The problem is trust. Sandboxing is all well and good, but what of the data I give the app directly and the resources it has access to?
If a person installs the Steam client from FlatHub and logs in to it with their account credentials, how will they know the app wasn’t actually published by a third party who modified it to act as a man in the middle to steal account credentials. They’d need to be vigilant and follow a flathub link provided by Valve themselves. The app could also be a crypto miner, capped to use 10% CPU to avoid suspicion… now I’m searching the internet why steam is constantly using 10% of my CPU…

I don’t actually know if flathub does checks or anything so this isn’t a jab at them specifically. I personally distrust all package distribution platforms by default and don’t use sandboxed packages on any of my installs.

I guess we all have to define where the lines are and how far we’re prepared to go. Technically, you should read the actual source code fetched from AUR and only build once you’ve confirmed it does what you expect it to… for every thing you install and for every update. Maybe thats good for Richard Stallman, but the general populace will look for trust outside of only trusting themselves.

You add the rpmfusion repo and install a few nvidia packages from there. Kernel modules are then built for the driver. If secure boot is used, they need to be signed too. Sometimes the grub entry isnt updated and doesnt load nvidia drivers. Sometimes you boot into a black screen, sometimes Wayland throws a hissy fit. Hardware accelerated video decoding needs more packages, in browsers it may need extra configuration…
The components are all there and they work, but sometimes the stars don’t align and you just curse a little and wonder why you didn’t just buy AMD because that, just works.

Thanks other me. I know me when I see me.

Impossible.

I’ve never listened to a podcast like that. It sounds like low effort reality TV style content.

My use cases are:

• Connect from multiple devices on the same home network (with the application)
• Connect from a phone device on the internet (with the application)
• Connect from some PC’s and devices on the internet (with the application and from web browser)

For home networked devices, I don’t care about security that much. I try to lock it down on the router level and by using VLANs for less secure devices. I connect via IP directly (or .local domain).

Jellyfin runs under its own user with read access to a media library.

For devices on the internet, I have jellyfin exposed on a specific url path of my domain - through a reverse proxy all through 443. A bit of security through obscurity here. I’m proxied through cloudflare on the DNS side with very restrictive IP rules.
I think this is enough for the security flaws jellyfin does have. I’d sleep better at night if it had client certificate support, but Its not a big deal imo. If security flaws allowing remote code execution are found, I’ll shut it down and allow access through wireguard only and lose access from some devices on the internet where I cant use VPNs. Not a bit deal either.

Two extremes here. Debian is slow to update while arch is bleeding edge.

I avoid containerized desktop apps (snap, flatpak) so I couldn’t run Debian as a daily driver. You’d want to use the latest FireFox and their repo’s release is old. You you can get it from flatpak, but I don’t want to do that. Running on recent (<1y) hardware will also be problematic. I guess you could keep on adding 3rd party repos to your install, though some post from debian forums always stuck with me: “Debian is only what is released + whats in the official repo. Install anything else and you’re not running debian anymore.”. Its a whacky OS and I love it, but daily drive it only on my server.

Arch puts everything on their repo straight away. And if its not there, you’re downloading code from AUR and building it yourself. I actually appreciate this since it complies with the philosophy that you can’t really trust your applications unless you read the source and build it yourself. Awesome, but the general public shouldn’t be doing this… I don’t mind applications being distributed in binary form. I am able to trust linux community maintained repositories. Arch is for the geeks imo.

I found Fedora to be a good middle ground, since it gets package updates straight away while still maintaining fixed OS releases. No need for snap or flatpaks since their repo has everything and is updated. Its also widely supported by software vendors (just like debian). Id go with it as a recommendation, but still note that its philosophy is free software only and this can potentially mean tinkering with additional stuff from RPM fusion, especially if you dance with nvidia and watch videos encoded with non free codecs.

It takes a bit of time to find the right distro and that is the biggest obstacle to linux imo.

My bank account and accomplishments say I’m 25. Check & mate.

I don’t game as much as I used to, but for the games I do play, I’m not seeing many (or any) problems. Video encoding with ffmpeg through nvenc works fine too.
Current issues I’m having are 3d acceleration in KVM under Wayland. Apparently it only works with nouveau? Not a deal breaker in any sense, just the latest observation.

It may have been a donation. Donating your body to science can result in you becoming a classroom skeleton, or blown up in the sky with a rocket. If you’re lucky enough, they put you in a field and let your body rot, while observing the process. You don’t really get a say in it, but cadavers are used for all sorts of things.

“I’m gonna fuck all y’all!”

Indian accent: “Alright mam, when you install this app, I will contact you tomorrow and we can proceed with the transfer. For security reasons, don’t tell anyone you received this call.”

but there are foss programs you have to buy and after you bought it you are free to do with it what you want.

Any examples? I’m just curious how they stay afloat after sharing the source code once someone buys it, forks it and releases the source.
Maybe ‘F’ in FOSS does not mean it is gratis (de jure), but it is in fact gratis (de facto) for the majority of FOSS?

Make Arch Great Again!

I wonder why…
VLC: a free and open source video player meant to be used by literally everyone.
Astronauts: a select few chosen people with little to no health problems, in top physical and mental form one could only dream of having.
I think the Simpsons were on to something when they sent Homer to space.

I hate the environment, that’s why I use vscode. After a long day outside, rolling coal on my 6x6 and littering out in nature, I come home and relax by turning on vscode and let it idle as I throw old tires in the fireplace. If you hate the environment like I do, use vscode.

Oh snap, gate keeping the internet!

My unpopular opinion: free ram is useless ram. Go on, OS. Put evertyhing into ram. I have 64GB of it. Fill it the fuck up. I want to be able to open things blazingly fast, that’s why its there. The trick is leaving enough so new things can fit without waiting for cleanup. And windows isn’t bad at scaling its usage. Afaik, wIndows installation on 8GB will use less than the same installation when 16GB is available.

If you had unlimited ram, you’d be mad the OS was wasting time cleaning up behind itself.

I found it extremely funny when people started asking for systemd replacements, of all things, after systemd added the ability to store a birth date.

Location, weather and time is key when eating outside. Have eaten many a meal outside without issue and I prefer it to inside when the three align.