4·
8 months agodeleted by creator
- 0 Posts
- 26 Comments
Joined 1 year ago
Cake day: June 29th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
11·8 months agodeleted by creator
Using podman-compose, I usually have a section like:
volumes: - ./local_folder:/container/folderSpecifically, I have to use either an absolute path or a relative path with “./” to prevent it from treating a directory as a volume name.
Pretty good privacy. It’s an unexciting name for a public/private key encryption program.
I believe WhatsApp uses the same protocol (or at least the same crypto algorithms), though I’m not sure if they were involved in its development.
Good point on the metadata. Signal has the “sealed sender” thing, which (I think) helps with the metadata problem somewhat.
My practical answer: Nah, it’s probably not going to nuke your files.
My software engineer answer: Never trust us to not make a mistake. It doesn’t take much to accidentally nuke a directory.
As the other commenter mentioned, your best bet is being selective about which services you use to communicate.
Unencrypted (plain text) is the worst, since data is easy for a third party to sniff (think of it as a wiretap). For example, HTTP and SMS are unencrypted.
Encrypted is a good start, since third parties can’t sniff your traffic, but the server handling your communications can usually see everything that passes through it. For example, HTTPS is an SSL-encrypted variant of HTTP, and services like Facebook messenger are encrypted, but Facebook can still see all of your messages, since it’s stored on their servers.
End to End Encrypted (E2EE) is the golden standard. Only the endpoints (i.e. you and your friend) can see the content of your messages, and all traffic is encrypted in a way that even the server cannot view it. Signal is end to end encrypted, as are many other modern messaging platforms (WhatsApp is E2EE in theory, as is Google Meet, but we can’t verify this ourselves).
Well, not the highest one. This was a state supreme court, fortunately.
Agreed, for me containers are really nice for playing with new software without dirtying my host install.
I’m using droidify and couldn’t find signal in there either.
As an aside, is digital ID a gating factor in us bring forced to digital currency? Stores are already refusing cash, so we’re practically digital already.
I tend to disagree with a lot of Californian politics, but hot damn are their pro consumer laws the best. Can’t wait for 2026.
I’m actually almost completely unfamiliar with Nginx, short of a few hours of tinkering. NginxProxyManager is a direct competitor to Caddy, with a graphical interface, SSL cert creation and auto-renew, etc. I’m not going to say to switch from Caddy, since there’s probably no major benefit, but it’s much nicer than trying to figure out Nginx reverse proxies by hand.
I think the problem is that normal consumers wouldn’t ever buy a tape drive, so the only options still being produced are enterprise grade. The tapes are still pretty cheap, but the drives are absurd.
I really want to use tape for backups, but holy expensive. Those tape drives are thousands of dollars.
I’m going to cast another vote for a reverse proxy, such as NginxProxyManager. It’s really easy to set everything up, and they’re usually very easy to run in Docker/Podman.
One thing to note: if you end up with a domain with mandatory HSTS, you’ll have to use DNS-based certificate generation rather than HTTP based, since unencrypted HTTP is blocked (chicken/egg problem to get HTTPS working). It’s not hard, but you have to be aware of that limitation.
Meanwhile, ISPs actively sell every single byte about you and your browsing habits that they can.
Lmao, people are just adopting HTTPS in the last 5 years? This article is trash.
No, but you can at least choose who you distrust the least with a VPN.
deleted by creator