SayCyberOnceMore

@ Cyber @feddit.uk

Posts

24
Comments

968
Joined

3 yr. ago

4h ago

Password manager woes. How have you solved syncing on Android?
Jump
SayCyberOnceMore @feddit.uk 4h ago
Correct.
That conversation has finished, the dust has settled and syncthing-fork is fine.

19h ago

GIMP 3.2 released

Yep, agreed.. it's an amazing tool - esp. as it's (almost?) like Photoshop and other expensive tools.

I just can't suggest it to my friends without being afraid / avoiding / making excuses for an acronym... they'll have to find it themselves and they won't want to admit it either...

1d ago

GIMP 3.2 released

Jump

SayCyberOnceMore @feddit.uk 1d ago

I'm sure this would get more mainstream acceptance if they changed the name.

1d ago

What security measures did everyone use when configuring and can Ansible manage multiple installs?

Jump

SayCyberOnceMore @feddit.uk 1d ago

Ok, so a few things to pick apart there...

If you're using reflector to find the fastest mirror, personally, I'd do that once and maybe check it... twice a year? As long as you have, say 3~5 mirrors, then if your fastest failed, you'll still update. And the 2nd / 3rd fastest are not going to be much slower.

So, really, that could be done manually

But, that beings me on to ~.pacnew` in general. Again, IMHO, that should not be automated.

Ok, maybe locale.gen updates can be ignored, but sometimes a config file really changes a lot. And that new file should be in your ansible master files to copy to all relevant devices.

Handling different processor types? Not really a problem. If you have a load of devices then grouping your ansible hosts by OS type might be a good idea because they'll probably be doing similar things, but you're usually installing packages by name, doing an update, etc not OS specific usually...

You'll need SSH for a remote Ansible controller to access the devices, but using private key pairs, possibly only enabling on specific IP addresses, etc, would help.

2d ago

What security measures did everyone use when configuring and can Ansible manage multiple installs?

Jump

SayCyberOnceMore @feddit.uk 2d ago

I have a laptop, NAS, Pi and some VMs running Arch - all updated by Ansible, most setup by Ansible.

It's fine.

However, you'll need to manually do a pacdiff often to check if something's had an updated config file...

And if you're using the AUR, Ansible can use that too, but you just need to keep an eye on those packages in case something else needs tweaking (not to mention getting an AUR helper installed in the first place)

Re: security - it depends... usually, if you're not using something you need to shut it down for security.... with Arch, just don't install it in the first place. So if you don't need an SSH server don't install it / remove it ( I don't recall if OpenSSH is installed by default TBH)

You could setup a firewall, but, are you using hostile networks?

Just ensure root has a good password and you've not done the Ubuntu thing of removing the need for a password to use sudo and you'll be fine in most situations.... maybe a password protected screensaver for when you leave your laptop alone at Starbucks...

3d ago

Considerations For Buying a New Laptop

Jump

SayCyberOnceMore @feddit.uk 3d ago

Definitely look for a 2nd hand one, you'll have less issues.

Don't go toooo old as some had wifi issues back in the day (no / partial drivers)

There's a lot of refurbs by major brands (ie Dell) that are ex-corp lease models with some kind of warranty (which won't cover the battery) because of the Win10 purge.

I think the GPU is the main issue if you're wanting to play games... and as others have said, gimmicks like touchscreens and fingerprint readers can be hit & miss.

I've installed Mint on Lenovo, Dell and HP laptops with no major issues.

3d ago

Permanently Deleted

Jump

SayCyberOnceMore @feddit.uk 3d ago

Yep, you're right!

https://github.com/torunar/flying-toasters-xscreensaver

3d ago

Permanently Deleted

Jump

SayCyberOnceMore @feddit.uk 3d ago

The flying toasters in the After Dark screensavers

3d ago

Permanently Deleted

Jump

SayCyberOnceMore @feddit.uk 3d ago

You obviously do not work on customer systems 🙂

You need to be able to rebuild the bootsector of a hardrive from memory with a keyboard in the wrong language using only notepad and cmd 😁

4d ago

What distro has rdp working out of the box?

Jump

SayCyberOnceMore @feddit.uk 4d ago

Upgrade it to Ubuntu 25.10 ?

4d ago

Which Linux distro for home server?

Jump

SayCyberOnceMore @feddit.uk 4d ago

Arch.

Minimal, rock solid, good documentation.

If you feel the need for containers, that could be installed too.

Whatever you use... understand it and do backups. Something will break.

4d ago

What’s the currently best way to manage TOTP tokens?

Jump

SayCyberOnceMore @feddit.uk 4d ago

Yep, that's the one... ie not the one I was using.

'K thanks.. looks lile I need to swap.

4d ago

What’s the currently best way to manage TOTP tokens?

Jump

SayCyberOnceMore @feddit.uk 4d ago

Hmmm.

I've just noticed that FDroid FreeOTP (no "+") is newer (updated 3 weeks ago) than FreeOTP+ (updated 2 years ago)... which I thought it was a fork of...

Ok, thanks, I might have to reassess...

@solrize@lemmy.ml - I presume you're using the non-plus version??

5d ago

What’s the currently best way to manage TOTP tokens?

Jump

SayCyberOnceMore @feddit.uk 5d ago

+1 for FreeOTP+ - been using it for a while and it does everything I need.

6d ago

LTT does another Linux Challenge

Jump

SayCyberOnceMore @feddit.uk 6d ago

I do agree - years ago he was doing some good case reviews and I'd pick his videos to compare against others, but I do agree with other comments here that he's getting click-baity and I tend to skip his vids now

6d ago

LTT does another Linux Challenge

Jump

SayCyberOnceMore @feddit.uk 6d ago

It's not much better in German

6d ago

Do you stick to the same linux distro across your devices?

Jump

SayCyberOnceMore @feddit.uk 6d ago

I'm kinda with you, with a slight change: raspberrys that can't run Arch Linux on Arm run Raspberry Pi OS, so, almost Debian.

Everything else: Arch.

(Oh... and pfSense on FreeBSD... but let's not muddy the water)

6d ago

Popular self-hosting services worth running

Jump

SayCyberOnceMore @feddit.uk 6d ago

Radicale just implements CalDAV and CardDAV so use any clients you want.

I'm mostly using the Fossify from F-Droid - their calendar, contacts, all work with DAVx5 syncing to radicale and it works fine... no 3rd party tracking my dentist appointments.

I also have TrackerControl running on my phone, so I know that there's no tracking.

6d ago

Popular self-hosting services worth running

Jump

SayCyberOnceMore @feddit.uk 6d ago

True... could be both... or perhaps copyparty.

I was thinking more along the colab side, where syncthing is working on your laptop and mine to sync our files, rather than central storage, but fair point.

6d ago

Popular self-hosting services worth running

Jump

SayCyberOnceMore @feddit.uk 6d ago

Or, just radicale and syncthing (if you don't need a webUI)