u/bny_lwy

What are the security basics a noobie can put in place, beyond "strong pwd and 2fa"?
For now im mostly running everything as root, with unprivileged LXC, as well as PVE as root. I have a feeling it might not be great, but i dont really what to do as a routine to spin up LXCs / VMs.

As a sidenote I use Tailscale the most I can to access LXCs / VMs using its ssh feature, which, if I understand correctly, is a nice hardenning.

What is your workflow for creating LXCs / VMs at the security level?

Title says it all, but for context I want to start to self host a bunch of stuff (Immich, Arr, etc...), and right now I run them manually on my main desktop whenever I need it, which is a huge slowdown for a 100% adoption.

I have a spare Pi and a laptop I almost never use, and I think that using the laptop as a first home server might be a great move, allowing also portability if I move on to dedicated hardware in the future (which will not be that easy with Pi because of the ARM architecture).

Which OS is a good pick for that? Right now its on Arch, I see also some use Ubuntu server... What Im scared of is mostly having an insecure machine, with all the new Linux CVE poping up like crazy, I dont know if going on a rolling release would be better.

Thanks in advance!

I want to buy one or two domains (.fr) from Scaleway, to host a website and also redirect mails.

They want my ph0ne number and also an ID to verify my identity. How much should I care, and should I search for a more expensive but more private registrar? Or are we cooked anyway.

Sidenote: i have level 0.5 opsec, im updating some of my logins right now but i did never care before

I might be missing something, but Im currently changing a lot of my email / username on many website to use aliases (with SimpleLogin but nvm), and I don't understand why the username field is for username OR email. Why isnt there both?

When a website require both, I have to save one of those field as a note in the identifier, and it really feels wrong.

How are you dealing with this, and will it come at some point?

Im planning to buy a domain (.fr) and from now on, use a lot of aliases provided by simplelogin.

Im not into anything fishy, but im interested into privacy and asking myself what should i do to maximise it.

What are you guys doing? Is your domain @<yourname> or @<gibberish>?
Do you give your mail@yourdomain to anyone, or do you give only aliases?
Is simplelogin even a wall for anyone that want to find who is behind?

Should I care about governement radical shifting and get an offshore DNS?

I might be overthinking it, but this is new to me and I dont understand all the intrication.

My address have leaked multiple time, and I have put it to a lot of place. Now that Im more aware of the best practices, is there to migrate to a new address without losing all?

Bonjour la piraterie, je débarque fraîchement en mer! Étant originaire des terres neolibérales des plateformes centralisées, je n'ai naturellement aucun équipage vers lequel me tourner pour ma première balade au large.

Quelques questions:

• Trackez vous français uniquement?
• Y a-t'il des canaux (Matrix, IRC ou autre) vers lesquels se tourner pour s'immerger un peu dans la culture p2p?
• Des publics à recommander pour débuter?
• Quel conseil donneriez-vous à un fin technicien comme moi qui se heurte aux moults portes closes et ne sais comment s'y prendre?

D'avance merci camarades !!