Neptr

joined 1 month ago
[–] Neptr@lemmy.blahaj.zone -2 points 1 week ago* (last edited 1 week ago) (2 children)

You mention "sane defaults". That might mislead someone because it is ambiguous. The terminal ~~defaults~~ used to default to a root prompt, exemplifying that it isn't a distro focused on sane defaults for a desktop distro.

Kali is a tool for a specific job. Its meant mostly for hacking or troubleshooting/analysis, being an OS for executing a collection CLI/TUI and GUI utils.

-Edited everything to make myself more intelligible.

[–] Neptr@lemmy.blahaj.zone 24 points 1 week ago (13 children)

It isn't a secure operating system. It is a toolkit for pen testing and red team hackers. Definitely not a daily driver kind of OS.

[–] Neptr@lemmy.blahaj.zone 4 points 1 week ago

Basically, its a customization of Fedora Workstation with Steam, Proton GE, and some system tweaks for better gaming support.

[–] Neptr@lemmy.blahaj.zone 7 points 1 week ago (1 children)

I wouldn't stress much. It would take a targeted attack to have actually compromised your phone. It is alright.

[–] Neptr@lemmy.blahaj.zone 10 points 1 week ago* (last edited 1 week ago)

Your god damn right.

I am kidding obviously, I stress about people looking at me.

[–] Neptr@lemmy.blahaj.zone 10 points 1 week ago (2 children)
[–] Neptr@lemmy.blahaj.zone 6 points 1 week ago (1 children)

For good out-of-the-box nvidia support, I recommend Bazzite.

[–] Neptr@lemmy.blahaj.zone 1 points 1 week ago (1 children)

Idk, but I just enable intelligent autohide.

[–] Neptr@lemmy.blahaj.zone 2 points 1 week ago (1 children)

For nvidia hardware, use nvidia images of Aurora/Bluefin (or Bazzite if you want gaming out of the box). All the OSes I mentioned are based on Fedora Atomic and offer image options for nvidia proprietary drivers. They even signing the kernel drivers, so you can use Secure Boot.

[–] Neptr@lemmy.blahaj.zone 7 points 1 week ago

-> UEFI IRC client written in Rust

[–] Neptr@lemmy.blahaj.zone 2 points 1 week ago* (last edited 1 week ago)

Docker is good when combined with gVisor runtime for better isolation.

What is gVisor?gVisor is an application kernel, written in memory safe Golang, that emulates most system calls and massively reduces the attack surface of the kernel. This is important since the host and guest share the same kernel, and Docker runs rootful. Root inside a Docker container is the same as root on the host, as long as a sandbox escape is used. This could arise if a container image requires unsafe permissions like Docker socket access. gVisor protects against privilege escalation by only using root at the start and never handing root over to the guest.

Sydbox OCI runtime is also cool and faster than gVisor (both are quick)

view more: ‹ prev next ›