EncryptKeeper

So how did those laptops get stolen? Would that have been possible if their users worked on a local client at the office?

Yes laptops can be stolen from offices. It would be pretty trivial to do so in fact in most cases. In an all on site office it’d be a juicy target too because now all these laptops are in the same place.

Rocket science is a fucking joke compared to secure IT practices. You saying that, proves that you know neither well enough to participate in this discourse.

It is abundantly clear that you have little to no knowledge or experience in modern IT security practices. And before you ask, no, having watched Mr. Robot all the way through does not count.

There are highly capable technical people that can securely work from home, but this is not the average user.

You absolutely do not have to be highly technical to work securely from home. That’s just silly. You only need highly technical people to ensure the people who work from home can do so securely.

It’s the type of confidence that comes with years of experience in IT security and compliance for global enterprises.

Evidently not.

But I also understand IT security is dramatically complicated by user's working on their private network connection.

It really isn’t.

Yes this. So many people don’t know that in all 50 states it actually becomes illegal to have fun after your 25th birthday.

If they did that then they wouldn’t be a goofy looking tourist spectacle anymore.

You might want to actually look into the history of global trade sometime.

Getting all the functionality of Pihole into Unbound would be a good deal more than “a little work” lol. And for no real practical reason when all you’re trying to do is set up secure DNS with some ad blocking on your network. And this is coming from a professional who wouldn’t have to “learn” anything to do it. If it was really that little work, Pihole + Unbound wouldn’t be the go-to solutions for so many people.

That’s probably more of a function of our switch from consumption taxes to income tax.

This politician isn’t American either, this is in Sydney

I mean if you want to build something around Unbound to do ad blocking and set up a monitoring stack for metrics and all that jazz that’s great, more power to you. But you already have two things built for purpose, there’s no reason to go out of your way to do that. And I don’t think OP here is prepared to do all that.

For the same reason you’re running AdGuard and not just pointing all your devices at the recursive upstream.

You’re using AdGuard / Pihole as an ad sinkhole, not just to cache and forward DNS requests. Like if you really wanted to you could hack together something in Unbound to do that, but why would you do that when Pihole already exists? You have two things built for purpose.