Made a sizable donation. I encourage you all to help them manage this situation, defend themselves and keep up their good work.

Is this really a case of conflict of interest though?

That’s already my SSID, please don’t use it too

Microsoft has an additional requirement where “_optout” has to be somewhere in the SSID (not necessarily at the end). This was detailed in a now deleted support post.

Who is this request for feedback open to?

This is a good precision to be aware of.

It is still an important function because in some places law enforcement may be legally authorized to compel a user to unlock their phone using biometrics, but of course if you disable biometrics, there are less options to force you to enter your passphrase/password etc.

Public money, public infra and public funding? :)

Same, using the default storage template.

I’ve not been able to make it work reliably with photos backed up using immich on my android phone, is if working for you? I read somewhere storage templates are not very robust/reliable.

If they have an issue with copyright infringement, they should discuss with OpenAI, Microsoft, Google, Anthropic and more.

Google can’t control the device if you’re not running Google. GrapheneOS will still work like before, allowing you to run the apps you want. But the jury is still out on how long… I hope we can have a long term GrapheneOS solution regarding hardware.

Interesting setup. Funnily, I have one specific subdomain hosted on an actual cloud provider, publicly and all other subdomains are private and local. It works just fine :)

In the end, there’s like a tradeoff between enjoying your system as is and pouring I don’t know how many hours in setting it up when it’s a new idea haha

I’m not trying to expose it to the internet and there are indeed multiple solutions to get HTTPS. This one works with a real domain name is what works best for me :)

Yes it does. Are you using Firefox? And you can’t resolve local ip addresses, so that’s why you are setting this exception?

Wouldn’t that require me to use tailscale even at home on my home network? It also does not provide HTTPS unless you maybe use magic DNS, but then we’re back to using a public domain I guess.

Since it knows the DNS will always be public, it also knows that the 192.168.10.20 address is not routable on the internet where it found it.

That is in fact not it. I left the default firefox DNS setting. I simply enabled network.trr.allow-rfc1918 from within the about:config which allows the resolution of local IP addresses. It now works. All my DNS are public, I make no use of any private, local DNS.

This was not required in my case, but maybe it solves other issues?

Works flawlessly with my tailscale setup :) Thanks for asking! I’m not trying to expose anything to the open. Just for me personally, from home or remotely using my VPN.

Thanks for your response. Indeed, this is only for myself within my home network. No split DNS required, the public DNS record mentions my local private IP address which of course will only resolve to my homeserver from within my home network and will not lead anywhere for anyone else from any other network. That’s all what makes this great. Yes, I did the DNS challenge as I mentioned in my OP and retrieved a wildcard certificate for all my local needs :)

Yes, I now managed to make it fully work on firefox too, needed to set network.trr.allow-rfc1918 to true in the about:config settings! :)