Interests: News, Finance, Computer, Science, Tech, and Living
Just compare the number of possibilities. Number of words to the 4th power to 94 to the 15th power. Your corpus would have to be 25 million words. In contrast, there are about 800K words in the english language and about 1000 commonly used words.
This is a great example of how impossible it is not write down usernmes and passwords and how infeasible forcing changes is.
The other thing people do not talk about enough is user names. They should be somewhat random too and not reused. Forcing people to use their email address is particularly stupid but very common.
The missleading thing about passphrases is that anything a human can remember is low entropy. That it has 20 charachers says nothing about how random.
Edit: I also wonder how much randomness is really needed. Properly salted and hashed passwords shoud not need that much randomness. Lot of this is about users just choosing bad passwords, reusing, and IT not properly salting and hashingon their end.
Lot of security is theater. IT doing a CYA thing.
I wonder how much of this stems from two stupid IT policies. For decades users have been told to not write down passwords and to change them regularly. The result of this policy is to use a small number of password variations that one reuses. Then IT complaims about it.
The better plan has always been to use long random passwords that you never reuse and write them down by some method like a password manger and only change them rarely for example when they may be compromised,
The two downsides of a custom domain are:
Only as private as the least private use of the domain. No crowd to mix with.
Delivery through SPAM filters of other providers more troublesome. Delivery to AOL/Yahoo, and one of the AT&T managed mail domains has been the biggest issues for me. GMail delivery seems fine.
Do get a common mainstream suffix not the cheapest. Some filters may tend to filter some TLDs.
Edit: By the way, I have my own domain and the email for it is hosted at a hosting provider. I recommend it but the above are the downsides.
You can just setup an extender where you need it. That is what I have. No real need for mesh unless your place is really big.
The big advantage of RSS and Youtube is you do not have to login to follow you channels. Your only touching what you need and soyour footprint is a lot smaller. I just started using RSS for youtube a few months ago and like it much better.
I always thought writing and debugging code on VS was fine. Where I never liked Visual Studio was building especially cross-platform building or just using special tools etc. Fankly just give me an editor and Make, but make sucks on Windows due to slow process startup. But I do like the VS debugger.
I also subscribe to the Debian Security Announce email list.
Also using RSS with Youtube now. Muxh better way to follow Youtube channels.
I did not see: Do not publish your IP address. Do not run servicies on it. Do not point DNS to it. Prefer dynamic IP that changes overtime. Encourage it to change periodically for example reboot your boundary router periodically.
Also did not see: Do not present any open ports on the internet side of your boundary router especially no administrative ones.
Edit: Disable dynamic UPNP port forwarding too.
It did not see only use routers and other network devices with auto or at least easy regular updates.
Choose a standard domain to get best delivery. Either org. com, or net. I went for short and speakble and spellable, Then sort but not quessable names to prevent spam. For my main names I chose ones that someone that knows my name would recognice but not the other way around. This was not about privacy in my case.
If I wanted more privacy I would choose one or more random other domains for that using fairly random names. Or better yet I would choose a common mail proviider and use one of their popular domains.
Also consider how your going to host. Deciding on domain is only part of the problem.
No idea.
Obtainium.
Backup. Seedvault can backup to Nexcloud though it is experimental. I use that too but do not fully trust it.
I dump apps that allow that to main storage and just plugin my phone to my laptop and archive main storage. Then I sync apps that incude sync to Nextcloud directly. This is what I have always done even before GrapheneOS. Never used Google Drive.
Keep mind the owner profile also has a work profile too and a private space. Might run in one of those.
The are also 31 user profiles like the owner profile but they do not have private spaces.
I run Grapheneos, just been through the setup. Out of about 100 aps 7 needed play. I only actually needed 3 of those. Uber and Lyft in particular and they ran fine with it. The other was my banking app which would not work. For now I will just use my old phone on wifi to deposit checks. After that I will either put it on my wife’s phone or switch institutions.
Play services my understanding is not privilaged on GrapheneOS. Usually it is.
By the way Signal does not need Play Services but it will use them if they are available.
Phone. Look at all the Google phones and divide price by years of support remaining. Best will probably a later a-series phone.
Integrity api. Graphene passes except for highest level. Who knows the future.
Peertube is the distributed Fediverse platform. The issue of course is ability to monetize and discoverability, both huge issues for creators. No creators, no content.