I am looking for a privacy respecting (and ideally E2EE supporting) email/ calendar/ contacts provider.

I had previously used ProtonMail up until a few months ago when the CEO started getting political (bummer).

I've since been using TutaMail, and while it's a bit rough on the UI/UX, I do appreciate that the team behind it seems very privacy focused. One problem here though, is that family that is also using this is ending up in spam folders when emailing others (I guess Tuta is more likely to be flagged as spam).

Does anyone have any suggestions for alternate providers?

I am looking for a simple to use VoIP provider that I mainly plan to use for 2FA (when a cell number is required). I know there are checks that sometimes prevent VoIP from being used but I figure it's worth a shot.

MySudo looks nice but they require Google play services to be installed, VoIP.ms looks nice too but I've had a hard time getting a hold of anyone there to help with activating my account.

Anyone have any recommendations?

I've used Graphene OS for years, but only recently started taking advantage of the profiles feature.

Currently the Owner profile that you log into on first boot is my main profile, and I have a secondary decoy profile that I can switch to. Is this the best way to do this, or should it be the other way around so that on first boot you go into the decoy, which also allows you to end the session of the main profile?

Up until now, I’ve just been saving an emergency fund in a HYSA. I’m getting to the point where I’d like to put excess savings into the market, and am looking at something like the VOO ETF. It seems things are essentially at an ATH right now, and there are a lot of big political things happening at the same time.

Would it be ill advised to buy into VOO right now? I could hold this in my HYSA but at the same time, I’m not needing this money for a while and long term I would think the market will continue to rise.

I know there was news a couple days ago about Berkshire Hathaway selling their S&P 500 ETFs, but this made up ~0.01% of their total portfolio.

Between rent and school payments, I am paying quite a lot over ACH and am wondering if there’s any way to also get some benefits back from these payments.

There are cards out there like the “Fold” card that will give back up to 1.5% in BTC for ACH transactions, but that’s contingent on you spending a lot on other transactions and the card also has a $100 annual fee.

I don’t care if the rewards are USD, BTC or booster packs of Pokémon cards. I’d just like something back from these transactions.

I have a SearXNG instance running locally, and I have a proxy entry for this (search.home). When I go to https://search.home/ in Firefox, it works as expected and brings me to SearXNG, however if I try adding this as my default search, it instead resolves to the IP and not the hostname, which fails because the IP does not have a cert on it and it tries to hit it with https (as would work with the hostname).

This works in Firefox mobile, and every other web browser I've tried on desktop, just not Firefox for some reason. I've tried various about:config changes but so far no luck. Anyone else have a workaround for this? It would be nice if Firefox showed you what it actually has saved for the url/hostname/IP of the search engine in the Search section of the Settings, but sadly it just has the name and shortcut listed.

I recently generated a self-signed cert to use with NGINX via it's GUI.

1. Generate cert and key
2. Upload these via the GUI
3. Apply to each Proxy Host

Now when I visit my internal sites (eg, jellyfin.home) I get a warning (because this cert is not signed by a trusted CA) but the connection is https.

My question is, does this mean that my connection is fully encrypted from my client (eg my laptop) to my server hosting Jellyfin? I understand that when I go to jellyfin.home, my PiHole resolves this to NGINX, then NGINX completes the connection to the IP:port it has configured and uses the cert it has assigned to this proxy host, but the Jellyfin server itself does not have any certs installed on it.

I recently setup SearXNG to take the place of Whoogle (since Google broke it by disabling JS free query results). I am following the same steps I've always done in adding a new default search engine.

Navigate to the address bar, right click "Add SearXNG" then go into settings and make it my default. After doing this, rather than using the local IP the instance is running at, Firefox uses https://localhost/search for some reason. I don't see a way to edit this in the settings section of Firefox. Anyone else experienced this?

Update: After updating the .env file with my IP address and bring docker down/ up, all is working as expected (able to use SearXNG via Caddy using the https://

<ip>

Let me start by saying that I am not a runner. I hope to be one day, but for now I'm just running < 1 mile after work.

After a few days of this, my knees (the tendon thing that goes down from the knee to the shin) are pretty sore. I'm wondering if I should power through this or do something differently?

A friend suggested these as he's had good luck with them, but I'm not sure if this is something the community condones or endorses.

Update: Thank you all for the suggestions! The consensus seems to be to take it easy as I begin, and run every other day (and continue to walk every day).

For years, I have been using Whoogle for my self-hosted searches. It's been great, but recently there were some upstream changes that seem to have broken it.

I'm guessing that SearXng will soon follow (based on the assumption that they too are using the JS free results Google used to provide).

Does anyone have any self-hosted search options that still work? I hear Kagi is good for paid/ non-self hosted options, but just curious what you all are using.

My Jellyfin VM has been failing its nightly backups for some time now (maybe a week or so).

I'm currently backing up to a NAS that has plenty of available space and my other 10 VMs are backing up without issues (though they are a bit smaller than this one).

I am backing up with the ZSTD compression option and the Snapshot mode.

The error is as follows:

 undefined

    
INFO: include disk 'scsi0' 'Proxbox-Local:vm-110-disk-0' 128G
INFO: backup mode: snapshot
INFO: ionice priority: 7
INFO: creating vzdump archive '/mnt/pve/Proxbox-NAS/dump/vzdump-qemu-110-2025_01_04-03_29_45.vma.zst'
INFO: started backup task '4be73187-d25c-49cf-aed2-1217fba27f77'
INFO: resuming VM again
INFO:   0% (866.4 MiB of 128.0 GiB) in 3s, read: 288.8 MiB/s, write: 268.0 MiB/s
INFO:   1% (1.5 GiB of 128.0 GiB) in 6s, read: 221.1 MiB/s, write: 216.0 MiB/s
INFO:   2% (2.6 GiB of 128.0 GiB) in 15s, read: 130.5 MiB/s, write: 126.4 MiB/s
INFO:   3% (3.9 GiB of 128.0 GiB) in 25s, read: 128.9 MiB/s, write: 127.5 MiB/s
ERROR:
  

I recently got into Ubiquiti, and am trying to limit intra-vlan communications.

I have a Proxmox server hosting a couple VMs that are on the same VLAN (192.168.8.0/24).

These two devices can ping each other, even after I follow the guide here. I've tried just adding that VLAN to the Device Isolation (ACL) section in Settings > Network as I believe this should just block everything within that VLAN, as well as trying to add explicit rules in the ACL to block client A -> B and B -> A with no luck.

I feel like I must be missing something simple. Has anyone done this successfully?

There's a pretty popular savings chart in the personal finance community, and I just noticed it seems to be missing the option for when your employer offers an ESPP (Employee Stock Purchase Plan) unless I'm completely missing it.

Where would you guys put it if you could add it to this chart?

I recently swapped out my old TP-Link switch for a Unifi switch. I'm setting up the VLAN configs as I had it on my previous switch, but wanted to be sure I am understanding this correctly.

For some devices such as my APs, I am trunking the ports they connect to, tagging the VLANs that will need to be present for the corresponding WiFi networks these APs provide.

For other devices that are plugged directly into the switch and which should only have access to a single VLAN, I am setting that VLAN as the default network, and blocking all other VLANs.

Is this the correct approach?

I just got an Apple watch S10. Before this I was using a Garmin with the Apple health app to get some insights into sleep, calories burned per day (the outer ring) etc.

Compared to the Garmin, my Apple Watch is showing a lot of awake events, even though me and my SO don't notice me waking up. Is the Apple Watch just way more sensitive? Is it catching every movement in the night and thinking that is me being awake?

I have a couple rules in place to allow traffic in from specific IPs. Right after these rules I have rules to block everything else, as this firewall is an "allow by default" type.

The problem I'm facing is that when I replace these two ports to match "Any" instead, those machines (matrix server and game server) are unable to perform apt-gets.

I had thought that this should still be allowed, because the egress rules for those two permit outbound traffic to http/s and once that's established it's a "stateful" connection which should allow the traffic to flow back the other way.

What am I doing wrong here, and what is the best way to ensure that traffic only hits these servers from the minimal number of ports.

I have a couple rules in place to allow traffic in from specific IPs. Right after these rules I have rules to block everything else, as this firewall is an "allow by default" type.

The problem I'm facing is that when I replace these two ports to match "Any" instead, those machines (matrix server and game server) are unable to perform apt-gets.

I had thought that this should still be allowed, because the egress rules for those two permit outbound traffic to http/s and once that's established it's a "stateful" connection which should allow the traffic to flow back the other way.

What am I doing wrong here, and what is the best way to ensure that traffic only hits these servers from the minimal number of ports.

For the last decade or so, my SO and I have been more or less dividing our expenses, and Venmo/ PayPal-ing the other as needed (rent, etc).

I know a lot of couples use a shared account that they both contribute to via direct deposit. How many of you do this? Any drawbacks or other options I haven’t mentioned?

For someone in their 30s, does the following allocations make sense? The goal is to have a fair amount of diversity and to more or less “set it and forget it”

55% VG INST 500 IDX 35% VG INTL STOCK IDX 10% VG TOT BD MKT IDX

I’m wondering if maybe there should be less in International and more in one of the other two, etc

I recently had my Proxmox host fail, so I re-installed and recovered all my VMs from backups.

I'm noticing that my file structure (this is on my NAS where Proxmox mounts it via SMB/CIFS) has some duplicate folders in it. The ones I highlighted are all empty. Is this normal? Can these be removed safely?