I have been distro hopping for about 2 weeks now, there’s always something that doesn’t work. I thought I would stick with Debian and now I haven’t been able to make my printer work in it, I think I tried in another distro and it just worked out of the box, but there’s always something that’s broken in every distro....
Install Ubuntu and be done. I’m able to print to my brother network printer with no special drivers. I installed a gnome tweaks package to do some minor tweaks in gnome, and I did rip out the Firefox snap thing to install Firefox from a package so I could use my kpxc plugin, but that’s the only major change I made. Hell, Dell (laptop) even provides firmware updates via the package manager so your bios gets updated properly. Best Linux desktop experience I’ve ever had over the past 5 years and I’ve been daily driving Ubuntu since 2004.
I've been thinking about getting a hardware security key and have heard of yubikey before; but I want to see what my options are and if they are worth it in your opinion.
My current setup is a local KeePassXC database (that I sync between my PC and phone and also acts as TOTP authenticator app), I know that KeePass supports hardware keys for unlocking the database.
I am personally still of the belief that passwords are the safest when done right; but 2FA/MFA can greatly increase security on top of that (again, if done right).
The key work work together with already existing passwords, not replace them.
As I use linux as my primary OS I do expect it to support it and anything that doesn't I will have to pass on.
PS: what are the things I need to know about these hardware keys that's not being talked about too much, I am very much delving into new territory and want to make sure I'm properly educated before I delve in.
Good call. I do some backups now but I should formalize that process. Any recommendations on selfhost packages that can handle the append only functionality?
As a person who used to be “the backup guy” at a company, truer words are rarely spoken. Always test the backups otherwise it’s an exercise in futility.
One of my next steps was hardening my OPNSense router as it handles all the edge network reverse proxy duties, so IDS was in the list. I’m digging into Crowdsec now, it looks like there’s an implementation for OPNsense. Thanks for the tip!
There could probably be some additional refactoring here, but it works for my setup. I’m using default nginx paths, so they probably look different than other installs that use custom stuff like /var/www, etc.
Use it by putting it in a shell script, make it executable, then call it:
sudo scriptName.sh 28.0.1
Replace the version with whatever version you’re upgrading to. I would highly recommend never upgrading to a .0, always wait for at least a .1 patch. I left some sleeps in the when I was debugging a while back, those are safe to remove assuming it works in your setup. I also noticed some variables weren’t quoted, I’m not a bash programmer so there’s probably some consistency issues that could be addressed if someone is OCD.
You absolutely need to move from patch to patch and cannot just do a multiple version jump safely. You also need to validate the configs between versions, especially major release updates or you risk breaking. New features and optimizations happen and you also may need to change our update your reverse proxy configuration on update, or modify db table configuration (just puking this from memory as I’ve had to do it before). I don’t know that there’s automation for each one of those steps.
Because of that, I run nextcloud in a VM and install it from the binary package. I wrote a shell script that handles downloading, moving the files, updating permissions and copying the old config forward, symlinking and doing the upgrade. Then all I have to do is log in as administrator, check out the admin dashboard and make sure there aren’t new things I have to address in the status page. It’s a pain, but my nextcloud uses external db and redis and PHP caching so it’s not an easy out of the box setup. But it’s been solid for a long time once I adopted using this script.
Nextcloud seems to have a bad reputation around here regarding performance. It never really bothered me, but when a comment on a post here yesterday talked about huge speed gains to be had with Postgres, I got curious and spent a few hours researching and tweaking my setup....
I wonder what performance impact there would be if you were to move pgsql onto bare metal with enough ram dedicated to caching all of the db data (think: i5 or i7 nuc). That’s going to be my next step with my homelab; I want to migrate everything to a single db host with a lot of RAM and M2 storage and avoid the db process replication I have going on. I have no performance complaints with NC currently, I’m running PHP cache and redis as well as image preview and imaginary.
I tried fre:ac but got an error from cddb when trying to connect to the database. Looking to rip to both FLAC and to Opus. Ideally with the latest codec updates....
With support ending for Windows 10, the most popular desktop operating system in the world currently, possibly 240 million pcs may be sent to the landfill. This is mostly due to Windows 11’s exorbitant requirements. This will most likely result in many pcs being immediately outdated, and prone to viruses. GNU/Linux may be...
Just checked my own sshd configs and I don’t use CBC in them. I’ve based the kex/cipher/Mac configs off of cipherlist.eu and the mozilla docs current standards. Guess it pays to never use default configs for sshd if it’s ever exposed to the Internet.
Edit: I read it wrong. It’s chacha20 OR CBC. I rely heavily on the former with none of the latter.
I have some metal film 1/2w 2.2ohm resistors in some car wiring. I’m concerned about the durability of this install and am seeking advice on how to protect the resistor once it’s soldered in place. The obvious is heat shrink tubing, but it’s there anything more substantial?...
To fool the computer into not throwing an airbag light and disabling all the airbags. I have an early 00s car that swings double duty as street car and track car and when I pull the driver’s seat out for a race seat, the airbag light shows up. Then I go through a rigamarole to reset the light once everything is swapped and plugged in again. It’s a common mod, but just people usually cut up the harness. I’d like to keep things neat and tidy so I bought the seat side of the harness and want to cut the plug off, solder on the resistor and plug it in.
Youtube has better anti-adblock now. Other than Invidious, any way around it? Purging and re-dowloading the ublock stuff didn't work
I'm so frustrated rn.
I have been distro hopping for about 2 weeks now, there’s always something that doesn’t work. I thought I would stick with Debian and now I haven’t been able to make my printer work in it, I think I tried in another distro and it just worked out of the box, but there’s always something that’s broken in every distro....
deleted_by_author
R.I.P. (i.postimg.cc)
Nextcloud zero day security
What is everyone doing? SELinux? AppArmor? Something else?...
Do any of you have that one service that just breaks constantly? I'd love to love Nextcloud, but it sure makes that difficult at times (lemmy.world)
Nextcloud Performance Improvements
Nextcloud seems to have a bad reputation around here regarding performance. It never really bothered me, but when a comment on a post here yesterday talked about huge speed gains to be had with Postgres, I got curious and spent a few hours researching and tweaking my setup....
What linux program do you use to rip CDs (just audio)
I tried fre:ac but got an error from cddb when trying to connect to the database. Looking to rip to both FLAC and to Opus. Ideally with the latest codec updates....
Ending support for Windows 10 could send 240 million computers to the landfill. Why not install Linux on them? (gadgettendency.com)
With support ending for Windows 10, the most popular desktop operating system in the world currently, possibly 240 million pcs may be sent to the landfill. This is mostly due to Windows 11’s exorbitant requirements. This will most likely result in many pcs being immediately outdated, and prone to viruses. GNU/Linux may be...
SSH protects the world’s most sensitive networks. It just got a lot weaker (arstechnica.com)
I know some of y'all can relate (lemmy.world)
I now pronounce you... (lemmy.world)
Source: Siberian Lizard...
Housing for resistor?
I have some metal film 1/2w 2.2ohm resistors in some car wiring. I’m concerned about the durability of this install and am seeking advice on how to protect the resistor once it’s soldered in place. The obvious is heat shrink tubing, but it’s there anything more substantial?...