Findmysec

joined 4 months ago
[–] Findmysec@infosec.pub 2 points 1 month ago* (last edited 1 month ago) (1 children)

Systemd is no longer just an init system, but the project began with Poettering's dislike of other init systems. I use systemd and I do not like its performance (too slow in some cases).

The tragedy is that being an end-user, it is ridiculously hard to replace systemd on "regular" distros. Admittedly, Debian can be moved back to sysVinit without backbreaking work, but the fact is that distros don't seem to have any intention of providing choice, making applications assume that systemd exists wherever they will be installed. That is the complaint I have against the Linux community

[–] Findmysec@infosec.pub 0 points 1 month ago

Why would you need a GUI for the init?

[–] Findmysec@infosec.pub 3 points 1 month ago (5 children)

Explain how other init systems are necessarily worse than systemd

[–] Findmysec@infosec.pub 12 points 1 month ago* (last edited 1 month ago) (1 children)

I've heard of s6 and runit alongside OpenRC as alternatives. I believe distros should make the init system agnostic of the rest of the software and not force users to stick with what they force them to do. Systemd is really slow.

What infuriates me more than distros playing the heavy hand in adopting it, are applications depending on it (I'M LOOKING AT YOU GNOME). This is completely unacceptable. If I find an application that doesn't work without systemd, I either compile it to see if it will work otherwise or give up on it.

Maybe my view of systemd will change if I delete all of the other binaries and just use the init module. Who the fuck decided to put a fucking log in manager with the init system???? This is the feature bloat that I'm talking about and I hate it

[–] Findmysec@infosec.pub 2 points 1 month ago

I found this but it's from a while back: https://h-mdm.com/advanced-web-panel-installation/

Not too many out there TBH. If I had a daughter she'd be getting a Pixel with Grapehene and a DNS server on it (different user) if she really didn't have any self control

[–] Findmysec@infosec.pub 3 points 1 month ago* (last edited 1 month ago) (2 children)

Create a new user and give explicit permissions via doas + SELinux (corporate style lockdown). And deal with network policies with a DNS filter on your LAN (or maybe run an unbound service on her device with a different user without a login so she can't change the config). Easy

For Android, use a FOSS MDM

[–] Findmysec@infosec.pub 3 points 1 month ago

You've brought a strawman into the conversation, but in short, uBlock is best maintained and tends to be the most robust. Your solution works too

[–] Findmysec@infosec.pub 1 points 2 months ago (1 children)

If I say it here I might dox myself. I'd like for it to be a PGP conversation but I'm not quite there yet either (due to personal reasons). Sorry

[–] Findmysec@infosec.pub 2 points 2 months ago (3 children)

Well, you're right. If the provider I have in mind evaporates one day I'll probably have to do that.

[–] Findmysec@infosec.pub 2 points 2 months ago

Clevis and Tang but even that can only really do so much.

Just encrypt storage on-site

[–] Findmysec@infosec.pub 1 points 2 months ago (5 children)

Just find an unit with unmetered bandwidth, why do you need dedi?

view more: ‹ prev next ›