I used to do this, but then why revealing even my domain. I have bitwarden integrated with simplelogin, and I get service_garbage@aliasdomain.tld

This way I can easily filter with prefix matching (if I want to), but don’t reveal anything at all about me. Also much easier to be consistent, block senders etc. Plus, I can send emails from all those addresses if I ever need (e.g., support).

By user abc@example.com

I understood what you meant, not sure why you would assume otherwise. My point is that there is no need to invent new business models. Your proposal is similar to “pay with your data”, a new business model that has negative consequences for the collectivity.

In case of these types of games, a flat rate for the game and potentially a pay-per-use without margin to cover hosting (minimal, can be factored in the initial price) and API calls (gMaps) could be an option. Or none of this, and they factor in the cost already in the initial purchase. Either way, to come back to the topic of discussion, asking a one year subscription for a game sold for free (to lure people in) is IMHO predatory behavior with no excuse.

Anyway, tl;dr money already exists and people can pay for that, we don’t need to waste more computing power to find an alternative. The use of crypto incentives the overall crypto market which causes even more people (or companies) to waste energy for nothing.

This feels like a technical approach for a solution to a political problem. We shouldn’t normalize a solution to a predatory approach that companies have, we should regulate so that the approach can’t be taken by companies on the first place, we should foster competition so that those who do are going to be outcompeted etc.

Wasting even more electricity to compute numbers used in an unstable speculative market with no clear future is IMHO a completely wrong approach to the problem.

Objdct storage is anyway something I prefer over their app. Restic(/rustic) does the backup client side. B2 or any other storage to just save the data. This way you also have no vendor lock.

Wow, those are big networks. Obviously I suppose in case of AWS it doesn’t matter as no human visitor (except maybe some VPN connection?) will visit from there.

As someone who bans /32 IPs only, is the main advantage resource consumption?

I presume you mean running Plex in host namespace. I don’t do that as I run the synology package, but I can totally see the issue you mean.

Running in host namespace is bad, not terrible, especially because my NAS in on a separate VLAN, so besides being able to reach other NAS local services, cannot do do much. Much much much less risk than exposing the service on the internet (which I also don’t).

Also, this all is not a problem for me, I don’t use remote streaming at all, hence why I am also experimenting with jellyfin. If I were though, I would have only 2 options: expose jellyfin on the internet, maybe with some hacky IP whitelist, or expect my mom to understand VPNs for her TV.

(which doesn’t harden security as much as you think)

Would be nice to elaborate this. I think it reduces a lot of risk, compared to exposing the service publicly. Any vulnerability of the software can’t be directly exploited because the Plex server is not reachable, you need an intermediate point of compromise. Maybe Plex infra can be exploited, but that’s a massively different type of attack compared to the opportunities and no-cost “run shodab to check exposed Plex instances” attack.

No that’s the thing. Plex can also use their infra as a tunneling system. You can have remote streaming without exposing Plex publicly and without VPN. It is slow though.

Well, as an application it has a huge attack surface, it’s also able to download stuff from internet (e.g., subs) and many people run it on NAS. I run jellyfin in docker, I didn’t do a security assessment yet, but for sure it needs volume mounts, not sure about what capabilities it runs with (surely NET_BIND, and I think DAC_READ_SEARCH to avoid file ownership issues with downloaders?). Either way, I would never expose a service like that on the internet.

Not to be “achtuallying” bit VPN is not a way to remote stream, it’s a way to bring remote clients in the local network.

Likewise exposing services on the internet…not really going to happen esepcially for people - like me - that run plex/jellyfin on their NAS.

I don’t have a horse in this race, i don’t use remote streaming, I only ever streamed from my nas to my 2 TVs, and I am experimenting with jellyfin. But for those who do need remote streaming, jellyfin is going to be problematic.

Run it with sudo in case you don’t see the process name with the above command.

sudo ss -patln | grep 443

That is exactly my experience!

I have been a competitive player for stuff like WoW and LoL for years, and very conservative in the types of games I play (always 1/2 max). Since I bought the deck I went deep into Hollow Knight rabbit hole and loved it, playing balatro and many other smaller indie games, chilling on the sofa and without the addicting factor of online PvP.

I get the racial stereotypation, but at least it should be funny.

Btw, taking a hunting license requires a medical exam (including psycho-physic evaluation), a basic zoology exam to recognize species, an exam on laws around hunting, one about nature preservation and one on weapons handling. It has to be renewed every 5 years.

Nothing too complicated, tons of idiots have it, but still quite a process.

Removed by mod

Removed by mod

Jamf doesn’t do anything for this problem, besides costing you a fortune in both license and maintenance/operation. Especially if you are not a Mac shop.

MDM at most can be used as a reactive tool to do something on the machine - as long as the one with the machine in their hand leaves the network connection on.

There are much cheaper solution to do that for 1 machine, and -as others correctly pointed out- the only solution (partial) here is not storing the data on a machine you don’t control. Period.

Removed by mod

Disk encryption is a control against lost or stolen device and malicious physical access (kinda). Storing the data elsewhere is more a control (or the basis for controls) against malicious insiders.

Removed by mod

Removed by mod