Read-only and not as polished as some of the older commercial versions, but https://f-droid.org/en/packages/com.cosmos.unreddit/ also works. They have different access methods like web scraping. Works well enough for lurking when Reddit isn’t blocking my VPN, which they seem to block/unblock at random.

Its likely hard because its honestly niche.

Linux administration is terminal first so SSH is pretty much all you need. Some services have a WebUI to fill the gap, but its bound to that service. Most server variants of distros don’t even include a desktop environment.

KVM-over-IP (hardware device) is likely a more common approach because if you need video, might as well have BIOS access.

There may be something in the virtualization space where the hypervisor provides a remote desktop, but I’m not familiar with this space. A quick search for proxmox and remote desktop yielded mostly results for guest OS setups instead of at the host layer.

If you want punishment go for NixOS!

• Fundamental philosophy changes over its lifetime.
• No idea (when starting) which documentation or patterns go with which version.

But once it clicks you have a fully declarative setup**. I edit a file, activate, commit to git. On another system, pull, activate.

** The config system is expansive but not exhaustive. I still have to login to Slack, pick my theme, etc. My VPN on the other hand is just ready credentials and all.

I never have to remember the 100 little tweaks I made, every tweak is in git. Noise canceling pipewire filter, what software I had installed, service configurations, secret management, disk partitions, all portable between different systems.

A lighter introduction is probably home manager, works in any Linux system or macOS. Manages your home directory as the name implies.

You can also go lighter with a repo flake.nix and a devShell. Its like a generic virtual environment. Auto activate with direnv. A step up from a devShell would be https://devenv.sh/ which tracks more like home manager with configurable modules. A devShell is really a bash script with these programs available from Nix.

I couldn’t go without LSPs these days.

Real time diagnostics. Jump to implementation. Code actions.

Its just so much faster and my code rarely doesn’t run on first try outside of logic errors, but it still runs.

https://github.com/neoclide/coc.nvim was nice back in the day, but neovim and the plugin ecosystem takes it to another level.

Edit: I agree with you on git when learning. I’m old, over 15 years of experience on it. I don’t have anything to gain typing the same handful of commands I use everyday.

Vim/Konsole are an Apples to Oranges comparison. Modern TUIs are closer in feature parity. Personally I use Zellij with NeoVim and LazyVim as the base config. If you use an LLM, customization becomes easier.

Personal preferences are personal preferences though if VSCode is working for you.

Neovim. Also there for the plugin ecosystem. Some popular feature rich presets, all customizable.

https://www.lazyvim.org/ https://astronvim.com/ https://nvchad.com/

Quick search suggests Emacs is the only other major rival to VSCode/Neovim so you’re stuck with a TUI or a VSCode fork for a rich plugin ecosystem (non-athoritive statement, 30s web search).

I’ve been using etesync for contacts to fill the void when I first discovered it wasn’t supported. I don’t really use any of the other features outside of a e2ee cloud sync of contacts.

Don’t know if they can. If I’m recalling correctly he holds enough Class B shares to retain supermajority voting power.

Anyone else using the same concept would have to write an increasingly convoluted while loop with extra steps.

Sounds like an origin story for recursion.

Firefox Nightly + arkenfox userjs + uBlock Origin + Bitwarden as my daily driver.

Been a couple years since I checked up on arkenfox still being good. I get flagged as a bot all the time and constantly get popups about WebGL (GPU fingerprinting) so I assume its working as intended for my threat model.

Tails when I really care.

Mullvad VPN as my regular VPN with ProtonVPN for torrents.

GrapheneOS / NixOS as my OS.

Proton Visionary for most cloud services except passwords and I don’t really use Proton Drive. I do use ProtonPass for unique emails to every provider.

Kagi for searches / AI.

Etesync for contacts because Proton didn’t sync with the OS last I checked.

Backblaze B2 for cloud storage with my own encryption via rclone (Round Sync on GrapheneOS)

Keypass for a few things like my XMR wallets and master passwords I don’t even trust in Bitwarden.

https://jmp.chat/ for my mobile provider.

Pihole with encrypted DNS to Quad9.

https://onlykey.io/ for the second half of my sensitive passwords (Bitwarden, LUKS, Keypass, OS login). First half memorized.

Its a lot. I burned myself out a couple years ago keeping up with optimizing privacy and this setup has served me well for 2 years without really changing anything. The cloud services are grey areas in terms of privacy but the few ads that leak through uBlock have zero relevance to anything about me.

1. Not sure on this one.

2. The auditor is to make sure you are installing an authentic version of graphene. That it is not a modified version that has been tampered with (e.g., backdoors).

3. Automatically enables MAC randomization. This can help with being tracked on public networks. Fingerprinting techniques have gotten better though with deep packet inspection and even measuring radio characteristics. I’ve seen demos of two brand new and identical models of iPhones being distinctly picked out due to variances in the radios during manufacturing.

Doesn’t help with advertisers tracking behavior based on IP. VPNs help with “blending-in” by putting multiple users behind the same IP. Provider matters here. Needs to be a VPN provider that won’t just sell your data or cave to law enforcement. Mullvad is my preference. Paid with crypto. RAM only logs. That said, use Tor or I2P for anything you don’t want subpoenaed.

For additional tips:

• Can’t remember if its on by default, but auto-reboot to put data at rest (encrypted and not in RAM). This is for a state-actor threat level, and less about advertisers.
• I prefer pin codes to unlock my device and don’t use biometrics. Graphene has a feature to randomize the pin pad every time to protect against a recording of the pin be entered. Specifically where the numbers aren’t picked up on the video but the pattern your hand makes can be seen. Again, more of a state-actor threat level.