I’ve never heard of anything working that way. The preferred algorithm is RFC 8305 “Happy Eyeballs,” which uses whichever network responds first. Even if your clients prefer IPv4, having IPv6 available allows you to access some resources that are not available over IPv4.
Matter uses IPv6 but it does not require you to have IPv6 internet. As long as the router isn’t blocking IPv6 router advertisements and IPv6 traffic between devices in your LAN you should be okay.
I already switched to Immich. It’s pretty good at finding pictures, it doesn’t require a subscription, and it isn’t Google.
My old phone was constantly recommending that I send YouTube videos with spy query parameters to the e-mail address of a dead relative instead of Untracker. It’s like they designed the system to push users towards doing what they want users to do instead of helping users do what users want to do.
I have to use a Mac and I can confidently say that the experience of using a Mac has not gotten better every year. It just doesn’t get worse as quickly as Windows. It may be true that Apple Silicon has gotten better every year, but so has AMD.
Give it a few months and your phone will helpfully install it for you.
Would the MacBook Pro or rpi4 with a second Ethernet nic running a firewall before the routers also fix the issue of not getting security updates?
No. For most routers, this provides no additional protection to the router. Your router should not be accepting connections from the WAN side that would be blocked by the firewall, but consumer routers almost always initiate connections to the WAN side, indistinguishable from normal client traffic to your firewall, and accept connections from the LAN side, invisible to your firewall. If the firewall blocks all incoming requests, it would create problems for UPNP, effectively giving you CGNAT, even if the firewall does not perform address translation.
At least for some laptops, you cannot just remove the battery. If the battery is removed, the performance may be throttled. This is true of very old MacBooks.
Enabling SSH password authentication is unnecessary and not a good idea, especially if your temporary passwords are simple. I haven’t used Hetzner but there is probably a way to upload a file or to paste into the console, or else if you fix your keyboard you could at least type a URL to download the public key from the internet. You may want to look into cloud-init instead of manually installing and configuring your VMs.
LUKS may not make your server meaningfully more secure. Anyone who can snapshot your server while it’s running or modify your unencrypted kernel or initrd files before you next unlock the server will be able to access your files.
Techdirt says 2,456 files as if it’s 2,456 separate things, but it’s actually just the source code for their web frontend and that source code is comprised of 2,456 files. Normally, the source code for the web frontend isn’t a big deal, but apparently the frontend that they’re exposing is for a service that normal people aren’t supposed to be able to see, and the capabilities of the service are made public. There’s still a lot that could be going on behind the scenes and not surfaced through the frontend.
This problem has nothing to do with NPM. Checkmarx was compromised last month, and during that compromise there were malicious VS Code extensions published to Visual Studio Code Marketplace. A Bitwarden developer says that somebody ran one of those malicious extensions, and GitHub API keys were stolen which were used in publishing the malicious CLI package.
It’s probably better that it happened on NPM. If the CLI were only downloadable from the Bitwarden website, it would have likely taken longer for somebody to notice something was wrong.