this is like month+ old info, at least mention that when posting. otherwise people assume it’s an update.

I deployed RocketChat on two different client installations (didn’t check the licensing you’re mentioning, I’ll have to look into that) and I run a Prosody instance (XMPP) on my own; tried Matrix for a short while and ran away from that mess as fast as I could. anyhow, although the messengers work without any significant issues or downtime, the amount of flak I get from non-tech normies about the client apps is staggering.

the apps just aren’t up to current UX standards. they’re used to Twitter and iMessage and Telegram quality UX, and getting used to these PoC-quality apps - both on mobile and desktop - makes them “feel icky”. I’ve had to intervene on a number of occasions when some of them transferred their business-related comms to other platforms because they just can’t/won’t get used to these apps.

check out dell latitude 5285/5290 2-in-1. they are Surface Pro lookalikes with detachable keyboards, but with way service-friendlier interior - easy to open and SSD, comms, battery can be easily replaced, whereas RAM is soldered. the screens (12" 1920x1200 IPS mutlitouch) are gorgeous and the hardware isn’t too shabby, kabylake (7xxxu) and kabylake-r (8xxxu), with standard UEFI BIOS so you can install Linux and have SecureBoot even. I can get them locally for $100-150, dependent on config and equipment (even less if they’re without battery and keyboard).

regarding the pricy enclosures, there are vastly cheaper eGPU solutions especially if you’re able to utilise the on-board M.2 or mini-PCI slot. if you don’t move the laptop around, it’s a viable option. this would be an example - not an endorsment. you’d need a $15 PSU to power the graphics and it works well in linux, with the hotpluggability being the primary issue; if you’re willing to shutdown before attaching the eGPU, close to no issues.

you can run it as graphics card (i.e. utilize its display outputs) or just use the laptop’s display with optionally switching between the onboard and discrete graphics.

to me the Ian Holm abomination was terrible, without any redeeming qualities. same thing as rogue one, exact same shittyness, zero technological progress, crude and unnecessarily distracting.

using rsync:

why not btrfs send | btrfs receive? is there some advantage to rsync?

did you hotswap the drives after each btrfs replace or shutdown and then swap?

what’s your host OS and do the drives spin down if inactive?

thanks for the writeup!

I’ve set up a local mail archive with just dovecot + imap plugin. you don’t need the full mail server with postfix and whatnot, as it’s not intended to send anything anywhere, or even receive anything for that matter. it just sits there ready to be searched with thunderbird, no need for other complex solutions you’ve mentioned.

this right here. remove partition and apply and then start the installer. there is a way to map this partition in the installer, but that’s such a horrific UX mess that it’s a challenge even for experienced folks.

first off, I have serious doubts that any one dude - or even a group of those for that matter - can ascertain the security of such a complex system; a browser is essentially an operating system, with all the layers and complexities that entails.

even if you’re somewhat successful in such an endeavor, I don’t really care if it potentially is. chromium comes from those shitmakers and I’m not willingly using anything they had their nasty fingers in. they threw one shovel of shit too many on the heap and they are now forever on my ignore list. if that means that I don’t get to access certain domains, sites, and/or apps - so be it, I’ll make do without.

fucking edgelords… IA has trouble staying on its feet without this sorta crap.

this has “kicking puppies for palestine” energy - not sure where I’ve read this but it’s an apt analogy.

you can still run both tools, I do so on my main workstation. they stay in the status bar and don’t bother you none. when you’re done working and recline on your sofa, you can send e.g. youtube videos to the rig and they play fullscreen by way of mpv.

I’ve gone the other way - there is no interacting per se with the media PC; instead, it’s a dumb sink that plays back everything you send it, by way of macast and jellyfin-mpv-shim. you use android apps to send it stuff (e.g. newpipe share to allshare which connects to macast and jellyfin android app which connects to JMS) and to control playback (pause, skip, change subs, etc.). so, all media selection and playback control is done from the mobile device, no need to touch the media PC doing the playback.

not sure this will fit into your use case because of spotty internet, but that should prompt you to install jellyfin post-haste. then you have two options, the mentioned android app + JMS or just the jellyfin media player which can run in TV mode with a pared down controller (up/down/left/right/enter/back) - I’ve successfully repurposed an ancient Apple Remote that has just those six keys.

can you run it on multiple devices and have them all synced? how about chat export in a readable format?

hey E., tell Sloane I said “What up”

good messenger for what?

if you want a solution for you and a bunch of your henchmen to coordinate and discuss totally-not-crimes with ephemeral comms, practically any E2EE solution will work; once the not-crimen is done, burn your accounts and toss the devices for good measure and you’re scot free.

if you want a secure messenger that’s part of a widely used communication platform where you can also do normal people shit and also convert normal people to actually use it (think getting contact deets from cute boy/girl at a bar or giving yours to a business correspondent without an elaborate powerpoint presentation on how to use it) and you want to enjoy the fruits of 20+ years of continuous IM development, like having top-notch UX, battery efficiency, network resiliency, quality voice/video calls, etc., without being spied on then such a thing doesn’t exist.

how come? meredith baxter recently stated that it costs signal $50MM/yr to run their infra. that money has to come from somewhere. if there are no advertising dolts dumping cash on spying on your social graph and convos, the remaining avenues for financing are few and far between.

in closing, there aren’t any super awesome messengers you weren’t aware of, everything is shit.

not to trample on your experiences, but you can make it work. it’s true it’s super cumbersome and involved though.

I’ve had/got it working on a T420s, T480s, T14, MBPr 2012, on debian, fedora, and arch. it helps if it’s not your primary/only workstation so you can tweak it without pressure. keep at it, it’s worth it, I can’t imagine using my laptops any other way.

maybe do I write-up one of these days.

you should enable suspend-then-hibernate instead. laptop suspends normally and if not woken in, say, an hour, the RTC hibernates it to disk.

correct, no idea how I managed to do that.

you’re overcomplicating it. get a separate $20 SSD and install the OS to it, dicking around with wine and tools within virtualbox is a headache you don’t need. set it up as desired (I recommend using flatpak versions of lutris and friends because of freshness) and then install the games one by one, followed by transferring the game data/settings/etc. you can experiment to your heart’s desire because you always have the fallback solution of your original drive.

then, when you know what’s what and where’s what you can make the transition. good luck!

I mean, OK, it’s a vulnerability and there are interesting implications, but this is hardly significant in any pracitcal sense of the word.

the potential victim has to run their system without a firewall, has to print to the printer they’ve never interacted with before and then the attacker can run shit with whatever the printing system’s user id is, which shouldn’t be an issue on any reasonably modern distro.

I routinely remove cups and friends from any system I run because I have no need for printing and it bothers me to see it constantly during every system upgrade.