banIP works at IP layer. It basically injects additional firewall rules to nftable to reject packets from specific set of IP addresses. It is not aware of layer 7 like HTTP.
What is your goal exactly? Do you want to allow /.well-known to all countries including the bad ones you are blocking? Then you’ve to do it at application layer or setup a reverse proxy that has WAF (Web Application Firewall) and serve ./well-known from the proxy.
Good for you. I use OpenWrt on a decent router yet it’s so flexible. I can create multiple VLANs with different firewall rules, multiple APs, Ad and IP blocking etc.
Honestly I can’t imagine going back to a shitty ISP router ever.
Update your browser or OS. It’s all good here.
Poor Windows. It got caught in the hands of middle and upper management who absolutely have no clue what they are trying to do. Last time I used Windows 11, it looked horrible with each app using different design language and tonnes of MSN stories, advertisements etc. Is that what they are calling AI? It didn’t help with any of the task I needed to complete and was more annoying than anything.
I’m definitely not against AI and in fact I wish AI becomes much efficient so it can run on local machines. I can see it is useful in many areas like translation, video compression, accessibilty tools, code reviews, grammar check, writing etc. But shoving it everywhere makes me puke. It’s waste of time, power, minerals, water and also investor money.
Get real Microsoft.
That repo does not have any source code or license. The license file has a link to their terms & conditions.
Agree. Saying TPM is bad is same as saying Encryption is bad. It’s not about the technology. It’s about the evil hearted corporations using these technologies to limit user freedom.
I replaced Raspberry Pis with Intel NUC mainly because NUC comes with TPM 2.0. I can now encrypt my drives without storing the key in plaintext.
I could not read the blog because it blocked me for using VPN (speaking of DRMs :) ). While I agree DRM is evil and should be ablolished from user’s computers, readers should not get wrong idea about TPM. It’s what protects your phone and servers from attackers. Desktop would also benefit from it a lot.
I could not find the license or source code for their desktop app. Is it even open source?
That too on ARM. Whereas modern applications on Windows (and Mac, Linux) even on high performance x86 sucks so much. Slack and Chrome are two of the worst pieces of software ever designed by humans.
It’s the Supreme Court of India not Telangana which is a state in India.
That was a rhetorical qustion. It’s their servers which generates the key. So Telegram has both the lock and the key and claim they are “heavily encrypted”.
Signal or SimpleX.
All data sent to Telegram’s servers will be encrypted once they reach the servers.
and who generated the key?
Every text you send through Telegram is stored in plaintext. Telegram and authorities can access that without your knowledge. Also it will get leaked in a breach someday.
Now you decide for yourself if it’s private.
Since when did it become unethical to express an individual’s opinion? Andy (Proton CEO) is just like any other human. He has his own flaws and opinions. What you need to look into is whether Proton products are secure and private as they claim.
Unlike Sam Altman, who made OpenAI a for‑profit company from a non‑profit, Andy turned Proton into a non‑profit from a for‑profit. I don’t see many people appreciating that. But when someone expresses a political opinion, they’re canceled for life. I wish cancel culture would die away.
Proton is targetting enterprise who would love a secure alternative to Google Workspace. A normal consumer don’t need to put all eggs in one basket. I don’t think Proton is forcing you either. I just use their paid email service.
Not only is it resource‑intensive, but Qubes also lacks Secure Boot and Wayland support. Secure Boot is critical to ensure the OS has not been tampered with, and Wayland is required to isolate individual apps running within a single VM from capturing input intended for other apps. For an average user, I would recommend SecureBlue rather than Qubes.
Same setup here. Worked for years and I’ve no plans to switch. As long as Nextcloud is up, bidirectional editing is simple. Trouble comes when one of the clients edited the KeePass file and can’t sync.