Securing proprietary hardware against peeps installing alt OSes
In my country that would be a civil offence, not criminal.
I'd recommend at least taking some precautions (e.g. use TLS or Wireguard, firewall if possible).
There have been many improvements in making documentation more inclusive across the IT industry which shouldn't be scoffed at. The first that comes to mind is changing "master" and "slave" to "primary" and "secondary" (or "replica" etc.) because references to slavery is inconsiderate to many.
I don't think pile-ons are productive, but I think inclusive language and thinking is important.
Lineage is kinda bad privacy and security wise, from the little I know its not fully degoogled
My understanding is kinda the opposite:
- GrapheneOS ships with a sandboxed, FOSS Google Play Services which can optionally do a bunch of Google things (use their APIs, login to Google etc.) plus they have some hosted services that can substitute Google services (like geolocation).
- LineageOS basically doesn't ship with any Google Play style API/frameworks at all. It's a pure AOSP experience. Any apps on F-Droid work but third party apps (like ones found on Google Play) are hit and miss. If you can just use F-Droid for all of your apps then LineageOS is probably a much more private and secure offering.
- LineageOS for microG is an unofficial fork of LineageOS which includes a FOSS Google Play Services compatibility layer, a bit like GrapheneOS. As far as I know it doesn't have the same level of sandboxing as Sandboxed Google Play on GrapheneOS.
Both GrapheneOS and LineageOS publish monthly updates with upstream security patches for all supported devices.
Both GrapheneOS use network-provided DNS by default.
Apparently both GrapheneOS and LineageOS connect to connectivitytest.gstatic.com via http as a Captive Portal test by default,althoughh this was as of 2019-2020 and both might have changed since then.
Something that often gets missed is the difference between packaging conventions between distros.
For example, Debian has Apache httpd packaged as "apache2" and has wrapper scripts for enabling sites. Fedora/RHEL has "httpd" and includes conf.d from the main conf. Arch also has "httpd" but doesn't have a conf.d out of the box. Of course you can pretty much configue Apache to your heart's content and have an identical setup between all three distros.
From what I've read, Debian tends to patch and change software to fit more into their overall system whereas Fedora and Arch tend to be more upstream.
RPM and Arch both have group packages and metapackages. Debian just has metapackages AFAIK. Debian also has "recommended" and "suggested" levels of soft dependencies, the former which is enabled by default. RPM has the capability for weak dependencies but AFAIK most RPM distros don't use it. Arch doesn't have soft/weak dependencies AFAIK.
When you install a new system daemon on Debian, it's generally enabled and started by default, whereas RPM-based and Arch don't do that.
When I think of the base of the system I tend to think of some of those more subtle idiosyncrasies that tend to spread around the ecosystems, like Ubuntu and Debian behave quite similarly for instance.
I much prefer Librewolf. They are a little more transparent about it is, an independent, open source repackaging of Firefox with Arkenfox(ish) patches applied to it, rather than an entity which signs up for deals with other businesses.
Bash scripts will only get you so far and I can wholly recommend Ansible for automation.
Basically the main advantage of Ansible is that its builtin tasks are "idempotent" which means you can re-run them and end up with the same result. Of course it is possible to do the same with bash scripts, but you may require more checks in place.
The other advantage of Ansible is that there are hundreds of modules for configuring a lot of different things on your system(s) and most are clear and easy to understand.
ntfsclone /dev/sdc /dev/sdb
/dev/sdb was a blank filesystem and /dev/sdc was my Windows filesystem.
It ran for less than a second and didn't take me long to figure out what happened. That's the story of how I stopped using Windows.
Trying to talk to a human at the big tech companies is nigh impossible these days. It's actually quite concerning how unaccountable they have become. If a billionaire can't do it, what chance do us commoners have?
We really didn't say the same thing
It's more complicated than that. He offered to go to Sweden to face charges on the proviso that he was guaranteed to not be extradited to the United States. Sweden refused, the charges expired and the US extradition process started in the UK.
https://en.m.wikipedia.org/wiki/Assange_v_Swedish_Prosecution_Authority
I have a bicycle crate in my rear rack (40L from memory). I can just throw my backpack and/or shopping in there and be on my way. No issues transporting when empty. I avoid riding in the rain but I guess a waterproof bag would help for that. It's durable, the main concern is the rear rack. I had to replace the cheaper rack that I bought last year after the welding snapped in a few places over time (I had it held together with duct tape for a while). My new rack should be much more sturdy this time around.
I have access to borrow a car which I do every few weeks so I don't need to over engineer my bike setup too much.