2xsaiko

2xsaiko , 6 days ago

I bought a QNAP TL-D800S disk shelf (it does have 8 slots and not 5) and an old used Fujitsu Esprimo on eBay. That means I can replace the PC with something more powerful in the future if I need to without having to worry about the disks. Works great so far with the 5 disks I have in it and the two stack on top of each other perfectly.

2xsaiko , 5 days ago

If you can connect it to the SBC, yeah. This one comes with a PCIe card and you connect it with SAS cables (it unfortunately only does SATA for the drives though). The disks show up as separate independent devices and you can just combine them with mdraid or whatever.

There's also a USB C variant of it but that seemed more sketchy to me.

2xsaiko , 10 days ago

Take something with KDE Plasma. I have mine set up to work as close to Mac as possible (command key as the main modifier, all the Mac shortcuts for the window manager and KDE applications, top menu bar, dock, probably more). Took a bit to set up but now it doesn’t nearly throw me off as much anymore when switching between the two.

2xsaiko , 12 days ago

unofficial Discord

Join the support room on Matrix, really helpful people in there. (And it’s official and not Discord)

2xsaiko , 16 days ago

We're not in 2014 anymore.

2xsaiko , 16 days ago

Yeah, but it isn't noticeably "less stable" if at all anymore* unless you mean stable as in "essentially in maintenance mode", and clearly good enough for SLES to make it the default. Stop spreading outdated FUD and make backups regularly if you care about your documents (ext4 won't save you from disk failure either which is probably the more likely scenario).

* not talking about the RAID 5/6 modes, but those are explicitly marked unstable

2xsaiko , 15 days ago

install -m755 /dev/null target was the first thing I thought of. I would never use this but it is a single command.

2xsaiko , 15 days ago

I'm going to write (at least part of) the script first anyway, and then I can just use chmod +x after the file is saved which is shorter.

2xsaiko , 15 days ago (edited 15 days ago)

$10 per month and all you get is 5 IPv6 addresses (I assume that's what they mean by "5 Static Visible IPv6 Tunnels")? What a shameless scam.

Edit: Though maybe you're paying for the "Tier-1 (as in ISP?) Bandwidth". But if they want me to take them seriously, they need to give me a /64 prefix instead of a measly 5 addresses.

2xsaiko , 13 days ago

Yeah, tunnelbroker.net is what I use. It works behind NAT too, and they even give you a /48! For free!

To be clear I wouldn't mind paying for guaranteed speeds because the he.net tunnel can be a bit slow at times. My problem with this is that they don't give you a /64 which basically makes it useless for anything but the "host a couple services" use case. Most people who would consider this, including me, probably don't have IPv6 connectivity from their ISP at all and would like to get routable IPv6 address space for their home network.

2xsaiko , 18 days ago

It’s definitely on my Linux bucket list. I’ve been kinda thinking about making a distro myself (specifically because I want to try some unusual and niche things in terms of system layout and package management), and that would be a good starting point.

2xsaiko , 19 days ago

Set ForwardToSyslog=yes in journald.conf and install a syslog daemon. Also optionally Storage=volatile (I wouldn't set Storage=none unless you want systemd to no longer show you any logs anywhere including in systemctl status because I assume it will do that)

2xsaiko , 19 days ago

It's not the default fwiw. From journald.conf(5):

By default, only forwarding to wall is enabled.

2xsaiko , 26 days ago

IPv6. Just let the other network through the firewall, use direct connections, no overcomplicated tunnel setup needed.

2xsaiko , 27 days ago

The software Wikipedia runs on is called Mediawiki. And yes, you can self-host it.

2xsaiko , 28 days ago

You can check for being an open relay with tools like this one: https://mxtoolbox.com/diagnostic.aspx

2xsaiko , 29 days ago

I use KMail on NixOS (though, still the Qt 5 version) and it works for me. What's the problem with it?

2xsaiko , 29 days ago

Huh, I haven't encountered any of these (adding address book works for me too, the last comment on that post seems to have a solution if it doesn't for you) and I've used KMail on NixOS for probably about as long as that first issue existed. Weird.

2xsaiko , 28 days ago

Not at all, given we're running probably significantly different configurations. With the same configuration we'd get the same results, and NixOS never claimed to eliminate what is essentially packaging bugs related to runtime dependencies. KDE stuff (and especially anything Akonadi-related) right now needs a lot of plugin path environment variable mess to work with NixOS's file structure because it loads a bunch of stuff at runtime from other packages, which can break in strange ways like this if you don't add a specific package to your system packages for example, it's definitely not ideal the way it is right now but it's also pretty hard to get right.

2xsaiko , 28 days ago

The same argument can be made for any OS. Same packages, same hardware, same configuration, and probably it would be the same.

Only if we're talking about 1:1 disk image clones or installing stuff on a fresh system.

https://nixos.org/

That is clearly talking about build-time dependencies and the build process given the context (maybe the word "work" here is misleading though, also because some packages don't even have parts that can "work" or "not work" like wallpaper packages). It is impossible to automatically ensure all runtime dependencies are met, because that would require analyzing what the program actually does. I can write you any number of Nix packages that will only run on my computer (simplest case is because they load a file from a path from my user directory or something), but the thing that Nix ensures is that you can reproduce the package contents on your system as well.

That said, in a lot of cases, nixpkgs does actually (manually) patch runtime dependencies to use store paths which sets up that dependency relation, but with KDE PIM stuff this would lead to dependency cycles if done the typical way, for example KMail depends on Akonadi to build, but Akonadi loads plugin files from KMail when it is installed. This is not something you can do, so to resolve that cycle, you need another package which depends on both and links them together so they can see each other at runtime. Right now the entire NixOS configuration (or rather, whatever the environment.systemPackages option affects) assumes the role of this third package, but it would be nice if was done in in a more self-contained way, so that you could also reasonably use this stuff outside of NixOS.

2xsaiko , 28 days ago

That's a pretty outrageous claim. Any proof for that?

2xsaiko , 1 month ago

Not really sure what would be your type of game but here's some that I've played that I found addicting, from various genres. All of these are on Steam and I've played on Linux.

Definitely look at Portal 2. Great game that's easy to get into.

If you played and liked Portal 2, also take a look at Portal, The Talos Principle, and Q.U.B.E. (I probably can't go wrong recommending puzzle games)

Maybe also Mirror's Edge (2008).

Baldur's Gate 3 is one I've put a lot of time into recently.

Chill exploration game that I couldn't put down and am still obsessed with: INFRA

If you think you could like base builder games: RimWorld, Factorio, Satisfactory

And then some absolute PC classics: Half-Life (1998, or you can also play the remake Black Mesa), System Shock (play the 2023 remake), Vampire: The Masquerade - Bloodlines.

2xsaiko , 1 month ago

The nice thing about Apple's Find My is that it runs in the background but only checks and sends your location when someone is actively looking at your location. Do these do that as well? I've tried Telegram's location sharing before and it drains battery like crazy because it keeps the GPS receiver always on.

2xsaiko , 1 month ago

Did you respond to the right comment? I mentioned Telegram specifically and I'm fairly certain OsmAnd can't do live location sharing.

2xsaiko , 1 month ago

Oh, that's a separate app, I wasn't aware of that, no. Interesting, thanks! I don't use Telegram anymore though.

2xsaiko , 1 month ago

For files, you should use an editor that supports it (e.g. Kate via admin:// paths). You should not run GUI programs as root.

2xsaiko , 1 month ago

NFS v4 with krb is probably the best option of these if Linux/macOS is all you need to support because everything just works transparently with one system-wide mount. I had it set up for a couple years until recently (had to basically completely give up on my network setup including the box the KDC was running on for unrelated reasons recently and have still yet to set it up completely again).

Kerberos is pretty straightforward to set up if you know how it works, I think the main problem is lack of documentation and pretty awful NFS error messages (you pretty much have to enable nfsd/rpc debug kernel options if you want to even begin figuring out what's going wrong when your mount doesn't work). The first time I set it up it took me a whole day to get it to actually work, and in the end a reboot of the NFS server solved the problem I had.

Look at the Arch wiki article for Kerberos, I think that's what I used mostly. Feel free to ask if you need help setting it up.

(Unfortunately IMO all of these suck in different ways though: sshfs dies if your SSH connection gets interrupted, NFS v4 (v3 is unusable imo because it doesn't have idmap so you have to make sure your user IDs match on every machine) isn't supported by Windows and mobile devices, Samba doesn't map well to Unix permissions and I can't tell what its "unix extensions" are actually supposed to do if it isn't permissions. Integrating Samba with NFS, if you want to use both, also is pretty hard because while Samba theoretically uses Kerberos, it doesn't work with a normal KDC but needs Samba AD because Microsoft (I haven't taken a look at Samba AD yet). And forget integrating Samba with anything that isn't Kerberos-based entirely because NTLM is the only other auth mechanism and it's pretty much incompatible with anything because the client only sends the password hashed with a unique mechanism. So you're going to have a pretty bad time if you want to use a single auth mechanism for everything if SMB is involved, and that's pretty much your only option if you want to access stuff on a mobile device.)

2xsaiko , 1 month ago

Thank you, but I will probably stay with samba at the moment which will probably fullfil my current needs and seems more complex than I thought !

Then, take a look at ksmbd which is basically a mini SMB implementation in the kernel. I haven't used it yet, but apparently it's more performant and easier to set up.

If you don’t mind… Can you tell very briefly what kerberos actually solves in a coporate environnement ? Please, give me a sneek peak of the subject that awaits me :) !!

It provides single sign-on capability. As I already said Active Directory is built on Kerberos for authentication, but it's used similarly on Linux, logging in to Kerberos gives you a TGT (ticket-granting ticket) which essentially allows you to also authenticate to other services like NFS, SSH (in which case it can forward your ticket to the machine you log on to), stuff like IMAP, even websites (though as far as I've seen you need to do some stupid per-domain manual setup for at least Firefox) without having to enter your password again, at least, until the ticket expires, or storing it anywhere. There's much more that supports it but I've only used it for NFS and I've experimented with using it for SSH auth, and only for personal use, so I can't tell you what exactly.

It's worth noting that it's purely for authentication and not authorization, so if you want central permission management, something else will have to do that, such as LDAP which is also what AD uses.

2xsaiko , 1 month ago

It is to be noted that while iTunes is DRM-free at this point (which is very nice and surprised me when I found out) it is unfortunately still lossy compressed audio which the perfectionist in me really doesn't like :P

Come on Apple, sell me your funny ALAC, you have it for Apple Music anyway

2xsaiko , 1 month ago

The Music client for Mac is still an excellent music manager and player and beats Spotify by a mile despite how visibly much they've let it bitrot* since it was iTunes. It's a shame neither the mobile app nor the web client has anywhere near the capabilities.

* for example, what the fuck is that stupid unresizable header that takes up half the window with mostly empty space and doesn't scroll off the screen anymore if you set a playlist view to "as Songs"

2xsaiko , 1 month ago

I mean same, but I'd still like to have lossless audio regardless :P

2xsaiko , 1 month ago

This argument would be no use to reddit since they are the "instance operator" in that case.

2xsaiko , 1 month ago

Desktop clients came before web apps and a well written (desktop or otherwise) app will always use the platform it's running on better than a well written web app. Sure there is incentive for corporations to push apps, but saying "it has now infected even Linux" is absolutely ridiculous. Lack of open API is what you should criticize.

2xsaiko , 1 month ago

I'm assuming you're talking about the Wi-Fi modem. Can it be changed on macOS? It should do it for Apple's "Private Address" feature that's on by default which randomizes the MAC, but I have no idea whether that works on that specific hardware. If it does, it's probably some chip that Linux doesn't know how to handle this for, is my guess. If it doesn't, then the chip probably can't do it at all.

ETA: on this computer there is a partition with macOS installed. Could this be the reason?

It just being installed? No

2xsaiko , 1 month ago

Maybe you should make them a blood sacrifice more often?

2xsaiko , 1 month ago

Join the Matrix support channel if have any problems getting started! The documentation can be very scattered and NixOS throws a lot of new concepts at you :P

2xsaiko , 1 month ago

People were pressuring him to hand over maintainership while expressing disappointment at the slow pace of development.

Very likely that was part of the attack as well.

2xsaiko , 1 month ago

The Brother laser meme is real. They also make color ones, I have one myself.

2xsaiko , 1 month ago

KMyMoney is what I use. (Though I haven't kept it up to date for way too long)

2xsaiko , 1 month ago

Theoretically you could put all the Linux installations on a single big btrfs partition under different subvolumes.

2xsaiko , 1 month ago

Did you post the link to the template? I can't find it :^)

2xsaiko , 1 month ago

Thanks!

2xsaiko , 1 month ago

Seconding this. Take a look at the unshare program and user namespaces.

2xsaiko , 1 month ago

I'm not familiar with what exactly you need but have you taken a look at KMyMoney? (Or is this for accounting for an actual company and not for yourself? Not sure how it holds up there)

2xsaiko , 1 month ago

Yeah. Flakes are essentially three things (or four if you count the new CLI):

1. Lock files for inputs (like NPM)
2. A defined output layout (so, every flake has its packages at packages.<system> for example)
3. Pure mode (don't worry about it unless you read from arbitrary locations in the file system or try to download files without a hash)

That's it, essentially nothing else changes. It's just a different entry point to Nix code including NixOS configurations.

Here's a great article (apparently, I have only skimmed it myself) explaining flakes more in detail: https://jade.fyi/blog/flakes-arent-real/

2xsaiko , 1 month ago

NixOS can boot from a file system that only has /nix, since essentially the kernel command line has init=/nix/store/.../init. Everything else will be created during boot by that if it isn't already there. So technically you could only mount /nix and you would get a blank system every time you boot (but that wouldn't be very useful in most cases). Mounting these is done in the initrd.

A lot of people have a setup where only select files are mounted from a persistent partition, such as /var/lib/postgresql, basically anything they want to keep across reboots, so that the rest is discarded when they reboot. This prevents the system from accumulating junk over time, from services you once used to have but no longer have running, and so on. Personally I found it too much of a hassle to keep track of what files I want to keep, so I save the entire /etc and /var. I still keep the tmpfs though because it's pretty cool.

2xsaiko , 1 month ago

With L.A. Noire, that actually made it worse. It spawned on the wrong monitor, and every time I moved the mouse, the camera would spin to the right no matter what (even with only one monitor, I think). I need to get around to making bug reports for these.

2xsaiko , 1 month ago

you cannot sell or transfer your unlocked device (in linked legal agreement)

The fuck? There's no way they can forbid doing that, right? Video game publishers would be all over that with physical discs to make it the same as for digital releases.