That’s really helpful, thank you. I’ve ordered an AX23 which will arrive tomorrow. I’ll try to figure it out in the next few days and report back.

Thank you! I’ll evaluate and report back.

And openwrt is capable enough?

Yeah it’s insane right? Every address is reachable when I open a port range. And it’s like there are ~ 10 predefined services (HTTP/S, SMTP, …) and the category “All other ports” where also 22 is part of. So I really have the choice to either keep everything shut or leave everything wide open.

I think I can’t use my own modem but I’ll have to double check with my ISP. But yes the Wi-Fi is also provided by that router and it’s also quite crappy.

Thank you! Do you have an example for such a firewall device? Could something like the TP-Link Archer AX55 in IPv6 “pass-through” mode do the job? Or would you go for a standalone firewall? My budget is around a hundret bucks.

Take a look at the podman kube play command which lets you run K8s-style stack definitions on podman. Has partly replaced compose for me (although I still have some docker servers running for stacks that don’t play nicely with podman yet).

IIRC there is a plugin for Caddy that can do what you are looking for.

Edit: here you go

Probably not what OP is looking for.

But I’m also happy with my Garmin Instinct. I use it disconnected from my phone, it does everything I need offline and stand-alone. To add tracks for navigation I just connect it to my linux laptop and drop the GPX file into the NewFiles (or whatever it’s called) folder on the watch. I was surprised how well it works without official apps. The only thing I used the app for was to update the firmware when I bought the watch.

Also, fittrackee looks promising - thanks for the tip!

I would second that. I currently use nix besides Flatpaks for development environments but also find it somewhat overcomplicated. Looking forward to give toolbx a try.

I migrated my home- and webservers from Debian to FCOS a while ago and I’m very happy with how everything works.

Troubleshooting butane/ignition was a bit of a pain in the butt but worth it imo. I suggest just reading through the FCOS docs, they guided me well while setting everything up. I use podman on my webservers and docker on the homeserver (bc nextcloud aio is not fully podman compatible). I use the installer to build a pre-configured ISO that I can deploy where I want to.

Someone in the comments mentioned Flatcar, which I think looks compelling as well, since it’s basically the same but more of a community effort.

0ad, warmux

Does not answer your question, and someone already mentioned it in a thread, but don’t forget zram when only 4GBs are available.

I went to a small (~30 people) festival dedicated to wood carving, because I was asked if a wanted to cook for everyone. Found it very inspiring to get an impression of that very specific sub culture.

A little overconfident as usual imo

Swiss lemming here. Switzerland already open-sourced multiple projects before, most notably the app to store your COVID test / vaccination status in. It was even officially available on F-Droid. I was very suprised at that point, and I’m happy to see that there are now efforts to make such behavior more default and less edge case, even when there are exceptions.

That one looks cool! GPS receiver makes it interesting compared to the pine time.

deleted by creator

deleted by creator

Why exactly are the IBM dependencies a problem for you?

I guess I just like independent, community-driven distros, since there’s less space for financially motivated enshittification. Just shortly after I decided to go with FCOS, RedHat / IBM decided to close down CentOS, for example.

I can’t really find good resources on how FCOS is working and what are the benefits. Is it updating the system/kernel automatically as well as the containers?

The system & kernel yes. The whole system is basically a read-only system “image” for which the devs make sure all the packages play nicely together. Packages are not updated individually, but whole system “image” are released periodically, which the system then downloads automatically and reboots (you decide when it actually reboots through the config). If anything goes wrong, the system is rolled back to the previous “image”.

When you go with podman, there’s a systemd service you can enable which will update the containers (i.e. pull the specified image tag). I’m not aware of a similar mechanism for Docker, which is why I use watchtower for that which has been working smoothly so far.

Edit:

And what are generally, in your opinion, the advantages of FCOS?

For me, it’s the (quite safely designed) auto-updates of the base system (I just feel like having to do less repetitive work), infrastructure-as-code aspect, and the container mindset (as I containerize everything anyways). Also I just have a weakness for new, fancy stuff.

I use Fedora CoreOS on my homeserver and a bunch of VPSs. Migrated the homeserver just recently, but I’ve migrated the first VPSs a bit more than a year ago. So far, I had no problems with it. There’s a low-traffic mailing list where the devs inform about security issues and breaking changes to the whole container stack.

I used debian before for some years, but at some point became tired of manually updating the system (which is probably one of the biggest benefit of FCOS). It takes, however, quite some time to put your first Ignition config together, and debugging is tedious as you have to redeploy to see if a bug / error is now gone (I’ve used a VM for that).

I use podman on some, Docker on other servers (you can’t use both at the same time). Both have been working well so far.

I’d recommend it, but would also recommend taking a look at Flatcar Linux which is more or less the same without the IBM dependency (which makes my stomach hurt sometimes).

I just use a bunch of markdown files for that. Guess you could also use Notes and its category feature.