The picture says “SILENCE LOGIC, THE PROGESTERONE IS TALKING!” with a grey statue holding its hand up as if to signal someone to pause.

You can stick them anywhere …

I used tee -a because that is how I have seen it recommended. If it works without then do that instead.

Replying to remind you.

Also nice because you can better isolate these Android apps instead of Waydroid which intentional has no isolation or selinux policies and runs in a rootful LXC container.

According to the Gitlab repo for the Android transition layer, yes.

Notesnook has a desktop app. Does it not work with self hosted implementation?

I haven’t had great success, it causes more problems than it is worth if you aren’t willing and knowledgeable to troubleshoot any finicky behavior. The nvidia drivers just end up causing a headache. I would never recommend anyone buy an nvidia GPU if they dont have a specific requirement like run local AI/LLMs using CUDA or raytracing (I guess). AMD can also run local LLMs using ROCm, just not supported for 5000 series or lower.

The only Linux distro I (and my friends) have had any success with nvidia GPUs is Bazzite/Aurora. Bazzite is gaming focused and has special nvidia OS images.

AMD is easier to use with Linux. Get a rx6700xt or greater.

Some/most places outside the USA heavily rely on WhatsApp for communication. This is like saying “you dont need to be able to talk with your friends, family, or employer”

The one-line command I recommend for install Mullvad’s RPM repo is as follows:
curl --tlsv1.3 -fsS https://repository.mullvad.net/rpm/stable/mullvad.repo | pkexec tee -a "/etc/yum.repos.d/mullvad.repo"

My explanation: This curl command enforces strong TLS encryption and pipes the fetched repo file to the tee (append) command, which requests to run with root permissions and appends the file to the specified path. pkexec is useful instead of plain sudo because if the current user isn’t in wheel/sudo groul it requests the local admin account to authenticate.

You can give a Flatpak the necessary permissions to modify disks. All the permissions needed by Veracrypt could be granted.

Maybe the KDE gear and K on the top side? Or maybe the KDE neon logo. I’d look at KDE clipart.

Basically, Flatpak stops Firefox from using its normal security measures for isolation. Librewolf (a fork of Firefox) has the same problems resulting from Flatpak.

Also, what do you mean the distro repo will update never? You just type the update command (eg. sudo dnf update -y) and software gets updated. If you dont like manually typing command, just set it up to auto run at boot.

Flatpak doesnt let the browser use its normal sandboxing for process isolation using user namespaces. Read more here or search on the web for “flatpak weaken browser security”: https://discussion.fedoraproject.org/t/security-problems-with-flatpak-browsers-firefox-chromium-bubblejail-seccomp-user-namespaces/121109/5

Flatpak weakens the security/isolation of Librewolf (and any browser). Since you are in Linux, you might as well use the distro repo, which will update whenever you update.

Hmm, you have typed words that I do not vibe with.

Cus there isnt a reason to change if you are already super familiar with pfSense. They basically do the same stuff.

What extensions do you use? What browser do you use? The only thing a VPN helps with is hiding your IP. If you dont use a good privacy browser like Mullvad/Librewolf or Cromite, you are still easily trackable regardless of VPN.

The only extension I recommend for privacy and security is uBlock Origin. There are some other good extensions but none that are as significant. More extensions can actually increase your trackability, aka browser fingerprinting.