Nayr438

The kernel itself is likely to be problematic on Arch current if it works at all.
If anything you might be able to pull the current PKGBUILD and reversion it, but I would still expect problems.

In terms of running an old version of Arch, the problem is Arch itself isn't versioned, there is no set release. If you wanted to run an old version of Arch you would need to grab an old archiso and manually pull in packages based on versioning.
 
As far as other distros, I know ubuntu keeps a archive of old releases and archives packages similar to Arch. If I recall you can even replace the mirrorlist urls with the the archive mirrors to use apt as you would normally, they would just be out of date packages based around that release.

https://old-releases.ubuntu.com/releases/
https://askubuntu.com/questions/91815/how-to-install-software-or-upgrade-from-an-old-unsupported-release/91821#91821
 

I got few errors when installing but it runs. 
 

Actually they can, however not all boards allow it and in some instances it can even prevent other hardware from functioning correctly. In the event that Microsoft keys are revoked in the process it can also brick some boards. For Secure Boot to be effective, the Bios needs to be password protected and the boot options need to be restricted. Security is already questionable on most systems anyways since it's the same key re-used for each install whether it be for Microsoft Windows or the widely accepted Microsoft Signed Bootloader Shim used by mainstream linux distros.
 
In a proper implementation it would be generated per system and installed, however it leaves a lot of room for error throughout the entire lifecycle of the system.

No. that is not true, never been true, and will never be true.
 
Linux always requires you to do more than "double click the icon" to get even simple "linux native" games to work, and you have to jump through lots of hoops to get WINE , DXVK, Proton and so forth to operate, and there will always be a few games DRM/Anti-Cheat that will prevent you from doing this altogether. 
 

That kind of defeats the point/purpose of jellyfin/plex. It's a media library not a disk player.
Even if Jellyfin/Plex could read from a disk the two problems your going to run into are
Java Support for handling disc menus. DRM / Copy Protection on both DVD and BD. You could integrate with something like MakeMKV like Handbrake and VLC do, but it still often requires manual intervention.

How is Quake Champions installed, if it's through steam then how is steam installed.
If it's using Proton have all the wine deps been installed and are you using Steam(Ubuntu) Runtime or Steam Native (Arch Runtime)

For Steam Native and all of the WINE Deps.

Make sure NVIDIA is properly installed and configured

If using flatpak ensure the nvidia runtime is installed
 

How is Quake Champions installed, if it's through steam then how is steam installed.
If it's using Proton have all the wine deps been installed and are you using Steam(Ubuntu) Runtime or Steam Native (Arch Runtime)

For Steam Native and all of the WINE Deps.

Make sure NVIDIA is properly installed and configured

If using flatpak ensure the nvidia runtime is installed
 

To my understanding some distros may handle this for you. Arch and Fedora on my laptop don't, I have not tested other distros or devices.

The NVIDIA Runtime for Flatpak.

That thing is pretty much e-waste.
It's 1G of ram won't satisfy the requirements of any newer builds of Android, and If you do find a newer third party build it will likely be a unpleasant experience.
Running such an old version of Android is also a security risk, I wouldn't have it connected to the local network or access any banking or personal information with it.

Honestly I find this attack pretty terrifying - this is the second example (that we know of) of a very well implemented supply-chain attack (the first being SolarWinds), and it was only caught by chance by someone noticing that OpenSSH was being slow. It is entirely plausible that the perf regression could have gone unnoticed (or, although I don't have a deep understanding of what it was trying to do, I suspect it could also have been possible to write the payload in a way that doesn't cause such a perf regression at all), resulting in this malicious release making it out of the bleeding edge and into mainstream distributions.
 
I hope this will lead to some changes in the industry, but I don't know what those changes could be. Now that the concept has been proven, I doubt that this will be the last time something like this is attempted. It's not a trivial attack to pull off, but nor is it overly difficult as long as you have time to burn (in this case the attacker started getting a foothold 2 years ago) - it would be a great choice for nation-state attackers, but could also be pulled off by solo attackers.
 
The scariest thing to me is that this may not be the first time - for all we know, and with no way to verify, there may be other compromised libraries out there already.

I buy a bunch of crap from BestBuy, if it has a red label its a open-box/return item, however usually it will say that rather than PRC. To my understanding however PRC items can't be resold in the store as they are considered to be unsellable in the store due to either being defective, hazardous, or they have a contract to send them back.

What's left out is whether they were on the shelf like that or if they were tagged after.

I buy a bunch of crap from BestBuy, if it has a red label its a open-box/return item, however usually it will say that rather than PRC. To my understanding however PRC items can't be resold in the store as they are considered to be unsellable in the store due to either being defective, hazardous, or they have a contract to send them back.

What's left out is whether they were on the shelf like that or if they were tagged after.

While I do agree with the point that was made, I guess this kind of discussion ends up being a bit off-topic since it's more of a personal preference on how each one wants to run their servers.
 
This circles back to the idea of what I said before it this wasn't caught soon enough. Arch was not affected by a minor technicality in the exploit process, but with enough time this would be irrelevant given the amount of systems that would actually be affected.

Weird but ok. I guess their phrase could be better placed as "I don't expect people running production servers to be on development releases with ssh ports exposed.", since the major distros at risk were debian unstable, fedora rawhide and opensuse tumbleweed, all of which really shouldn't be used in prod.
All of those with ssh and that are on the affected distros?
 
Don't get me wrong, if it didn't get discovered soon enough, then it'd be a real problem and there would be tons of servers affected. It'd only be a matter of time between rolling release distros to proper stable ones to be exposed to this, but as of now the reach of this issue is close to none.

Pretty sure those red tags mean the CPUs came from the return warehouse. I do hope that Best Buy made a couple of phone calls to get whoever certified those into some very deep shit.

Because it's user managed, it wont mount until you interact with it locally.
 
It should dissapear from your mount list since it's no longer user managed. It should be available at whatever path you specified in fstab.
The directory does need to exist before it can be mounted as well.
https://wiki.archlinux.org/title/samba#As_mount_entry
 
The "_netdev" option will tell it not to mount it until the network has started
 
 

If you mean the intel xorg driver, it's just the way it is, there is a reason it was deprecated. Jittery video is even in one of the references I posted earlier.

Also because there seems to be some misunderstanding here. a xorg driver isn't your GPU driver, it's a compatibility driver for xorg-server just as much as modesetting is for any device that supports KMS which includes your Intel iGPU.

In xorg the compositor is like a extension to the X Display server so it would be similar. In Wayland the compositor is part of the Wayland Display Server / Protocol.

intel-media-driver is just for hardware accelerated codec support. You enabled it when you set the /etc/environment variables
You don't need a intel xorg config file, the only accelmethods modesetting even supports is glamor or none.
https://man.archlinux.org/man/modesetting.4

Because that option is currently unsupported, it's left up to your compositor such as kwin (kde) or mutter (gnome). This is something I believe more widely supported under Wayland.
 
If you want my opinion, just use something that supports Wayland. xorg-server is moving into deprecated status anyways with distros already talking about dropping it.
I seen mention of i3, maybe consider Sway or Hyprland.
 
Funnily TearFree was recently merged into the modesetting driver, but it's not in a stable release and Debian wouldn't see it for probably a couple years if they even still ship xorg at that point.
 
If this is true, id also use pipewire which has largely replaced pulseaudio in other distros. If you do decide to go Wayland this is also the only way to get screen recording.

Also do make sure your microcode is installed as mentioned by @goatedpenguin

You can also use GOverlay to configure it rather than just modifying the config file directly.

The things that's keeping me off of Wayland for now is a bug where mouse buttons on my graphics tablet are swapped e.g. desktop compared to browser and more importantly there's no replacement for xsetwacom that allows me to define a keyboard shortcut to switch it between screens.

Welcome to pretty much any game that uses anti-cheat. This is not a new thing if you play multiplayer games online.

Anything that interacts with components or peripherals is unlikely to work in WINE.

Go laser... I would suggest going  Brother, don't buy the cheapest because those will tend to have non refillable toner or toners that come with chips that count the number of sheets printed. Though most of the newest models will have reset chips. My printer still was the design that has plastic gears and a spring and to refill the toner, I just have to move the gears into the original position.
 
The cheaper ones will also have a weaker drum unit, that are only warrantied up to 10-20k pages (when they go bad, you start having thin lines on your paper, gray crap on the edges of the paper stuff like that and you have to replace the drum)
 
For example, a bit higher end you have Brother HL-L5210DWT at $380 : https://www.amazon.com/Brother-HL-L5210DWT-Business-Monochrome-Networking/dp/B0CKWNT1CC/
 
The drum unit (DR920) is good for 45k pages, genuine replacement is around $225 , third party replacement is less than 50$
 
Comes with toner good for 3k pages, TN920, or bigger versions (6k  pages, 11k pages) ... they have chips so not as easy as just pouring toner into them, but you can buy third party toner with the chips and up to 11k pages worth of toner for around $55 :  https://ybtoner.com/brother-tn920-toner-cartridge/
 
Genuine stuff is $80 for the 3k, ~$100 for the XL (6k pages), $170 for the xxl (11k)