Creat

The one point that has basically been solved is NAT traversal. Thanks to Wire guard, Tailscale and the like. The relevant parts are open source and can be used basically as a library.

I don't know how recent your experience is with installing Linux, but there are no "hacks" required, haven't been for many years. In 99.5% of cases everything just works, including sleep & suspend. This is just incredibly outdated or just plain bad advice. There is no tech-savvy-ness needed to use it either.

I've installed it for as tech illiterate people as you can imagine and told them "just use it like you have before". They had a few questions where the answer would usually be "well what did you do before", told em to try and that was that. I personally found the PCs to feel faster, but that's my own comment, not theirs. I don't think they noticed.

No, cause it's at work and not my choice. It's also just one example of many. I don't run Windows on any of my own PCs any more.

You can't even install Windows (local account) these days without answering 3 of these. If you ever click on one of the recovery options, you'll be asked for one of them.

My solution is usually to just randomly smash the keyboard for a while.

So far I'm happy with my Fairphone 5. But exactly cheap, but I'd argue it is value for money in the end. Timely security updates, unlockable bootloader (though I haven't yet) and updates for (at least) 7 years after launch. I haven't had the need to swap any of the middle things yet, but I'm starting to suspect my USB port has a loose pin or something so I'll probably swap that module soon. Glad that I can.

These days, you can install any of the gaming focused distros (Bazzite, CachyOS, Nobara, ...). And you didn't have to do anything. It just works, and works well. Steam is either installed or suggested initially. Really trivial.

Password managers on Android (and frankly all platforms) actually try to avoid using the clipboard. They prefer the auto-fill service, which is intended for applications just like this. Unfortunately this isn't working in all cases, but you can also set your password manager as a keyboard (temporarily), so it can directly input a selected username/password without anyone else seeing it.

Examples where I know this is the case are open source keepass options (Keepass2Android, KeepassDX). But I'd assume bitwarden and the like also work this way.

That really depends on how the VPN is setup and configured on the company side. And possibly how the applications it their servers are configured as well. In our case, absolutely nothing breaks and it just works.

I know that isn't the point of your comment, but what issues do you have with Logitech hardware on Linux? I have just mice from them, but honestly an embarrassing amount. I just use Solaar and I can configure all I need? I also have always only used the onboard memory (so I can move them between computers), and don't really use macros though...

Yes, in serious. I'm personally not much of a Lego collector and/or builder, but two close friends of mine are. They were big Lego fans and collectors for most of our lives (decades). I'd say 10-15 years ago they started to complain about declining QC and just generally lower quality. Molds were clearly used for much longer, parts having worse tolerance and either not fitting well or being lose. Then the creative side also got worse, with kits just not meeting previous standards either. Clearly just being cranked out for the sake of releasing something, often under license (Star wars, marvel or whatever).

Then when the patent ran out, some (select few) of the alternatives started to gain favor. Unfortunately I don't remember who, but I can ask next time I see either of them. Not saying everything they make is great, but actually less problems with gas parts, and some kits are apparently just like old Lego.

Self hosting BitWarden still means it's accessbile for them and/or from them. ~~You also have no way to audit their security from what I understand. VaultWarden is FOSS, if you want to, you can go check. And it does get checked by people with the competence to check this do every now and then.~~ [Edit: I forgot that BitWarden is actually souce-available as well, while not being FOSS that's still better than most solutions]. I just prefer full FOSS whenever possible. I prefer it not be a black bos I just happen to run on my own server.

If you self host VaultWarden, the instance can just be not accessible from the internet, and only from behing a VPN. Obviously this is inherently much safer. If that's possible with the self-host option I don't know, but even just for licensing the local instance will have to be able to reach their servers (possibly be reachable from their servers, too). I did see they got an "offline deployment" option for air-gapped servers, but haven't looked into what limitations that entails.

Additionally, you're still within their licensing model. So for certain features you need to have a not-free account (like even just more than 2 people).

And like others said, VaultWarden is much lighter on resources in general and you aren't limited in what you can and can't do (users, collecitons, auth-options, ...).

Your first point is debatable. You still have to trust them to be that secure, and you can't verify that. If they are ever breached, it's literally the worst case scenario. You can self-host their solution, but only in the enterprise tier (6$ per user per month). Also BitWarden is a target woth attacking, I am not. BitWarden hosts thousands of instances worthy of being attacked individually. A personal VaultWarden instance of "Mike and Molly Peterson" isn't exactly an attractive target. I do think they are pretty secure, but a single mistake with these stakes can have immense consequences. LastPass was also breached repeatedly, with a similar buiseness model.

The second point about electricity wouldn't be true in my particular case, as the server for self-hosting it is running anyway. Running VaultWarden or not doesn't change the power usage noticably. Obviously this is different for someone who doesn't just have a server at home running anyway.

Side note: I'm not actually running a personal VaultWarden instance, as my personal requirements are being met just fine with KeePass files. We do run an instance at work, but it isn't world-accessible (internal access only).