The opulence of the UAE lets a certain type of person overlook its human rights abuses and hostility towards women and queer people to view it as an appealing travel destination. It’s probably overlooked because without that opulence, Oman is just another dictatorship actively hostile to over half of the people who might travel there.

Qubes as a daily can be pretty cumbersome with a steep learning curve, but once you get the hang of it it’s a very unique modular kind of experience, and a pretty good way to safely(ish) use one machine for many things - certainly much more so than any of the main linux distros. If you’re interested in security, worth checking out!

Linux hobbyist for 20+ years, pro for 6+. Fedora for workstations, proxmox for hypervisors, and rocky for servers is my usual personal recommendation. Beyond that, secureblue (a hardened downstream of fedora atomic) with heads firmware is a fantastic daily driver if you’re into that kind of thing.

Started with debian sarge way back in the day, currently using secureblue and qubes with fedora vms for most work, with a debian htpc on the side. For servers, I’m mostly debian-based on hardware (a bunch of proxmox machines at various sites and debian-based raspberry pis everywhere), with mostly redhat-based vms. Some alpine and freebsd baremetal and virtual machines sprinkled in here and there for flavor where they fit right.

It isn’t much to ask for a game built for one operating system to work perfectly on a completely, fundamentally different operating system, by means of the vastly complex and enormous work of thousands of people, which they donated to the world so that you can access it for free?

You can use hdparm with the -S parameter to set the standby/spindown time for a hard drive.

https://wiki.archlinux.org/title/Hdparm#Power_management_configuration

A very rough sysadmin equivalent in my mind is infrastructure-as-code, like having a base system configuration pushed out via ansible that manual configurations can be made on top of. Saves all the preparatory busywork, equivalent to chopping your mirepoix in advance.

This quote from your link on the main client e2ee issues captures the zeitgeist of modern tech so beautifully:

Please keep in mind that this website is a furry blog, first and foremost, that sometimes happens to cover security and cryptography topics.

I’m reading this post as a well-intended PSA for those who might not know that their computers keep logs, and I appreciate the poster for that. But also I got a laugh from it sounding kind of like this:

If you want to avoid providing incriminating evidence during a possible police interrogation, you must disable your brain’s long-term memory functions by lobotomizing yourself

You should only enter a password once to log in, so maybe we just use our machines 1000x more than other people?

This is so cool! Thanks for your work uncovering these things, and thanks for posting it.

Podman/docker leave behind old images, image layers, and containers that need to be cleaned up occasionally. podman system prune will do so.

If 8TB was taken up quickly or unexpectedly, it might be something like a container failing to start and being recreated over and over, leaving each failed container behind as it goes. podman ps --all will list all containers, running or stopped. Before doing the system prune run that and podman image ls --all to see if anything looks amiss.

Good opsec, really.

Edit: also I just realized this is the Privacy community lol

Excellent, now we can be eaten by a GNU grue

deleted by creator

I just set up Readeck a few weeks ago, and I’ve been liking it. Very minimalist, utilitarian. One feature I’d like that isn’t included is the ability to add specific labels or collections to the sidebar, but that’s my only quibble so far.

It has an official browser extension for adding urls to it, but if you can’t or don’t want to use that, it has a nice api. I use the api to add bookmarks from my phone using a termux-url-opener script, which is as easy as the extension - just hit the “share” button and select termux, and it does the rest.

Navigating around supporting bad actors in the foss community is probably far easier than in the closed, commercial software space, given that all the code, discussion, and money are out in the open.

Also I think the proportion of fascists and bad actors in the foss community is probably lower than elsewhere in the first place, given that the community is based on the free and open sharing of work and knowledge.

First time I’ve ever seen this, and I love it.

That’s pretty wild, given there are only around 6,836 extant mammal species at all. A quarter of all mammal species are bats!

The rclone fuse mount is essentially running in the memory of the container, and doesn’t translate back into the filesystem that the host presents from itself into that container.

Since rclone is available in the debian repos, the simplest and easiest option would be to do the rclone mount on the host and then pass that via bind mounting into the Plex container.

If you want to keep the rclone mounting containerized though (or if your Proxmox host is clustered, you want to mount it on the host, and you want the mount to be shared between your nodes), you can use rclone’s experimental but built-in nfs server feature: https://rclone.org/commands/rclone_serve_nfs/

Make sure your 2 containers can talk to each other over a secure network (“this server does not implement any authentication so any client will be able to access the data”), start the nfs server in the rclone container, and mount it via nfs in the Plex container.

Good luck!

apt-get clean will clear the apt cache and should give you enough temporary storage headroom on /var to do things, but if you’re bumping up on this limit often, you’ll need to reconfigure your storage.