Those share buttons are trackers themselves. So it’s not about “supporting” those websites by publishing content to them, it’s about undermining the privacy of your readers and doing the opposite of what you preach, and “supporting” those websites by feeding them much more valuable user data. As another comment said, just put a button to copy the permalink and let them paste themselves if they want to share.

As for you sharing a link on the mainstream social media platforms yourself, I’d actually encourage that. Cory Doctorow auto-publishes links (not content) to his articles on as many social media platforms as he can (sorry, can’t find the article in which he describes it). The point is that he still retains control over his content by hosting it himself, he controls the (lack of) trackers and ads, and gaining traffic from these platforms is still to his and his potential readers benefit. Bending your rules a little to reach more people and maybe even convert them to be more privacy-aware is fine.

deleted by creator

For email migration / Proton:

• Proton has an import tool but I think it’s still for paid customers only. You could pay for a 1 month subscription and do your thing.
• The import tool has labels matching, pay attention to them if you want to migrate them too. If you have multiple addresses, create a label for each when importing so you’ll have an easy time identifying/filtering later.
• I would encourage a paid Proton subscription if you can afford it, for its extra features. I.e. unlimited folders / labels; I also use the Export tool from time to time to backup all Proton email messages offline.
• When changing your email address for accounts, you need to make sure all are accounted for in your password manager, and use a status for each of them (ie To migrate, Migrated, Cannot migrate / To delete, Cannot migrate / create new). This is going to be a tedious process, but it will be rewarding at the end.
• Don’t leave your accounts that you cannot migrate in the air (ie they don’t have a change email option), even if they’re not important. Delete them. You might have to contact support on some of them to try to change email or request deletion. Consider this a spring cleaning and make the efort.
• When deleting accounts, use the GDPR option if possible / you’re in the EU.
• Keep your old Gmail around for some time to catch any accounts linked to it that you might have missed. As somebody else mentioned, there might be some for which you used Gmail login and those are easy to miss, especially if they don’t send any emails. You won’t be able to recover them without access to your Google account.
• I wouldn’t bother with forwarding emails (why let Google know of your new identity?). Delete emails already imported. Use the import tool multiple times to import any new ones.
• When you do the email address migration, even if you didn’t have multiple email addresses in Gmail, this could be a good time to separate online identities and have multiple addresses and/or aliases in Proton (ie 1. for personal/official/utilities accounts - your real identity, 2. shopping - still real identity, but these might be spammier, 3. rest/disposable/not tied to your real info/no payment enrolled; even more, depending on your use case). Any Proton paid plan allows you to have multiple addresses under the same login (10 for Mail Plus for example).
• Personal opinion: Proton is awesome. Every year, even on the cheapest Mail Plus plan, Proton awards a 1GB Storage Bonus to all paying users.
• The free plan has a limit of only 1 custom filter (they used to limit them for Mail Plus too, some time ago). To bypass that (Proton even encourages it because it’s more efficient for their servers), learn Sieve Filters, and that way you can group multiple filters into one sieve (or have all of them in one sieve, if on the free plan). You can use comments in sieve filters.
• Proton supports the “+” in the address, just like Gmail does. It’s a quick way of creating aliases.
• The Proton password manager also has some feature of creating aliases (for paid plans) - they call them “hide-my-email aliases”; but it’s limited for the lower tier plans (10 for Mail Plus), and maybe you wouldn’t want to bother with it since you won’t be using it as your actual password manager.
• Something I learned the hard way, don’t use a short 3-4 characters username / email address (probably hard to find any available anymore, as Proton exists for some time); it will attract more spam from spammers randomly generating email addresses / generating them from a dictionary.

For Youtube, on Android:

• I use Youtube in Brave browser, which for the time being can still block the ads, and also keeps playing in the background.
• When I want to avoid Youtube, for Youtube links, I use UntrackMe (F-Droid), which (among others) redirects to an Invidious instance opened in the browser. Initially I installed it for Twitter, but Nitter doesn’t work anymore.

Cloud storage:

• I’d go the self hosted route - NextCloud + DAVx5 (contacts sync), and VPN to access it when out of home (if needed; otherwise, set it to sync over unmetered WiFi connections only, and mark your home WiFi as unmetered). But this is me - I could probably safely use Proton Drive, but wouldn’t have the same flexibility and would force me to a higher cost plan. For you, this means entering homelab territory and it gets complicated. But IF you do, there are other self-hosting apps you could benefit from (ie PiHole, Jellyfin, Home Assistant if you’re into home automation, etc).

2FA app:

• Never tried Authy, but I use Aegis and it’s good. Open source, it has backup, export, custom icons for entries, (bulk) import via QR, etc.

Video player:

• You could try VLC if you need subtitles support.

I second the idea of a VPN instead of directly exposing devices or software to the internet. Requires more work and learning but it’s more secure. I would argue that well-known VPNs are more scrutinized and pentested than any camera software ever.

A hash has a fixed length, including MD5. There’s no reason to cap password (input) Iength. You can hash the whole bible and still get the same length hash. So either they don’t even hash it, they’re idiots, or they try to be unnecessarily cautious to avoid some other limit / overflow, like POST max size (which would still be counted in at least KB, not several characters). The limit on what special characters you can use is also highly suspicious - that’s not how you deal with injections / escaping your inputs.

No, logins should be harder in order to be secure. Hence the addition of 2FA (which is also incompatible with your proposal).

As developers, we strive to make things more secure, not less, and unfortunately, good security always comes with the trade-off of less convenience for the user (larger entropy passwords, session expiration, captchas, etc).

Now, of course, it depends on how sensible the data in that account is. I wouldn’t want this for my email account, for example, or online password manager, which are the entry gates to all my other accounts. The Kagi search engine offers the possibility to login on another device via a session URL which you can copy-paste. And this is fine, if the site / app clearly states the dangers, implemented it securely, tracks and lists the sessions and allows you to invalidate a session for all devices, and you are fine with potentially disclosing the data for that account (forgetting to log out, or disclose the session URL somewhere) - which is not much, as they don’t log the searches, only the daily counts. And their use-case makes sense, people aren’t used to authenticating in order to search something on the internet.

So, this should be an optional feature offering from the website / app, not built-in in the browser which would make it trivial to be abused by anyone.

They already have a shitty job, no need to make them clean dog poop, shaworma and ice-cream off the pavement too.

Instead of my ID, I submitted a picture of dolphins and the text “So long and thanks for all the fish!”. And never came back.

Is Keepass there? Good. Upvote.

Golf Club Wasteland for chill.

Hollow Knight OST by Christopher Larkin is epic.

Hotline Miami and Ruiner for a workout session.

Of course, I highly recommend “listening” to them while playing the games themselves.

Turris Omnia. Powerful hardware, auto updates, config backup / restore (with anti-bricking feature), SIM slot, etc

Hmm. I unmount mine to reduce noise. Didn’t think about endurance though, curious to see opinions too.

If you define “stupid” as “lacking critical thinking skills”, then I agree.

As someone reading this thread, I’m stuck in an endless loop.

Where do you keep your KeepAss master password?

In my head. If you use a long passphrase, it’s easy to remember, easy to type, and secure.

The pregenerated book of codes is used since ancient times and it is interesting, but I would much prefer to educate people to use passphases instead.

And everybody has a phone with them at all times, you can have Keepass on it. It doesn’t use the cloud, it’s local, and if you need to sync the password database file automatically with your PC it’s safe to keep it in the cloud, it’s encrypted and only decrypted locally. But I myself use a self-hosted instance of Nextcloud.

Holy shit, I stand corrected, those graphs speak for themselves. Bookmarked for future stats.

LE: Well, there’s also the section about average age of failure in their newest report: 2 years and 7 months for HDDs, 14 months for SSDs.

True, but it depends from person to person and it counts if you have a small or big drive, how often you watch and rotate your media, how large the media is. If you only have a 1TB SSD, and often download and watch blue-ray quality, 20 movies will fill it. It won’t be long until the same blocks get erased, no matter how much the SSDs firmware tries to spread the usage and avoid reusing the same blocks.

Anyway, my point is, aside from noise and lower power consumption advantages, I wouldn’t use SSDs for a NAS, I regard them as consumables. Speed isn’t really an issue in HDDs.

I use Hard Disk Sentinel, it’s not free, but it also monitors drives in Windows so you have an early warning at the first sign of issues. Also logs historic data (writes, temperature, etc) and displays them as graphs.

Failure rates for sdd are better than hdd

I’m curious on where did you find this. Maybe they have lower DOA rates and decreased chances to fail in the first year, but SSDs have a limited usage lifetime / limited writes, so even if they don’t fail quickly, they wear out over time and at first they have degraded performance, but finally succumb in 5 years or less, even when lightly used (as in as OS drives).

To avoid DOA / first year issues with HDDs, just have the patience to fully scan them before using with a good disk testing app.