Yeah, but it’ll be Secure Enclave in data centre hardware, not on your phone. Basically they’re just using their own proprietary HSMs to encrypt data on the server.

Not convinced that this will really add any privacy benefits over other confidential computing solutions already offered by AWS/Google Cloud/Azure. That said, it is fairly private - just not as good as on-device.

Ideally you want something that gracefully degrades.

So, my media library is hosted by Plex/Jellyfin and a bunch of complex firewall and reverse proxy stuff… And it’s replicated using Syncthing. But at the end of the day it’s on an external HDD that they can plug into a regular old laptop and browse on pretty much any OS.

Same story for old family photos (Photoprism, indexing a directory tree on a Synology NAS) and regular files (mostly just direct SMB mounts on the same NAS).

Backups are a bit more complex, but I also have fairly detailed disaster recovery plans that explain how to decrypt/restore backups and access admin functions, if I’m not available (in the grim scenario, dead - but also maybe just overseas or otherwise indisposed) when something bad happens.

Aside from that, I always make sure that all of all the selfhosting stuff in my family home is entirely separate from the network infra. No DNS, DHCP or anything else ever runs on my hosting infra.

It would be better to have this as a FUSE filesystem though - you mount it on an empty directory, point the tool at your unorganised data and let it run its indexing and LLM categorisation/labelling, and your files are resurfaced under the mountpoint without any potentially damaging changes to the original data.

The other option would be just generating a bunch of symlinks, but I personally feel a FUSE implementation would be cleaner.

It’s pretty clear that actually renaming the original files based on the output of an LLM is a bad idea though.

Android still doesn't have shake-to-undo. I use iOS and Android and switch between them regularly for work, and every time I typo something or accidentally delete a bunch of text on Android, it's incredibly jarring to not have the undo capability.

Agreed, and it could definitely make such an assumption. The other aspect that I don’t really get is… if a superintelligent entity were to eventuate, why would it care?

We’re going to be nothing but bugs to it. It’s not likely to be of any consequence to that entity whether or not I expected/want it to exist.

The anthropomorphising going on with the AI hype is just crazy.

Yeah bro but eXpOnEnTiAl ImProVeMeNt bro!

And haven’t you heard of Roko’s basilisk? Better be careful what you say on the cybernets, lest our AGI/ASI overlords of 2026 take a disliking to your commentary regarding their eventual supremacy!

Excuse me while I go back to mining Dogecoin until I can buy enough NFTs to make Elon or Sam Altman notice me.

/s

Sure, but I should be able to have both. We used to have both, and it was taken from us by monopolistic megacorps.

So, I accept that the situation is what it is, but I’m allowed to be pissed off about it. I’m also allowed to support regulations that would force Apple to give their users options.

As a power user, I find Apple’s approach to sideloading insulting as a customer and blatantly anticompetitive.

I buy an Apple phone because the phone market is effectively a duopoly: Android or iOS. I choose iOS over Android because of its much longer security support window and better accessory ecosystem (AirPods Pro + Apple Watch in particular), and also because I don’t want absolutely everything in my life to be owned by Google.

None of that detracts from the fact that Apple’s position on this issue hurts its customers and is fucking annoying. And their claims of “it’s for security” are disingenuous at best.

It’s a risk that I’m willing to take, personally.

But tbf I do make sure that I own my primary mail domain.

Website hosting and such thing? Njal.la all the way. Never had an issue with them.

Edit: oof, clearly some irrational hate for njal.la here. I state my personal preference and get downvoted… is this reddit now?!

I would’ve been delighted to receive a managed Ethernet switch as a kid! I hope it came with some useful SFP modules and a USB serial adapter 😜

I really like Valve. They have done a few things that really annoyed me (usually owing to their refusal to sell stuff outside of the US)… But you can’t argue with their excellent support of the community and loyalty to their customer base.

I found it much more barebones in my tinkering. It doesn’t seem to support pulling via SSH (and definitely doesn’t support signing commits). Configuration options appear extremely limited, both in documentation and the UI.

It looks nice, but I don’t really see the point to it when Gitea Actions is now a thing. Gitea is a more mature product, and is similarly fast and lightweight.

Edit: s/Gitea/Forgejo. Gitea has moved to a for-profit model since I made this comment.

This is why self hosted to me means actually running it on my own hardware in a location I have at least some control of physical access.

That said, an ISP could perform the same attack on a server hosted in your home using the HTTP-01 ACME challenge, so really no one is safe.

HSTS+certificate pinning, and monitoring new certificates issued for your domains using Certificate Transparency (crt.sh can be used to view these logs) is probably the only way to catch this kind of thing.

Njalla is mine. I like the privacy protections they offer.

Are CloudFlare, Amazon or Microsoft any better? Google at least take security (if not privacy) very seriously.

In general it seems bad to have any huge profit-driven organisation exercising significant control over open standards, but I do think that Google is lesser than many of the other evils.