I am not sure if by any chance they do the extra mile to check on that. However, as a rule of thumb you should try to keep private stuff away from work stuff, meaning, at work maybe is not the best idea to boast about your reddit profile where you happen to follow some nsfw stuff (or other stuff that can be considered offensive and/or can lead to controversy). I would imagine they try to check things such as accounts attached to an email or phone number (for instance). If a set of aliases were used for this (or different info) from your work email phone etc., you should be able to keep it separate.

Thanks for taking the time to explain. I was trying to get my head around on how this works but could not understand much of it. A lot of people here are very much against systemd in all senses, but this sounds like a better approach. Even if it not done as systemd, makes more sense than checking files and getting elevated privileges for a scope and use guardrails everywhere

I was making a quick check, and yes, the DoH situation is a bit more dicey. From how I see it, the best way to make this work is to, at the firewall level, either block as much as possible any requests that look like DoH (and hope whatever was using that falls back to regular DNS calls) or setup a local DoH server to resolve those queries (although I am not sure if it is possible to fully redirect those). In that sense, pihole can’t really do much against DoH on its own

EDIT: decided to look a bit further on the router level, and for pfsense at least this is one way to do this recipe for DNS block and redirect

Hm… I am not familiar with that device myself, and since I use opnsense for a while I forget most people do not use routers outside of the provided one.

But in a theoretical sense, this firewall rule should look something like this:

• origin of traffic is any IP that goes into port 53
• outgoing traffic has to go to pi hole on port 53

Forgot to mention the port but that’s it. Notorious devices like smart TVs and consoles like to use the hard coded DNS method

It does. Probably op meant something different

Pi hole is an amazing tool and gives a lot of insight on what is being queried and blocked against the block lists. Also, makes completely transparent on the entire network to have nasty things blocked. One thing I will mention to make the setup better: make sure on the firewall level you can have a rule that makes every request for a DNS to go through pi hole. Some devices will use a hard coded DNS instead of respecting the one on the network

The biggest problem with this approach is basically Facebook saying that you have to pay for a right, meaning, if the law tells you that you can, and should, always have a say if you are followed around or not, you mist have that capability. What Facebook is doing is put a right behind a paywall, which is absurd

I think in this instance is a bit different, we are talking about reaction in this case to the supposed aggressor. I won’t lie I am guilty of this myself at times, but this can also be detrimental on many interactions (depending if we are talking about a stranger vs a friend or family member). To be clear, we as humans are hardwired to always prioritize our well being first, and sometimes that does contradict on how our behavior is expected. However, on every instance of these events we should be able to first think how we should react and then do something about it (on a flight or fight situation this does not exist, since at that point our reflexes and reactions prioritize our well being first no matter what). Meaning, for the most part we should try to behave in a way that de escalates a situation instead of escalating. And for my understating, this is where the kindness argument comes in. If a situation can be de escalated by not responding on the same way as the aggressor, you can potentially get out of the aggression situation to a more neutral ground.

PS: regarding your internalization bit, I cannot say what is the best way to live your life, but from my personal experience, having someone to just talk to about these subjects can be extremely valuable. Just by offloading in a constructive way to someone (meaning, no lashing out) can relieve a massive burden out of you (and as for me, I do not believe in the methods where there is not feedback, e.g.: diaries, but that is my take)

I am not from the US, but I do see in many places (if not all) this “us vs them” mentality. From what I know, specifically in politics, by giving a “face” to a specific problem and then lash out on that “face” to have more influence has been a constant lately (I believe the rise of the extreme right has a lot to do with this). In general, I am a firm believer emotional intelligence is in extreme short supply everywhere. We need to have more understanding how we should behave with ourselves and others. Society wise needs to change as well, but that is a tall order…

You are not wrong in your thinking. However ,if someones lashes at you, then you by turn lash out to someone else unrelated to your issues, and then by consequence that person lashes out again on someone unrelated, very quickly becomes a very long and complicated chain that you simply can’t stop from coming at you, but you can stop it from spreading once it reaches you. This has been debated for a very long time as the cycle of rage, which to be honest, I am not sure if we have a way out completely. Maybe over time we care more about emotional intelligence and make these problems less prevalent (but I would not bet on that)

I was reading about it and I actually like a lot this solution’s principle. It reminds me a lot of puppet which I have seen before (for other kind of tasks) to orchestrate several computers. Big shame it works on windows though, since I have a server with docker on ubuntu server at this point and was not really looking forward to change that. But thanks for the suggestion, is for sure very interesting

Nowadays I sort of do this with seafile. Select folders to sync, open the app every other time to resync stuff, carry on with your day. The only thing I wanted to take away if there is a better way to not have a massive hassle to reinstall everything in case something happens (and in case I forget to select a folder to sync also).

But your suggestion I think is very valid as well. At least for mint have a way to make a more automated installer or similar to get the stuff I use usually. Yet another rabbit hole to go into…

I checked a couple of times time shift, but it’s a shame not even ftp is allowed as a backup destination.

As for restic, will give a check later

EDIT: just read about restic, and I think this can be the solution I was looking for. Docker image is available and all, so for me that is a big plus. Once I have the chance I will test drive it and see where it goes. Thanks!

Had to search for a while what even pxe boot is, but I believe I came around the suggestion. I like fogproject main idea, sounds like a way to deploy thin clients or similar. Not exactly what I am looking for,but it’s good to know this exists. Thanks!