If they could be using web UI (I’m not sure how a client would work with auth like that) then it kind of depends on how much hassle they can live with and how secure you want to be

Simplest would be to use https://doc.traefik.io/traefik/reference/routing-configuration/http/middlewares/basicauth/
You set up username and password and share those with the user. But it can be brute-forced

Something more secure but also a bit more demanding would be some kind of email otp
https://docs.goauthentik.io/add-secure-apps/flows-stages/stages/authenticator_email/
Set up authentik to send time-limited link to their email that well let them through. But they would have to authenticate every time they access

Oh, nice find. I’m saving that

Well, now I see that I’m going to move to have sshfs instead. There are issues with spamming sftp connections for all the small files. But in general I’ve learned that really “done is better than perfect”. Just make it work, observe, iterate

Personally I don’t agree that MD is bad but I’ve seen some opinions that Org Mode is better

In the past I migrated my notes from Obsidian to Logseq. Both have a bit different approach, but basically the move was to modify dir/file.md to be dir__file.md

I set up Nextcloud with RPi4 based RAID NAS. Via sftp as apparently it is not really that much slower and NFS felt weird to me

I bet my answer is going to be the least interesting one but let’s represent casuals too ;)

Well, for me the article was mainly about how abandoning public offer has been making things worse. But maybe it’s an issue with my eyes

I know that in Threadiverse 2 weeks is a very long time but I just checked out CanvasBlocker and for a moment I had a similar question

On the page of CanvasBlocker addon there is a link to https://browserleaks.com/canvas.
And once I installed the addon, the page started saying Uniqueness: 100% (The signature is unique to our database) which sounds bad. But if you refresh the page, you can see that the Signature changes everytime. And I think this is the core, everytime a page tries to fingerprint my canvas, it will get a different signature. Every time I open a page, from canvas vector, I will look like a different viewer

We are not very tech savy to set things up

I think, in such case, you should rather look for a service hosted for you

For example
https://elest.io/open-source/nextcloud
https://www.hetzner.com/storage/storage-share/

Can we just buy a big hard drive and somehow hook it to our wifi? This is consider self hosted right? Does that mean medias will only get synced when we are within the house’s wifi?

Yes, it’s called a NAS. Correct. Correct

The thread might get locked here under “no support” rule, self-hosting comms will be a better fit
https://piefed.social/f/selfhost

Edit: and if you want to dive into self-hosting, I guess, check out yunohost and LibrePhotos. Immich is also popular one

I’ll just put those here for a sec

https://piefed.zip/c/fuck_ai/p/1062151/chatbots-make-terrible-doctors-new-study-finds
https://piefed.zip/c/fuck_ai/p/1438004/show-us-the-evidence-for-the-value-of-medical-ai
https://www.acpjournals.org/doi/10.7326/ANNALS-25-02772

🤨 just a few days ago - maybe up to two weeks, there was a post somewhere here linking to article that said teachers are noticing positive effects on scores. It might have been Australia, though

For that I use https://f-droid.org/packages/com.akylas.aard2
The slob dumps require a bit of hunting but other than that it works well for me

It’s kind of refreshing to have self defense as an option when games of this genre usually rely on feeling defenseless to instill terror.

Sorry, I didn’t get it from the description. What would you say is the genre of this game? Doesn’t sound like walking simulator

building within certain (spatial?) limitations

Cliff Empire might interest you but I don’t remember if it had livability mechanic

solving problems or something

First Frostpunk

within certain (spatial?) limitations (…) a bit more focus on individual buildings and livability

Surviving Mars?

Not a city builder, but maybe Oxygen not Included would be your match?

Somehow I’ve completely stopped using video formats. I feel those take more time to even get to the point and then one never knows of there’s some value after the point

Thanks 🙂 I added all 3 to my RSS, I’ll see how they flow

Haven’t heard of selfh.st before. Looks nice

This is dangerous

Hence my point about why bother at all. Without full encryption one gets leaks. With full encryption some kind of secret is required. Either password (hence that need of keyboard in earlier comment) or a key, etc

In order to not need a secret during boot, critical parts have to be exposed

Theoretically one could also put logs and cache on encrypted volumes. Maybe that could be some solution. I have in the past had /var/logs on separate partition, so it didn’t make /run out of space. Linux had no issue with that. But that still leaves kernel and OS exposed

fully encrypted drive and this chain’s existence makes it easier to know that no one has tampered with my system

The comment I responded to mentioned:

needing to enter a password before the OS boots is a decision that makes Linux kind of awkward to use disk encryption with

I don’t think you are talking about the same setup and vectors. Their point was to not have fully encrypted drive, so it boots without a prompt

OS encryption isn’t that important (verification is)

I don’t think I’ve heard about some boot-time checksum verification of root partition. Doesn’t mean it does not exist, just that I can’t help here

protecting user data

My point is: if OS is not encrypted, it can be modified. And that verification idea, if is not stored under some encryption, could also be changed. Which means that by the time you put in your password to decrypt your home, you might be already running system that will nullify the protection. Encrypting only your data will only protect you in scenarios when someone snatches your device turned off

If you want the OS to boot before it decrypts your drive, why encrypt it in the first place? Honest question, not an attack. For OS to boot without any password it needs to be booting from unencrypted drive. So the attacker could just put their keyloggers on that drive

read only OS partition to boot and then encrypts your user data partition, can I do that with Linux?

Yes. Just encrypt /home partition only