Red Hat Enterprise Linux 10.2 feels like a pretty big moment for enterprise Linux. Red Hat is stuffing AI directly into the command line with the new “goose” assistant, modernizing developer tools like Python 3.14 and PostgreSQL 18, pushing harder into immutable Linux with bootc image mode, and even preparing for post-quantum cryptography threats. Some Linux admins will probably hate the AI angle, others may love the idea of faster troubleshooting and automation, but either way, it’s clear Red Hat sees the future of enterprise Linux as something far more active than just a stable server OS sitting quietly in a rack.
Windows RDP works pretty well for me, but trying to use a Linux desktop over RDP has been painfully slow.
My home internet connection isn’t great, so I often work remotely through Windows RDP. At home, I’m using an Asus ProArt monitor with a 5120×2880 resolution as my main display. With Windows, it’s totally usable: resizing windows, moving things around, and normal desktop work all feel smooth enough.
For some tasks, though, I also need a Linux desktop. I set up an Ubuntu desktop machine in a data center and configured xrdp for remote access. The connection works, but the performance is really bad. Opening or resizing windows takes several seconds, screen redraws are slow, and the whole desktop feels too laggy to use properly.
Is this just a known xrdp/Linux issue, especially with very high-resolution displays? Or would I be better off using another remote desktop for Linux instead? (I’m not very familiar with Linux)
Hi everyone,
I’m currently working as a Linux Support Engineer and looking for part-time Linux Administrator roles or remote infrastructure support opportunities.
Available for:
• Remote part-time work
• Weekend support
• Linux administration tasks
• Infrastructure support work
If anyone is hiring for part-time Linux/System Administration roles, please DM me.
Thank you.
Running an AD Health Assessment on our Windows 2019 forest and it flags
~40 Linux/Unix computer accounts as PasswordNeverExpires=True
(userAccountControl bit 65536 set). Before I blindly clear the flag, I want
to understand what's actually going on.
Environment:
realm join (SSSD), Samba/Winbind, some old Centrify leftoversPasswordLastSet going back 5+ years but are actively authenticating users via Kerberosad_maximum_machine_account_password_age = 0 or the parameter is missing entirelyQuestions:
Is PasswordNeverExpires=True actively set by the Linux join tooling,
or did sysadmins set it manually years ago to prevent breakage? Does
realm join / adcli / net ads join set bit 65536 by default?
If I clear the flag on a Linux box where SSSD rotation is disabled, does anything actually break? My understanding is the GPO doesn't actively expire passwords — the client initiates the change. So clearing the flag on a non-rotating box should be functionally a no-op while making the health report happy. Am I missing something?
What's actual best practice in 2026 for Linux machine password rotation?
Enable ad_maximum_machine_account_password_age = 30 everywhere? Cron
adcli update? Or just accept Linux passwords don't rotate and document
the exception?
Looking for war stories from anyone running mixed Windows/Linux AD at scale. Bonus if you've tested what happens when clearing the flag on a non-rotating box.
Over the last decade I’ve been playing with dozens of servers from multiple providers. These are the steps I’ve been perfecting to get up to speed fast and feel right at home on a new machine. Wrote it down here mostly as a personal reference, but hopefully useful to someone else too.
Hey everyone,
I’m a 4th-year B.Tech student and I recently decided to focus on DevOps as my career path.
I just started learning Linux today. My plan is to complete Linux basics in the next 2 days, and after that I’ll keep posting updates about the next topics I learn in DevOps.
I want to stay consistent and document my journey from beginner to becoming job-ready.
If anyone has suggestions, resources, or advice for a beginner in DevOps, I’d really appreciate it.
Day 1 starts today 🚀
I am trying to collect and organize logs from my Windows servers on my syslog server.
The syslog server is openSUSE Leap 16 using rsyslog, and my Windows servers send their events to it through SolarWinds Event Log Forwarder for Windows.
Ideally, I would like to have a folder for each server, and within that folder will be a log file for security events, a file for windows events, a file for Active Directory events, etc.
As I have it now, my rules are filtering all events from a particular system into a dedicated file, and it's ridiculously painful trying to extract anything useful from them in a timely manner.
I am trying to set up a dynamic file naming structure and filtering rules to handle this, but what I have isn't working and I don't understand why/where I went wrong.
This is what I currently have:
template(name="SolarWindsDynamicPath" type="list") {
constant(value="/var/log/syslog/servers/")
property(name="hostname")
constant(value="/")
property(name="$now")
constant(value="-")
property(
name="msg"
regex.expression="MSWinEventLog#[0-9]+#([A-Za-z0-9 ]+)"
regex.submatch="1"
regex.nomatchmode="FIELD"
caseconversion="lower"
)
constant(value=".log")
}
template(name="CleanLogLine" type="list") {
property(name="timestamp" dateFormat="rfc3339")
constant(value=" ")
property(name="hostname")
constant(value=" ")
property(name="rawmsg" controlcharacters="drop")
constant(value="\n")
}
if ($msg contains "MSWinEventLog") then {
action(type="omfile" dynaFile="SolarWindsDynamicPath" template="CleanLogLine")
stop
}
It passes the rsyslogd syntax check, but it doesn't work and my server logs are just going into the generic 'warn' log file specified in rsyslog.conf.
Any advice is appreciated!
Hey guys,
I'm conducting a survey for those using containers to deploy software. Thanks ahead of time to everyone who responds. To the Komodo users, I hope you have been enjoying Komodo v2.
If you don't know: Komodo is a platform to build and deploy software on many servers. There is no limit to the number of servers you can connect, or to any features including SSO and RBAC. For more information, check out the introduction docs.
Have a good day!
🦎 Homepage: https://komo.do
🦎 GitHub: https://github.com/moghtech/komodo
🦎 Demo: https://demo.komo.do (login with demo : demo)
🦎 Discord: https://discord.gg/DRqE8Fvg5c
I have 45 days.
I am ex support engineer right out after college.
My skills include Linux troubleshooting, linux command line, SQL basic querying.
I have exposure to kubernetes.
Do not just say homelab. Describe how that helps. And many more.
How do I reach to that door of recruiter? If anyone here is willing to provide me a chance, I am ready for that opportunity.
Our org runs a mixed fleet, about 60% Linux, rest Windows and macOS, and we're, in the middle of replacing a legacy DLP setup that basically ignored anything not running Windows.
Constraints: mid-market budget, two-person security team, already deep in Microsoft 365 but not locked into Purview, and we need, USB control plus content inspection to actually work on Ubuntu and RHEL endpoints, not just check a compliance box.
Forcepoint's Linux agent support is unclear from what I've been able to find - their endpoint protection seems, to be documented for Windows and Mac only, so if anyone has real-world experience there I'd love to know. Microsoft Purview is the obvious fit for our M365 stack but I haven't been able to get a, straight answer on where their endpoint story actually lands for non-Windows, and I'm not fully confident in it. We also looked briefly at Netwrix DLP but couldn't find much verified information about their Linux support at all, which makes it a harder sell to leadership regardless.
Priority order for us: reliable Linux agent, USB and peripheral control, content-aware policies that don't need a full-time tuner, and decent M365 integration.
Curious specifically how others with Linux-heavy fleets are handling the Purview gap right now, and whether Forcepoint's Linux support has actually held up in production.
Shipped v0.16.0 with end-to-end Deep Packet Inspection.
- **Packets tab:** INFO column is L7-aware and color-coded. Filter syntax: `app:quic`, `sni:reddit`, `host:github`.
- **Dashboard top-talkers:** real hostnames in the bandwidth panel.
- **Packets detail pane:** decodes QUIC v1/v2 Initial packets and shows the inner CRYPTO/PADDING/PING frame structure.
Full RFC 9001 / 9369 QUIC Initial decryption — HKDF-Expand-Label keys, AES-128 header protection, AES-128-GCM AEAD,
cross-packet ClientHello reassembly. Most peer tools just tag flows as `QUIC`; this one tells you the hostname.
cargo install netwatch-tui
# or
brew install matthart1983/tap/netwatch
Rust + ratatui, MIT. https://github.com/matthart1983/netwatch
I wanted to create a tool to easily run animations/sequences in the terminal, either for fun or for automations.
I built it in Go and designed it to be easily expandable, so more animations (complex or simple) can be added effortlessly.
Current Animations (8 total):
no-more-secrets. It grabs a random article from Wikipedia and runs a decryption animation.I would love some feedback and possible contributions for more fun animations
https://github.com/mohamedation/gotermfx
This is part of the dirtyfrag family, but is different enough to warrant its own CVE.
>
Known as Fragnasia and tracked as CVE-2026-46300, this security flaw stems from a logic bug in the Linux XFRM ESP-in-TCP subsystem that can enable unprivileged local attackers to gain root privileges by writing arbitrary bytes to the kernel page cache of read-only files.
Immediate patching if you cannot update:
rmmod esp4 esp6 rxrpc
printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.confrmmod esp4 esp6 rxrpc
printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf
>
Hey everyone,
I’ve been working on ToolsWalla (https;//toolswalla.com), a growing collection of simple, fast and practical online tools built to solve everyday problems without signups or unnecessary clutter.
I’m currently looking for genuine user feedback to help improve the site further. If you have a few minutes, I’d really appreciate it if you could explore the website, try out any tools you find useful, and share your thoughts.
Things I’d especially love feedback on:
The idea is to fine-tune the platform based on real use cases and real user experiences instead of just assumptions.
All feedbacks are genuinely helpful and appreciated, positive or critical.
Thanks a lot to anyone who takes the time to check it out and share suggestions 🙏
Mother fucker. Removing this because the answer turned out to be so fucking stupid.
I had the thought "well I downloaded the file through bambu studio that I was printing, maybe that was the file name?" I didn't want to start up my desktop until I had more info, but I could access the file on my phone. Nowhere did "kloz_nuke" show up in the description. The title was "iphone/tablet stand". The user wasn't named that, nowhere did I see that.
Being unable to find a thing I booted my desktop back up to try and get more info. Didnt find anything in any logs. I go "I know, I'll do exactly what I was doing and see if I get the message again"
Open up bambu studio and I see in print history the tablet stand I was printing? "kloz_nuke.3mf"
what the fuck that has to do with a tablet stand I have no idea. FML
Found this as a lightweight alternative to OpenCost. I didn't want to deploy anything into the cluster, just get quick insights into where the money is going. It runs locally via kubectl, pulls real pricing from AWS/Azure/GCP, and breaks down costs by namespace and pod.
Hey everyone,
Every time I spin up a new server or fresh Linux machine I waste 2+ hours installing the same tools. So I built a bash script that handles everything in one go.
What it installs:
What else it does:
One command:
bash
sudo bash setup.sh
GitHub link in the comments. Would love feedback from anyone who tries it — especially on RHEL/CentOS since that's harder to test locally.
Hi all, could use some help if you got a minute. I’ve set up a Foreman server to provision virtual machines (on hyper-v but I’m not utilizing the compute setup since I figure it’s not supported) and bare metal servers. So far for testing I’ve been setting up a test virtual machine to verify the functionality of the DHCP, TFTP, and provisioning process within my subnet I’ve created. So far everything works with the Debian preseed templates right out of the box but not the kickstart templates. I can’t quite rack my head around why though. I figure is there some extra preconfiguration step I must be missing somewhere?