Ah I said it backwards lol.
Yeah same with libhoudini. Problem is I could only get fortnite to execute with libndk, but it would crash when trying to do stuff with Vulkan. Would seem to complelty ignore libhoudini which was weird.
And before anyone asks, not because I want to play Fortnite, but because I inadvertently left some poor kid on Fedora where they can play all of their favorite games perfectly fine except fortnite lol.
Biggest two issues with Waydroid are x86 to ARM translation and correct GPU passthrough:
https://github.com/waydroid/waydroid/issues/2115
In theory, you should be able to just play Fortnite on linux this way, but I haven’t been able to get it to launch like this guy did.
People have also been calling Waydroid dead for a while now which I dont know how true it is.
Same, I enjoy the classic shared library and package system which I still feel is superior to flatpak versions in most cases, even ignoring the technical aspects of each.
Tried silverblue once and it just felt more like android to me, and I even found myself using RPM layers almost immediately for core things that dont ship as Flatpak because its infeasible.
Plus Bazzite has its own release schedule which I feel like slightly removes the benefit of Fedora kernels being cutting edge, with critical packages updated almost as fast as Arch.
The good thing though is that it’s much more dummy proof, so I would feel comfortable letting anyone use it with zero experience, whereas I only recommend Fedora to those who have an inherent interest in Linux.
wth is the point of a guest network if you have 443 blocked lmao.
Even my VPN port is 443 so it gets past basic port filtering because HTTPS is usually the only one allowed compared to other protocols.
“Man if we had the original source code, it’d be so much easier than reverse engineering this binary in Ghidra”
The source code in question:
This one is funny because it 100% still exists somewhere, but I haven’t had the chance to verify it again.
Okay so basically its a data recorder box (ex: brainbox) that connects to a bunch of industrial sensors and sends the data over the network with your preferred method.
Builtin firmware gives you an HTTP webui to login and configure the device, with a user # and password.
I think the user itself had a builtin default admin which was #0, which everyone uses since there wasn’t really much use for other users.
Anyway, I was looking at the small JS code for the webui and noticed it had an MD5 hashing code that was very detailed with comments. It carefully laid out each operation, and explained each step to generate a hash, and then even why hashes should be used for passwords.
Here’s the kicker: It was all client side JS, so the login page would take your password, hash it, and then send the hash over plaintext HTTP POST to the server, where it would be authenticated.
Meaning you could just mitm the connection to grab the hash, and then login with the hash.
I sat there for like 10 minutes looking at the request over and over again. Like someone was smart enough to think “hey let’s use password hashing to keep this secure” and then proceeded to use it in the compleltly wrong way. And not even part of like a challenge/handshake where the server gives you a token to hash with. Just straight up MD5(password).
It was so funny because there were like a hundred of these on a network, so getting a valid hash was laughably easy.
I never got to check if this was fixed in a newer firmware version.
I think I’ve only ever been banned from one community, and it was an NCD clone run by the reddit equivalent sub.
The fact that you can say pretty much anything here is probably lemmy’s biggest advantage, despite it being such a low bar these days lol.
They technically already did this with Android which all ship custom kernels and closed source driver blobs.
Of which Google successfully lobbied the government to keep foreign competition out, which has lead to the soft death of AOSP as everyone else has forked into a new OS or accepts google’s terms to use their gapps suite.
Best thing about Linus is that he immediately tells these megacorps to f off every time they make a PR with even a remotely questionable purpose.
If they really want to achieve something technical without scrutiny, there’s FreeBSD right there. Implement it and make a future PR if it actually improves something.
Otherwise, critical choices within the Linux kernel will affect everyone, and could very easily lead to abuse without any proper moderation.
Google already has a hit order out on JPEGXL simply because they know that AVIF will save them on cloud storage cost, so they’ve effectively banned it from the browser space since they own Chrome and have enough leverage over Firefox.
Making the mother of all omlettes here, Jack. Can’t fret over every egg!
Couldn’t you just lazy build your own images if you don’t trust the source?
Even then most of these containerized apps can be run perfectly fine as a host binary, you just have to make your own start script and a systemd unit which isn’t that bad.
You could then build a completely custom image if you’d like, or move it into a VM if you don’t like the idea of running it baremetal.
How does it compare to Photoprism? Been on that solution for a while and I really like it, but have seen lots of people suggest Immich as well.
Ubuntu and Docker.
Really? Netplan alone disqualifies Ubuntu as a “friendly stable starter distro”, and I can guarantee you that your guide will somehow become outdated with a single new Ubuntu release, or some poor soul who accidentally selected an LTS release.
Docker doesn’t matter as much, but there’s a reason beyond just FOSS licensing why podman exists.
Would highly recommend Debian instead.
I started on Ubuntu similar to this many years ago and both the server and desktop experience was not fun at all.
HEVC support is enabled for Firefox 134
Cool for anyone not using AV1 which I assume is a big chunk of the userbase because not everyone has good AV1 hardware acceleration lol
“No”
– everyone using compose to orchestrate software deployments
Yes it is, and there’s a age old joke about docker being used for configuration management, which doesn’t require a container system.
I kinda hate to agree with the other suggestions here, but entry level and even dedicated NAS products are pretty expensive for providing something you can very easily DIY for significantly cheaper even with the latest hardware.
Was in a similar boat and just ended up taking an old HP desktop and added some cheap HDDs. I ended up playing around with proper Fedora for some LVM cache tricks and running some other services, but the common suggestion for this is SnapRAID and Nextcloud.
Every Villain Is Lemons
Lol wait till you see any of the Pakistan or India related articles. Its like the Ganges river in text form.
There’s more *arr tools that aren’t aggregator automation tools than there are aggregator automation tools.
Also It was only funny when using an existing words like "sonar, “radar”, “lidar”. Jellyseerr is dumb, even Jackett was pushing it.
I guess it makes it somewhat easier to associate them as part of a group of software, but now we have stuff like Homarr that is entirely unrelated, but still a useful tool.
Proxmox or even just lazy old KVM GUI for anything that needs to be deployed manually in a VM (Home Assistant, WIndows VM, etc.). Otherwise you can even just spin up whatever manual service you want to run on an LXC container or bare metal host with the correct security settings with systemd and selinux if you want to be extra careful.
Docker/Podman (the superior one lol) is just an automated deployment system in container form (like Ansible). It great for automated deployment without having to manually configure the installation process and worry about upgrades, changes, etc. You can even easily create your own images on the fly just for the purpose of having it run a single service inside a container.
Proxmox equivalent would be like using Terraform/OpenTofu to deploy VMs to do the same thing. Its possible, but just not that common because of the reduced overhead with containers, and well supported deployment images with docker/podman specifically.
Generally speaking, I’ve seen proxmox used more in lab environments were you want to emulate something like a complete network of machines whereas docker/podman has become the defacto server deployment platform.
You’re just much more likely to find software with a published docker container and default docker compose script than the same thing in Terraform or even K8s/K3s.
How I sleep knowing Fedora + podman actually uses safe firewalld zones out of box instead of expecting the user to hack around with the clown show that is ufw.
I could be wrong here but I feel like the answer is in the docs itself:
Modify the zone to your security needs? Or does Docker reset the zone rules ever startup? If this is the same as podman, the docker zone should actually accept traffic from your public zone which has your physical NIC, which would mean you don’t have to do anything since public default is to DROP.