Software RAID is generally better in every way, also no hardware to fail.

Keep multiple reliable (and tested) backups, if something fails restore a backup.

Don’t rely on any storage, RAID or anything else to be recoverable when something goes wrong.

Backrest is also great, just a nice webUI for Restic.

FolderSync is a good alternative, more battery friendly too!

I would go with a managed Nextcloud provider, it’s such a pain to manage self hosting Nextcloud specifically.

Be extra vigilant with your backups though, free stuff always has a higher chance of weird stuff happening, once they just removed my VPS after my trial ended and told me to re-create it.

Dynamic DNS is free generally, for example if you put your domain on Cloudflare or another DNS host with an API that is supported you can just update the A records automatically on IP change.

There isn’t one.

You can combine several other services though, such as Matrix for chat, Mumble or Teamspeak for voice, and OBS + BroadcastBox for game streaming.

Have you tried wiping the phone and being careful about what apps you install?

The camera specifically says it was accessed by the camera app which seems perfectly normal. The microphone being unknown is odd.

You can’t get notifications while offline, so that sounds more like a bug of some kind in an app you have installed maybe?

If they’re not portable how would I for example login to an account while on my Desktop, if I set up the passkey on my Phone?

Pixel 7a is pretty good. Cheap too now that they’re 2 generations old, around $330 new for an unlocked phone.

I think looking at business/enterprise models would give you the best luck, as some of them should use a PCIe Wifi/BT card so it can be easily upgraded, and you would be able to remove that.

Notebookcheck.net often has images of a teardown in their reviews where you can see if it has a removable wireless card.

Outgoing should already allow everything, so no need to specifically allow it.

Make sure you’re creating a block rule specifically on outgoing in that case.

Is wireguard incoming or outgoing from the machine you’re trying to block it on?

Do you have something listening on port 52038 that will respond to a port scan? If not it will report as closed.

Annoying that it doesn’t give more details!

I think you might need to add your site to google search console to see more details on specifically why it was listed as unsafe.

Some info here: https://web.dev/articles/use-search-console

Probably due to their status as a privacy friendly way to have a domain they get a lot more fraud and scams using their services, they’re probably dealing with tons of this stuff daily. Being flagged by google safe browsing most of the time means something isn’t right, but I’m not sure what they would really be able to investigate on their end.

Have you figured out why you were flagged? I’ve seen similar stuff from self hosters before where they have a compromised service exposed to the internet and didn’t realize it.

Does it transcode the uploads for better remote viewing like Peertube does? I can’t tell from the github page. This looks a lot simpler to run than peertube since all I really do is share clips with friends.

I don’t think sharing 100Mbps+ 3440x1440 files from shadowplay is going to go well when sharing to friends that have more limited internet speeds.

How would find out about anything if no one posted their projects anywhere?