25 Post – 2013 Comments
Joined 1 years ago

Did you ever try doing that with public packages?

Still no proper way to mirror the thing and have it working offline / on internal networks. Great job self-hosters and sovereign citizens ;)

8 more...

Thinking about it, I wonder if there’s enough “core features” with ‘create-usb’ that its just matter of scripting something together to intercept requests, auto-create-usb what’s being requested and then serve the package locally?

The issue is that... there aren't enough “core features”. It doesn't even handle different architectures and their dependencies correctly. It wasn't made to be mirrored, nor decentralized.

Apt for instance was designed in a much better way, it becomes trivial to mirror the entire thing or parts and for the end tool it doesn't even matter if the source is a server on the internet, a local machine, a flash drive or a local folder, all work the same.

Yeah sure, just try to mirror Flathub into your repo.

1 more...


Yes, unlike apt repositories, it wasn't designed to be mirrored around, run isolated servers etc.

since I already have a Mac for work I was wondering how suitable a Mac Mini M1/M2 would be for a homelab?

Suitable yes, if you want to do it... maybe or maybe not. Here's a few pointers:

  • Debian can be installed on those machines, however I'm not sure how power management works properly:
  • Installation isn't as straightforward and as easy as in another systems because Apple decided to keep pushing the usual ARM bullshit of not including a proper UEFI with the system;
  • Some stuff will be broker, but you most likely don't need it for self-hosting;
  • If you keep macOS around you may have good luck with virtualizing Debian using UTM or VMware. Debian's arm64 images will run at optimal performance on that hardware.

If you're about to spend money I would grab an HP Mini unit with a "T" CPU, those will downclock really hard and you can get a i5-10500T (on ebay) for around 250€... and everything will work fine out of the box. An i7-8500T model also sells for 150€ or something like that.

Have a look at those CPU benchmarks (last one is probably yours):

If you're looking for power efficiency the newer CPUs are always better. Those mini units will downclock and idle at around 9-12W depending on hardware configuration but Apple should be able to do better - at least assuming you've power management working.

I'm using a C920 on Debian and I don't have focus issues. I remember that once it was permanently stuck out of focus but unplugging and plugging again fixed the issue. Never had any other issues in years.

Gluetun, is overkill if you already have a working setup. Your system is able to handle this in a much simple way with built in tools.

You can use systemd to restrict some daemon to your your VPN IP. For instance here's an example of doing that with transmission: override of the default unit by using the following command:

systemctl edit transmission-daemon.service

Then type what you need to override:

IPAddressAllow= # --> your VPN IP here

Another option, might be to restrict it to a single network interface:

RestrictNetworkInterfaces=wg0 # --> your VPN interface

Save the file and run systemctl daemon-reload followed by systemctl restart transmission-daemon.service and it should be applied.

This is a simple and effective solution that doesn't require more stuff.

Well, Apple is, Apple.

Maybe a Logitech StreamCam will deliver better results for you? I don't have complaints about my C920 but I don't push it so far like you seem to do.

The technology has "been there" for a while, it's trivial do setup what you're asking for, the issue is that games have anti cheat engines that will get triggered by the virtualization and ban you.

7 more...

It is possible but I wouldn’t do it. Too much effort for too little result.

Just plug your main monitor / keyboard into the server, run the setup and don’t install a DE. Afterwards login, enable SSH, unplug the monitor and do whatever you need over SSH.

Let’s face it, you’ll have to do this procedure once every xyz years, there’s no point in complicating this stuff. Also depending on your motherboard you may or may not be able to boot into the installer without a screen / keyboard attached. Another option is to install the OS in another computer and the move the hard drive to the target server - this is all fine until you run into UEFI security or another detail and it doesn’t boot your OS.

6 more...

Wordpress + Woocomerce.

Dear open source app user: feel free to improve the README file of the projects you come across by adding a few screenshots you believe are relevant.

20 more...

"if you can't parse tabs as whitespace, you should not be parsing the kernel Kconfig files." ~ Linus Torvalds

This is what we got after people sent him into PC training. The OG Linus would say something like "if you're a piece of s* that can't get over your a** to parse tabs as whitespace you should be ashamed to walk on this planet let alone parsing the kernel Kconfig files. What a f* waste of space."

33 more...

No, no, this is the peak OS installation menu:


12 more...

Although I understand the OP's perspective open-source is a community effort and people should have a more proactive attitude and contribute when they feel things aren't okay. Most open-source developers aren't focused / don't have time for how things look (or at least not on the beginning). If you're a regular user and you can spend an hour taking a bunch of screenshots and improving a readme you'll be making more for the future the project that you might think.

3 more...

Although we’ll be hosting the repository on GitHub

Why aren't they using a self-hosted instance of Gitea? This makes no sense move to Github of all places.

15 more...

One Common Linux Myth You Should Stop Believing: there's a FOSS alternative to every single proprietary software out there that can be used as a replacement in all and every use case.

12 more...

Transmission is good precisely because it does one thing and one thing really well - download torrents. No other crap, spam and non-related garbage required.

2 more...

So the Germany has been moving back and forth between Microsoft and Linux / open-source.

When Munich decided to ditch many of its Windows installations in favor of Linux in 2003, it was considered a groundbreaking moment for open source software -- it was proof that Linux could be used for large-scale government work. However, it looks like that dream didn't quite pan out as expected. The German city has cleared a plan to put Windows 10 on roughly 29,000 city council PCs starting in 2020. There will also be a pilot where Munich runs Office 2016 in virtual machines. The plan was prompted by gripes about both the complexity of the current setup and compatibility headaches.

Do you know what this smells like? Corruption and consulting companies with friends in the govt looking for ways to profit.

What else can be more profitable for a consulting company than shifting the entire IT of a city or a country between two largely incompatible solutions? :)

18 more...

11 more...

Yes, I love it and don't get me wrong but there are many downsides and they all result from poor planning and/or bad decisions around how flatpak was built. Here are a few:

  • Poor integration with the system: sometimes works against you and completely bypasses your system instead of integrating with it / using its features better. To me it seems more like the higher levels are missing pieces to facilitate communication between applications (be it protocols, code or documentation) and sometimes it is as simple as configuration;
  • Overhead, you'll obviously end up with a bunch of copies of the same libraries and whatnot for different applications;
  • No reasonable way to use it / install applications offline. This can become a serious pain point if you're required to work in air gapped systems or you simply want to level of conservation for the future - it doesn't seem reasonable at all to have to depend on some repository system that might gone at some point. Note that they don't provide effective ways to mirror the entire repository / host it locally nor to download some kind of installable package for what you're looking for;
  • A community that is usually more interested in beating around the bush than actually fixing what's wrong. Eg. a password manager (KeePassXC) and a browser (Firefox/Ungoogled) both installed via flatpak can’t communicate with each other because developers seem to be more interested in pointing fingers on GitHub than fixing the issue.

Flatpak acts as a restrictive sandbox experience that is mostly about "let's block things and we don't care about anything else". I don't think it's reasonable to have situations like applications that aren't picking the system theme / font without the user doing a bunch of links or installing more copies of whatever you already have. Flatpak in general was a good ideia, but the system integration execution is a shame.

11 more...

printer, colour laserjet, that is from another ‘region’,

What the fuck HP. I've been using cheap cartridges from Aliexpress without issues.

3 more...

You never tried to listen for stock Firefox's traffic with Wireshark for sure.

People speak very good thing about Firefox but they like to hide and avoid the shady stuff. Let me give you the un-cesored version of what Firefox really is. Firefox is better than most, no double there, but at the same time they do have some shady finances and they also do stuff like adding unique IDs to each installation.

Firefox does is a LOT of calling home. Just fire Wireshark alongside it and see how much calling home and even calling 3rd parties it does. From basic ocsp requests to calling Firefox servers and a 3rd party company that does analytics they do it all, even after disabling most stuff in Settings and config like the OP did.

I know other browsers do it as well, except for Ungoogled and because of that I’m sticking with it. I would like to avoid programs that need no snitch whenever I open them. ungoogled-chromium + ublock origin + decentraleyes + clearurls and a few others.

Now you’re free to go ahead and downvote this post as much as you would like. I’m sorry for the trouble and mental break down I may have caused by the sudden realization that Firefox isn’t as good and private after all.

39 more...

Blockchain and/or smart contracts try to solve problems that were already solved in multiple ways by adding a ton of overhead that makes them unable for large scale deployment and long term usage.

Here's what's stupid about the people who say that blockchain will revolutionize the financial sector: why add a blockchain and all the computing power to store transactions when you can take the obviously efficient route and simply store transactions on a SQL database? Before anyone screams the word "decentralization" do you really think banks will cease to exist? NO. The most likely scenario - if people keep pushing this bullshit - will be to have some kind of closed blockchain that banks use to transact money, so it essentially becomes the same thing we've now with added overhead, environmental impact and technical complexity. We have efficient system in place with safeguards, operations can be tracked, reversed etc.

Frankly it would be a better use of everyone's time, money and effort to simply fix the REAL problems in the banking industry, such as the fact that the US still doesn't have a decently working, standardized digital system to transfer money between account holders in different banks. Europe has this with SWIFT/IBAN and people can transfer money between accounts, banks and countries almost instantly by just providing the amount they want to transfer and an IBAN number (nothing else required). Now tell me, how many people in the US have bank account with IBAN numbers? Most likely only millionaires. The majority of people use a combination of poorly structured system of account and routing numbers that often fail and lead to delays. Oh btw Russia has a similar system to IBAN.

There are tons of other weaknesses in the US banking system around the way credit and debit cards work, for instance why would anyone on their right mind assume that a system where you can provide your credit cards number and CVV/CVC code over a phone to make a transfer wouln't be abused to scam people and steal money? Then, after decades of fraud, to "alleviate" the issue they decided to create a bunch of companies that offer virtual credit cards with limits. Now let this how with works in most European countries: banks will, most likely, refuse any attempt at charging a physical credit card unless its made on a physical payment terminal with the card actually physical inserted on the thing an a 4 digit PIN code typed in. If you want to buy shit over the internet simply open your bank's app or website and they'll have a function to create a single use virtual credit card for the transaction. Way more secure isn't it? :) Either way most European countries also other systems to handle those kinds of payments eg. the online stores provides you with a specific code and you then can go into any ATM or your Bank's App, insert the code and make the payment.

As you can see making the banking system efficient and having fast, secure and usable things isn't about blockchain bullshit, its usually more about common sense and creating standards that companies, such as banks, have to comply with.

28 more...

Linux in corporation fails in multiple ways, the most prevalent is that people need to collaborate with others that use proprietary software such as MS Office that isn't available for Linux and the alternatives such as LibreOffice aren't just good enough. It all comes down to ROI, the cost of Windows/Office for a company is cheaper than the cost of dealing with the inconsistencies in format conversions, people who don't know how to use the alternative X etc etc. This issue is so common that companies usually also avoid Apple due to the same reason, while on macOS you've a LOT more professional software it is still very painful to deal with the small inconsistencies and whatnot.

Linux desktop is great, I love it, but it gets it even worse than Apple, here some use cases that aren't easy to deal in Linux:

  • People who need the real MS Office because once you have to collaborate with others Open/Libre/OnlyOffice won’t cut it;
  • Designers who use Adobe apps that won’t run properly without having a dedicated GPU, passthrough and a some hacky way to get the image back into your main system that will cause noticeable delays. Who wants to deploy GPU passthroughs for others? Makes no sense;
  • People that run old software / games because not even those will run properly on Wine;
  • Electrical engineers: Circuit Design Suite (Multisim and Ultiboard) are primarily designed for Windows. Alternatives such as KiCad and EasyEDA may work in some cases but they aren’t great if you’ve to collaborate with others who use Circuit Design Suite;
  • Labs that require data acquisition from specialized hardware because companies making that hardware won’t make drivers and software for Linux;
  • Architects: AutoCAD isn’t available (not even the limited web version works) and Libre/FreeCAD don’t cut it if you’ve to collaborate with AutoCAD users;
  • Developers and sysadmins, because not everyone is using Docker and Github actions to deploy applications to some proprietary cloud solution. Finding a properly working FTP/SFTP/FTPS desktop client (similar WinSCP or Cyberduck) is an impossible task as the ones that exist fail even at basic tasks like dragging and dropping a file.

If one lives in a bubble and doesn’t to collaborate with others then native Linux apps might work and might even deliver a decent workflow. Once collaboration with Windows/Mac users is required then it’s game over – the “alternatives” aren’t just up to it.

Windows licenses are cheap and things work out of the box. Software runs fine, all vendors support whatever you’re trying to do and you’re productive from day zero. Sure, there are annoyances from time to time, but they’re way fewer and simpler to deal with than the hoops you’ve to go through to get a minimal and viable/productive Linux desktop experience. It all comes down to a question of how much time (days? months?) you want to spend fixing things on Linux that simply work out of the box under Windows for a minimal fee. Buy a Windows license and spend the time you would’ve spent dealing with Linux issues doing your actual job and you’ll, most likely, get a better ROI.

From a more market / macro perspective here are some extra reasons:

  • Companies like blame someone when things go wrong, if they chose open-source there's isn't someone to sue then;
  • Buying proprietary stuff means you're outsourcing the risks of such product;
  • Corruption pushes for proprietary: they might be buying software that is made by someone that is close to the CTO, CEO or other decision marker in the company, an old friend, family or straight under the table corruption;
  • Most non-tech companies use services from consulting companies in order to get their software developed / running. Consulting companies often fall under the last point that besides that they have have large incentives from companies like Microsoft to push their proprietary services. For eg. Microsoft will easily provide all of a consulting companies employees with free Azure services, Office and other discounts if they enter in an exclusivity agreement to sell their tech stack. To make things worse consulting companies live of cheap developers (like interns) and Microsoft and their platform makes things easier for anyone to code and deploy;
  • Microsoft provider a cohesive ecosystem of products that integrate really well with each other and usually don't require much effort to get things going - open-source however, usually requires custom development and a ton of work to work out the "sharp angles" between multiple solutions that aren't related and might not be easily compatible with each other;
  • Open-source requires a level of expertise that more than half of the developers and IT professionals simply don't have. This aspect reinforces the last point even more. Senior open-source experts are more expensive than simply buying proprietary solutions;
  • If we consider the price of a senior open-source expert + software costs (usually free) the cost of open-source is considerable lower than the cost of cheap developers + proprietary solutions, however consider we are talking about companies. Companies will always prefer to hire more less expensive and less proficient people because that means they're easier to replace and you'll pay less taxes;
  • Companies will prefer to hire services from other companies instead of employees thus making proprietary vendors more compelling. This happens because from an accounting / investors perspective employees are bad and subscriptions are cool (less taxes, no responsibilities etc);
  • The companies who build proprietary solutions work really hard to get vendors to sell their software, they provide commissions, support and the promises that if anything goes wrong they'll be there. This increases the number of proprietary-only vendors which reinforces everything above. If you're starting to sell software or networking services there's little incentive for you to go pure "open-source". With less companies, less visibility, less professionals (and more expensive), less margins and less positive market image, less customers and lesser profits.

Unfortunately things are really poised and rigged against open-source solutions and anyone who tries to push for them. The "experts" who work in consulting companies are part of this as they usually don't even know how to do things without the property solutions. Let me give you an example, once I had to work with E&Y, one of those big consulting companies, and I realized some awkward things while having conversations with both low level employees and partners / middle management, they weren't aware that there are alternatives most of the time. A manager of a digital transformation and cloud solutions team that started his career E&Y, wasn't aware that there was open-source alternatives to Google Workplace and Microsoft 365 for e-mail. I probed a TON around that and the guy, a software engineer with an university degree, didn't even know that was Postfix was and the history of email.

38 more...

You will never get the same font rendering on Linux as on Windows as Windows font rendering (ClearType) is very strange, complicated and covered by patents.

Font rendering is also kind of a subjective thing. To anyone who is used macOS, windows font rendering looks wrong as well. Apple's font rendering renders fonts much closer to how they would look printed out. Windows tries to increase readability by reducing blurriness and aligning everything perfectly with pixels, but it does this at the expense of accuracy.

Linux's font rendering tends to be a bit behind, but is likely to be more similar to macOS than to Windows rendering as time goes forward. The fonts themselves are often made available by Microsoft for using on different systems, it's just the rendering that is different.

For me, on my screens just by installing Segoe UI and tweaking the hinting / antialiasing under GNOME settings makes it really close to what Windows delivers. The default Ubuntu font, Cantarell and Sans don't seem to be very good fonts for a great rendering experience.

The following links may be of interest to you:

6 more...

Its literally a violation of the EU human rights agreement…

Is it? In Portugal there have been a similar law for years and nobody cares apparently. It isn't as wide as the Italian one, it just says ISPs are required to block access to websites a govt. entity lists.

Also no company will comply with that shitshows ridiculous orders.

Are you sure? Think about it... “All VPN and open DNS services must also comply with blocking orders”. A VPN provider can’t legally sell their services in Italy unless they comply. The best part is: since the govt is blocking websites they can also block providers who doesn’t play according to their rules :)

20 more...

Stick with LibreOffice , you'll get used and it is most likely the best alternative.

4 more...

So... this was the plan of the Standard Notes guys all along? Now it makes sense why they never made open-source and self-hosting a true priority.

Let's see what Proton does with this, but I personally believe they'll just integrate it in Proton and further close things even more. The current subscription-based model, docker container and whatnot might disappear as well. Proton is a greedy company that doesn't like interoperability and likes to add features designed in a way to keep people locked their Web UI and applications.

Standard Notes for self-hosting was already mostly dead due to the obnoxious subscription price, but it is a well designed App with good cross-platform support and I just wish the Joplin guy would take a clue on how to design UIs from them instead of whatever they're doing now that is ugly and barely usable.

33 more...

“This is an isolated, ‘one-of-a-kind occurrence’ that has never before occurred with any of Google Cloud’s clients globally. This should not have happened.

I don't believe this is what that rare, what I believe is that this was the fist time it happened to a company with enough exposure to actually have in impact and reach the media.

Either way Google's image won't ever recover from this and they just lost what small credibility they had on the cloud space and won't be even considered again by any institution in the financial market - you know the people with the big money - and there's no coming back from this.

1 more...


1 more...

My understanding is that domains do expire unless you pay the fee to renew for another year.

The problem is that this isn't what happens today. If you register a domain and never pay for it again then providers will often renew the domain and keep it to themselves and try resell it later. This is one of the biggest issues in the domain name market and GoDaddy is one of the worst offenders.

Regarding unused domain names, how would anyone know if a particular name is being unused?

Yes that's a good question but I'm sure that ICANN with all it's wisdom and infinite resources and teams could define something reasonable. I believe the first step could be to simply make sure registrars can't do what I describe before.

It depends. They're simply the most annoying drives out there because Seagate on their wisdom decided to remove half of the SMART data from reports and they won't let you change the power settings like other drives. Those drives will never spin down, they'll even report to the system they're spun down while in fact they'll be still running at a lower speed. They also make a LOT of noise.

14 more...

Here is my experience with it.

Up until last week I've had friends (who also use uBlock Origin, same country) kind of sequentially complaining for about a month about having the videos blocked. For me personally it has been working fine until then, but Friday I got the popup. Today the popup is gone however I get ads but they don't play video, only sound.

YouTube isn’t rolling out the anti-adblock to everyone. It seems to depend on things like your account, browser, and IP address. And if you’re not logged in or you’re in a private window, you’re safe. As a result, there are a bunch of people saying, “I use XYZ and I haven’t seen an anti-adblock popup yet,” unknowingly spreading misinformation.

What I see with this is that Google might eventually lose more with this new policies than just leaving things as they were. Lets be real, if this shit show continues and they don't drop it as it becomes increasingly difficult to watch without ads people will start looking for alternative frontends such as Piped or Invidious and that will hinder their ability to harvest data and force ads. What's the next step Google? DRM protected media?

16 more...

Why does Linux run so well everywhere?

I'm just going to point out that besides containers, systemd can now manage virtual machines:

systemd version we added systemd-vmspawn. It's a small wrapper around qemu, which has the point of making it as nice and simple to use qemu as it is to use nspawn.

The idea is that we provide a roughly command line equivalent interface to VMs as for containers, so that it really is as easy to invoke a VM as it already is to invoke a container, supporting both boot from DDIs and boot from directories.

8 more...