By posting another question here I realized, that I really enjoy games which are ‘short’ (Play start to finish in around one hour) and have lots of replay value....
When watching movies, I always try to differentiate between my personal enjoyment and the inherent merits of the movies. There are a lot of bad movies, which I totally and thoroughly enjoy watching, and some really great movies, which I don’t enjoy that much, but still can respect/appreciate....
I am not a member of the Anti-Snap crowd (although of course the server sources should be open source), but there is obviously a lot to improve. Flathub/Flatpak should also take note!
I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:...
Seriously, unless you are extremely specialized and know exactly what you are doing, IMHO the answer is: Always (and even being extremely specialized, I would still enable a firewall. :-P)
Operating systems nowadays are extremely complex with a lot of moving parts. There are security relevant bugs in your network stack and in all applications that you are running. There might be open ports on your computer you did not even think about, and unless you are monitoring 24/7 your local open ports, you don’t know what is open.
First of all, you can never trust other devices on a network. There is no way to know, if they are compromised. You can also never trust the software running on your own computer - just look at CVEs, even without malicious intentions your software is not secure and never will be.
As soon as you are part of a network, your computer is exposed, doesn’t matter if desktop/laptop, and especially for attacking Linux there is a lot of drive by attacks happening 24/7.
Your needs for firewalls mostly depend on your threat model, but just disabling accepting incoming requests is trivial and increases your security by a great margin. Further, setting a rate limit for failed connection attempts for open ports like SSH if you use this services, is another big improvement for security. (… and of course disabling password authentication, YADA YADA)
That said, obviously security has to be seen in context, the only snake oil that I know of are virus scanners, but that’s another story.
People, which claim you don’t need a firewall make at least one of the following wrong assumptions:
Your software is secure - demonstrably wrong, as proven by CVEs
You know exactly what is running/reachable on your computer - this might be correct for very small specialized embedded systems, even for them one still must always assume security relevant bugs in software/hardware/drivers
Security is a game, and no usable system can be absolutely secure. With firewalls, you can (hopefully) increase the price for successful attacks, and that is important.
Recently I stumbled over an article, about how to customize your shell prompt. What really surprised me, is that it lacked one of the most basic tips I learned nearly 20 years back: Always display a timestamp in the prompt, to be able to check how long a process is running or when it ended. (Don’t need it daily, but every so...
What are your ‘defaults’ for your desktop Linux installations, especially when they deviate from your distros defaults? What are your reasons for this deviations?...
At the moment I am using Debian Bookworm and I can setup/configure 100% of my setup automatically everything via Ansible. (Only thing left after the Ansible script is login to my online accounts/email which I would rather not automate.)...
I got a cheap netbook style laptop for traveling some weeks ago (HP Stream 11" with 4 GB of RAM and a N4120). Didn’t expect much more from this hardware than opening a few browser tabs and doing some retro gaming via Steam....
I bought a HP Stream 11 laptop with an N4120 / 4 GB Ram and 64 eMMC / sd card reader for traveling and one of the main selling points for me was the sd card reader to extend the internal storage easily....
Back then I played Warcraft 3 ladder games and I hit my skill ceiling quite fast because my micro was simply too bad/slow. I still very much enjoy real time strategy games. Is there any real time strategy game that is played competitively with an active community where micro is not that essential? (Ruling out Star Craft 2.)...
Why are there so many different AMD/Intel CPUs?
For years now, I do not buy/create assemble a new computer, because I am totally overwhelmed by the options available to me....
German state moving 30,000 PCs to Linux and LibreOffice - The Document Foundation Blog (blog.documentfoundation.org)
CPU Design: Fetch/Store vs. operating on memory
What are CPU designs which are not fetch/store but operate directly on RAM?...
Short games with lots of replay value?
By posting another question here I realized, that I really enjoy games which are ‘short’ (Play start to finish in around one hour) and have lots of replay value....
What games do you replay regularly/annually ?
Inspired by a similar question on reddit:...
Contra: Operation Galuga - Demo is online, release 12th of March (store.steampowered.com)
Contra is back. A real, honest, bitching 2D Contra....
Turnkey ready immutable distribution to server podman containers for headless raspberry pi 4?
I want to configure a Raspberry Pi 4 as a web (application) server....
Why are Denis Villeneuve's Dune movies loved by audience and critics?
When watching movies, I always try to differentiate between my personal enjoyment and the inherent merits of the movies. There are a lot of bad movies, which I totally and thoroughly enjoy watching, and some really great movies, which I don’t enjoy that much, but still can respect/appreciate....
Exodus Bitcoin Wallet: $490K Swindle (popey.com)
I am not a member of the Anti-Snap crowd (although of course the server sources should be open source), but there is obviously a lot to improve. Flathub/Flatpak should also take note!
Reddit signs content licensing deal with AI company ahead of IPO, Bloomberg reports (www.reuters.com)
Nix/Silverblue users: How big is the advantage if you already have 100% automated your deployments via Ansible?
There is a similar question on the site which must not be named....
Introducing Fedora Atomic Desktops (fedoramagazine.org)
Nice to have common name for Silverblue and co....
When do I actually need a firewall?
I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:...
Bodybuilders with jacked upper bodies and untrained legs: Why?
Surprisingly often I see guys in the gym, which have a totally jacked/trained upper body but untrained legs....
Why do dentists always recommend to brush 2 times for 2-3 minutes?
I almost always read in the news/press that dentists recommend to brush teeth two times a day for 2-3 minutes....
Custom shell prompt tips and tricks?
Recently I stumbled over an article, about how to customize your shell prompt. What really surprised me, is that it lacked one of the most basic tips I learned nearly 20 years back: Always display a timestamp in the prompt, to be able to check how long a process is running or when it ended. (Don’t need it daily, but every so...
Your chosen desktop Linux defaults?
What are your ‘defaults’ for your desktop Linux installations, especially when they deviate from your distros defaults? What are your reasons for this deviations?...
Experiences using immutable Linux desktops?
I am playing around with Fedora Silverblue and openSUSE Aeon and I really like the painless updates....
How to fully automate Fedora Silverblue setup/configuration?
At the moment I am using Debian Bookworm and I can setup/configure 100% of my setup automatically everything via Ansible. (Only thing left after the Ansible script is login to my online accounts/email which I would rather not automate.)...
Google Chrome pushes ahead with targeted ads based on your browser history (www.theregister.com)
Google enables advertisers a look into your browsing history…
ZRAM is insane (www.kernel.org)
I got a cheap netbook style laptop for traveling some weeks ago (HP Stream 11" with 4 GB of RAM and a N4120). Didn’t expect much more from this hardware than opening a few browser tabs and doing some retro gaming via Steam....
Btrfs vs ext4 on sd card show very different performance characteristics
I bought a HP Stream 11 laptop with an N4120 / 4 GB Ram and 64 eMMC / sd card reader for traveling and one of the main selling points for me was the sd card reader to extend the internal storage easily....
Returning to Xfce 4.18 after years of Gnome 3/4 (xfce.org)
After years of using Gnome 3/4 with a modified setup on Debian, I returned to Xfce, and am quite impressed by the state of Xfce 4.18....
Google pushing web DRM into chromium (github.com)
Found on hacker news.
Competitive games for gamers with slow reflexes
Back then I played Warcraft 3 ladder games and I hit my skill ceiling quite fast because my micro was simply too bad/slow. I still very much enjoy real time strategy games. Is there any real time strategy game that is played competitively with an active community where micro is not that essential? (Ruling out Star Craft 2.)...