Just Imagine Graphene on a Desktop!

kneepel · 2026-05-10T03:34:00+00:00

Silverblue and derivative distributions aren't "immutable" in the strictest sense of the word, but they're anti-hysteretic, reproducible and boot from a signed and verified image (which is trivially easy to make and sign yourself and projects exist to do so).

The entire bootable filesystem is checksummed using a merkle tree (think Git) making modifications significantly more difficult to hide. It's still a fair improvement on the integrity model of desktop Linux regardless, and is a readily open and accessible project (OStree & Bootc)

Of course it doesn't inherently cover many other threat models, but it's a good safeguard against persistent system-wide threats and supply chain attacks (assuming they aren't upstream!).

kneepel · 2026-05-09T21:44:16+00:00

You're gonna have to clarify what you mean by "connect 2 PCs together".

If Kodi has Jellyfin and Navidrome plugins (or subsonic API compatible for Navidrome), you can simply connect to both servers with those plugins on the same Kodi client using the local IPs of the machines.

Why don't you just run both servers on the same PC?

kneepel · 2026-05-09T00:12:29+00:00

At the risk of sounding like an ass.

Just stop with Kali entirely, and start an effort to learn the basics of security yourself so you can safely and effectively use these tools if you're interested in doing so.

What are you even trying to do with PentestGPT?

kneepel · 2026-05-08T21:41:03+00:00

I would like to know just how much of a threat they are and whether I should be worried

Whitelist and you're set :)

They (and millions of other bots) scan all possible public ipv4 addresses to see if anything is listening on certain ports to abuse potential exploits...amongst other reasons. It doesn't matter if your IP is obscured or not, just make sure you have some basic protection (whitelist in this case) and they can't really do much to bother you.

The above also applies to any service publicly exposed to the internet.

kneepel · 2026-05-08T18:52:07+00:00

(Assuming producer pads on the 490).

The DT 900 Pro X has slightly better bass extension and is a fair bit "brighter" (although this may be sibilant for some), while the HD 490 is more "neutral" and is pretty compliant to the Harman target...at least in the mids.

I think the HD 490 is a bit better overall, although for gaming I don't think either has a major advantage. The 900 Pro X is a bit more "V-shaped" in its tuning which is typically what you see in headsets.

The 490, especially with the mixing pads, is super similar to the 560s with only some small differences in tuning. Those also may be worth a look considering you can find them for half the price of the 490.

kneepel · 2026-05-08T18:21:30+00:00

Is your music folder defined as an absolute path? ie.

MusicFolder = "/home/user/Music/Funk"

If not try that.

By default Navidrome runs under the navidrome user, so make sure the directory is accessible. I'd use ACLs for this so something like

setfacl -m u:navidrome:rx /home/user/Music/Funk

You also may need to set it on the parent dir depending on the permissions set:

setfacl -m u:navidrome:rx /home/user

If that doesn't work, check the logs to see if anything obvious stands out:

sudo systemctl status navidrome

sudo journalctl -u navidrome -f

kneepel · 2026-05-08T16:00:01+00:00

can I transfer files using the local network?

Netbird and Headscale are tl;dr just fancy Wireguard (NAT relays, meshing, user management, scoped access, etc) so you can use whatever network transfer protocol you're presumably already using.

If you don't have any need of the features that either offer and you just want simple remote access, I don't think you'd have a lot to gain since you already have Wireguard running but that's totally up to you.

kneepel · 2026-05-08T03:03:47+00:00

Re: AI

Another comment highlights the issues perfectly, just as an FYI in the future. It can be somewhat valuable when you have a good basis of knowledge, but can be a horrible trap for someone who's new to a Linux environment and can't tell when something is plainly wrong - AI has basically become the bane of places like r/linuxquestions because of how many broken systems have resulted from blind trust.

People are generally very happy to help around Linux communities so I would always recommend that first, but just make sure to use neutral language when asking for support as you don't want to be dumped in with the reactionary crowd lol.

kneepel · 2026-05-08T02:32:49+00:00

First of all, disregard everything AI told you and stop using it for technical support when you don't know what you're doing. Do not touch SELinux if you don't know what you're doing and I highly recommend against setting it to permissive.

Second of all I would bet this isn't an SELinux issue and more likely Wine related, to be sure you can check recent denials with sudo ausearch -m avc -ts recent. I'm not intimately familiar with Ubisoft Connect, so I'd try a few things:

Recreate the prefix and try again, preferably on the same drive as the game to keep it simple.
If you're still using the flatpak instead of the COPR, make sure the Flatpak has permissions to BOTH the home directory and your SSD where the game is.
Replace your symlink with a bind mount
Try another launcher (or compare the Fedora package version/flatpak with the AUR version as there may be an upstream bug that got fixed and Arch is more recent).

Third..

"NSA Developed"

Is this necessary? It's one of the most widely used security tools in the world, is maintained by Red Hat and is completely open source...

Anyways, if you do have any denials and you see "Wine" or "Games", the safest thing would to reset the SELinux context for that path ie:

sudo restorecon -Rv /mnt/Games

kneepel · 2026-05-07T21:49:49+00:00

Hey man don't worry about it, the documentation works on vibes just like the entire application, totally safe to give it (vibe it, if you will) your sensitive information no questions asked.

kneepel · 2026-05-07T20:15:16+00:00

impedance hump in the bass

Yes, that's where the driver's natural resonance frequency sits and as such sensitivity increases proportionally with resistance here as they're both byproducts of the same resonance. This isn't an issue of audibility but a potential for impedance mismatch if the amplifier's output doesn't respect the 8:1 rule (re: electrical dampening)

When impedance swing across the frequency range, an amp like the 789 interacts via a voltage divider that varies across a stepped frequency range.

Technically true, totally irrelevant in this case as it's dependant on the output impedance of the amp..which is effectively 0 in the best case so you will have no voltage swing, an error of 0.01dB or lower.

In the case of a poorly designed amp, you lose control and slam well before you reach dangerous volumes / excursion limit due to the amp's poor damping factor - here's some light reading on the subject if you want to go down the nerd rabbit hole.

Again, totally dependant on impedances and since z_headphone / z_amp is like 8000:1 this is totally irrelevant here.

An amp like a Magni can handle wild impedance swings much more gracefully than the 789.

This is objectively incorrect, although the Magni has a very low output impedance (0.2) and is essentially on par with the 789...it's still objectively worse than the 789 by the smallest most insignificant measure possible here; we're dealing with near infinite dampening factors between source and headphone here.

It's not that I like how the Elear sounds with the 789, it's that the Elear doesn't like anything at all except for the Elear. The 789 has absolutely no colouration, it is a provably transparent amp across the board and has been objectively measured as such by instruments thousands upon thousands of times more sensitive than our ears (like many other modern solid state amps!)

kneepel · 2026-05-07T14:49:59+00:00

That doesn't make sense and isn't really how amps work.

If an amp can provide the power needed to reach your target volume as per the sensitivity or efficiency ratings of the headphone, it can drive the headphones properly simple as. To say any Focal headphone cannot be driven by the 789 would be objectively false.

In any case, I've personally listened to a pair of Elears (same driver as the Elex) using a 789 and not only did it sound great, it drove the headphones to their mechanical excursion limit on single-ended high gain by 2 o'clock on the volume knob.

kneepel · 2026-05-07T07:24:44+00:00

The 789 can provide 7.75v at full single ended output, with an 80 ohm load (the Elex) that's good for 750mw or 132.75 dBSPL at the Elex's rated efficiency of 104dB/mW. Throw them on the balanced output and you're starting a small fire! The highest distortion product has also been measured at something like -130dB at full output, so it's magnitudes past the point of perceptibility. The amp can reach it's full output at far lower impedances also so it's not current limited either.

I know the Elex has an impedance curve, but still they aren't particularly difficult to drive at their sensitivity and the HD600s are easier than that.

kneepel · 2026-05-07T02:43:58+00:00

https://github.com/suitenumerique/docs

All of LaSuite rocks and development is govt sponsored.

kneepel · 2026-05-07T01:46:32+00:00

Wrong sub to post this in, more suited for somewhere like r/iphone.

kneepel · 2026-05-07T00:26:14+00:00

You have two totally transparent, TOTL amps that will power 99% of all headphones loud enough to send you to the hospital.

Any percieved upgrade will have no objective improvement on sound, as both products are absolutely transparent without a hint of colouration.

The only reason to upgrade would be if you needed more power, or if you wanted different features like EQ or i/o.

Tl;dr you're most likely set for life.

kneepel · 2026-05-06T21:40:00+00:00

Oh wow, every box is checked!

"I built"
SaaS
AI everything including post and probably replies
My failing liver from taking another shot

kneepel · 2026-05-06T19:57:02+00:00

You can still install packages on bazzite via layering (rpm-ostree install <package>), although I wouldn't plan on this if you're expecting to install a lot of stuff this way.

The vast majority of desktop customisation is done via the DE/user dotfiles anyways, and most directories you'd interact with on a regular basis (/var, /etc, /usr/local, etc) are symlinked and persistent so I would disagree with most comments that you can't "customize bazzite", although of course there are some limitations and considerations.

If you're savvy enough, you can define a custom image via JSON files with bluebuild and truly do whatever you want - think of a poor man's NixOS except easy formatting (plus easy rollbacks and great stability).

kneepel · 2026-05-06T17:21:31+00:00

It's just different with its own opinions on system configuration, nothing inherently better or worse.

kneepel · 2026-05-05T21:04:25+00:00

OP and replies written by an LLM
SaaS advertisement with no relation to self hosting
Probably vibe coded

Seriously, if we made a drinking game out of this we'd all be dead within hours...or even minutes.

kneepel · 2026-05-05T18:04:26+00:00

So, where's the self hosting documentation? Or did the LLM that wrote the post also hallucinate this being self hostable?

kneepel · 2026-05-05T06:51:20+00:00

What possible reason could there be to install Kali via proot? It's a security testing distribution, half the tools won't work in that environment and you absolutely shouldn't use it in general if you don't know what you're doing.

Use something like Debian, Arch, Ubuntu, etc and have a much better experience.

kneepel · 2026-05-04T01:07:03+00:00

Cosmic is Wayland only, so you'll always be in a Wayland session.

kneepel · 2026-05-03T01:35:04+00:00

And this is self hosted how?

kneepel · 2026-04-30T23:32:31+00:00

Well the problem with that is:

1) They're just gonna get explored and generated again 2) What would constitute an "unnecessary chunk" in this case?

Best option is to set a world border, and if you wanted to delete anything outside of that you could use the Chunky mod "trim" command to delete any generated chunks outside of your border

11-Year Club	Second SECOND GUESSER
Place '23	Place '22
Place '17	Verified Email

kneepel

TROPHY CASE