I am trying to create a KVM/QEMU/Virt-Manager VM without exposing my IP/internet connection to it. I pay for a VPN subscription, and I typically access it through wireguard configs that integrate with my distro (Fedora 40 Workstation) and DE VPN menus. From my understanding, as I have them set up now, I can enable one of these configurations in my settings, and all of my traffic is routed through the VPN, except for my local network.
I want this VM guest to have all of its traffic sent to the VPN as well, with the exception of some connection between it and the host, so I could still access it from the host for utilities like ssh.
Is it possible to achieve this? When I looked online, it seemed to require some CLI configuration of IP routes, and I didn't feel confident not understanding the changes I was making, as I want to make sure it is impossible to leak; it just shouldn't have any access to my normal network. If my VPN is disabled on the host, then it simply shouldn't be able to access the internet.
Hello. I recently acquired a Surface Go (1st gen, 4 GB RAM, 64 GB EMMC) and installed Fedora Workstation (and Phosh as a second DE). I do not have a keyboard for this device, so usually, I have to use the on-screen keyboard. Entering a sufficiently secure password whenever I wake it from sleep or need elevated permissions/sudo is not practical, but I don't think a 6-8 digit numerical PIN is sufficient.
The Surface supports Windows Hello, but neither the vanilla nor the Linux-Surface kernel currently supports the IR camera. On my main laptop, I use a fingerprint sensor. I must use my good password to decrypt the drive (though this is bypassed by TPM) and unlock the keychain on first boot or after logging out, but afterwards, I can use my fingerprint to unlock from sleep, run sudo
commands, and elevate my permissions.
It seems like there are PAM modules for smart keys and TOTP 2FA, though the latter is more cumbersome, and I don't know if I can authenticate FIDO or U2F from my phone over Bluetooth. I asked on the Linux-Surface matrix, and someone suggested KDE/GS Connect, which allows commands, but I would want something I could do near-instantly, either with a prompt or homescreen shortcut plus smartphone biometrics, and I want to be able to authenticate while logged in, i.e. for sudo
, not just unlocking the homescreen.
I am not an expert, and security is not something I really want to go in blind on. Does anyone have experience, ideas, guidance or an up-to-date tutorial? I feel this is an acceptable compromise between usability and security, and it would make using it casually much easier.
Hello, all. I just got handed down a Surface Go (1st gen, 4gb ram), and I want to use it as a note taking machine, document reader, and secondary display for my primary laptop (Framework intel 12th gen running Fedora GNOME).
I have a pen but no keyboard, so any config will be done with a usb keyboard, but usage will be like a tablet.
I have heard I should install GNOME on a tablet. I am generally ok with the 'opinionated' design of GNOME, but does anyone know what performance to expect? Would I be better off with a lightweight distro and de?
What apps can be recommended for stylus notetaking? Would prefer svg output, and simple workflow to export them to my main machine, where I can embed in markdown notebooks
Finally, the secondary display usage. Is this feasible? I know GNOME has RDP support, but my uni's wifi makes that very difficult, and I'd prefer a wired connection if possible. I don't need the stylus to work.
BONUS: If anyone has experience with the proprietary Surface Connect port, can it be adapted to usb c on linux, so that I can transfer power and >= 5gpbs of data? I see usb c adapters online, but they don't mention data; only power delivery.
An aquantance of mine has a CD collection and wants to rip it. They don't want to stream it over a server but rather store it, say, on a hard drive connected directly to their speakers/receiver.
While they **don't want to stream ** it wirelessly to/from their phone, they do want to control selection/playback.
Kind of like a remote controlled jukebox or, well, a really big CD player.
I am thinking there's probably some raspberry pi project to play on-device music library that has a remote control library plug-in over LAN. I'd also like there to be a backup option, like a Pi GUI so they could see their library on the TV.
I'm envisioning an interface similar to the retro game players or kodi.
Does this exist?
I'm trying to connect a university ipad (air, usb 3 type c, not tb or lightning) to my laptop (Framework laptop, intel 12th gen) running Fedora workstation 39. On Windows, I used a nifty app called Duet Display. I just used a usb-c cable to plug the ipad into the laptop, launched the app on both devices, and windows would see an external monitor. Scaling and resolution worked fine, and latency wasn't perfect, but was more than enough for a secondary display. With settings tweaked, artifacting was minimal.
I know there are remote desktop protocols and apps, but I really want to avoid a wireless connection. Remote desktop over the internet is wasteful and unreliable, and as for local network, ,my university has some strict controls on its wifi network and I cannot reliably connect my devices. Even if I could, the reliability and latency are still bad.
Duet over usb always worked and didn't rely on a wireless connection, but it also is closed source and windows and mac only.
From what I can see online, the best way for an ipad to display content from another device is going to be a remote desktop protocol as it does not directly accept video signals like HDMI-in. The ipad can also connect to a network over usb c/ethernet.
It seems the best approach would be to create a local network on my PC and connect my ipad to it with the cable, and then use a remote desktop client on the ipad.
Is this a good approach? If so, how exactly would I make the usb connection share a local network connection?
Note I only want to connect the ipad to the laptop. I understand if the ipad will not connect to wifi while connected to ethernet, and I don't need to share the internet connection with the ipad. My computer still needs to be connected to wifi/ethernet to access my university network, however.
https://www.librecloud.host/nextcloud-hosting/#plans
Take the complexity out of server maintenance with a managed Nextcloud hosting provider that gives you industry-leading speed, security, and 24/7 support.
https://www.librecloud.host/nextcloud-hosting/#plans
Take the complexity out of server maintenance with a managed Nextcloud hosting provider that gives you industry-leading speed, security, and 24/7 support.
https://www.librecloud.host/nextcloud-hosting/#plans
Take the complexity out of server maintenance with a managed Nextcloud hosting provider that gives you industry-leading speed, security, and 24/7 support.
@Adonnen
@lemmy.world