mvirts @ mvirts @lemmy.world

Posts

18

Comments

1,775

Joined

2 yr. ago

Lol and how exactly would one get access to this system? Just a registered business in Ohio? Anywhere in the US?

It may still be worth posting, mostly to reach people who have that com in their home feed.

Are you only asking about the worthiness as a job skill or also for personal satisfaction?

I would post this in an electronics comm

What level of involvement are you looking for in setting up the host os?

I'm a NixOS fan because once you painstakingly get the configuration file set up you basically never need to do it again. If you don't need anything outside of nixpkgs it's easy, otherwise it's terrible. Docker is available in nixpkgs.

On connectbot for Android I really appreciate the feature that saves port forwarding settings for each connection. If you can add that and the option to start forwarding on connect that would be great.

Also it would be nice to be able to specify a custom command to run instead of the user's shell.

Looks great! Nice work

Il a des bras

It sure would be a shame if his software was covered by the gpl because it's statically linked against Qt or FFMpeg or any other library... 👀

My only input is gitlab is very complicated, never used the others

Wifi died on mine, so no malware updates for me woohoo!

Beer nog is where it's at

I fear the ones who don't care

My bios doesn't need to know what year it is

For all of my personal machines secure boot is disabled.

The main benefit is enabling signature checks on every piece of code that runs to start your machine. This is a good idea to prevent direct modification of the binaries involved. This will work as far up the chain as software supports, even to userland code although I don't know of any Linux distros do that.

However, if you occasionally rebuild any of that software and can sign it yourself secure boot just moves the attack surface from the binaries into the build process. Any modifications made to the kernel, bootloader, or firmware before signing are included as trusted code and are vulnerable to malicious modification.

Since I don't / can't verify every piece of code on my system, and rebuild Linux occasionally, and people have demonstrated secure boot bypass flaws, I prefer to disable secure boot entirely for convenience. Also, in a roundabout way this increases the security of my system because I won't get locked out for misconfiguring an update.

Sounds like a kvm switch is what you need instead of a software solution. A kvm will let you switch between the machines with the push of a button, and fancy ones can be controlled with key combinations

Finally an air gapped machine I can trust

I need to do this. My white canvas sneakys are currently brown.

Lol too bad they only wrote it in English

He doesn't need to hide, there's a designated smoking area on the other side of the parking lot.