You can disable cloudflare’s tls termination by setting the DNS record to DNS only. Be aware that this then bypasses their cdn, probably making things slower, and bypasses most of the security they put in place for you.
Other cdns may or may not do similar. It’s hard to do WAF when you can’t see the traffic.
Note that a registrar and a cdn are different things. It’s possible to remain on cloud flare for your domain registration and DNS while using a different cdn.
This is somewhat unpopular in this crowd, but ever since Nova got bought by an ad company, I use pixel launcher. I don’t actually need customization like more apps per row. The default is good enough.
I was watching a streamer who had nudity off and bare breasts still flashed on stream while the game loaded in. So, she no longer switches the stream to show the game before loading a save for the first time that day. And she deleted the clip and the VOD to cover her own ass from Twitch. Not sure if the game was, or can be, fixed for this, but the checkbox isn’t the panacea most think it is.
Tail scale is great but the way its magic dns works has broken my device’s Internet more than thrice. Primarily on Android (there’s a long standing bug report) but also on Linux (before I fixed the firewall). If Android is your primary device I would absolutely not recommend tail scale for ha.
The problem is that to make magic dns work, it has to override your local dns settings, which is fine until it breaks. For example, if private DNS is enabled in Android (which it is by default) then when your phone switches networks, dns straight up doesn’t work until you toggle TS off and on. Which means your internet doesn’t work. And magic dns is “needed” to get a TS https certificate (if you have another valid cert, this is less important).
On my Android I have private DNS on and a tasker profile to toggle TS whenever the network changes. It is not ideal.
I use Authy, but these comments are going to make me check out Authenticator Pro, especially since I see its backup story on the main page, and it supports sha256, which Authy does not (and enabling current Lemmy 2fa silently fails).
This joke will just yield a permission denied error because the shell redirection is tried before the sudo.
It would be
echo 0.0.0.0 www.facebook.com | sudo tee -a /etc/hostsinstead.