ntopng has all of that. I’m currently hosting it on my home router.

Alt-D, “chr”, Enter

Who am I kidding, I use Firefox.

If you go this route I recommend installing Kodi + Jellyfin Plugin + Kore Android App. You can control everything from your phone or laptop.

I don’t think there is a world where Linux gains significant market share AND users care what sudo is. In order for Linux to be more mainstream, those kinds of details should not be the concern of laypeople. GUIs are what average people are able to stomach.

• Has a simple backup and migration workflow. I recently had to backup and migrate a MediaWiki database. It was pretty smooth but not as simple as it could be. If your data model is spread across RDBMS and file, you need to provide a CLI tool that does the export/import.

• Easy to run as a systemd service. This is the main criteria for whether it will be easy to create a NixOS module.

• Has health endpoints for monitoring.

• Has an admin web UI that surfaces important configuration info.

• If there are external service dependencies like postgres or redis, then there needs to be a wealth of documentation on how those integrations work. Provide infrastructure as code examples! IME systemd and NixOS modules are very capable of deploying these kinds of distributed systems.

Silverbullet is nice

I like AdGuard Home myself.

I do grind my beans haha.

Idk but I use NixOS.

Wireguard is p2p.

EDIT: I guess the point is it’s doing peer discovery without static public IPs or DNS. Pretty cool!

couldn’t you always just run a Linux VM at near-native speed, and get the benefits of both?

The obvious downside is that Linux is no longer the host OS. MacOS or Windows would be closed source code managing your hardware. And any VM could only be as fast as the host OS allows it to be.

It’s been this way for at least a decade.

I’m not in the market, but I’ve actually had similar thoughts of building a project on top of NixOS that’s focused on self-hosting for homes and small businesses. I recently deployed my own router/server on a BeeLink mini PC and instead of using something like OpenWRT, I used NixOS, systemd-networkd, nftables, etc.

DM me if you want to discuss more. I think the idea has potential and I might be interested in helping if you can get the business model right (even if it just ends up being some FOSS thing).

Stop using Brave, people.

The only correct answer is to be consistent with the code base you’re working in or the language’s conventions. If neither of these conventions exist, then someone has already failed you.

You can’t configure an immutable distro by a sequence of mutations.

Isn’t that literally how ostree works?

NixOS

You should say “unstable channel”. It’s literally just a rolling release that pulls from the nixpkgs master branch. So it’s only as stable as it needs to be to pass the Hydra CI tests.

And if you get to a working version, you can pin that as a Nix flake to avoid anything breaking until the next time you nix flake update.

It’s so ironic how many downvotes this is getting in the context of this thread.

This reminds me of the apparent gnome-keyring security hole. It’s mentioned in the first section of the arch wiki entry: https://wiki.archlinux.org/title/GNOME/Keyring

Any application can read keyring entries of the other apps. So it’s pretty trivial to make a targeted attack on someone’s account if you can get them to run an executable on their machine.