Incremental backups have saved my side project a couple of times in the last couple of days, and my system more than a dozen times over the years. When you see backups too close to each other, it’s because I’m working on something and I'm afraid to screw up or else. Gotta love your data, guys.
https://redd.it/1kpug1v
@r_linux
https://redd.it/1kpug1v
@r_linux
Fundamentally Incorrect TCP MSS Clamping Wiki by NFTables Devs
The first thing I want to say is to always verify information from any source. Even if it's from the Wikis of prominent developers and networking professionals. I have no words, this is truly a disgrace. If you have access to NFTables Bugzilla, please create an issue with the text below. I don't have an account.
...
The nftables Wiki section on "Mangling TCP options" currently advises users to clamp MSS to
# Technical Explanation: Why MSS ≠ MTU/PMTU
1. MSS Definition (RFC 879, RFC 6691):- MSS (Maximum Segment Size) is the maximum payload size of a TCP segment excluding headers.
The correct formula is:
For IPv4:
2. Consequences of Setting MSS = PMTU/MTU:
If MSS is set to
This exceeds the PMTU (1500), forcing fragmentation or packet drops (RFC 1191).
3. Example from the Wiki:
The general advice to use
implies
# Why This Matters:
Fragmentation Overhead: Incorrect MSS forces routers to fragment packets, increasing latency and CPU load.
PMTUD Failures: If ICMP is blocked (common in firewalls), PMTUD breaks, and MSS=PMTU causes persistent connectivity issues.
Real-World Impact: Many networks (DSL, VPNs, tunnels) have reduced MTU. For example:
PPPoE: MTU = 1492 → MSS must be 1452.
L2TP|IPSec: MTU = 1460 → MSS must be 1420. ... etc
# Requested Changes to the Wiki
1. Correct the General Guidance:Replace:`nft add rule ip filter forward tcp flags syn tcp option maxseg size set rt mtu`With:`nft add rule ip filter forward tcp flags syn tcp option maxseg size set rt mtu - 40`For IPv6:`nft add rule ip6 filter forward tcp flags syn tcp option maxseg size set rt mtu - 60`
2. Clarify the PPPoE Example:Explicitly state that `1452` is derived from `MTU - 8 (PPPoE) - 40 (IP+TCP)`.
3. Add RFC References:- RFC 879: "TCP Maximum Segment Size"- RFC 6691: "TCP Options and Maximum Segment Size"
# Conclusion:
The current wording promotes a common misconception that MSS equals MTU/PMTU, which is dangerously incorrect. This leads to fragmented packets, broken connections, and degraded network performance. The Wiki should reflect the RFC-defined relationship: MSS = PMTU - headers.
Please update the documentation to avoid misleading users. This is critical for proper network configuration, especially in edge cases (VPNs, PPPoE, IPv6).
Refs:
RFC 879: https://datatracker.ietf.org/doc/html/rfc879
RFC 6691: [https://datatracker.ietf.org/doc/html/rfc6691](https://datatracker.ietf.org/doc/html/rfc6691)
Path MTU Discovery: https://datatracker.ietf.org/doc/html/rfc1191 https://en.wikipedia.org/wiki/Maximum\_segment\_size
https://redd.it/1kpxfa4
@r_linux
The first thing I want to say is to always verify information from any source. Even if it's from the Wikis of prominent developers and networking professionals. I have no words, this is truly a disgrace. If you have access to NFTables Bugzilla, please create an issue with the text below. I don't have an account.
...
The nftables Wiki section on "Mangling TCP options" currently advises users to clamp MSS to
rt mtu (Path MTU). The general guidance to set MSS equal to PMTU/MTU is fundamentally flawed! and contradicts RFC standards. This needs urgent correction to prevent misconfigurations.# Technical Explanation: Why MSS ≠ MTU/PMTU
1. MSS Definition (RFC 879, RFC 6691):- MSS (Maximum Segment Size) is the maximum payload size of a TCP segment excluding headers.
The correct formula is:
MSS = PMTU - sizeof(IP Header) - sizeof(TCP Header) For IPv4:
MSS = PMTU - 40 (20-byte IP + 20-byte TCP). For IPv6: MSS = PMTU - 60 (40-byte IPv6 + 20-byte TCP). 2. Consequences of Setting MSS = PMTU/MTU:
If MSS is set to
PMTU (e.g., 1500), the total packet size becomes: MSS (1500) + IP (20) + TCP (20) = 1540 bytes This exceeds the PMTU (1500), forcing fragmentation or packet drops (RFC 1191).
3. Example from the Wiki:
The general advice to use
tcp option maxseg size set rt mtu implies
MSS = PMTU, which is incorrect. This creates a contradiction.# Why This Matters:
Fragmentation Overhead: Incorrect MSS forces routers to fragment packets, increasing latency and CPU load.
PMTUD Failures: If ICMP is blocked (common in firewalls), PMTUD breaks, and MSS=PMTU causes persistent connectivity issues.
Real-World Impact: Many networks (DSL, VPNs, tunnels) have reduced MTU. For example:
PPPoE: MTU = 1492 → MSS must be 1452.
L2TP|IPSec: MTU = 1460 → MSS must be 1420. ... etc
# Requested Changes to the Wiki
1. Correct the General Guidance:Replace:`nft add rule ip filter forward tcp flags syn tcp option maxseg size set rt mtu`With:`nft add rule ip filter forward tcp flags syn tcp option maxseg size set rt mtu - 40`For IPv6:`nft add rule ip6 filter forward tcp flags syn tcp option maxseg size set rt mtu - 60`
2. Clarify the PPPoE Example:Explicitly state that `1452` is derived from `MTU - 8 (PPPoE) - 40 (IP+TCP)`.
3. Add RFC References:- RFC 879: "TCP Maximum Segment Size"- RFC 6691: "TCP Options and Maximum Segment Size"
# Conclusion:
The current wording promotes a common misconception that MSS equals MTU/PMTU, which is dangerously incorrect. This leads to fragmented packets, broken connections, and degraded network performance. The Wiki should reflect the RFC-defined relationship: MSS = PMTU - headers.
Please update the documentation to avoid misleading users. This is critical for proper network configuration, especially in edge cases (VPNs, PPPoE, IPv6).
Refs:
RFC 879: https://datatracker.ietf.org/doc/html/rfc879
RFC 6691: [https://datatracker.ietf.org/doc/html/rfc6691](https://datatracker.ietf.org/doc/html/rfc6691)
Path MTU Discovery: https://datatracker.ietf.org/doc/html/rfc1191 https://en.wikipedia.org/wiki/Maximum\_segment\_size
https://redd.it/1kpxfa4
@r_linux
My Own Worst Enemy
I've been using Linux mainly for headless server use for about a decade.
My first run in was like 20 years ago dual booting winxp and using the oem hdd I pulled out of my original Xbox (had a mod chip & replacement drive).
I still use it, everyday, on my headless servers.
But having tried daily driving it for the past few weeks I can firmly say my patience isn't strong enough to use it for my main OS.
Guess I'm slow on the uptake, my expectations are too high, something else idk. Maybe 30+ years of daily windows use just ingrained the ecosystem.
I want to prefer it! I really do. It's done nothing but good for me in the homelab sense.
Fwiw the utterly pointless fact that has me so heated...im trying to fix my flipper zero. I needed qflipper. Install it from apt. Threw errors right out the gate. It just worked in win11 🤷♂️
https://redd.it/1kpy3ua
@r_linux
I've been using Linux mainly for headless server use for about a decade.
My first run in was like 20 years ago dual booting winxp and using the oem hdd I pulled out of my original Xbox (had a mod chip & replacement drive).
I still use it, everyday, on my headless servers.
But having tried daily driving it for the past few weeks I can firmly say my patience isn't strong enough to use it for my main OS.
Guess I'm slow on the uptake, my expectations are too high, something else idk. Maybe 30+ years of daily windows use just ingrained the ecosystem.
I want to prefer it! I really do. It's done nothing but good for me in the homelab sense.
Fwiw the utterly pointless fact that has me so heated...im trying to fix my flipper zero. I needed qflipper. Install it from apt. Threw errors right out the gate. It just worked in win11 🤷♂️
https://redd.it/1kpy3ua
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
Relatively unknown FOSS Linux video editor with a lot of potential
I recently came across a pretty unknown video editor called "cinelerra gg infinity" in my quest for a good Linux video editor. I decided to check it out, and I'm quite impressed with what it has. I see that there are a bunch of effects, and even a plugin that allows you to run inkscape inside the video editor (if you have inkscape installed in your system as a native package and not a flatpak).
They also have hardware-accelerated playback with OpenGL using VA-API, VDPAU, or even CUDA.
For rendering they have CPU rendering, and GPU hardware-accelerated rendering with VA-API, Quicksync and NVENC (however this is only available if you get cinelerra gg from the AUR, or compile the cinelerra gg appimage yourself; or else you can only use the CPU).
They can even use a render farm for rendering!
A benefit and a downside of cinelerra gg is that they do not use the MLT framework; they instead use ffmpeg and their own custom GUI and plugin system.
I'm honestly shocked that more people do not know about cinelerra gg, and that this software is so unknown and obscure.
The link to their website if you want to check them out: https://www.cinelerra-gg.org/
https://redd.it/1kpzrj7
@r_linux
I recently came across a pretty unknown video editor called "cinelerra gg infinity" in my quest for a good Linux video editor. I decided to check it out, and I'm quite impressed with what it has. I see that there are a bunch of effects, and even a plugin that allows you to run inkscape inside the video editor (if you have inkscape installed in your system as a native package and not a flatpak).
They also have hardware-accelerated playback with OpenGL using VA-API, VDPAU, or even CUDA.
For rendering they have CPU rendering, and GPU hardware-accelerated rendering with VA-API, Quicksync and NVENC (however this is only available if you get cinelerra gg from the AUR, or compile the cinelerra gg appimage yourself; or else you can only use the CPU).
They can even use a render farm for rendering!
A benefit and a downside of cinelerra gg is that they do not use the MLT framework; they instead use ffmpeg and their own custom GUI and plugin system.
I'm honestly shocked that more people do not know about cinelerra gg, and that this software is so unknown and obscure.
The link to their website if you want to check them out: https://www.cinelerra-gg.org/
https://redd.it/1kpzrj7
@r_linux
why do people complain about libadwaita, but not QT?
I often see people complaining about how bad libadwaita integrates in any DE that is not Gnome, but the same doesn't happen with QT apps.
QT apps look pretty bad outside of any QT DE. libadwaita apps looks better on gnome, yes, but they're still decent enough on other desktops.
https://redd.it/1kpzytr
@r_linux
I often see people complaining about how bad libadwaita integrates in any DE that is not Gnome, but the same doesn't happen with QT apps.
QT apps look pretty bad outside of any QT DE. libadwaita apps looks better on gnome, yes, but they're still decent enough on other desktops.
https://redd.it/1kpzytr
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
Any news on the transmission 4.0.1 timetable?
on terms of release? is it getting close, does anybody know? i was running 4.0.6 but it had some error so i went back to 4.0.5 but was poking around and was interested in some of the new features. but it's been in beta for awahile, so just wanted to check and see if anybody knows when it goes from beta to release, or if anybody has heard i guess.
thanks!
https://redd.it/1kq00ma
@r_linux
on terms of release? is it getting close, does anybody know? i was running 4.0.6 but it had some error so i went back to 4.0.5 but was poking around and was interested in some of the new features. but it's been in beta for awahile, so just wanted to check and see if anybody knows when it goes from beta to release, or if anybody has heard i guess.
thanks!
https://redd.it/1kq00ma
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
Best or favorite package managers?
I know this has been posted before, as I've taken a look at a post from two years ago to get insight on this. But that was two years ago and I want to get some fresh insights on everybody's favorite package managers. I'm also posting this since I'm working on a project (for fun) that is essentially a TUI for package managers written in Bash. So what are y'all's favorite package managers to use?
https://redd.it/1kq38tt
@r_linux
I know this has been posted before, as I've taken a look at a post from two years ago to get insight on this. But that was two years ago and I want to get some fresh insights on everybody's favorite package managers. I'm also posting this since I'm working on a project (for fun) that is essentially a TUI for package managers written in Bash. So what are y'all's favorite package managers to use?
https://redd.it/1kq38tt
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
I fully switched to Linux ~2 months ago and ever since then, any time I use windows it feels like I'm going crazy rant
Im not picky about my pc really, I just have very simple requirements that windows can not comprehend. Mostly, I can not stand when they go out of their way to bother me. Switching to Linux has felt like taking off a heavy af blanket, and any time I use windows it's like talking to that one terrible friend you used to have
Every time I go to my windows ssd (which is rare and I'm trying to reduce it as much as possible), I have to fix my date and time every single time because Microsoft apparently doesn't know what time zone I live in with how much tracking they do on me, if I don't set my settings exactly I get popup notifications even when I have notifications turned off entirely, the taskbar has a tendency to just not even open the programs that I'm clicking on, explorer is less stable than any video editor I've ever used, and I could keep going on
It just feels so amazing to go back and experience calmness. I have a gtx 1050 ti which means Nvidia doesn't care about me and my driver's are horribly unstable, yet i haven't used an os more stable since I switched off of Windows 8.1 (People hate on 8 which is justified but idk i really liked 8.1), and the fact that I can open my files app
without a permanent ad in the side panel is just so peaceful feeling
I don't care what happens to me on Linux, I'm never switching back to Windows because using Windows every day seriously was driving me crazy and stressed me out so badly how much windows would go out of its way to bother me just to make more money every year. I seriously can not recommend it enough the growing pains of switching are so worth sticking through
https://redd.it/1kq4l3b
@r_linux
Im not picky about my pc really, I just have very simple requirements that windows can not comprehend. Mostly, I can not stand when they go out of their way to bother me. Switching to Linux has felt like taking off a heavy af blanket, and any time I use windows it's like talking to that one terrible friend you used to have
Every time I go to my windows ssd (which is rare and I'm trying to reduce it as much as possible), I have to fix my date and time every single time because Microsoft apparently doesn't know what time zone I live in with how much tracking they do on me, if I don't set my settings exactly I get popup notifications even when I have notifications turned off entirely, the taskbar has a tendency to just not even open the programs that I'm clicking on, explorer is less stable than any video editor I've ever used, and I could keep going on
It just feels so amazing to go back and experience calmness. I have a gtx 1050 ti which means Nvidia doesn't care about me and my driver's are horribly unstable, yet i haven't used an os more stable since I switched off of Windows 8.1 (People hate on 8 which is justified but idk i really liked 8.1), and the fact that I can open my files app
without a permanent ad in the side panel is just so peaceful feeling
I don't care what happens to me on Linux, I'm never switching back to Windows because using Windows every day seriously was driving me crazy and stressed me out so badly how much windows would go out of its way to bother me just to make more money every year. I seriously can not recommend it enough the growing pains of switching are so worth sticking through
https://redd.it/1kq4l3b
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
Sony XM5 Linux problems
I'm using Arch with Hyprland, pipewire/wireplumber. Headset works great playing music. I lose output when I launch discord. Microphone doesn't work at all in calls or not. Microphone monitor is playing playback. I've tried disabling hands free mode. Not sure what to do. Please help :'(
https://redd.it/1kq5031
@r_linux
I'm using Arch with Hyprland, pipewire/wireplumber. Headset works great playing music. I lose output when I launch discord. Microphone doesn't work at all in calls or not. Microphone monitor is playing playback. I've tried disabling hands free mode. Not sure what to do. Please help :'(
https://redd.it/1kq5031
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
Is there a Linux capital of the world?
I am thinking of a place where a lot of people meetup to work on Linux related issues. I was thinking Shenzhen but one of the meetups is presentation based and not development. Los Angeles has one but it's only monthly.
Like my arch boot folder isn't working and it would be nice to discuss with people why it happened, how to navigate journalctl logs, and understand how to fix it.
https://redd.it/1kq6z8r
@r_linux
I am thinking of a place where a lot of people meetup to work on Linux related issues. I was thinking Shenzhen but one of the meetups is presentation based and not development. Los Angeles has one but it's only monthly.
Like my arch boot folder isn't working and it would be nice to discuss with people why it happened, how to navigate journalctl logs, and understand how to fix it.
https://redd.it/1kq6z8r
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
Detecting malicious Unicode
https://daniel.haxx.se/blog/2025/05/16/detecting-malicious-unicode/
https://redd.it/1kq7mz3
@r_linux
https://daniel.haxx.se/blog/2025/05/16/detecting-malicious-unicode/
https://redd.it/1kq7mz3
@r_linux
daniel.haxx.se
Detecting malicious Unicode
In a recent educational trick, curl contributor James Fuller submitted a pull-request to the project in which he suggested a larger cleanup of a set of noscripts. In a later presentation, he could show us how not a single human reviewer in the team nor any…
GSoC 2025 Project Intro: Developing Karton, the KDE Virtual Machine Manager!
https://blogs.kde.org/2025/05/18/gsoc-2025-project-intro-developing-karton-the-kde-virtual-machine-manager/
https://redd.it/1kq8j4g
@r_linux
https://blogs.kde.org/2025/05/18/gsoc-2025-project-intro-developing-karton-the-kde-virtual-machine-manager/
https://redd.it/1kq8j4g
@r_linux
KDE Blogs
GSoC 2025 Project Intro: Developing Karton, the KDE Virtual Machine Manager!
Hi everyone!
I'm Derek Lin, also known as kenoi. I'm a second-year student at the University of Waterloo and really excited to be working on developing Karton, a virtual machine manager, this summer. This project will be a part of the Google Summer of Code…
I'm Derek Lin, also known as kenoi. I'm a second-year student at the University of Waterloo and really excited to be working on developing Karton, a virtual machine manager, this summer. This project will be a part of the Google Summer of Code…
This media is not supported in your browser
VIEW IN TELEGRAM
[OC] iwmenu 0.2.0 released: A launcher-driven Wi-Fi manager for Linux
https://redd.it/1kqabxk
@r_linux
https://redd.it/1kqabxk
@r_linux
I finally switched to linux!
(I use arch btw)
It was pretty straight forward to install. I guess they made it easier to install for us noobs with mirrors. otherwise it really wasn't as hard as they said it is going to be.
It's very light. I do art and sometimes I see some ricings people did before and go woooowwww! I can’t wait to try learn how to rice myself
https://redd.it/1kqcfnc
@r_linux
(I use arch btw)
It was pretty straight forward to install. I guess they made it easier to install for us noobs with mirrors. otherwise it really wasn't as hard as they said it is going to be.
It's very light. I do art and sometimes I see some ricings people did before and go woooowwww! I can’t wait to try learn how to rice myself
https://redd.it/1kqcfnc
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
The Windows Subsystem for Linux is now open source.
https://blogs.windows.com/windowsdeveloper/2025/05/19/the-windows-subsystem-for-linux-is-now-open-source/
https://redd.it/1kqgwr9
@r_linux
https://blogs.windows.com/windowsdeveloper/2025/05/19/the-windows-subsystem-for-linux-is-now-open-source/
https://redd.it/1kqgwr9
@r_linux
Windows Developer Blog
The Windows Subsystem for Linux is now open source
Today we’re very excited to announce the open-source release of the Windows Subsystem for Linux. This is the result of a multiyear effort to prepare for this, and a great closure to the first ever issue raised on the Microsoft/WSL repo: