Just use open source software?

What I do to keep DNS consistent inside and out is use Tailscale on all my clients. I host a DNS server hosted on my tailnet that is set up as split DNS for my “kickassdomain.org”.

Fwiw I switched from k3s to Talos and find it much easier to manage. I run 3 mini 1L PCs with rook-ceph and it works flawlessly even on 1Gbe.

As of the latest release (21), you can simply install microG on regular LOS and no longer need to install LineageOS for microG since it now includes the necessary signature spoofing support.

Invidious?

Ubuntu -> Arch -> Debian (stable) -> Fedora Silverblue -> NixOS

I’m curious, why do you use LVM with BTRFS and not just use BTRFS built in subvolumes?

btrfs snapshots are still useful on immutable distros to recover accidentally deleted data.

You will hate Ansible if you are coming from Nix. I went the other way and Nix is 1000x cleaner.

Being able to actually reverse changes is trivial in Nix, but can be a headache in Ansible. Not to mention the advantages of writing in an actual language and not yaml full of template hacks. I personally don’t see much future for tools like Ansible, there is considerable inertia working in its favor right now and it is absolutely true that it is widely used, but the future of configuration management is for sure more aligned with how Nix works.

Similar to my scheme:

laptop = “laptop”
nas = “nas”
router = “router”

Then if there are more than one in each category I use nas-0, nas-1, etc.

I have used all three! I started with Server then went to CoreOS running Kubernetes and settled on NixOS which I have been very happy with for about a year now. I run about 25-30 services all using built in modules.

Regarding security, if you are using well crafted modules on NixOS, there should be good systemd hardening in place. That being said there is no reason you can’t just use containers on NixOS.

I also find deploying NixOS far superior to butane/ignition used by CoreOS/Fedora. I use nixos-anywhere and can deploy my entire server in a few minutes without manual intervention.

I have been reading about this since the news broke and still can’t fully wrap my head around how it works. What an impressive level of sophistication.

HP = Has Problems

Framework. I’ve run Debian, Fedora and for a while now NixOS, all of which have worked flawlessly.

I did have to replace the heatsink/fan part on mine because the fan bearing started clicking, but I’m sure that was just a first generation product issue (I was one of the first batches). I was glad to be able to do the replacement myself at relatively low cost and the process couldn’t have been easier (took about 30 minutes).

My previous machine was a 2013-ish ThinkPad X series and the Framework absolutely blows it out of the water. I’m looking forward to upgrading mine to a Ryzen motherboard sometime in the not so distant future.

Grand Theft Auto.

All of them, but especially V. I have tried a few times to play them but never get more than a few missions in before losing interest in the story. I think I have to like or identify with a protagonist to enjoy a game, and most GTA characters are pretty unlikable.