Freedom isn’t free, its a hefty fuckin fee …

What child has a VPN ?

Dont buy them for them. Kids have no money unless you give it to them

Well i have the rp as i only want one port exposed. I have separate networks per service too to isolate things. Only the things that need to talk to each other can.

My stuff is only accessible on the lan and via the vpn and even then only certain ips have access to certain things.

In your case it might be different , but generally a reverse proxy is better as you can have a single point of access to secure and you are not exposing all of your ports to the host or the internet.

Copies of important documents or photos you cant afford to lose. Then leave it in a safe place. Encrypt it if you like.

You can use a ddns such as duckdns or host on github pages with jekyll or something

Debian on the host and everything else in containers

I have the arr stack connected to gluetun doing its thing and then wireguard on the host. I only expose my reverse proxy to the host and can connect to the services through that.

Note the networks below, vpn_net allows it to talk to the gluetun network which has the other stuff. The gluetun and arr stuff are in a separate compose file that defines the network. Then the non vpn stuff connects to that network when it comes up

nginx: 
    image: nginx:1.25.4-alpine-slim
    container_name: nginx
    restart: always
    volumes:
       - /etc/letsencrypt/:/etc/letsencrypt/
       - ./nginx/nginx.conf:/etc/nginx/nginx
       - ./nginx/conf/:/etc/nginx/conf.d/:ro
       - ./nginx/htpasswd:/etc/apache2/.htpasswd:ro
       -  /var/log/nginx:/var/log/nginx/
       - ./www/html/:/var/www/html/:ro
       - ./content/Movies:/var/www/media/Movies:ro
       - ./content/Shows:/var/www/media/Shows:ro
    ports:
       - 443:443
    security_opt:
      - no-new-privileges
    networks:
      - reverse-proxy_service1
      - reverse-proxy_serviceN
      - vpn-stack_vpn-net
    depends_on:
      - service1
      - serviceN

Cunt being a cunt

I do monthly backups with cron and tar and syncthing for my containers.

I do quarterly backups of my server (14TB) to external USB HDDs. This is done via a script that mounts the drives, runs rsync to copy, then unmounts the drives again and emails me when it is done. I dont bother encrypting them as it ia mainly just media.

Transformers… Robots in disguise

Good to see more software offering an fdroid option.

Use a sim in a portable hostpot or a second dumb phone powered off

Looks great! Well done

Financially they use trusts and LLCs to shield their assets so they are not in their names or directly owned.

They can afford to hire specialists

If i dont know the number i dont answer, if they ring again and its spam i block the number. I also only answer if its from my country.

“less”. If its a small file i use cat. If i want the top I use “head” or "tail’ for the bottom. For a specific string i use “grep”

Fartsniffer 🤣

They will probably just show message to Swedish ip addresses and state that they cannt provide you with the binary as you are using a Swedish ip.

Something very clear to say use a VPN 😉

If you trust the initial install then unless there is a warning about the signing key you are good. Only signal devs can sign the builds so if you installed the play store version then updated with their standalone apk or fdroid version then it should just work as the signing key is the same.

Guardian project are just publishing signals apk files as the signature matches.