Lol.

I honestly the paranoia path is something we all have walked until the descent to Dante infernos. Once you are there you realized this is not a place to live and then get a bit more practical. :)

I any case it is good mental exercise to check to what extend your threat model is not covering those situations. At least you know where your defence perimeter ends.

For everything else, selfhosting! ;)

Your problem is that the chain of untrust has not hit the ground yet.

At some point, you need to trust some technology or system.

You can continue until you are in comfortable ground and then build you trust chain. But honestly following your line of thoughts you will probably end up in a non digital area.

In my case I followed a similar path, but I am totally aware that I can not put resistance to a well funded and well manned intelligence agency, so the high quality industrial level is probably fine for me.

I have several copies on f my backups and all of them are encrypted and signed with rsa, the so are all of them open sources and well audited versions. The only point I relaxed is my phone and I try not have sensitive information on it but vpn and proxies just in case I need them.

I almost don’t use cloud services anymore and the one that I use he a nice record for keeping privacy.

My objective is not to stop Cia, but industry, scammers and all other nasty guys in the wild.

It is tiring, uncomfortable and sometimes cumbersome. But I think it is worthy

Because the modification of that computer is order of magnitudes more difficult than a mechanical modification of a moving part. The humanity / regular human is able to understand much better the interactions of the mechanical parts that usually are always local and well defined.

This does not exist in the Sw, FW and digital hw, the interactions are not local and are millions timesmore complex to understand and properly modify.

It would be an utterly irresponsability to modify (blindly) the Sw of an xray machine that could make it unsafe and ultimately it could kill humans, and it is the same concept with the car. It is irresponsable to make a modification that can make the system unsafe.

For the rest? Regulations, free software foundation and good selfhosting Cheers

Then don’t buy tesla, or force legislation about introducing such feature.

But make yourself a favor and don’t play Russian roulette with something that you can not understandbecause there are not data available.

And for final tip, if you really cares about that then enforce the fsf (fsf.org)

It is not comparable, not even by far.

Assuming your are not a psycho, to safely drive a car is orders of magnitude (in plural) easier than modifying the Sw in a safe and deterministic way.

It is not only that bad people exists, it is about that making a small mistake can kill you

First, second and third most important point is : Tesla needs to allow the connection to an alternative server.

The fourth should be access to the api and data that are exchanged.

You shouldn’t mess with the FW of your own car even for some innocent feature like this one, you don’t know/understand the interactions that may happen between different Sw components and the hw layer, you can not provide a similar of level of testing, including some worst case scenarios, that can make your car unsafe during some problems or unforeseen conditions. And perhaps also, the car could loose its license for driving…

If tesla allows that, then we can start speaking about it. But last time I check on that was not possible

Not good, you are going to lose a lot of stuff, from personal relations, connections to your wife and even your health.

I hope (really) your are not in a compromised financial situation and this is really temporary. If so, it is OK but you need to have a plan to reduce the hours in the foresable future.

If this is not the situation, then learn how to disconnect from the work in the spare time and spent quality time when possible, also do cardio. It helps. A lot.

When you are young you can really chew everything it is throwed at you, but it is not true anymore when you are past the 40s.

Take care of yourself, nobody else is going to do it.

You will need to explain a bit further this statement to mild knowledged internet stranger…

Because the point of waf is exactly about reducing the exposed surface…

Dealing with a Ds-lite connection for a fiber optic provider in latest opnsense.

It is excruciating how difficult is to run it reliable

Some clarifications :

The 3 2 1 rule applies only for the data. Not the backup, in my case I have the real/live data, then a daily snapshot in the same volume /pool and a external off-site backup

For the databases you got misleading information, you can copy the files as they are BUT you need to be sure that the database is not running (you could copy the data and n the middle of a transaction leading to some future problems) AND when you restore it, you need to restore to the exact same database version.

Using the export functionality you ensure that the data is not corrupted (the database ensure the correctness of the data) and the possibility to restore to another database version.

My suggestion, use borgbackup or any other backup system with de duplication, stop the docker to ensure no corruptions and save everything. Having a downtime of a minute every day is usually not a deal breaker for home users

Well, I don’t know how many online interactions you have. But has you ever imagined that perhaps the feedback you received here is actually the average of the people?

In these days is quite difficult to calibrate the crowd feeling for the insane amounts of echo chambers, the mass media crating opinion instead of informing and personal biases.

Usually, everybody of us is quite biased by our own interactions and knowledge of how the world worked around us. But those interactions are mainly defined by your social status, place of birth or simply where we live. By the specific details of people who debate in internet (probably accommodate urban person) it is possible that those ideas lean into a specific direction. But once again, it could be that you are simple realizing you are not with the majority

Of you already have a will the most secure, proof idiot way I’d to add that key + instructions to the will. Get some lawyers on board for that and it will work.

If you still have concerns about having the full key on a single place, add a topt or second way of identification and distribute it between your heirs.

Sometime, the old fahion way is the best one by far.

That is setting the bar really low…

What’s the point of having something unusable in all versions and without the possibility of the community to “maintain” it

Try with kasm.

Honestly, you don’t feel the lag of the connection (unless is a severe limited one) it also allows multiuser simultaneous connections.

Check and come back to ith yiur feedback!!!

Setup a dns guardian system to make sure that they are not accessing some forbidden web pages (like only fans or Instagram). This extra layer of annoyance is pretty useful because there a lot of apps for kids with obvious holes to side load web pages that always keep me wondering if they were there by intention.

Apart of that I would setup a restricted shell to execute only the approved apps.

I would recommend an LDAP sever for user Auth.

There you can create/authenticate user with a central repo in a machine independent fashion. Also having the possibility to allow /egate specific services from the central database is a big plus.

It seems difficult at the very beginning but it quickly pays off. Give it a try

Yes, definitely you will get a better deal going with a home made solution here.

Buuuut, there is an important point to highlight: The probability of synology fucking your data up is much lower than the average selfhoster. Unless you already know almost perfectly pros, cons, and how to solve problems without a data loss, you are not better than the average.

As an example, I went with a synology box even if I consider myself better than the average because the data in my nas is extremely (but really extremely) important to me and my wife. And the price was a reasonable fine in order to keep that data safe.

So, evaluate yourself : if. The data is really important and you are not a really good sysadmin then go with a professional solution. If not then go in DIY solution and learn in the process.

Just my two cents

Me, as a person coming from an area with a large tradition about seefood and food in general I feel irritated that this pictures is able to get the status of foodporn. :D

I mean, OP, with all the due respect, but if you enjoy that type of food you can not lose the opportunity to try it in a fisher traditional area prepared in the traditional way.

Hope you like it even more!!!

As it must be

Every country is sovereign in its territorial. This means that they can:

• confiscate actives in japan
• to pass fines
• to ban the access to the servers
• to ban the operations on its territory
• to jail the company’s representative of the country
• etc etc

As an example the EU did exactly this when the gdpr came into play