Zip it, Scotty

You should publish a guide once you do it. That sounds pretty interesting.

I’ve been using it for many months and I like it a lot. Only one of my banking apps doesn’t work.

Currently my main issue is that webauthn stopped working after an update. And the community support hasn’t been helpful.

I wish they had better documentation in general.

I disagree. I think if the company wants to sell its customers’ data, they need to first submit to installation of cameras in every room of each member of the board of directors private domicles, live streamed ala Fishtank style on the internet. I think that’s a fair trade.

Yeah pimeyes absolutely needs to be shut down and laws need to be in place to protect private citizens from having their information sharable and searchable without their explicit consent. “Publicly available information” is always the line people use to defend these services. I’m arguing that our modern capabilities needs to be adjusted for. Things shouldn’t be so publicly accessable in the first place and personal data aggregation should be a much more vetted and potentially licensed business. Can we talk about what other purpose these facial recognition databases serve other than to stalk, expose, or extort people? If they required proof of identity and only allowed searches of your own face then I could understand the value.

You’re right. I always thought Peertube was another YouTube frontend.

I think the only real path forward is for a developer to figure out a way to decentralize video hosting. The future of the free internet is decentralization. We’ve seen which way the wind blows when platforms are centralized.

Consumer storage is abundant and cheap as hell. There will need to be incentives for: 1. Creators 2. Node hosters 3. Moderators. Potentially AI could do the heavy lifting on number 3. Figuring out a way to avoid ad based revenue would be another hurdle. In an ideal world, creators would accept that only 10% of their viewers would contribute to them monetarily (through patreon or donations) and use the platform for its freedom from corpo bullshit.

But as much as the Foss and decentralized crowd has been growing, I think we’re still a long way out from average people becoming fed up enough to care. I still get eye rolls from everybody I know IRL when I try to get them to open an invidious link.

I’m in the same boat as you in that I need Instagram for work. My approach is to create a separate work profile in GrapheneOS. I handle all of my mobile work apps in that profile using a separate VPN from all other profiles. I don’t expect to be completely free from tracking in this profile, but for my threat model I don’t mind too much. Any web queries I make in this profile I keep strictly work related.

People arguing you just shouldn’t use Instagram need to remember Instagram is a tool just like Windows, Adobe, etc. Sometimes you need a specific tool to do your job and I believe as long as you containerize that aspect of your life then you’ll be fine.

Just don’t use your work Instagram for personal stuff, not even browsing memes.

I’m familiar with Proxmox, virtualbox, and KVM/KVM manager.

If I want to set up a PC to virtualize multiple operating systems, but with the feel of a multiboot system, what virtualization software would you suggest?

My goal is for the closest I can get to a multiboot system (windows, Debian, fedora) but virtualized so I can make snapshots. It should feel like I’m on baremetal when inside the VM.

Virtualbox is clunky with lots of pesky UI cluttering the screen and Proxmox doesn’t seem great for this use case.

I had a few episodes saved offline in my apple podcast app but it appears you are correct. Surely there’s an archive somewhere?

In most cases it’s just too annoying of a process to get on the list. But I understand why the invidious team prefers to vet instances rather then have something like a beacon system that auto populates all consenting instances.

Some other good instances:

• https://iv.nowhere.moe
• https://yt.dupindustries.com
• https://invidious.reallyaweso.me
• https://inv.tux.pizza

I operate an invidious instance. Google has really cracked down the past two weeks on YouTube front ends. Its extremely frustrating.

Invidious devs are finalizing a workaround so hopefully things will be working again in the next week or two.

Damn. You’re correct. My brain saw instance and ignored the rest.

Looking in the NewPipe settings I found a place to enter instances and there is one already configured. I guess I was proxied the whole time without realizing. Thanks for the clarification btw.

I often wish all services could provide an opt out “I’m aware no 2fa is risky but I really don’t give a damn about this account so fuck off with the constant email verifications”. Or if companies insist on forcing 2fa, at least support hardware keys. Don’t even get me started about banks…

Good point. I’m aware of the icloud method of imessage cracking, but I often forget that I’m not always the weakest link; it’s up to the people around you as well.

I eventually managed to get the yubikey to work, although it is very buggy and the steps to get it working are unacceptable IMO for the “most secure phone OS”. Hardware keys should be a major priority and should simply work just as easily as using passwords, but it seems to be a stale open feature request for a few years. Luckily for me, once bitwarden is authenticated with 2fa I don’t need my hardware key unless I reinstall it. So that’s one major hurdle behind me. Another plus is that while you need sandboxed google services to utilize hardware key auth, they don’t need network permissions to work.

If iMessages are e2ee and you aren’t using iCloud, is there any evidence your messages aren’t private? As far as I’m aware iMessage is considered a very secure messaging channel. It seems like most people distrust it due to the Apple affiliation. Not that I blame them, I feel the same about Google.

Just for the sake of getting used to / transitioning to a single gos phone, does it make sense to use the insecure phone as a hotspot and utilize the pixel without a sim (so data only device). I would be using e2e encrypted apps for texts and calls so this makes sense in my head.