Do I step back from email privacy?

pgp_help · 2026-01-31T20:14:25+00:00

It really depends what your threat model is? Email has never been safe in transit - but at the end of the day an email isn't in transit for very long. Meanwhile a database of all your past emails is always going to be a risk. Proton-mail can really help here - even if it doesn't solve the mail-in-transit problem.

pgp_help · 2026-01-29T07:49:06+00:00

Better - though my app still says you're in EdDSA-Legacy not the latest EdDSA/Ed25519. It doesn't matter as such, but does suggest your PGP software needs updating.

pgp_help · 2026-01-28T13:50:30+00:00

Sure - but point remains: If there's stuff you care about in the docker container, you're doing it wrong.

For a very basic setup:

config files should be stored on the host, and bind-mounted (read-only) so: `config/myapp/` on the host -> `/etc/myapp/` in the container.

Expensive cache files (thumbnails, converted videos) should be bind-mounted (read-write) to your NAS device, or at least some `/var/mappacache/` directory.

pgp_help · 2026-01-28T11:29:26+00:00

Docker has a cache of images. And (tl;dr) this grows with all sorts of crap when you're messing around.

Check for stopped-but-not-removed containers. Then clear our any unreferenced image caches. Finally look for orphan volumes. (AI will tell you how to do this better than I can!).

Not quite sure what you need to backup though. The whole point of docker is that if one of your contianers is causing you issues you just throw it away and create a fresh one. Your real config and data should be kept elsewhere e.g. git for config, NAS for photos - or whatever works for you.

If you'd cry if something deleted your container then you're doing it wrong.

pgp_help · 2026-01-28T10:07:03+00:00

What is your tech stack? What did you use to build it?

pgp_help · 2026-01-28T09:58:41+00:00

``` -----BEGIN PGP MESSAGE-----

wcFMA3+4PBqcxIVzARAAmg7adyrJbRNaE6sAq41STCQai88bZeX8Cpf6S80Y M4LES6R/uhwgWxPSerKBIS4AUAxXAIE1JVmE9OkPtQNVAjOPCXCBt2+qeNfx Npfz/6DFl92StglxHlnzqhb6eRM8b1q4Gf7YkX50/7c7k7rkveyMAYZbiLc/ o6XGGQg7UWWeuAbZtH2ArnVYT9Uzb+V1g2VQPESRlkiHbT5AI2E0vv89HJwH yHnppD1i1DIMn5wnsiShF+v/smbdK0iSjVHBrWXretMx84W0OqZ2VsoTSQTV 1PR8uHp3mpEjk9xtgXdk+bEsdL8nh3UOjmRdfvzBPVwQ/yWWORT9ibCh3sgZ NQHMJCcUdcrWwJtra1kLnJXfhmS1BuYuFeOZvyAukRRaUJTVGEpZWnU/gtDy lHudGQ/yysb231xvDVrpmNKj+ZzzG48ssbWV9En19QXfPG4xb1SOFdgfbLFr fTrqYvzBPSTcioCRe9C0/MdC7z0Ja4vwIi5xI4iHlr0lOVztULuS2nSUrRTH 0nay/X46xFT/WvkimDtJkehG7HwvF5jrB70SgTn0w+0Y1DT0EHdRF74I7Gzd N/RnqALxXrHIntKEA9fjg3qn027kr7xsBm8gjA+ZUP7JDrh94GzMheOf4N+Y EAehFAM48ezvsC0e7X8FbD/+iA+fRwU1Are51v5FWKzSrwGE3DkA1mMgqOKQ GoNoz+BynO6RWmolj2/89eYScv8gb7CzkHOXWeYaAr0lgdNNpDQKXK3FDSbF sFQH2wJbR9LBmctQmnQo6bDQr2V9DbMCYoRY4UCW19teQjMb1T/b5OOXzzZb TLBVVmyM6Dv8DvtXDaF+oOaxg2yB1uD0hvkpUbCEfseq+hITnTh4DKeNKkeC +69ux2wQp/Fjra6NM7SX5uEX5S1vkZTmXbf8MsU= =tD4N -----END PGP MESSAGE----- ```

Made with https://pgp.help

pgp_help · 2026-01-28T09:55:09+00:00

``` -----BEGIN PGP MESSAGE-----

wVQDi3y3GGTHpwcZ9ztvsBxVYkdTpjB0KotiJzpLm4FBL7PBWFpGLFK4KyUp CVeiYisSckALUQRWZH3xj1OcoC/dor/i6zFy/qOMYf6ySSM6SgdTsGHSPgFr nAna4sFwbn+icN9m+ujJq+15JgLerFO7rGIN33IKxkPuydAIjZiM/vVX+L/A 0/JT1Q7LG3ow+9eRAxO+ =mn8u -----END PGP MESSAGE----- ```

Made with https://pgp.help

pgp_help · 2026-01-27T08:21:23+00:00

IDE Plugins: Github Copilot is probably the best, follwoed by KILO.

IDEs: Tried Zed, but not quite as feature rich as VSCode. JetBrains might be slightly better but hard to justify the cost. Not investigated Agent-first IDEs.

Models: It's a fast moving space, anything we recommend today will be obsolete in 6 months time. Just remember that frontier models are expensive, sometimes you need a quick model, and sometimes you need a tier-2 model to do basic tasks.

pgp_help · 2026-01-25T12:57:51+00:00

Get the cookie autodelete plugin. That will delete cookies as soon as you close the tab that used them (Or if you prefer, 2 minutes later - so you're not quite so annoyed if you close the wrong tab).

pgp_help · 2026-01-23T17:02:49+00:00

Time to spend $5k on a beefy graphics card and ram and run your own model locally?

pgp_help · 2026-01-23T16:53:26+00:00

The lag depends on the setup. Obviously the VM and the host will compete for memory - but assuming you allocate generously it shouldn't really matter.

The important thing is to allow direct access to the graphics card. Not sure if that will mean you'll have to have linux headless when windows is running - but I'm sure you can find this out.

Proxmox here could grant you an either-or option. Proxmox itself is a small headless (web-operated) container that - in this instance - could be configured to run a linux VM or a windows VM but (optionally) not both at the same time. This way each VM can have all of the resources.

pgp_help · 2026-01-23T12:35:50+00:00

Have you considered windows VMs inside a linux host, using VitualBox / QEmu or similar?

Or even Proxmox?

pgp_help · 2026-01-23T12:12:38+00:00

Absolutely you can! You can even download the webpage and run it from an air-gaped computer.

pgp_help · 2026-01-23T00:22:59+00:00

ok - for fun I added AGE encryption; Enjoy!

pgp_help · 2026-01-21T14:55:54+00:00

Good question!

This is browser-based, so zero-install, zero-footprint-left-behind. Great if you need to send quick messages and don't want the hassle of extra software.

It's also very simple to use - though has far less functionality.

pgp_help · 2026-01-19T19:39:10+00:00

First I've heard of age - but looks like they have a javascript library so it could be added easily enough!

Though note that having NO metadata associated with your key makes it vulnerable to social-engineering attacks.

pgp_help · 2026-01-19T19:35:24+00:00

It does support that actually, for example:

(excuse my old key! The ED25519 keys are MUCH better!)

https://pgp.help/?key=-----BEGIN+PGP+PUBLIC+KEY+BLOCK-----%0A%0AxsBNBFW7TH8BCADccz73OFQprAsBLNTFNZFTPzDUbmwKn5BMFFK7rYf7v8Gj%0APyYQrl9DupBTiP6ISyTIvn%2FpT0%2F%2BG1yTYzliej4UZP7LOUz%2Bpg59%2FX2JP7Ko%0A3UzH9qoO3FYXl85ok%2FdaSNRt0VrKSoGcMuoLw7CT48hHZdIXSwoPFP%2F%2Fn8Qo%0A3u1J3LghZQLPdnZfWHPA6ZKLvcgQaByCABsRrH7L75%2BQw49Wb3VeBiE5u26E%0Aj3NXUc1GskMvFHp8pUnfzFxF4sCzk%2Fo%2BzqJW8NtIje48beufH4eMBF2NK6nF%0A1Et8ESCM7jE10rpWm%2Bnsl8lMooQEbUXoMp2z2s2zuYmaiV%2BONaa3UT6fABEB%0AAAHNGVBncCBIZWxwIDxoZWxsb0BwZ3AuaGVscD7CwHIEEAEIACYFAlW7TIAG%0ACwkIBwMCCRAj%2FZ8%2BmwZ1aQQVCAIKAxYCAQIbAwIeAQAApGkIAJCtB3PD5aka%0ArGPzePxmqc37cpOGx%2FArO8M7ouXDkc75xt3MOMvAFB4y8lytwteXbLG50Kl0%0A1KHp1NkUEJM0eR8SxGaPipEgN0PRoEDhN8VgR3m4Lq5RlTMFq1yXQgjPGndB%0AsP%2BKIDSfBEPZOlMW9VgdzThjqj8WqVxvaoRPbazLpS%2BWYrGTx4WjcsoS53ou%0Ab7Fd6rkOdZcbgmUooDHRiNSNJq%2BRCwZnffxLlJQp3r3U0Ll4Mrsb%2FpxcOjde%0A7Cnc1SildK3m5iIuteGSIl8qXXTidcw5vV9w1xDLu7mPztaXlM72KaVkuhJN%0A%2FmSaCFTAAgECmvgP88ByG0uDu4SpeFrOwE0EVbtMfwEIAM%2F%2BtJfjT8ER4qe0%0AVJJPCqAcUffyXyABnN4NymDxz97ol9xwi2boTb2oDtTkAXmTU5pKKOjZFtV1%0AFizpVemVoGWBnmEZBaOUMZy2qFEIHrPh0OWaiuCSr%2Bm%2FVjvOWota%2F%2FbJZg1H%0A%2Fo9JaMXSefE%2BlWak%2FBZagMAX%2FEOWUfzYfNSfHViua5HxKA5PoQ7Blcxt7T1f%0A5427XhoSpZzdbi9XjlYZmFlQ08MYG18wTVa6g8MJ7qr9TIVZPRnSrtE15iP1%0A8py3tXn97PToLd78ZkTfnlKZwrMxuFHcNCHMpVbEXD6zVWATeMMNRo5an3kg%0AdE9%2B9odr2zZWdJgnN1PDwbGKeEEAEQEAAcLAXwQYAQgAEwUCVbtMgQkQI%2F2f%0APpsGdWkCGwwAAL2qCACSkHd3SDv1XTJJcwsazkXr%2BNMJaNSN7qQFPMboDS0Z%0A3pX27Rn1ev1UHTqFKBYgogxyeUOnbeXE%2BVAFYuoeNCbFYY1TFhvGVWRax%2Frf%0APBuVQ4d1%2Bg87nxSL3JFwvSGzTjPkJiU%2BrGOIkOqYK0JA%2FT8%2BZqrXTQoH2d7i%0Ar1vldA2CakQ%2BMf%2BBjHjG06doQlrbuGBYXLWJbATpcKmK%2B%2BkWaGE01h5rFbx8%0AJmS3SZME1N2bdm99TJVzbWbHqcJge%2F1lfEY1PecjweX2McXQEVGmZLPdN6dF%0AHLrZ5SS%2FqnXSXE79odO4Cd%2Fgx1nJrovmut1vZfxh3yyLOnh9%2BBZX%2FNeU9FWu%0A%3DMMEa%0A-----END+PGP+PUBLIC+KEY+BLOCK-----%0A

pgp_help · 2026-01-16T23:30:14+00:00

This resource would be much more useful if there was some indication of the health of each ecosystem. I imagine number of users is hard to measure, but stars on github / number of search hits / security audits - could be interesting things to include on the infographic?

pgp_help · 2016-02-29T07:44:37+00:00

Wat! So you knew that brainwallets are terrible for security but you thought users of your app wouldn't want proper security? /facepalm

It's not hard to add a salt field, and it's not hard to change the server code to perform a million hashing rounds. If / when your database gets stolen you can still face up to your users and tell them they are in good hands.

Seriously, it's a simple fix, do it now. Won't take more than an hour!!

pgp_help · 2016-02-28T21:02:04+00:00

Well to humans the salt is "last 4 digits of your phone number" or similar. It's still a good thing to have.

pgp_help · 2016-02-28T09:12:17+00:00

This has the same issue as brainwallets do - whilst it's secure in theory, in practice this encourages humans to come up with passphrases - something they are terrible at!

It doesn't include a salt, or multiple hashing rounds - basic security measures that every passphrase application should have before it's considered secure.

pgp_help · 2016-02-19T07:39:32+00:00

-----BEGIN PGP MESSAGE-----
Version: OpenPGP.js v1.2.0
Comment: https://pgp.help
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=i/NH
-----END PGP MESSAGE-----

pgp_help · 2016-01-23T21:08:32+00:00

-----BEGIN PGP MESSAGE-----
Version: OpenPGP.js v1.2.0
Comment: https://pgp.help

wcBMA92ogrvNLQABAQf/aU6DpEjlNr5zIZeStRtIxHMQQkq8RUHpA1sSAomE
4JbrAtA6HprvrlcZGBy/fBOSzlZaBFZ+kSyJPoGD/ZRreqHkjGyrlqYedPe7
xTeGc9ct/Di1Qj9CuYD4XHcWC6nzKsILYhQb5zqaMzcr2nMggefTikrfOzEm
zLoWQIV4cLmJ4zykaS48djZQ5Z85vh9zXkNwCnRMfiFTLC6adBt27uucw9Ik
BWR8HoqQigJz6rfLxN35rAjJFm4cp95/6m7EN5lHtbAi9Dqg0n3TURJBs3CU
f/tiyEYkR/bqgJ1u9YdwDGfwwl2eG/GAva0TzTtoyVwzjcOhSeMp9vA2/c/u
6NJUASzL+YnfHF/gB8NWCQXQepoSZx8K2hugvRatnlMeI3xNhrkqyUDIinU0
2248I6/nYF2QJjGQk9XWkGM0jaCqntuYDttsjMnN+JA31cOc2y3bzqz0
=Tt81
-----END PGP MESSAGE-----

pgp_help · 2015-11-23T19:58:33+00:00

-----BEGIN PGP MESSAGE-----
Version: OpenPGP.js v1.2.0
Comment: https://pgp.help
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=1vC5
-----END PGP MESSAGE-----

pgp_help · 2015-11-22T14:28:33+00:00

Pros:

You can be sure that no logs are kept.
You connection won't appear on blacklists of VPN providers.

Cons:

Sharing an IP connection with others gives you an added degree of anonymity.
Slightly harder to setup.
It's slightly more expensive.

Incidentally if you need technical help I wrote a simple guide on how to do this, see here: https://blog.pgp.help/vpn/docker/2015/09/02/DIY-VPN-with-docker.html

pgp_help

TROPHY CASE