atzanteol

@atzanteol@sh.itjust.works

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Proxmox or Docker?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
“I run an immutable distro, BTW”
⁨Comment⁩ on ⁨Proxmox or Docker?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:

Proxmox or Docker?

It’s not mutually exclusive? I have a 3-node proxmox config on which I have 3 VMs running as kubenetes nodes to which I deploy containers. I also have some VMs setup for things which either don’t work well as containers or which I simply don’t want as containers (e.g. a couple Windows VMs for doing Windows things).

I understand that running things in a VM provides better security than running them in a container.

Not sure what you mean by this - containers are typically easier to secure as they’re minimalist. But I doubt anyone is using VMs because they think they’re more secure.
⁨Comment⁩ on ⁨I created a NixOS Install script for Proxmox⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
And I still don’t care. Bad is bad even if a community is doing it.
⁨Comment⁩ on ⁨I created a NixOS Install script for Proxmox⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
I have a very no-exceptions rule about encouraging people to do a curl|bash install and would just remove that. Provide a link to the script, people can run it if they want. Encouraging the behavior of just directly running scripts off the internet is a bad habit.
⁨Comment⁩ on ⁨I created a NixOS Install script for Proxmox⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:

In your Proxmox console, enter the following command: bash -c "$(curl -fsSL raw.githubusercontent.com…)

Do not do this. Never run scripts like this directly without inspecting them first. Do not tell people to run your exciting new script like this. Provide a link to the script and encourage users to inspect it first then run it.
⁨Comment⁩ on ⁨Alternative to github pages?⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
Same? HTTP/1.1 ran the entire internet for 20 years and is still the majority protocol. It’s fine for a personal website.
⁨Comment⁩ on ⁨Alternative to github pages?⁩ ⁨⁨3⁩ ⁨days⁩ ago⁩:
There is zero question about it. It will be absolutely fine for some dude’s static website over a residential internet connection.
⁨Comment⁩ on ⁨Alternative to github pages?⁩ ⁨⁨3⁩ ⁨days⁩ ago⁩:
HTTP 1.1 is more than good enough for serving a static website.
⁨Comment⁩ on ⁨18% of people running Nextcloud don't know what database they are using⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Read the comments. Self hosters are little more than users anyway.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Maybe computers just aren’t for you.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
It’s not just this site though is it? I have been seeing a proliferation of curl | shell bullshit for some time now. Lots of sites doing it and people are posting those commands in forums, etc. telling others how easy it is to install that shiny piece of software! “But people should know better” I hear you whine, “They should read scripts before executing them.” But we all know people won’t do that. Especially not the sort of people who are arguing in favor of this practice, and certainly not the newbs these are targeted at.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
This wasn’t satire?

🤣 🤣
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
🤣

OMG this is so dumb.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

Until then, people who have sacrificed enough of their weekend to the linux gods will be pipe internet text into their root consoles

“I’ll do what’s easy even if it’s not good” is a terrible approach to, well, anything. I would expect people in this community to look for guidance on what the best way to do things is. Seems I’m wrong.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Yeah - it’s remarkable that I receive pushback about it. I guess it’s down to the technical immaturity of your average home-gamer vs. people who support Linux systems for a living?
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

Why would any sensible competent tech user copy paste from other places because this one worked.

Because sites like this and people like you are normalizing the practice. I have seen numerous curl | sh commands pasted on lemmy telling people “how easy it is to install blank”.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
You can install with package managers and include with it a helper script to setup the service. No big deal.

But can you spot the difference between http://myservice.com/script.sh and http://myserv1ce.com/script.sh if you use a font that doesn’t make it clear? If you get people used to just copy/pasting/running scripts then there’s a risk they’ll run something entirely different by accident.

There’s no good reason to install things this way.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
The URL can point to a different file. People can post maliciously similar URLs and trick you into running something else.

With a repository you have some semblance of “people have looked at this before”. Packages are signed and it will provide a standard way to uninstall and upgrade in the future.

There’s literally no good reason to replace it with a shell script on a website.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

Package managers only install a package with defaults. These helper scripts are designed to take the user through a final config that isn’t provided by the package defaults.

This is trivially solved by having a “setup” script that is also installed by the package manager.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

That said, let’s not gate keep.

This shouldn’t be an excuse for promoting risky behavior.
⁨Comment⁩ on ⁨Proxmox VE Helper-Scripts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

Piping scripts directly to bash is a security risk. You can always download the scripts, inspect them and run locally if you so choose.

This entire trend needs to die. Package managers exist. Use them. Shun and shame sites that promote shell script installers.
⁨Comment⁩ on ⁨Self-hosting Odoo ERP for small business - bad idea?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
How much is your time worth? “Free” is the cost of the licensing but you take on the role of IT now (in addition to whatever your role in operating the bar is now). If you’re comfortable with being the IT department (managing the infrastructure, applying updates, running and testing backups, watching security notices, troubleshooting when things go wrong, providing user help desk support) then maybe.

I’m comfortable with all of that - I’d still pay for the license if I were using it for a business.
⁨Comment⁩ on ⁨Print wins over digital for preschoolers learning to read, study finds⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Not everything we learn needs to be surprising.
⁨Comment⁩ on ⁨Expanding storage on simple home server⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
No. People here grossly underestimate the performance of hdds. Streaming is an easy task for hdds.
⁨Comment⁩ on ⁨Managing Proxmox VE via Terraform and GitOps⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
No - you shouldn’t be putting bash $(curl …) into a post and telling people to run it at all. It’s bad and shouldn’t be normalized in any way. Take. It. Down.
⁨Comment⁩ on ⁨Managing Proxmox VE via Terraform and GitOps⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Please do not normalize running scripts directly from websites.
⁨Comment⁩ on ⁨Selfhosted - friendly ways to fight spam without email / sms verification?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

After opening things up more on Plebbit/Seedit, we got hit pretty hard with spam and some NSFW content. It got out of hand fast and honestly, its worse than we expected.

It’s a p2p decentralized social network. I’m honestly surprised you got anything that’s not kiddie porn and drug spam.
⁨Comment⁩ on ⁨Selfhosted - friendly ways to fight spam without email / sms verification?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Seedit is a serverless, adminless, decentralized reddit alternative. Seedit is a client (interface) for the Plebbit protocol, which is a decentralized social network where anyone can create and fully own unstoppable communities.

In the plebbit protocol, a seedit community is called a subplebbit. To run a subplebbit, you can choose between two options:

First, they take the dinglebop, and they smooth it out with a bunch of schleem. The schleem is then repurposed for later batches. They take the dinglebop and they push it through the grumbo, where the fleeb is rubbed against it. It’s important that the fleeb is rubbed, because the fleeb has all of the fleeb juice. Then a schlami shows up, and he rubs it and spits on it. They cut the fleeb. There’s several hizzards in the way. The blamfs rub against the chumbles. And the ploobis and grumbo are shaved away. That leaves you with a regular old plumbus.
⁨Comment⁩ on ⁨Common sugar substitute shown to impair brain cells, boost stroke risk⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
No, it doesn’t. It only adds to the research on this sweetener.
⁨Comment⁩ on ⁨Common sugar substitute shown to impair brain cells, boost stroke risk⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Their research says nothing about sweeteners that weren’t part of their study.