, or downloading unauthorized copies.
---
### 2. Decide the Output You Want
Before ripping or converting anything, decide the target:
* **Archival copy:** larger file, high quality, minimal changes.
* **Streaming copy:** smaller file, easier for media servers and mobile devices.
* **Audio-only copy:** music, lectures, commentary, or bonus material.
* **Device copy:** optimized for a specific phone, tablet, TV, or console.
Do not convert the same source repeatedly. Keep a clean source copy if storage allows, then make smaller versions from that.
---
### 3. Folder Layout
Use a staging workflow:
```text
Media-Work/
01-Sources/
02-Working/
03-Encoded/
04-Checked/
05-Library/
```
Suggested flow:
1. Put raw source files in `01-Sources`.
2. Do conversion work in `02-Working`.
3. Export finished files to `03-Encoded`.
4. Watch or spot-check in `04-Checked`.
5. Move final files into `05-Library`.
This prevents half-finished files from entering your library.
---
### 4. Recommended Apps
Use tools based on the job, not one app for everything.
* **HandBrake:** video transcoding for unprotected source files. Good for making smaller streaming/device copies.
* **FFmpeg:** command-line conversion, remuxing, extracting audio, and batch workflows.
* **MKVToolNix:** inspect, merge, split, and edit Matroska/WebM containers without re-encoding.
* **MediaInfo:** inspect codec, bitrate, resolution, audio tracks, subtitles, HDR metadata, and other media details.
* **MusicBrainz Picard:** tag and rename music files using MusicBrainz metadata.
* **Exact Audio Copy / fre:ac:** useful for audio CD ripping workflows.
* **Calibre:** manage ebooks and personal document libraries.
Official links:
* HandBrake: `https://handbrake.fr`
* FFmpeg: `https://ffmpeg.org`
* MKVToolNix: `https://mkvtoolnix.download`
* MediaInfo: `https://mediaarea.net/MediaInfo`
* MusicBrainz Picard: `https://picard.musicbrainz.org`
* fre:ac: `https://www.freac.org`
* Calibre: `https://calibre-ebook.com`
Use these for media you own, created yourself, or have permission to archive.
---
### 5. Quality Targets
General rules:
* keep the original resolution unless you need smaller files;
* avoid re-encoding already-compressed files unless necessary;
* prefer modern codecs only if your playback devices support them;
* keep subtitles and alternate audio tracks when they matter;
* test one file before batch-processing a whole collection.
For long-term compatibility, boring settings are often better than exotic ones.
---
### 6. Practical Encoding Notes
General video targets:
* use `mkv` when you need multiple audio tracks, subtitles, chapters, or flexible metadata;
* use `mp4` when device compatibility matters more than container flexibility;
* use H.264 for maximum compatibility;
* use H.265/HEVC or AV1 only when your playback devices handle them well;
* keep original audio when storage allows;
* burn subtitles only when the target device cannot handle subtitle tracks.
Do one short test encode before processing a whole season, album, or collection.
---
### 7. Metadata
Good metadata makes a library easier to browse.
Track:
* title;
* year;
* edition or cut;
* season and episode number;
* audio language;
* subtitle language;
* source quality;
* notes about extras or bonus content.
Keep metadata in filenames when possible so the library still makes sense outside any one app.
---
### 8. Check the Result
Before deleting source files:
1. Open the finished file.
2. Check the beginning, middle, and end.
3. Confirm audio is in sync.
4. Confirm subtitles work.
5. Confirm chapters or tracks are correct.
6. Confirm the file plays on the devices you care about.
For important media, keep the source backup until the encoded version has been watched or fully checked.
---
### 9. Backup Strategy
Use the 3-2-1 rule for anything hard to replace:
* 3 total copies;
* 2 different storage devices;
* 1 copy off-site or offline.
At minimum, keep one external backup that is not always connected to the same machine.

143
Passwords-and-Account-Security/Guide.md Normal file
View file

@ -0,0 +1,143 @@
# Passwords and Account Security
---
### 1. Goal
This guide covers practical account security: password managers, two-factor authentication, recovery codes, and safer login habits.
The goal is simple: one leaked password should not unlock your whole life.
---
### 2. Use a Password Manager
Use a dedicated password manager instead of reusing passwords or storing everything in notes.
Good password rules:
* every important account gets a unique password;
* passwords should be long and randomly generated;
* do not reuse email passwords anywhere;
* do not share password manager vault access casually;
* export an emergency backup only if you can store it safely.
If you can remember every password, they are probably too weak or reused.
---
### 3. Recommended Apps
Pick one password manager and actually use it everywhere.
* **Bitwarden:** best default recommendation for most people. It is open source, cross-platform, and easy to use on desktop, mobile, and browser extensions.
* **KeePassXC:** best fit for people who want an offline encrypted vault file and do not want cloud sync by default.
* **Aegis Authenticator:** good Android authenticator app for time-based one-time passwords.
* **2FAS:** good cross-platform authenticator option with mobile apps and browser helper support.
* **YubiKey or similar security key:** strongest option for accounts that support hardware keys.
Official links:
* Bitwarden: `https://bitwarden.com`
* KeePassXC: `https://keepassxc.org`
* Aegis: `https://getaegis.app`
* 2FAS: `https://2fas.com`
* Yubico: `https://www.yubico.com`
---
### 4. Turn on Two-Factor Authentication
Enable two-factor authentication for:
* email;
* banking;
* domain registrar;
* cloud storage;
* social accounts;
* password manager;
* server dashboards;
* developer accounts.
Prefer authenticator apps or hardware security keys over SMS when possible.
SMS is better than no second factor, but it is not the strongest option.
---
### 5. Account Priority
Secure accounts in this order:
1. Primary email.
2. Password manager.
3. Phone carrier account.
4. Banking and payment accounts.
5. Domain registrar and hosting accounts.
6. Cloud storage.
7. Social accounts.
8. Shopping accounts.
The order matters because email, phone numbers, domains, and cloud storage often control password resets for everything else.
---
### 6. Save Recovery Codes
When a service gives recovery codes:
1. Save them immediately.
2. Store them somewhere separate from your phone.
3. Label which account they belong to.
4. Do not post them in chats or screenshots.
5. Replace them if you think they were exposed.
Recovery codes are effectively backup passwords.
---
### 7. Secure Your Email First
Your email account resets other accounts, so it needs extra care.
Checklist:
* unique strong password;
* two-factor authentication;
* recovery email and phone reviewed;
* old app passwords removed;
* forwarding rules checked;
* logged-in devices reviewed;
* recovery codes saved.
If email is compromised, most other accounts can be taken over through password resets.
---
### 8. Watch for Phishing
Before logging in:
* check the domain;
* avoid sponsored search results for important accounts;
* use bookmarks for admin panels and banking;
* do not trust urgency by itself;
* do not enter codes into links sent by strangers;
* verify unexpected login emails from inside the account, not from the email link.
Phishing works by rushing you. Slow down on login pages.
---
### 9. Account Review Routine
Every few months:
1. Review password manager weak/reused passwords.
2. Rotate passwords for critical accounts if needed.
3. Remove old devices and sessions.
4. Remove unused connected apps.
5. Confirm recovery email and phone are current.
6. Confirm recovery codes are stored safely.
Security is easier when cleanup is routine instead of emergency.

11
README.md
View file

@ -3,3 +3,14 @@
This is a guide repository for my docs and reference material. This is a guide repository for my docs and reference material.
It will be actively updated weekly as I add more documentation and organize everything in one place. It will be actively updated weekly as I add more documentation and organize everything in one place.
## Guide Index
- [Adobe Creative Cloud Setup and Patching](Adobe/Guides/Guide.md)
- [Browser Privacy Basics](Browser-Privacy-Basics/Guide.md)
- [Safe Downloading](Safe-Downloading/Guide.md)
- [File Verification and Checksums](File-Verification-and-Checksums/Guide.md)
- [Torrenting and P2P Safety](Torrenting-and-P2P-Safety/Guide.md)
- [Media Ripping and Backups](Media-Ripping-and-Backups/Guide.md)
- [Media Library Organization](Media-Library-Organization/Guide.md)
- [Passwords and Account Security](Passwords-and-Account-Security/Guide.md)

156
Safe-Downloading/Guide.md Normal file
View file

@ -0,0 +1,156 @@
# Safe Downloading
---
### 1. Goal
This guide is for downloading files without turning your machine into a test lab for malware, fake installers, bundled adware, or sketchy archives.
The safest download is not the one with the fastest mirror. It is the one you can identify, verify, and remove cleanly if something looks wrong.
---
### 2. Prefer Primary Sources
Use the official source whenever possible:
* the developer's website;
* the project's GitHub, GitLab, Forgejo, or official release page;
* the operating system's package manager;
* a known app store or repository;
* vendor documentation that links to the file directly.
Avoid:
* reupload sites;
* "download now" SEO pages;
* repacked installers;
* cracked installers;
* download managers that are not required by the vendor;
* mirrors that change the filename or wrap the file in an installer.
---
### 3. Recommended Apps
Use tools that help you inspect files before trusting them.
* **7-Zip:** archive manager for opening and extracting `.zip`, `.7z`, `.rar`, `.tar`, `.iso`, and many other archive formats. Download it only from `7-zip.org`.
* **VirusTotal:** useful for checking suspicious files or URLs against many scanners. Do not upload private documents, personal photos, passwords, keys, or anything confidential.
* **Microsoft Defender:** keep it enabled on Windows unless you have a better security stack you actually maintain.
* **winget:** good for installing known Windows apps from package sources instead of random download pages.
* **Homebrew:** good for installing macOS command-line and desktop apps from repeatable package formulas.
* **Flatpak / Flathub:** useful on Linux desktops when the distro package is old or unavailable.
Official links:
* 7-Zip: `https://www.7-zip.org`
* VirusTotal docs: `https://docs.virustotal.com/docs/how-it-works`
* winget: `https://learn.microsoft.com/windows/package-manager/winget/`
* Homebrew: `https://brew.sh`
* Flathub: `https://flathub.org`
---
### 4. Check the File Before Running It
Before opening an installer, script, or archive:
1. Confirm the filename makes sense.
2. Check the extension.
3. Scan it with your local security tool.
4. Compare the checksum if one is provided.
5. Search the exact filename if something feels off.
Be extra careful with:
* `.exe`, `.msi`, `.bat`, `.cmd`, `.ps1`, `.scr`;
* password-protected archives from unknown sources;
* archives that contain another archive;
* installers asking for administrator access for no clear reason.
---
### 5. Watch for Fake Buttons
Download pages often contain ads that look like real download buttons.
Good habits:
* hover the button and check the destination domain;
* avoid buttons labeled only "Download" when multiple buttons exist;
* look for release tables, asset lists, or package links;
* avoid anything that downloads a small "installer" when you expected a large app or media file.
If the page makes it hard to tell which button is real, leave and find a better source.
---
### 6. Use a Quarantine Folder
Keep downloads staged before installing or importing them.
Example folder layout:
```text
Downloads/
Incoming/
Checked/
Installed/
Trash/
```
Workflow:
1. Download into `Incoming`.
2. Verify or scan the file.
3. Move trusted files into `Checked`.
4. Move installers you used into `Installed`.
5. Delete anything suspicious.
This keeps random downloads from blending into real documents and media.
---
### 7. Archives and Extracted Files
When extracting archives:
* extract into a new folder, not directly onto the desktop;
* inspect the contents before opening anything;
* watch for double extensions like `movie.mp4.exe`;
* avoid running scripts included in random archives;
* delete archives after extracting if you no longer need them.
If an archive requires a password from a random page, treat it as higher risk.
---
### 8. Safer Install Flow
Use this flow for anything executable:
1. Download from the primary source.
2. Confirm the domain.
3. Check the version number against the release page.
4. Scan or verify the file.
5. Install without optional bundles, toolbars, browser extensions, or "recommended offers."
6. Delete the installer if you do not need it.
7. Keep a note of where the installer came from if it is important.
Avoid installers that require you to disable security tools. That is one of the clearest signs to stop.
---
### 9. Red Flags
Stop if you see:
* a file pretending to be a video, book, or image but ending in `.exe`;
* instructions telling you to disable antivirus;
* a required "patcher" or "activator";
* a download that asks for browser notification permissions;
* a site that forces multiple redirects before the file;
* a file with no clear source, author, version, or checksum.
Deleting a suspicious file is faster than cleaning an infected machine.

138
Torrenting-and-P2P-Safety/Guide.md Normal file
View file

@ -0,0 +1,138 @@
# Torrenting and P2P Safety
---
### 1. Goal
This guide covers safe use of BitTorrent and other peer-to-peer downloads for legitimate files such as Linux ISOs, public domain media, open datasets, game patches, and large community archives.
Do not use this guide to find, distribute, or hide illegal downloads.
---
### 2. Understand the Tradeoff
Torrenting is efficient because everyone shares pieces of a file with everyone else.
That also means:
* peers can see your IP address;
* public trackers can be noisy;
* fake torrents exist;
* archive contents may not match the title;
* some networks block or throttle P2P traffic.
Use P2P when the source is trusted and the file is worth distributing that way.
---
### 3. Use Trusted Sources
Prefer torrents linked by:
* official Linux distribution websites;
* public domain archives;
* academic dataset pages;
* official game or mod communities;
* reputable open-source projects.
Avoid torrents with:
* no source page;
* no comments or release notes;
* suspiciously tiny file sizes;
* executable files pretending to be media;
* password-protected archives;
* instructions to disable security tools.
---
### 4. Recommended Apps
Use a client that is maintained, widely used, and does not bundle adware.
* **qBittorrent:** best general recommendation for desktop use. It is open source, familiar, and has a network-interface binding setting.
* **Transmission:** good lightweight option, especially on Linux, macOS, servers, and simple setups.
Avoid clients known for bundled ads, browser hijacks, crypto miners, or forced "speed up" utilities.
Official links:
* qBittorrent: `https://www.qbittorrent.org`
* qBittorrent options wiki: `https://github.com/qbittorrent/qBittorrent/wiki/Explanation-of-Options-in-qBittorrent`
* Transmission: `https://transmissionbt.com`
---
### 5. Client Settings
In your torrent client:
* disable automatic startup unless you need it;
* set download and upload limits;
* choose a specific download folder;
* disable automatic execution or opening of files;
* review port forwarding deliberately instead of enabling random network changes;
* keep the client updated.
Use one dedicated folder for incomplete downloads and another for completed downloads.
---
### 6. qBittorrent Baseline Settings
Good starting point:
* **Downloads:** set separate incomplete and completed folders.
* **Connection:** disable random port on every startup if you need stable port forwarding.
* **Speed:** set upload limits so the client does not saturate your connection.
* **BitTorrent:** disable anonymous mode unless you understand the tradeoffs.
* **Advanced:** bind the network interface if using a VPN.
* **RSS/Search plugins:** leave disabled unless you need them.
If a VPN is part of your setup, the important setting is the network interface binding. A kill switch is useful, but client binding is the cleaner torrent-specific guardrail when supported.
---
### 7. VPN Reality Check
A VPN can hide your home IP address from peers, but it does not make unsafe downloads safe.
VPNs do not:
* verify files;
* remove malware;
* make illegal sharing legal;
* protect you if you log into personal accounts while using the same browser session;
* fix bad operational habits.
If you use a VPN, confirm that your torrent client is bound to the VPN interface if your client supports it. That prevents traffic from falling back to your normal connection if the VPN drops.
---
### 8. After Downloading
Before opening files:
1. Let the torrent finish fully.
2. Recheck or force recheck if the client supports it.
3. Scan suspicious files.
4. Verify checksums if the source provides them.
5. Move completed files into a clean library folder.
Keep seeding only when you understand what you are sharing and are comfortable sharing it.
---
### 9. Good Uses for P2P
P2P is useful for:
* Linux ISOs;
* public datasets;
* public domain films and books;
* independent game builds;
* large mod packs from trusted communities;
* community mirrors for open projects.
For small files, direct downloads are often simpler and easier to verify.