I would recommend automating only daily security updates, not all updates.
Ubuntu and Debian have “unattended-upgrades” for this. RPM-based distros have an equivalent.
I would recommend automating only daily security updates, not all updates.
Ubuntu and Debian have “unattended-upgrades” for this. RPM-based distros have an equivalent.
120 MB? That’s more than a ZipDisk!
I knew I attended a well-funded modern college because all the computers had been upgraded with ZipDrives.
You mean the cup holder?
Right, it was an example of a pattern. In that case, -p could be used.
Yeah, not sure how I missed this one!
Ironically, when I tried to load Wired’s story about this travesty, Wired quickly hid the content with pop-over asking me to subscribe.
I like batcat aka bat, but nominate the humble ‘cat’ instead.
Want to copy a disk image to a device? You can use cat for that: cat file.iso>/dev/sdf
What to copy local stdout over ssh? Use cat.
ls -l | ssh myhost 'cat >out.txt'
That’s simple and surprisingly powerful.
For some cases I use “|| true”.
The idiom accepts that the preceding command might fail, and that’s OK.
For example, a script where mkdir creates a directory that might already exist.
Nginx has a number of compile-time optional features and they aren’t all enabled in the pre-built packages. For example, the ability to echo back HTTP requests for debugging.
Yes, Fish excels at being an interactive shell.
What do you check two hours later?
https://www.cloudns.net/ Makes dynamic DNS very easy.
This is the day after iOS 18.2 was released with native ChatGPT integration.
First time seeing this? Man, that’s fwupd.
It’s so old it’s not called self-hosted.
Moneydance https://moneydance.com/
Started using it close to twenty years ago and keep using it because it seems fine.
I use QGIS, which needs to stay in sync with a number of Python packages and plugins. I have thought of using Nix for that, but am not sure if everything I need is packaged for Nix.
I’m using Conda now, a Python package member which seems more popular for this niche need.
I agree. Flatpak could be used to further lockdown what Firefox can do, but it has so much features and complexity that I also expect it to be difficult to successfully lockdown.
I would either start with a product that explicitly has just the features a web-kiosk needs or use something based on ChromeOS, which explicitly has a set of enterprise policies that are there to allow admins to lock down a fleet of Chromebooks as they need.
This is based on the security principle that a system is far more secure if you explicitly allow what you need vs trying to explicitly block or disable all the things you don’t want.
Over time, the features you need to allow your web kiosk needs maybe somewhat static and in your control, while all the features you need to disable in Firefox could be constantly evolving and put of your control if you are keeping Firefox up to date.
I like the project but use DIY Sway.
It doesn’t improve security much to host your reverse proxy outside your network, but it does hide your home IP if you care.
If your app can exploited over the web and through a proxy it doesn’t matter if that proxy is on the same machine or over the network.