versionc
@versionc@lemmy.world
- Comment on From F-Droid to emulators, here's who's hit hardest by Android's new verification rules 3 days ago:
Isn’t SailfishOS proprietary?
- Comment on Guess this is where I’m at now 4 days ago:
I shower twice a day, once in the morning and once in the evening.
- Comment on GrapheneOS refuses to comply with new age verification laws for operating systems — group says it will never require personal information 6 days ago:
A growing minority wants to avoid investing in US big corp, or in anything US related in general given the current political situation.
I’m definitely one of those people but there just aren’t that many alternatives. Like I said, I did consider Fairphone, but there were so many cons to their devices that it’s just not a reasonable choice for me personally. Which is unfortunate.
Thanks.
- Comment on GrapheneOS refuses to comply with new age verification laws for operating systems — group says it will never require personal information 6 days ago:
Thank you!
- Comment on GrapheneOS refuses to comply with new age verification laws for operating systems — group says it will never require personal information 6 days ago:
I wouldn’t trust any device made by them, regardless of the OS.
What device would you trust?
Edit to say you are basically just rewarding their behaviour.
That’s a good point and it’s one I’ve been considering. I would’ve bought a second-hand phone if it weren’t for the fact that the second-hand market in my country is so bad to the point it’s not even worth considering.
- Comment on GrapheneOS refuses to comply with new age verification laws for operating systems — group says it will never require personal information 6 days ago:
Thanks for the response!
Currently, the Pixel 10 goes for 600€ including taxes, while the Pixel 9a goes for 370€. Both are on sale right now. The iPhone 17 and the Samsung S26 meanwhile both go for 1015€ and 1106€, respectively, just for price comparison. Would you still go with the 9a over the 10 in this case?
- Comment on GrapheneOS refuses to comply with new age verification laws for operating systems — group says it will never require personal information 1 week ago:
I’m gonna have to replace my phone soon since it doesn’t receive security updates any more and I was thinking of going for GrapheneOS. What do you guys think about getting a Pixel 10 for that purpose? My second choice would be an iPhone but it’s both a lot more expensive and also less privacy respecting.
I was also considering a Fairphone but despite rating the repariability highly, there were too many other cons to the device.
- Comment on [Official Media] "A Silent Voice" in Crunchyroll 1 week ago:
That’s a great watch, highly recommended.
- Comment on SSL certificates for things inside the lab 1 week ago:
as far as I know, there is no way to put a valid certificate like let’s encrypt for a service that is not accessible from the net
There definitely is. All of my local services run on a wildcard cert that I got from a DNS challenge with Let’s Encrypt. As long as the reverse proxy can access whatever source is issuing the certificate, and as long as the client browser can access public certificate ledgers and has DNS info about your services, things will work just fine locally.
I recommend Netbird to give access to services to your family members, for access control and for the DNS server it provides. It also gives you the bonus of accessing your services remotely.
Feel free to ask if you have any questions.
- Comment on Booklore is officially dead 1 week ago:
Good riddance.
Has anyone used Komga as an alternative? It’s primarily for manga and comics but it seems to support books too (epub and PDF). It also seems to be able to sync books with Kobo devices.
- Comment on Password manager woes. How have you solved syncing on Android? 1 week ago:
Yeah,
passhas been discussed a bit in the thread already, but there are a few security issues that keep me from using it. Speaking of security, I had no idea the Android app was archived in 2024. That’s quite a long time without updates. Are you using a fork?Thank you for sharing your workflow wither way! Using a git based solution would be amazing.
- Comment on Password manager woes. How have you solved syncing on Android? 1 week ago:
I like the idea of using git, and there are people using it with their KeePass database (here’s an example), but I don’t think it’s optimal. If you want to use git,
passis probably the better option, but that brings in a whole lot of other problems.I’ve started using Nextcloud to sync my database and it’s worked out fine so far. Though it would be nice to use something like git that I use all the time regardless, right now the whole bloated Nextcloud stack I have hosted only syncs my small password database haha.
- Comment on Self Hosting for Privacy - Importance of Owning your own Modem/Router? 1 week ago:
I would get a router that supports an open source firmware or operating system like OpenWRT. Which one depends entirely on your use case. Getting a router from your ISP is fine if you’re allowed to and capable of flashing it, and if you trust them (I’m lucky that I have an ISP with a track recoding of fighting for their users’ privacy and integrity).
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
Yeah, that’s a good point. There are still a few cons though:
- If the server goes down (or your internet connection goes down), you can’t add entries to your database. Local changes aren’t allowed.
- Bitwarden doesn’t support supplementing your passphrase with a key file.
- The Bitwarden clients aren’t enitrely FOSS as far as I understand, the SDK used has a non-free license.
There are pros and cons in both alternatives, and there is unfortunately not a perfect solution. I like the idea and philosophy behind the KeePass format, so the increase in syncing complexity is worth it (for now at least).
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
I managed to get it up and running now, thank you! It wasn’t intuitive at all, compared to using nextcloud-client on the desktop. I’ll try this for a while and see if it works for me.
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
I’m currently using KeePassDX and I’ve set up the Nextcloud server and downloaded the Android app. I’ll give it another shot. Can you explain more how you’ve set this up for yourself? What does CF mean, and what file manager do you recommend?
Thanks!
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
I’m talking about this issue: github.com/nextcloud/android/issues/19
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
This issue: github.com/nextcloud/android/issues/19
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
I’m looking for a selfhosted alternative, I’m not really to keen to place all of my password eggs into one company basket so to speak. But yes, other than that, Proton is a good choice (but I’d probably go with Bitwarden personally). Thank you.
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
Do you do it manually into e.g. protected json, or to a normal zip (the former doesn’t support attachments as far as I know)? Or have you found a way to do it automatically? One con that I’ve read about this is that backups from one version is not guaranteed to work on another version. Thanks.
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
I actually used
passmany years ago and I quite enjoyed it, except for the fact that the entry names are presented in clear text. You’d also have to manage your GPG secret which I’m not a fan of (in fact, my password manager is how I usually manage GPG and SSH keys in the first place). On the other hand, I guess you should keep a key file on each device on top of a passphrase even if you use a KeePass database, so I guess that point is moot. There are also no good way to include attachments. At that point Vaultwarden feels more convenient, but the more I’m thinking about it, the more I’m warming up to the idea. We’ll see, maybe I’ll give it a shot again.Thanks for sharing your thoughts!
- Comment on Password manager woes. How have you solved syncing on Android? 2 weeks ago:
Yeah, I have a tendency to modify my database quite often. I often make new accounts, add attachments, modify passphrases on older accounts, etc. I modify it several times a week. I might be an outlier, and in that case I understand why people don’t consider this to be a huge problem haha.
- Submitted 2 weeks ago to selfhosted@lemmy.world | 89 comments
- Comment on Firefox's beta feature "Smart Window" shared browsing and search history to AI models without prompting 2 weeks ago:
I used to enjoy AI a lot, and I still think the technology is really cool, but lately I’m beginning to despise it. It spreads and nestles itself into every corner of our life, and it rots whatever it touches, be it the humans that rely on it or the projects in which it’s used. I see so many open source projects that are tainted with it, it’s almost impossible to avoid it. It’s sad. The generations that will grow up with AI will be fucked.
- Comment on Notes on full disk encryption on a Hetzner cloud VPS 2 weeks ago:
This is only supposed to be temporary while you set up the FDE, your IP is unlikely to change in the 30 minutes or so it takes to go through these steps.
In any other scenario I’d close port 22 and use a mesh VPN with SSH capabilities, like Netbird or Tailscale. I’d only open it up again to access Dropbear during reboots, and I’d use IP filtering for that as well.
As for DHCP, I guess it depends on the ISP. I don’t have a static IP but mine doesn’t change as far as I can tell unless my router is disconnected for a longer while.
- Comment on Another suggestion post 2 weeks ago:
It’s worth noting that Obsidian is closed source and proprietary.
- Comment on Notes on full disk encryption on a Hetzner cloud VPS 3 weeks ago:
Enabling SSH password authentication is unnecessary and not a good idea, especially if your temporary passwords are simple.
Noted, thank you!
I haven’t used Hetzner but there is probably a way to upload a file or to paste into the console
Pasting generates garbled text, with letters and symbols being replaced or simply missing. I haven’t found a way to upload a file, nor have I found a solution to the issues in general. I found a few threads on Reddit complaining about the same thing, but no one had found a solution. It just seems to be an issue with the way Hetzner has set up their KVM console.
There is a way to upload custom ISO files, but it’s quite annoying as you have to open a ticket with a direct link to the ISO and wait for the staff to upload it for you to the UI.
You may want to look into cloud-init instead of manually installing and configuring your VMs.
Thank you! I’ll check it out.
LUKS may not make your server meaningfully more secure. Anyone who can snapshot your server while it’s running or modify your unencrypted kernel or initrd files before you next unlock the server will be able to access your files.
That’s true. It’s mostly just to prevent data recovery should the VPS be recycled for services that don’t support E2EE, like Immich. I thought it would be better than nothing.
- Comment on Notes on full disk encryption on a Hetzner cloud VPS 3 weeks ago:
If I can use E2EE, I will. This VPS will never be exposed to the internet, it will only be accessible through Netbird. The main reason for setting up FDE is for Immich which doesn’t support E2EE, so that the data won’t be (as easily) recoverable should the VPS be recycled. But yeah, it’s not perfect, but like you said it’s better than nothing.
I don’t really take physical access (including Hetzner and law enforcement) into account in my threat model.
- Submitted 3 weeks ago to selfhosted@lemmy.world | 26 comments
- Submitted 3 weeks ago to selfhosted@lemmy.world | 10 comments