That PUBG fails, is clear. You just won’t have a good time with anti cheat based games like PUBG, Fortnite and the like.

Wanna play those? Stay on Windows or get a console. Just how it still is.

And problems with capture cards I would not book in the „normie“ camp, which on a basic level is the goal of this video series.

He set himself up for failure again with PopOS.

Cachy and Bazzite are much better choices by the other team members.

Well, not every system can handle or support multiple VPN connections with different providers, or the VPNs could interfere with each other. E.g. when using Tailscale you can not use another WireGuard based VPN according to their FAQs.

Also, it adds complexity to the stack and system as a whole on the client side. That is all fine and dandy as long as it works, but quickly a pain in the butt once you have to debug something.

Cloudflare Tunnels work great and are really easy to setup. Plus you are not exposing you machine completely to the outside, as the cloudflared service/container „calls out“, and Cloudflare is your reverse proxy. Downside is, you’re binding yourself to one of the US hyperscalers.

Pangolin uses the same principle, but is a bit more challenging to setup. Plus you need some kind of cloud server to make it work.

As you already have a VPN active at all times (at least it sounds like that), a VPN home seems out of the picture.

Unless you have a dedicated firewall at home, maybe reconsider the reverse proxy route. Personally would not feel comfortable with exposing a machine at home to the internet in full without a handle on what it can do or how it may be reached.

That is something you can configure in the settings for the mobile app. To ask for the master password every time is default behavior, but it can also be set to a PIN or biometric instead.

How big is your install base at work? Still wondering how to replace something like Active Directory, Group Policies and the like for centralized management akin to Windows based networks.

Exactly this. It checks periodically if a newer image for the tag of the container is available (e.g. vaultwarden:latest) and tells you about it. You can setup mail, sms, Teams, you name it.

So then you know a new version is available, can check the changelog and decide if the update is worth it.

Personally having great results with Diun. Same idea (check for newer container image) and works 100% for me.

Don’t know if it can automatically load and restart containers, rather do that personally.

Do you have requirements for the WiFi Standard?

Do you want to build up a new system or adding to your current setup?

For the price point you could look into the AVM Fritz Ecosystem. Their Mesh solution is quite hassle free and for 200€ you could get WiFi 5 capable devices on the used market.

Not sure how well they work with other brands, so you might want to invest in a FritzBox and FritzRepeater (should be in the budget used).

Anything above WiFi 5 could be out of your price range, especially new.

Ubiquity APs with WiFi 5 could be in your budget, even new. Look into the AP HD. You will need a controller installation though, weither on your desktop or on a NAS, Server. You do NOT need to buy an appliance from them for management. They do not make it clear on their website.

They have the management aspect of large environments down to a tee. Apart from costs it does not really matter if your domain consists of ten, thousand or more systems. The tools to manage those systems centralized by core systems is the same set for all sizes so to speak.

That can be on one campus, across multiple cities and locations. It’s quite frankly IMO the foundation on which the success of Windows in the corporate world is built. Standardized deployment of settings across all company systems saves administrators time which can be used for other tasks instead of micromanaging clients.

I have yet to see a similar solution for Linux clients that works the same way.

Not really the way if one wants to cut ties with Microsoft completely though. And I suspect most would argue „then you can go the Windows route all the way and have less pain integrating client systems“.

Oh, Ansible is an interesting starting point. Would not thought of it for that purpose, I always „only“ link it mentally to automated deployment.

Will look into it out of curiosity.

How do you manage your fleet? How big is your network?

I‘d love to push for Linux at work, but have yet to see a solution with similar management capabilities than a Windows domain. And I don’t want to manage individual clients, as sysadmin I want to push templates like GPOs and the like.

Can see it work for smaller environments, but not in a company with a couple hundred machines.

Yeah, same with forcing ISPs to save connection data on all users long term. European court slapped on the hands a couple of times, still not done. Like some kind of undead policy

To add on this: removed because it was clear the vote would not have been in favor.

Was pretty clear that it would return sooner rather than later.

That is so incredibly short sighted though that it makes me really mad. How does an underperforming game make shareholders happy? That it dropped this fiscal year and not the next?

I’m with you, I’m tired of this shit.

At the end of the day it is a matter of preference and convenience. Is it safer to separate them? Absolutely. Is it as convenient as keeping them in one place? Absolutely not.

So, pick your poison. Personally I have my MFA tokens in three separate locations, two self hosted server applications and in a mobile app (2FAS Auth). More for fallback/backup reasons. Having them in my password manager is just too convenient.

Curse by Architects

Yeah, its been a rough couple of days. 😆

Well, there is in the EU, but that does not help anyone not here.

An unlocked boot loader is something that would have to be forced from Apple’s hands like sideloading was in the EU. No way in hell they would pursue that on their own.

Rapairability is a point that bugs me as well, hoping for right to repair laws in the EU to force all manufacturers to make the devices better in that regard.

That win is important, but Sony already sued Quad9 in Italy just this week. It’s one battle won, but not the war.

In Italy they demand the same, blocking certain sites used for torrenting.