they even purposely disable snaps by default.

A separate computer/server might be the best but their are many ways. Cloud storage is one of the many options that can be used as well.

I do not know much about Timeshift and Lucky backup. But a proper backup is not a on the same system even if it is a second drive internally. For some quick file recovery after deleting things you shouldn’t have it is fine. A proper backup should be a separate system and ideally 2 systems one externally but this is overkill for most folks. With a separate system you can setup automated backups and disaster recovery. if you are scared the backup system can get compromised from the main system. you can set things up in such a way that the backup works in pull mode and the main system being backed up has no access to the backup system.

Absolutely agree. Look at Linux. Want to uninstall the kernel? No problem! If it is a good idea you can argue about.

Different OSes. Windows and Linux for example. No way to run a full fledged domain controller in a container. Just to name a example.

I mean if you are going to put GOS on it. Perhaps a second hand device is not a issue. Also non pro cost about 400 where I live.

Not really. Almost all the google pixels are supported. You do not need to get the pro versions if you don’t want to.

You know you can completely disable onedrive using GPOs?. I have done so on a DC i have but it shut also be possible using local GPOs.

Hey I am also using GrapheneOS. And what you could do for work is setup a second profile that is not allowed to run when not active. That way it is fully isolated environment for work. Add to that that GrapheneOS lets you install Google related things inside a user profile without needing them to have root access. as some work related things might require google services.

I know. options are always good. i just thought of mentioning it because GOS is very relevant for the pixels phones specifically

For a pixel their is a much better option named Graphene OS :)

Not exactly. Still miles ahead in terms of security compared to windows. We have things like sandboxing, SELinux/apparmore and more.

X* predates almost everything still in common use.

it is ancient when talking about computer related things. 1984 was the initial release. Almost twice my age holy!

I was the same back then. And have come across some stuff which is surprisingly easy to find. Later to realize how messed up that was.

I think monitoring is good but it has a fine line not to cross in your child privacy. If they suspect anything they sure know how to work around it and you loose any insight.

Hoe does this work. If a company has not made a profit in 20 years. How is it not bankrupt?

We should realy get a “Report for spam” thing on lemmy to deal with this

ncdu ?

Perhaps freeipa wirh automounts?

I managed to get it working by uncommenting the line “simple_allow_users” inside sssd.conf on the client. Also as far as i can find the default allow_all rule should allow all users to login to all clients. (I have not configured any fine grained control yet)

Sir, you forgot a 0 their…