pukeko

joined 1 year ago
[–] [email protected] 7 points 4 months ago (1 children)

I think about it like this:

Layer 2b: ->> User applications (flatpak, nixpkgs, etc.)

Layer 2a: ->> User data (mutable, persistent no matter what your system layer is)

Layer 1: -> System (immutable/read-only/updated "atomically" meaning all at once) 

Layer 0: Hardware

Or, alternately, it's what macos has been doing with absolutely no fanfare for several versions now. That's not a knock, btw. It's an illustration that it can be completely transparent in use, though it may require some habit changes on linux.

[–] [email protected] 3 points 4 months ago

Out of the box, I love Vanilla OS's color scheme and wallpaper, with Fedora in second place for a default Gnome environment. I like the Pop_OS theme. I use River WM with a gruvbox theme (Vivaldi with no open tabs pictured), which is about as far from out of the box as you can get. Incidentally, I've been team light theme forEVER, but I've switched with gruvbox.

desktop screenshot

[–] [email protected] 12 points 4 months ago (4 children)

The thing I've learned in the many years of watching this fight is that the things Gnome people (of which I am one, though I have immense respect and appreciation for the KDE project) don't like about KDE tend to be the things KDE people like about KDE and vice versa.

[–] [email protected] 1 points 4 months ago

Nothing, but I'm experiencing substantially the same behavior attempting SMB.

[–] [email protected] 3 points 4 months ago (1 children)
  1. I have tried with firewall enabled and disabled (and added the rule for the enabled firewall)
  2. I will check autoblock. That's one thing I haven't checked.
  3. I followed the DSM-7 task setup.

All fantastic suggestions, btw, but my hair-pulling is coming from none of them working (other than autoblock). :)

[–] [email protected] 2 points 4 months ago

I believe the Synology tailscale client doesn't support tailscale SSH, but I was able to "classic SSH" into the NAS (remotely, via Tailscale) with no problem.

[–] [email protected] 2 points 4 months ago

Apologies for the delay. July 4th festivities and rescuing a kitten from a storm drain intervened (upside: we now have a kitten).

I can ping the NAS from the client on the Tailscale IP (100.x.x.x) and the tailscale hostname. If I SSH to the NAS, I cannot ping the client machine, but everything on the NAS is available from the client other than the NFS share (and I think I remember reading that the Synology tailscale client does not support ping).

I realize we're sort of narrowing in on an NFS setting or possibly a firewall setting, and I appreciate your patience in going on this journey with me, but I have configured both according to, most relevantly, the tailscale documentation for connecting to a Synology NAS.

[–] [email protected] 1 points 4 months ago (1 children)

The allowlist for NFS allows the tailscale subnet and the local LAN subnet.

[–] [email protected] 1 points 4 months ago

My wife has worked in restaurants AND in TV, and the first two seasons had her absolutely entranced (I ... am not a TV person, though it's impossible to say that without sounding smug). This season? "They started sniffing their own farts," was her reaction after the first couple of episodes, after which she stopped watching.

[–] [email protected] 2 points 4 months ago (5 children)

It's the same error regardless of whether I connect by tailscale IP (100.x.x.x) or the tailscale hostname, and it strongly suggests an issue on the Synology, but everything looks correct on the NAS (but I am by NO MEANS an expert):

mount.nfs: access denied by server while mounting $IP:/volume1/$mount

[–] [email protected] 3 points 4 months ago (7 children)
  1. Declaring the NFS mount in my NixOS configuration; also tried manually mounting via

sudo mount -o nfs $TAILSCALEHOSTNAME:/$MOUNT /mnt/$MOUNT (with some options like no auto, but I’m doing this from memory)

  1. I’ll try but I have some idea that it won’t respond to ping
  2. I will try in a moment
  3. yes, on the local network (192.168.x.x) — and for the record I allowed access to the NFS share via the tailscale subnet

The error I am receiving differs depending on whether I’m connecting via CLI or, say, Nautilus but I’ll have to collect the errors when I’m back at the laptop.

[–] [email protected] 15 points 4 months ago

Please stay to the end because it's important, and it's going to be a horrible bait and switch but it's not INTENDED that way. I can't think of another way to present the difficult combination of interests that seem to be driving MS software lately.

I actually quite like Windows 11, and I love Edge when they're doing their core functions. Windows 11 is reasonably solid and useful for normal use. Edge is faster than Chrome and has the best vertical tabs implementation on the planet. Much of the baseline software that Microsoft is putting out has never been better, and is often really good at doing the basic things software should do. I really do feel like the genuine technology people in Microsoft are trying, and often succeeding, to make good technology products.

But... the bottom-feeder marketing drones and MBAs got their hands on them and started layering creepier and creepier nonsense over the top. Mandatory logins to glorified data collection engines. Monetization strategies masquerading as features. Overt advertisement. Heavy-handed promotion of Microsoft's own products. I finally stopped using Edge (on Linux!) when I discovered that just looking at the settings the wrong way would re-enable every intrusive setting imaginable and ditched Windows entirely when I saw the same things creeping into the OS (as well as a general disgust with privately-owned OSes in general). They are destroying trust.

In the great irony of my life, because normally work PC Windows installs have been hot garbage, I have Win11 on a work laptop and it's actually really great to use since all of the intrusive stuff is turned off by our security team. I would still prefer linux or macos (in that order), but as a "forced to use it" option, it's not bad at all. Go back and read that again: it's a pleasant and easy to use OS if all the intrusive marketing functionality is turned off because it presents a security hazard.

PS. Not sacrificing anything being predominantly linux-based and am in fact far, far more efficient on linux (and I am not a programmer or in any other technology role).

view more: ‹ prev next ›