-> @jrgd@lemmy.zip

How locked down are the Chromebooks?

Remote VM seems overkill if you can just enable “Linux for Chromebook”, which gives a sandboxed terminal at which point you can setup and install software like Blender, PrusaSlicer, etc.

It won’t be the fastest because they are thin clients, but even modern thin clients do decently for ‘light’ work.

There are good reasons for why both JPEG-XL and WebP exist though.

Reading up on RDP as it’s something I do not utilize, I wondered just how encumbered RDP is compared to Spice and VNC. Wonder how third-party server and clients are handling the patent-encumbered protocol.

Do third parties implement an older standard of the RDP protocol that isn’t as encumbered?

Wine client error:0: version mismatch 787/856.

Check for and kill all wine-related processes and then swap Proton versions for the game again.

Seeing prefix breakage messages with a wine version mismatch is often because of remnants of WINE processes that didn’t stop correctly. Steam prevents game launches for games that still have child processes present from previous launches.

I went ahead and made a few small edits to hopefully better explain things for most desktop environments if anyone else stumbles upon this thread.

Scrolling through their Discord, that particular mod doesn’t work on the latest version of the game as it’s long out of date. You aren’t likely to find another client or server that is hosting it with it actually working. Checking the mod listing page, it just claims untested on latest version.

Unfortunately a lot of the more useful information for the RaftModding ecosystem is all gated behind Discord.

I had written about this in their Discord in a thread:

using this shim script I made, do the following:

1. Install Raft with Proton 9.0-# prefix
2. Place the shim file into the game directory
3. Mark the shim as executable
4. Set Steam launch options to: WINEDLLOVERRIDES="winhttp.dll=n,b" ./shim %command%
5. Launch Raft once
6. Place RMLLauncher.exe into Raft game directory
7. Look for a plaintext target file that should be created in the raft directory
8. Copy the location of the RMLLauncher.exe (exact folder and filename) (right click > Copy Location in KDE / Steam Deck desktop mode)
9. Paste this location into the target file and save
10. Launch Raft
11. Go through RMLLauncher first-time steps
12. Press Play
13. Stop the game and add mods into Raft mods folder
14. Launch the game and load the mods in-game
15. Play Raft modded through Proton

(Instructions adapted from both mine and Discord user YumiChi’s)

This method doesn’t require custom installations, messing with bottles, nor wine runtimes other than Proton.

If you’re running an email server for more than a handful of persistent users, I’d probably agree. However, there are self-host solutions that do a decent job of being ‘all-in-one’ (MailU, Mailcow, Docker-Mailserver) that can help perform a lot of input filtering.

If your small org just needs automation emails (summaries, password resets), it’s definitely feasible to do actually, as long as you have port 25 available in addition to 465, 587 and you can assign PTR records on reverse DNS. Optionally you should use a common TLD for your domain as it will be less likely to be flagged via SpamAssassin. MXToolbox and Mail-Tester together offer free services to help test the reliability of your email functionality.

I’m currently going through a similar situation at the moment (OPNSense firewall, Traefik reverse proxy). For my solution, I’m going to be trial running the Crowdsec bouncer as a Traefik middleware, but that shouldn’t discourage you from using Fail2Ban.

Fail2Ban: you set policies (or use presets) to tempban IPs that match certain heuristic or basic checks.

Crowdsec Bouncer: does fail2ban checks if allowed. Sends anonymous bad behavior reports to their servers and will also ban/captcha check IPs that are found in the aggregate list of current bad actors. Claims to be able to perform more advanced behavior checks and blacklists locally.

If you can help it, I don’t necessarily recommend having OPNSense apply the firewall rules via API access from your server. It is technically a vulnerability vector unless you can only allow for creating a certain subset of deny rules. The solution you choose probably shouldn’t be allowed to create allow rules on WAN for instance. In most cases, let the reverse proxy perform the traffic filtering if possible.

It doesn’t.

The game was under exclusivity contract for Epic Games, but they were still allowed to sell copies of the game on their own website. Now that the contract is up, the game can be sold on Steam. Granting players who bought the game from the website free Steam keys is a nice touch.