Are you going fangless?

I would definitely go fangless. I have been bitten enough times. A bite might also transfer viruses. Nowadays I defang all my computers.

But then why bother to package the game for the distro in the first place?

Sorry, but you are mistaken. Joplin definitely encrypts data at rest if you enable end-to-end encryption: https://joplinapp.org/e2ee/

There‘s no reason not to use both. For some things a GUI file manager is more convenient.

Great, I accidentally deleted my original comment because the Lemmy web interface doesn’t ask for confirmation when you click the delete button. And the buttons are so small on mobile that it‘s really easy to click the wrong button.

If you want to use these features for security, access them manually. But, OP said they are kind of a noob. Telling them to just use containers is dangerous and leads to false assumptions.

You are absolutely correct. I should have stated explicitly that I didn’t mean docker and/or using pre-built container images. I was talking about something like systemd-nspawn. And you are right that I should not have brought this up in this context. I will edit my original comment.

So, putting a process in its own network, file-system, user etc. namespace does not increase security in your opinion?

deleted by creator

Could you please be more specific what exactly Crowdsec brings to the table? In which way does it “secure the network”?

• Plex and Jellyfin for movies and TV shows. I want to switch from Plex to Jellyfin but it is not quite there yet. It‘s very little effort to keep Jellyfin running in parallel though. I am keeping it around to regularly compare the two and re-evaluate.
• Tube Archivist for archiving and watching YouTube videos.
• Miniflux for reading feeds.
• Nextcloud, mainly for calendars and contacts; occasionally for sharing files with others.
• Syncthing for syncing files.
• Financier for budgeting.
• Paperless-ngx for managing documents.
• Qbittorrent for downloading and sharing Linux ISOs.
• Prowlarr for searching Linux ISOs.
• Copyparty for sharing Linux ISOs with friends.
• Shaarli for saving bookmarks.
• Jekyll for statically generating my personal blog.
• Caddy as HTTP server / reverse proxy for all of the above. Automatically provisions certificates from Let‘s Encrypt.
• PostgreSQL as database for Nextcloud and Miniflux.
• Simple Nixos Mailserver for emails with Postfix, Dovecot and rspamd.
• Dehydrated for getting certificates from Let‘s Encrypt for the mail server.
• Btrbk and Restic for backups.

Most of this stuff runs on my server at home (ASRock J4105-ITX, 8 GB RAM , 250 GB SSD, 18 TB HDD). The mail server and the blog run on a cheap VPS (1 vCPU, 2 GB RAM, 20 GB SSD). Both servers run NixOS.