It's more about trust, than security. When you use a specific distro, you only have to trust the distro packagers. These packages are reviewed by multiple persons, tested thoroughly and (usually) built in a reproductible way. The packagers are usually different from the developers, so they can also review the code itself and eventually patch issues if needed to be in line with the distro's ideology.
With flatpak, snap and friends, anyone is a potential packager, so for each software you gotta trust this single entity, which is usually the developer itself.
https://jami.net perhaps ? I've just heard about it and didn't try it myself, but it's kind of appealing to see a new decentralized messaging app (I wish tox succeeded in this field, but hey...).
Subscribe to as much shitty free services, mail lists and commercial ads as you can.
If someone ever gets the domain, they'll receive so much spam they won't bother reading them.
Source: I bought such a domain myself, and I have no idea what the previous owner was up to... I received delivery reports from a beer company in Iceland, password reset requests from like 500 Instagram accounts, and many other emails like that.
However, the domain is totally "sane" and not blacklisted anywhere. I have no idea how that's possible that my emails get through spam filters given it's past ^^
Le plus vieux et moche aura le moins de chance de disparaitre :)
Si c'est pour des petits trajets, cherche le compromis entre fiabilité et mocheté. Je pencherais pour le Giant dans ton cas. Si ça peut te rassurer, mon propre vélo a plus de 30 ans et je fais entre 30 et 90km avec chaque semaine.
In fact, full network encryption isn't a goal per-se, but a requirement. The main goal of Yggdrasil is to bring decentralized routing to the table, thanks to DHT. In its current state, internet (while being a mech network) is based on centralized routing, in the sense that the ISPs are responsible for routing their clients to other destinations.
With Yggdrasil, every single node (your laptop, my phone) is a potential router to any destination, without you even knowing. That's why encryption is needed: the whole network is untrustworthy, and if traffic isn't encrypted, anyone can potentially sniff your packets.
You read right. It is an overlay network built on top of the internet. For now. This is only a proof of concept right now, so it has to reuse existing networks to work and test the scalability, reliability, etc...
But the end goal would be to only use that to build the network, connecting modes together through $VARIOUS_MEANS, and implement the Yggdrasil code right at the network card level. So it could work without and underlay network, and that's basically the point of the project: prove that you can have a standalone mesh network that's fully encrypted. I've read an articles on people connecting nodes directly through AWDL, but it remains a proof of concept only for now.
And to answer OP's question, that would not replace ISP because you'd still need a way to physically connect your node to the network, and ISP could provide such service. However, you could also connect directly to your neighbor's house and access the network from there :)
Yggdrasil, an IPv6 end to end encrypted networking proof of concept. There's something about it that I find so innovative that I want it to succeed so badly !
That one is easy ! Because in a few years (remember, you're 5), you'll be a scout ! And to collect a few dollars for your summer camp, you'll sell pastries to the neighborhood. It's easier than ever because it's 2030, and everyone can just order the pastries on your website, and pay online. All you have to do now is hop on your bike, and deliver the pastries (network connections) to your neighbors (online servers). So you grab the first package, and read the label on it:
Mrs. Britneak
And that's it ! You have no idea who this person is, or where they live ! So you call out your leader (DNS server):
Hi Mr. Leader !
... (nobody ever get my UDP jokes)
So I got this package to deliver to mrs. Brtineak. But I don't know where she lives
Oh sure, let me lookup the register (zone file). Hold on for a sec... Alright, she's here: 62.644888, -160.194309
And then he hangs up immediately (this is UDP, remember?).
You write it down (local caching DNS server), and look it up. You're a scout, so you're trained to read and find GPS coordinates. You go there in a few minutes and deliver the package in time ! Mrs Britneak is happy, and you go on to the next package:
So it's saturday afternoon, a very hot one, so you ask your daddy for an ice cream (hosted service). The shop you go in is very bizarre though, as there is one vendor (TCP port) for each flavor (docker service/virtualhost). But it's tricky because they're all roaming in the shop, and you don't know who's responsible for each flavor. Your dad is also not very comfortable paying these vendors directly because they only accept cash and do not provide any receipt (self-signed certificate/no TLS).
Hopefully, there is the manager (reverseproxy) ! This girl is right where you expect her: behind the counter (port 80/443), accept credit cards and has a receipt machine (Domain name + associated certificate). She also knows everyone on her team, and who's responsible for each flavor !
So you and your dad come to see the nice lady, ask for a strawberry + chocolate ice cream, and pay her directly. Once done, she forwards your request directly to the vendors responsible for each flavor, and give you back your ice cream + receipt. Life is good, and tasty !
Thanks ! That how they look all the time to me haha so I guess it makes me old as well ^^
However I was used to black on white which makes it feel less "old school" I guess (see my usual setup)
Oh quel pessimisme ! Faut pas laisser la norme de l'industrie nous empêcher d'utiliser une meilleure dispo de clavier. Il y en a tellement qui ne sortent pas en version physiques mais qui sont utilisés par des milliers de gens!
There is a link at the top of the post description ;)
The goal is to use an old piece of hardware for a week, to appreciate techs that require less resources to run. You can also limit your current hardware to a single CPU core and 512Mib or RAM to try it out!
Tmux is no different from a terminal app that split the screen in terms of "multi window" functionality. However it's not a graphical software, so you can start it remotely (eg. over ssh), and detach/reattach to it later without loosing what you where doing.
I run openbsd on all my servers so I would be entering the passphrase manually at boot time. Saving the key on unencrypted /boot is basically locking your door and leaving the key on it :)
Why ?