If you use a third-party’s DNS server (such as Cloudflare, Quad9 or Google) as your upstream DNS server, you only have to update PiHole.

If you have set up your own upstream DNS server using a DNS resolver like unbound or Bind9, update it as well as your PiHole.

I struggle to find if it uses DNSSEC or even a change log. If it does, contact the maintainer and disable DNSSEC (if you can) until a fix is released.

They maintain their own resolver, so they have to patch it if not done already.

It’s the latter. Unless you run your own DNS resolver, most people are safe

I’m not familiar with off-the-shelf DNS filtering on mobile, but since running a DNS resolver on-device would be impractical, I think they must be using a DNS server that they maintain. Which means that unless I’m wrong, the vulnerability lies on their end, you should be fine.

Exactly, I don’t get the “Mastodon as a poor man’s RSS agregator” trend

You’re probably looking for something that supports OPDS to automatically download e-books to your e-reader.

First search result is Komga

TrueNAS SCALE as host with an Ubuntu LTS VM running Docker containers.

Original I went with only containers running on top of SCALE but both iX and TrueCharts made it harder to run plain Docker Compose on TrueNAS.

What a weird choice for a storage-oriented device, I would have gone for a SBC with SATA ports or a PCIe port.

Just to clarify: will you use the same domain? If yes, oleorun’s answer is good enough. If not, it would be much more harder (you would also have to update your instance’s URL and users’ inboxes URLs in the database for federation to work, probably have to unsubscribe aand resubscribe to every community on your instance and even then I’m not sure that would not lead to federation issues)

Plain HTTP should be considered obsolete. Also it makes impersonating websites harder (but not impossible)

I agree, but that still requires a lot of research and thoughts on the ideal zRAID layout.

I wouldn’t recommend TrueNAS SCALE to everyone and certainly not as someone’s first NAS OS. Sure, the GUI is great and its lack of flexibility prevents users from shooting themselves in the foot, but it requires lots of thoughts on zRAID settings and apps get complicated once you look outside the community-supported ones.

Is plex somewhat simple to setup and is there other software I should look at?

Yes, it’s rather simple to install. I don’t know where your “family videos” come from, but if you want to automate the download process you can take a look at Radarr and Sonarr (also known as the Servarr stack)

Do you want Unbound to query upstream DNS over HTTPS servers or do you want unbound to answer to DoH queries?

For the former, unbound cannot query upstream DoH servers, only DoT and DNS at the moment. An issue is still open for setting DoH as upstream. A solution is to use cloudflared or dnsproxy to proxy DNS queries to DoH upstream servers.

As for the latter, unbound can be set to answer to DoH queries.

I’ve always used OVH. They are reputable, always been responsive to my questions and have an API to handle many things, including domain names, which is handy for DNS-01 challenges with Caddy and libdns.

Quicker but not ideal for users with visual impairments :/