Atemu

If you're not technically savy, there are many options for managed Nextcloud instances, similar to managed wordpress hosting.

Subnet forwarding does not work in that direction. What you've done is allow devices in your Tailnet (i.e. your remote machine) to access 192.168.1.0/24 by using your laptop as a proxy, not the other way around; the chromecast doesn't know it could reach your remote machine via your laptop.

This would be a giant hack and it's unlikely to work but it's possible you could get the Chromecast to communicate with the remote machine via your laptop by setting the default gateway of the Chromecast's network connection to the local IP address of the laptop.
It'll probably lose internet connection that way, not sure Jellyfin needs that (don't think so?).

I'd rather recommend you look into getting Tailscale onto that Chromecast. I've never used these things, so I don't know whether that's possible.

But the stream will consume the cellular connection, because you’re using the phone’s wifi for the hotspot (the phone only has one wifi interface so it cannot use it both to connect to the local LAN and for hotspot).

This is not necessarily true. It's almost always possible to use the 2.4GHz band on one side and the 5GHz one on the other and multiple networks on one WiFi interface isn't impossible either.

Modern Android devices can provide hotspot of the connected WiFi without any modifications. For some anecdata: My FP4 with LineageOS 20 and a Samsung A50 (Android 11) can both do it.

If you are absolutely concerned with privacy and knowledgeable with computers then self hosting FOSS software from your own instance is the best option to maintain control of your data.

Well, only partially. Unless you are sharing that instance with a good amount of people, you'd still be tracked all the same. If you configure i.e. SearX to use multiple tracking search engines, multiply so.

Their operations are very small scale still. I imagine as the economy of scale does its thing, that price/search will fall drastically.

You are also DuckDuckGo's, StartPage's and Qwant's products. They sell your space on screen for ads. Now, they haven't enshittificatied to nearly the same degree as Google and full enshittification happening is of course not a given but making the user a product is basically step #1 to enshittification.

With Kagi, the product is the search engine service. You pay money and in return you get search results, lenses, bangs and all those neat little features. You are not being sold to 3rd parties. (At least not right now but I honestly don't see that happening any time soon.)

I'm not sure what feature you're referring to as Reddit never had this feature to my knowledge.

Approaching at $9.99/month.

Oh, Windows is in the mix, that's unfortunate.

Gaming on Linux has come a long way but it's not 100% yet; more like 90%. You could try looking up your favourite games on https://www.protondb.com/, it even supports loading up your library to give a more personalised picture.

GTK 4 does not, possibly in a future version

That would be news to me. Has GTK finally managed to switch away from using actual real hardware pixels as its base unit for measurement?

Just saw this: https://lemmy.ml/post/8343747

microG runs Google Play code just like Aurora Store. It is not fully open source.

Neither of them run "Google Play code".

You can download proprietary apps through the Aurora Store and those on their own might include Google play libraries but that should be painfully obvious.

µG can optionally download and run the proprietary DroidGuard for implementing the proprietary SafetyNet. If you don't want proprietary software, you should not explicitly enable SafetyNet (I don't know what app you'd use it with anyways).

Here's more information.

That's a Twitter thread with no cited sources aka. the truthiest information known to man.

It is still connecting to Googles propriety servers.

If you ask it to, yes. That's one of its explicit purposes.

It obviously must talk to Google servers in order to facilitate things like cloud messaging for example; there is no other way.

It does try to implement many APIs that would ordinarily talk to Google's servers in regular GMS using alternative methods however and if it has to talk to Google, it does so with the least amount of data possible.

microG requires Signature Spoofing

This is usually only enabled for the µG app itself and nothing else.

ship with microG as a privileged system app. This increases the attack surface as it is not confined by the regular sandbox rules.

This does increase the attack surface a little. In a world where blindly trusting gigabytes of privileged vendor blobs is the norm however, I don't think it's all that significant.

Compared to the hundreds of MiB of regular proprietary GMS code that ships on Android devices, it pales in comparison.

downloads and executes Google code in that privileged unprotected context

As opposed to ..running running the entire GMS in a privileged context?

MicroG doesn't have the same app compatibility as Sandboxed Google Play despite the extra access it has on your device.

You're comparing apples to oranges. µG replaces GMS, not the tool used to sandbox GMS. You could sandbox it in the same way.

There is no "extra access" that µG has compared to regular GMS.

[if] MicroG worked without talking to Google servers

I don't know why you keep mentioning this, it was never up to debate.

the apps you're actually using it with (the apps depending on Google Play) have Google code in them.

Apps that bundle Google Play code have Google Play code inside?!

Start the presses! Notify the President!

A wild revelation, the world must know it!