Sorry to clarify: updates come as security or as feature updates. If I’ve already got a standard operating environment (SOE) with all the features I/staff need to do work, I don’t need new features.

I then have to watch cves with my cve trackers to know when software updates are needed and all devices with those software get updated and the SOE is updated.

I can go on a rant about how bad the Linux has recently made my life as someone’s policy is that any Linux bug might be a security vulnerability and therefore I now have infinite noise in my cve feed, which in turn is making decisions on how to mitigate security issues hard, but that is beyond this discussion.

So in short I’m only talking about when you update, updating only security fixes, not the software and features. Live patching security vulnerabilities is pretty much free low effort, low impact, and in my personal opinion, absolutely critical. But software features patching can be disruptive, leaves little to be gained, and really only should be driven for a request to need that feature at which point it would also include an update to the SOE.

Inertia is just a sign of maturity. It’s fine. Nothing wrong with it. Especially when the new stuff is happening along side it. In 10 years there may be people asking why you’re using arch or nix, when whatever new thing is superior. But it’ll just be proof that nix can run in production for 10+ years.

Yeah I have constant crashes back to login screen but never have I seen a kernel panic except before a system boots. Mm a few exceptions

Oh you got a good chuckle out of me

They probably have been using it for years, and for the last more then a decade I’ve been using Ubuntu as my main Linux distribution since I have work to do and I’ll get to doing work faster in ubuntu than any other distribution.

Why did I start with Ubuntu? 10+ years ago Ubuntu was lightyears ahead for community support for issues. Again, I had work to do, I wasn’t hobbyist playing “fuck windows”.

In fact look at things like ROS where you can get going with “apt install ros-noetic-desktop” and now you can build your robotics stuff instantly. Every dependency to start and all the other tooling is there too. Sure a bunch of people would now say “use nix” but my autonomous robotics project doesn’t care I am trying to get lidar, camera, motors, and SLAM algorithms to work. I don’t want to care or think about compiling ROS for some arch distribution.

I won’t say I don’t dabble with other distributions but if I’ve got work to do, I’m going to use the tools I already know better than the back of my hand. And at the time, when selecting these tools, Ubuntu had it answered and is stable enough to have been unchanging for basically a decade.

Oh and if I needed to, I could pay and get support so the CEO can hear that risk is gone too (despite almost every other vendor we pay never actually resolving a issue before we find and fix it… Though I do like also being able to say “we have raised a ticket with vendor x and am waiting on a reply”).

From my perspective, if used for work, automatic security updates should be mandatory. Linux is damn impressive with live patch. With thousands or even tens of thousands of endpoints, it’s negligent to not patch.

Features? Don’t care. But security updates are essential in a large organisation.

The worst part of the Linux fan base is the users who hate forced updates, and also don’t believe in AV. Ok on your home network that’s not very risky compared to a corp network with a million student and staff personal information often with byo devices only a network segment away and APT groups targeting you because they know your reputation is worth something to ransom.

I’ve been thinking of running something using second hand usb cameras and raspberri pi 3+ since my switch already has poe and my nas has 40tb.

I have a 3d printer so a wall mount enclosure shouldn’t be hard either.

Was thinking of mounting them on the window frames indoors.

Nvr software like this might work: https://github.com/seydx/camera.ui

Tailscale will allow me to access the Web front end anywhere on my devices. Individually it could hold the RPis too just for remote troubleshooting later if anything happens.

Personally I’d like to reuse as many things that I already own and have no specific reliance on a vendor. If I got a rstp camera later, I wouldn’t need a pi to host the camera. But I’ve got a couple of pis and a couple of usb webcam to start. It won’t work for night mode so I’ll have to make sure the outdoor lights are triggered by motion.

But I’ve not done anything yet this is all how I’ve thought about it in my head. So I’m watching this space to learn more too.

I’ve seen similar on my desktop on proton when on wake it crashes the display manager and shows my locked desktop unlocked with all the running applications before it finishes crashing closing all my applications and then going back to login screen.

You’re right. Both cloud services (like Microsoft 365 measured by licensing) and azure each individually are about double Windows. They together make over half of Microsoft’s earnings while Windows is like 16%. Then you’ve got games and linkedin and others filling up the smaller %.

Microsoft doesn’t need Windows, you can run your office 365 off Mac or Linux for all they care. Just host all your virtual workloads on azure regardless of OS if it’s not serverless, and they’re fine with taking that money.

This thread teaches me that generally, most Linux people are looking at windows. Meanwhile Microsoft only thinks Windows is 16% of its business.

Basically, it seems, most Linux users do not think hard about Microsoft.

What do you do with Home Assistant?

“Oh well I automate a noise complaint form submission. It’s integrated with my noise level detector and with a custom python lookup for the most recent airplane departure”

(that guy probably)

Yeah, my mum isn’t going into the shell. She’s 65.

I don’t really like the idea of ‘beginner friendly’ like ‘you’ll get better and start doing it the real way’. It’s not some esport where it’s easy to play and hard to master, it’s a toolbox where it’s only job is to get out of the way of you accessing your tools.

Operating systems are middleware.

Yes, you’re right about voltage and amp combined, but the problem is modern phones and their charges don’t generally want to be doing high amps at 5v, they increase their voltage to 9v, 15v or, 20v. Which like you would point out, is not the right voltage.

Personally I just feed 5v in via a ubec like this: https://core-electronics.com.au/ubec-dc-dc-step-down-buck-converter-5v-at-3a-output.html since I usually have some kind of 12v battery powered thing going on with mine and lots of 12v ac-dc adapters for bench testing and charging. Lots of ways to power them but it’s definitely not just ‘grab your usb-c charger and it’ll be right’ which can be frustrating for people since it’s almost all other usb-c things will ‘just work’.

After installing mint, and you find a problem, just live boot mint again.

You can do a lot in live boot including mount your permanent copy even the kernel. Whatever is missing you can download put onto the installed hdd or usb storage, and then install.

Ask me how I know. Lol.

Telegram isn’t encrypting chats (only secret chats).

As far as reproducible builds telegram has got instructions and caveats or excuses around builds for the same issues signal does: https://core.telegram.org/reproducible-builds#reproducible-builds-for-ios

Both easily make Android reproducible builds. This Twitter message is a rock being thrown in a glass house, knowing most people who consume Twitter like it’s a firehose, won’t swallow the nuance of the details.

I don’t even, not to complete lengths.

Reasonably sure they mean telegram. Only secret chats are encrypted. Telegrams chat otherwise is basically transport layer encryption.

https://www.wired.com/story/telegram-encryption-end-to-end-features/

Oh I think I’ve met you! You must be my coworker!

Just joking of course, looking fun of a privacy focused person while making a point my coworkers also don’t read. I’m glad you didn’t delete the post though, I enjoyed the journey. You did read, you’re better than my coworkers.

Now I’m not part of this, but a international student just got scammed $170 000 dollars over 3 months. They believed that the police had seized their Australian bank account and were contacting them related to their identity being stolen. It wasn’t at the time of call, but the international student, maybe 25, was fully profiled. They knew where he studied, who they had been talking to. At the time of call, the poor kid thought he was talking to the police, gave every bit of information including bank account which had mfa, but undid it and and followed the scmmers requests believing he would be deported. He called home to his parents and asked them for more money even in order to build a new account because he believed is other one was frozen, the new account was under order and control of the scammer who this kid trusted. The scammer even made this kid move into a hotel for a week as their “premise needed to be searched” it wasn’t for a month after this that it was found because the kid believed he couldn’t tell anyone before the school (where he was attending but kept leaving to take calls which is a no no) had to tell the kid that absenteeism will result in the student visa being cancelled. At that point it all came out, month and more of being scammed.

My point is, no it’s not business. Just look at the YouTubers, just watch Jim Browning. Just ask people, it’s a multi billion dollar industry. And it’s not limited to rules like ‘business’.

There are massive collections of databases online that find where breaches have occurred allowing attackers to dump the database of that service, then collect all those database dumps together to identify all known accounts under an email address. Then once that email account ever has a password breach attackers can look up and see ‘was this password used also on other accounts’ and attempt to use the same email and password on them. Moreover they will just try that email regardless of known affiliation, if they already have a user name and password across many online services, it’s safe to assume this will work sometimes. This is the essence of a credential stuffing attack.

https://www.abc.net.au/news/2024-01-19/what-is-credential-stuffing-scams-how-to-prevent-and-protect/103367570

https://www.abc.net.au/news/2023-05-18/data-breaches-your-identity-interactive/102175688

I’ve used abc here since I believe they write better for a lay person.

Edit: I should mean to say, they can also create a profile of you and your many email addresses as demonstrated.

You realise if it’s saved you can now use features that are built into the software, that get saved, like using ‘track changes’ to accept or discard edits granually. You have file system level version control to choose previous versions, you have an undo feature built in. Three different tools to use.