I am very happy with Kagi. Can recommend. In the end someone has to pay for the service. With Kagi I know I don’t pay with my data but with money.

IPv6 has temporary IPs for privacy reasons. NAT is NOT a firewall. Setting up a real firewall is more secure and gives you more control without things like UPNP and NAT-PMP.

I still have my IPv6 sage shirt somewhere.

You should rather find out why things break with IPv6. The best time to make IPv6 work is now.

Why should I use IP6 in my small home network?

• No NAT. Especially in a home network NAT can be a hassle.
• A bit more anonymity through changing temporary adresses.
• Some people don’t even have a real IPv4 address anymore in their home and only connect through CGNAT. That means that if you disable IPv6 on your computer you only use CGNAT.
• The fact that EVERYONE needs to transition to IPv6 or it doesn’t make sense.

Or in an SMB where there are less than 100 IP’s used on a daily basis?

• No NAT. NAT is no firewall. If you can’t set up a firewall you are honetly not qualified to be a network admin.
• Easier VPN S2S-VPN. I had a few instances where the internal IP ranges clashed.
• All the other advancements of IPv6
• The fact that EVERYONE needs to transition to IPv6 or it doesn’t make sense.

First I have to pay the cost of transition, along with the risk of things not working while I do this, and then the risk of something new being added and not working.

You can transition step by step. Dual Stack is a thing.

IP6 is good for backbone right now. It will slowly transition into LAN for larger environments (think Enterprise when they setup new network segments, since they’re buying new hardware anyway. But only after extensive testing.

That makes no sense to me. Every network in itself doesn’t need IPv6. The 10.0.0.0/8 range has 16 777 216 addresses. IPv6 only makes sense if everyone uses it. We bought ourselves time with NAT and CGNAT and splitting up older ranges but that won’t last forever and is costly.

Everyone needs to transition otherwise services will need to keep their IPv4 forever. And if the services keep their IPv4 users don’t have an incentive. Maybe we should transition BEFORE there is time pressure. Now is the time to slowly start setting everything up with enough time to plan and test firewall rules and appliances and everything else.

IPv6 after so many years still is a victim of the chicken-egg-problem. People don’t need it because services don’t support it because people don’t need it because … and so on and so forth. I try to enable IPv6 wherever I can and I didn’t have a propblem for ages. Dual stack is stable and there are actually a good amount of services that support it.

I think we should all push to implement IPv6 so that IPv4 can finally be laid to rest. Using IPv4 makes everything a bit more expensive because it is so damn expensive to get a stupid number. If someone is really scared that every computer has a publicly routable IP, and if you really think you can not configure a firewall, there is a private IPv6 space and you can use NAT with IPv6. It’s not recomended but it’s possible. I’d still say using a firewall is not harder and just as safe.

And there is the fact that you can make so many subnets which can make your internal network so much safer. You can controll better how packages are sent to groups because broadcast was dropped in favor of multicast. There is IPSec Support built in. Secure Neighbor Desicorvery to prevent attacks like ARP spoofing. There are a lot of reasons to implement IPv6 and even to switch to IPv6 only if possible.

Most people don’t want to pay for AI. So they are building stuff that costs a lot for a market that is not willing to pay for it. It is mostly a gimmick for most people.

Why do you want to disable updates? Just don’t. It’s unsafe. For you and others.

I’d consider btrfs if they finally make their raid5/6 implementation stable. I want to work with multiple disks without sacrificing half of my storage.

Then post some please.

I don’t see how they can recover from that. They will get lawsuits from all around the world.

OMG Boobs! Does nobody think of the Children?!?!?!?!

Pathetic

Only if you have enough starting capital to skirt through life without a worry.

Yes. If you don’t connect it is pretty dumb and shouldn’t be able to send your data for harvesting. You sould research if you can set it to one of the outputs permanently then you can use some external device that you trust.

Windows Defender is the default anti virus solution on Windows by now and it is good. But no anti virus is perfect. It is a good idea to have a backup strategy if you plan on having any important data on your PC. In case of encryption malware and hardware problems.

Phishing is also very problematic practice that the anti virus can’t protect you from and even experts can fall into the traps. So you have to be careful with your account credentials.

Don’t disable Windows updates or postpone them indefinitely (though windows makes that harder to do anyways). Also be aware that your PC might need firmware updates too to stay secure. It depends on the manufacturer of your hardware how and if these are provided and how you install them.

Lastly I can recommend using Firefox with uBlock Origin. Using an ad blocker can help you stay safer and Firefox has very good support for them.

Your phone is rawdogging all it’s connections. It can receive SMS and Phone calls without your intervention. There have been several zero-click bugs in the past that allowed injecting malicious code into your phone without any interaction.

There have been a few bugs in the past years that let you take over a phone without user interaction. There was one where you only need to receive an SMS (it was invisible even) and your phone is infected. Another one was a vulnerability in wifi calling and voice over lte.

A phone is not a passive device that only gets something when you request it. You take also it with you to public places, use it in open wifi networks and you get calls. All that while being used for security critical stuff like 2FA, banking and payment.

You shouldn’t use a phone without current security updates for much more than calling. It is a time bomb. If you want to educate yourself further you should look at “zero click vulnerabilities”.

Sometimes. It depends on the manufacturer. Some do more some don’t promise anything. You have to know what you have. Also the support time starts usually at the start of sale not at the time of purchase. That means if you buy a new phone that was released a year ago on clearance or something you might have only half the time.

Yes and no. For apple you can use their phones for quite a long time securely. For Android that is a very different story. As far as I know only Google with their new pixel phones and Samsung have offered more than 2 years of updates. After that time your phone becomes a security risk. So make sure your devices receives updates or can be used with a custom ROM (though that can be insecure as well).

Finally a real feel good story.