Do it in stages by shifting services one at a time from a google phone to a non-google device.
(In my experience):
Easy: pics, docs Intermediate: calendar, contacts, maps solution Most difficult: email
I’ve been trying to de-google for more than 5 years, and email is the surprise for me. It’s quite incredible how deeply interacted google and apple have made us. Once that’s done, google account will be terminated.
You can process these with bash string manipulation alone, but sed and awk will do this pretty easy.
All of this produces a feeling of anguish… Maybe I cannot stand knowing that this could be the standard everywhere.
I have similar feelings about the lack of alcohol taxation and the low rate of rice cooker adoption in the west.
You are struggling to accept the imperfect world as it is. You should stop introspecting on the symptoms and try to figure out why you are unhappy with other people’s choices.
Be careful.
Because it only formats stdin streams to into string(s), xargs can be very dangerous, depending on the command to which the arguments are being passed.
Xargs used to be a practical way to get around bash globbing issues and parenthetical clause behavior, but most commands have alternate and safer ways of handling passed arguments.
find -exec is preferable to xargs to avoid file expansion “bombs”, plus find doesn’t involve the shell, so it doesn’t care about whitespace problems.
Maps + location, calendar, contacts, google docs, google drive, all have been moved to self-hosted and private services I run myself.
All that’s left is email, and that is actually quite difficult to ditch. I have a protonmail account whose philosophy I don’t agree with, and a tuta account, which has nasty delivery problems.
So I actually don’t really know how I’m going to solve this.
If this is your first recovery from a security incident:
Look, I appreciate your enthusiasm, but you are treading into virtue signalling territory and your article has the superior tone of those who bought electric cars in the late 2010s to lord it over the rest of us.
Using Linux is not going to stop your doom-scrolling, nor is using Linux by itself telling the big corpos anything at all. Stop conflating using Linux with “sticking it to Facebook”.
Linux is a tool, and it is a tool that allows freedom of its use. That’s it.
You didn’t really include any details about your current VPN setups, your subnets, your routing rules, etc for anyone to give you a useful answer.
I switched to using Radicale a year ago, and I use my android contacts app to add and maintain that info. CardDAV has enough fields for me to add.
Cinnamon, maybe… But KDE plasma? You must be joking. How do you get KDE plasma down to 300 to 500 mb memory use?
There’s a good reason xfce is the de of choice for low-resource systems like raspberry pi.
Like others here, I use open street maps data, but I’ve found comaps to be the best frontend to it. I can approach the navigation functionality of google maps with it.
Typically this is achieved in x11 with x forwarding. Performance won’t be great.
However: you may want to investigate using a hypervisor and a VM for each seat, and a dedicated GPU for each seat. To share GPU between seats, you will need a GPU and motherboard that support sr-iov, which is hard to find, hard to use, and expensive.
I built a hyper-converged box like this and I can tell you the GPU isn’t the obstacle, it’s peripherals. Mice, keyboard, video output, that is what people want to be flexible.
When I have to console into the old Solaris boxes at work, I’m reminded both of how many quality-of-life enhancements we enjoy on modern Linux, and also why I will always default to vi as my editor.
ntfxfix should only have to be done once, then you can remount. Unless you are using these partitions in windows, in which case you’ll need to do it every time.
777 is read/write/execute for owner, group, and world, respectively. It’s the most permissive POSIX permission that can be set. If something can’t write on a 777 umask, then either the filesystem is mounted read-only, or something is deeply wrong with the storage.
drives are NTFS
You probably have the clean unmount bit unset for the NTFS partition. This is trivial to bypass, but I would suggest not using NTFS in Linux, NTFS is not a great fs and Linux support is… OK.
Really great article.
I was a bit critical of your last post on kernel init stuff, but this one is well laid out and gets quickly to the material at hand: all applications make the same system calls.
Keep it up, I’m going to follow this.
My LDAP PTSD is coming back…
I’ll make the following LDAP assumptions:
And I’ll make the following postgres assumptions:
Finally, I’ll assume that your nfsv4 mount is active and that POSIX operations work at Pam - level tests.
The line
group: files [SUCCESS=merge] sss [SUCCESS=merge] systemd
Seems weird to me; either you add success clause to both uid and gid, or none, but not one and not the other.
This would also hint that Pam has not been updated to use LDAP.
That’s where I’d start.
Side note: LDAP is by default unencrypted on the wire, so to complete this exercise, you may want to setup secrecy on the server. This is especially important for db creds.
If everyone has a copy of my passwords and authenticator keys, that wouldn’t suddenly make 2 factor auth a compromised idea.
Not sure how this relates. If you’re saying it was a good idea at the outset, then sure… If the keys hadn’t almost all been leaked by AMI and Phoenix. MS was supposed to have created a Microsoft Certified hardware vendor program for this, which fell apart pretty quickly.
Secure Boot is a joke, both practically (there are many, many tools in use to bypass it) and in my professional circles, it is considered obsolete like WEP. My audit controls for Secure Boot demand that an endpoint management solution like InTune is deployed.
You don’t have to take my word for it, obviously. I’m not trying to tell you how to live your life.
Secure Boot keys are considered compromised.
If you are recommending secure boot as a security measure, you should stop doing so.
I haven’t run into any file managers that hide the path with no option to show it. Which one(s) are you talking about?