The future of selfhosted services is going to be... Android?
Wait, what?
Think about it. At some point everyone has had an old phone lying around. They are designed to be constantly connected, constantly on... and even have a battery and potentially still a SIM card to survive power outages.
We just need to make it easy to create APK packaged servers that can avoid battery-optimization kills and automatically configure an outbound tunnel like ngrok, zerotrust, etc...
The goal: hosting services like #nextcloud, #syncthing, #mastodon!? should be as easy as installing an APK and leaving an old phone connected to a spare charger / outlet.
It would be tempting to have an optimized ROM, but if self-hosting is meant to become more commonplace, installing an APK should be all that's needed. #Android can do SSH, VPN and other tunnels without the need for root, so there should be no problem in using tunnels to publicly expose a phone/server in a secure manner.
In regards to the suitability of home-grade broadband, I believe that it should not be a huge problem at least in Europe where home connections are most often unmetered: "At the end of June 2021, 70.2% of EU homes were passed by either FTTP or cable DOCSIS
3.1 networks, i.e. those technologies currently capable of supporting gigabit speeds."
PS. syncthing actually already has an APK and is easy to use. Although I had to sort out some battery optimization stuff, it's a good example of what should become much more commonplace.
That’s definitely a good call. Before I even had a NAS, I’d just throw some movies and stuff on my macbook when I had to travel. Problem is that when you’re loading it up, you think you know what you’ll want to watch and then later you just wish you had different choices.
I was going to host pihole on an old android until I noticed it getting quite warm while continuously connected to power. Realised I didn’t know the lifespan of the battery and didn’t want it tp start a fire.
Blocking variations.brave.com which is used for A/B testing could potentially break Brave's functionalities. For me did Brave's "forgetful browsing" feature broke which seems to be disabled by default if you block this domain.
So if you may change some configs, you mayyy be fingerprintable.
You are fingerprintable either way unless you go all out. Going full on Arkenfox/Librewolf mode (with all settings enabled that decrease convenience) you can at most fool naive fingerprinting. For the more advanced one you need Tor.
And even for naive fingerprinting, unless you use Tor or a VPN (which you would have to trust) your IP alone + the fact that you use FF (which a few % of people worldwide do) along with some other basic info about your PC will make you very unique.
"Experts have been selected to create a multidisciplinary volume with a thematic approach to the vast subject, tackling administration, army, economy, law, mobility, religion (local and imperial religions and Christianity), social status, and urbanism. They situate the phenomena of Latinization, literacy, bi-, and multilingualism within local and broader social developments and draw together materials and arguments that have not before been coordinated in a single volume."
"This interdisciplinary study analyses the connections between literary Modernism and right-wing ideology. Moreover, it is the first academic study to explore the reception of these Modernist authors by today's far right, seeking to understand in what ways they use strategic readings of Modernist texts to legitimise right-wing ideology."
Got reminded of this while reading about ProtonMail. The reason I haven't gotten into proper #piracy is that I don't have a VPN for torrenting, and the reason I don't have a VPN is that I don't #torrent. So it would be nice if I got a good VPN while #degoogling myself.
Will ProtonVPN rat me out to Comcast? I know some VPNs don't hide what you're downloading from your ISP, for reasons I don't fully understand.
I’m not the smartest bowl in the… bowl drawer, but wouldn’t removing port forwarding just affect speed? Or would it stop torentting with Mullvad entirely? I just topped my account off lol
The 3 VPNs I’d recommend for privacy are Proton, AirVPN, and Mullvad.
When it comes to torrenting, AirVPN is probably the best. It has port forwarding, a no logging policy, and general trust in the community. Proton is similar, but it’s port forwarding is not as good as AirVPN’s version.
When it comes to privacy, Mullvad is the best imo. You can pay in cash. They removed port forwarding recently, but they’re in a privacy oriented country, and when authorities raided them, they had none of the users’ data (the raid being the reason for port forwarding to disappear).
You don’t need port forwarding to torrent, but without it, you may have slower speeds and trouble downloading older/rarer torrents (it effects the number of seeders/peers you can connect to). I’ve been torrenting without port forwarding and have yet to run into a torrent I can’t download in a reasonable time. Highly overrated imo, but incredibly important if you want to seed (I’ve still had no problems, there might be a couple leeches, but the vast majority can be seeded to). Considering you have Comcast, however, I’m guessing you have a data cap, and with that seeding becomes rather difficult. If you really want to pass it on with the data cap, than a seedbox would be the easiest way. Without port forwarding or a seedbox, and especially with a datacap without either of those, you won’t be able to use private trackers (personally I don’t recommend them unless you can’t find content anywhere else, my advice running counter to many in the piracy community).
You’re not going wrong with any of those 3 VPNs. Mullvad for privacy (torrents work just fine, don’t believe the people convincing you otherwise, and if you’re concerned with seeding, then a seedbox will take care of uploading for you). AirVPN if you want a good privacy reputation and port forwarding, or Proton if you prefer them (their privacy is fine, their port forwarding is inferior).
I’ll also mention Windscribe, which is not as good as the above three, and I don’t know as much about. But it’s the only other one I can think of that might be worth it, though I strongly recommend one of the above 3 first.
Stay away from (most VPNS pay for advertising or astroturf, so always be careful when selecting):
PIA (yes, they were proven not to log… And then bought out by Kape (former name Crossrider), a spyware company. The parent company is not privacy oriented, no matter how much PIA simps want you to believe otherwise. Look into it yourself. I loved PIA before they were bought out!)
NordVPN (lol, just stay away, trust me. You can always search for previous NordVPN incidents.).
That’s true. I’m unemployed, I’d probably take a job working for him. Doubt it would last long because I have a dumb mouth that can’t stay shut when it should
I'm in a reading slump! I had a long weekend and couldn't get any book to "catch." I need ideas! Something that grabs the reader from paragraph one but isn't a thriller. @bookstodon
and requires a kernel level always on spy driver to watch the Chrome process to prevent tampering with it?
That would be one method, yeah. The attester supplies a kernel driver and uses that to generate the auth tokens communicating with it via some protocol or via scanning memory.
The driver is just chilling in the machine, perhaps even evasive to lsmod, such that the only way to detect it is to have your own driver monitoring for some specific signal before the attestor driver gets installed, and then using that signal to track its installation.
There’s always a way. But, as you say, with phones it’s not as simple.
GrapheneOS or some other ROM on an unlocked Android phone is probably going to be the only way of bypassing it.
@ginsterbusch@theautisticcoach@actuallyautistic ok sorry, it seems that I was far from understanding your point in your thread!
I'm not sure I still fully understand the difference, but things are clearer to me now. English isn't my native language either :)