2024.04.07.

Read “What We Give Up”

Whatever regulation that required these kinds of policy-change notification emails greatly failed us. A notification is not enough. If a company changes their policies, individual user data should be made completely inaccessible to that company until that user explicitly agrees to the new policy.

Yes, this should be the default. However, companies would heavily exploit a rule like this, like they abused the cookie consent UIs on the web.

2024.03.18.

Making my file archive portable in a different way

I looked into how Tailscale works behind the scenes, but I’m still not sure I need a 3rd-party tool to create a virtual network for my devices. There are a couple of cool uses of a network like this, like syncing DEVONthink and OmniFocus over WebDAV using my Mac mini. Still, I also have an Apple Watch, which doesn’t seem to work with Tailscale, so I can’t sync OmniFocus with my Mac mini there like I originally planned.

Initially, I was looking for something that could give me access to my Mac mini outside of my network to get to my file archive stored on my external drives connected to my Mac mini. But giving it a second thought, there is a good reason we have the distinction between Cold Storage and Active Storage.

For me, Active Storage is iCloud Drive, which is synced to all my devices. Cold Storage is not something that I should have access to all the time (not to mention ransomware and other dangers). So, from a security point of view, it’s a good thing that I have a local Mac server and a remote Linux server used for different things. Each of them requires a different level of security, and Tailscale merges them all into one network, which I’m not sure I’m comfortable with.

I’m thinking about shelving this whole idea of reaching my Mac mini server outside of my network and making a distinction between private networks and public networks. A public network means it should be available anywhere, but it should be end-to-end encrypted. This is what DEVONthink and OmniFocus do: each uses my WebDAV server running on my public server as a syncing backend, but these apps store data encrypted.

On the other hand, my private network should be guarded, and data stored there should have a good 3–2–1 backup plan instead.

So, instead of using the network as a transport layer to access my file archive, I’m thinking about using an external drive to bring a copy of my archive with me when I’m away.

2024.03.17.

Playing around with Tailscale

I’m playing around with Tailscale, but I’m not sure about the privacy aspect of being on a VPN all the time. I want to sync DEVONthink and OmniFocus using a WebDAV server on my Mac mini, but running Tailscale 24/7 raises some questions.

  1. Is it really end-to-end encrypted?
  2. Does all traffic go through the VPN?
  3. What about network issues when using a VPN? I’ve seen some connection drops in the OmniFocus sync logs when I used my Mac mini as a sync server.

I love the idea of having my private network of devices available everywhere. But I don’t trust random companies with my data, so I want to do my research before I start to use Tailscale with all my devices.

2020.03.03.

Deleting All Your Tweets

Craig Mod makes some good point about deleting your tweets:

If an idea is any good, chances are you shouldn’t just be tweeting it, but rather giving it a more solid, fleshed out form as a blog post or essay or zine or whatever. This is out of respect for the idea itself. What I find most dangerous about Twitter is that it can generate similar chemical feelings to having done “the work,” when in fact, you haven’t done the work. You’ve just micro-plastic’d idea potential. Make Twitter ephemeral and it seems to undo this psychic voodoo. (For me, anyway.)

It makes sense to me. Also routinely deleting my old tweets gives me some control over one of my concerns with social media: using an old tweet against me. We’ve seen this before.

Sure, I’m not James Gunn, but because Twitter makes it very easy to post things online, we usually do it without thinking. Having these tweets still available years later can be problematic. We are changing, but our short angry bursts aren’t. These are sitting somewhere on Twitter as a record of a random bad snippet of us.

As Craig said, tweets should be ephemeral.

2020.02.11.

Someday I’ll go to a company that sold my information behind my back and ask for a share from their income in exchange.