I freakin love OpenWRT. I used it for a solid 5-6 years on some consumer grade routers and learned a lot about managing networks.
Ive since moved to more powerful enterprise network gear because OpenWRT opened that door for me and taught me what is possible. I might not ever go back to it, but I will always recommend OpenWRT to people who want to rice out their routers and get the most out of it.
Check out SyncThing, which can sync a folder of your choice across all 3 devices
[edit] oops, just saw you don’t plan on using it
In that case, if you use KDE, you can use Dolphin to set up network drives to your local network machines through SSH
I believe thats how Android works. As I recall, it uses fscrypt.
If this is upendable, im sure the next distro will be fun for this user.
I changed my mkinitcpio hook from the busybox initencrypt to systemd init sd-encrypt to help with this, as it presents a different way to unlock a LUKS partition. Be sure to read the notes about sd-vconsole if you use this hook. Your mileage may vary since im not sure which OS you’re on.
I can think of some commercial audio processors that can help with that, but they are super pricey.
I can’t think of a linux application that has this capability. If there is something out there that offers AEC (acoustic echo cancellation) on linux with two mic inputs, id also be interested.
One way to help with this as far as inexpensive hardware is to make sure you’re using cardioid dynamic microphones, and not omnidirectional condenser microphones. Cardioid dynamic mics generally pick up audio directionally, like from the “front”. You have to be right up on the mic in order to have it record any type of audio. They generally wont pick up environmental sound from anything more than a few feet away. You can just point them away from noise you don’t want to pick up.
TPM has solved this now for more than a decade.
Verified boot + TPM encryption key storage is a huge layer of protection for the boot process.
Check out the Arch wiki for TPM. It has some good reading.
During those rare times that you boot into Windows 11, go ahead and update it.
I wouldn’t go out of your way and boot into it for the sole purpose of keeping it updated tho.
You need VLANs if you want separate networks on the SAME router. But if you have separate routers, then you don’t need VLANs.
You will need two wireless access points. If the router you mentioned has two wireless access points built in, then just set one to connect to the shared network, and the other will act as an AP for your private network. Then the router can be configured to send WAN traffic out of the shared network AP.
If you use a router that only has a single AP built in, then you will need to purchase and additional AP to plug into one of your router’s LAN ports so that it has two total.
Some routers might have the ability to create multiple wireless networks on one router, but be sure the hardware can handle the load. I know my ubiquity UDR can create up to 5 wireless networks on that single device before you run into performance issues.
Honestly, if you’re using your own router, you won’t need to worry about VLANs as long as your router separates your private network from the shared one.
For example, if the shared network is 192.168.0.0/24, you can make your private network 192.168.5.0/24 and have your router’s firewall block incoming traffic from 192.168.0.0/24. Only allow WAN traffic out, and allow return traffic.
Then have your router or connected server act as the authoritative DNS and DHCP servers for the 192.168.5.0/24 private network.
One wireless AP will be used in client mode to connect to the 192.168.0.0/24 shared network. The other wireless AP will be used as an access point for other devices to connect to the 192.168.5.0/24 private network.
And technically the key file can just be a plain text password and still work. Just as long as the key file matches the drive’s encryption password.
If its encrypted, you can also decrypt the drive automatically once booted by adding an entry in /etc/crypttab
This will make it so you don’t have to type the password.
Its perfect for a small VPS. Been using it for years.
I do occasionally get places where my email simply will not send to them, even though it follows every email standard properly and isnt blacklisted. For those rare occasions, ill use a third party email address to send, which then forwards everything to my main email.
Per the Arch Wiki:
The AUR is unsupported, so any packages you install are your responsibility to update, not pacman’s. If packages in the official repositories are updated, you will need to rebuild any AUR packages that depend on those libraries.
They have a whole wiki for the AUR.
To update the package, you use git to pull the latest branch code and repeat the process. You should double check if there are dependency changes though.
Like I said, its easier with a pacman wrapper, but not necessary.
You definitely do not need to use any pacman wrappers to build a package from the AUR. Those tools make it easy, yes, but are not required.
Building a package can be as simple as
git clone AURpackageherecd AURpackageheremakepkg -siThey acknowledge many wrappers, not just yay. However, none are officially supported.
Pacman is the only standard package manager for Arch. Arch recommends against using third party package managers, including Yay.
Its more about the hardware than software.