1. Find all of the SSH keys you want to replace.

I hate this part.

Re-gen the keys. In this environment, you would have PKI setup and automation to handle cert renewal.

Having the certs expire is an advantage, security-wise. Auth will expire with certs, stolen creds can be instantly invalidated.

That’s a lot of pedantic side-stepping.

Your Holy Imperial Majesty?

Look, I don’t know what you’re trying to get out of this conversation, but at this point, you can kindly fuck off.

Ah, yes, I suppose that’s true. My apologies.

Oh, I fully understand what you said, the diatribe wasn’t required. I just thought it was weird, just walking into a chili cook-off telling everyone you don’t like chili.

Can you explain the “rotating containers back end”? I’m trying to understand what that adds to security.

It’s not a very constructive community though

You need guidance in your presentation style, you have managed to completely alienate your potential users in one single post.

No one owes you anything. No one asked you to spend time and money on a project. Calling folks “ungrateful” while trying to attract them to your project is weird.

Bold reply in r/Linux.

I use wanderer.

It works fairly well to document and organize my hikes.

I read the entire article,and you seem a bit prickly about caldav, but that is of course your prerogative.

I do wonder if your users are asking for caldav because their use-case make caldav a valuable translation for the rest of their digital lives… Maybe it would be helpful to understand what parts of caldav are interesting to users and what they might actually be asking for.

ntfxfix should only have to be done once, then you can remount. Unless you are using these partitions in windows, in which case you’ll need to do it every time.

777 is read/write/execute for owner, group, and world, respectively. It’s the most permissive POSIX permission that can be set. If something can’t wrote on a 777 umask, then either the filesystem is mounted read-only, or something is deeply wrong with the storage.

drives are NTFS

You probably have the clean unmount bit unset for the NTFS partition. This is trivial to bypass, but I would suggest not using NTFS in Linux, NTFS is not a great fs and Linux support is… OK.

Proxmox has no desktop by default. You can install it, add a desktop environment, but it will be less hassle to just use Debian as the desktop and install proxmox on top of that.

Ultimately, it’s all Linux or Unix. You can install qemu/KVM and libvirt on just about anything.

You can pretty much just pick your distribution and then add KVM on top of that, it will get you a long way before you need to use anything with more features.

A lot of people like to keep their hypervisor separate from their daily driver, but you can totally just fire up VMs and containers on your dd if that works for you.

Proxmox

• based on KVM
• relatively easy to install
• big community and lots of how-to guides
• well-documented hardware pass through
• minimal install (no cups, no extraneous software)

Notes from the last release mentions that the docker repo is unmaintained.

Really great article.

I was a bit critical of your last post on kernel init stuff, but this one is well laid out and gets quickly to the material at hand: all applications make the same system calls.

Keep it up, I’m going to follow this.

Ohhhhh, I’d forgotten about this. Good one.

I’m agreeing with you. Is there something unclear in my comment?

deleted by creator

I agree, personally.

And the absence of as many formal modding tools is, I believe, a reflection that many other Linux gamers think this as well.