Remember, Finland has shown us that homelessness is a policy choice.

Understood, thanks for the response.

I’ll whip up a container later today and comment back here my experience.

Not the person who commented, but:

Wanderer on the the other hand, seems to be designed as a planning and tracking app for single trips. Correct me if I am wrong.

You aren’t wrong, but I’m going to try reitti for single tracks anyway, because 1) wanderer has introduced some serious breaking changes that prevent me from upgrading and 2) I think reitti would fit my use case of sort of hybrid between GPS always on and single tracks.

I’m a bit of a GPS nerdin the sense that I collect my trips. Car, hike, walk, plane, ferry… I just think it’s neat so see where i’ve traveled.

Maybe you should clarify who you mean by “they”.

But the mail flow goes into your gmail inbox and is analyzed when it it lands. How does this prevent google from reading your mail received by the gmail account?

Also, my comment about headers still stands: you can pull the email from a pop or IMAP mailbox, host it wherever you want, but the headers will always show how the mail was routed, dmarc, dkim, etc. unless you rewrite the headers in this process.

Edit: just FYI, pop and imap are not options for protonmail, unfortunately. They only allow their own client and their own “bridge”.

So just an export/import? How many email services even offer pop anymore? Even outlook dropped pop inf favour of mapi and IMAP a long time ago.

When you transfer email hosts, they won’t know a thing about your previous inbox - why should they be privy to that?

Because the headers will have all the transport and delivery metadata from your old inbox? I don’t see how this obscures any of that.

I made the right decision to get two HP elitedesk g4 minis instead of one, and to give them both plenty of ram (before the shortage).

I temporarily “lost” one of them after a power outage revealed that the CMOS battery was dead in one. It’s back up and running, but it was nice to be able to simply import the containers on the remaining good unit while I fixed it up.

Test your backups! It’ll save you time and headache, plus you can feel superior to others.

I won’t comment on the when of it, you have a lot of good answers here already.

But I’d like to add that “performant” is a much lower bar than you think. Gigabit has been fine for my nearly 25 containers to use NFS as their storage, video streaming included.

This is a self-hosted sub. You are going to see a lot of anti-establishment, anti-corporation stuff here because it’s a core principle and/or concern of many users looking into self-hosting. That tends to come with attached behaviors like you described.

While I would tend to agree that it’s unfortunate that you have to wade through a lot of folks knee-jerk blanket commenting on certain topics, and that those screeching comments are annoying, Lemmy is generally a big tent, so you will need to accept their presence, the same way we have to just ignore all the AI Slop software presented here.

The price of freedom is accepting the screechers.

I saw your other response.

There is no evidence of national selectivity or “racism” involved here, you seem to be interpreting this yourself. The fact that this is about an EU-related fork is a coincidence.

It is the highjacking of the license to restrict the implied spirit of freedom is what is at issue here.

You aren’t concerned about a severity 10 vuln? Those are found in software with exceptionally bad qa and abandonware. That should give you pause about how hard n8n is “going fast and breaking things”.

Racism?

In the days of 3G, this was possible. However, LTE and 5G networks will not allow uncertified modems to connect. If you’ve ever been through getting a Mikrotik LTE router on a North American network, you’ll recognize that pain.

Using Mobian (very real, BTW), or PostmarketOS are your best bets at the moment. Easier to reverse-engineer drivers than to go through the hoops of certification.

We’ve had octo-core CPUs in phones for 13 years…

Implement what you fully understand first. Then figure out the why and how of the next piece for security.

“Hardened kernel with stack protection” doesn’t mean much if you can’t explain why it’s in place, or how it works.

I’ve been in IT 25 years and security for 15 years, and the number one failure of implemented security is doing it because someone said you need it.

Yes.

For me, the idea is tonsync bookmarks between devices.

Yeah, I agree. Not knowing what ports might be open on a single egress shouldn’t happen.

This would encapsulate something like enforced Transport encryption.

Yes, this is what we’re discussing… Are you a bot? Or are you really not following the conversation?

Most selfhosted projects do not store such private data.

That is patently not true, in the self-hosted space or otherwise.

If you want to take some kind of the security stance on pii or other personal data, you may want to take a look at the app’s workflow first before making declarations of “inadequate security”. There are other considerations than simply slapping a self-signed cert on data in transit (or at rest, for that matter). URL encoding, secrets management, api structure, etc.

If you want to architect the security of your data using this app, it is much easier to simply encapsulate or encrypt the transport yourself. A VPN would be fine. An authentication proxy would be another.

Ultimately, your comments on security here need more and better context to meet a reasonable threshold of confronting the dev on it.