shrugal

shrugal , 3 days ago

Can't talk for the free tier, but my Usenet account comes bundled with a paid Privado account, and that's working ok so far. The connections have been reliable, fast, and low latency.

My main issue has been that it doesn't support port forwarding. Also, some GeoIP services locate many of their servers in the Netherlands, instead of where Privado says they are. Idk who's right, but it's definitely a problem if you want to pick a specific location.

shrugal , 3 days ago

UsenetServer, and I used this discount link.

shrugal , 1 day ago

Maybe take a look at Appflowy. It's another Notion clone like Anytype, but it's much easier to selfhost.

shrugal , 3 days ago (edited 3 days ago)

I just set up a Vouch-Proxy for this yesterday. It uses the nginx auth_request directive to authenticate users with an SSO server, and then stores the token in a domain-wide cookie, so you're logged in across all subdomains. Works pretty well so far, you don't even notice it when you're logged in to your SSO provider.

But you do have to tell the proxy where you want to redirect a request somehow, either by subdomain (illegal.yourdomain.com) or port (yourdomain.com:8787) or path (yourdomain.com/illegal). I'm not sure if it works with raw IPs as hosts, but you can add additional restrictions like only allowing local client IPs.

In my special case I'm using the local Synology SSO server, and I have to spin up an additional nginx server because the built-in one doesn't support auth_request.

shrugal , 6 days ago (edited 6 days ago)

It can be a bit annoying sometimes, but there are solutions for almost anything, like alternative clients and frontends. I also think it's important to remember that this is not an all-or-nothing situation. Every little bit of privacy you can preserve helps, even if you still have to use their services sometimes.

If your example is mostly about chat then Beeper might be a good option for you. The messages on FB and IG would still go through Meta, but at least you don't have to install their apps.

shrugal , 6 days ago

If you have an always-on-and-connected device then you can self-host their bridges. It preserves e2ee because messages are de- and reencrypted on your device, and it's relatively easy to set up.

shrugal , 11 days ago (edited 11 days ago)

It's hard to overstate what a nothing-burger this article really is! Let me break it down:

• Signal got $3 million from the Open Technology Fund at some point in its development
• Some anonymous source alleges that the OTF's ultimate goal is to promote US foreign interests
• The current chairman of the board Katherine Maher worked at the National Democratic Institute and Wikipedia before
• The same anonymous source says she was recruited because of connections to the OTF
• She has at some point voiced the opinion that a completely free internet without regulation just reproduces existing power structures, and that balancing regulation and 1st amendment rights is a tough problem
• Signal doesn't have reproducible builds on iOS (it absolutely does on Android btw)
• Some people feel like Signal chats come up more often than they should in court cases and media reports

That's it, that's the whole story. That's the reason why the Telegram guy of all people thinks you should be careful, and better use his chat service instead, and the Twitter guy agrees.

I mean, reproducible builds on iOS would be nice, but that platform has much bigger problems from a privacy/security/sovereignty/freedom standpoint anyway. And the rest is just nothing turned up to 11.

shrugal , 12 days ago

Yep. It's e2e encrypted, and you can even self-host the sync server, if you don't want to rely on an external service. Pretty much a no-brainer.

shrugal , 11 days ago

Yea, it's pretty easy if you already have a server. All you need to do is run a docker container, and change the identity.sync.tokenserver.uri setting in about:config. On mobile you have to enable the debug mode by going to "Settings > About Firefox" and tapping the Firefox logo a few times, then go to the new "Sync Debug" settings entry.

The container above only runs the sync-server though, you still have to log into a Mozilla account to use it. There is a replacement that includes the whole stack, but I haven't tried that one yet.

shrugal , 12 days ago

Just a heads up, trying to buy Uranium for the reactor on Ebay will get you in trouble real fast, so be careful!

shrugal , 13 days ago (edited 12 days ago)

I think some of the arguments are quite flawed. Bitcoin itself has most of the properties it is said to have, but it lives in a world that doesn't and so some only really apply if you manage to stay inside the system. Like, your Signal chats are private as long as you don't copy-paste them to Facebook.

Regarding self-custody/decentralization and using custodial services: The problem here is not that those properties don't apply to Bitcoin, but that some people just choose to give away control over their wallets or not use Bitcoin itself for certain transactions. Can't blame that on the currency, unless you think it can't be done any other way.

Regarding privacy: I don't think any serious "Bitcoiner" advertises Bitcoin as private. The message has always been that it's "pseudonymous", that you have to take extra steps in order to make it anonymous, and that it's transparent instead of private by design.

Regarding transparency/inclusion: These paragraphs actually argue about privacy again. One is trying to spin the existing transparency into a negative, which is a valid opinion but not something "Bitcoiners" are wrong about. The other circles back to the idea of staying inside the system. Bitcoin transactions are inclusive, but ofc you can still get into trouble if you have to fear external repercussions and can't stay anonymous.

shrugal , 15 days ago

Debrid services are usually cheaper (as low as $2.5/month), but you're limited to public trackers with them.

shrugal , 19 days ago

Best tip I can give is to use a tool that's made for this task, like Tdarr/FileFlows/Unmanic. They take care of all the complicated issues like encoders, ffmpeg parameters and parallel processing on multiple nodes, so you only have to handle the things you actually care about.

shrugal , 25 days ago (edited 24 days ago)

I've been running Gluetun for a few months now, and just the other day discovered that you can use it to seamlessly proxy Twitch streams (using it as http proxy for ttv lol pro), so they load via countries that Twitch doesn't show ads for. Setting it up was ridiculously easy, and now I have neither ads nor endless loading anymore. The whole thing was a really nice surprise!

shrugal , 1 month ago

Do Not Track

Such a simple solution for the cookie banner issue. But it prevented websites from tricking users into allowing them to gather their data, so it had to go.

shrugal , 1 month ago (edited 1 month ago)

Yes. It makes it much harder to build a profile about you though, because you're not logged in and they don't know if those views come from you or someone else using your server. Even if you're the only one, the website doesn't know that.

shrugal , 1 month ago (edited 1 month ago)

From what I understand the GDPR says you have to give users a real choice about the usage of their data, without any unreasonable negative repercussions. Having to pay money (at least as much as they are asking for) is such an unacceptable repercussion, no matter how FB might phrase it.

They are allowed to take money or show ads for access, but they can't couple that decision with the one about the user's data usage.

shrugal , 1 month ago

pay for it with advertising your data

FTFY.

That part is not allowed according to the GDPR afaik, the decision about your personal data cannot be artificially linked to something else. They can absolutely show ads, but without using your data.

shrugal , 1 month ago (edited 1 month ago)

Afaik the stated reasons for moving back were pure BS, or at least blown out of proportion. It mainly came down to the people in charge being very "friendly" with M$. Munich got a new major, he publicly called software-freedom "idiological nonsense", asked a consulting firm that partners with and sells M$ products to analyse the situation, and everyone was shocked when they recommended M$.

shrugal , 1 month ago

If you don't want to pay for an account anywhere (VPN/Usenet/Debrid/...), then you might want to try out Torrent + I2P. I haven't used it myself, but from what I know it's a slower but completely provider-less alternative to VPNs for anonymization, and Torrents are free ofc.

That being said, you'll have a much easier time if you pay for a seedbox for example. It's just a small server in a datacenter somewhere, that happens to be better connected and more private than your typical home internet connection, and that you can use however you like.

shrugal , 1 month ago (edited 1 month ago)

Get a Usenet provider, a download client and a few indexers, set them up, and start downloading. Maybe automate with *arr apps at some point.

Some suggestions:

• Provider: UsenetServer ($1/month trial + $50/year discount)
• Downloader: SABnzbd
• Indexers: NZBGeek, altHUB, NZBIndex, abook.link (Forum), SceneNZBs (German), Tabula Rasa (invite only), NZBCat (invite only)

Most indexers let you search for free on their website, but grabbing download links and using their API with *arr apps is limited (e.g. 10 downloads and 100 API queries per day) unless you pay for VIP access (usually about $10/year/indexer). So you can try out a few, maybe pay for one or two that give you good results, and keep using the rest within the limits of free accounts.

shrugal , 1 month ago (edited 1 month ago)

You mainly depend on the fact that the providers don't keep logs and don't have to disclose your info. It's not 100% safe, but nothing really is. The risk of misconfigurating your VPN and accidentally leaking your IP is very real as well for example.

shrugal , 1 month ago (edited 1 month ago)

The juristiction where the provider operates, and the logging/disclosure requirements are very important! ISPs are often required to keep logs, VPN/Seedbox/Hosting providers usually are not. I'm not a lawyer and so on, but I could also imagine that logs from some VPN showing your IP was used to download/upload something are not as good as evidence as a mandatory (and probably somehow checked/verified) logs of an ISP are.

Another thing are provider incentives. If you're running a general purpose hosting business you probably don't want any shady stuff on your servers, and so you're pretty happy to comply with any reasonable information request in that direction. As a VPN/Seedbox provider your business depends on people feeling safe and private on your servers, so you'll do everything in your power to fight these requests, and there is a lot that can be done to fight them. And ofc if they do as they say and don't keep logs then they don't even have the requested information.

You operate it behind a VPN and the seedbox is just a means to get a 24/7 running Linux machine

I don't think you need Seedbox + VPN. You can do that of course, but just one is usually enough. The important bit is that other torrent clients don't see your personal home IP address, and the provider that does know your IP doesn't have the obligation or incentive to disclose it. But if you want the extra protection you could search for VPN/Seedbox providers that accept crypto as payment, and chain multile VPNs or VPNs and a Seedbox, so none of them have the full picture. I think that's pretty overkill though, and probably hell to set up and maintain. At that point you should probably go with Tor or I2P instead, because that's basically how they operate (onion/garlic routing).

seedbox is just a means to get a 24/7 running Linux machine

They usually have very beefy connections, far better than what you get for your home internet, especially when it comes to uploads (asymmetric subscriber lines etc.).

shrugal , 1 month ago (edited 1 month ago)

I'm no expert on the topic, but I've also never heard of a case where a seedbox user was sued because of torrenting. As far as I can tell the seedbox providers only ever get takedown requests, they never have to hand over user data or logs. I believe that's mostly because of the jurisdictions they operate in, but some also have restrictions like blocking public trackers.

There are probably a bunch of things that contribute to this. Seedbox providers fighting against information requests, their logs not being as valuable in court, law firms not knowing whether the IP they'd get would even lead to an address (as opposed to IPs of providers they know to be cooperative), the fact that you only downloaded from the seedbox and never uploaded anything yourself, and so on. Torrenting lawsuits are already pretty weak, and adding all this uncertainty probably makes it not worth the effort.

shrugal , 1 month ago

The video is probably factually correct, but very disingenuous with its interpretations and conclusions imo.

Of course Mozilla and Firefox have their own share of problems and bad decisions, and they are pretty well known and talked about from what I've seen, but equating it to Google and Chrome is just pure cynicism. Mozilla having to earn money somehow (1% donations!) and Google trying to maximize profits at all costs is not the same thing, even if it might look similar sometimes.

shrugal , 1 month ago

If you wanna torrent make sure it supports port forwarding.

shrugal , 1 month ago

Streaming services did it the other way around. We had one platform for almost everything, and then the studios created their own to get more of the subscription money.

shrugal , 1 month ago (edited 1 month ago)

Downvote it to oblivion then, but disagreeing or not being interested is no reason to remove a post.

Edit: Saw the post. I think the removal was valid, but the ban was a little harsh. And not being interested had nothing to do with it.

shrugal , 1 month ago (edited 1 month ago)

I think the ban was a little too harsh, but removing that comment was the right decision.

I also see a few problems with your "your highness" comparison:

1. "Your highness" is an official title, not a personal designation. Its proper usage depends heavily on the context, e.g. the perceived social rank and status, how well people know each other, if it's a formal or informal conversation, and so on. Pronouns have none of that, you just use the one people identify as and that's it.

2. It implies that people just pick whatever term they can come up with to mess with others or to mock them. People don't choose a pronoun lightly, they usually think about it a lot and it's an important personal decision. They also usually pick one of the common pronouns, so it's really not hard to just use it.

Making quick logical comparisons regarding social norms is a very tricky thing in my experience. There are many things going on that we aren't fully aware of all of the time, and getting it wrong can hurt people badly.

shrugal , 1 month ago

Self hosting their bridges is really simple, if you have a device to run the Docker containers on. That way you don't have to give them your logins, all they get to see are encrypted Matrix messages.

shrugal , 1 month ago (edited 1 month ago)

You only need to selfhost the bridge, it can use their Matrix server. Makes it much simpler.

shrugal , 1 month ago

Nope, not if you use the Beeper Bridge Manager. I'm running two bridges right now, without having my own Matrix server.

shrugal , 1 month ago (edited 1 month ago)

I started using their Signal and WhatsApp bridges today, probably one of the easiest setups I ever did. You just run a Docker container for every bridge, and login to your Signal/WhatsApp account by chatting in the app with the Matrix bot it creates.

Literally takes like 5 minutes if you've used Docker before, and you don't need a domain or forwarded ports or anything.

shrugal , 1 month ago (edited 1 month ago)

Notion + OneNote/Samsung Notes

There is a myriad of open source notes apps, but none of them really hit the spot for me.

shrugal , 1 month ago

Yup. It looks promising and I've tried it a few times, but it still has a long way to go before it can replace Notion for me. Also, self-hosting it is a complete mess right now, definitely not ready for everyday use.

shrugal , 1 month ago (edited 1 month ago)

Didn't know about that one. I'll check it out, thanks!

Edit: Windows/Browser only, no mobile app :/

shrugal , 1 month ago

There always something missing, like

• Not available on all platforms
• No sync, or only to some corporate cloud service
• Missing formatting/linking/calculation/organization/sharing capabilities
• No/Limited/Only drawings
• Clunky/Unfinished/Buggy

Every app is different, but I have yet to find one that ticks all the boxes.

shrugal , 1 month ago

This is not applicable here, since Beeper is "just" Matrix + Bridges + Simplified UX!

shrugal , 1 month ago (edited 1 month ago)

What is this "closed source experience" you are talking about? How would making the client open source hinder that in any way, especially when their stated goal is to earn money with premium features instead of the app itself?!

Imo being open source is a VERY big deal for an e2e encrypted chat client! I don't really care whether most of their stack is open if the app I'm actually using to type and encrypt my messages is not. This makes the whole thing look like a trick, pretending to be open when key parts are not.

shrugal , 1 month ago

That's not the point. An app doesn't become good because you can just not use it.

shrugal , 1 month ago

The thing is, we are talking about the Beeper service here. Yes Matrix is good, yes Beeper bridges are good, but a closed source Beeper app is bad. That's what the criticism is about, and it doesn't help if you deflect that by arguing about all the other things they are doing or that no one is forced to install it.

shrugal , 1 month ago

I can answer that: it’s the “I don’t care about security as long as I can send memes and inappropriate messages to most people” experience.

Closed source doesn't help with that though, you don't have to care about privacy in open source.

except you do know that the bridges are decrypting all messages anyway

They are working on on-device bridges that preserve e2ee, but making the client closed source kind of defeats the purpose here.

shrugal , 1 month ago (edited 1 month ago)

You're definitely right that people are a bit too doom-and-gloom about it, Beeper did do a lot of good over the last few years!

But I also find it a bit odd that they talk so much about the importance of open source in messaging, and then release a closed source client without at least adressing the topic. Add the fact that they've been aquired by another company on the same day, and it starts to smell like another instance of openwashing.

Idk, we'll have to see how it plays out I guess.

shrugal , 1 month ago

the connecting with a majority of people using the same closed source platform

The platform is open, including the part that connects to other closed source platforms. It's just Matrix and open source bridges after all. And making the client app closed souce doesn't help with any of that.

I'm sorry if I'm a bit pedantic about this, but it seems like you're describing an upside to closed source software that's just not there.

shrugal , 1 month ago (edited 1 month ago)

Nothing about what you just wrote has anything to do with closed source software though. You could just as well say that closed source helps them predict the future or draw shinier unicorns. It doesn't!

Maybe you mean tightly coupled, stripped-down, preconfigured or vertically integrated, but you can do that just as well with open source software. No one is forcing them to make a general purpose chat app or offer the ability to choose a different server. It's just a matter of being able to see, verify and modify the code.

differentiate above the competition [...] charging for it

This is the only thing that comes close imo. But they stated specifically that they don't want to make money with the chat app itself, so it doesn't really work as a justification. They could easily offer server-side premium features or create a closed source premium-only version or extension, it's no reason to make the base app closed source.

security theatre

They don't have to do that, and they don't afaik. Matrix itself can do proper e2ee just fine, and Beeper is pretty open about the fact that bridges hosted by them have to break e2ee to translate between platforms. They'd only need theater if their closed source app actually has some bad code in it, which is kind of my point.

Expanding to selling some user metadata, or sniffing the bridges, would be an extra

Again: Their Matrix server and bridges are open source right now, and it wouldn't stop them from doing what you're describing.

Too pedantic 😉

I just can't help it. 😜

shrugal , 1 month ago

Looks dope, but it seems like the Docker container has some very unfortunate limitations:

• Does not support desktop and mobile application connections, only supports use on browsers
• Export to PDF, HTML and Word formats is not supported
• Import Markdown file is not supported

This kinda makes it unusable for me. :/

Edit: I just installed it and ... you have to login and pay for a subscription in order to sync between devices. RIP

Edit 2: It's not a subscription, just a one-time payment. Might be worth it for some!

shrugal , 1 month ago

It's a known issue and should be fixed in the most recent version of Piped (and probably everything that depends on NewPipe). I updated mine yesterday and it looks like all video comments work again.