I don’t mean to sound hostile, that’s probably my past demons coming out. Like I said in my last comment, it’s really apt that I hate. It would constantly break or put me into dependency hell and I haven’t had to deal with that (yet) with Fedora.

I haven’t put my finger on it, but Fedora, for whatever reason, also just feels faster.

It’s mostly personal preference, but I have grown to hate apt in general. I used it for over a decade and constantly got in dependency hell. I’ve yet to have anything like that happen on Fedora, especially Silverblue and CoreOS.

My pihole exploded yesterday, all my fault. A couple of years ago, I created a script called via cron to update pihole’s services every other week. This was great, until now when it updated to v6 at 4am. To make matters worse, I neglected to automate raspian updates, meaning it was very out of date, and was no longer compatible with pihole-FTL (thinking back, I thought I automated it too, but I guess not).

I took an image after creating a pihole “teleporter” backup, and began formatting. In my lack of caffeine and focus, I missed that my teleporter file was corrupt after I had successfully wiped the SD card. Thankfully I had that image as I was able to mount it and retrieve my blocklists via sqlite, otherwise I would have had to start from scratch.

One good thing that came out of it (for my taste, anyway) was that I swapped the OS on the pi to fedora. No more debian around here!

Tomorrow, I plan on setting up some backup automation for my pi, as it’s the only machine missing backups at this point.

How do you configure it to do that, then? Because calyx’s docs only say that it’s either disabled, enabled without a Google account, or fully enabled. The last two send some data to Google regardless. I’m genuinely asking, because this is the main reason why I left Calyx for Graphene. I saw my phone hitting Google services when I wasn’t even using it. Graphene lets me disable network for apps entirely, something that wasn’t a thing for Calyx either (at the time).

Does Calyx allow you to disable your USB port as well?

Also, I’m still curious about what you said earlier about GrapheneOS being a ‘trap’. Can you elaborate?

As another user stated in reply to you earlier, this is debatable. Debating does not equal hate, I used to use MicroG a ton (I was a CalyxOS/LineageOS user before). But, you must acknowledge that MicroG still communicates with Google, and you can’t disable this at the OS level. That’s the primary benefit of sandboxed Google Play - you can take away full access and many apps will continue to function, and on top of that, the sandboxing layer ensures that the rest of your phone is secure.

MicroG is fine, it’s great, even. But it’s not infallible, and depending on your threat model, that’s something to at least consider.

Can you explain more about how it’s a trap, though? This is an open source project that you can build yourself.

It should be noted that these were already being mitigated by GrapheneOS before this came out, mostly thanks to the hardware-level USB disable feature. https://grapheneos.social/@GrapheneOS/114081913638905015

I luckily haven’t encountered these yet, but I primarily use NZB

Yep, pretty much. It used to be doable, but these days it’s very difficult. It’s certainly not impossible, but one slipup and you could get on the deny list forever. It’s just not worth it, since emails are usually pretty mission critical, imo.

It should be noted that email servers, no matter the setup, require you to follow strict standards to achieve proper delivery. It’s very easy to get blacklisted, and it’s next to impossible to get off of said blacklist once you’re on it.

I used to host my own mail server with this, but it got to be too much to get my emails to actually send. I was always wondering if my email was actually delivered or if it was silently bounced or sent to spam. Email is the only thing I’m not willing to self host.

I’m now using Fedora CoreOS which can be deployed from config files. It’s really neat to be able to define everything the way you need it and just start up the VM with no further config necessary. I’m using podman to manage my services.

They have an Nvidia version; although it should be mentioned that Nvidia doesn’t always play nice with Wayland. If you use X11 with Nvidia instead, it’s a much better experience and you still get most of the benefits of using Bazzite.

Personally, I switched to AMD due to the better Linux support. Wayland on AMD is fantastic.

If you are running Windows […]

and

from June 2015 until the present, affecting v3.2.1 through v5.0.0 inclusive. The behaviour does not appear to be replicated for other OS variants

I also ran Pop for a couple of years before moving to Bazzite. Bazzite has KDE, Wayland, and can run .deb software through distrobox. It’s the best.

There are many different ways, but personally (and hopefully I don’t get crucified for saying this) I use Plex and Plexamp. Plexamp has got to be the best music app I’ve ever used. I even tied it into Last.fm to get recommendations for new music based on my listening.

You’d need to set up Plex media server to go this route: https://support.plex.tv/articles/200264746-quick-start-step-by-step-guides/

Personally I host via Docker.

It might be a little overkill if you don’t have other media, though, and it’s not fully open source.

Yeah, Nvidia is pretty bad on Linux in general in my experience. Especially with Wayland. AMD and Wayland run very well, however.

I run the non-deck variant with the traditional DE (KDE 6, in this case). I admit that I haven’t tried the deck variants but it should work similar with the difference being the default environment to boot into, irrc.

I use Bazzite exclusively on desktop. It’s pretty much unmatched, and it “just works” out of the box especially on AMD.

I’d be curious to know what benefit it has over just using RSS.

deleted by creator

Yep, a bastion is what you’re looking for. I use an rpi + a Dynamic DNS record in a script on the pi to automatically update firewall and ssh rules if my IP updates. Of course, you may need to do some configuration depending on their network setup.