stupid_asshole69 [none/use name]

That makes a lot of sense.

TBH, I would go with a cloud service in your situation. You’re using icloud now and if you can avoid changing away from it you should. Theres a snap (ugh) that purports to do this natively, but even on a nearly 15 year old thinkpad I can spare the clock cycles and memory to bring osx up in a vm and do it normal style.

I say a service, and you said you’re interested in syncthing (which is very useful) but I’d stick with icloud or something more like it.

I was in a disaster we never thought would happen. My self hosted server was rendered inoperable by it. My offsite backup on the other side of the county was completely destroyed. If it weren’t for cloud backups I’d have lost data. Connectivity was sparse and if I had been privacy focused in the immediate hours I would have recognized then that it was entirely provided by spare bits of dubious infrastructure brought in by the government.

Cloud services like bitwarden and icloud saved by butt. They were prepared for this unimaginable situation to a degree I couldnt have been. When I had a dead phone battery and no laptop, both were able to be accessed securely on other people’s computers and public terminals.

I wouldn’t worry too much about the privacy aspect. Once you have ADP on in iCloud you’re safe from lawful orders and interception is handled by transport encryption like tls, wireguard or whatever. Your pc is a concern but open source versus closed source isn’t the security panacea people make it out to be.

An open source package called winring0 -yes really, it says it in the name- that was abandoned by its developer 15 years or so ago for being a terrible security nightmare was found recently to be in lots of windows rgb drivers shipped by manufacturers today.

That is to say, you can’t really protect yourself from manufacturer and maintainer error or maliciousness. You choose to trust them and have to accept what you get until it’s too spicy and the whole system needs to be ripped out and replaced.

What I would do for privacy is audit my behavior and set up key (or password!) rotation. It’s easy to make sure your secrets are isolated from each other and regularly changed.

If you’re really concerned then make sure you have whole disk encryption (and understand how to recover data from the encrypted disk when the computer it’s attached to fails!). If that doesn’t feel like enough, store your db and any flat files encrypted as well.

In short, don’t change your working system. Change the way you interact with that system to meet your new needs.

What’s your current note taking process? Like do you pull out your phone and type stuff into it or do dictation or what?

I went the other direction and have a composition book or two a year worth of notes. If I want to give one to someone I just tear out a page. If I want to send one in email or a message I just take a picture of it.

I keep a little pocket notebook in my pocket and a big composition book in my computer bag.

What got me to that point, and the reason I asked about your current note taking, is trying to find what you’re talking about and realizing that it’s a pain in the ass, I don’t really use it or want to use it, it’s too ungainly to draw or scribble in, I don’t like it and it’s never at hand when I need it.

A little pad of paper in my back pocket, a pen and a sharpie in some other pocket and taking a few minutes a day to copy (manually sync lol) what gets jotted down in the moment to the composition book is easier and more manageable for me than a complex system that requires a computer.

I was just in a major natural disaster last year and while there were lots of things I didn’t prepare for and couldn’t have imagined, paper notes kept me sane and worked phenomenally.

They’re reputable. Don’t give anyone any data you aren’t comfortable being leaked. Eventually it all comes out.

The only complaint people have is that the devices are expensive and phone home which they should. You’re buying a piece of internet facing technology, you should want it to check in and make sure it’s up to date etc.

Seriously, make sure you turn on automatic updates and change default passwords.

Mullvad didn’t pull port forwarding because of people abusing torrenting. They pulled it because interpol resorted to telling everyone to block their servers after mullvad wouldn’t/couldn’t assist in its investigation into csam sharing across forwarded ports using stuff as simple as the windows file and printer sharing system.

What caused them to pull port forwarding was the threat of being dropped from the routing table over stonewalling a police investigation into csam, not torrenting.

This is well documented and reflects the experience of many mullvad users including myself over the time period that it occurred. Saying that the decision had anything to do with torrenting is just false.

Air has worked really well for me. It’s not as straightforward to set up as some others, but it’s had better uptime than my server.

Boycotts are useful alongside militancy. The Montgomery bus boycott for example, was powerful because it gave an alternate path to resolve disputes that were playing out through marches and demonstrations that faced violent opposition.

Boycotts do not generally succeed at their aims if they are not accompanied by that militant wing.

I don’t know of any actions taken by proton that align with the ceos positions you oppose, for example: selective logging and reporting targeted at people in opposition to the trump government. I don’t know of any militant opposition or public demonstrations against those actions even if they did exist.

So I don’t think a boycott of proton would be effective at its goals even if they were explicit and achievable.

More broadly speaking, political action needs to be weighed against the negative repercussions it can bring; which is why in America, for example, lots of political demonstration tends to be younger people with less to lose.

When weighing that decision against having access to a privacy focused (if you don’t give them any identifying information) service, it may make more sense to abandon the boycott in order to get the service.

You could also just use airvpn, but it’s a little spartan and has a different feature set.

Anyway that was the whole point, that it’s easy to jump into an ineffective type of boycott that really hurts you by exposing you to prosecution and also doesn’t actually accomplish your political goals.

You can’t forward ports on mullvad. You know if that matters to you. Airvpn and proton allow port forwarding.

We are swiftly reaching a time where boycotting companies run by people you disagree with will negatively impact your ability to function. Consider abandoning this type of purchasing in the future.

Private trackers: they’re easy to get into. Ipt will probably temporarily open signups this month, mya is always open afaik and plenty of others have signups where you just have to take a test they give you the answers to. Once you’re in you just gotta maintain a ratio by seeding instead of just downloading all the time and climb the “tracker ladder” to get to the ones you want.

Mya is the one most people start with now.

On VPNs: you have to understand your own security, just like anything else. Ones like mullvad refuse to keep information about you (your login credentials are a random string of numbers and they do cash transactions similarly anonymized), and ones like proton allow you to use information that isn’t tied back to you (it’s your responsibility to make sure that information can’t be tied back to you!). It’s worth learning about them now even if you’re not in a position to pay for one because knowing will help you make good decisions when you are in that position.

If you aren’t gonna use a vpn then require encryption, disable dht and pex, use doh or dot and only use private trackers.

Require encryption, distributed hash table and peer exchange are options in your client. Requiring encryption means a mitm observation of your traffic won’t show you are doing torrenting. Turning off dht and pex prevents someone who’s not a member of your tracker jumping into the swarm and clocking users. DNS over https or tls makes requests to get the ip of a website from the url encrypted, so a mitm observer can’t even see that you went to the bad website to ostensibly do bad things. Private trackers get you out of the low hanging fruit category where enforcement is usually focused.

Of course, anyone who monitors traffic patterns will know you’re torrenting, so laws (or a change in laws or enforcement strategy) can still get you.

If you read all this way and you want to know what the solution is, it’s not i2p or tor, it’s a vpn service. I know you said you don’t want that, but it’s the solution to your problem. You figured out yourself that i2p and tor don’t suit your needs already.

Good vpns have infrastructure that makes it impossible to keep logs and will pass independent audits. They will also not have a history of turning over users data or otherwise acting badly.

I use airvpn for torrenting. It works fine as long as you’re not in Italy.

If you want to understand how a person can trust and afford a vpn, ask away. If you cannot or do not want to use a credit card, use a vpn service like mullvad or proton that accepts cash.

E: edited for a typo

That client doesn’t support it, but for your purposes, bind will do the same job.

Can you just set a bandwidth cap on your client or would your server still not have the cpu power to serve video?

What are you running this on, and are you transcoding, btw?

The internet as it’s been experienced by most living westerners is a product of a unipolar post Soviet world. Cryptography is widespread because it allows for transactions over a new medium.

Alternately, if you want to be crazy, https intentionally builds a web of trust too complex for users to interrogate and acme normalizes accepting new certificates without any real scrutiny and tor is only secure if the exit and entry nodes aren’t communicating or storing data.

BF16 of deez nuts

At least a couple of years ago, rd was looked down upon because users only share within the rd network so despite using torrent technology and maybe even torrent releases only subscribers get the benefits.

If you want an off ramp from it, private trackers are easy to get into now. They want interviews where they give you the answers first and people still fail them.

What are you torrenting and watching on?

If you’re one of those people who just leaves their computer on at home all day you can go ahead and set up the arr stack in preparation for getting that pi5 you mentioned.

No matter if you stick with rd or switch to something else: If you have a spare old computer lying around you can use that too. People will say “no, your power bill!” but the cost is almost always negligible and the hard drives you add for more storage will be the same power draw no matter what. For me, running twelve drives in an old gaming case with a 4th gen i5 comes out to a little under a buck more a month than my rpi3 in the same (not really, I couldn’t plug the sas expander and hba into it, but with the drives in a set of external enclosures) configuration. And the rpi was less stable. And less upgradable. And less powerful and less efficient as I started to use the cpu more.

A free/$20 “junk” pc starts to look a hell of a lot better in the long term when it’s competing against a platform that can only be cheaper per month at idle.

Some third party headphones and stuff show up like this.

Go ahead and shut down the apps you have open, restart the phone and once it finishes restarting, turn on lockdown mode, install any updates asap and then do the privacy check up.

You want to restart to get before first unlock security back on, then turn on lockdown mode because a lot of device and inter process communication gets disabled and if the problem keeps coming back you’ll know to start looking somewhere else. You want to check for and install updates because updates contain security fixes. The privacy check up will tell you what stuff you’ve given access to various ins and outs of the phone and that may tell you something useful.

Please bear in mind that even if you were to figure out a process for torrenting without a vpn in a jurisdiction with a law against it that you don’t want to bear the repercussions of, you still need to seriously audit and understand your own security practices.

Just last week, the guy who runs the website “have I been pwned”, which hosts a searchable database of credentials that have been found in data breaches, was phished and had to add the people on his mailing list to his own websites database of people who suffered from data breaches.

This person is a security consultant to many organizations all over the world and operates one of the first resources used to figure out the breadth and depth of an individual or organizations exposure to leaks.

There are many cases just like this ripped from the headlines example.

If experts in the field cannot guarantee their own security, it follows that you cannot do so either and you may be well served by thinking critically about your own capacity to perform the research required to accomplish the task you’ve laid out for yourself.

To put it more succinctly, and I have to ask that you read the following with as much kindness, understanding and warmth as possible:

You are likely not capable of figuring this out for yourself in a way that keeps you safe from the law.

Please be careful out there and make good decisions. Not everyone on Reddit or lemmy is an expert and many people don’t have your best interests in mind.

I remember a while back the European country air is incorporated in passed an anti vpn law to prevent people from using them to stream soccer games (?). In compliance with the law, air said it wouldn’t offer services to people in that country.

So depending on what country the op is in and how the company is complying with the law, airvpn might not be an option.

That’s probably a bad idea.

Not only are you going from committing a crime in private to committing a crime in public, you’re putting yourself in one of the most vulnerable positions possible when it comes to computer security (every few months there are new attacks developed specifically to target users of free public wifi).

Even if that wasnt a problem to you, businesses often have content blockers and traffic shaping to prevent you from torrenting and when they don’t you’ll be competing with everyone else actively streaming video and audio to their phones as well.

It’s also trivial to figure out who’s torrenting on public wifi and has been for years.

If you’re truly concerned about this new law then public wifi isn’t the solution.

E: and if all that doesn’t convince you and you go through with it, you’ll be causing a problem that will actively make people look for you so the wifi isn’t completely jammed up.

I tried a lot of the alternatives before switching to a vpn for torrenting.

For a long time I only used private trackers with encryption required and dht and whatnot off. It worked pretty good, especially with traffic shaping on the router.

If you really want to avoid paying money that’s where I’d start. The problem you’re gonna run into comes from how the law is used against piracy, who does it and how.

If I were gonna go that route today I’d set up doh or dot first. Both are free if you want to use mullvads servers.

Good luck.

Free vpns sell your data. It’s why they’re free. Processor cycles and bandwidth cost money so if you want someone to use their processor cycles and their bandwidth to encrypt and route your traffic through their servers without clandestinely peeking, and using lawyers and advanced security techniques to ward off the police, you gotta pay them.

In order to seed torrents you need to have a port on your vpn endpoint that is accessible to the internet and gets passed to the computer running your BitTorrent client. This is called port forwarding. There are only so many ports, so a vpn provider that offers port forwarding will probably charge more and you might not be able to get certified hood classics like :42069 because someone is already using it.

I use airvpn for torrents but depending on your European country you might not be able to. There are other port forwarding vpns. The cost is cheap, most come out to less than $5 a month.

Most let you run multiple devices at the same time so you might have your computer at home torrenting through the vpn while you’re away at work browsing porno on the toilet connected to the vpn which lets you get past the work content blockers.

So… just pay for a port forwarding vpn.