I would just accept the terms and disable wifi, or if you don't want to double nat just use a switch and accept the terms / login on every device connected to the switch.
BakedCatboy
joined 11 months ago
Is running a pds really equivalent to running your own instance? As I understand it, 2 friends running their own pds cannot federate without the centralized relay which still can't be self hosted.
I've done a backup swap with friends a couple times. Security wasn't much of a worry since we connected to each other's boxes over ssh or wireguard or similar and used tools that allowed encryption. The biggest challenge for us was that in my selfhosting friend group we all prefer different protocols so we had to figure out what each of us wanted to use to connect and access filesystems and set that up. The second challenge was ensuring uptime and that the remote access we set up for each other stayed up - and that's what killed the project as we all eventually stopped maintaining the remote access and nobody seemed to care - so if I were to do it again I would make sure all participants have alerts monitoring their shared endpoint.
I tried the .ps one and it worked for me
Federation sounded interesting so I looked at the website and it sounds like on prem can't yet federate with people using "cloud" which I guess is the hosted version - they can only federate with other on-prem instances.
It looks promising though and would be cool to host my own instance and still chat with friends.
I hope they get wrecked and the company gets imploded
From the screenshots it sounds like it already can send medium quality photos, this is adding an original uncompressed option. Even signal sends compressed images by default unless you switch it to HQ.
I wonder if this is related to sync having the same issue. I frequently find threads with 5-10 comments but nothing shows up. I don't have anybody blocked whatsoever and the issue happens on posts from various instances, even my own. Maybe this could be a bug that affects both apps. When I load these threads in browser it looks fine.
I can't wait until the immich photo editor gets enabled and hopefully it eventually duplicates all the google photos editor features because that's the only reason I keep around the google photos app.
You can achieve a similar thing using vlans - usually by default they're isolated but you may add specific rules that allow traffic between vlans if it meets certain criteria (specific ports, specific types of traffic, traffic to or from specific hosts, any combination of those). So yeah you can imagine client isolation being like having each client on their own vlan - except without needing a different subnet for each client.
To add to the other reply, client isolation is about controlling whether an ap, switch, or router willingly sends traffic between clients. Because of that, it doesn't kick in if you listen to packets over the air before they've been received by an AP. For that kind of security you need a wifi specific security measure - which I think "enhanced open" is what you'd be interested in. It allows you to have an open passwordless wifi but it generates temporary encryption keys for each connected client, then the rest is as if it was using WPA, so that you don't need to enter a password but your traffic gets encrypted and protected from anyone else listening in on the WiFi.
If you combine both then you should have a network where each device is isolated both over the air and from a routing perspective so that each device only sees an Internet connection and no other devices.
Uhh don't mind me pulling my shots directly from my gaggia classic evo pro and into a 3/4 full cup of half and half...