EmbarrassedDrum

joined 5 days ago
 

So I'm using a lot the option to chat myself in apps like WhatsApp or Telegram. But I don't wanna put my trust in them.

I tried about using NextCloud (I have an instance) Talk, but I'm not satisfied: the app won't load if I have no internet connection.

What I am actually looking for:

  • something with cross client sync that sync is ideally on my server
  • simple to use like sending message to self but with good search options, maybe even tagging
  • ability to send images, files etc
  • caches offline on clients

thanks.

P.S. wasn't really sure what tag to use here. Help seems like I'd use when I have an issue with an existing project. but I'm looking for a new one so I used this.

thanks!

I knew this would be a waste of time! *loads gun

Of course. Need to be extra cautious so you don't get a surprise bill for your birthday.

That's what I liked more about Oracle as compared to AWS or GCP etc', is that you need to manually upgrade your account to paid account. and if u don't then you just can't create another machine or another block storage.

But still it's extremely important to read every word so you know what you're getting yourself into.

that's not to wear off of the importance of awareness. you should be aware always, even if you don't take action.

[–] EmbarrassedDrum@lemmy.dbzer0.com 1 points 2 days ago (1 children)

Obviously I'm not avoiding it all together, but I'm taking a step in the right direction.

And it's not just replacing Google by CF, because CF has much less access in comparison as I explain.

you can deploy some zero trust models in your setup, and eliminate the threat even further. for example end to end encryption

[–] EmbarrassedDrum@lemmy.dbzer0.com 2 points 2 days ago (1 children)

looks really cool!

mind elaborating?

If I let them handle the TLS for me then I can see that. but if, for example, I'm using NextCloud, which implement end to end encryption from client to server, then I wouldn't care if they did, no?

[–] EmbarrassedDrum@lemmy.dbzer0.com 4 points 3 days ago (5 children)

tl;dr: classic convenience/privacy. depends on your threat model. surely better than Google. models of zero trust will help.

That's a great question, that I have asked myself before too. It doesn't have one answer, and any one would make their own choices based on their own respective threat model. I'll answer you with some of my thoughts, and why I do use their services.

I'll take as an example my usage of NextCloud, coming as a replacement to Google Drive for example.

let's break up the setups:

  1. client (mobile app, desktop client, browser)
  2. communication to server
  3. server

It's oversimplified, but to the point: In Google's setup, you have control of 0 out of three things.

  1. you use their closed source client, 2. they decide the communication to the server (if there's any CDN, where their servers located, TLS version), and 3. data is on their servers, wether encrypted or not is up to them.

In NextCloud's setup,

  1. The clients are open source (you can varify them, or build your own),
  2. communication to server is up to you. and in this case you trust your data with CF, that's right. gonna have to trust them.
  3. server is your server, and you encrypt the files how you want.

From just this look, NC is clearly better off. now, it's not perfect, and each one will do their own convenience vs privacy deal and decide their deal.

If you deploy some sort of e2ee, the severity level of CF drops even more, because they're exposed to less data. specifically for NC they do do e2ee, but each solution to its own. https://nextcloud.com/encryption/ this goes as an example for zero trust model. if you handle the encryption yourself (like using an e2ee service), you don't have to trust the medium your data is going through. like the open internet.

[–] EmbarrassedDrum@lemmy.dbzer0.com 0 points 3 days ago (3 children)

gotta admit I haven't read the ToS, but I didn't encounter any problems. I'm streaming GBs of music via the tunnel and it still works. p2p I didn't try, but I don't really see a reason to?

So what if you took my king hostage? Yours gonna have nightmares from seeing my entire horde die before him! ha! you may have won the game, but ah.. ahhg.. you may have won! but I...! you'll see me!!

[–] EmbarrassedDrum@lemmy.dbzer0.com 4 points 3 days ago (12 children)

another option is to use Cloudflare's tunnels. it's free, I use it all the time. really great.

yeah that's very odd...

You can run your searxng on a VPS, and then it'll hide your IP address.

In most cloud provides you can also change your machine's IP address so there's also that.

view more: next ›