bizdelnick

@bizdelnick@lemmy.ml

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Ansible Playbook - How do I reverse engineer a running system?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
No, not 30 minutes. For the first time I spent couple of weeks just for reading documentation and experiments. It was about 8 years ago IIRC. But since that time when I need something more complex than install a package or copy a file, I feel myself like a 30-minutes user because it does not work as I expect.
⁨Comment⁩ on ⁨Ansible Playbook - How do I reverse engineer a running system?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
No, I can’t. I use it only occasionally, so I don’t remember everything. But many times configurations didn’t work as described in documentation and I had to find a different way to achieve a required result. Sometimes this behavior changed from release to release. This thing doesn’t seem something that I can rely on. But we use it in our company many years, so switch to another tool would be painful.
⁨Comment⁩ on ⁨Ansible Playbook - How do I reverse engineer a running system?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
You will need many iterations of trial and error. No way.

You can speed up testing your playbook by using molecule or something similar. Don’t touch your working VMs until you get a service set up correctly in your test environment. If you need to set up multiple services in a single VM, you can automate their deployment sequentially, of course.

P. S. I don’t like Ansible and won’t recommend it because it is full of bugs and non-obvious behavior. However I didn’t investigate alternatives and can’t suggest a better one.
⁨Comment⁩ on ⁨Do you actually audit open source projects you download?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Full code audit is very time consuming. It’s impossible to audit all software someone uses. However if I know nothing about project, I do a short look at the code to understand if it follows best practices or not and make some assumptions about the code quality. The problem is that I can’t do this if I’m unfamiliar with the programming language the project is written in, so in most cases I try to avoid such projects.
⁨Comment⁩ on ⁨My two cent about emails servers field. Over a two decades...⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Just checked one more time that emails from my server are accepted by Gmail. What am I doing wrong?

the list of the daemons running in docker-mailserver

Awful. Who heeds both rspamd and spamassassin simultaneously? fetchmail and getmail6? More than a half of these components are not required to get a working mail server. But I agree that setting up the another half is rather complicated. So I’m planning to give a try to mox when I’ll need to set up a new mail server.
⁨Comment⁩ on ⁨Software for Homeserver router combo⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Why not OpenWrt?
⁨Comment⁩ on ⁨How can I contribute processing power to the community?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Yes, you select projects that you participate in by yourself.
⁨Comment⁩ on ⁨How can I contribute processing power to the community?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
You may install BOINC and contribute to scientific computations.
⁨Comment⁩ on ⁨How to harden against SSH brute-forcing?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
The best way is to disable password login and use SSH keys only. Any further steps are not required, but you may additionally install fail2ban or sshguard.
⁨Comment⁩ on ⁨Can I create/spin LXC with virt-manager or something similar?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
It asks for a path to a root directory of a bootstraped container. You can create it with debootstrap, rinse, pacstrap, alpine-chroot-install, virt-bootstrap etc.
⁨Comment⁩ on ⁨Can I create/spin LXC with virt-manager or something similar?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
virt-manager is able to work wit lxc. Add a new connection of type Libvirt-LXC.
⁨Comment⁩ on ⁨Can I create/spin LXC with virt-manager or something similar?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Yes, you can.
⁨Comment⁩ on ⁨Router Hardware: How Much Paranoia is Too Much?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Do you really need OPNsense? Buying a OpenWrt capable router would save your money, place and silence.
⁨Comment⁩ on ⁨Docker in LXC vs VM⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Well, I don’t use proxmox, however docker coexists with libvirt and other virtualization systems. If there are overlapping networks that docker ant proxmox attempt to manage, they are configurable.
⁨Comment⁩ on ⁨Docker in LXC vs VM⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Snapshotting in docker is as easy as docker commit. After that you can back it up with docker save. Then move to another host, but not without downtime.

However normally you need to backup/move only volumes attached to containers. If that’s not the way how you like to organize your services, you likely don’t need docker.
⁨Comment⁩ on ⁨Docker in LXC vs VM⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
What’s the purpose of running container in a container? Why not install docker on your host machine?