🅿🅸🆇🅴🅻

Those share buttons are trackers themselves. So it’s not about “supporting” those websites by publishing content to them, it’s about undermining the privacy of your readers and doing the opposite of what you preach, and “supporting” those websites by feeding them much more valuable user data. As another comment said, just put a button to copy the permalink and let them paste themselves if they want to share.

As for you sharing a link on the mainstream social media platforms yourself, I’d actually encourage that. Cory Doctorow auto-publishes links (not content) to his articles on as many social media platforms as he can (sorry, can’t find the article in which he describes it). The point is that he still retains control over his content by hosting it himself, he controls the (lack of) trackers and ads, and gaining traffic from these platforms is still to his and his potential readers benefit. Bending your rules a little to reach more people and maybe even convert them to be more privacy-aware is fine.

deleted by creator

For email migration / Proton:

• Proton has an import tool but I think it’s still for paid customers only. You could pay for a 1 month subscription and do your thing.
• The import tool has labels matching, pay attention to them if you want to migrate them too. If you have multiple addresses, create a label for each when importing so you’ll have an easy time identifying/filtering later.
• I would encourage a paid Proton subscription if you can afford it, for its extra features. I.e. unlimited folders / labels; I also use the Export tool from time to time to backup all Proton email messages offline.
• When changing your email address for accounts, you need to make sure all are accounted for in your password manager, and use a status for each of them (ie To migrate, Migrated, Cannot migrate / To delete, Cannot migrate / create new). This is going to be a tedious process, but it will be rewarding at the end.
• Don’t leave your accounts that you cannot migrate in the air (ie they don’t have a change email option), even if they’re not important. Delete them. You might have to contact support on some of them to try to change email or request deletion. Consider this a spring cleaning and make the efort.
• When deleting accounts, use the GDPR option if possible / you’re in the EU.
• Keep your old Gmail around for some time to catch any accounts linked to it that you might have missed. As somebody else mentioned, there might be some for which you used Gmail login and those are easy to miss, especially if they don’t send any emails. You won’t be able to recover them without access to your Google account.
• I wouldn’t bother with forwarding emails (why let Google know of your new identity?). Delete emails already imported. Use the import tool multiple times to import any new ones.
• When you do the email address migration, even if you didn’t have multiple email addresses in Gmail, this could be a good time to separate online identities and have multiple addresses and/or aliases in Proton (ie 1. for personal/official/utilities accounts - your real identity, 2. shopping - still real identity, but these might be spammier, 3. rest/disposable/not tied to your real info/no payment enrolled; even more, depending on your use case). Any Proton paid plan allows you to have multiple addresses under the same login (10 for Mail Plus for example).
• Personal opinion: Proton is awesome. Every year, even on the cheapest Mail Plus plan, Proton awards a 1GB Storage Bonus to all paying users.
• The free plan has a limit of only 1 custom filter (they used to limit them for Mail Plus too, some time ago). To bypass that (Proton even encourages it because it’s more efficient for their servers), learn Sieve Filters, and that way you can group multiple filters into one sieve (or have all of them in one sieve, if on the free plan). You can use comments in sieve filters.
• Proton supports the “+” in the address, just like Gmail does. It’s a quick way of creating aliases.
• The Proton password manager also has some feature of creating aliases (for paid plans) - they call them “hide-my-email aliases”; but it’s limited for the lower tier plans (10 for Mail Plus), and maybe you wouldn’t want to bother with it since you won’t be using it as your actual password manager.
• Something I learned the hard way, don’t use a short 3-4 characters username / email address (probably hard to find any available anymore, as Proton exists for some time); it will attract more spam from spammers randomly generating email addresses / generating them from a dictionary.

For Youtube, on Android:

• I use Youtube in Brave browser, which for the time being can still block the ads, and also keeps playing in the background.
• When I want to avoid Youtube, for Youtube links, I use UntrackMe (F-Droid), which (among others) redirects to an Invidious instance opened in the browser. Initially I installed it for Twitter, but Nitter doesn’t work anymore.

Cloud storage:

• I’d go the self hosted route - NextCloud + DAVx5 (contacts sync), and VPN to access it when out of home (if needed; otherwise, set it to sync over unmetered WiFi connections only, and mark your home WiFi as unmetered). But this is me - I could probably safely use Proton Drive, but wouldn’t have the same flexibility and would force me to a higher cost plan. For you, this means entering homelab territory and it gets complicated. But IF you do, there are other self-hosting apps you could benefit from (ie PiHole, Jellyfin, Home Assistant if you’re into home automation, etc).

2FA app:

• Never tried Authy, but I use Aegis and it’s good. Open source, it has backup, export, custom icons for entries, (bulk) import via QR, etc.

Video player:

• You could try VLC if you need subtitles support.

I second the idea of a VPN instead of directly exposing devices or software to the internet. Requires more work and learning but it’s more secure. I would argue that well-known VPNs are more scrutinized and pentested than any camera software ever.

A hash has a fixed length, including MD5. There’s no reason to cap password (input) Iength. You can hash the whole bible and still get the same length hash. So either they don’t even hash it, they’re idiots, or they try to be unnecessarily cautious to avoid some other limit / overflow, like POST max size (which would still be counted in at least KB, not several characters). The limit on what special characters you can use is also highly suspicious - that’s not how you deal with injections / escaping your inputs.

Instead of my ID, I submitted a picture of dolphins and the text “So long and thanks for all the fish!”. And never came back.

Is Keepass there? Good. Upvote.

Turris Omnia. Powerful hardware, auto updates, config backup / restore (with anti-bricking feature), SIM slot, etc

URL path (resource) is end-to-end (between your browser and end website) encrypted in an HTTPS request, along with the body, any query parmeters in the URL and POST params. So only the domain (or more specifically the IP) is transparent to your VPN provider.

As another user mentioned, the domain could get leaked to your ISP (besides the VPN provider) via DNS requests (depending of your PCs DNS cache lifetime and router cache), unless you use your own DNS provider over HTTPS. But your requests would still include an IP, which could be reversed to a domain via a trivial whois / lookup in a list.

But the thing you are worried about, the path in the URL (folders as you call it, but nowdays URL rewrite means that most probably there isn’t a direct association between URI and web server’s disk structure) should be encrypted and only the website you are visiting can decrypt it (via its private key of the SSL certificate).

Hmm. I unmount mine to reduce noise. Didn’t think about endurance though, curious to see opinions too.

Is it just 2 Mw or is the article wrong?

As someone reading this thread, I’m stuck in an endless loop.

Where do you keep your KeepAss master password?

In my head. If you use a long passphrase, it’s easy to remember, easy to type, and secure.

The pregenerated book of codes is used since ancient times and it is interesting, but I would much prefer to educate people to use passphases instead.

And everybody has a phone with them at all times, you can have Keepass on it. It doesn’t use the cloud, it’s local, and if you need to sync the password database file automatically with your PC it’s safe to keep it in the cloud, it’s encrypted and only decrypted locally. But I myself use a self-hosted instance of Nextcloud.

Holy shit, I stand corrected, those graphs speak for themselves. Bookmarked for future stats.

LE: Well, there’s also the section about average age of failure in their newest report: 2 years and 7 months for HDDs, 14 months for SSDs.

True, but it depends from person to person and it counts if you have a small or big drive, how often you watch and rotate your media, how large the media is. If you only have a 1TB SSD, and often download and watch blue-ray quality, 20 movies will fill it. It won’t be long until the same blocks get erased, no matter how much the SSDs firmware tries to spread the usage and avoid reusing the same blocks.

Anyway, my point is, aside from noise and lower power consumption advantages, I wouldn’t use SSDs for a NAS, I regard them as consumables. Speed isn’t really an issue in HDDs.

I use Hard Disk Sentinel, it’s not free, but it also monitors drives in Windows so you have an early warning at the first sign of issues. Also logs historic data (writes, temperature, etc) and displays them as graphs.

Failure rates for sdd are better than hdd

I’m curious on where did you find this. Maybe they have lower DOA rates and decreased chances to fail in the first year, but SSDs have a limited usage lifetime / limited writes, so even if they don’t fail quickly, they wear out over time and at first they have degraded performance, but finally succumb in 5 years or less, even when lightly used (as in as OS drives).

To avoid DOA / first year issues with HDDs, just have the patience to fully scan them before using with a good disk testing app.

From my experience, SSDs are more prone to failure and have limited writes. They are ment for running the OS, databases for fast access, and games / apps. They are not ment for long time storage and frequent overwrites, like movies, which usually means download, delete and repeat which wears the memory quickly. One uses electric current to short memory cells and switch them from 0 to 1 and viceversa, the other uses a magnetic layer which supports a lot more overwrites on the same bit.

If keeping important data on them, I would use them only in a redundant RAID configuration and/or with frequent backups so I wouldn’t cry if one of them fails. And when they fail, there are no recovery options as with HDDs (even if very expensive, at least you have a chance).

I also wouldn’t touch used server SSDs, their lifetime is already shortened from the start. I had 3 Intel, enterprise-grade SSD changes in our company servers, each after about 3 years - they just wear out. For consumer / home SSDs the typical lifetime is 5 years, but that takes into account minor / “normal” usage, ie. if used as OS disks. And maybe power users could extend that with moving the swap/pagefile and temporary files (ie browser cache, logs, etc) on a spinning disk, but it defeats the purpose of having an SSD for speed in the first place.

If you have media (like movies) in mind, you’ll find sooner than later that you’ll need more space, and with HDDs the price per GB is lower than SSDs.

If you have no issue with 1. noise, 2. speed (any HDD is fast enough for movie playback and are decent for download), 3. concurrent access, or 4. physical shocks from transport, go with HDDs, even used ones.

My two, personal opinion cents.

Github open issue if you want to chime in.

While I find your implants path very interesting, impressive and Cyberpunk worthy, I would’t use any externally accessible keys / fobs / etc myself. I wouldn’t want someone to unlock my stuff while I’m sleeping. Same reason I avoid face detection unlock. My mind is the best safe out there, I can memorize a very lengthy passphrase and have no problems typing it.