Vaults funktioniert wahlweise mit Cryfs oder encfs. ecryptfs verschlüsselt auf Dateisystem-Ebene und steht daher nicht zur Auswahl.
tyftler
joined 1 year ago
Vieleicht sowas wie bei KDE Vaults ? Dort kann man einzelne Ordner ("Vaults") verschlüsseln, unabhängig vom Dateisystem oder dessen Verschlüsselung. Man kann diese Vaults auch als Datei anderen Zusenden. So ein bisschen wie Zip Datein mit Passwort, nur ein bischen schöner und besser integriert.
I can recommend Nextcloud. Its self-hosted, supports ios, android, windows, mac and linux and can auto upload photos in the background . It also allows you to syncronize any other files, like icloud.
This way youre not locked into only using apple devices and can freely choose your next phone.
It can also sync contacts, notes, calendars, and more. You can have as many accounts as you want and (optionally) use shared folders. The only limit is the size of the Disk in your server.
But you will need some technical knowledg
You need an old desktop pc (i have one with a 12 year old dual-core cpu and its works just fine), install a 2tb HDD and finally install Linux and Nextcloud. There are many good tutorials for all of these steps.
I like Nextcloud because its free (exept for the hardware and electricity your server needs) and you actually own your data meaning its acessible even without internet, or any external server.
Nextcloud gmbh (the company behind the open-source project) doesnt collect any data, so it is as private as can be.
You should of course do backups of the server disk from time to time, just incase the HDD fails or your house burns down or gets flooded.
I have been using it for my documents and photo backups for years and its great, but it requires some maintenace and is definitly less easy to use than icloud or google photos.
I recommend Librewolf. It's a privacy focused fork of firefox. They apply their own patches to every new firefox release so you always have the newest features of firefox minus the bloat.
Comes preinstalled with ublock-origin, no Telemetry, no Mozilla VPN, no pocket, no prompts to create a mozilla account, no ads on the start page, default search engine is ddg and deletes all cookies (exept for whitelisted sites) on launch.
Yes, you can have more narrow permissions, and the examples you listed are all valid and examples of apps with sensible permissions.
But since app developers can choose their apps permissions on their own, many apps have broad permissions like the access to the entire filesystem.
Some examples listed in the post:
GIMP, Gedit, VLC, Libreoffice, Audacity, VSCode, Dropbox and Skype
All of these have either the filesystem=home or filesystem=host permission, giving the app acess to basically everything and compromising security.
Flatpaks can have more narrow permissions but aren't required to have narrow permissions. The post's statement that many applications have broad permissions remains true.
I stopped using programs like etcher for flashing iso's after i found out you can just run
cp /path/to/your/file/example.iso /dev/[insert device here]
For example
sudo cp ./Downloads/archlinux-2023-09-01.iso /dev/sdb
I love it because it just works on any linux machine, always. Of course, this is maybe not fit for your usecase.
You can also use dd, tee or even echo, the archwiki has a good section on flashing iso's.
Didn't HEVC work by default for Years now?