zr0

@zr0@lemmy.dbzer0.com

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨GitHub - sergi0g/cup: 🥤Docker container updates made easy⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Docker uses LXC. LXC is actually at the core of many container engines.
⁨Comment⁩ on ⁨GitHub - sergi0g/cup: 🥤Docker container updates made easy⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Yeah I saw that plugin a few years ago and it was not ready for production yet.

I am going a whole different route, but have the same motivation: get rid of docker and improve the security.

I will move from docker compose to Nomad. And I will also not use containers itself anymore. I want/need more security. You can achieve this with MicroVM (Firecracker). However, you would need to build those VM images yourself. But there is a solution to it. Kata-containers. They allow to deploy OCI compliant containers into seperate MicroVM’s. Then you have true isolation from the host kernel, while not losing much of start-up time.
⁨Comment⁩ on ⁨GitHub - sergi0g/cup: 🥤Docker container updates made easy⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
It sucks to migrate to podman if you have been using Docker Compose heavily.

Also, updating is done with
```
docker compose pull
```
and
```
docker compose up -d
```
every 24h via cronjob
⁨Comment⁩ on ⁨US Border Patrol detained a nursing mother and separated her from her infant daughter to the point that she needed medical attention as a result of not being able to nurse⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
The lead in the pipes is obviously doing these “miracles”
⁨Comment⁩ on ⁨Stack overflow is almost dead⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Said the same thing 3 days ago basically
⁨Comment⁩ on ⁨Call to defederate from feddit.org over zionism⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I fully agree, which is why I said you need to actively protest. If you stay quiet, you are part of the problem. Censoring is equal to staying quiet. The problem does not go away by staying quiet.
⁨Comment⁩ on ⁨Call to defederate from feddit.org over zionism⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
So if I don’t insult others, I automatically agree with them? That’s not how debates work. And this is going to escalate the situation further, which helps no one, but your own ego.
⁨Comment⁩ on ⁨Call to defederate from feddit.org over zionism⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Banning certain actions and defederation; both are censorship and also patronization. I am against any form of censorship. There are very few exceptions, mainly malicious actions, which need to be banned to protect your users.

We all have the choice to hide certain terms, communities or servers. A much better way is to get confronted by it and actively protest to this kind of censorship. Share your views, your opinions in a non-offending way. Give the others the chance to get educated. If it fails, move on and enjoy your life somewhere else.

I know, my views are quite unpopular. But they are mine. Feel free to block me at any time.
⁨Comment⁩ on ⁨Applying 'extreme heat' to lithium-ion batteries reportedly restores their capacity, and I think it's the sustainable tech breakthrough of 2025⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Had to laugh at your comment. Not that it matters in this case, your ear buds are not going to magically combust at just 150°C
⁨Comment⁩ on ⁨Applying 'extreme heat' to lithium-ion batteries reportedly restores their capacity, and I think it's the sustainable tech breakthrough of 2025⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

Warning: heating earbuds batteries to over 300F also causes fires

Reading this tells me the author has absolutely 0 idea of how physics work and is nothing but a blogger of consumer grade equipment. People like that should refrain from trying to understand how science or scientists work.
⁨Comment⁩ on ⁨How to harden against SSH brute-forcing?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Yeah, I see your point. No use to repeat the same you can read in other comments or in those 274772 guides online. I was trying to imply to just generally harden ssh because then brute-force attempts should be no issue, unless you log everything and the disk space gets maxed out :D
⁨Comment⁩ on ⁨How to harden against SSH brute-forcing?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Fml… yes, I meant CrowdSec. Thanks for the hint
⁨Comment⁩ on ⁨How to harden against SSH brute-forcing?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
- harden sshd
- use fail2ban or even better CrowdStrike
- use a tool like the following to have a next-gen security solution: github.com/mrash/fwknop
⁨Comment⁩ on ⁨FBI raids home of prominent computer scientist who has gone incommunicado⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

“None of this is in any way normal,” Matthew Green Exactly, Matthew. But they are normal in a fascist country. Remember, if you do not fight actively against it, you are part of it. Too many former Nazis came up with the excuse “But I was forced to” or “I didn’t know any of this”. Non of those arguments are valid. Fight against it. Leave the country. But giving interviews will not change it.