Haven’t found one that’s as good yet personally…

Mesa has been the defacto standard for AMD for years. It’s always performed better than the official driver. AMD just made it their official recommendation recently.

I think Intel also uses Mesa, with Nvidia being the odd one out

Site seems to be down.

My example applied to all distros, the difference would be the time it takes that code change (which resolved a critical to me bug) takes to actually be available to use.

There’s also very little that’s specific to me about that, it’s a real use case that comes up repeatedly for new releases that tend to push things graphically. I’m only going to recommend distros that minimize the time to get those fixes because it’s a better user experience for the target demographic with little downside.

Considering games are the most intensive things most people will use their computer for, I think it’s fine to optimize for that use case and assume everything else will be “fine”

I’ve literally had to wait for fixes to hit new mesa versions to play newly released games. Having those packages be up to date is just going to be a better experience for people that care about that kind of stuff

I had it working on a 5700xt a couple years ago

I’ve never heard it called anything but mTLS. :shrug:

Docker is fine for turnkey applications. Mounting external storage that persists across containers is a feature that enables that pattern.

Running Docker in a VM is also fine and has potential advantages. However I agree that it’s probably overly complex for many people.

I’m confused what you’re trying to accomplish here. Are you trying to make it look like the traffic is coming from your VPS for some reason? Nginx (amongst others) can reverse proxy tcp traffic.

This is basically “the first hit is free”

Yeah you can still do a lot of damage in a few hours, but 45 days is a meaningful reduction in exposure time from year+

That’s a complaint about those phones not PKI in general then. Though it’s surprising their enterprise support won’t let you since that is (or was) a fairly common thing for businesses to do.

Isn’t this just CRL in reverse? Part of the point of cryptographically signing a cert is so you don’t have to do this if you trust the issuer.

Browsers are only a (large) fraction of SSL traffic.

Good point, sounds like a good thing for most people

NT was built to be a business OS, and the original Windows was killed off for everyone in favor of NT with XP

UAC can be configured to require a password, just like sudo can be required to not require a password. These things function the same on Windows and Linux.

When that whole thing started up Nazis seemed a lot less “real” imo. I liked it better when they occupied a similar space as pirates and ninjas…

Is this project still a dumpster fire?

The term to look for is out of band management. Typically this will provide serial/console access to a device, and can often perform actions like power cycling. A lot of server hardware has this built in (eg idrac for Dell, IPMI generically). Some users will have a separate oobm network for remotely accessing/managing everything else.