JustEnoughDucks

Hey, something I can maybe help with.

Flatpak IDEs on the main system are not very useful for development. I got rid of mine entirely. I am developing firmware so it might be a bit different from your case, but what I did in have a single arch distrobox where I could install everything embedded-dev-related that had to work together (JLink, nordic tools, code-oss, etc...) on that. Then a few standalone debugging tools like STLink and Saelae logic2 could be installed to the home folder by default and Code could still find them from the distrobox (but they could be installed in the distrobox also). It doesn't even need to have an init system, but I ran into a few problems like having to manually chmod usb devices to give STLink access. Udev rules are also hit or miss in /etc/udev/rules.d, e.g. the STM udev rules just don't work, but nordic does.

High storage consumption is likely negligible (or at least nitpicky) since storage is so cheap nowadays. Your SSD doesn't care if it has 15GB or 20GB of system programs, especially when development codebases and SDKs, games, and media will likely make up 90% of space and almost never share libraries even on traditional systems.

It is funny because electric motors have nearly unlimited* torque depending on the kind. If you have thick enough power cables and winding conductors, you can just keep pushing it harder to get more torque.

It is like the thing they are very good at, besides sound levels, double or triple the efficiency, low/no maintenance, simpler with less parts, no emissions, etc...

Literally the only good thing about combustion engines are their fuel source energy density.

I think the problem is that motorheads see the enshittification of the auto industry as a whole and just say it's because of electric motors because it happened right about the same time as EVs started coming out and try to push back on the wrong thing.

I wish I could use unattended-upgrade.

It literally restarts my server even when I disable the option, leaving it hung if the USB boot key isn't in there.

I had to stop using it, so now I just manually upgrade because that doesn't auto-restart without my permission...

But on this threat model? Why would it not be good?

It has to physically accessed on the PCB itself from what I gather.

There are 2 "threats" from what I see:

• someone at the distribution facility pops it open and has the know how to install malware on it (very very unlikely)

• someone breaks into your home unnoticed and has the time to carefully take apart your vacuum and upload pre-prepared malware instead of just sticking an IP camera somewhere. If this actually happens, the owner has much much bigger problems and the vacuum is the least of their worries.

The homeowner is the other person that can access it and it is a big feature in that case.

Hell, a 12TB WD red Plus in the EU is 300€. $160 for a 14TB is absolute dirt cheap

On the bottles website, it says that the bottles are sandboxes. It has a full subsystem container for each program that is isolated from the main system (according to them I guess).

If you run it through something like bottles offer a bit of protection in that respect?

Sadly, just the store doesn't work for many professional programs and non-free software.

Segger j-link, renesas go hub, Nordic tools, etc... (though AUR solves this on arch distros)

True, but this is a reaction to companies discarding their employees at the drop of a hat, and only for "increasing YoY profit".

It is a defense mechanism that has now become cultural in a huge amount of countries.

Opensuse MicroOS variants kalpa and aeon are probably what they are looking for. Stupid easy to set up and, from what I understand, quite secure.

Downside is that it needs workarounds for some things like Steam Flatpak and such, but that is the nature of atomic distros.

That is not true even a little bit. Look at any inkjet paper under a microscope made after the mid 2000s.

I would be interested to see a figure of people with home servers that have had that happen to them. DoS & pwned yes, especially 15+ years ago before there were good resources, TLS, reverse proxies, or authentication front ends.

I would be very interested to see any stat whatsoever of selfhosters that have gottened murdered specifically because of their server.

It is extremely important to note that in those days, people just opened their, often out-of-date, servers completely to the internet via a DMZ or port forwarding, let ssh be open to the internet, didn't harden ssh at all, and most people didn't use a VPN for downloading.

That is literally like saying that people who light wall torches in their wooden home burned their house down, so let's not use lightbulbs or electricity.