11-12 should be well tested. 12-13 should be well tested. 11-13 may work, but you may be the tester.

I’d step through one at a time.

Bummer. You could get a cheap IoT light bulb/smart plug and ping it in a script, when it times out, start the shutdown. Could be a fun project.

Some (most?) UPSs have a way for them to communicate to the PC so that the PC can automatically cleanly shutdown. You should look into that if its available on your UPS.

Yeah, it prevents booting on that motherboard, but they can just yank your disks and boot it on another motherboard.

Normally, a good bios password implementation shouldn’t reset with CMOS battery, but for yours it seems it does.

Bios passwords dont provide security at all. At most, mild theft prevention (that is trivially bypassed). If you want security, disk encryption is what you want.

Replace your CMOS battery, NTP is good to, but you really don’t want your CMOS freaking out.

Whats your goal? Your current network works presumably, what are you trying to achieve by upgrading? Faster network? Reliability? Expansion options?

Ctrl-alt-Fnumber until you get to a tty shell. Login, run journalctl - f. Ctrl-alt-Fnumber until you get back to login screen, and login. Go back to tty and see what errors got logged.

If you have ssh enabled you can also ssh in and run the journalctl cmd. You’ll have to try different F number keys, I dont remember which ones get you a tty and which gets you the login. Start at F1 and move across, but wait a bit, sometimes it can take a while to spawn the TTY.

Conceptually, not a problem. Windows 11 runs on top of HyperV with no performance issues. In reality, I think you will spend a lot of time, hit lots of weird edge cases and performance issues, especially with trying to get the Linux and windows hosts to coexist nicely.

That said, I’d love to watch you try :)

https://www.rancher.com/ - If you want a pure docker OS.

But really, almost all of the mainstream OS’s will run docker just fine. Pick the one you are comfortable with.

Theoretically, there could also be a MKV file that exploits a bug in the video player to get execution.

Far less likely, but definitely possible.

As you’ve described it, and from what I have read, its very similar to how tailscale negotiates its connections.

Does seem to be unique to Plex though.

I get how that could work, but what services actually do that? Homeassistant can, but that needs to be setup explicitly for it to work.

How does that work? Do they do something like what tailscale does to negotiate the connection? Can you point me to any doco for how that works?

I dont know that that is true. With cloudflare tunnels, their server.x.y.z will resolve to a cloudlfare IP address, which then tunnels it to their server? The traffic has to hit the cloudflare server, it can’t short circuit that connection? Am I missing something?

I would assume yes, it goes out to cloudflare and back in. You want to setup an internal DNS server on your network, and resolve your servers address to its local one. That way when your outside your network, you use the tunnel, and inside it goes direct.

1. You can’t receive those emails anymore.

2. Someone else can.

And self hosting option: https://github.com/storopoli/dead-man-switch

https://www.deadmansswitch.net/ < this looks like it fits the bill

If they can be hidden, like in Windows, I dont really mind if every app has one. I’ll hide the ones I dont care about.

The app dock isnt visible by default, so thats a partitial solution, but I’d prefer to be able to access it directly without opening a menu or overview first.

Steam provides a quick launch menu, thats a good enough reason for me.

Technical issues are worth resolving, but I want the UI to remain the same as the windows one. Its a pattern that works just fine.