EncryptKeeper

For the same reason you’re running AdGuard and not just pointing all your devices at the recursive upstream.

You’re using AdGuard / Pihole as an ad sinkhole, not just to cache and forward DNS requests. Like if you really wanted to you could hack together something in Unbound to do that, but why would you do that when Pihole already exists? You have two things built for purpose.

If you want to run your own recursive DNS server, why would you run two separate DNS servers?

I’m not sure I understand your question. A recursive DNS server and a local DNS cache/forwarder/are two different things with two different purposes. You will always need both. You yourself are using AdguardHome and that is just connecting to recursive DNS server upstream. In my scenario you’re just running both yourself instead of you running one and then letting a 3rd party run the other for you.

Your outbound queries will still be unencrypted, so your ISP can still log them and create an advertising profile based on them.

You can encrypt the recursive queries through your ISP if you want to. Though the effectiveness of any profiling your ISP would do to you are minimized by Qname minimization that Unbound does by default.

If you’re just using DoH then you’re just shifting who’s making that advertising profile on you from your ISP to whoever is hosting your upstream recursive DNS server. It doesn’t matter how much encryption you do because on the other end of that encrypted connection is the entity who you’re giving all your queries to.

I would say Pihole is a better choice than AdGuard home because PiHole just runs on top of dnsmasq. Throw Unbound on there too as your upstream recursive resolver and you’re set. You don’t even need to worry about an encrypted session to your upstream anymore because your upstream is now your loopback.

If you can get a much better deal on a Belkin or Anker cable or anything you know is a decent brand then I’d say go for it. You don’t NEED an Apple cable. It’s just a fool proof way to get a cable that you know will work well.

Yeah, why not? A quick look at Best Buy and I can see that the Apple USB-C cable is $15.99 and the cheapest reputable third party USB-charger is $13.99. You save a whopping $2.

So if you’re a deal-oriented shopper you’re probably not even going to buy from a reputable third party, you’ll probably go with the $6 one from the gas station of dubious quality. And you’ll probably be fine. Or maybe after 3 months it causes a short and burns your house down. Best $10 you ever saved.

Or you can take literally all of the guesswork out of it and just go with whatever manufacturers cable, spend the extra $10 on a cable that will last you years. The point isn’t buying something Apple branded, they don’t even brand it physically. The point is to just buy something guaranteed to work.

I think you are right but I wasn’t sure. Like technically you’ll still see the details if you open the certificate but… who’s doing that?

Because you’re getting a product that you know isn’t a cheap knockoff that will burn your house down, and you know it will charge your phone at the fastest speed it’s capable of.

You can of course get the same experience buying third party, but then you have to spend time doing research on which one to buy for your device, and the reputable third party brands can cost just as much as the Apple ones anyway.

The point of paid SSL at this stage in the game are the higher tiers of verification. Instead of just verifying that you own the domain, you can verify that you are who you say you are. These are called Extended Validation and Organizational Validation certificates. This has historically been desirable by businesses. It used to be that these higher tier certs would not only give you a lock icon in the address bar of a web browser, but also a little blurb confirming your organization is legit. Not sure if this is still the case though. You will see the extended validation when you check the sites certificate though for sure.

As far as encryption and security, there’s no difference. Also side note, the Comodo brand still technically exists but it was bought by Sectigo like 7 years ago.

Yeah but also even when you’re paying, you’re still the product.

God just imagine the racism.

And here I am with 256GB that’s never even half full.

The shame of it is this kinda the way she goes for passion jobs like game dev. Similarly, EMS is a chronically underpaid career. Not for lack of difficulty or skills required, but because people want to do it. That desire to help others only translates into an ability to underpay people for the privilege. There’s a nobility to wanting to dedicate your life to helping people despite the lack of pay. A nobility that is happily exploited by private equity.