It can and will work, but it will not be optimal. You will be able to connect to other peers, but other peers will not be able to connect to you. This usually isn't a big deal, but it's not great in situations where there are not many peers, and you need every connection you can get.
Why would you strip ipv6 if mullvad supports it. The reason people disable or block v6 are for 2 reasons, ignorance, and/or the vpn providor doesn't support ipv6. V4 and v6 can and usually do run at the same time (this is called dual stack), so if the vpn only touches the v4 side of things, v4 will be tunneled while v6 will be unaffected.
Also, the firewall doesn't matter if you use a torrent client that can just bind to the wg interface (assuming there is no nat being performed from the wg interface to the physical interface). The client will take one or all of the ips on the interface, which will make it impossible to leak IP directly assuming your switch or router doesn't also have an ip in the same subnet as your wg interface ip.
I don't know UFW, but if you run iptables-save or nft list ruleset i can take a look to see if it is sane.
But what i can tell is that it might work. You appear to be only allowing public traffic to wg. It should be noted that this setup will likely fail at some point because you are hard coding the IP. It should fail safe, but the public internet will not work.
Bottles is pretty good. It's available on flathub.
Maybe, but in practice nothing happens. Microsoft has had numerous issues reported to them before, years ago, and the issue reported to them was never fixed or taken seriously. Then years later, the issue is sometimes rediscovered and they find the report from years earlier, and nothing happens.
Until legislation gets passed to force companies to take liability of their software, nothing will change.
I know btrfs alone doesn't replace unraid on its own, but it does replace or at least substitutes most of the raid functionality. Btrfs is extremely flexible and it's raid features are almost unmatched in capability for running in small environments where you may need to increase or decrease the number disks in an array at will and without much limitation.
If you want a gui to manage various linux systems, you could look into cockpit. It can manage VMs, containers and other linux systems via a unified gui. I would recommend fedora if you want to give it a go.
But you do you. I have not really had the desire to use unraid since i already know linux and manage the system myself without many tools, but i understand most people do not know linux that well and learning is a significant time sink.
Many ISPs are no longer handing out even 1 public ipv4 address per account, and instead opting for CGnat which further breaks and stratifies the internet.
Tmobile for example is 464xlat which is even worse than cgnat since it requires tampering with dns responses.
Given the situation many ISP are in, most serious companies offering services on the internet have supported ipv6 for a long time now in order to offer the most competitive service possible. And with cloudflare now serving up a large amount of traffic, a lot of all traffic is v6.
BitTorrent v2 allows this also. In v1, torrents with multiple files are hashed continuously (cat) together without respect to file boundaries. A side effect of this that many people notice is that to grab a specific file may require downloading some of the files before or after the one you want.
Under v2, each file is hashed separately, so this fixes the aforementioned problem and should allow sharing of files across torrent files.
Email isn't that secure anyway (don't use email if your life or freedom depends on it), so I don't see that as much as a downside.
It only applies to network devices that respect the setting. However, if you are using windows, for machines you care about, you can just configure DoT.
https://www.linkedin.com/pulse/secure-your-internet-connection-dns
Android also supports DoT, as does firefox as I mentioned above. For any given device you can search for "android DNS over TLS" and get info to see if it can be easily turned on.
However, also keep in mind if you are using Windows, then using DoT is like putting a bandaid on a gushing wound. The underlying OS is not trustworthy.
Probably to verify email addresses on signup.
No matter what you choose, encrypt the data you store to avoid drama.
You could take a look at wasabi. Keep in mind that I think they have minimum commit. So if you add 1tb of data, you are charged for storing it a minimum of a few months.
Backblaze b2 and cloudflare r2 are also options.
Google drive is also a decent storage platform at a reasonable price. 9.99/mo for 2tb. You can check the rclone matrix for features and alternatives.
dragonfly4933
joined 2 years ago
Boot issues on Linux are like most of the other problems Linux has, there is no standard way to do things, so people invent their own ways, and it results in the problems we see today. This doesn't just apply to booting, it also particularly includes dns and network management. Combined with the fact that its a low level thing people don't want to deal with, it gets left to rot. Few understand it leading it frustration.
Grub isn't a simple tool because it's not solving only simple problems. A simple situation would be booting a VM, where something like systemd-boot is probably preferred over grub since the heavy lifting should already be done by the host OS at that point.
Also, it's not grub that is usually broken (grub did load after all...), it's something else like a bad or botched update or something similar that breaks support for some hardware or the initramfs got messed up. I frequently encounter servers that suddenly stop booting and get stuck in either the initramfs or at grub, and selecting an older option usually gets me back into the os proper. Also, I have noticed it's most often ubuntu that gets messed up while rhel and friends are much less likely to break. Breakage on arch is usually the result of specific user error, or some incompatibility was introduced.
In your case, the issue could have been (just guessing) a new kernel was installed, but the config tool might not have been run to create the new references. It's not exactly grubs fault if the thing it was suppose to point to no longer exists. Simpler systems like arch do not have this problem at all since the kernel is always overwritten in-place, so the references are unlikely to ever get broken, but this is not without pretty annoying tradeoffs.
I didn't think to check the number of patches, but as you can see, a lot of those patches have nothing to do with x86 specifically, and some relate to the scripts to implement or change behavior for their distro. If you check Arch, it has not nearly as many patches and still works fine. https://gitlab.archlinux.org/archlinux/packaging/packages/grub
You are correct that grub probably is the better part of an OS, but so are most other bootloaders that actually implement useful features (UKI IS linux, for example). systemd-boot implements few extra features like filesystems and lvm. On Linux, it's not the end of the world since you can pack in much more stuff in the initramfs to support more filesystems and other interesting behaviors.
I can definitely agree that grub is not very actively maintained, and there are even some outstanding bugs and fairly important and reasonable feature requests that are sitting with ready to apply patches. But grub is also a mostly complete project. Most things boot fine with it as is, and it's not like the EFI spec is constantly changing requiring regular updates. It's also probably fair to say that working on grub probably isn't a walk in the park due to how low level it is.
To be more clear on how I implemented my little scheme, neither grub or a script actually sync anything. I have two completely independent ESPs that are not synchronized automatically in any way. But because the grub EFI binary supports btrfs, it can just point to /boot in whatever btrfs filesystem which is where most of the configuration actually is. In this way, the dual ESPs are generated once and occasionally updated whenever I feel like, and /boot can continue to be managed by mainline scripts without any customization, such as mkconfig whatever initramfs build tool since the mirroring is completely transparent.
It simply is not possible to replicate this without grub since no other bootloader (to my knowledge) supports btrfs, or any other raid capable abstraction. You could get close by including additional scripts to ensure the appropriate configs and images are synced, but that is another point of failure.