50% more monthly is a lot more though.

Self-sxtracting*

You probably just forgot or miss typed.

At least the accounts are more secure now when they are Microsoft accounts. I remember being quite annoyed that Mojang accounts didn’t support MFA.

3rd party towing and “storage fees” should be illegal. It should be operated by the city and the parking ticket should pay for the cost the city goes through (not funding the cops)

Agreed. I do think there should also be a punitive fine for breaking the law and blocking the street though. Storage fees also make sense if you don’t collect the car X amount of days. Storage isn’t free but maybe you included those costs in “the cost the city goes through”.

Also third party towing isn’t a bad thing if they are simply contractors to the city.

if anyone is interested.

Nah I’m good 👍

Fucking hell.

deleted by creator

Yeah, at least the ones I used have some kind of console/terminal you can use and often you can access BIOS and reinstall the OS if you want.

I don’t mean them specifically, but that to me managing access to such a CA cert’s keys is security nightmare, because if I somehow get an infection, and it finds the cert file and the private key, it’ll be much easier for it to make itself more persistent than I want it.

If you can’t resist installing random shit on your CA server then sure. No attacker will really try to compromise a home CA so you really only have to worry about viruses which should be kept extremely far from the CA anyways. And obviously follow all other security precautions like good passwords or even passwordless with certificate login (remember that you have a CA server so you can easily issue authentication certificates and enroll them on a smart card or Yubikey)

The private key should also be in TPM (or a HSM like we do at work, but that’s a bit extreme for home use) and be non-exportable. Managing access to the private key isn’t really that hard, it should just never ever leave the CA server and you are pretty much good to go.

You can also do a two tier PKI with an offline CA and an issuing CA like I’m planning to do for an AD DS, AD CS, AD FS lab.

Personally I think wildcard certificates sound like a bigger security problem than a CA since that certificates will likely be placed on a lot of servers and if just a single one gets compromised the attacker can impersonate whatever subdomain they feel like. With a CA server you could issue individual certificates to each server/service

Private CA servers are very common and is actually a security positive. I’m not saying that everyone needs one at home, but you shouldn’t be afraid to setup one if you want too.

Didn’t you pirate the songs? I wouldn’t call that ownership.

I just like Spotify and their discovery stuff. I wouldn’t enjoy having to find and download every single song I want to listen to. That would be a pain.

Also, nothing is stopping me from pirating the songs whenever I want. It’s not like you “own” anything that I can’t also “own” the moment I decide to ditch Spotify.

If you were actually buying CDs I would agree that you might have had a point (and a lot of cash because CDs are really expensive).

I switched to AirVPN right after I used mullvad but I was not that happy with their speeds (max speeds were around 500-600 Mbit/s), so I now use Proton. Proton is nice except that the port changes with every connection. Fortunately I found a fork of the VPN app that has support for automatically changing the port in qbittorrent. Other than that I’m pretty happy with Proton. :)

What do you mean?

Of course their own CA can sign certificates for whatever the fuck it wants, but it’s their CA so why would they do that?

You obviously shouldn’t trust anyone else’s CA unless you actually trust it. But if you don’t trust your own CA what’s the point of having a CA?

P.S. I’m guessing OP doesn’t actually have a CA and is just using simple self signed certificates without any private CA that has signed them.

Agreed. I really dislike editorialised titles.

I generally use git for scripts so I use mostly VS code for everything locally and the terminal when pulling the scripts to a remote server like an automation server or a Pi.

No more streaming with bad cell connection.

You know Spotify has an offline mode, right? I have many thousands of tracks downloaded using their offline mode.

Mullvad is great. I unfortunately had to switch because they removed port forwarding, but I highly wish they didn’t.

You also need money, materials, and space to build housing though and I doubt all immigrants are carpenters, electricians, plumbers, and all the other professionals needed to build homes.

Moode maybe.

https://moodeaudio.org/

So you didn’t have a problem?

Well, I at least chuckled.