  • mead

    Do you really drink a honey based brew?

    There is almost certainly a binary version of gcc in Gentoo. I ran Gentoo for 20 odd years and also generally insisted on compiling everything. I recall gcc going from v3 to 4. My laptop ran for over a week on a glass table with a prop to keep the fan vent unobstructed.

    I probably should have learned back then that I didn’t really understand exactly how the toolchain worked and how to get from ebuilds to binary code really works. I’m a sysadmin and not a programmer.

    With hindsight, I suggest that you pick your fights with care. Use the bin versions of entire packages where available and enjoy the flexibility of USE when it will make a difference.

    gcc is not the biggest lump you will compile but it does take a while. It was rather slower 20 years ago.

  • Mint has managed to become a meme and that’s no bad thing, per se, but it can look a bit odd to the cognoscenti. Anyone doing research by search engine looking to escape MS towards Linux will find Mint as the outstanding suggestion.

    That’s just the way it is at the moment: Mint is the gateway to Linux. Embrace that fact and you are on the way to enlightenment.

    I am the MD of a small IT company in the UK. I’ve run Gentoo and then Arch on my daily drivers for around 25 years. The rest of my company insist on Windows or Apples. Obviously, I was never going to entice anyone over with Gentoo or even Arch, although my wife rocks Arch on her laptop but I manage that and she doesn’t care what I call Facebook and email.

    We are now at an inflection point - MS are shuffling everyone over to Azure with increasing desperation: Outlook/Exchange and MS Office will be severely off prem. by around 2026. So if you are going to move towards the light, now is a good time to get your arse in gear.

    I now have Kubuntu on my work desktop and laptop. You get secure boot out of the box, along with full disc encryption and you can also run a full endpoint suite (ESET for us). That scores a series of ticks on the Cyber Essentials Plus accreditation and that is required in my world.

    AD etc: CID - https://cid-doc.github.io/ pretty nifty. I’ve defined the equivalent of Windows drive letters as mounts under home, eg: ~/H: - that works really well.

    Email - Gnome Evolution with EWS. Just works. Used it for years.

    Office - Libre Office. I used to teach people how to use spreadsheets, word processors, databases and so on. LO is fine. Anyone attempting to tell me that LO can’t deal with … something … often gets … educated. All software has bugs - fine, we can deal with that. I recently showed someone how decimal alignment works. I also had to explain that it is standard and not a feature of LO.

    For my company the year of Linux on the desktop has to be 2025 (with options on 2026). I have two employees who insist on it now and I have to cobble together something that will do the trick. I get one attempt at it and I’ve been doing application integration and systems and all that stuff for quite a while.

    Linux has so much to give as an ecosystem but we do need to tick some boxes to go properly mainstream on the desktop and that needs to happen sooner rather than later.

  • Because Ubuntu LTS works very reliably

    Ubuntu pulled a blinder many years ago with their LTS model. You get a new one every two years with five years support for each one and a guarantee of moving from one to the next. That gives you quite a lot of time to deal with issues, without requiring you to live in the stoneage.

    For example: Apache Guacamole is a webby remote access gateway thingie. It currently requires tomcat9 because TC9->10 is a major breaking change. Ubuntu 22.04 has TC9 and Ubuntu 24.04 has a later version (probably 10). However Ubuntu 22.04 is supported until 2027. So we stick at Ubuntu 22.04 and get security updates etc.

    Guacamole is currently at 1.5.5, and the next version will be 1.6.0. The new version will have lots of functionality additions. The devs will then worry about Tomcat editions and the like. Meanwhile Ubuntu will still be supported.

    In my opinion the two year release/five year supported model is an absolute belter.

  • I usually do Arch myself these days and spent many years with Gentoo. So I’m not too terrified of breakage!

    I am putting together a Linux distro strategy for my company. I am the MD of a very small IT company in the SW of England. I already have my office manager asking me to liberate her from Windows! I recently had a techie asking me to help his transition! This is organic stuff and not pushed down by me. The techie is a dyed in the wool Azure lover.

    I am used to being patient. It took me roughly five years to get a helicopter company that I worked for back in the day (late 1990s) to use DHCP properly - ie let them “roam free” and let DDNS pin them down. Sounds a bit ridiculous until you encounter “enterprise” grade nonsense.

    I have set up laptops with most of the usual suspects and tried them out. However, I have to comply with Cyber Essentials Plus which is a UK standard. It is fine but rather Windows n that 'centric. That means I need full disc encryption and anti virus (AV) and Secure Boot. I got away with ClamAV in the past but ideally I get cross platform and that means ESET for AV/web etc. I use the usual Linux FDE.

    I also need to join an Active Directory until I have got rid of AD! Oh and there is Exchange.

    https://cid-doc.github.io/ - AD and Evolution with the EWS addon for Exchange.

    So I dive in with Kubuntu after trying Rawhide and all sorts. Ubuntu is flexible enough whilst being stable enough for me. For example, Kerberos is screwed for the Firefox snap. I need Kerb for auth to my corp websites such as our wiki. Mozilla does a PPA - I dump the built in FF snap and use the Mozilla blessed PPA. All documented and all controllable in an enterprise sense.

    Closed In Directory (CID) is a configuration for Linux boxes joining into the MS world. Its a super piece of work, getting Samba, krb etc all working together well, and with a GUI. You can run scripts from your DC for that GPO feel with it.

    My needs are a bit more corp than your gaming shenanigans but my notes might help you decide what you want, what you really (really) want (zigazig … ahhhh!)

    Ubuntu PPAs are a bit like the AUR for Arch … well you have to decide what you really want. You could start from scratch: https://www.linuxfromscratch.org/

  • Bizarre article: “Recently, Linux-based firmware has emerged as a powerful alternative”

    I have a stack of Dell OS9 switches in my computer room - they boot BSD. I have sold and set up Dell OS10 switches - they boot Debian … on the control plane. To be fair they can run quite a few OS’s on the control plane. On both, you can switch to a shell (BASH) and fiddle with Ansible and the like or you stick with the usual interface.

    They are not glorified PCs! Frames and packets pass through some very fancy electronics and some very specialized memory (CAM - Content Addressable Memory) is employed for certain tasks. The manuals for these beasts run to 1500 pages.

    I also have a large fleet of pfSense and VyOS routers and a Mikrotik or two and a slack handful of Fortiwotsits, oh and a Cisco thing or two and some others. pfSense is BSD and the rest are Linux. The Fortis are a bit more like modern switches with their own rather odd and twitchy way of doing things, backed up with some fancy and not so fancy hardware.

    I have also played with all of the distros mentioned: Tomatoe/DD-WRT/OpenWRT and they are great for cheekying up a rather rubbish ISP provided router. They are also great for running on budget gear. They are basically superb for budget conscious consumers that are capable of reading some very decent docs. Prosumer is the term, I think.

    Anyway, this article is rather odd and is basically filler. The section titled: “Case Studies and Real-World Examples” is a contender for fluff of the month.

  • My wife’s laptop absolutely has to work. For some mad reason I decided on Arch for it. Actually a rolling distro is not so mad. You get the latest stuff and in general issues are fixed as quickly as a LTS jobbie or you get a work around in the forums or you dig out the source and a compiler. It’s no accident that the Arch wiki is an oft cited resource. Its not for everyone!

    I’ve been looking at a similar thing for my company and Kubuntu so far is my choice and I’ve already ditched the LTS bit. I need to run AV and the usual corporate bollocks to pass silly tick box exercises, so my options are rather limited.

    There is no perfect one size fits all distro, that’s what we have rather a lot of them to choose from - they rise and fall according to natural selection and not artifice. Imagine if all computers were sold with a free/libre OS or none at all and Windows or Apples were a paid for add on. Monolithic OSs are completely deluded about being able to cater for all, without some dreadful contortions.

    Anyway, back to the job in hand! If you want a LTS then you must accept older software or you use an LTS as a base and add newer stuff yourself. Most Linux distros allow you to run your own add-ons formally or informally. Gentoo has a rather nifty user patching mechanism for distro ebuilds and you can have your own ebuilds take over entirely. RPM and pkg distros can handle user packages and Ubuntu has PPAs too. I could go on. Also you can go off piste and put stuff into /opt and/or /usr/local!

    Please reconsider your use of the term “unstable”. I suggest you write down a list of your requirements and score them according to importance. Then grab a list of OSs and distros - all of them, don’t preclude Windows and Apples: they have their uses. Then score the OSs/distros against your requirements. The scoring might be in the form of a matrix (table). I suggest keeping it simple with a score of -1 to 1 for each item (-1=dislike, 0=neutral/whatevs, +1=like)

    Do a pilot project and see how that goes. Take your time. If it is for personal use then run your tests in a VM. Most modern hardware can easily run a VM or two. Virtualbox or VMware Worskstation or KVM (libvirt is a good effort)

    The choice is yours. Note that word “choice” - its very important.

    “I understand that Canonical has every right to make the decision about their product.”

    That seems fair. There are loads of distros available so why not try something else if you don’t like Ubuntu?

    Linux and other mainstream Unices such as FreeBSD or OpenBSD int al (that’s not something I ever thought I’d be able to say a few decades back) are not Windows or Apples or whatevs. You do you and not them!

    If Ubuntu fails to scratch your itch then move on. Debian is the upstream for Ubuntu so you’ll probably be fine with that instead. There is loads of documentation for Debian via the wiki etc and of course most Ubuntu docs will apply as well.

  • They don’t need a new distro, unless they hire a lot of highly skilled packagers. I’d take say Ubuntu or OpenSuSE … but it would be RedHat with Oracle for the NHS - they just can’t help losing money.

    For my tiny company, I’m going Kubuntu … bear with … Ubuntu means:

    • Multiple “enterprise AV” are available (ESET and others)
    • Secure Boot
    • Full disc encryption is available

    Those boxes ticked gets you on the way in the rather naff enterprise security word of tick boxes. Without those - give up now.

    The K(DE) bit gets you a lot of configurability and its reasonably easy to get an environment out of the box that Windows users can get to grips with. Besides, I like KDE/Plasma.

    I then tack on this rather fine project: https://cid-doc.github.io/ for AD, SYSVOL, “Drive letter” etc integration. Evolution with EWS does email.

    My test machine is my desktop (it used to run Arch (actually), my laptop still does) - I started off with Kubuntu 22.04 and wired up all the above and then whilst in a Teams meeting kicked off the upgrade to 23.04 for a laugh. Sound stopped after a while because the kernel modules switched out. Anyway, all good after a reboot.

    Seeing as I am competing with something that has GPO, I’ll allow myself to use Ansible.

    PS - I should point out that an Arch box can run one of the ESET for Linux products OK (I have). You can get it to do secure boot and it can do FDE. So can Gentoo but I spent 15 years constantly fixing my Gentoo pets too.

  • I do IT security for a living. It is quite complicated but not unrealistic for you to DIY.

    Do a risk assessment first off - how important is your data to you and a hostile someone else? Outputs from the risk assessment might be fixing up backups first. Think about which data might be attractive to someone else and what you do not want to lose. Your photos are probably irreplaceable and your password spreadsheet should probably be a Keepass database. This is personal stuff, work out what is important.

    After you’ve thought about what is important, then you start to look at technologies.

    Decide how you need to access your data, when off site. I’ll give you a clue: VPN always until you feel proficient to expose your services directly on the internet. IPSEC or OpenVPN or whatevs.

    After sorting all that out, why not look into monitoring?

  • I think we might be writing at cross purposes. The system you had for your mum obviously worked effectively for you and that is the important thing.

    POTS provide(s|d) a fixed point of reference - your address is registered against the number for 999 etc; it provides power for a handset or device; Its been like that for a lot of decades! These are cast iron guarantees. A POTS line has guarantees, enshrined in UK law, that mobile etc does not have. POTS is circuit switched (well it was) which means there is a physical path between the ends for the duration of the conversation.

    So, by old school, I mean that you currently have important guarantees about telephony in the UK that will evaporate in future. In 2025 or so, we in the UK will have finished migrating from our old school POTS copper lines and will enjoy our smart new SoGEA lines instead. Single Order Generic Ethernet Access. Instead of an emulated circuit switched line we will use VoIP across the entire country. Nothing wrong with that but it probably won’t have the guarantees that POTS had.

    Red Care is no more - BT have dropped it on the floor as of Feb this year which may indicate that things are not well with our future comms promises. The general system that Red Care was one product of is still available.

    This is the important point: Promises (in law) that we used to be able to rely on for comms may (will) be binned.