LINUX Unplugged - 668: --yolo
Episode Date: May 25, 2026Brent's been hacking smart speakers, Wes has a surprise, and Chris gives up on OpenClaw.Sponsored By:Jupiter Party Annual Membership: Put your support on automatic with our annual plan, and get one mo...nth of membership for free!Managed Nebula: Meet Managed Nebula from Defined Networking. A decentralized VPN built on the open-source Nebula platform that we love.Support LINUX UnpluggedLinks:ConnecTen Internet — Get $35 off your order total with Jupiter35💥 Gets Sats Quick and Easy with Strike📻 LINUX Unplugged on Fountain.FMThe Quiet Renovation at BitwardenMy first 100 days at Bitwarden — Open source is the foundation of everything Bitwarden builds. The ability to audit the code, to self-host, to verify rather than simply believe are not just nice-to-haves, they are the reason Bitwarden is different from every other option in this space, and that will not change.AfterTouch — Bose SoundTouch Toolkitsoundcork — Intercept API for Bose SoundTouch after they turn off the serversBose SoundTouch EOL AnnouncementSoundTouch 30 Wi-Fi Music System | Bose Wikia | FandomKeeping Your Speakers Alive After the Bose Cloud Shutdown – AfterTouchBose SoundTouch is officially dead, but your speakers may still survive - SoundGuysSoundTouch 30 Wi-Fi Music System | Bose SupportNASty — NASty is a NAS operating system built on NixOS and bcachefs. It turns commodity hardware into a storage appliance serving NFS, SMB, iSCSI, and NVMe-oF. Managed from a single web UI, updated atomically, and rolled back when things go sideways.nasty-top — A top-like TUI for bcachefs filesystems.hermes-agent - GitHubHermes Agent — Open-Source AI Agent with Persistent MemoryWindows-MCP — MCP Server for Computer Use in WindowsGreg KH Calls For More Rust Linux DevelopersRust for Linux — Rust for Linux is the project adding support for the Rust language to the Linux kernel.OpenCode Go - Low cost coding models for everyone — Go brings agentic coding to programmers around the world. Offering generous limits and reliable access to the most capable open-source models, so you can build with powerful agents without worrying about cost or availability.Pick: Gnome Commander — A powerful file manager for the Linux desktop environmentPick: halo — Terminal flow field screensaver with Perlin noise, Braille rendering, particles, and 24-bit ANSI colorAirwolf Theme 80s Retrowave Bass Remix | Retro Visualizer | DMCA Safe - YouTube
Transcript
Discussion (0)
Hello, friends, and welcome back to your weekly Linux talk show.
My name is Chris.
My name is Wes.
And my name is Brent.
Hello, gentlemen.
Well, coming up on the show, we've each prepared a topic, but we haven't told the other one what it's about.
So I have no idea what the other guys want to talk about this week.
And then we'll round out the show with some great boosts, some picks, and a lot more.
And I know what I'm going to talk about.
But before we get there, I know we got to say time appropriate greetings to our virtual lug.
Hello, Mama Room.
Hello.
Hello.
Hello.
Hey, Chris.
Hello, folks.
Hello.
And hello up there in the old quiet listening.
And shout out to the live stream.
And our members, we've been cooking now for about 40 minutes or so.
So it's nice to be here on a Sunday morning doing the unplug program on a Tuesday.
And let's say a big good morning to our friends over at Defined Networking.
Go check out Manage Nebula from Defined Networking.
It's built on the open source Nebula platform that we trust and love.
And you control all the bits.
It's so simple to scale.
You can get started easily at Define.net slash unplugged.
You can try out their hosted version.
Use it on 100 hosts absolutely for free.
And it turns out you control the infrastructure.
You can build it yourself if you just want to have two nodes talking to each other for a backup,
which can be very handy.
Or if you need something, the scale of an enterprise system like Slack or something even larger.
You can run your own lighthouses.
You can own the network path and you can avoid building your core connectivity,
your infrastructure, your network around somebody else's black.
box. It's fast. It's secure. It's decentralized. It's reliable. It's the way most mesh VPNs
wish they were, but just they're not designed to be. For your home lab for a fleet or for
Sirius Production Network, managed nebula gives you control without giving up convenience.
Try it out to find.net.net slash unplug and redefined your VPN experience. That is defined.net
slash unplugged. You're going to be impressed. So there seems to be a bit of concern over things
going on over at Bitwarden. And I'm not sure. There's been a leadership shift, some premium price
increases, some statements about their public mission and community have changed, and then been
changed again. And so I just thought, we'd discuss this for a moment because I've, I've ended up over
the years falling back on Bitwarden. I know, do you still use Bitwarden? I do. I know, Brent, you never
fall down into Bitwarden. I've been hesitant. Yeah, well, perhaps for good reason. Their new CEO did
have a response post my first 100 days of Bitwarden where he did say open source is still the
foundation of everything at Bitwarden but I'm just kind of curious if people are starting to
create a Bitwarden backup plan and I'd like to poll the audience what password manager are you using
and does it sync across your devices and did you move off a bitwarden did you move to another
hosted service did you move to something totally self-hosted vault warden etc yeah or do you
sink around a key pass file print style and I wonder if we can
And, you know, I mean, I think there's room here for us to kind of take what the audience says, review it, come together with what we kind of come up with, and maybe create a bit word and migration guide because it's something you and I might want to consider.
I know I have seen a few number of folks trying out the proton password manager.
Maybe the audience members have any experience there too?
And I know the 2FA folks also make a password manager.
Oh, interesting.
Which is open source.
There's a few options out there these days.
Keep past another.
So boost in.
B-O-O-O-S-T.
Or go to Linuxunplug.com slash contact and let us know.
We're trying to figure out what to do over here.
Just don't boost us your passwords.
That doesn't work.
All right.
So let's get into it, boys, because we've got three topics.
I have no idea what they're about.
So I'm just going to sit back and enjoy the ride, I suppose, because I'm going to go last.
That way, I get the full effect.
You're assuming that ours don't involve quizzes for you or any sort of work on your part?
I hope not.
I've gotten the basic gist that we're going to have a little.
Bose with Brent here that he has been working with Bose smart speakers to some degree.
But that's all I really know, Brent.
So bring us up to speed, as they say.
Well, I've been hanging out with my parents' loss lately, and they're just as big music folks
as I am.
So they have years and years and years and years ago, they bought a Bose Sound Touch 30,
which I guess I looked it up.
I can't believe this.
Was available from 2013 to 2014, so only for a year somehow.
But they're around.
I've seen them around quite a bit.
And they use this thing daily.
They're just always music playing off this thing.
And it's the kind of speaker where you can, you know, have little presets.
And they're not super technical, but they, you know, have buttons on the top.
They can go, hey, I want CBC in the morning or whatever.
Oh, yeah.
You might not understand.
You're in a different country.
But so they've used the heck of this thing.
It's been a great speaker.
Sounds great.
It's not too huge.
And like, it just works.
Except, Bose announced a few months.
ago that they would stop supporting this speaker. And what that means is that any of the presets
you had or any of the streaming you were using on this speaker would just stop working one day.
And that day happened just a couple weeks ago, the 5th of May. And I have not seen my parents
that angry in a while about a product that they purchased. Because it's a thing that's worked
forever. They never had to, you know, they set it up once and it just kind of worked. And all of
And one day they went to do their morning routine of putting the radio on and it doesn't work at all.
And they can't do anything about it.
They don't understand why.
They never got any, you know, an email or whatever saying that they're.
So, but we've seen this happen over and over and over.
Yeah.
It reminds me of the first time meme.
Mm-hmm.
Oh, your first time, huh?
Ah, well, some of us have been there before.
So when they bought this thing way back then, this is the exact reaction I had was like, oh, it seems great now.
but we, you know, been talking about this kind of thing happening for the last 10 years, at least.
So I thought I might try to help them with this thing because, like, now, it was just basically,
mostly a brick as far as streaming anything goes, but you could still use it for Bluetooth,
which is the main way I was using it when they weren't around.
And, like, an Augs connection, but that's never how they were using it.
So I did a little, you know, spulunking around our dear open source communities.
And it turns out, I'm not.
not the only one who wants to solve this. And a lot of people have been working quite a bit on this
since that announcement, because when Bose announced that they were going to stop supporting
this thing, there was a massive upheaval. And they decided to open source some of the APIs
for this speaker, or this series of speakers, at least. And that just has enabled the community
to go nuts and make all these tools to bring back the functionality to these speakers.
So from what I've seen, the idea is to just make them as useful as they were previous
and not need bows in the middle, which maybe arguably should have been how it was designed
in the first place. But we're here now, and luckily, this thing's not trash,
because these projects are well along, even in a couple months. And I decided to implement.
meant this thing. Maybe I can just rescue my parents' mornings with music. And I decided to look at how
to accomplish this because I was like, I don't know, maybe we can use home assistant, like an
integration or something that can stream music to this thing. That's always an option. But it turned
out that, well, of course, this thing just runs Linux, right? And, oh, no kidding. Of course it does. And so
there are some maybe questionable design decisions. Like, for instance, they just have
Telnet access open constantly. Yes, right. Right. Right. And then the method I used.
Good for you. Yeah, the method I used to get into it is, uh, I was like, well, I'm not that
familiar with Telman. I want to use S-H. Turns out you could just put an empty file named, you know,
remote underscore services onto a USB drive. Plug that in the back of the thing because it has USB.
which I don't know if it should.
And then it just enables root access to this box.
Love that.
With no password or anything.
Yes.
So with no password or anything, you just, as age to this thing.
What could go wrong?
Questionable, maybe security practices, but it's a benefit for us because this thing is super easy to get into.
I decided to, well, there's a variety of projects that are solving this in interesting ways.
Like more than one addressing this particular?
Yeah.
Like, wow.
There are various, hmm, approaches, I guess you could say.
The one I leaned on after doing quite a bit of research is called AfterTouch,
which is, you know, just kind of a sound touch after they canceled the set.
Anyways.
And it is quite complete in the sense that it has excellent documentation
and allows various options for how to get into the speaker.
and change basically some settings in a variety of ways
so that you can host the streaming yourself.
So instead of Bose being like the person in the middle
that sends the streaming services to the speaker,
you just have either a NAS or a Raspberry Pi.
You could even use a VPS because they have some TLS certificates
that work wonderfully with this thing.
But the other thing is you could just run this.
software on the speaker itself as well because it's just Linux.
So it can just be standalone, which is amazing.
I thought it was really well designed because AfterTouch offers a lot of options for how
to install this in a variety of places.
So they have a Docker setup, also just a native system D setup that, of course,
is the way I went with NixOS.
But they also have a Pi quick install.
So if you have a pie going already, you just run one command and it sets everything up for you, which is pretty sweet, I have to say.
So one of the methods to solve this is to do just a DNS redirect for the both domains.
That's one of the simpler ways to do it, let's say.
Because it's still reaching out to their servers?
Yeah, there's like, I think three of their servers that's constantly reaching out to to try to gain information about what?
about which streams are available.
And then they just shut down the servers on their end.
Yeah, they just said, well, we don't really want it.
But they left it just sitting there blast in your network.
I mean, I know it's not a lot of traffic, but just the principle of it.
I know.
The principle of it.
Yeah, yeah.
Interesting.
So you intercept that basically by screwing with the DNS.
Exactly.
And you can do that a variety of ways, right?
You could just do it on your router or whatever you want.
But it has to point to something.
So you want to run after touch somewhere.
So I decided to run on the little NAS that I have behind me.
and that was a wonderful way to do it.
But I didn't intercept the DNS.
What I did instead, as the project suggests, is because this thing just has open root, once you plug in a simple little USB drive, you can go in and just change the DNS entries and point them to where you need them.
So you don't even need to intercept them.
You just tell the speaker, go look here instead.
and after touch supply is basically a couple things.
So one thing is you can use a web UI to do all of the migration of the speaker.
So as long as you have the service running and the speaker is on the same network,
it'll just auto-tect the speaker and then there's a big migrate button and that'll change all of the entries for you,
which is awesome and makes it super, super simple.
So there's that part.
And then it also provides a bunch of access to streams and stuff.
So you get the exact same functionality and you don't need both at all.
I kind of wish this was available a long, long time ago.
Like, they should just open source this stuff from the start.
It's going to happen anyways.
It almost makes a guy want to go on eBay and pick one up.
Well, that's what I've been thinking about is we're lucky because we have the know-how to do this.
And it was relatively simple for people like us.
But my parents would have never ever done this.
So, like, give it a couple more weeks.
They would have chucked this thing or, you know, that's the danger.
Like, they're perfectly usable speakers, but how many people are just going to throw them out?
Not only are they usable still, but they like the sound.
And it's not necessarily going to happen for, you know, they replace that with something else.
They might not like the sound.
It's got those speakers have a unique sound to them if people enjoy it.
I, uh, people don't.
Sneaky turned down the bass, like to negative five because it has that setting too.
And I, they're so bassy.
I don't like it.
Anyway.
Yeah, they are.
They're very base heavy.
So it's pretty sweet.
Now the UI has a bunch of information, a bunch of technical information, which I like.
But also from the perspective of, let's say, my parents, they just get to use it.
So I was able to reprogram all their touch buttons as well to what they had before.
And they're not even going to know that it's doing anything different.
But I know that it is because now it's all completely local.
And I can run the server myself.
and I am highly considering just running that service on the speaker itself because, well, I have another box to do it, right?
Right.
And so that's the little project I've been working on this week trying to solve that.
That is neat.
I would say, jobs finished.
It's kind of remarkable the community.
So you have after touch.
Obviously, there's sound cork and there's others.
They've really taken advantage of what's available here.
Did you get a sense like, okay, so obviously there's this model, but like how many models are?
supported by these various efforts? How new can you go? Like what does this open up?
I think a lot of these sprung up around the Sound Touch models specifically, which have a lot of
similar architecture. I'm not aware of all of the models, but there's like a Sound Touch 10,
which I think is a smaller version of this, and this thing is a 30, which is probably the size of like
a tiny suitcase, like a carry-on or something like that. But I would imagine a lot of the design
of these speakers is common
with some other more modern ones. So I
would imagine you're going to see this
expanding to
include other speakers as well.
I sure hope so.
I just wish there was a general
speaker OS that was just this.
It was just this. Yeah.
I also see in here that they
support the stereo
pairing that these both speakers can do,
which in the past required, I think,
a cloud account. Yeah,
there's, I mean, that's
kind of the joy for what Bose ended up doing here under pressure was open sourcing the API for all of this.
So it means there's a command line program now that you can just access every single function that was in there.
So I've included a link to the PDF that Bose sent out.
And I think they could have probably open source more of it, but at least what they did give was enough to get all this functionality back.
So this stereo pairing functionality is like if you have several Bose speakers,
you can either set them up beside each other and have a stereo environment or in separate rooms, right?
Because they just run off the network.
So they're just touching each other and you can have then streaming synced between various rooms or different floors in your house or something like that.
So with, I would say, these might be hitting eBay really cheap real soon.
So maybe it's an opportunity to grab a bunch of them.
Chris, you and I were trying to find a speaker system for when we're working on cars.
This would be kind of perfect.
Yeah, a couple around the shop.
Good to go.
Set up an eBay alert, I think, is the real lesson here today.
Nice catch.
And it's nice for the folks, too.
And a nice way to solve that.
So that was the Abo's Sound Touch 30 with the code name Mojo.
It is.
It's a good code name.
It's got more mojo now, I would say.
Yeah.
Lots of mojo.
You brought back the mojo.
Well, I wonder if we'll get extra functionality, too,
once the projects can implement all of the initial functionality,
like keep dreaming. Let's go nuts.
I'm curious. Did you detect like sort of what the possibility for a prank mode might be?
You know, like it looks like it's going to play the audio you request, but it just plays Rickroll every time, something like that.
Or Linux Unplugged random episodes.
Yeah, I was able to find Linux unplugged through the streaming services.
So I was going to put that on like one of their presets.
Every Sunday morning, just have Cron turn it to the JV-Live.
Yeah. That would be awesome.
Unfortunately, it didn't stream, so I'll have to put in a bug report or something, and we'll get that working.
All right.
I do want a chicken coop speaker, so you never...
Thank you, Brownlee.
You're welcome.
All right, so I know it's time for...
This is The Way with Wes.
And it looks like Wes took a look, a first look, at Nasty.
Yeah, that's right.
And Nasty's getting a lot of attention in the NixOS, B-Cash, and Rust communities.
Which is where you don't have any interest in.
So it's an interesting cross-section.
and I've been seeing a lot of talk online about it,
so I'm glad you took a first look. Tell us about it.
Yeah, okay, so Nasty.
It's GPL3, effort from Bartos Fensky.
I'm looking back on it, and I realized that first,
I first saw it being posted about in the B-Cash-FS subreddit
because it's a NASS appliance-like project
with B-Cash-FS under the hood.
And we'll get more into how it works.
But it came out on April 1st,
and it was built as a mostly vibe-coded
B-Cash-FS NASS.
You know,
seemed sort of experimental
like a new project.
And that's kind of how I took it.
And then I saw that it kept getting posted about,
you know, looked like regular progress,
good sound and updates.
And then, I don't know,
10 episodes back or so,
we made it a pick.
It's something just to keep an eye on.
And I thought, well,
they've had even more releases.
They've made some big switches recently.
Yeah.
And it seemed like it was probably time
to really see if there was some there.
there because of course
we have had mixed feelings on the show of various
nas-as. Yeah, right? Some are really nice. They can
work for some people. It's been a struggle for us to necessarily
adopt them for our own particular workflows.
But we are very B-Cash-F as curious.
And we're Nixos friendly, so it seems like if there
was going to be one that got us,
it would probably be nasty because it's sort of
in our wheelhouse, if you will say.
That was kind of the hope here.
It is a good name, right? And so it builds itself
on the GitHub page as it turns
commodity hardware into a storage appliance
serving NFS, Samba,
ISCuzzi, and MVME over
whatever. What is that? OF.
Internet. Managed
from a single web UI.
Updated atomically and rolled back. I don't know.
Like I'm using envy me or anything.
Oh, it's an NVME over fabrics.
Like, I'm using it over anything these days.
Oh, it's so stinks.
I try to, I got an MVME that's overheating
home, so I want to replace it.
I go online and look. Everything's
crazy expensive, and I've never even heard of
these vendors before.
Oh, no.
Some Chinese name I can't pronounce.
It's like, so you're buying it from some third-tier vendor that the state envy-me-me,
if you've got MVMEs, you've got literal gold right now.
But so, yeah, that's what nasty pitches itself as.
And like West said, looks like it's using B-Cash, compression, check-summing,
erasure coding, tiering, encryption, and snapshots, which is really interesting.
It also brings sub-volume support, encryption, life-cycle support, and backups, including
deduplication, incremental backups to local, S3,
SFTP, REST, back, Blaze, B2, and per profile schedules and retention.
Yeah, I was impressed by how much is already in here, right?
Because it isn't just the core NAS part about managing the disks and interacting with
BGatchFest.
That's all there, too, right?
But like, there's all backups, alerts, firewall management, TLS stuff.
You can do lets them crypt up.
It has a tailscale integration sort of automatic if you want to plug into your tailnet really
easily to allow remote access.
It has a capability to spin up.
up VMs for you as well as what they call apps, which are really just Docker containers,
which you can run sort of like directly by putting the container info in in the GUI or it has a
spot to drop a Docker Compose if you want.
So that's kind of nice.
Yeah.
So there's just kind of like a lot happening, which can be good or bad, right?
We have mixed feelings on this with some of these projects.
But what made me curious, of course, was it's NixOS and then it's powered by a rust demon
under the hood.
and so like actually getting it running in a VM
kind of getting configured with some like test disks
which are just all virtualized right now
I haven't put it on real hardware yet
and then kind of seeing like
what does it look like
and it had a pretty basic little installer
kind of with like a NixOS install
but that was easy enough
I think the download was like less than two gigs
for the ISO and then it was using maybe like
four gigs on disk when I got everything installed
it does kind of have a nice option
where you can either opt
to use an entire disk
just like this is your nasty OS drive
and then you'll have other disks on the system
that you use actually for whatever your pool is going to be.
Yeah.
But it does have an option to just take up like a certain amount of space of the disk
and put the OS there and then leave the rest of the main available for storage.
So I thought that was kind of a nice touch.
Nice flexibility.
Didn't actually need to have, yeah.
What's interesting here is it turns out Nix OS is kind of just the provisioning layer.
So it's there just to kind of provide the kernel modules,
the base system D units, the base packages and software that you're going to need for this thing.
and the Rust engine is kind of the real runtime.
Oh, really?
Yes.
So it keeps a bunch, kind of like Cosmic,
it keeps a bunch of JSON files in VARLib nasty,
which just follows directly the Nix-West pattern
of just using VAR-Lib for the application state.
And what's great about that is
this state can be easily checkpointed, snapshoted,
and backed up,
because basically all the stuff that you do in the UI
is just stored in those JSON files.
So if you toggle your Samba shares on or NFS exports, that kind of stuff, you don't do a whole NixOS rebuild because a lot of this stuff isn't in NixOS.
It's sort of dynamically applied by the Rust runtime to System D.
But it's still kept in a way that you can manage.
I notice they also offer a 2E, so then I would imagine you can toggle it.
Either way, that's going to write to the JSON settings.
Right.
And there is still some stuff, like I think some of the firewall stuff, like there is some stuff that's built at the NixOS layer.
And so that does require Nixos rebuild,
but the demon just does that under the hood for you anyway.
So you don't really have to interact.
I have a question here.
Wes, how do you feel about that architecture decision?
I think it makes sense for what they're doing.
They're trying to compete, right,
with, like, the high level of dynamic behavior
that you see in a lot of these style of application.
So if your entire goal is, like, I want,
like, a purely Nixed-managed infrastructure-as-code approach,
this isn't quite that.
It does have sort of a,
like the JSON side of it
means that you do get
a more effectively declarative style of approach,
but it's not necessarily quite the same as like
the same UX of writing something that's meant to be that,
it's more about having a nice way to capture the state
and have it be easy to introspect and edit
and back up and manipulate,
or diff even.
So it kind of depends on what, like, how much you need,
you know, do you want a nice UI that you know
you can go toggle things on.
And when you click the enable Samba button,
like you don't have to do a full rebuild of the NXOS stuff,
it just does it for you.
So in your opinion, is this,
I guess what I'm trying to get at here is,
could you use this thing and never have to touch the UI?
Yeah, I don't know.
I don't think it's meant for that.
Okay.
So I don't know that there's a great interface
to go manipulate those JSON files.
If you were willing to make the JSON files,
then yeah, totally.
I don't think there's a great,
it looks like maybe they're starting some Rest API.
Right now, a lot of it is.
web sockets between the Svelte U.I. JavaScript layer and then the Rust Engine backend.
Yeah, but it does look like that's something they're working on here, JSON RPC 2.0, over web socket.
Yeah.
Yeah.
And so I think there's, you know, there's probably a version of that where you could have it more
be programmatically exposed to just talk to the engine directly and have it synchronized
to the state.
Seems like you're kind of impressed with it, though.
Well, there's just more here than I thought.
Like, it might be one of the nicer ways.
if you want to play with BcashFS.
Because there's a nice UI that walks you through building the array,
and it does support encryption, and it supports compression,
and it supports various redundancy levels and stuff.
I don't know if it's strictly everything,
because there's, like, a lot of options you can do with BKFS.
But it's a lot more than, like, even I've probably tried, right,
just in terms of building different styles of arrays.
And because it's Nix-O-S, you know that the, like,
DKMS situations well-managed.
It's all handled for an appliance.
You don't really have to worry about, like, how do you get it,
and is it well-supported?
because it's just built in from that.
I mean, I'm not saying to put all your data on the system right now, right?
It is very much pre-I mean, it's like version zero-zero-eight.
They just did a big switch for like the app stuff is now powered by caddy instead of EngineX,
which lets it be a little more dynamic.
And they kind of automatically let you do if you want to set up like a sub-domain system per app.
That can just happen automatically right off the top of your appliance.
So you kind of get some of the things you can do nicely in a clean way on a modern Linux system.
but with a helper UI on top.
Like, you can go run, like, it's easy to get root SSH on there, no problem.
There's a terminal in the UI you can use.
So you can just go run Docker containers yourself.
That's not a problem.
You can introspect the state.
You can kind of manipulate things, but you don't have to.
It is very fascinating to watch the momentum of this.
Like a few of these projects we've been covering recently,
they committed five minutes ago on a Sunday while we're live streaming and recording.
Like, they're working just nonstop.
up on this stuff. There's a real momentum and, you know, people contributing. So I'd say it's growing.
It's just two contributors at the moment, but it's growing. It looks good.
Worth keeping an eye on, but not worth switching your data over to yet is sort of the final
verdict. Yeah, I mean, if you're going to, if you want something that's going to be steady and not
have any major changes of architecture or something, I don't think it's there yet, right?
It's still pretty new. But I do think it's worth, it's a nice entrance into the space of available
sort of appliances for this because it feels leaner, it feels more introspectable,
it kind of feels like a little bit more of a modern architecture for how you might build
one of these today. And I like that. Yeah. Thank you, Wes. Check out Nasty. We'll have links in
the show notes. I want to thank Connect10 Internet. They're not a sponsor, but I did
reach out to them to get a discount for you. Jupiter 35. We'll get $35 off your total order.
Connectin Internet offers high-speed reliable Internet services across the U.S. and Canada,
and I've been utilizing them for my backup Internet connection.
They have services for everybody that wants to use it for backup Internet to people that want to use it for high-speed data with high-priority.
So they offer truly unlimited plans with no data caps and high-priority data.
I like them, so I said, hey, I'm going to talk about you mostly in next week's episode.
But they got me a discount code early, so I'm telling you about it now.
It's Jupiter 35, and it'll take $35 off your...
order and they just came out with this killer idea.
$39 a month and it's a backup internet plan.
So they have a slick router that auto monitors your connection.
And when your main internet goes down, they instantly connect to one of their four major
wireless carriers.
They just bundle all four.
And then when your main line internet comes back online, it switches you back automatically.
Now, I just built this using Linux.
And then like they contacted me and they're like,
hey, guess we got this new thing?
And I'm like, we think it's perfect for you.
And I'm like, you got to be laughing.
It was 10 weeks ago.
It is perfect for me.
Yeah.
So I'm using something different.
I'm using like they have this fortress router.
How would you describe this thing rent?
It's like it's, it's a great name for it.
It kind of looks like a spider with a ton of antennae coming out of it.
And it's, it's industrially built.
You can take it apart and look at what's inside if you want to undo many, many, many, many screws.
But it's very waterproof.
roof. Like, you can throw this thing around if you need to. It's been all the way to California
back for some reason. It's a great device. It really is. And it is very robust. We put it up way
high on top of a barn, and I'm just getting crazy internet speeds. And it picks the best network
in the area. And it runs, this device runs OpenWRT. It's an impressive bit of kit. So it's
connect10 internet.com. I'll put a link in the show notes. That's connect10 internet.com. And if you
use the promo code Jupiter 35, they'll take $35 off your plan. And they do have that new $39,
they'll take $35 off your order, and they have that $39 backup internet plan. I just realize
there's a lot of numbers that are confusing. So to make it clear, Jupiter 35 is the promo code,
takes $35 off your entire order one time, and they have that $39 backup internet plan. Does that make
sense? I hope so. It's a lot of numbers. It sounds like a good deal. It is a good deal. I'm
really impressed, because I can both connect to 5G and 4G. And the way I had solved this,
in the past was I had multiple carrier plans.
And then I have a PEP link that would just combine or switch between,
but you had to have actual like multiple SIM cards in this device with multiple plans.
And now Connect 10 just puts it all in one service.
They are the meta provider.
And they have the gear to switch between the networks for the one that has the best signal
and has given you the best data.
I just think it's super cool.
It's been working really well.
Like I flipped over in the evening peak time.
and was getting 120 megabits down
during peak traffic.
And I was like, this is great.
And that's just like, you know, worst case.
That's worst case for me.
It's really awesome.
So that's my worst case speed.
So go check it out, connect10 internet.com.
We'll put a link in the show notes,
and the promo code is Jupiter 35.
And next week, I plan to talk more
about some of the backup internet infrastructure
that I've been building at the farm,
and they were a big part of making all of that work.
I've been really impressed.
So it's promo code Jupiter 35,
connecteninternet.com.
Well, two of us have gone so far, I think, with some interesting projects, but there are three hosts on this here show.
So, Chris, what did you get into this week?
Boys, you know, I've been doing the OpenClaw thing now for quite a while.
I set up a dedicated Lenovo Thic Center that's running, or was running OpenClaw.
And as time went on, I started using them for more and more serious things.
I think it's so funny when people say, what do you use it for?
What do you use it for?
Like, dude, everything.
Like, what your imagination is the limit.
It's, from, like, watching you use it, it's one of those tools that you don't know what you're going to use it for until you, like, integrate the tool into your routine or you have it near you.
And then you're like, oh, wait a second.
This is going to do way more than you could have ever imagined before you even integrate into your life.
So I think the answer to the question, what are you going to do with it is, like, just try it.
Yeah, and I think, you know, a clarifying thing for me was having a small business that has a thousand tasks that needs done and I only have time for 10 of them.
That's a big use case for sure.
So it's like, oh, well, all right, that needs solved, that need solved, that need solved.
So I have agents that prep clips for me, you know, based on the stuff that I feed them.
They prep the clips for me.
They monitor the infrastructure for me.
They read alerts.
They can update the home.
I have three different home assistant instances that they are monitoring and updating.
They're working with Git to make sure the projects are getting checked in and
They're keeping my NICs boxes maintained, and they also deploy infrastructure.
And then on top of that, there's reporting that they're providing me.
There's email summaries that they're getting using the GWS, CLI.
A lot of stuff in there.
There's a lot that I use them for.
And as I got to use it.
Yeah, ordering my groceries is another one.
I know it sounds silly, but how many times are you walking around the house and you're like,
oh, I need to get this?
Or you open up the fridge and like, oh, I'm out of butter.
and then five minutes goes by
and you completely forgot to ever put it on any list
and then you're at the grocery store and like,
what the crap was I, what was it?
So I just fire off to the bot really quick.
We're out of butter.
And then it uses the Kroger API
and it adds my preferred butter
to the shopping cart.
It's so great.
It's also like for me it's useful for that too
but it can also then help build like
now I can interface better with that stuff
and start recording that and then have a dataset
of my own locally,
not dependent on their database.
Yeah, that's what I do too, as I have a preferences.js.
With all my brands and sizes and flavor preferences and all of that, that's all built in my own data set, that would move to any other API.
And you can, like, you know, save all your orders, see how, you know, your own local rate of inflation, measure how your preferences change over time, whatever you want.
And as I started using it, it kind of went from, could it do this? Could this work to, well, this needs to work now.
I'm not doing that task anymore, so this needs to work.
And the reality was, is that I had built this around OpenClaw very early on when it was still called Claude, something.
Right.
Claudebot.
Whatever it was.
And then Moot bot and then OpenClaw.
It's funny.
See, it seemed like such a big deal back then.
And it just went through all the transitions.
And then a lot of things I solved for, like memory and other problems, like excluding plugins and all the stuff.
the project started solving for and replacing the solution that I had built for it,
and then I would have to spend time adapting to their new solution.
And not just once.
Every week?
I mean, multiple, yeah.
Every week.
Yeah.
Also, there's this problem that I have with OpenCla.
I still think it's a great project.
I'm just telling you what I ran into is it's one control gateway.
Many agents, one control gateway.
And that is useful for certain things, but not for how I use it.
I'll get into that more.
Yeah, I had a good,
OpenCla is fundamentally basically
like a channel first harness.
It's like really built around connecting
to these channels of talking to you,
whether that's WhatsApp or telegram
or Slack or whatever it is.
And Hermes has a different architecture.
So I decided to try out Hermes.
I liked a couple of things about it.
It's Python-based versus node-based.
And I will be honest, I do like that.
The project natively ships of flake.
nix.
So they got my attention
with that.
Hello.
The other thing they do
that I just sort of
appreciate as somebody
that's using it in production
is so far
they seem to have
sort of thematically focused releases.
So OpenClaw,
they ship very fast
and they just kind of
include everything
that they have ready
in each release
where Hermes kind of
is a little bit more planned.
This release focuses
on this set of features,
this release focuses on security
and then this release
focuses on another set of features
and it's a little more implicit
and thought through that way.
I just find that
release cadence works a little bit better for me.
But the thing that really works for me
is instead of one big gateway
with Hermes, each agent
has its own gateway.
And at first I was like, oh, what a mess.
But man, is that great. Because not only does it make
it super easy for each agent to use
their own model, which is great for an agent
that can just use a cheap free model or a local model
that doesn't need to do a lot, another one can use a heavy lift
model. But it also
means when I want to make configuration changes,
I'm only restarting one agent's
gateway at a time. And my
other agents don't get taken down.
And so far this hasn't happened, but if they blow up their config, I'm not taking the other
agents out, although it hasn't blown up the config yet.
Yeah, this is what it calls profiles, right?
Yes.
So you can have different profiles, which each kind of get their whole own setup, what you
would get with a single open claw instance.
And then you can do all the normal stuff, so they can have their own subagents,
do whatever you need to, but they can function independently.
And you had already sort of adopted that architecture in your own personal world.
and it's another case where like open cloud hadn't really got there.
Yeah.
And now there are other models out there that is just a natural one-to-one fit for how you already use it.
Chris is just too bleeding edge, it seems.
Well, there's just different approaches, too.
I think, you know, one of the things, if I were really trying to build my own complete thing,
but I wanted to base it off something, I might either just go straight to pie or I might use OpenClaw.
Herbys has another thing I just want to mention because I know it's one of the first things that comes up,
is they have what is called this closed learning loop, where they have agent-cured-cureated memory,
It kind of goes through and automatically create skills for complex tasks that it's noticed it's been asked to do.
And it uses, you know, some LLM summarization to go through and build a skill and it auto creates skills for itself.
Hmm.
This is both a good thing and a bad thing, in my opinion.
I think it can be a bad thing in the sense that if you're practicing, say I'm building out a swag pipeline and the commands aren't right, something isn't right, it could accidentally auto learn the wrong.
thing, the wrong tool call, the wrong path.
And so you have to kind of be, I think you have to watch it.
At least that's in my opinion.
Right, you probably want to be auditing the changes that's making to your skills.
So that's what I've done.
Is my, my agents say this is what I've auto learned and I have to approve the auto learning
right now.
I'm just kind of watching it that way.
But the Hermes system seems to be really, really solid.
The skill system is excellent.
The memory system, I think, is quite good.
I not only have a good markdown-based memory system, but then I'm using an external
memory system for some of the more vector type-based stuff.
It feels a little bit faster, too.
It seems like it responds a little bit faster.
Yeah, it seemed like it had very clean and well-documented extension points.
So, like, for your stuff with, like, you had even experimented with writing your own
open-cloth plugin.
Yeah.
And it's totally possible to do.
But it just felt like, like, instead of having to conform to this whole plugin architecture
here, you kind of just basically implement, like, a version of an abstract class in Python.
And it was just like a simple, clean, well-documented API that you could really implement
with whatever, and there's already a bunch of Python things that interface to all of these
Rust-built vector engines or whatever you're actually tying in.
Yeah, and a lot of them have MCPs.
I want to note something, though, because transitioning between an agent harness, like
OpenClaude of Hermes, isn't like moving from Debbie into Fedora.
It's a different kind of hop, I guess.
It's a different kind of transition.
In a way, it's maybe easier because these things are so text-based, so markdown-based.
Things live in sort of the same common things like a soul.m.D and an agents.m.D.
And the memories on both systems are marked down based.
That the migration path is surprisingly clean, if not just slightly time consuming, depending on how you do it.
But it's not like a jarring change.
I don't know how to, I don't know if I'm putting it right, but it's not, and not that moving distros is like this huge jarring change,
but it feels like less of a transition than maybe just swapping from Debbie and the Fador.
Probably helps too to go from OpenClaugh, just in the sense that like it's so big, it had so much momentum that I think there are a lot of folks, too, that we're incentivized to also have a similar architecture and or well support folks coming over from it.
Yeah.
But yeah, right?
Not only do you can you use sort of helper intelligence tools to do some of the migration, but a lot of it, like, you know, it has to store state to persist between its loops anyway.
So like it all kind of needs to be in these folders.
you just might need to update some config files
or use different config files to get it running.
Yeah, the trickiest stuff comes down to don't run
both gateways at the same time,
trying to use the same Telegram Bot token or whatever.
That's the trickiest bit.
How do you do the cutover?
Yeah, just don't have token collision
for whatever chat platform you're using.
And that's kind of just standard Linux sysadmin
operational thing.
Yeah, yeah.
Also, I'm so impressed with how far you can get
with a good set of skills and some rappers
with these free and...
or cheap open source models like minimax and Kimmy and Quinn.
It's a massive unlock that I don't think our community has fully wrapped their head around
because at least I don't see people talking about it.
I don't think what I'm about to say is any huge massive discovery of some master AI workflow
that turns these things from ambiguous to deterministic.
But it is such a rock-solid workflow.
I'm surprised I don't hear people screaming about it from the top of the hill.
And it's a way to take advantage of,
free models or cheap models like deep seek like mini-max and it's simple you you set yourself
an actual little bit of a budget to go burn some money on a front on a frontier model like a chat
chippity or like a claw and then you use something like open code connected to one of these higher-end
models and again you're just you can you know set yourself 25 bucks right it's not it's not
going to be a big deal and you have these higher-end models operate your agent be it open claw hermes
whatever it is, have it operated like a puppet because they all have command line interfaces
and MCPs and ACPs.
So you can have open code using GPT5.5 operate a Minimax-based agent like a puppet.
And while it's operating that thing through its job, you can have it sit there and watch
and monitor everything the agent does.
Every mistake it makes, every wrong tool call it makes, as it tries to figure itself out
where it got ambiguous in the instructions.
The bigger powered model can watch all of that.
And then you tell it, where does it need improvement?
It goes back.
It hardens up the skills.
It improves the wrappers.
And you do the run again.
And you have the bigger model watch one more time.
Maybe you do it three times.
And you just do it until there's no mistakes.
And from that point forward, that cheaper model is going to execute that task without issue just about every single time.
I don't care if it's LM or what because you're combining scripts, you're combining wrappers and skills into something that is actually a very solid workflow where the LLM isn't making up.
a bunch of stuff. It's following a very specific sequence using very specific tools,
and it produces the same result every time. It's reliable. And I don't know why this is like
one of the bigger conversations in this space because it's so simple and straightforward and
produces incredible results. So what did I do? After I migrated from OpenClaught of Hermes,
I brought up OpenCode, put 25 bucks on OpenRouter, use Gippity 5-5, and I had it just orchestrate
all the tasks I normally have these agents do under OpenClaw. Now do it under Hermes.
Watch everything that breaks.
Wrong skill path, wrong tool goal.
What didn't it get right under this new system?
And then it just went through boop, boop, boop, boop, boop, boop, and fixed every agent line by line by line on anything that came up.
And within like, I don't know, probably a day of just like, oh, I'll try this.
How did it do?
I was done.
Everything had been caught and it was working.
And that is such a powerful combination.
I mean, I mean, the stuff I'm doing with these things is really incredible from from cutting clips to creating T-shirts.
It's really amazing.
And it's all going, each point, you know, I have quality gates where humans have to interact and improve things.
Like, it's really solid.
And doing such, I can get by on these models that probably by the end of next year, I'm going to be running on my own local hardware.
Yeah, right.
You kind of, I think it plays to a lot of different strengths in that we've seen, you know, some models are good at, quote, unquote, thinking and doing complex planning or, you know, debating pros and cons or planning architecture.
and other models are really reliable sort of tool collars and loop creatures.
Yeah, exactly.
Better hands than they are at, you know, actual sky-high architects.
And so you can leverage both of those things and then helps as well, as you say, right,
with the token budget of like you only really need the top level of intelligence for certain parts of those tasks.
And especially in the initial sort of training phase, and then maybe if something breaks or, you know,
something goes awry or whatever.
Yeah, or you have a big model change and maybe you want to run through it again and make sure nothing major changes.
or API goes from version one to version two.
Yeah.
Yeah, do those kinds of updates.
So you need a way for some kind of lifecycle management,
so probably something that's Git backed
and something that has a startup document
that tells a new fresh LLM session.
These are where your skills are at.
This is how I deploy them.
And when you do that, all of my stuff is Nix backed.
All the skills get deployed via Nix.
So if the agent wants to update its skills,
it has to stage it in the Nix repository first,
and then everything is checked in via Git.
So if a skill goes sideways,
if I made a wrong update, I can roll back.
and nothing goes live into production without going through the Nix process.
And to me, this is where Hermes really, for just me personally,
kind of went to the next level over OpenClawe,
where it felt like I was always fighting that with OpenClaught.
Hermes just leans into the configuration I want.
And for others, it totally supports other configurations,
but for me, this integration was tight.
I mean, and what folks might not appreciate is that, like,
you have spent a lot of time fighting with NICS and OpenC's.
Claw and as of I, I mean, we started jointly
maintaining a custom package for it.
Yes, we did, yeah. Because like we were
just not. With GitHub actions, building stuff for us
in the background after each update. Yeah, and it
would like strip any non-Linux, non-X86
part from like the NPM packages.
There was so much like Windows Cuda stuff in there and
Mac OS stuff in there. It did not make sense to download
over Starlink.
No. It's horrible. So it's like with OpenClaught,
right? It's like an MPM project
and then they do, there is NICS-OPN
claw, which is hosted under their org and, like, is, I don't know, semi-official.
It seemed to be community done, but, like, kind of recognized as a thing by the project.
And didn't really seem to follow releases, but more like just snapshots from development.
So there wasn't, like, a one-to-one.
There's been an open-claw release, and it doesn't necessarily match to this Nick's open-claw
release, like the two or not.
Yes, it was more like, hey, where is Nick's open-claw caught up to in the commits from
the upstream?
And so it worked, and it was there.
But sometimes there were delays.
They've been better, it seems recently.
But there was a while, especially when we were forced to sort of start our own, that like it was taking a little while to get updates versus Hermes.
They just have a flake.nix right in there.
They're using UV and the UV to Nix sort of Python integration right there.
It seems like a well-done thing that is intentional.
And that seems like a sign of the overall sort of difference between the projects.
Oh, and it makes my life so much easier.
And if it's something I'm running in production on that particular system, it just makes sense.
A couple other things I like is it has a two.
Tu-E. I know that's silly, but what I found is I can code or
Wicked Vibe, whatever, I can do long sessions in a tui all day, right? But Telegram,
that's for one-shots. Telegram's one-shots, and I could not imagine building an
application or usually for us with some backend tool via Telegram.
It's just not the right interface for it. I can't do it.
Especially like, it's surrounded by distractions too, right? So.
Yeah, yeah. And people know I'm online.
That's what I want.
Yeah.
People know I'm online.
They're tat-chatting with me.
And the toui is really good.
It's really good.
They've really done a good job.
I mean, it's like, you know, up there with open code and codex and the other ones.
And then, Brent, you might like this feature.
I just started playing with it just to talk about it on the show and kind of ended up liking it,
is it has a built-in can band board for agent orchestration and project management.
And what you can do is provide it with a spec and that has a spec decompose.
and it breaks it down into individual steps
and builds out a canband board.
Canban.
And then you can watch the can band
and see like what's in progress,
what's blocked, what's the next thing.
You can move things around, add your own,
open them up, see the work log,
add comments, inject comments.
So it's got boards, tasks, links,
workspaces.
You can assign different agents, different jobs.
You can have a default coder agent.
Mine's called Scotty.
I think the thing that's most interesting
for me here is it's neat how it's like
it's not just the board.
Yeah.
It's sort of the integration with like a work dispatcher to actually run the board.
Yes.
And it's a CLI.
It's a database.
So you can have the agents just use it for their own back-end task management and then
you just use the dashboard to look at it or you can act, you can interact with it and create tasks for them.
It's either one.
I like that.
It's not just a throwaway thing.
It's deeply integrated.
And that is nice.
And because there's a CLI for it, the agents can just, oh, yeah, I'll go update that task for you.
No problems.
to do that part. But it is a nice way to manage all of it. It's just an example of something
they've built, and they've built in several things that are just nice to have quality of life stuff.
And I like it. I like the design. I like the performance. I like the reliability so far. I've
gone through a couple updates. I like it. I do see a really, hmm, fascinating little detail here
in their quick install. It says, oh yeah, quick install. You can do it on Linux, MacOS, WSL2. All of those
are expected. And the fourth one here, it says termux.
So they're officially supporting running this thing on an Android device.
I am curious what we can do with that because I don't know.
Interesting.
That just seems crazy and we should do it, you know, we should do the things that you don't have to.
That is interesting.
Maybe we add that to the to do list.
I want to just, I'm going to wrap up this with just an anecdote of, I think these are more powerful than people realize.
I actually recently was using my Hermes agent in combination with a tool I think we should talk about in the future called Windows MCP.
And Windows MCP lets you completely remote control the Windows desktop.
I mean everything. Resize Windows, click a button, process management, everything that you can do through the Windows desktop.
You can basically do through this Windows MCP.
So install Linux.
Well, so what I did is I had my Hermes agent reach in and,
control a dedicated Windows laptop that I set up to run this tool called Forscan, which
read proprietary Ford air codes from cars. And using this, I had the agent live troubleshooting,
the air codes that were coming in. So I would do the button pressing, like I'd push on the
pedal, I'd turn the key, and the agent would tell me when, and then it would capture the data,
show me the charts, and we were able to prove that the computer was sending a signal that we
weren't sure it was being sent or not. And then we could see when the voltage hit and drop.
That's so cool.
And this is just using a set of tools that I put together like volt meters, the Windows MCP, 4 scan.
Oh, and then I obviously probably worth mentioning, I had a USB to ODB2 dongle.
And I started looking into this.
There are devices you can buy out there that are native Linux devices that bring in ODB2 data right into your Linux box.
And there's pre-existing Python libraries that know how to read and interpret that data.
It is an unbelievable little world out there.
It's amazing where you could build a little diagnostic tool set
where you hook cars up to agents with volt meters and ODB2 scanners.
And this is kind of really the test of the harness, right?
Because this is the goal.
Like these things are more useful,
the better you can enrich their context with all of this useful information,
and then now also have the right tools to interact with it.
And this was an example where the multi-chat system is useful.
And Hermes supports handoff.
It also supports a few other things like slash goal,
which is becoming really popular,
but slash handoff is this neat idea
because when you launch in the Tui,
you're generally in your own gateway session.
That's optional, but that's the default.
But when you want to move to Telegram,
you can do a handoff to Telegram.
So I set it all up before I go out to the shop,
do a hand off to telegram.
Then when it's telling me, okay, press the accelerator,
that stuff's coming on Telegram,
because I'm out there, I'm in the shop,
I'm on my phone.
And then when it's time to go, like, figure out
what we got what to do with the data hand,
back to the towee and get down to the research.
That research, by the way, that gets outsourced to my agent Dax that goes out and
actually does the research with all the APIs and skills she has for research, while
Laura and I continue to work on the data that we get back.
And then Dax comes back in another thread with her results.
And it's just, I don't think people are really fully grocking how far you can take this.
Like right now people are creating like fart apps and, you know, that, remember when
iPhones first came out?
Yeah.
Everybody made like beer apps where you could like, you drink the beer and the, like, that's
the stage we're at right now with most AI generated code. But when you combine the features of
these things with something like an agentic harness that allows you to tie into different things
like a Linux CLI and an MCP, you start stacking some stuff and it starts getting really, really
powerful. And it feels like Hermes is probably the better platform to build that on, for me,
at least, than OpenClaw. At least that's kind of my take right now.
I just want to take a moment and thank our members. It's a very light sponsorship.
this year. We have Nebula and that's it. So if it wasn't for
determinate systems and the members, we'd be
cooked as the kiddos say. But the members, they keep us cook in,
which is a good thing. Linuxunplug.com slash membership or jupiter.
If you want to support all the shows. The high level features are you keep us
going. Independent media is a pretty rare thing. The Linux
magazines couldn't make it work. We're trying to make it work in
podcasting. You get an ad-free version of the show or the bootleg
version bootleg clock in an hour 31 right now.
Lots of content in there.
Just a way we can say thank you, give you more show, as it were.
And you can support us by Gwinolynixunplug.com
membership, jupiter.
Party for that.
You set it on autopilot or send us a boost and support each individual
episode.
As always, we've got a couple baller boosters this week.
And up first, turd Ferguson with 33,333sats.
Turned Ferguson.
Did you guys see Greg K.H. call for more Rust kernel developers?
Have they built it that Rust support and no one has come?
Seems like if it was popular, they'd have the opposite problem they have right now.
Well, speaking of agenetic clipping, we have a clip of Greg K.H.
talking about this from Rust Week.
I don't know how Greg gets out there. He's a busy guy.
And Wes, you collected something like 15 clips from this?
Yeah.
And this happens to be relevant to Terts question.
But we need your help. We have a ton of work to do. The Rust for Linux team has a whole bunch of
projects. They have a great, their own, um, was it web board? It's not Zulip. Anyway, um, there's a good list.
They have a mailing list. There's a lot of bunch of beginner stuff to get involved in, a lot of
fix-meas, a lot of stuff. They're doing a really, really good job. Um, I need your help.
If you want to write some kernel code, please do this stuff. And, um,
This is good.
I don't get the sense that they're desperate for developers.
That wasn't the sense I got from that clip.
I got the sense they want more, like they've built it and they would like more to come.
And I think that in the leadership there is a hope, right, that Rust presents an opportunity to collect more young folk to continue the project on and be the next generation of people who will work with it because Rust is just a more modern, friendly language.
And you might use it working for a startup or a tech company and then be able to port at least some of that knowledge over.
to work with the kernel in the way that you're just not going to with C.
I do think it's notable, A, that Greg is being such an advocate for this.
And B, it's a pretty good presentation.
It's technical, but it's a pretty good presentation.
He kind of just tries to de-escalate the fear around it all.
Yeah, and there's also good deets about, you know, like they've brought some of the improvements.
Like, if you try to implement something like the Rust API way, you can do a similar thing in C
and get not the same exact benefits, right?
But you get safer code out of it, even if you don't get the compiler complaining about you
if you break it.
But it can be a good way to organize your thinking.
So it's improving it even in the parts that aren't rust yet,
which is kind of neat.
Agreed.
Hybrid sarcasm comes in with 22,22 sats.
This old duck still got it.
And he just says, boost.
Boost.
Thank you, hybrid.
Appreciate the support this week.
We need it.
Boost received.
Thank you very much.
Your inner child comes in with a row of ducks.
Not seen last week's baller boost on Fountain.
What gives?
Do you prefer peeps watch on yub-dub or fountain?
What are the perks for joining the Jupiter Club for $15 a month?
And lastly, what would it take to get you guys to come to a show in St. Louis in Vance Crow's studio?
God, I'd love to go to St. Louis.
How do I get to these places?
That is something to crack.
That's a good question.
Let's take an order.
I suppose we probably prefer you listen to wherever you want, really.
I don't know if we have a strong preference.
Yeah, it kind of works what works for you.
Yeah.
Really, that's why we put it as many places as we can.
I guess a tiny preference to a podcast app.
Yeah, if that's what gets you using a podcast app over just using YouTube, then do that.
Yeah, yeah.
But otherwise, use what you.
Wes, it's yub tub.
I think.
So my bad.
My bad.
The Jupiter Party gets you the bootleg versions of all the shows.
Really, what we're trying to do there is we're just trying to make it feasible to stay independent.
And so we have a couple of value for value options, and that's just been a popularly,
requested one. Because what we do is not particularly interesting to apparently most of the
rest of the tech world anymore. They all care about AI and the LM stuff and don't seem to realize
it all runs on top of Linux. Hello, we're still here, but thankfully the audience still cares.
And so there's not an audience of sponsors to really make a show for as much these days, but there's
still an audience of people that care. And so it hasn't always worked, but we're going to get,
we're giving it our best. And so the Jupiter Party sort of finances, if you're
You like multiple shows?
There you go.
It's covering multiple shows where we have just the membership for Linux and plugged if that's just your bag.
And lastly, yes, we would love to come to St. Louis, how we ever make that happen.
I don't know.
Brank can't keep his van on the road.
Yeah, once we get that fixed, then maybe we like that we need to figure out some sort of race there, a reason to race.
Yeah, that'd get us going.
That I get us going.
I like where your head's on.
I knew souped up van to compete against.
The West Wayne.
The West, West, West, West, where?
Well, we've got to come up with something.
The pain.
No, we got nothing.
We've got to get it.
Like, bang bus, man, I think with that name, like, it just had to happen.
You know, it manifests.
I'm noticing West doesn't have a rig, so this might be the year of the West rig.
We need a name.
If we had a great name for, like, a West something or a...
It's just that private train cars are very expensive.
Yeah, that would be...
The pain train would be...
The pain train.
That would be good.
Could we get away with calling a van the pain train?
I think we could.
We'd do like a train ramp.
Yeah.
Right, a train wrap.
Choo-choo.
Well, the dude is abiding again this week with 19,000 sets.
Well, I wanted to note that I appreciate your takes on the latest AI news.
I deployed Hermes to a VM with my proxmox node and started playing with it.
Currently using the OpenCode Go subscription, I picked Quen 3.6 plus, which was $5 for the first month just to get the hang of it.
I set it up with Telegram.
It's kind of surreal to ask your bot questions and see the reply.
I'm curious, what models or subscriptions do you guys use?
And also how much, quote, power you give them to perform tasks on your behalf.
Cheers.
I'll start.
I'll start with the answer.
I'll say this.
I have really liked minimax.
And so I broke down and I bought their yearly sub while they had it on sale back in, like, April.
So I'm so maxed out on tokens.
I have so many tokens through Minimax.
It's been wonderful not to worry about that.
And then I kind of use the Zen platform or OpenRouter as kind of like when I need a hit of one of the larger models.
And that's worked pretty well for me.
I do think that what I'm about to say is going to get me a little bit in trouble,
but I'm just going to admit to it.
I set them up on their own dedicated hardware for a reason.
They have their own dedicated OS with his own dedicated Git repo.
So I don't really see the point to restricting the crap out of them.
And I don't really give them access to public chats.
I don't really use, like I don't just go spulunking through random emails with them.
So I'm the only person they really talk to except for me and the wife.
It seems like a pretty safe set.
So I give them full YOLO mode, which I constantly have to argue with them about,
because of all of these things want to be excessively safe by default.
All these people that are worried, like, trust me, they're obnoxiously safe.
They're obnoxiously safe.
And, like, I have to constantly explain to them.
This is dedicated hardware.
This is a purpose-built install.
The entire reason is, like, this thing is supposed to manage this entire box.
And I do.
I want them to manage the entire box.
I want them to update the services, update the OS, all of it.
Install new stuff, all of it.
So if there's a YOLO mode, I'm using it for the most case on my Hermes system.
I sometimes go a little more careful.
If I'm, say, on an Ubuntu box or Fedora box or a Mac, which I haven't really done,
but I would be a lot more careful.
Like any box that doesn't have rollback by default, basically.
Yeah, or declarative configuration that would break, obviously.
Like, that's there, because NixOS has those breaks in there, I get to be a little bit more Yolo on the AI side.
But if I'm using, I have seen it go sideways on an Ubuntu box specifically, you've got to be careful there and stuff like that.
but I go full
blast.
If there's a dash dash yellow
I'm doing it.
What about you,
Wes?
Yeah, I mean,
I think it kind of depends on,
I agree.
I also am running it
on its own VM,
so it has root in its own box.
That part I don't mind.
I think it just kind of depends
on what tools
you connected to, right?
Like what passwords are on,
what keys does it have
for what things?
What MCP tools do you connect in?
I also think this is an argument
why MCPs are still valid
in the age of open clause.
and these agents, is because MCPs give you a place to kind of have control over what the agent can do.
And that seems like the proper place to bake that in because that's going to be more agent agnostic and more setup agnostic and system agnostic.
So I still think MCPs play a real good role here in controlling what the agent actually can and can't do.
If the only way it can talk to, you know, X thing over here is it has to take a snapshot first and then do the change and that's just sort of baked into the command or it only has read-only access, then you just kind of have a limit on,
what it can possibly screw up.
And this is also where if you do want to go to the CLI route for some of these tools,
you know, it's not a lot of work to just have the agent create a safe wrapper,
where it does things read only by default.
And so it isn't calling the actual CLI tool.
It's calling a wrapper that calls the tool,
and that wrapper has some safeties built into it.
Of course, NXOS makes that very easy, but you can do that on any system.
Yes, yes.
So that's just another way where, so it's not like I'm just totally crazy with it,
but with these different pieces combined,
I am able to have the agent have complete control over the infrastructure,
but you do have to be careful when it comes to a security standpoint and all of that.
You want to make sure that things lock down and not hanging out in public chats and things like that.
And there's a lot of different ways to rig it.
So it kind of depends on your own how you like to run things, right?
Like it can just be a thing that lives in your sort of CI automation pipelines,
or it can be a personal assistant that's talking to you on Telegram or anything in between.
And by default, the way Hermes came out of the box was it was, you know,
for stuff that was going to need a CLI system command,
it's just going to ask me, and I could do allow once, allow always.
And, you know, so for the first 30 or 40 times, I do some, you know, whatever, it's going
to ask me and I'll just say allow a bunch of times.
And it would, in theory, eventually build out a white list that it's allowed to do, and it would be fine.
It also, it's just, it's funny how much of this stuff, like a lot of the open source and sort of
infrastructure is code and just a lot of the principles that folks in our space talk about really do pay dividends.
And another of those is, like, if you have a nice mesh network set up, then it's another way, right?
Like you can kind of have, give it its own identity on the mesh
and then use sort of the mesh firewalls
or other firewall systems and ACLs
to control what it has access to you that way too.
And I have to say Nebula is so good for this
because the agents can stand up the entire Nebula network on their own.
If you have the magic of SSH,
the agents will stand up the entire network.
And there's no API key you have to go beg for.
There's no Google signing you have to do from zero,
from prompt, they can stand up a secure mesh network without any other company's permission
or involvement. It's so effing powerful. I'm using this for my home assistants that are on
separate networks, but I want to have a... When you have three different home assistants,
you never really want one dashboard, right? You want to be able to control all of the different
stuff from one screen, because one's for the chicken coop, one's for the RV, and one's for the studio,
right? I'm not some crazy baller, it's just I got chickens.
Now I got three of these things, and I want one dashboard with the buttons for the lights and the crap and the stuff that I do all the time.
I don't want to have to load up three different home assistance systems.
Well, guess what?
They're all on three different networks, but Nebula, boop, boop, boop, pooh, boop, ties it all together so simply builds it out so quick.
It's really great.
Anyways, it's just, I think it's, there's so much advantage if you can build the right harness and apparatus around it so you can give them some power, what they can do for you is save you a crap ton of time.
and it lets me enjoy infrastructure and free software projects
that I was starting to run out of time for.
As, you know, just as my kids have gotten older,
life off air has gotten busier and busier
and some of the cool stuff I was able to build on
and do before I don't have time for.
But I can keep up, I can keep them managed,
I can keep them secure.
They're not going to sit there and rot and just, you know,
like one of the biggest issues with home labs
is they can just sit there and kind of just fall apart
and have issues and get out of date
and things break over time and your backups fail
and can just become a huge source of,
stress. Like these agents, they're, man, they're keeping
on top of it. They're telling me when my freaking MVME
hard drive temperatures are too high in one particular
rig, and when this backup failed and all of it.
It's so powerful. See, it's
worth giving them the leash,
but just be careful. All right?
I know. I know. I went on for too long.
But I think it's pretty exciting.
And also, we don't have a lot of boost. That's it.
Thank you everybody who streamsats.
I want to pull one forward, actually.
Oh, yeah, do it. Let's do it. There's one here
sticking out to me.
Rubikman boosted in.
the 1,488 sats, thank you.
Oh, I'm in.
And it says, I'm confused.
Are you pronouncing GIF or GIF like Jeff or Gioff?
What's with that?
What's confusing?
It's an animated Jeff.
Everybody knows that.
Yeah.
I thought we settled this years ago.
There's an episode somewhere that goes into detail about this.
I don't remember which.
You love to listen to the back catalog, but thanks, Jeff.
It depends on the program you used to say.
it. That's true. Yeah, some prefer the...
Yeah.
Thank you to our SAT streamers.
Came in with 18 of you, stack in 21,17
sats. Not too bad. Not too bad at all. Thank you very much.
When you combine that with our boosters, who boosted last week's episode and a couple of you that came in at the last minute today,
we squeaked just over 100,000 sats. Not a big banger, but I'm still pretty happy. 101,023 sets.
We definitely could definitely use to see the support pickup just because the sponsorships are so low.
So this is part of what is keeping the show going.
And you can boost with something like Fountain FM.
If you're on iOS, you definitely check out Castamatic.
And AlbiHub just keeps going from strength to strength.
I just updated the latest Albi Hub.
It's so impressive.
And then you can connect a whole plethora of apps.
Get started at new podcast apps.com.
And thank you everybody who boosted episode 600 and 68.
We really do appreciate you.
I'm going to start with a pick this week.
I have a soft spot for a program back in the day called Norton Commander.
Ford really settled on the Windows 3 desktop and the MacOS desktop paradigm.
There were people that were trying to make file managers and graphical interfaces for DOS,
like maybe the OG 2E, if you will.
And Gnome Commander is a Norton Commander-inspired file manager.
It was written in C++.
It's recently been rewritten largely in Rust as they moved over to GTK4.
I know, surprise, surprise.
Gnom Commander 2.0 also adds embedded terminal to display output, which is nice to see.
Improvements in the search dialogue, the internal viewer has been improved.
Accessibility has seen some improvements.
Keyboard shortcuts dialogue is there now.
And you're going to like this one, Brent.
More tab states are restored on restart.
So now you can over tab on your file manager.
So it's not all, though.
It's just more?
Yeah.
I need them all, Chris.
Well, I mean, there are limits.
You know, there are limits.
Why?
This thing still looks like a classic app.
He sure does.
You know, it reminds me also of Midnight Commander.
It's two panes.
I just love it.
You know, when you can have one pain, have two, as they say.
So, no, Gohm Commander is a twin panel graphical file manager and GPL3.
So that's, I just had to start with that because of the nostalgia.
I like the feels.
Well, while you are pretending that the terminal doesn't exist,
with your graphical thing over here.
As I do.
I brought the graphics to the terminal.
Oh.
Yeah.
Oh.
Yeah.
Try out Halo.
Flipping the script on us here, West.
Terminal flow field screen saver with perlin noise, braille rendering particles, and 24-bit hansy color.
Oh, you had me.
It's screensaver.
Yeah.
Here's your to-y screensaver.
I have a real soft spot for screensavers.
I was big into the X-11 screensavers back when they were around, uh,
on the proprietary platforms, I loved After Dark.
I just love screensavers, and we've moved away from them.
Yeah, it's already got a couple different preset themes in there, right?
So you got that.
Ironically, when we had these big old boob tube CRTs that were probably burning 200 watts constantly,
we left them running all the time with screens savers.
Yes, we did.
Now we get these LCD screens that pull five watts,
then we turn them off all the time.
Well, we have live terminal resize handling, and, yes, don't worry.
Uh-huh.
We have native Windows terminal support.
Yeah.
They do recommend you use Kitty or Ghost DTY or I-Term if you're on the Mac or something that's got, you know, lacrary.
You do want like a nice, yeah, graphics-y terminal.
You know where this would be great is if anybody out there has a screen in the background of your, like, Zoom work calls, if you're like a work from home, you combine this with Hollywood behind you.
You're going to look, yeah.
You know what, what, Brett?
I have a blank one behind me.
It seems just perfect with this.
That thing is the very first monitor I ever ever.
God, it's like almost square that thing.
It's terrible for anything but exactly
this. So, thank you, Wes.
You guys remember the Hollywood package
too, right? Oh, of course. Oh, yeah. Oh, good one.
Go look that up up there. I know there's a snap available, but still.
I have a question on this one. Other package, too.
Yeah. Wes, hello. How did you
find something like this? Because this project
is three days old.
How did you find this? Did you, were you trolling somewhere?
Can I see. Here's a, this is just
console, but I do like it a lot. Here, hold that. Can I see it. Hold that up again.
I do. So it's like worms going across the screen kind of.
All right. All right.
That's neat.
You can run it with just UVX if you want.
How the heck did you find it?
I mean, troll and get up.
Oh, yeah, he does that.
I've been noticing.
See, the trick is you follow people who write cool stuff.
Yeah, you've been up.
And then you hope that they write more cool stuff.
He's been up in his links with this.
It's like your linkage is going up.
I get a report from the agent.
And I can see the uptick in the linkage because you've found a good vein of stuff.
recently.
You know,
that's the
difference
between
Wes and
I don't
think to
use GitHub
as a
social media
platform.
He's kind of
using it
as a data
source too.
It's, you should
just watch it.
It'd be nice
to automate it
more.
Yeah, yeah.
You never know.
You never know.
All right,
we will put links
to Halo
and of course
the Gnome Commander
in the show notes
over at
Linuxunplug
dot com
slash 668
or check out
Jupterbricasting.
com where you
got Linux Unplugged
and the launch
in this week
in Bitcoin.
And you can
always
call.
the launch as well. Call us and chat
with us. It's kind of fun. Anything else we
should cover before we run, boys?
No? Although just a reminder we want
people's Bitwarden password migration
stories or what you're using in place of
Bitwarden and does it sink?
Because that's what got me. That's
what effing got me is I just
I'm so frustrated because it got me
and I knew this, I knew this is going to happen. I had a whole
platform rant I was going to get into, we're running out of time.
They got me and I knew
it was going to go this way and they got
me for the sink because I just want
Bulletproof, never think about it.
I save my password.
I have it elsewhere.
And I want it to work.
But also the mobile has to be like first class because if I create an account on the mobs,
I got a capture to the mobs so I can log in on the desktops later.
It's got to work.
Help us people.
And then maybe we can come up with a solid solution that everybody trusts in our community.
It's something we can recommend to the wider audience.
I will also say maybe consider boosting in if you have experience with making a Linux router.
Oh, that.
That was a request that we still need more input on.
Let me tell you what.
Let me tell you what.
All right, Wes Payneau, is there anything else we should let people know about this here podcast,
like maybe extra metadata around the show, something like that?
You got anything?
Yeah.
Well, you know, we make the bots work hard to produce diarized transcripts.
So you can have as much possible metadata about exactly what we said with the addition
of some comic sloped misspellings occasionally.
Also, we've got JSON chapters as well as standard.
Those are entirely handcrafted by editor Drew.
That's right, as well as chapters we try to embed into the ID3 file.
So whichever works best for you, we try to make it available.
And, of course, we are live.
You know that.
See you next week.
Same bad time.
Same bad station.
Yeah, that's right.
We make it a Tuesday on a Sunday at 10 a.m. Pacific, 1 p.m.
Eastern over jb.live.tv and jb.m.
Also sometimes up there on the tubes.
And, of course, we record all of it and more for our members, for our Jupiter party and our unplugged core.
Thank you, everybody, for tuning in.
Go check out theunplug.com website, Linuxunplug.com, for past episodes, this episode,
and links to everything we talked about as well as subscribe links, our mumble room, our chat room.
There's a lot going on around this show that doesn't make it on air every single week,
but you'll find links to it over at Linuxunplug.com.
Thanks so much, join us on this week's episode of Your Unplugged Program.
And we're going to see it right back here as in Tuesday, and you know what that means.
We'll see it back here next Sunday.
I have a request.
You mentioned you didn't have time in the show for your rant, but you have plenty of time here.