So many times have I been able to wing it.. Setting up kitty terminal, just find out where the default config lives and copy to where it expects it to be under your user. Read the config and change what you want. Easy peezy. Download gnu-stow, stow -h, setup a small test directory, trial and error. Bam done.

When it comes to security winging it just isn't an option. The turn of phrase is RTFM, and the arch wiki is my first stop. Setup fail2ban, sshd, snapper, hibernation btrfs swap the same day. Had some misconfiguration in my jail but reading systemctl output gave explicit errors that easily help you figure out your config. In my case I didn't use the [sshd] headder.

Still have an issue when waking from hiberhation where my desktop leaks for one second before the lock screen kicks on, still need to setup a service to enact an on wake sleep 1. My adhd has made me chase other squirrels.