Wireguard normally runs with higher than root privileges as part of the kernel, outside of any container namespaces. If you’re running some sort of Wireguard administration service you might be able to restrict its capabilities, but that isn’t Wireguard. Most of my devices are running Wireguard managed by tailscaled running as root, and some are running additional, fixed Wireguard tunnels without a persistent management service.

“Ministry of Love” doesn’t sound very edgy.

If there was so much voter fraud, why don’t we have a special presidential election in 2026? Since he’s doing such a great job as president and he’s fixed all the voter fraud, surely he’ll win again by an even greater margin.

Check the README for piper. It moved to https://github.com/OHF-Voice/piper1-gpl

Doublethink? Bestie, I don’t even think once.

Trump did the same thing to Obama 17 years ago.

Where does that 12 billion for soybean and corn farmers come from? The people who can’t afford their groceries. America has enough corn. America grows corn just to burn it as a gasoline additive. Maybe if the price of corn is falling, it’s time to grow something else.

Google Search being replaced by Gemini makes it easy for Google to have big AI numbers. Bing never got over its reputation of having bad result quality, and it’s only the default search engine on Windows PCs that don’t have Chrome or Firefox installed. My friend uses Windows and iOS and always sends me links to Gemini results, which normally are only slightly worse than “I’m feeling lucky.”

You’ll still be able to get consoles and cloud stream. The real problem is that the power to create is being taken away from regular people.

Nextcloud shouldn’t be seeing your MAC address. However, my guess is that Nextcloud has been configured to invalidate the session if the client IP changes, and randomizing the MAC address is one way that can happen.

Are you looking for a VPN or are you looking for an IPv6 tunnel broker like Hurricane Electric?

Does investment fraud benefit businesses? Businesses are investors too.

Who’s on first joke names can’t be good for SEO.

An immutable distro… like NixOS? Or do you mean your root filesystem is immutable? NixOS can do that too. You could normally mount your nix store as readonly and remount rw during updates if you really care about filesystem immutability, or use some snapshot system if you’re paranoid about adding new files to the store corrupting other files already in the store during an update.

The nixpkgs VM creation module, which I’ve never seen documentation for, has a mode where it generates a kernel, initrd, kernel command line, and erofs image containing a prepopulated /nix directory and that’s enough to boot the VM.

Ansible is disappointing as an IAC tool. It’s good for doing things, but it’s not good for converging systems to a desired state. Too often you end up with playbooks that are not idempotent or rely on something that was done during a previous execution of the playbook or just don’t do something that was done by a previous version, and then unless you are constantly recreating your systems you won’t notice until it’s a problem and you can’t get your system back.

That’s what I’m saying. If you signed up to defend and then got assigned to invade DC, getting shot at in DC isn’t what you signed up for.

People don’t join the national guard to invade somewhere and get shot at. The national guard is supposed to be protecting people at home.

Most updates are a waste of time on my phone. Open a streaming media player for a closed streaming service and before it let’s you watch anything it reminds you that you can spend a minute or two updating to a new version indistinguishable from the o/d version. Who knows what they’re changing because the attack surface is basically nonexistent and bugs aren’t being fixed.

Would Wine be better with Microsoft working on it? The frequency and severity of regressions in Windows has been increasing for years now. Maybe for Wine to be a more accurate representation of Windows 11 it needs more bugs and less functionality. The Windows team is good at that.

As if older memes were all meaningful. There’s nothing wrong with 6 7 itself. What’s 9 + 10?

You can host a Proton mail bridge to use different apps running on different machines, including phones.

Self hosting e-mail, particularly SMTP, will likely require a static IP from a reputable provider. Mail servers may reject incoming mail based on the reputation of the sending server. You can avoid this by relaying through another SMTP server and configuring your DNS rules to allow that server to send mail on your behalf, but that’s not really self hosting anymore.