If there is docker image for what you need, use docker image.

If not I would recommend systemd-nspawn, it’s chroot but can run systemd init, with efforts you can run GUI applications from it too., wiping that is just sudo rm -rf.

I wish there is everything for Linux.

fsearch has the looks but last time I tried I needs to wait for it to scan, no background indexing.

Also using PurelyMail, tt’s the cheapest non-free email service I can find.

It passes email delivery tests, setup SPF, DKIM and DMARC easily without issue.

The downside is that it’s basically one man handling whole this service, but I assume this service has been fully automated because the margin of profit is so low.

On Ubuntu 22.04 based distro, you can try install HWE (hardware enablement) kernels but you need a phone that can share WIFI/mobile connection through USB cable.

sudo apt update; sudo apt install linux-generic-hwe-22.04

Try posting output of lspci command here, gives us more information about your laptop hardware.

nano by default puts a new line character at the end of file, can you use stat command to check if file size is off by 1 byte?

All the series I recommends below are complete. (tells story from start to end)

• Tengen Toppa Gurren Lagann (There are TV series and movies that both tell similar story but not the same, TV series have darker story)

• Kill la Kill

• Blast of Tempest

• Assassination Classroom

• Back Arrow (first half of series is meh but it becomes better and better)

• Mob psycho 100

• Summer Time Render

Don’t know if this bug is reported upstream or not.

My default listing is “subscribed”, if I go to “Top All” and click next page button, I get “Top Sucscribed, page 2”. (my current listing doesn’t last)

some sort of dashboard with monitoring and statuses of all my services

See if Uptime Kuma suits your needs.

Are there any major no-no things a newbie might do with Docker/selfhosting that I should avoid?

Allow password based SSH authentication, you should look into key based authentication

I wanted to have it behind a domain, how would I achieve it?

Use a reverse proxy (like caddy) which serves different content based on domain name.

I think thunderbird always delay major version upgrade until <version>.2.

If you observe their changelog:

115.0: only offer binary download, not as upgrade

102.0: only offer binary download, not as upgrade

102.1.2: only offer binary download, not as upgrade

102.2: no such disclaimer

They also has the same disclaimer for 91.x, that’s how Thunderbird decided to distribute update.

Maybe your BitTorrent software eats all the bandwidth so other networking programs shows bad performance?

Have you tried pacman without running your BitTorrent software?

Less likely to break when you perform kernel upgrade. (new major version)

https://netboot.xyz/

You might not need it but it’s a very small image (3.5MB for multi-arch iso) so why not?

Official wiki page that lists AP with Wifi AX support

(Some devices that lists “Snapshot” might be supported by 23.05 currently in release candidate phase)

If I remember correctly you can plug in phone line to RJ45, this stackovwerflow question lists some caveats.

I know Micron Storage Executive can run in Ubuntu Live USB, too bad Micron/Crucial doesn’t have attractive offering where I live.

Ubuntu freezes package version number (with only few exceptions like browsers) when they release a new version.

You will either need to wait for a new version (most likely 23.10) or use 3rd party maintained PPAs.

Imagine you have Permission to post as axzxc1236@lemmy.world as an object that is locked in a safe deposit box, the key is JWT token.

The key, by how it works, can be obtained by (1) knowing axzxc1236@lemmy.world’s password (+2FA token if configured) (2) have a copy of the token (3) somehow cheat lemmy.world’s authentication scheme (by somehow skipping authentication or acquiring magic tool to generate random token … etc).

What happened today is scenario (2), by a single line of JavaScript planted by hacker, and if you have access to my unlocked desktop computer, you can see and copy the key by using F12 (developer tool).

Scenario (2) can be mitigated by tying the sending computer IP to JWT token, but as far as I can tell lemmy.world doesn’t have the option, and most of people get random new IP address every now and then because how Internet currently operates, so this feature can be very annoying.

now introduce Permission to post PGP signed message as axzxc1236@lemmy.world as an object that is locked in a safe deposit box, this deposit box has two key slot (like a bank deposit box), JWT token and PGP private key.

This PGP private key doesn’t have to sit in your browser, it can be on a burner phone which it’s only purpose is a APP for signing message, it can be on a USB thumb drive that is stored in your parent’s basement, or usb thumb drive that sits in bank deposit box which requires a bank employee to authenticate your ID to access…

No one store their PGP private key in cookies, at least I hope so.

Ideally someone wants to send signed message doesn’t store the signing key in their browser, sandbox their browser even.

Use a cellphone under trees in rain.

Learned few days ago that it’s not actually dangerous, at least doesn’t make you have a higher change to be struck by thunder.

I setup Swapspace in case I ever need to compile something very big, but usually my system doesn’t use swap.