He/him. Chinese born, Canadian citizen. University student studying environmental science, hobbyist programmer. Marxist/socialist/leftist.

  • 1251 Posts
  • 1152 Comments
Joined 2Y ago
cake
Cake day: Oct 03, 2019

help-circle
rss
What are the benefits privacy wise of having your VPN in the router compared to VPN on the device itself?

I hear a lot of talk in the pfSense community about running a VPN from the pfSense instance, including whether to invest in hardware more suited for that as opposed to just any old SBC or basic computer (namely, whether the processor has hardware encryption). Does it actually provide that much more …


I just LOVE hunting down five .exe files from three different sites to resolve some random compatibility issue with a new programming language! And doing it all again when Windows inevitably breaks itself and needs to be wiped! WAY more convenient than getting the programming language from a package manager!


REMOVED! Reason: User described my life without my consent. /s


Me: Buys a $200 SBC with a powerful CPU and gets all kinds of aspirations of what I can do with it

Also me: Plugs it in, gets SSH working, and then promptly runs out of ideas on what to use it for or never finds the time to get it to do something complex.


Fair enough. I said this in another comment already, but for this reason I really wish there was a viable desktop OS that uses a microkernel, since such an OS can be much more easily designed do secure compartmentalization without the need for VMs or duplicate parallel processes in general. A micorkernel OS still has more computational overhead than one monolithic kernel, but would be much more resource frugal than multiple VMs.


Same. I really want Firefox to succeed because otherwise Chrome/Chromium would be our only real option, but I also really hate what the management is doing to Mozilla right now. That wouldn’t happen if it was a worker co-op and the developers, people who actually maintain the browser, could directly take feedback and made decisions for themselves. It seems that Mozilla is making more “business decisions” lately than decisions that help users or the FLOSS community.


I’m assuming this is because Qubes OS allocates RAM independently for each VM, regardless of how much the VM is actually using? Does Xen not have the ability to use a pool of RAM and just overlap the empty space? I was under the assumption that enterprise level hypervisors could do that. Even if you have five VMs, if four of them are idle, in theory only a little more than one OS’s worth of RAM should actually be filled with active data.


For people who don’t want to or aren’t knowledgeable enough to go through all that trouble, what would you think about just having multiple bootable partitions (presumably with BSD ideally), each independently encrypted with a different password? That way in theory if a single OS instance is compromised, it can’t access the information on any of the other instances since ideally only the currently booted partition is decrypted. You can probably pull it off with some GRUB fu.


Furthermore, Linux knowledge will only help you to an extent with Qubes. You should ideally also be familiar with how Xen works and how it’s configured.


from starters you have a hardware barrier that would prevent a lot of people from using it

What hardware barrier? I was under the assumption that you just need virtualization support in your CPU (which almost every consumer model also have nowadays), as well as simply more RAM for storing the parallel running operating systems.


Qubes is good for security between computing contexts on the machine itself (though, not perfect as you mentioned), but by itself isn’t meant to anonymize you on the internet.

Daniel the guy that does GrapheneOS basically says that its compartmentalizing garbage because linux isn’t built with security in mind.

Is Linux not designed for security? I’d have assumed it’s one of the more mature security wise due to its prevalence in servers.

Either way, I guess you can use BSD in the containers if that’s a real concern. Though, this is why I wish there was a viable desktop microkernel OS. Such an OS might even be able to replace the need for a hypervisor like in Qubes, if it has built-in compartmentalization for userspace programs.


Mozilla should really be a worker co-op. There have been cases where management wanted something (usually to remove a feature they thought wasn’t commonly used) which even the developers objected to and were ignored.


Where Can’t You Get Gas, Milk, Bread, and Beer? Welcome to Soviet Britain

Capitalist government: fucks up and causes massive shortages for its citizens.

Capitalists: Hey, communism bad right?






@aldatsa@lemmy.eus Spam alert! Can you ban this user from your end?





















Contradictions
image

It’ll make much more sense when you realize that non-citizens aren’t covered by universal healthcare so the 10-day quarantine is pure profit for the government. …

12
image

Contradictions
image

It’ll make much more sense when you realize that non-citizens aren’t covered by universal healthcare so the 10-day quarantine is pure profit for the government. …

3
image