An alternative to PuTTY too I guess

Very nice, GUIs are always appreciated as they make stuff easier by showing you what to do and needing to type less

Use open source software that doesnt try to spy on you

There is no reason why these files should contain PII, but on Windows and with proprietary software you never know

TIL that the font rendering inside the kernel is actually pixels. Not sure what your comment wanted to say.

Guys you have to see, it is amazing how much deep tech stuff you know, but dont forget you are a crazy niche within a niche and be nice to non-systems programmers XD

The Debian user who lets GRUB handle decryption AND updates (somehow, Debian is weird)

Good to hear that the kernel fonts are very basic. I guess that makes sense? I find it a bit odd, is the kernel ever the only thing interacting with hardware, with no chance to let a userspace program run that?

Also excited what RedoxOS creates

I just hope they get some industry funding soon. So many companies use embedded Linux but could really use a microkernel architecture.

Google with WearOS, Chromecast, Home and whatever weird little appliences they make.

A small kernel, dedicated drivers for hardware (that could probably be ported from Linux) and small programs

Yes, the kernel doing hardware things and another parts doing rendering for example, interacting with the kernel.

Text mode isnt just the kernel… the first thing that starts after the kernel is the init system.

Boot means initramfs plus kernel. Any other part could do that, doesnt need to run in kernelspace. I dont think the initramfs runs in kernel mode either.

Linux is a big huge thing that is all very highly privileged. It works, very well, but it is kind of a security mess.

Press Esc when booting to see text

Shouls fonts be rendered in the kernel?

I guess they need to update their table

https://asahilinux.org/docs/platform/feature-support/m2/

The TPM could be used to generate a LUKS decryption key from a password or PIN.

That would tie that password to the hardware, but with LUKS you can have multiple ones, so a long password that directly unlocks the key should be possible in addition

Just learned that you can pipe tar into any compression tool, if that is not natively supported.

It has less integrity checks but huge performance benefits for sure

Thanks, I have to try that!

I am missing something to isolate my Browser(s) without using Flatpak (as that breaks everything)

https://codeberg.org/crabjail

Here is a sandboxing tool using that feature

TLDW on his hardware recommendations?

• chill interview, recommended to watch
• hardware recommendations see below

Sounds like tmpfs would be more reliable than streaming data directly?

Yes and switch often caused issues which is why I only use it for very small changes after I just did an update (where a nix-shell might also just work)

Btw very funny how Guix is basically a 1:1 nix clone but in Libre

nixos-rebuild switch

I mostly use nixos-rebuild boot which is waay more stable