Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/securitybrahh/driver

My daily driver Config
https://github.com/securitybrahh/driver

Last synced: about 2 months ago
JSON representation

My daily driver Config

Host: GitHub
URL: https://github.com/securitybrahh/driver
Owner: securitybrahh
Created: 2024-08-18T03:56:55.000Z (5 months ago)
Default Branch: main
Last Pushed: 2024-08-23T13:26:14.000Z (5 months ago)
Last Synced: 2024-08-24T07:54:14.548Z (5 months ago)
Size: 45.9 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

you should run an insecure app in a vm, ideally but sandbox-exec is nice as well - eg to run zoom -- https://gist.github.com/cielavenir/02f322e322a2a3555dbf2b38f2fedd59

https://gofetch.fail/

Asahi Fix - https://social.treehouse.systems/@marcan/112238385679496096

[Why you should be running the MicroOS Desktop | Richard Brown](https://youtube.com/watch?v=lKYLF1tA4Ik)

coreos vs microos vs silverblue vs secureblue vs

sdcard vs hdd vs ssd vs cpu cache vs neural engine vs unified memory vs gpu

pci vs hdmi vs thunderbolt

bare metal vs guest.

emulated vs virtual vs translation vs

arm (graphene) vs x86 (yunohost) vs amd64 (linux) vs isa

# Driver

https://gofetch.fail/, [fix](https://social.treehouse.systems/@marcan/112238385679496096)

My daily driver Config

https://support.apple.com/en-us/HT201222 on mullvad browser autostart

## M1 Pro 32 GB

Karabiner Elements - commamd key to open launchpad,

command + e - finder

option+tab - scroll through apps

buy a used one preferabilly with cash.

connect to a router with vpn / android with [vpnhotspot](https://github.com/Mygod/VPNHotspot)

create media usb disk

reset, reboot

activate via vpn only (other device)

generic computer name & strong pass phrase

any privacy related prompt - disable.

fix your timezone to some other country - if you are not in New York, Ney York time is nice.

disable touch id, siri etc

Enable Firewall

"pool.ntp.org"

disable everything

automatic security updates

change dns to mullvad - dns.mullvad.net

switch on filevault

```
softwareupdate --install-rosetta --agree-to-license
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)"
brew install --cpolicies
kknock
brew install --cask taskexplorer
```

```
sudo mdutil -a -i off
sudo mdutil -s /
sudo spctl --master-disable
sudo mdutil -X /
```

install little snitch, allow only stuff you need to stuff you allow.

mullvad browser

mullvad vpn

edge with policies

taskexplorer + knockknock + activity monitor

system information

## UTM

shared directory

acceleration

usb passthrough

spice tools

### Windows 11 ltsc iot

active directory

switch off hibernation / swap file

mullvad vpn

qemu

hard configurator

// portmaster not available on ARM rn

I use this for ms office mainly, rarely adobe aftereffects (seamless mode??)

firefox dev edition with arken fox & ublock

edge with policies

ms office & edge is working through prism prob

### Fedora Silverblue

with **apple virtusalization**

swap ctrl & super with gnome tweaks

keyboard shortcuts

remove bloat

my apps on deck, photogimp, freetube

flatseal

wireguard config of mullvad

ungoogled chromium

arkenfox firefox dev

mullvad ARM

cromite?

edge ARM linux not available (maybe emulate with qemu/box86/rosetta-flatpack)

hardenedmalloc in flatpack, disable zram

disable null passwords

hardened ssh, kernel, disabled coredump,

xwayland???, hardened dconf

gnome extensions as a flatpack package

MAC/DAC/umask/private home

hardened chrony - correct timezone on pocket watch

dnf alias for toolbox, rpm-ostree for removal, layering?

fwupd, microcode, bios

tuned, tlp

hardened firewalld, networkmanager, mac randomization, dnssec unbound,

### Macos

You can test stuff here

adguard mac

edge

mullvad

tor

lulu

charles proxy / wireshark

## Apps

Element Desktop

Thunderbird

Obsidian with git-crypt

jdownloader2

qbittorent

## Browsing

default cookie autodelete, save history, can firefix sync, no image & js loading, balanced tracking protection, rfp, send do not track, create exceptions for indivdual sites.

mullvad is esr, be warned.

temp container vs profile

ublock lite/home with filters

predirect

request controller / no script

user agent of edge is best

to verify risky url's first - fast forward, url haus better, only trusted domains though...

### Human Experience

https://github.com/dessant/buster

## Servers

## Music

## Backups

Borg

deduplicating, compression, authenticated (assymetric) encryption (symmetric)

## Sync

OpenMTP

## Gaming

## Updates

security updates, ocsp, xprotect, ..

transaction, tree like, atomic, live-security, a/b, incremental, firmware/oem/modems, high-risk-magisk-modules-lsposed-kernelsu-

## Charging

ups
solar
high watt battery packs, volt*Ampere -> high
home elecricity backup

# number

https://jmp.chat/privacy