I concur. Podman is superior in my opinion. It’s more secure by default (rootless containers) and can do pretty much everything docker can do naively (you can literally alias docker to podman in your shell and it will work)

It’s not as easy to find info on some of the systemd specific stuff (Quadlets), but once you figure that out, it’s pretty amazing.

I ended up making up my own scripts to allow me to create new system users, pre-loaded with aliases and shortcut functions to make my life easier ( automatic quadlet container file generation, pre-set network rules, etc), but it is not required.

All the info is there, but starting out it can be a bit overwhelming.

My containers are pretty much self sufficient now. I just intervene when something needs major updating or config changes

I am not a follower of his, but I am certainly an advocate for de-<insert mega tech company name here>ing having just finally rid myself of Micros**t, which was preceded by getting rid of almost all of the family streaming subs.

The Steamdeck is actually a great device for this simply because it is a very functional pc in desktop mode. Throw in a Bluetooth mouse and keyboard, with even a generic dock and it can rival most laptops, especially with the added video capabilities it already has.

I find myself using it as a pc almost as much as a gaming device, just because it works so well for both.

Not sure if anyone else mentioned this, but you can just redirect traffic on your local LAN with an ad blocker like pihole ( I currently use adguardhome podman instance )

Basically, it rewrites any calls to your outside domain from within your local network, back to your local web server. As long as the site is setup with the certificate there, you’re good.

Then setup a nginx reverse proxy and you’re golden. Regular site outside LAN, internal site inside LAN.

Edit: spelling

I feel like this should be a quarterly post. Really liking all these setups.