I disagree. I think if the company wants to sell its customers’ data, they need to first submit to installation of cameras in every room of each member of the board of directors private domicles, live streamed ala Fishtank style on the internet. I think that’s a fair trade.

Yeah pimeyes absolutely needs to be shut down and laws need to be in place to protect private citizens from having their information sharable and searchable without their explicit consent. “Publicly available information” is always the line people use to defend these services. I’m arguing that our modern capabilities needs to be adjusted for. Things shouldn’t be so publicly accessable in the first place and personal data aggregation should be a much more vetted and potentially licensed business. Can we talk about what other purpose these facial recognition databases serve other than to stalk, expose, or extort people? If they required proof of identity and only allowed searches of your own face then I could understand the value.

You’re right. I always thought Peertube was another YouTube frontend.

I think the only real path forward is for a developer to figure out a way to decentralize video hosting. The future of the free internet is decentralization. We’ve seen which way the wind blows when platforms are centralized.

Consumer storage is abundant and cheap as hell. There will need to be incentives for: 1. Creators 2. Node hosters 3. Moderators. Potentially AI could do the heavy lifting on number 3. Figuring out a way to avoid ad based revenue would be another hurdle. In an ideal world, creators would accept that only 10% of their viewers would contribute to them monetarily (through patreon or donations) and use the platform for its freedom from corpo bullshit.

But as much as the Foss and decentralized crowd has been growing, I think we’re still a long way out from average people becoming fed up enough to care. I still get eye rolls from everybody I know IRL when I try to get them to open an invidious link.

I’m in the same boat as you in that I need Instagram for work. My approach is to create a separate work profile in GrapheneOS. I handle all of my mobile work apps in that profile using a separate VPN from all other profiles. I don’t expect to be completely free from tracking in this profile, but for my threat model I don’t mind too much. Any web queries I make in this profile I keep strictly work related.

People arguing you just shouldn’t use Instagram need to remember Instagram is a tool just like Windows, Adobe, etc. Sometimes you need a specific tool to do your job and I believe as long as you containerize that aspect of your life then you’ll be fine.

Just don’t use your work Instagram for personal stuff, not even browsing memes.

I’m familiar with Proxmox, virtualbox, and KVM/KVM manager.

If I want to set up a PC to virtualize multiple operating systems, but with the feel of a multiboot system, what virtualization software would you suggest?

My goal is for the closest I can get to a multiboot system (windows, Debian, fedora) but virtualized so I can make snapshots. It should feel like I’m on baremetal when inside the VM.

Virtualbox is clunky with lots of pesky UI cluttering the screen and Proxmox doesn’t seem great for this use case.

I had a few episodes saved offline in my apple podcast app but it appears you are correct. Surely there’s an archive somewhere?

I operate an invidious instance. Google has really cracked down the past two weeks on YouTube front ends. Its extremely frustrating.

Invidious devs are finalizing a workaround so hopefully things will be working again in the next week or two.

Damn. You’re correct. My brain saw instance and ignored the rest.

Looking in the NewPipe settings I found a place to enter instances and there is one already configured. I guess I was proxied the whole time without realizing. Thanks for the clarification btw.

I often wish all services could provide an opt out “I’m aware no 2fa is risky but I really don’t give a damn about this account so fuck off with the constant email verifications”. Or if companies insist on forcing 2fa, at least support hardware keys. Don’t even get me started about banks…

If iMessages are e2ee and you aren’t using iCloud, is there any evidence your messages aren’t private? As far as I’m aware iMessage is considered a very secure messaging channel. It seems like most people distrust it due to the Apple affiliation. Not that I blame them, I feel the same about Google.

Just for the sake of getting used to / transitioning to a single gos phone, does it make sense to use the insecure phone as a hotspot and utilize the pixel without a sim (so data only device). I would be using e2e encrypted apps for texts and calls so this makes sense in my head.

Appreciate the info.

It seems absurd to me that a third party online service is required for a hardware key to work in the first place. I figured it would be authenticating strictly between the locked service and the user.

Most helpful comment. Thank you. I’m heavily considering carrying two phones. My biggest hurdle is the Yubikey at this point because it locks me out of my password manager and most of my more important apps.

You mention using the usb-c connection. I tried that but it doesn’t seem to register. I guess I just need to research some more.

Thanks for giving me some hope!

When I initiate Yubikey auth via NFC in Bitwarden, it takes me to a Yubikey demo page. From what I’m reading online, for some reason I need to install google play for the key to work correctly.

Also seeing lots of chatter on the forums that a recent gos update broke most banking apps and they’re working on a fix.

Thank you for the info about the keyboard. I’ll check that one out.

I really like mostly everything about GrapheneOS on paper. The UI, user profiles, security features. It’s the inability to use it in a practical setting that’s frustrating me. Yet I see many people claiming they switched to GrapheneOS a month or a year ago and love it. So there’s got to be a solution. I can’t imagine those individuals installed gos and it was smooth sailing since day 1.

Oh this is pretty cool.

For my own understanding, what potential dangers are there using a Yubikey as opposed to an open source key?

I always wonder what legal risks hosting something like this comes with. If you host a public server and uploads are client side encrypted, seems like it would be a magnet for illegal file transfer and CSAM, no?