Docker to Podman, absolutely. Also checkout using base images instead of random intransparent downstream ones.

VMs are debatable. They are nice for separating things way better than docker does.

As distro, NixOS is very custom and you will want to learn its way. Arch does not make sense I think, but you can use anything as a server.

Otherwise Alma or Debian? Try HeliumOS too! Or uBlue uCore

The video is the same. The audio is adapted to the video.

.mkv containers can include many things, mp4 only one audio one video afaik

Using ffmpeg you can extract audio and video and combine them how you like into an mkv or whatever. Very powerful tool

Handbrake if you prefer learning a complex GUI

This

You can use an external ssd adapter too, or clone an existing install with Clonezilla (but should be resizable)

Well yeah but if the example is Yunohost and web interfaces, this makes sense

Will not support complex firewall setups or even AI scraper protection, wireguard tunnels, tailscale/headscale/whatever alternative but it is an easy docker frontend I guess

“So we have this procedure in Excel which the entire department relies on”

Hm, I only ran update-grub

Ran update-initramfs from the chroot trying to repair it

Found that there is a cleaner way in /etc/default/grub with grub commandline arguments. But that wants a source= variable which is weird to me as that hardcodes a drive in there that wasnt there first?

Tbh I will try this on a secondary laptop now, I reinstalled that thing like 5 times now and am a bit traumatized XD

Luckily we have more than enough

Interesting that might be the case. The install was Deb12, updated to 13. Might not have updated the grub.

But this happened AFTER the 13 upgrade, not before. So rather a newer grub version.

Thought of this too

Something has to be done though

You are looking for an outbound firewall

Like the others recommended

OpenSnitch has multiple detection ways, eBPF might require activation in the kernel, there are others too, 4 in total

For me on NixOS it worked in eBPF and proc mode. NixOS’ weird binary placement makes rules less secure I guess as it can only check commands (if it were nix-native it could use a function for that)

And I had tons of "unknown process"es which I needed to allow to not break things, which kinda makes the thing useless

I would VERY much appreciate a court ruling that makes spreading misinformation and propaganda illegal

So why do they speak german legalese?

Damn people pay that much? I get why people pay seedboxes, such a win

Kann sein? programming.dev ist aber auch englisch XD

Ok dann fickt euch halt XD

Auf der cooleren Instanz gibts bessere Laune

Minetest gets scary when you look at the code and see that the engine they use is basically abandoned and will never get Wayland support. Afaik?

https://github.com/zed-industries/zed/issues/7054#issuecomment-1916315391

They auto download binaries, even proprietary ones, unsigned and without user interaction.

YEAH security!

There is literally not a single useful comment here.

You have packages from outside the official main repo, in the universe repo.

You are using a stable Distribution so packages are frozen and need backported security updates.

You dont get them for the optional universe repos, but if you give them a bit of money (or afaik Ubuntu pro is even free for a few devices) then they will also support these 3rd party packages.

It is an optional service, they warn you that you use outdated packages, and offer a solution.

I dont use Ubuntu and Snaps are crap, but this is totally fine.

Its how Linux works lol. I mean there are tons of things per compositor.

The protocols are way cleaner and less, so it is easier for Distros to just write their own.

But for sure it is annoying that everyone wants to do their own. But that is not a Wayland problem, just nobody wanted to mess with XOrg.

No the implementations are per-compositor. The fact that this worked on X is due to.XOrg being a huge blob that every window manager relied on.

Look for the command in Mutter (GNOME), Kwin (KDE), or whatever DE you use.

This will be possible and likely available as a command for your specific compositor. What are you using?