https://en.wikipedia.org/wiki/Shadow_IT

If you use kde, you can search for “profile manager”, and it will show up, and can be launched from the app menu.

At least works for me. Before this was added, the KDE search/app menu also lets you run commands directly, so I would just run firefox -p in there. No need for a terminal.

It’s codeberg pages… It is generated directly from codeberg, which has doesn’t allow private repos.

Source code: https://codeberg.org/purpleweb/Riddles_0-385_App

Seems to be the case:

https://github.com/anyproto/anytype-ts?tab=License-1-ov-file#readme

https://github.com/anyproto/anytype-kotlin?tab=License-1-ov-file#readme

The sync server is MIT though: https://github.com/anyproto/any-sync?tab=MIT-1-ov-file#readme

Interesting.

I spun up a test, and it doesn’t let you edit encrypted notes :(. It’s so nice though, I might be willing to give it up e2ee for less sensitive data.

Mindustry (open source)

No, because proton is not Windows. Wine only works on Linux, so it’s actually a Linux platform. I consider every developer/publisher who targets proton to actually be targeting Linux, rather than windows. Every single time a windows update breaks something that continues to work on proton I laugh

See also: https://steamcommunity.com/app/221410/discussions/8/1734336452576620754/?l=czech

Yes but the steam runtime is basically an entire Linux installation (that never gets updated) that valve drags onto your system. I found it greatly annoying when I wanted to use Steam Input (because that would make Nintendo Switch pro controllers work) on a laptop with 32 gb of storage and steam dragged along 4 gb of ubuntu that I was never going to touch (since I was playing games outside of steam using wine directly).

The problem is that real dumb phones are hard to find. Many modern “dumb phones” are actually full android devices, complete with a boatload of spyware that helps keep the cost of the device itself low.

KaiOS is better but that’s a whole linux distro, with similar issues.

Since you mentioned tethering, do you have an example of a non android (or at least one that’s not preloaded with a ton of spyware) dumbphone that supports usb tethering? I am skeptical that a real dumbphone would have this feature.

Syncthing has encryption as well. You can have a device be “untrusted” so you put in an encryption password, and data sent to and stored on that device will be encrypted.

Although this does encrypt file (and directory) names, the caveats about folder structure and modification time still apply.

Openbsd is definitely more secure than secureblue. There is only so much you can do to handle the massive monolithic architecture of the Linux kernel. Further down the stack, many parts of Linux, like sudo, dbus, or systemd are regularly hit by zero days. The SELinux domain architecture that Secureblue is interesting, but SELinux is extremely complex and difficult to get right, compared to the much more simpler pledge and unveil sandboxing that openbsd offers.

In addition to that, there are further issues like the problematic way that user namespaces interact with browsers. (And user namespaces are frustrating in general, secureblue actually has a short article on their problems). For maximum security, you want to sandbox tabs from eachother using user namespaces (only works on chromium btw, firefox can’t do this so it doesn’t matter) — BUT, if you run your browser in a sanbox created by user namespaces, then you can’t nest them, disallowing you from using that powerful tool to isolate tabs. So you are forced to make a choice: You can either sandbox the browser itself, in exchange for weakening the isolation between tabs, or you can strengthen the isolation between tabs, in exchange for weaking the sandbox around the browser itself. Giving the browser access to user namespaces is questionable though, because see above, user namespaces have led to a lot of vulnerabilities.

OpenBSD’s pledge + unveil (but only on chromium again), does not really make such tradeoffs. It can sandbox tabs from eachother, while also sandboxing the browser itself. In addition to that, pledge + unveil do not present a massive kernel attack surface that people have had to restrict for having too many 0days. And this is just one of the many, many examples, where OpenBSD presents a better security posture than Linux.

Qubes is technically Xen, a different kernel than Linux. The Xen kernel virtualizes Linux distros, from which you can manage Qubes/Xen, or do normal Linux app stuff. But nothing stops you from using a BSD virtualized by Xen for management or usage. Qubes talks about why they use Xen here — but the short version is that they did not consider the Linux kernel’s kvm secure enough for their usecase.

FreeBSD, OpenBSD and NetBSD are behind Linux.

Look, I dislike permissive licenses too, but you need a source to back this claim up.

Right now, each BSD does something special, that Linux (distro’s) can’t trivially replace, even if the usecase is more niche. NetBSD Dev’s make efforts to get it running on many devices as they can. OpenBSD (and it’s subprojects) are highly secure, moreso than Linux. Who do you think makes our beloved OpenSSH? OpenSSH noted for having very few vulnerabilities over it’s two decade long existence, and OpenBSD itself is similar, which is insane because there are products with multiple bad vulnerabilities every year (Linux being one of them…). This is due to a highly security minded architecture - one that Linux lacks.

FreeBSD is like Linux before systemd. I like systemd, but systemd is really trying to be kubernetes on a single node. I like systemd because I like kubernetes, but I understand why someone wouldn’t like it, and I question if “single node k8s” is the best architecture for a single server or personal desktop. The ports system results in freebsd packaging many server services that aren’t packaged on Linux. Being able to manage those through the system package manager, and the conviniences that provides, is nice.

Different, and not popular don’t mean bad.

This is technically yaml I think, a list (with one entry) of lists that contains mostly single items but also one other list. You should be able to parse this with a yaml parser like pythons built in one.

Note that yaml is picky abiut the syntax though, so it wouldn’t be able to handle deviations.

Did you try meshcentral? It’s a selfnhosted MDM.

That’s not quite true. Virtualbox is free but the extension pack is not. It says on the website that it’s under a different license.

Just don’t get it from the website but from a distro’s repos instead and you’ll be fine. Distros usually patch out telemetry as well.

But yeah, Oracle and similar schemes are why software installation is so restricted on corporate devices. It’s basically ransomware, freeware that people are willing to sue over.

Edit: it should be noted that charging people for licensed software in a corporate environment is okay. I have heard stories of Oracle making people buy licences for EVERY computer even if only one person downloaded the software…

mp3 is still the best in terms of compatibility. Basically anything can play it.

m4a is better than mp3 every eay and fills the same usecases. For the same size as an mp3, an m4a can offer you better quality. For a smaller size, m4a can offer you the same quality.

For maintenance I would recommend a ticketing system instead of forgejo:

https://selfh.st/apps/?search=ticket

There are a few options and they probably all work better than a git issue tracker.

Another thing I would recommend is to have centralized accounts via an identity provider. People have one username and password they can use to log into all the services, and you can reset/signup them to all connected services by managing the identity provider app.

There are a few options for this as well but I’m on my phone some imma just list the three that I find most promising for your usecase: kanidm, voidauth, authentik.

There does exist a tool that does it. The creator posted about it on the fediverse. It only supported ubuntu at the time but looked extremely promising.

I cannot remember it’s name. :/

Maybe it’s linixify? But I remember seeing a post on lemmy with a youtube demo?

unless the SSD stopped working but then it is reasonable to expect it would no accept partitioning

This happened to me. It still showed up in kde’s partition manager (when I plugged the ssd into another computer), with the drive named as an error code.

The creator of this software streams on twitch, using the “linux” tag which I follow around. I think she uses debian stable or unstable last time I was on the stream. She also has an owncast, which is like an open source self hosted twitch.

https://expiredpopsicle.com/about.html

I really enjoy when people dogfood software.