Even a broken clock is right twice a day or something like that… still feel really awkward when I find myself agreeing with him. He’s gotta a couple of other things right too. Don’t like the man at all but I can give credit where/when it’s due.
~2010 is when I gave up on dual booting and went 100% Linux. TBF I had mostly been on Linux many years before but just kept Windows "in case I needed it"
It's a great time to take that leap, it's getting better everyday too. The ONLY thing I wish I had was Office, but webapps and things like OnlyOffice work just as well if not better.
It wasn’t meant to be taken literally. What I mean by that is if you’re the type of person who enjoys the upkeep of something as critical (though maybe not so much theses days) as email then go ahead and host your own password vault service. I’m not saying it shouldn’t be done and couldn’t be done.
My point is that there’s going to be times where you NEED your password vault and having it be down because something happened at home or your VPS had a problem is a really shitty situation to be in.
Of course there’s work arounds and edge cases to everything too. For me planning and building for those possibilities came down to what can I do that is the most reliable, simple, and boring. Because that’s what most people need with anything that is critical.
IMHO much like backup, password storage should be reliable, simple, and boring. Kinda like flushing a toilet or flipping a light switch.
Meh, I assume I’m always on camera anywhere I’m in public. I don’t like it and I really don’t want to be recorded. I’m also realistic and understand that public spaces are… well public.
I understand privacy fears because there’s nothing stopping someone in my private space from recording me now other than mutual respect and consent. If all it takes is the ease of use of some fashionable frames then it’s time to rethink your relationships.
This also applies to semi-private spaces. So think at the office or a cozy booth in a coffee shop. Assume all public places are recorded (because they often are) and establish boundaries within your relationships.
Having gone through all of these options I have thoughts.
Option 1 sounds awesome but will almost always leave you in a situation where you can’t get your logins when you need them in an emergency. You’re always depending on a chain of things. Depending on your situation it may not be a big deal. But this option sucks, imho.
Option 3 sounds amazing because it gives you the control of option 1 with the ease of option 2. But… unless you’re the kind of person that enjoys hosting their own email server you really don’t want this option. Fun in theory but not so much when you realize you now have a 3rd job.
So that leaves option 2. It’s great but you’re depending on someone else. This is the option that most people should choose too, imo. However it lacks some of control and trust that option 1 and 3 have.
Sooooo, that leaves us with option 4, the onion option. Breaking up your data into layers and using different tools for them.
So first and foremost I want my password storage to always be available. For me that means Bitwarden, (though I’m evaluating protonpass currently.) this is the outer layer. Things that can and should be stored here are stored here. I use it to manage web logins and 2FA tokens for those sites. I also use it for storing autofill data eg credit cards. I don’t use it to hold things like my gpg keys.
Next layer is pass. This layer is mostly things that I need to have logins or other information on headless/remote servers. Think self hosted lab services like a mariadb/postgres or backups. This is easily kept in sync with git. This is the layer where I’ll store things like gpg keys and other VERY sensitive data that I need to sync around.
For other things on this layer I use ansible vault. This is mostly used for anything where I need automation and/or I don’t want too or can’t easily use my yubikey for gpg. This is kept in sync with git as well.
Lastly the inner layer I use AGE or PGP. This is for anything else I can’t use the above for. So my Bitwarden export/backups are in this level too. I also use this layer for things that I need to use to bootstrap a system. Think sensitive dotfiles. This can be kept in sync with git as well.
Git is the best sync solution imo because you can store it anywhere and use anything to sync that repo. Just throw that raw repo on Dropbox, use ssh with it on a vps, rsync it, etc. you’ll always have it somewhere and on something.
My work flow goes like this Bitwarden -> Apple/Google/Firefox -> Pass -> Ansible -> AGE/PGP
This allows for syncing things as needed and how needed. It also gives you the option of having an encrypted text file if/when everything fails.
I think as more gen z enters the workforce we’re going to start seeing more breaches because they’re not going to give a shit when they see someone in the csuite making 1000x what an average person makes. Especially when they can barely afford to eat and need 5 roommates.
If these places want to stop that from happening the best way is to pay your staff EXTREMELY well and setup things like pensions and profit sharing.
Keep in mind that she doesn’t have much of anything to do with Publix AFAIK. I believe it’s an employee owned company and (from what I’ve heard) they treat their employees right.
That being said it’s way too fucking expensive to shop there these days. I mostly get subs, hot case, etc from there.
Neat idea, would be interesting if it used your own content from DLNA, Jellyfin, etc. The code looks simple enough that it should be possible to add a plug-in/provider for that stuff.
I think that it’s not going to have a long lifespan though. Being a simple and easy front end for various streaming sites might paint a target on it. Rightly or Wrongly.
I can see it having a longer life if it were to integrate some other technologies aside from the above like IPFS, BitTorrent, etc. The libraries to do that are already readily accessible eg LibP2P. Though that again might paint a bigger target.
Either way it’s definitely really neat and I’m sure a fun project to fork and explore if someone is feeling up to that kind of work.
Yeap! You can even make an automount unit too! That way it’s mounted on demand! Makes life sooo much easier. I even do it for my external drives I use for backups
YW!