You can use wayland in container but the easy way probably would require to give whole GPU to the container (but my knowlwdge is limited)
What I do know that this project is doing that: https://games-on-whales.github.io/
That also came up in search results that could help: https://unix.stackexchange.com/a/359244
The only reason ssh client would “hang” without any output is when it’s waiting for external key storage to allow access. It’s designed that way to give user some time to approve access to key storage.
It sometimes happen that the installed key storage is broken in a way that it fails to show user modal, for any reason (showing on wrong screen, wrong desktop, wrong activity, wrong framebuffer, …)
One solution (that you already did) is to change the SSH agent env variable to point to different key storage.
Another would be (if possible) to uninstall the broken key storage if you don’t use it. But it is sometimes needed/used by other apps.
It’s overall good to notify/open bug on your distro issue tracker to notify that some packages are missconfigured (maybe have missing dependencies) or conflicts with other ones.
Does it support intro skip?
Not true, I’m just fighting the myth that incognito mode gives you (any) privacy.
Company have many legal reasons to store my IP and they do so, don’t have a problem with it, but they can’t use it legally for advertising without consent. You are agreeing to tracking, that in turn allow them to use your IP for tracking, it doesnt matter if its in incognito mode as now they can track you legally also outside. So your comment about using incognito is just plain wrong.
Ultimatily it’s about the rules (including gdpr), I don’t agree/approve to be tracked and don’t want my visit to be linked to me, so if the website like that don’t want to provide content in exchange for ads (like in the OP case above) then they don’t need to.
I fully know they can (and probably doing it without asking because they can) track my activity to serve targeted ads. I just voice my disgust and voice my disapproval with the state the advertising is now, and propose a solution that I personally am fine with it.
Why do you think I’m using adblock and pi-hole for?
10-50 people normal use case?
For KeePass no, for VaultWarden yes.
Just got triggered for the comment above suggesting a solution that doesn’t work for quite a lot of deployments/users, but yes, my comment was a little bit out of place as for single user deployments KeePass is probably way simpler/better.
Totally agreed, but there are pros and cons.
File - harder to steal but once stolen hacker can bruteforce it as much as it wants. Web service - with proper rate limits (and additional IP whitelist so you can only sync on VPN/local network) - its harder to bruteforce. (But yes, you (sometimes) have also full copy locally in the local client, but …)
If it was only for me I probably would also go with KeePass as you will not update the same db at the same time, but with with multiple users it’s getting unmanageable.
I just got triggered as those CVEs are not that bad due to the nature that the app encrypts stuff on the client side so web server is more like shared file storage, while your answer suggested to switch to a solution that doesn’t work for a lot of people (as we already tried that).
Explain how can you use KeePass+Syncthing with 10-50 people (possibly different groups for different passwords) having different sets of access level while maintaining sane ease of use?
The passwords are encrypted in the first place so the security for them is only on the client side.
They only need to serve ads related to the conent. Because that is most likely something im interested in as I’m visiting the page for that. They don’t need any permissions/cookies for that.
Opening in incognito doesnt give you any privacy, they still going to match you using IP and browser fingerprint to get (almost) the same person matching as allowing all cookies.
Cookies just makes it easier.
For me if its a page I opened first time I will just close it and open next search result.
If this page/domain is something I see quite often then depending on the price I might pay.
Paying full monthly price for single page visit is stupid they will have a hard time to convince me to pay. And paying with privacy is out for me.
Waiting for time when they start using centralized payment system that will allow me to pay small amount per visit, like lightning or BAT.
I call those estimates BS like always, but who knows.
Maybe they should focus on giving people a way to access those legally? Where on that poster campain say where to go? And secondly… They as always still introduce the BS regional locking!
(No internet =} no download = no failure
You can even host repo mirror locally, that will still work without internet ;)
How to have internet without power?
Very cool project, as you can host your own stream on your own terms while publish to open/global directory and also integrates with Fediverse <3
I move unsubscribed emails to different folder, so next time they send me email I don’t feel bad in any way as I can confirm that I did tell them not to send me emails.
I only regret I can’t flag it as spam double time.
Gauguin - Sudoku-like game for Android (on F-Droid)
The instructions are not clear at first so it’s better to start the game a new with lower difficulty.
Just having btrfs is not enough, you need to have automatic snapshots (or do them manually) before doing updates and configured grub to allow you to rollback.
Personally, I’m to lazy to configure stuff like that, I rather just pick my Vetroy USB from backpack, boot into live image and just fix it (while learning something/new interesting) than spend time preventing something that might never happen to me :)
It first downloads all packages from net, then it proceed totally offline starting by verifying downloaded files, signatures, extracting new packages and finally rebuilding initramfs.
Because arch is replacing the kernel and inittamfs in-place there is a chance that it will not boot if interrupted.
This issue was long resolved on other distro.
One way to mitigate it is by having multiple kernels (like LTS or hardened) that you can always pick in grub if the main one fail.
What about a desktop PC?
grep bat /proc/driver/rtc ❤️
Always learning something new, thanks :)
Yes, user should (at least try to) provide their own message, if not and it just post links to (their own?) pages then account should be marked as Bot IMHO.
Container is just a term for a set of isolation solutions bundled together.
Like file system isolation (chroot), network isolation, process isolation, device isolation…
One of them is ofc chroot, yes container use exactly the same chroot functionality.
So to answer your question, no, you don’t need full isolated container. You can use only chroot.
You just need to pass all required devices ( and match the driver version running in kernel with your files in container and (avoid) more than one app having full unrestricted access to GPU as that would result in issues (but dont know the details so can’t help you with that)).