I guess it is better to spend some little time cleaning up your existing install than doing a fresh one. From what you describe, you just have some leftover configuration files you can delete.

Fresh installs is needed when you messed up your current install with broken packages or missing ones or missing configuration and you just don’t know how to clean it up.

So as long as you can clean up your install, just clean it.

The only two important columns are “Local address: port” and “process”. The later is what process is listening whille the former is the interface that process is listening on and the port.

So you see that I don’t have any process listening on any port other than 80 and 443 iin the host and the regular ones.

That said, you containers will still listen on the ports you want but only on a virtual network interface.

Basically you only need to publish ports 80 amd 443 on the container or pod you have your reverse proxy on. Other containers need to only be attached to the same network as you already did.

It is good you have solved you initial issue. However, as you say, your rules are too permissive. You should not publish ports from containers to the host. Your container ports should only be accessible over reverse-proxy network. Said otherwise :3000 should not resolve to anything.

This can be simply acheive by not publishing any port on your service containers.

Here is an example of my VPS:

Exposed ports:

$ ss -ntlp
State                Recv-Q               Send-Q                             Local Address:Port                             Peer Address:Port              Process                                                  
LISTEN               0                    128                                      0.0.0.0:22                                    0.0.0.0:*                  users:(("sshd",pid=4084094,fd=3))                       
LISTEN               0                    4096                                     0.0.0.0:443                                   0.0.0.0:*                  users:(("conmon",pid=3436659,fd=6))                     
LISTEN               0                    4096                                     0.0.0.0:5355                                  0.0.0.0:*                  users:(("systemd-resolve",pid=723,fd=11))               
LISTEN               0                    4096                                     0.0.0.0:80                                    0.0.0.0:*                  users:(("conmon",pid=3436659,fd=5))                     
LISTEN               0                    4096                                  127.0.0.54:53                                    0.0.0.0:*                  users:(("systemd-resolve",pid=723,fd=19))               
LISTEN               0                    4096                               127.0.0.53%lo:53                                    0.0.0.0:*                  users:(("systemd-resolve",pid=723,fd=17))  

Redacted list of containers:

$ podman container ls
CONTAINER ID  IMAGE                                        COMMAND               CREATED        STATUS                 PORTS                                     NAMES
[...]
docker.io/tootsuite/mastodon-streaming:v4.3  node ./streaming      2 months ago   Up 2 months (healthy)                                            social_streaming
docker.io/eqalpha/keydb:alpine               keydb-server /etc...  2 months ago   Up 2 months (healthy)                                            cloud_cache
localhost/podman-pause:4.4.1-1111111111                            2 months ago   Up 2 months            0.0.0.0:80->80/tcp, 0.0.0.0:443->443/tcp  1111111111-infra
docker.io/library/traefik:3.2                traefik               2 months ago   Up 2 months            0.0.0.0:80->80/tcp, 0.0.0.0:443->443/tcp  traefik
docker.io/library/nginx:1.27-alpine          nginx -g daemon o...  3 weeks ago    Up 3 weeks                                                       cloud_web
docker.io/library/nginx:1.27-alpine          nginx -g daemon o...  3 weeks ago    Up 3 weeks                                                       social_front
[...]

You can use a black theme. Look at gnome-look.org

You can also reverse engineer them to look how they make the theme blank and apply it to adwaita. This is not complicated as themes are mostly CSS.

Edit to add that you can chat with people from open deskttop (gnome look) to ask your question: https://chat.opendesktop.org/#/welcome

Why should the drives be sneakily deposited. If he trusts his relative or friend he may just tell them to keep it safe until new gets out.

However the bigger challenge would be to read the files using newer technology since those drive connectors might get obsolete. Maybe you need to store technology you can read it with. For example an external disk drive with USB 3 cables and Somme USB C adapters. If using internal drives this gets a bit complicated since you would need also some cables and motherboards. So external hard drives would be easier.

Fixed. Thanks.

You should try Thunder. It is available on Izzysoft. Its is FOSS (AGPL) but I don’t know why it is not in official f-droid repository.

Seems like you have a permissions issue. I just tested it on Fedora workstation gnome, run it from regular menu, then it asked me for password. You, you have a permission denied isssue, so you need to figure out how to run it as root.

They get better everyday. You will use them at some point if you cannot find your software via your favorite package manager.

I haven’t read other comments but it is worth checkjng your TV audio setup. You might want to set the sound output to cinema or speaking mode. Thus changes the sound and optimizes it for easier listening. If the audio is set to music, it will be amplified and nice to hear but difficult to decipher.

My guess is you your brain puts too much work to decipher the sound and construct words. You can make your brain do leaa work just by changing how the sound is output so it becomes easier to distinguish word, thus not need to compensatory with higher volume.

Of course you may need to experiment with you TV settings to find what is suitable for you. Obviously an audio setting ibtized for speach would reduce quality of music out put.

If you use MS Teams, you will notice that when you start a phone call but still have music playing then out will change in tone. For the same reason, Radio presenter in the past would speak a certain way so they can be heard correctly over the radio.,

Great to hear it is a good drop-in replacement. I’ve been using KeyDB, but seeing valkey is more actif, I may endup using it too.

I cannot reproduce it, I just tried to copy some files with various methods but they always end up correctly named. The only difference is that I have Btrfs. I never encountered this issue when I was using ext4 though.

Seems to be a Pixelfed instance.

I don’t know how to contact them but they put the URL for https://milpamerica.org/ wrong. It has an accent. Such a missed opportunity to promote it.

Never noticed that? How do you copy them, from terminal? What software do you use? What file system do you use?

They now he is sick of it and wants to switch career completely.

Participants need to find the right balance of information. I noticed it is productive when developers give just enough information for other to understand but not too much to confuse them and loose time. This is not easy to achieve…

Why is your scrum 1 hour long?

There are 2 kinds of distributions. Ones that are on customization side and those on stability side.

For example Debian, Fedora, and arguably Arch are on stability side. They are intended for people that want things to work predictably and software to be packaged and shipped as the developer intended it. Customization or lack of it is up to the user.

Distributions like Manjaro, Zorin OS, Elementary OS, LMDE or even Linux XP are have a given goal to a particular customization. Either a set of tweaks, a particular look or even their own desktop environment or set of software they develop themselves.

This means that the first kind would have the most boring update, as they just ship new and correctly integrated software. While the second kind would provide very nice customisations or patching of their own to their environment.

My logitech mx master 3 works instantly on fedora with all it’s features. I also have various wired and worless keyboards and mouses that work instantly on Fedora.

For same mouse on windows, I need to wait for it to download and install outs drivers.

Maybe you got things confused or are using LinuxFromScratch or something.