mfw flatpak remove does not remove flatpak

That one meme, with the kid sticking a stick into their own bicycles’ wheel

Meanwhile I’m chilling with the AUR and a rather good knowledge about how to create and maintain PKGBUILDs

How about you use the native packages then?

Ollama is in extra, open-webui in the AUR.

???

Yes. No.

/usr/bin/brain

I only do hardcore horny chats with my LLMs lol

But remember, on a third device. Not the one where your KeePass DB is one fingerprint away, and your private SSH key too.

Tbh, I myself still have SSH on port 22. Firstly, because I’m lazy, and secondly … yeah that’s it. I’m honestly just lazy. But spam bots trying office/cookie123 are not a real threat, and anyone trying to actually target me will either have somehow acquired my key + password, use one of the probably many security issues that exist in the dozen services I selfhost, social engineer me into doing something (not saying I’ve given out my (old) KeePass password once, but it could be, as love makes blind (I still love her)), or just smash my kneecaps until I give out everything.

Move SSH to non-standard port, make endlessh use the default port. Only use SSH keys. Only allow correct users (so eg. your user and git/forgejo). Use fail2ban to aggressively ban (redirect to default port, so 22) and report to abuseipdb everything that fails to authenticate first try (wrong user, password instead of key), has non-compatible ciphers (generally, only allow TLS1.3 etc.), or fails in any other way. Just be sure that if you accidentally get banned yourself (eg. Ctrl+C-ing during authentication), you can use another IP (eg. force v4) for connecting.

I’d say that yay encourages checking the PKGBUILD or its diff more than the average “curl xy | sudo sh” instruction, but considering most people see yay just as yet another package manager, instead of an AUR helper, that’s probably true for most people

Except it automates the steps you’d have to take to inspect and edit the script, if needed. Also, PKGBUILDs are much nicer to read than just plain install scripts. And, of course, it actually builds a package, which is then installed, so it’s not only tracked but can be updated like the rest of the system.

yay <package name>

There is a 99% chance it’s in there, and there is an 80% chance it uses the latest version/git HEAD

Not every trans woman tho

I do that every time I have to use windows. But I think my boss does not like that…

I’d guess that, like all tech that’s highly locked down, it will be very hard to do anything with - like Apple devices.

So the only thing to do right now is - not updating.

Ollama is simple too, I meant that containers make everything a nightmare to maintain.

If you want something intuitive, use Paint or pen and paper.