Comments

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Pantherina, to linux in How to solve this boot error message?

Did you change your fstab, or have a full partition or something?

Pantherina, to linux in Modern fitting packages for DE behavior on Fedora Hyprland?

Oh noooo, so I have a useless project now? But I guess I will just copy what I need and make it my own.

Thanks!

Pantherina, to privacy in Librewolf but like... for chromium?

Thats most often privacy improvements and not hardening, two different things.

I dont wanna use Chromium, but if I would, I would use Brave.

Pantherina, (edited ) to linux in Privacy DNS Chooser Script v1.0 "Snow Breeze"

Yes if that works for sure. Problem here is that GNOME and KDE use different webengines, so yay no standards. Firefox doesnt support that I think?

I use a seperate firefox profile with a shortcut like


<span style="color:#323232;">blabla desktop entry
</span><span style="color:#323232;">Name=Captive Portal
</span><span style="color:#323232;">Exec=mullvad-exclude firefox -P captive http://captive.kuketz.de
</span>

I wanted to do something with mullvad-exclude but that didnt work for some reason, as when excluding it I think it had no internet?

Pantherina, to linux in Is linux good for someone tech illererate.

Yes just install something that never breaks, has a graphical appstore with the correct sources, and a good GUI.

I would say try Fedora Silverblue from Ublue.it. it updates automatically (at least it should), and all your apps can be installed from your software store.

Pantherina, to linux in Privacy DNS Chooser Script v1.0 "Snow Breeze"

Yes I think you can exclude local IPs in systemd-resolved

Pantherina, to linux in Privacy DNS Chooser Script v1.0 "Snow Breeze"

That is neat! It is a specific response so it should work.


<span style="color:#323232;">#!/bin/bash
</span><span style="color:#323232;">
</span><span style="color:#323232;"># Function to set insecure DNS
</span><span style="color:#323232;">function insecure-dns() {
</span><span style="color:#323232;">  # Backup the original resolved.conf file
</span><span style="color:#323232;">  cp /etc/systemd/resolved.conf /etc/systemd/resolved.conf.bak
</span><span style="color:#323232;">
</span><span style="color:#323232;">  # Modify resolved.conf to disable custom DNS, DoT, and DNSSEC
</span><span style="color:#323232;">  sed -i 's/^DNS=.*/#DNS=/; s/^Domains=.*/#Domains=/; s/^DNSOverTLS=.*/#DNSOverTLS=/; s/^DNSSEC=.*/#DNSSEC=/' /etc/systemd/resolved.conf
</span><span style="color:#323232;">
</span><span style="color:#323232;">  # Restart systemd-resolved
</span><span style="color:#323232;">  systemctl restart systemd-resolved
</span><span style="color:#323232;">}
</span><span style="color:#323232;">
</span><span style="color:#323232;"># Function to set secure DNS
</span><span style="color:#323232;">function secure-dns() {
</span><span style="color:#323232;">  # Restore the original resolved.conf file
</span><span style="color:#323232;">  mv /etc/systemd/resolved.conf.bak /etc/systemd/resolved.conf
</span><span style="color:#323232;">
</span><span style="color:#323232;">  # Restart systemd-resolved
</span><span style="color:#323232;">  systemctl restart systemd-resolved
</span><span style="color:#323232;">}
</span><span style="color:#323232;">
</span><span style="color:#323232;">while true; do
</span><span style="color:#323232;">  response=$(curl -sI captive.test.com | head -n 1 | cut -d' ' -f2)
</span><span style="color:#323232;">
</span><span style="color:#323232;">  if [ "$response" == "200" ]; then
</span><span style="color:#323232;">    insecure-dns
</span><span style="color:#323232;">    xdg-open captive.test.com
</span><span style="color:#323232;">    sleep 30
</span><span style="color:#323232;">    # something to wait until window is closed, otherwise spam!
</span><span style="color:#323232;">  else
</span><span style="color:#323232;">    secure-dns
</span><span style="color:#323232;">  fi
</span><span style="color:#323232;">
</span><span style="color:#323232;">  sleep 5
</span><span style="color:#323232;">done
</span>

This should work. What would be needed is to track the process of the login and only continue when the window is closed again.

Pantherina, to privacy in Librewolf but like... for chromium?

No the base Browser needs to be hardened. On top of that you can install addons but privacy badger is pretty weak afaik, and canvas is just one vector. There still is UA, Apis, referrer policies, WebGL etc

Pantherina, to linux in Privacy DNS Chooser Script v1.0 "Snow Breeze"

Cool!

Pantherina, to linux in Privacy DNS Chooser Script v1.0 "Snow Breeze"

In Germany every public wifi, train (ICE windows block cell internetand they are currently lasering small waves in them), hotels, cafes, private wifis even if you are a guest.

Because of “data protection” everyone needs to accept TOS so every network has them.

No idea where you live but cell data is often expensive.

I just use the MullvadVPN app, my systemd-resolved is plain and insecure and Mullvad does all the secure DNS stuff. Obviously sucks and is not scalable at all.

Systemd implementing a switch that could then be integrated into GUIs, like KDE6’s captive portal opener, is crucial. So for the portals you would make the DNS insecure, log in and secure it again. Best automatically.

Pantherina, to linux in Easiest way to switch distros

I would try the Distro on an external SSD first maybe?

PopOS is way more modern that Mint, so you may have negative effects from switching

Pantherina, to linux in Privacy DNS Chooser Script v1.0 "Snow Breeze"

Cool project! Do you know Captive portals? Because there you need to use DHCP DNS a lot, and turn off dnssec and dot afaik

Pantherina, to privacy in Any *good* keyboard recommations?

Aosp keyboard is the worst keyboard in existence.

Pantherina, to privacy in Any *good* keyboard recommations?

If you need word suggestions use OpenBoard. If you dont, Florisboard is king.

I always turned off these “you cant type and I know it better anyways” suggestions. Also bilingual + colloquial is not great

Pantherina, to linux in Switching to Debian on my gaming pc

But Debian for servers is also a pain.

  • no hardened ssh config
  • apparmor by default?
  • no automatic updates which is bogus
  • All
  • Subscribed
  • Moderated
  • Favorites
  • localhost
  • All magazines
    •
    Loading…
    Loading the web debug toolbar…
    Attempt #