moonpiedumplings

@ moonpiedumplings @programming.dev

Posts

30
Comments

661
Joined

2 yr. ago

Languagetool's browser extension is no longer open source, which has me concerned. You can still point it at a local server, but yeah.

3w ago

WinBoat adds support for Podman, UWP, app filtering and more

UWP 💀

UWP is Microsoft's "new" app format, it's what the windows store and the xbox use.

It also isn't compatable with wine, and my pet theory is that this was the entire point of it. Combined with Windows S mode, which doesn't let you install apps other than from the windows store, the goal was to lock down the windows ecosystem by having apps that can't be made to run on linux.

I remember seeing a compatability layer for UWP apps a while ago, and I am pleased to see that it has come this far. Great work!

Edit: wait this uses a windows VM. Still good though and lets people escape the windows ecosystem.

3w ago

Example authelia config for OIDC only

As simpler and easier to use alternatives, check out voidauth and kanidm.

3w ago

erwtrthrthrthnrth

Why did you link to a knot that's not the ian knot?

I used to triple tie my shoes, but they would keep getting untied. After I learned a balanced ian knot my shoes would never get untied again.

Balanced friction > total friction

3w ago

Which company has a better reputation Lenovo or ASUS?

Both have products with varying degrees of quality. Don't follow companies around, follow specific named model lines instead.

3w ago

Docker setup for debian 13 trixie Ansible Playbook

I don't really understand why this is a concern with docker. Are there any particular features you want from version 29 that version 26 doesn't offer?

The entire point of docker is that it doesn't really matter what version of docker you have, the containers can still run.

Debian's version of docker receives security updates in a timely manner, which should be enough.

3w ago

What are the silliest reasons people have given you for not wanting to try Linux?

I recommend libvirt + virt-manager as an alternative to hyper v.

The cool thing about virt manager is you can do it over ssh.

3w ago

Docker setup for debian 13 trixie Ansible Playbook

You are adding a new repo, but you should know that the debian repos already contain docker (via docker.io) and docker-compose.

3w ago

Share your music playlist for concentration

https://music.youtube.com/playlist?list=PLXW0UFGge4IU4SZE1rsCkKlVbmYgATN96

My curated playlist of entirely "nerdcore", which is music inspired by (but not directly from), anime and video games.

3w ago

Interoperability between self-hosted services

I use authentik, which emables single sign on (the same account) between services.

Authentik is a bit complex and irritating at times, so I would recommend voidauth or kanidm as alternatives for most self hosters.

3w ago

Blame qt

Except debian testing doesn't receive security updates in a timely manner.

It's designed exclusively for testing, not really for people to actually use it.

4w ago

Has bad branding ever turned you off from software, FOSS or not?

Would you use the cli?

One of the cool things I liked about calibre is that extensions worked via the cli interface as well, which made it easy to do batch workflows of operations on ebooks.

4w ago

The fate of “small” open source

I hope you realize the irony of posting this in an online community dedicated to open source.
I physically go to Linux and tech meetups and conferences near me. So yeah.

4w ago

Headscale vs Netbird vs Pangolin - How do you like selfhosting them?

No, they added a beta vpn feature.

4w ago

I made a project that can install/configure/orchestrate 115+ applications on your homelab using Ansible!

Does it require docker installed and being in the docker group, with the docker daemon running?

Just an FYI, having the ability to create containers and do other docker is equivalent to root: https://docs.docker.com/engine/security/#docker-daemon-attack-surface

It's not really accurate to say that your playbooks don't require root to run when they basically do.

4w ago

calico in Kubernetes is so helpful, I want it everywhere

I just installed Ciliium (another Kubernets CNI), and it also comes with a host based firewall, and an observability tool.

I didn't have Hubble (observability tool enabled), but I previously didn't have a firewall, and I finally decided to enable it, which caused my ceph deployment to fail. This will help me figure out where it is failing and what rules are needed to remediate it.

4w ago

Useful Linux Dedicated Server Deployment Scripts

https://shulker.jeremylvln.fr/

Which uses: https://agones.dev/site/#td-block-1

But your question is somewhat vague.

4w ago

Why call it full-disk encryption when the EFI partition has to be unencrypted?

Share your lsblk output. It's likely that your system still leaves the bootloader unencrypted on the disk, even if the kernels and bootloader config are being encrypted (they aren't encrypted by default on most installs).

It is theoretically possible to have only one partition that is luks encrypted, but this requires you to store the bootloader in the UEFI, and not all motherboards support this, so distros usually just install it to an unencrypted partition. The UEFI needs to be able to read an unencrypted bootloader from somewhere. That's why it's somewhat absurd to claim that the ESP can be encrypted, because it simply can't.

From your link:

One difference is that the kernel and the initrd will be placed in the unencrypted ESP,

4w ago

FFmpeg to Google: Fund Us or Stop Sending Bugs