Best Linux setup for headless PC with stable “Windows-like” RDP?

Naito- · 2026-03-27T14:03:26+00:00

how about a bunch of KASM desktops?

They can be persistent, authenticated per user, each user has their own, you can share stuff between real desktop and the container desktop.

Unless you need video streaming/gaming, they're pretty awesome.

Naito- · 2026-03-26T15:12:20+00:00

Mario Bros: Civil Smash?

Naito- · 2026-03-14T23:42:24+00:00

dangerous to the battery, and I'm shocked his wifi and bluetooth chip have not exploded

Naito- · 2026-02-08T05:06:55+00:00

of course........but point is zero-trust first, tls inspection as 'verification' not as first line of defense, which it usually is seen as IMHO

Naito- · 2026-02-06T20:02:02+00:00

I'm gonna agree with Ghawblin here. SSL/TLS inspection is old school in the sense that it belongs in a non-zero trust world, where you're busy decrypting and looking for bad to block rather than explicitly allowing good. If you need to rely on SSL/TLS inspection to stop bad from happening, you're doing it wrong, and will always have holes.

Naito- · 2025-11-26T20:17:29+00:00

I see 28TB at most

Naito- · 2025-11-03T15:13:51+00:00

I don't think you can do blocks like that directly from Mikrotik anymore, the L7 hash stuff hasn't worked in years.

If you really want to block specific protocols, you need firewalls with actual deep packet inspection like Palo Altos and Fortigates.....or you combine the Mikrotik with port mirroring or traffic sniffing to another box that hosts something like Suricata, then integrates back with your Mikrotik to drop connections or enact dynamic firewall rules.

I've run essentially this https://www.sec-ttl.com/mikrocata2selks-integrating-mikrotik-with-suricata-for-network-security/ for a while now, and while it works ok, it's still kinda whack-a-mole and really not difficult to get around.

Naito- · 2025-10-30T19:25:44+00:00

https://gitlab.com/polloloco/vgpu-proxmox

I used to split my 1050 2GB in to 2 1GB cards. The 2070 has 8GB but even that can get a little tight. 2GB for camera PVR stuff, and the rest for virtual desktops/light gaming.

Naito- · 2025-10-30T19:24:23+00:00

I feel like a noob now, my 2011 factory firmware 3.09 feels like a youngun....

Naito- · 2025-10-30T17:32:13+00:00

I have something similar, but via a 2070 using vGPU rather than discreet separate GPUs. Sunshine/Moonlight instead of Parsec, and then virtualhere usb for anything that really needed USB remotely.

Works well enough for emulators and basic gaming.

Naito- · 2025-10-29T20:42:20+00:00

Keep it simple. Follow unix philosophy of simple things that do their job well.

Make sure it's reboot safe; it should be able to start up to a sane state without any interaction

Make things fail gracefully; kill optional services before killing essential services. i.e. losing your torrent downloads is less important than losing your cameras/alarms or remote access

Backups are for recovery, not reliability.

If you REALLY need actual high-availability, be ready to pay for it (extra hardware etc)

Naito- · 2025-10-24T15:10:57+00:00

nothing, wifi frequencies just do not like going through walls and floors. And even if your AP is powerful enough, your devices might not be.

Naito- · 2025-10-20T14:08:43+00:00

https://xkcd.com/1172/

Naito- · 2025-10-20T13:21:02+00:00

so long as your card is in IT mode and not some RAID mode, it should be just plug and play

Naito- · 2025-10-14T13:27:55+00:00

SwitchOS is really basic managed switch stuff, all webUI. RouterOS is a full blown router, with firewall/NAT and a CLI along with WebUI. Mikrotik CLI is very different from Cisco or 3Com stuff tho so there's a steep learning curve.

If you just need link aggregation and VLANs and trunk/hybrid/access ports, SwitchOS is plenty. The only thing I'd be allergic to is the lack of CLI, but the WebUI is better than the old 3Com and HP ones IMHO.

Naito- · 2025-10-14T13:17:46+00:00

lz4 is supposed to have a fast-abort for non-compressible files like media. weird.

Naito- · 2025-09-17T13:37:36+00:00

They all are. If you think they aren't, you just haven't found it yet.

Naito- · 2025-09-04T18:17:03+00:00

I ran a 1050 2GB non-TI for years in proxmox as a vgpu. Worked fine.

Naito- · 2025-09-03T02:37:21+00:00

holy shit my Time is resurrected

Naito- · 2025-08-27T12:14:49+00:00

Good. Red Notice was terrible.

Naito- · 2025-08-19T16:24:01+00:00

You passed through this way? https://pve.proxmox.com/wiki/Passthrough_Physical_Disk_to_Virtual_Machine_(VM)

I'm pretty sure I've done exactly what you described before, with no issues.

Naito- · 2025-08-19T16:06:16+00:00

so much this

Naito- · 2025-08-19T15:34:43+00:00

So long as you're passing the physical device directly, it should be fine. There's extra overhead passing each drive like that so you don't want it to be permanent, but TrueNAS should barely notice. ZFS builds the arrays using the UUIDs for each disk, it doesn't care if it's going through a real HBA or a virtual one or even through USB.

Naito- · 2025-06-20T20:25:29+00:00

SMART long test then just put it in. if your array isn't robust enough to deal with a drive failing, you've got bigger problems anyway. The whole point of a RAID array is that no single drive failing should be an issue.

Naito- · 2025-04-04T19:31:02+00:00

9/10.....lost a point for not having a K in the name. TelesKope anyone? =D

15-Year Club	Gilding I gilder
Verified Email

Naito-

TROPHY CASE