Amazon refurbished used and refurbished devices.
And then from there, I'd recommend one of the older office PC's like the HP elitedesk line, as they are sold in large amounts by institutions like colleges when they are done with them. You should replace the SSD on them, as the SSD is commonly replaced with a really crappy one that is likely to die on yout.
This also reminds me of 100 rabbits, a gamedev studio who lives from a boat.
Sherpa onnx which got posted on lemmy a little while back is pretty good on android (all local).
The supermassive leak contains data from numerous previous breaches
A supermassive Mother of all Breaches (MOAB for short) includes records from thousands of meticulously compiled and reindexed leaks, breaches, and privately sold databases.
So it's already leaked data.
I'm deeply frustrated with the cybersecurity news cycle. Just tons and tons of articles on '"horrible, difficult to detect malware" that stores config files in the home directory, and "breaches" that only contain previously leaked data.
Yeah you probably want a proxy based solution. Have a network that has no internet access except through a proxy that you control.
You would also have to lock dns down. The problem with dns based blocks is that things like dns over https allow people to use an alternative dns server. But, if you control the devices that you are managing, then you can also control what dns server they use.
Noscript. Ublock origin strict/export mode, where you must manually accept connections. Dns filtering. A socks proxy. VPN. Etc, there exist many ways.
But which of these methods is best depends on what you are trying to do.
It is, they are switching from X to wayland.social, a mastodon instance.
(/s, they aren't actually doing this though.)
This includes sideloaded apps.
This exactly. I have a FOSS app called VirtualXPosed installed (although I never use it anymore), which creates a "virtual android" in which apps can be installed and be manipulated in ways that would normally require root, despite me not having it on my phone.
Despite having "play protect" disabled, google still constantly sends me notifications about it being harmful.
There are exactly 3 types of phoronix commenters:
https://github.com/microsoft/vscode/ or vscodium
And: https://open-vsx.org/
This is what I use. Arch Linux packages code oss, hooked up to open vsx by default.
Also some of Microsoft's extensions, like their docker and kubernetes one's, are open source (and available in the open vsx), but their C# stuff is proprietary.