For me, I really want to get into niri, but the lack of XWayland support scares me (I know there’s solutions, but I don’t understand them yet).
Also, I stopped using Emacs (even though I love its design and philosophy with my whole heart) because it’s very slow, even as a daemon.
Anything beyond setting up a network-wide dns blocker on docker, so… crowdsec, fail2ban, some proxy-related stuff, zero trust tunnelers and so on.
Why? Because its overkill to my current setup and I don’t see myself using em for real other than for learning purposes, and thats it.
And before someone asks “Do you protect your server at all?”. Other than making some “hacky” stuff with my internet so all ports appear as closed whilst they actually aren’t? Eh, not really. Still, my server is about to reach a year of running nonstop 24/7 and it has never been hacked a single time since then, so naaaw.
How do you tell whether it’s been hacked? The hallmark of a good hack is invisibility, like modifying logs. Do you perhaps count SSH sessions in your router and verify it against client logs, or somesuch technique?