Thank you :) EndeavourOS was my second pick !

I picked manjaro because their user base is bigger and Manjaro is older. I will probably switch to EndeavourOS for all the reasons mentionted here and there in the comments. There seems to be a common strange atmosphere arround manjaro.

Also, because that logo thing on boot made me this post, this means I already felt something is odd with Manjaro. Always follow your guts !

Ps: Didn’t though it’s that much of a heated subject. It’s a bit sad, I really liked manjaro’s default and looks amazing.

Thank you very much for your throughout and explanatory response !!! <3 I also read all the comments and I know what I will be doing !

While I did like the well build defaults, I didn’t liked how they added their logo on boot up, even if it has nothing to do with logoFAIL exploit, It felt wrong (or does every distro does that?). Also the fact they added their own bookmarks in my freshly installed Firefox left me a bit skeptical… :/

There’s probably nothing to be alarmed off but That doesn’t feel right… If they do that, what else could they add hidden in the distro normal people can’t see ?

If I may ask, do you have any good distro you would recommend? Something as bare bone as possible, as good as debian but a bit more up to date. I do not fear some tinkering with a new distro but Arch is a bit to much of a hassle right now… That’s why I chose Manjaro.

My second pick was EndeavourOS as daily drive, but the community is small compared to manjaro and it’s relatively new in the game. Any thoughts?

Thank you !!

Manjaro damaging it’s image wouldn’t be a new thing.

Could you elaborate? :)

No-Script and they redirect you to their no-script search results. Pretty neat !

But searxNG is my go to at the moment !

Thanks for your insight ! Even though I didn’t really get everything, but It seems there is a specific use case !

Maybe overtime with more experience I will get there and have a better understanding of what you meant with contextual history.

Same here 👋 still i’m a bit sad I had to move on from VLC… It was always one of the first software I would install on my setup… But that was mostly on windows.

On linux/macos, MVP seems to work way better. I’m very thankfull for all these years of service, but everything has an end and like ICQ ended recently, VLC will probably die off in a few years…

Except if they make a come back? Who knows !

Genuine question, I see alot of people concerned by losing their shell history, any specific reason why?

I mean I keep mine to default and auto-delete every shell history after logout :/ And I never seemed bothered, I never go up more than 10 lines anyway… Whats the point/use case of keeping a whole shell history over time?

Not OP, but thanks for the write up !

Regarding macvlan’s with docker, I tried to use them in the past and while I liked the idea of having every container on it’s own mac /ip address in the home network space, I couldn’t get the host to communicate directly with them.

Everyone on the LAN could talk to my containers, except the host itself. IIRC there was/is some tricky part where you have to change the default route and create new iptables to make it work that way, but It seemed rather hacky and not secure at all.

Now that I’m a bit more experienced with docker and all, do you know if this is possible or still one of the downside of macvlan’s?

Edit: reference. I see he updated his post in 2023, maybe worth a new shot !!

Opening ports on your router is never safe ! There’re alot of bots trying to bruteforce opening ports on the web (specially ssh port 22)

With SSH I would disable the password authentication a only used key based authentication. Also disable root access. (Don’t know how it works with forgero though)

I would recommend something like wireguard, you still need to open a port on your router, but as long as they don’t have your private key, they can’t bruteforce it. (You can even share the wireguard tunnel with your friend :))

Also use a reverse proxy with your docker containers.

There are a lot of things you could do to secure everything, but If you relatively new to selfhosting, there’s a steep learning curve and a lot of time needed to properly secure everthing up. You could be safe by doing nothing for a few months but as soon as someone got into your system, you’re fucked !

But don’t discourage yourself, selfhosting is fun !

Never got into TF2 was more a day of defeat guy (what a banger !!). But still doing my part !

Long time I haven’t booted into windows, so can’t help there.

But rest assured that the free tier hides your real IP the same way as the paied tier.

That’s right !!! That was just a starting point for OP if he was on Linux and lacking that info I gave him just some pointer where to look at.

Anyway, most of the time it gets overwritten from other configuration files, nothing harmful. He could even have resolvconf installed on his system, who knows.

Is this because I am using a free tier VPN? so it’s not functioning properly etc…

Nope ! I use the free tier on all my devices and nothing is leaked based on all tests I did.

If you are on linux you need to check your /etc/resolv.conf and see if your home’s router/ISP DNS is in there.

Check also if networkManager hasn’t your ISP’s dns configured.

There are other locations where your home router’s DNS could be hidden on linux after a DHCP configuration.

If it’s on windows :/ sorry can’t help there.

Heyy thank you very much for sharing your thoughts and knowledge with us !!!

Very interesting and the write up is easy to follow up ! That’s the kind of cool blogpost we will be missing when the internet will be dead brained and flooded with AI shit…

Will you integrate an RSS feed to your blogposts? So I could get your feeds directly into my RSS feeder? 😁

👍✌️

Edit:

I shoud have left that part out:

So right now we will propably have meat and vegetables full of GMO’s, pesticides, and meat fully loaded with antibiotics, vaccines…

That’s was maybe a too personal opinion were the conversation can easily get heated quickly (where ever your stand is on that subject) and is out of the scope of the actual post !

So sorry about that :/.

That’s not the point, eat what ever you think is good for you. We are not going into arguments that’s out of context. That was just an example out of my memory on how they pass things without our consent or when they see any benefit for their own agenda not for the common good. (Still personal opinion, think whatever you want)

But whatever… I’m just a random on the net 🤷

Hummm, does TTIP and CETA rings a bell? If not, let’s just say that during the covid pendamic the EU parliments signed CETA behind ours backs allowing transporting good between canada and EU. Sure TTIP itself was not signed (yeahhhi thats a win… Or not?)

But that doesn’t matter because the only thing they wanted was a trade deal with the American continent It’s TTIP with extra steps…

So right now we will propably have meat and vegetables full of GMO’s, pesticides, and meat fully loaded with antibiotics, vaccines…

So If I where you I wouldn’t count to much on

“They look like they want change, and they then blame too many votes on “not themselves” that it didn’t pass.”

They wan’t changes when it benefits them and their agenda ^^.

I feel so bad for the long term contributors :/

The only good thing I could think off, is that someone is going to create a defederated stackoverflow alternative?

Or something similar, to bring back real human interaction…

If this wasn’t enough, This will probably raise war against corporated AI.

Maybe syncthing could fit your flow? OMV syncthing.

I have no idea if it works or if that’s something you would implement, but syncthing is pretty good :).

I use it to sync my encrypted backups between my devices (even my phone has my server backups). Never had any issue !

Hummm, I have a syncthing instance in a docker compose, so yeah I can access it through my ssl domain (https://syncthing.home.lab) but traefik takes care of everything.

Now if it’s on your local machine you’re trying to use your SSL certificate I don’t know, I always access it through the local ip (127.0.0.1:8384).

If I had to guess or give it a try, I would point the IP to my dns through my host file on my machine. But that’s just a wild guess :/

I think syncthing has a good documentation about it :)