5·
1 day agoMy new strategy is to block EVERY port except WireGuard. This doesn’t work for things you want to host publicly ofc, like a website, but for most self host stuff I don’t see anything better than that.
- 1 Post
- 5 Comments
Joined 2 years ago
Cake day: July 3rd, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
1·4 days ago<cue X-Files theme song>
If you’re new to Linux, then your probably not familiar with the full Linux community yet. Much like in real life, online Linux spaces tend to have a very loud minority of conservatives who hate progress.
Usually you’ll see them hating on things like systemd, 64bit architectures, containers, new packaging systems (like Flatpak), immutable and experimental distros (like Nix), Wayland, “bloated” desktops like KDE or Gnome, and much more.
And just like in real life, the antidote is to not take another person’s word for it. Do your own homework/try things out yourself and arrive at your own conclusions.
Flatpaks implement deduping, so they actually don’t take that much space when installed.
I habe a PC with an 8gb SSD
I think I found your real problem.
ez pz:
#!/usr/sbin/nft -f table inet filter { chain input { type filter hook input priority raw; policy accept; iif "lo" accept ct state established,related accept iif "enp1s0" udp dport 51820 accept iif "enp1s0" drop } chain forward { type filter hook forward priority raw; policy accept; iif "lo" accept ct state established,related accept iif "enp1s0" udp dport 51820 accept iif "enp1s0" drop } chain output { type filter hook output priority raw; policy accept; } }