Thanks !

Gotta punch holes in the screen and hammer the keyboard a bit haha. But remember friends, Hardware is forever.

Easy, become a Magnetic Nymph today !

+1 on the Gazzew U4. I just swapped from browns to it and I’m never going back ! They’re more tactile and much more silent.

To be honest, Ed.

When I’m forced to edit text on my phone (eg. to fix a broken server while on the go), I ssh in and fire up ed. This is what takes the less screen space on my already to small screen, and because it’s line oriented the screen doesn’t bounce/resize/screw up when the keyboard appears/disappear.

endlessh was pretty cool and a more modern version is even better ! I’ll give it a shot !

On a side note, I found a way to trap HTTP connections too while working on my cyb.farm project. The go implementation is ridiculously simple: tarpit.go. It works by providing an endless stream of custom headers to the client, which it is supposed to ingest before getting to the content itself.

I find the config syntax cleaner.

Switches indeed ;)

Both voyager and moonlander are prebuilt, right ? I like the voyager, but might like just a few keys under the thumb compared to my current planck layout.

Thanks for the suggestions !

It’s not about the cost, it’s more about my current situation, storage space, and besides this specific use-case, I have no use for it (and I dont like buying stuff I don’t use).

Crux. Simplest package building system out there, and the core is just out of the way completely, giving you the keys to setup your system just the way you want it.

Keeping the source IP intact means you’ll have troubles routing back the traffic through host B.

Basically host A won’t be able to access the internet without going through B, which could not be what you want.

Here’s how it works:

On host A:

• add a /32 route to host B public IP through your local ISP gateway (eg. 192.168.1.1)
• setup a wireguard tunnel between A and B
• host A: 172.17.0.1/30
• host B: 172.17.0.2/30
• add a default route to host B wireguard IP

On host B:

• setup wireguard (same config)
• add PAT rules to the firewall so to DNAT incoming requests on the ports you need to 172.17.0.1
• add an SNAT masquerade rule so all outbound request from 172.17.0.1 are NATed with host B public address.

This should do what you need. However, if I may comment it out, I’d say you should give up on carrying the source IP address down to host A. This setup I described is clunky and can fail in many ways. Also I can see no benefits of doing that besides having “pretty logs” on host A. If you really need good logs, I’d suggest setting up a good reverse proxy on host B and forwarding it’s logs to a collector on host A.

OpenBSD is the most pleasing expérience I’ve had with an OS. It’s fully contained and has all the tools you need without needing to install anything (eg a DNS, HTTP, SMTP servers, a proxy, a good firewall). All config files look alike and use the same keywords for the same things, making it straightforward to configure everything.

And regarding RAID 1, I’ve never done it myself, but it totally works out of the box (as well as full disk encryption).

OpenBSD for all of them.

The thing is, this layout moves symbols to places that are much easier to remember (~ is altgr+n, ç is altgr+c, $ is altgr+d, parenthesis/brackets are next to each other, etc…) I got used to it very quickly because the new placement makes sense, and the fact you only have to remember symbols and not alphanum chars helps a lot. Definitely worth trying IMO.

Did you know about the New AZERTY ? I’ve been using it for a few years now and it’s definitely a great improvement, while remaining compatible enough with the standard one so you are not lost when you use a colleague’s setup.

Void linux.

I used arch for a couple years, then crux for over 10 years, so I though Void would be a great distro when the systemd drama occured. Tried that, and noped the hell out of it…

• creating/maintaining packages is a pain
• the dev team was awful with newcomers
• system couldn’t handle more than a couple weeks without updates
• it’s an arch wannabe that doesn’t admit it, making it a worse alternative

For style points at the office.

Or xantfarm for the other times of the year !

This works on any OS though.

There are online service that can do it for you. Check “IPv6” in the glossary.