Sad to hear for my quadlet future, do you remember what things were specifically annoying?
Sad to hear for my quadlet future, do you remember what things were specifically annoying?
Hey bigdickdonkey, I recently tried and wasn’t able to shit my way through podman, there just wasn’t enough chatter and guides about it. I plan to revisit it when Debian 13 comes out, which will include podman quadlets. I also tried to get podman quadlets to work on Ubuntu 24 and got closer, but still didn’t manage and Ubuntu is squicky.
I read about true user rootless Docker and decided that was too finicky to keep up to date. It needs some annoying stuff to update, from what I could tell. I was planning on many users having their own containers, and that would have gotten annoying to manage. Maybe a single user would be an OK burden.
The podman people make a good argument for running podman as root and using userns to divvy out UIDs to achieve rootless https://www.redhat.com/en/blog/rootless-podman-user-namespace-modes but since podman is on the back burner till there’s more community and Debian 13, I applied that idea to Docker.
So I went with root Docker with the goals of:
Basically it’s the security best practices from this list https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html
This still has risk of the Docker daemon being hacked from the container itself somehow, which podman eliminates, but it’s as close to the podman ideal I can get within my knowledge now.
Most things will run as rootless+read-only+cap_drop with minor messing. Automatic ripping machine would not, but that project is a wild ride of required permissions. Everything else has succumbed, but I’ve needed to sometimes have a “pre launch container” to do permission changes or make somewhere like /opt writable.
I would transition one app stack at a time to the best security practices, and it’s easier since you don’t need to change container managers. Hope this helps!
They’re also often used to connect a portable generator’s 120V outlet to a house’s 120V outlet, thus energizing the house circuit during a power outage. But they have no way to lock in so can fall out and become a naughty cattle prod or if the person forgot to disconnect their circuit breaker from the mains they’ll kill a person fixing the power because that lineperson won’t be expecting live wires.
Basically as you said, if you do everything right you escape with your life. But if you do it wrongk, house fire or murder!
Damn I do feel bad, basically asked you to interact with the mod there and holy hell that mod was rude af to you.
Sorry again, but thanks for taking the time to investigate and confirming y’all send ‘em to the shadow realm if they’re crabby (and the NCD mod was hella crabby).
Glorious that you’re not over subscribed, that’s how it’s supposed to work!! But if they over sell the pipe or undersize the pipe, or both, Fs in the chat between 7-10
Oooof too true on LTE internet
It’s a big problem in apartment complexes where one line is CGNAT’d to every apartment. In practice that means 20 people share the same line that a house would have normally, and in the evenings every apartment streaming or gaming can make the speeds shit.
Sucks ass but in the US you can’t do shit because the speeds you pay for are “up to” and if they’re not “up to” that the best you can do is kick rocks.
This also usually coincides with you being able to only get one internet service provider at that apartment, despite that being illegal now. So you’re locked in to shit nighttime service with slow downloads and giga latency
Begone foreign election interference agent
God’s most in denial libertarian 😞 refuses to check a box on some paper every 4 years because of anarchist cosplay mind gymnastics that’s come to the conclusion if you vote at all you’re whole heartedly endorsing candidates while simultaneously slowing the collapse into bloodshed where the fabled anarcho-society can rise from the ashes of every trans person and many more.
Your logic lacks empathy, you need to do introspection to make your beliefs consistently ethical. Claiming to help people on the ground while not helping people on the ground indirectly with basically no effort is incongruous - even if you believe the government should not exist, it does rn, and we live in a society where it can hurt or help the same people you claim to. Nudge the fabric of society that you interact with through fantastically minimal effort and never tell another anarcho-soul in your Matrix chat if they’re still doing a not voting circlejerk because goberment exist grr
You should look him up on your school computer
Amend that, it’s also -1 points to anyone else in a swing state because any possible vote not for the Dems is one that helps the Repubs get closer to the day one dictatorship.
Those swing states include Texas, Virginia, NC, Nevada, Georgia, Wisconsin, PA, Ohio, New Hampshire, Michigan, Maine, Alaska, Iowa, Indiana, FloridA, and Arizona.
Some are unlikely (Indiana, Texas) but all are possible (maybe Senate only for TX). The repubs are losing strength, maim ‘em so better progressive policies can grow. If you’re in CA or NY or CO or MN its still not exactly 0, you should vote local; you may be able to get 3rd party in in places or resist a local house Republican.
I will not sacrifice trans people, genocide continues under both yet only Trump would ban HRT or make their lives even worse. It’s something that’s better than nothing. By design, Americans have two choices, take the one that keeps minorities alive. (They probably agree with your hopes, as a bonus)
A bit ago I interacted with an anarchist who refused to vote because he had everything he wanted now (right to gay marriage, specifically) but he didn’t even know that’s only accessible due to a supreme court ruling and not a law. It can disappear just as quick as abortion. Just token vote for the party that may manage to codify that into law or at least won’t ban it. People will die without marriage equality or HRT, they need to live their life before your fabled collapse occurs.
If you can’t manage empathy, you are a libertarian in the “fuck you, I got mine” worst way. No dreaming of the collapse, no advocating for radical change, just a libertarian. Be better, do both harm reduction now and foment the future collapse.
Here is a nice summary from https://www.reddit.com/r/firefox/comments/o28yi4/comment/h26mguk/?context=3 :
Privacy Badger is also redundant. It’s useless at best and can do a disservice:
Its local learning is disabled by default. Since they turned off the heuristic, PB just blocks third-party cookies from the yellowlist. Keeping a separate extension to block cookies from ≈800 domains makes no sense when you have uBlock Origin with tens of thousands of domains in filter lists. It’s detectable, that is, it adds extra info to your fingerprint. Even despite the disabled local learning, some of its methods of work are still detectable (function code: API tampering detected). And if you enable local learning, PB can become even more detectable.
Also it sends Global Privacy Control and Do Not Track headers (which even one of its creators called “a failed experiment”) by default, which is useless and only gives an extra bits for fingerprinting.
Basically how privacy badger works is noticeable, but you can turn on local learning to get bespoke ad blocking at the cost of your device being much more easily identifiable. Maybe half-n-half and have privacy badger off on private browsing so you can shop in that mode without Amazon knowing your life’s history as easily
BIG RICH CLAY STOLE ALL THE FOREHEAD KISSES I TELLS YA
SANDY LOAM IS IN ON IT, IT’S A CONSPIRACY TO DEPRIVE THE PROLETARIAT OF UWU KISSES ON THE FOREHEAD TO MAKE US FEEL GOOD AND COZY
It’s a PSA, gotta have a license in the UK
First date fit includes underwear??
I’d guzzle that even if Gnor wouldn’t