Blaster M

GrapheneOS here we come

So, darkweb sites it is.

flip phones were great as phones, but terrible as pdas. iPhone combined the two in a non-chunky way (competitors? Palm Treo? Windows Mobile phones?)

Samsung Gleam. That was peak cellphone.

Ah ha ha, hahaha, ha ha, ha ha ha, ha!

Someone didn’t proofread.

When you put your server’s tailscale IP in the dns, anything that looks up that dns gets the tailscale IP. You only need to connect the devices you want to have connect to the server to the same tailscale network, and your system will handle the routing.

On your DNS provider, make an A record with your IP address, AAAA record with your IPv6 address. If these addresses change often, either setup a dyndns (your DNS provider needs to support this) or pay for a Static IP from your ISP. Firewall the hell out of your network, have a default deny (drop) new inbound rule, and only open ports for your service. Use an nginx reverse proxy if possible to keep direct connections out of your service, and use containers (docker?) for your service(s). Don’t forget to setup certbot and fail2ban. You need certbot to auto update your certs, and you need fail2ban to keep the automated login hacker bots from getting in.

That’s the minimum. You can do more with ip region blocking and such, as well as more advanced firewalling and isolation. Also possible to use Tailscale and point the DNS A record to the Tailscale IP, which will eliminate exposing your public IP to the internet.

Used DELL 5310. Intel 10th-gen, 60Whr battery (goes 8+ working hours on a charge) often 16GB RAM and at least a 256GB SSD at that price range. Upgradeable (DDR4, NVMe) too.

Bazzite as well, which uses the Atomic backing, so it is more easily recoverable in case of an oops.

Best gif ever. Download!

latest release on 10/2023?

Fedora KDE

Every system I can run headscale on I need to do it via an nginx reverse proxy

I have yet to get headscale to work with my system. No turnkey setup, instructions that lack clarity, and in the end… idk how it’s supposed to do the thing.

I’m trying to tell everyone LibreOffice, but OpenOffice has all the hits on search when people look for an alternative to Microsoft Office

While I run straight Fedora on some of my systems now, I do agree the Atomic versions are a boon for stability.

Used to use Ubuntu and Mint for desktops, but they are a bit too vintage with the kernel and package versions, and everything is moving very fast with Wayland replacing X11 and lots of kernel driver improvements for modern hardware (especially AMD hardware), so being on Fedora is the next best thing to the bleedingest edge Arch when it comes to uptodateness.

Bowser, boss of Nintendo…

Leave it as is. Some people go tin foil hat about Secure Boot being insecure, but that’s like saying “don’t lock the bottom lock on your door because someone can use a lockpock in 2 seconds”.

Fedora works fine and automatically with Secure Boot, and that is an important defense against on-boot malware injection.