I’m in the same boat as you in that I need Instagram for work. My approach is to create a separate work profile in GrapheneOS. I handle all of my mobile work apps in that profile using a separate VPN from all other profiles. I don’t expect to be completely free from tracking in this profile, but for my threat model I don’t mind too much. Any web queries I make in this profile I keep strictly work related.

People arguing you just shouldn’t use Instagram need to remember Instagram is a tool just like Windows, Adobe, etc. Sometimes you need a specific tool to do your job and I believe as long as you containerize that aspect of your life then you’ll be fine.

Just don’t use your work Instagram for personal stuff, not even browsing memes.

I don’t want to be too specific for opsec reasons. But windows 10 is the OS. OFX aka OpenFX.

I’m familiar with Proxmox, virtualbox, and KVM/KVM manager.

If I want to set up a PC to virtualize multiple operating systems, but with the feel of a multiboot system, what virtualization software would you suggest?

My goal is for the closest I can get to a multiboot system (windows, Debian, fedora) but virtualized so I can make snapshots. It should feel like I’m on baremetal when inside the VM.

Virtualbox is clunky with lots of pesky UI cluttering the screen and Proxmox doesn’t seem great for this use case.

Most important term to research regarding arr apps is “hardlinking”. Make sure you have your apps configur ed with hardlinks. Everything else is pretty easy and self explanatory.

So I use Fusion360 for the technical building of components; framing, drywall, cabinets.

I export this to 3dsmax and flesh it out for archviz. Rendering with V-ray.

Unfortunately there aren’t any good options for pirating either of these softwares.

3dsmax and vray also have very steep learning curves.

There are also better alternatives than Fusion360 which include BIM features, but they’re insanely expensive unless you own a profitable architecture firm.

I had a few episodes saved offline in my apple podcast app but it appears you are correct. Surely there’s an archive somewhere?

In most cases it’s just too annoying of a process to get on the list. But I understand why the invidious team prefers to vet instances rather then have something like a beacon system that auto populates all consenting instances.

Some other good instances:

• https://iv.nowhere.moe
• https://yt.dupindustries.com
• https://invidious.reallyaweso.me
• https://inv.tux.pizza

Appreciate the thorough reply. Mind sharing which service you used to download your Spotify tracks?

I feel you but I’ve already got curated playlists of over 3,000 songs me and friends have spent a few years putting together. I actually don’t mind the idea of pulling each artists whole disco as lidarr does. My current roadblock is the lack of good resources/tools that automate the process.

I operate an invidious instance. Google has really cracked down the past two weeks on YouTube front ends. Its extremely frustrating.

Invidious devs are finalizing a workaround so hopefully things will be working again in the next week or two.

Is there a way to automate downloads? As mentioned in my original post I’m hoping to essentially mirror a few Spotify playlists and have my server automatically download either all of the songs on the playlist or all of the songs by the artists appearing on the playlists.

Damn. You’re correct. My brain saw instance and ignored the rest.

Looking in the NewPipe settings I found a place to enter instances and there is one already configured. I guess I was proxied the whole time without realizing. Thanks for the clarification btw.

I often wish all services could provide an opt out “I’m aware no 2fa is risky but I really don’t give a damn about this account so fuck off with the constant email verifications”. Or if companies insist on forcing 2fa, at least support hardware keys. Don’t even get me started about banks…

Good point. I’m aware of the icloud method of imessage cracking, but I often forget that I’m not always the weakest link; it’s up to the people around you as well.

I eventually managed to get the yubikey to work, although it is very buggy and the steps to get it working are unacceptable IMO for the “most secure phone OS”. Hardware keys should be a major priority and should simply work just as easily as using passwords, but it seems to be a stale open feature request for a few years. Luckily for me, once bitwarden is authenticated with 2fa I don’t need my hardware key unless I reinstall it. So that’s one major hurdle behind me. Another plus is that while you need sandboxed google services to utilize hardware key auth, they don’t need network permissions to work.

If iMessages are e2ee and you aren’t using iCloud, is there any evidence your messages aren’t private? As far as I’m aware iMessage is considered a very secure messaging channel. It seems like most people distrust it due to the Apple affiliation. Not that I blame them, I feel the same about Google.

Just for the sake of getting used to / transitioning to a single gos phone, does it make sense to use the insecure phone as a hotspot and utilize the pixel without a sim (so data only device). I would be using e2e encrypted apps for texts and calls so this makes sense in my head.

Appreciate the info.

It seems absurd to me that a third party online service is required for a hardware key to work in the first place. I figured it would be authenticating strictly between the locked service and the user.