Very thorough explanation!
I’ll add a basic info for @[email protected]: every service MUST have a different password (password manager almost mandatory with a VERY strong password and 2FA).
If you’re paranoid like me ( 🙈 ) use a different email alias for each service (SimpleLogin)
It would be nice to read the basic points of your statement, then if someone wants to go in detail, there’s the link to your article.
Even SimpleLogin has multiple domains and a personal one can be used.
company that captures smartphone location data from a variety of sources
How do they capture smartphones location?
GDPR and the like! Europe is trying to protect us and evidently something is working!
This shouldn’t apply to Europeans thanks to the GDPR
Oh, I’m rooted, I didn’t know that.
But from the moment that the script updates and breaks something and the moment he realizes it may be too late for some applications.
For example I host Traccar to track car/vans and in this case some tracks would be lost. Or maybe SyncThing, he may realize days/weeks later that a sync is not working and if he was synching his smartphone pictures with his server and the smartphone is lost/broke/stolen, he may lose days/weeks or even months of pictures.
I wouldn’t trust a script. Use Watchtower or What’s up Docker
So it’s the use of a browser within a browser? Is it any different than just using Firefox containers (they are AWESOME!!!) and a VPN add-on?
I use BookStack and with Node Red I export to PDF the books as soon as pages get updated, so if everything goes feet up, I have all the documentation in PDFs (locally and automatically uploaded to a free DropBox account, still done with Node Red).
But the attacker should know the internal and the external DNS. If the internal DNS doesn’t have any SSL certificate on its name, it’s impossible to discover.
By the way, I always suggest to reach services through VPN and use something like Cloudflare tunnel for services that must be public.
P.s. Shouldn’t public and private DNS be inverted in your curl example?
My point is that you can’t compare today’s problem with 20 years ago! 20 years ago the access to the Internet was through the home PC for the amount of time the kid was allowed to use and with people in the house (usually); today the access to the Internet for a kid is 24/7 and everywhere. There is no comparison. Parents should be more present in the kids life? Sure! Parents should block Internet access to porn website at least until a certain age? Yes! But most of them doesn’t even know that ths is possible. Maybe we (society, givernment) should work more here.
Guys, come on, in the '80/early '90 it was almost impossible to have access to porn, maybe some magazine found somewhere. Today a 10 years old can see porn video on a smartphone everytime he wants! You can’t say that it’s the same!
P.s. In my original message I didn’t say that I’m ok with that law, I was asking (to start a kind discussion) what other possibilities there are.
In fact I wrote:
The firsts with wide Internet access were the late millennials.
which seems to be you.
I know, but what were the risks there? There was no Internet! The firsts with wide Internet access were the late millennials.
Or just point secret.local.mydomain.com to the LAN IP of the server.
To avoid opening ports, have a look at Cloudflare tunnel.
Ops. However a small TL;DR would be useful instead of just copying/pasting links.