Illiterate Domine

There are many ways to setups full disk encryption on Linux, but the most common all involve LUKS. Providing a password at mount (during boot, for a root partition or perhaps later for a “data” volume) is a but more secure and more frequently done, but you can also use things like smart cards (like a Yubikey) or a keyfile (basically a file as the password rather than typed in) to decrypt.

So, to actually answer your question, if you dont want to type passwords and are okay with the security implementations of storing the key with/near the system, putting a keyfile on removable storage that normally stays plugged in but can be removed to secure your disks is a common compromise. Here’s an approachable article about it.

Search terms: “luks”, " keyfile", “evil maid”

.bak gang rise up.

The difference, as I understand it, is Beeper hasn’t claimed to not be doing that. Sunbird/Nothing touted E2EE and that was a lie.

Plasma isn’t a KDE OS, but Neon is.

Here’s a link to the anchor

Often, if an rss link isn’t on the page, there’s still a feed available. /rss and /feed are the most common places to find it.

I’d be interested in utilization data before and after that change. Anecdotally, I use Signal much less after SMS was removed. With one app, I could opportunistically use Signal, when the other person had it, and send an SMS otherwise. Now I have to decide what kind of message to send before opening an app and learning my options. Most of those quick messages have moved back to SMS for me.

Most self-hosters are probably using dns services through their registrar, but you don’t have to. A registrar with poor api support might still be a good choice, if that was the only negative.

Well, I’m back and can confirm the sneaky DNS resolver. I have two roku devices and they both were making requests to 8.8.8.8.

Thanks for this post! TIL.

Interesting. I set an adblocking dns via DHCP and, as far as I know, the Roku respects it. Ads are blocked and I can see it failing to delivery telemetry in my dns logs (most persistent thing on the network).

I set a rule to catch outside dns to see if anything, the roku included, has been misbehaving.

DNS blocking (Pihole, adaware, nextdns…) Can take care of those ads on dedicated streaming boxes.

The first line is Marx, but the rest is Adam Smith. Book 1, Chapter 6 of Wealth of Nations.

As soon as the land of any country has all become private property, the landlords, like all other men, love to reap where they never sowed, and demand a rent even for its natural produce. The wood of the forest, the grass of the field, and all the natural fruits of the earth, which, when land was in common, cost the labourer only the trouble of gathering them, come, even to him, to have an additional price fixed upon them. He must then pay for the licence to gather them; and must give up to the landlord a portion of what his labour either collects or produces. This portion, or, what comes to the same thing, the price of this portion, constitutes the rent of land, and in the price of the greater part of commodities makes a third component part.

git

I do and it works great! I mostly did this to limit the blast radius of breaches, but aliases also provide an easy way to send those kinds of things to both me and my spouse.

Santa?

Free and Open-Source Software

konsole is low-key a great terminal. It’s really snappy, supports ligatures, and looks good. It’s one of my favorite KDE applications and the one I miss most when it’s not available.

Yes, wget is available, along with pretty much everything else you’d expect from a linux environment.

No, root isn’t required.

We did a “bring your dog to work day” at my workplace and this is pretty much how it went. By noon, all the dog-bringers had taken their pets home.

If you have a phone number on the account, you can do an SMS reset. If not, I guess it’s “open a ticket with a throwaway” time.