Adding onto what’s already on the thread, you can try look at the newer Element Call, which is an implementation of Matrix’s native calls.
I’ve been using it a bit recently, since Jitsi seems to have stopped working reliably for me (to be frank, I’ve not put much effort into debugging it yet). It works well, but it’s still early stage, lacking some features Jitsi has. If that one works for you, I recommend you stick to it.

I still don’t think it’s there, but development hss been fast, so a lot has changed and improved in the last couple of months.

Not exactly. Matrix 2.0 relates to the protocol (Matrix) version, which has its major number incremented due to a bunch of, well, major changes/updates to make it much better. OIDC, sliding sync and native calls are some of the new things that comprise the 2.0 update.

The server implementations are somewhat orthogonal to this. Synapse (the original Python server) is still the main implementation, and is Matrix 2.0 ready.

Yeah withdraw cash from an ATM and use it. The system sucks, but it’s not trivial to change for a myriad of reasons.

There’s no real way to do it. Unless you know someone who can trade you XMR<->cash and you somehow convince your employer to (break laws and) pay you in those forms, you can’t avoid it. At some point, you’ll have to get money on a real bank account, which requires real information to open.

As far as I know, modern cards don’t just send your CC info to terminals, they do some form of a cryptographic handshake (probably a pubkey signature or similar) which gets confirmed by your bank. I believe Caveman was talking more about online shopping, where you have to enter your card number, expiration date, CVC and often your name too.

That’s why I love virtual card systems like MB NET. You just generate a random virtual card for every purchase (or a recurring one for each subscription vendor, for example) and move on. Your bank still knows what you’re doing, of course, but vendors can’t correlate anything. Preventing your bank from knowing where you’re spending your money is much harder, for very practical reasons: fraud detection. The only real way is to use a secure crypto coin like Monero, but very few places accept it and you still have to deal with volatility.

This is a good suggestion. Docker is more mature and has more resources, so it’s better to learn the ins and outs of containers. After getting comfortable with it, you can move to Podman and have a much better time tackling its peculiarities regarding permissions and rootless.

I used Docker for years and only recently decided to give Podman a try, porting my Lemmy instance to it.

I think security is a fair point, given caddy’s younger age compared to nginx, but I wouldn’t say it tried to do too much.

Why do you say that?

I’ve used both plenty and only once I thought Caddy was harder: caching. It requires you to install a plugin that also doesn’t have the easiest of configs. I think there’s a new and simpler one nowadays, but haven’t tried it yet.

I now use Caddy by default for everything new I make/host.

This. I don’t even need real “scripts”, I just plug my big drive into my laptop, start dropbear and use the shell (fish) history to get the right command. Takes about 15s to do everything :p

If you want a more continuous thing, you can look into Syncthing or something like that.

While it’s not on the main F-Droid repo, they distribute it in their own repository: https://app.futo.org/fdroid/repo

I have the exact same issue on my Pixel 4a. Tried a bunch of stuff, even installing their gallery app (with network and everything in XPrivacyLua blocked), to no avail. It just crashes when using the shortcut.

My “solution” was to place a shortcut to the normal gallery app on the home screen and train myself to quickly switch to it.

I see, that’s a good point indeed, it can be a good learning step. From a privacy standpoint, however, it’s not that effective.

That is interesting to hear, why do you think so?

While others have mentioned the great GrapheneOS, I will throw two other options:

• CalyxOS — privacy oriented Android OS. While Graphene focus on security pretty much above all else, Calyx focus on privacy (and usability) more. Both essentially only target Pixel phones and are great choices.
• LineageOS + MicroG — AOSP fork, continuation of the old CyanogenMod, with an open implementatinon of Google Services. This is perhaps the most “normal” OS, seeing as Lineage’s core is user freedom and not exactly privacy; however, with MicroG, you get a pretty private system with very few to none of the side effects of deviating a lot from standard Android.

Graphene is a great project, but I think it may be a bit too much for someone that is just entering the privacy world, hence why I’m suggesting these two options as alternatives that are less strict and “cumbersome” to use, so to speak, while not really sacrificing privacy.

In the end, as all things privacy, it depends a lot on your threat model, your tech proficiency and willingness to make “sacrifices” and adapt.

Yes, it is a hard step, but it is perhaps the most relevant one, hence why it’s important to get started with it, unless some external factor prevents the change. If you still have other Google apps (including Google Services), then uninstalling Gmail really does very little to nothing.

I meant alternative apps to Google’s in general, not to GMail specifically. Ditching GMail is an important step, as you block a relevant source of personal information, but using alternative apps, like MajorHavoc recommended, is another great step. NewPipe is one of such apps (I disagree Tubular is a better pick, but that’s something for another post).

K-9 and FairMail aren’t a good alternative to GMail. Not alone, that is. GMail is both an e-mail provider and a client, but I’d argue the first point is the most relevant. If you use a FOSS e-mail client with your Google account, nothing is really changing, they will still read all your mail. You have to change providers as well, which isn’t trivial for most people.
E-mail is an insecure means of communication, so you shouldn’t even use it for sensitive things, depending on your threat model, as usual. I personally use Migadu as my provider, for all the customisability and “vanilla” e-mail infrastructure they have, but Proton and Tuta are good alternatives as well, if you don’t mind or don’t care about the non-standard extensions.

These are some good suggestions! The most crucial one is perhaps a ditching Gmail, but using alternative apps, such as newpipe and stuff, also go a long way. Unfortunately, the system is fighting against you and you’ll have to really use a freer operating system to properly get away from Google. Still, these are good steps to take.