I use Heimdall too, with a bunch of other things. One of them is Pihole.

Pihole will not only help blocking ads at DNS level, it will also work as DHCP server and resolve localy configured addresses, like homepage.ourhome.

Put it on your network and disable the DHCP feature in your WiFi router/firewall (you may need to explicitly set it to forward DHCP to Pihole).

One warning, do not set up names like host.local. the TLD .local is reserved it will cause issues.

Shift+Ins was the default paste on Windows 3.0, before Apple sued Microsoft for copying their OS (back in then it was still called just “System”), so MS added Ctrl+C for Windows 3.1, but the old one still work.

Same thing for Xorg. Ctrl+Ins for copy, Ctrl+Del for paste and Ctrl+Ins for paste.

I could say the same about Microsoft.

That might be true inside Russia, but not in the rest of the world. F5 could sue in the US and force the registrar responsible for the .org TLD to hand the domain to them.

In his place, I would chosen something related but different enough to avoid trademark infringement, like “Freeginx”. IANAL, but I believe sometimes all it takes is one letter to keep lawyers away.

Being even more pedantic, KVM is the hypervisor, QEMU is a wrapper around it and Proxmox provides a management interface to it.

Any Linux distro running KVM/QEMU - Add Cockpit if you need a web interface, or use Virt-Manager, either directly or over X-forwarding

No need for X forwarding, you can connect Virt-Manager to a remote system that has libvirt,

For my private repos, hosted on my home server, I moved from Gitlab to Forgejo (Git, artifacts and containers images) and Woodpecker for CI builds. Woodpecker is not as powerful and feature complete as Gitlab, but for simpler needs it gets the job done.

In that case, without encryption, your safety is zero. That’s the exact scenario that full-drive encryption was designed for.

Safe in what context ?

If the drive is mounted and data accessible, in case your computer is compromised by some kind of malware, well, the data will be easy to exfiltrate. Now, if the computer is turned off or the drive unmounted, that’s what encryption comes in to protect it.

So, basically, encryption will protect the data in case of physical theft of the drive or in case of remote hacking if the drive is un-mounted.

If India is anything like my country (Brazil), corruption is rampant and enforcement outside business environments is pretty much non-existent, so, no, no one is afraid of piracy for domestic use. We used to have street vendors and booths on strip malls selling all kinds of warez on CD/DVD. The only reason they’re not around anymore is because internet speeds here are already good enough that downloading is easier. And no, no one will cut you connection because of it, our congress already approved laws saying that access to digital communication is a civic right.

To dislodge an incumbent, a product needs to have an enormous advantage, a killer feature that makes the hassle of changing worth it. Up until now, Linux didn’t have it. Well, it did, but Windows had it too, but Microsoft dropped it: lack of ads baked on the OS.

Now that Windows is turning into yet another Ad delivery system, people are looking for an escape. Many are going to Macs, some are coming to Linux.

You can run with your own reverse proxy Nginx if:

• You expose the port used by the backend/API with a “ports:” setting on the compose file
• Expose the socket used by the ytproxy container using a volume that points to a directory in the host

You’ll still need 3 DNS names and a SSL certificate to cover all three.

TO configure your Nginx, you can use the template I provided on the config/ directory as a base.

One thing that was making the boot taking too long on my LXC containers systemd-networkd-wait-online.service, a service that waits for every link to be up. After I figured this, I added that service to the list of stuff I turn off, even on bare-metal installs.

Those look nice. I don’t need a dedicated desktop client, since I always have Firefox open anyways, but I’ll give Libretube a try on my phone. Bonus, Libretube’s Mastodon account is on the same instance that I use :-)

Since this is /c/selfhosted, it would be a good idea to add “HA - HomeAssistant, a popular automation software” to the list. Another one id “LXC - Linux Containers”

Veronica has a channel on the TILVids Peertube instance, if prefer that over Youtube. This particular video is at https://tilvids.com/w/u2pBk5Vdg85FWhTmXZQaUA

You a want a suggestion on how to make the dive easier ? Install Linux on a USB stick.

Any old 32GB USB thumb drive will do. Linux is way smarter in how it handles storage devices, so you can boot it from a USB stick and it will be just as happy as if you installed it on an SSD or HDD. All you have to do is tell the installer to use the stick as the destination when installing. Then you can boot from it whenever you want and try out Steam and Proton.

Heck, you can even take it with you and use it to boot other computers into you own pre-configured Linux.

That was the same in Brazil, where I live. This scared the beejesus out of Microsoft, so they created special, cheaper version for developing countries to counter it.

Can’t say anything about CUDA because I don’t have Nvidia cards nor do I work with AI stuff, but I was able to pass the built-in GPU on my Ryzen 2600G to the Jellyfin container so it could do hardware transcoding of videos.

You need the drivers for the GPU installed on the host OS, then link the devices on /dev to the container. For AMD this is easy, bc the drivers are open source and included in the distro (Proxmox is Debian based), for Nvidia you’d have to deal with the proprietary stuff both on the host and on the containers.

I already did a few months ago. My setup was a mess, everything tacked on the host OS, some stuff installed directly, others as docker, firewall was just a bunch of hand-written iptables rules…

I got a newer motherboard and CPU to replace my ageing i5-2500K, so I decided to start from scratch.

First order of business: Something to manage VMs and containers. Second: a decent firewall. Third: One app, one container.

I ended up with:

• Proxmox as VM and container manager
• OPNSense as firewall. Server has 3 network cards (1 built-in, 2 on PCIe slots), the 2 add-ons are passed through to OPNSense, the built in is for managing Proxmox and for the containers .
• A whole bunch of LXC containers running all sorts of stuff.

Things look a lot more professional and clean, and it’s all much easier to manage.