deafboy

... is the most upvoted stackoverflow answer.

That's because they're not going to actually do it.

Native? Isnt it a web app?

Gmail offers imap amd smtp access. You have to enable 2FA, and then it will allow you to create account for so called "less secure apps".

In your place, I'd either continue using gmail directly, or finish the configuration of the self hosted mail server and just use that with any smtp/imap client. I suggest getting a separate domain for testing first, before moving your primary inbox there.

you still need good security configuration of the exposed service.

In a sense that security comes in layers, yes. But in practice, this setup will prevent 100% of bots scanning the internet for exposed services, and absolute majority of possible targeted attacks as well. It's like using any other 3rd party VPN, except there's not a central point for the traffic to flow through.

From the attackers point of view, nothing is listening there.

I've used a similar setup in the past to access a device behind a NAT (possibly multiple NATs) and a dynamic IPv4. Looking back, that ISP was a pure nightmare.

This is not a guide to hide from the government or ISP. Just a way to tunnel to your home server without publishing the sshd for random strangers. Personally, I'd just publish the ssh and be done with it.

I would rather live without the correlation attacks

The more people using Tor, the less useful targeted disconnects become.

Which is still just as open, but also a massive calling card for anyone trolling around the TOR network

Luckily, it is no longer possible to easily sniff the new v3 addresses by deploying a malicious relay. Any attack to even reveal the existence of a hidden service would require a very specialized setup. And we're just talking discovery, not the ability to connect and attack the actual service running there.

just connecting to Tor is very much a huge exposure imho

Exposure of what, to whom?

"GhostWrite is the result of an architectural flaw, a hardware bug in the XuanTie C910 and C920 CPU. These are only two of many RISC-V CPUs, but they are widely used for a variety of applications. According to the research team, vulnerable devices include:

Scaleway Elastic Metal RV1, bare-metal C910 cloud instances

• Milk-V Pioneer, 64-core desktop/server
• Lichee Cluster 4A, compute cluster
• Lichee Book 4A, laptop
• Lichee Console 4A, tiny laptop
• Lichee Pocket 4A, gaming console
• Sipeed Lichee Pi 4A, single-board computer (SBC)
• Milk-V Meles, SBC
• BeagleV-Ahead, SBC"

https://www.tomshardware.com/pc-components/cpus/ghostwrite-vulnerability-exploits-architectural-bug-in-risc-v-cpu-to-gain-root-access

Unbacked tokens. You mean like Tether?

Exactly like Tether. USDT was never backed 1:1 by USD. They don't even try to deny it anymore. They admit it's backed by "various assets, including BTC", which smells like a market manipulation.

How does Taler promote taxation?

"Customers can stay anonymous, but merchants can not hide their income through payments with GNU Taler. This helps to avoid tax evasion and money laundering."

• https://taler.net/en/features.html

it might definitely be useful when used correctly in the future

I can almost see the monk smacking an orphan for holding the spoon in the wrong hand :D

GNU Taller is pretty fragile, though. One bank issues unbacked tokens and the credibility of the whole system goes down the drain. It's the current financial system, just rebranded. Also, it promotes taxation which automatically makes it a cult & scam.