Yeah, options are:

• 2-3 days driving
• 5? days on a train
• 4-5 hours on a plane

Oh, and the plane is very attractive price-wise.

Sure, but those will usually be pieces of an app on the same host, not whole apps. Like for an inventory management app, you might have the auth server and its database on one host, the CRUD app and its database on another, and the report server, its database, and a replica of the CRUD db on another. And I use the term “host” broadly enough to include VMs on the same physical hardware. And these hosts will have restricted communication between each other.

At least, that’s how I’ve seen it done.

Self-hosters will generally run multiple full apps on one host. It’s a different setup.

You shouldn’t have any user home for your services, you shouldn’t even allow them to login at all. They should only have group access to resources they need, and containers should restrict what directories they have access to.

Companies don’t typically host multiple containers on the same host. So having a different user for them is less important than securing the connection between machines, since a given biat isn’t particularly interesting. Attackers will still try to break out, so they have a backup.

As a self-hoster, you typically do the opposite. You run multiple services on the same host, and the internal network isn’t particularly secure. So you should be focusing more on mitigating issues, and having each service run as an unprivileged user is one fairly easy way to do that.

¿Por que no los dos?

Recommended Linux.

Yup, my grass does best under my trampoline.

I kinda think it does. I use a gecko browser as my main, and I use a chromium browser as my backup. I don’t use most of the default features, I just need a handful of extensions, and those are available everywhere.

So to me they’re pretty much the same. Brave is a little different since it embeds an ad blocker, but besides that, the rest of the chromium browsers are equivalent for me.

Nah, in those days I picked Linux. In fact, I got a “win7 ready laptop” and still picked Linux over it. Windows 7 was better than Vista, but it didn’t fix the other issues I had w/ windows.

I honestly think Win10 was better than Win7.

Whether it convinces the cops isn’t nearly as important as whether it convinces a judge/jury. I highly doubt “suspect’s phone is too hard to break into” would sway a jury to believe they’re a drug dealer.

Cops need to do a proper investigation and prove guilt beyond a reasonable doubt. The type of phone someone has shouldn’t significantly impact any of that, though having a phone they can break into may make that investigation easier.

They’re the same in the ways I care about, which is rendering and javascript engines. I’m a developer, that’s what matters to me. I rarely interact with extra features, and I can get most of what’s unique about a given browser with extensions.

OK. Owing an iPhone or Samsung also isn’t a sign of innocence, it’s just a phone, just like a Pixel. There may be a higher incidence of people owning Pixels being drug dealers/traffickers, but there’s also likely a lot of people who have them who aren’t drug dealers/traffickers, so that fact isn’t useful as evidence.

Sure, but it’s also not evidence of wrongdoing. What phone you choose or what OS you run on it isn’t evidence of anything.

Yup, whole process is something like 15 min. It’s really not an issue whatsoever.

You absolutely can, just not from the manufacturer. But I agree that it’s dumb, installation is easy and doesn’t come with the added risk of the seller putting on some spyware or whatever.

Other countries can. But technically, the US government cannot deny a US citizen access.

Yeah, I have mine at 4 hours and it’s pretty good. It triggers while I’m at work sometimes, but other than that, it’s mostly just when I sleep.

Yup, install process takes a few minutes, it walks you through it on a pretty friendly web page.

I paid $350 or so for my Pixel 8 refurb. New wasn’t that much more. I put GrapheneOS on it the day I got it, and it took maybe 15 min? The install process was really smooth.

Pixels are way less than top phones, like iPhones or Samsungs.

I paid $350 or so for my Pixel 8 refurb. New wasn’t that much more.

And yeah, the Pixel is fine without a different ROM, I just like what GrapheneOS offers, so I specifically bought it instead of an alternative.