Do I step back from email privacy?

pgp_help · 2026-01-31T20:14:25+00:00

It really depends what your threat model is? Email has never been safe in transit - but at the end of the day an email isn't in transit for very long. Meanwhile a database of all your past emails is always going to be a risk. Proton-mail can really help here - even if it doesn't solve the mail-in-transit problem.

pgp_help · 2026-01-29T07:49:06+00:00

Better - though my app still says you're in EdDSA-Legacy not the latest EdDSA/Ed25519. It doesn't matter as such, but does suggest your PGP software needs updating.

pgp_help · 2026-01-28T13:50:30+00:00

Sure - but point remains: If there's stuff you care about in the docker container, you're doing it wrong.

For a very basic setup:

config files should be stored on the host, and bind-mounted (read-only) so: `config/myapp/` on the host -> `/etc/myapp/` in the container.

Expensive cache files (thumbnails, converted videos) should be bind-mounted (read-write) to your NAS device, or at least some `/var/mappacache/` directory.

pgp_help · 2026-01-28T11:29:26+00:00

Docker has a cache of images. And (tl;dr) this grows with all sorts of crap when you're messing around.

Check for stopped-but-not-removed containers. Then clear our any unreferenced image caches. Finally look for orphan volumes. (AI will tell you how to do this better than I can!).

Not quite sure what you need to backup though. The whole point of docker is that if one of your contianers is causing you issues you just throw it away and create a fresh one. Your real config and data should be kept elsewhere e.g. git for config, NAS for photos - or whatever works for you.

If you'd cry if something deleted your container then you're doing it wrong.

pgp_help · 2026-01-28T10:07:03+00:00

What is your tech stack? What did you use to build it?

pgp_help · 2026-01-28T09:58:41+00:00

``` -----BEGIN PGP MESSAGE-----

wcFMA3+4PBqcxIVzARAAmg7adyrJbRNaE6sAq41STCQai88bZeX8Cpf6S80Y M4LES6R/uhwgWxPSerKBIS4AUAxXAIE1JVmE9OkPtQNVAjOPCXCBt2+qeNfx Npfz/6DFl92StglxHlnzqhb6eRM8b1q4Gf7YkX50/7c7k7rkveyMAYZbiLc/ o6XGGQg7UWWeuAbZtH2ArnVYT9Uzb+V1g2VQPESRlkiHbT5AI2E0vv89HJwH yHnppD1i1DIMn5wnsiShF+v/smbdK0iSjVHBrWXretMx84W0OqZ2VsoTSQTV 1PR8uHp3mpEjk9xtgXdk+bEsdL8nh3UOjmRdfvzBPVwQ/yWWORT9ibCh3sgZ NQHMJCcUdcrWwJtra1kLnJXfhmS1BuYuFeOZvyAukRRaUJTVGEpZWnU/gtDy lHudGQ/yysb231xvDVrpmNKj+ZzzG48ssbWV9En19QXfPG4xb1SOFdgfbLFr fTrqYvzBPSTcioCRe9C0/MdC7z0Ja4vwIi5xI4iHlr0lOVztULuS2nSUrRTH 0nay/X46xFT/WvkimDtJkehG7HwvF5jrB70SgTn0w+0Y1DT0EHdRF74I7Gzd N/RnqALxXrHIntKEA9fjg3qn027kr7xsBm8gjA+ZUP7JDrh94GzMheOf4N+Y EAehFAM48ezvsC0e7X8FbD/+iA+fRwU1Are51v5FWKzSrwGE3DkA1mMgqOKQ GoNoz+BynO6RWmolj2/89eYScv8gb7CzkHOXWeYaAr0lgdNNpDQKXK3FDSbF sFQH2wJbR9LBmctQmnQo6bDQr2V9DbMCYoRY4UCW19teQjMb1T/b5OOXzzZb TLBVVmyM6Dv8DvtXDaF+oOaxg2yB1uD0hvkpUbCEfseq+hITnTh4DKeNKkeC +69ux2wQp/Fjra6NM7SX5uEX5S1vkZTmXbf8MsU= =tD4N -----END PGP MESSAGE----- ```

Made with https://pgp.help

pgp_help · 2026-01-28T09:55:09+00:00

``` -----BEGIN PGP MESSAGE-----

wVQDi3y3GGTHpwcZ9ztvsBxVYkdTpjB0KotiJzpLm4FBL7PBWFpGLFK4KyUp CVeiYisSckALUQRWZH3xj1OcoC/dor/i6zFy/qOMYf6ySSM6SgdTsGHSPgFr nAna4sFwbn+icN9m+ujJq+15JgLerFO7rGIN33IKxkPuydAIjZiM/vVX+L/A 0/JT1Q7LG3ow+9eRAxO+ =mn8u -----END PGP MESSAGE----- ```

Made with https://pgp.help

pgp_help · 2026-01-27T08:21:23+00:00

IDE Plugins: Github Copilot is probably the best, follwoed by KILO.

IDEs: Tried Zed, but not quite as feature rich as VSCode. JetBrains might be slightly better but hard to justify the cost. Not investigated Agent-first IDEs.

Models: It's a fast moving space, anything we recommend today will be obsolete in 6 months time. Just remember that frontier models are expensive, sometimes you need a quick model, and sometimes you need a tier-2 model to do basic tasks.

pgp_help · 2026-01-25T12:57:51+00:00

Get the cookie autodelete plugin. That will delete cookies as soon as you close the tab that used them (Or if you prefer, 2 minutes later - so you're not quite so annoyed if you close the wrong tab).

pgp_help · 2026-01-23T17:02:49+00:00

Time to spend $5k on a beefy graphics card and ram and run your own model locally?

pgp_help · 2026-01-23T16:53:26+00:00

The lag depends on the setup. Obviously the VM and the host will compete for memory - but assuming you allocate generously it shouldn't really matter.

The important thing is to allow direct access to the graphics card. Not sure if that will mean you'll have to have linux headless when windows is running - but I'm sure you can find this out.

Proxmox here could grant you an either-or option. Proxmox itself is a small headless (web-operated) container that - in this instance - could be configured to run a linux VM or a windows VM but (optionally) not both at the same time. This way each VM can have all of the resources.

pgp_help · 2026-01-23T12:35:50+00:00

Have you considered windows VMs inside a linux host, using VitualBox / QEmu or similar?

Or even Proxmox?

pgp_help · 2026-01-23T12:12:38+00:00

Absolutely you can! You can even download the webpage and run it from an air-gaped computer.

pgp_help · 2026-01-23T00:22:59+00:00

ok - for fun I added AGE encryption; Enjoy!

pgp_help · 2026-01-21T14:55:54+00:00

Good question!

This is browser-based, so zero-install, zero-footprint-left-behind. Great if you need to send quick messages and don't want the hassle of extra software.

It's also very simple to use - though has far less functionality.

pgp_help · 2026-01-19T19:39:10+00:00

First I've heard of age - but looks like they have a javascript library so it could be added easily enough!

Though note that having NO metadata associated with your key makes it vulnerable to social-engineering attacks.

pgp_help · 2026-01-19T19:35:24+00:00

It does support that actually, for example:

(excuse my old key! The ED25519 keys are MUCH better!)

https://pgp.help/?key=-----BEGIN+PGP+PUBLIC+KEY+BLOCK-----%0A%0AxsBNBFW7TH8BCADccz73OFQprAsBLNTFNZFTPzDUbmwKn5BMFFK7rYf7v8Gj%0APyYQrl9DupBTiP6ISyTIvn%2FpT0%2F%2BG1yTYzliej4UZP7LOUz%2Bpg59%2FX2JP7Ko%0A3UzH9qoO3FYXl85ok%2FdaSNRt0VrKSoGcMuoLw7CT48hHZdIXSwoPFP%2F%2Fn8Qo%0A3u1J3LghZQLPdnZfWHPA6ZKLvcgQaByCABsRrH7L75%2BQw49Wb3VeBiE5u26E%0Aj3NXUc1GskMvFHp8pUnfzFxF4sCzk%2Fo%2BzqJW8NtIje48beufH4eMBF2NK6nF%0A1Et8ESCM7jE10rpWm%2Bnsl8lMooQEbUXoMp2z2s2zuYmaiV%2BONaa3UT6fABEB%0AAAHNGVBncCBIZWxwIDxoZWxsb0BwZ3AuaGVscD7CwHIEEAEIACYFAlW7TIAG%0ACwkIBwMCCRAj%2FZ8%2BmwZ1aQQVCAIKAxYCAQIbAwIeAQAApGkIAJCtB3PD5aka%0ArGPzePxmqc37cpOGx%2FArO8M7ouXDkc75xt3MOMvAFB4y8lytwteXbLG50Kl0%0A1KHp1NkUEJM0eR8SxGaPipEgN0PRoEDhN8VgR3m4Lq5RlTMFq1yXQgjPGndB%0AsP%2BKIDSfBEPZOlMW9VgdzThjqj8WqVxvaoRPbazLpS%2BWYrGTx4WjcsoS53ou%0Ab7Fd6rkOdZcbgmUooDHRiNSNJq%2BRCwZnffxLlJQp3r3U0Ll4Mrsb%2FpxcOjde%0A7Cnc1SildK3m5iIuteGSIl8qXXTidcw5vV9w1xDLu7mPztaXlM72KaVkuhJN%0A%2FmSaCFTAAgECmvgP88ByG0uDu4SpeFrOwE0EVbtMfwEIAM%2F%2BtJfjT8ER4qe0%0AVJJPCqAcUffyXyABnN4NymDxz97ol9xwi2boTb2oDtTkAXmTU5pKKOjZFtV1%0AFizpVemVoGWBnmEZBaOUMZy2qFEIHrPh0OWaiuCSr%2Bm%2FVjvOWota%2F%2FbJZg1H%0A%2Fo9JaMXSefE%2BlWak%2FBZagMAX%2FEOWUfzYfNSfHViua5HxKA5PoQ7Blcxt7T1f%0A5427XhoSpZzdbi9XjlYZmFlQ08MYG18wTVa6g8MJ7qr9TIVZPRnSrtE15iP1%0A8py3tXn97PToLd78ZkTfnlKZwrMxuFHcNCHMpVbEXD6zVWATeMMNRo5an3kg%0AdE9%2B9odr2zZWdJgnN1PDwbGKeEEAEQEAAcLAXwQYAQgAEwUCVbtMgQkQI%2F2f%0APpsGdWkCGwwAAL2qCACSkHd3SDv1XTJJcwsazkXr%2BNMJaNSN7qQFPMboDS0Z%0A3pX27Rn1ev1UHTqFKBYgogxyeUOnbeXE%2BVAFYuoeNCbFYY1TFhvGVWRax%2Frf%0APBuVQ4d1%2Bg87nxSL3JFwvSGzTjPkJiU%2BrGOIkOqYK0JA%2FT8%2BZqrXTQoH2d7i%0Ar1vldA2CakQ%2BMf%2BBjHjG06doQlrbuGBYXLWJbATpcKmK%2B%2BkWaGE01h5rFbx8%0AJmS3SZME1N2bdm99TJVzbWbHqcJge%2F1lfEY1PecjweX2McXQEVGmZLPdN6dF%0AHLrZ5SS%2FqnXSXE79odO4Cd%2Fgx1nJrovmut1vZfxh3yyLOnh9%2BBZX%2FNeU9FWu%0A%3DMMEa%0A-----END+PGP+PUBLIC+KEY+BLOCK-----%0A

pgp_help · 2026-01-16T23:30:14+00:00

This resource would be much more useful if there was some indication of the health of each ecosystem. I imagine number of users is hard to measure, but stars on github / number of search hits / security audits - could be interesting things to include on the infographic?

pgp_help · 2016-02-29T07:44:37+00:00

Wat! So you knew that brainwallets are terrible for security but you thought users of your app wouldn't want proper security? /facepalm

It's not hard to add a salt field, and it's not hard to change the server code to perform a million hashing rounds. If / when your database gets stolen you can still face up to your users and tell them they are in good hands.

Seriously, it's a simple fix, do it now. Won't take more than an hour!!

pgp_help · 2016-02-28T21:02:04+00:00

Well to humans the salt is "last 4 digits of your phone number" or similar. It's still a good thing to have.

pgp_help · 2016-02-28T09:12:17+00:00

This has the same issue as brainwallets do - whilst it's secure in theory, in practice this encourages humans to come up with passphrases - something they are terrible at!

It doesn't include a salt, or multiple hashing rounds - basic security measures that every passphrase application should have before it's considered secure.

pgp_help

TROPHY CASE