Mara

Which games?

Wasn't that intended to fix an issue where other players in your multiplayer session could cause your console to execute arbitrary code? Imagine the fallout if it became "play Mario Kart and then have your console refuse to boot again"

What workload makes that much of a difference?

Nix!

No prob! If you run into any problems, feel free to DM me or /u/tailscale@hachyderm.io. We're more than happy to help.

Note my bias as I work for Big VPN (Tailscale), but I don't think that teaching people to ignore security warnings is a good thing to do. The CA system is kind of a scam in general, but I think that at least in its current implementation it's better for us to encourage people are aware of those errors and what they mean.

As the sacred texts say: self-signed certificates beget the use of curl -k beget the use of self-signed certificates.

Tailscalar here. Use tailscale serve. It is a reverse proxy inside tailscaled. It will handle HTTPS certificates for you too. As an example, here's a sample HTTP server proxied to both my tailnet via tailscale serve and to the world with Funnel.

Also as far as I know you need to use Serve in order to use Funnel.

This is true with ARM in general. There's no "standard Linux" to boot because every board needs its own device tree and set of core kernel modules for detecting important things like local storage. It's fairly intractable due to how different the hardware is.

Yo ho ho and a bottle of rum for me!