![](/static/253f0d9b/assets/icons/icon-96x96.png)
![](https://fry.gs/pictrs/image/c6832070-8625-4688-b9e5-5d519541e092.png)
Neato, I’ll check it out. I’m also trying out mull for android (as I’d like to keep my desktop/cellphone bookmarks/browser-history in sync)
Neato, I’ll check it out. I’m also trying out mull for android (as I’d like to keep my desktop/cellphone bookmarks/browser-history in sync)
Thanks for the comprehensive write-up. It convinced me to migrate back to Firefox.
I was on Firefox (8 years ago), moved to Chrome (I liked the non-admin/transparent update feature and Websites didn’t break like they did with ff), then moved to brave (basically chrome + more privacy), and now I’ll go back the Firefox (I hope I won’t encounter too many non-FF websites)
I’m curious, how would you do this in such a way that it wouldn’t come at the expense of effecting your high availability?
If the server were on-prem or in the cloud… and the system crashed/rebooted, how would you decrypt (or add the passphrase) to the encrypted drive?.. cause the likehood of the kernel crashing or a reboot after and update is higher than an FBI raid… and it would get tiresome to have the site being down, while we wait for Bob to wake up, log in, and type the passphrase to mount the encrypted hdd.
You could use something like HashiCorp Vault, but it isn’t perfect either. If the server were rebooted, it could talk to Vault and request the passphrase (automatically) , but this also means that the FBI could also “plug in” the server (at their leisure) and have it re-request the passphrase. … and if Vault were restarted there’s quite a process to unseal (unlock) a vault - so, it would be as cumbersome as needing to type in the passphrase on reboot.
My point / question is: yes, encryption (conceptually) is easy, but if you look at “the whole life cycle / workflow” - it’s much more complicated and you (as an administrator) might ask yourself “does this complexity improve anything or actually protect my users?”
I expect to have some website compatibility issues with Firefox/librewolf, as it does have a 3% share of the global browser market - so, website development energy is focused on the chrome/safari experience. However, 8+ years ago I felt I needed to use chrome at least every other day to view certain websites - it was frustrating.
I’m hoping (and willing to try it out) to see if this has improved.