Powershell has been available on linux for years already.

edit: https://learn.microsoft.com/en-us/powershell/scripting/install/installing-powershell-on-linux?view=powershell-7.5

I’m using nixos-anywhere to install and then deploy-rs to deploy updates to nixos vps’s.

Also using agenix for managing secrects for the services so that I can easilly have them all in a public repo, so that other’s could take a look and take inspiration.

My nixos flake url if you wan’t to take a look.

This week moved all my vps’s to nixos, so am now able to use one flake for my desktop and all my vps’s which significantly lowers down the time I need to manage my vps’s.

Nowto move my proxmox homelab server ( an old desktop pc I bought recently ) and all my server’s/devices witll be running nixos.

EDIT: An issue I’m thinking about is getting a “proper” server. Not a server like a server rack server, but a mini pc or something along those sides wbich would be a lot stronger and a lot more power efficient than the current 10+ y/o desktop pc I’m using currently.

So would like some reccomendations on that front, like what are some good mini pc brands and mini pc’s that I could have raid seted up on for nas or good budget parts and case to make one myself.

Only monad I know is xmonad. My favourite x11 window manager.

I remeber using plasma on a weak 2016 160 usd laptop with no issue in 2018, I can only imagine how much better is now

I’m using the default list alongside Firehol BotScout list and Firehol cybercrime tracker list set to ban.

Also using the Firehol cruzit.com list set to do captcha, just in case it’s not actually a bot.

I’m also using the cs-firewall-bouncer and a custom bouncer that’s shown on crowdsecs tutorials to detect privilege escalation for if anybody actually manages to get inside.

Alongside that I’m using a lot of scenario collection’s for specific software I’m using like nextcloud, grafana, ssh, … which helps a lot with attacks directly done on a service and not just general scraping or both path traversing.

All free and have been using it for a year, only complaint I have is that I had to make a cronjob to restart the crowdsec service every day because it would stop working after a couple days because of the amount of requests it has to process.

And the comminity blocklists are updated when more than a couple ( I think the number is something like 10-50 ) instances of crowdsec block an ip in some fast timeframe.

The ai blocklist just adds IP when even one instance finds an AI trying to scrape right from the useragent.

So even if the community blocklist has fewer ai ip’s, it does eventually include them.

Try crowdsec.

You can set it up with list’s that are updated frequetly and have it look at caddy proxy logs and then it can easilly block ai/bot like traffic.

I have it blocking over 100k ip’s at this moment.

https://www.crowdsec.net/

Yes, agree that they are situational. In case if my laptop I’m unervolting mycou because if I won’t it will just crash when used at max speed.

Edit: in case of my brother pc, the temps were just horenderous for the perforformance he was getting. Plus the fans were barelly on even at 85C. Undervolting and making the fan curve more agresive allowed him the get much better temps at same fan speed, and lets him play some games he wasn’t able to before cause of themps. And the fans even at 100% are quieter than my laptops at 50% so he doesn’t mind them at all.

I followed a random guide I found on the internet for amd.

In amd case you can do it from their driver by going to performance tab and choosing tuning.

There you will find gpu setting, set them to manual and from there you can start changing fan speed and voltage. Voltage you change by 50mv first time and if stable by 25. When you come to a point where your game/program crashes you use the value from before that didn’t crash the game and that’s it.

As for nvidia I don’t know because I don’t own one and don’t have the money to own one ( they are 1k euro on average here for 4070 and 2.5k for 4090 on average ) only thing I know is that you will need msi afterburner.

I use nixos on my desktop, the server is a debian one but might be good to install nix on it.

I just have to import only one. Might just use thunderbird for that.

Will test out mailcow and see how it goes.

I got tagged in one called “N***er balls”.

Imagine waking up and seeting that email notification.

PS: Picture just to confirm:

NOTE: I have also seen since yesterday that my crowdsec instance has been blocking way more ip’s for bots trying to crawl and shit like that so I think that this all might be a more general uptake in bots and that sites that never really had great protections against it are now taking the fall.

Just from yesterday to today I got over 100k more blocks.

It was a systemd issue, after installing network manager, enabling it and disabling systemd-networkd share now mount’s in a matter of second’s.

I don’t like the fact I got to use network manager, but whatever.

Dec 15 14:12:33 arch systemd[1]: mnt-nfs.automount: Got automount request for /mnt/nfs, triggered by 1926 (keepassxc)
Dec 15 14:12:33 arch systemd[1]: Starting Wait for Network to be Configured...
Dec 15 14:12:33 arch systemd-networkd[1612]: enp3s0: DHCPv4 address 192.168.0.3/24, gateway 192.168.0.1 acquired from 192.168.0.1
Dec 15 14:12:33 arch systemd-timesyncd[1587]: Network configuration changed, trying to establish connection.
Dec 15 14:12:33 arch systemd-timesyncd[1587]: Network configuration changed, trying to establish connection.
Dec 15 14:12:38 arch systemd[1778]: Started tmux child pane 2350 launched by process 2106.
Dec 15 14:12:46 arch systemd[1778]: Created slice Slice /app/dbus-:1.15-org.a11y.atspi.Registry.
Dec 15 14:12:46 arch systemd[1778]: Started dbus-:1.15-org.a11y.atspi.Registry@0.service.
Dec 15 14:12:46 arch at-spi2-registryd[2526]: SpiRegistry daemon is running with well-known name - org.a11y.atspi.Registry
Dec 15 14:12:58 arch kernel: logitech-hidpp-device 0003:046D:4074.0008: HID++ 4.2 device connected.
Dec 15 14:13:03 arch systemd-timesyncd[1587]: Contacted time server 161.53.131.231:123 (2.arch.pool.ntp.org).
Dec 15 14:13:03 arch systemd-timesyncd[1587]: Initial clock synchronization to Sun 2024-12-15 14:13:03.310583 CET.
Dec 15 14:14:33 arch systemd-networkd-wait-online[2039]: Timeout occurred while waiting for network connectivity.
Dec 15 14:14:33 arch systemd[1]: systemd-networkd-wait-online.service: Main process exited, code=exited, status=1/FAILURE
Dec 15 14:14:33 arch systemd[1]: systemd-networkd-wait-online.service: Failed with result 'exit-code'.
Dec 15 14:14:33 arch systemd[1]: Failed to start Wait for Network to be Configured.
Dec 15 14:14:33 arch systemd[1]: Reached target Network is Online.
Dec 15 14:14:33 arch systemd[1]: Mounting /mnt/nfs...

According to log’s it’s a systemd-networkd-wait-online.service issue, which shouldn’t be an issue because I’m using ethernet and share get’s automaunt request when I login into my user and load my xorg server.

Yes systemd is waiting until the network is up before trying to mount them, and am using the feature of systemd to not load until I need them to load.

From reading the logs further seems to be an issue with systemd not being able to properly check if network is up because I don’t use network manager, because after systemd-networkd-wait-online.service times out the nfs share get’s mounted right away,

“everyone”, tell that literally to every isp my country that doesn’t even provide ipv6 support.