From the GH issue:

"There are multiple privacy and telemtry issues with this browser. Please see the discussion forum for people raising these issues. It seems telemetry is very much still enabled (not just a we missed some things problem)."

Calling this a backdoor is way overblown?

I've tried different approaches with fail2ban, crowdsec, VPNs, etc. What I settled on is to divide the data of my services in two categories: confidential and "I can live with it leaking".

The ones that host confidential data is behind a VPN and has some basic monitoring on them.

The ones that are out in the public are behind a WAF from cloudflare with pretty restrictive rules.

Yes, cloudflare suck etc., but the value of stopping potential attacks before they reach your services is hard to match.

Just keep in mind: you need layers of different security measures to protect your services (such as backups, control of network traffic, monitoring and detection, and so on).

I'd be more than happy to see all links pointing to xitter banned. FB/Meta would be nice too, but I think it's more important to sending a clear signal on neo-nazi salutes being a red line.

If you don't mind clutter free, simple presentations, try hack.md or cryptpad. Both supports markdown styled presentations, both are FOSS cloud applications and the format of the presentation is highly portable.

If you want to get really ambitious, try marp framework for presentations - still markdown but on steroids.

angry upvote

Linux from scratch, does that count?

(It isn't a distro, but more of a learning project that will expand your knowledge a lot, after you've emitted buckets of blood, sweat and tears)

The flagship instance is pretty solid. Right now matrix instances seem to consume a lot of resources which makes it expensive to run for admins.

They require a lot of tinkering for a half-arsed result. Built in vertical tabs like in Vivaldi or edge work and feel much better with just a single setting.

Thank you (and all others who replied), this worked flawlessly :-)

Matrix, I'd you want something truly open and respects user privacy.

I didn't know Mastodon implemented a built-in way to verify your account, this is great news. For those who want to verify on other networks: you can use keyoxide.org for that - however it is a rather cumbersome process. But I know that the developer (@yarmo@fosstodon.org) is aware of it and aim to make it more easier to verify different accounts on different platforms.

And to expand further on simplicity, one can avoid using email and send messages over ntfy with just a POST curl call.

I like your setup!