Molecular0079
@Molecular0079@lemmy.world
- Comment on How do you guys handle reverse proxies in rootless containers? 6 months ago:
Interesting solution! Thanks for the info. Seems like Nginx Proxy Manager doesn’t support Proxy Protocol. Lmao, the world seems to be constantly pushing me towards Traefik all the time 🤣
- Comment on Independent auditors confirm top VPN doesn't log your data 6 months ago:
I think there was some bad vibes when they got bought by a less than reputable company a while back. I know a lot of people, myself included switched to Mullvad. I am on Proton now though for the port forwarding.
- Comment on How do you guys handle reverse proxies in rootless containers? 6 months ago:
I am guessing you’re not running Caddy itself in a container? Otherwise you’ll run into the same real IP issue.
- Submitted 6 months ago to selfhosted@lemmy.world | 6 comments
- Comment on [deleted] 7 months ago:
All of this is still irrelevant. If given the same hardware, one OS performs better than another, then one OS is obviously more optimized…
You’re saying a lot of words but it all just boils down to “throw more hardware at the problem”.
- Comment on [deleted] 7 months ago:
How is this relevant? If an OS performs better on old hardware, it’s still an indication that it is more optimized.
- Comment on Steam is a ticking time bomb 7 months ago:
If anything, it’s Epic that will succumb to capitalism because they’ve been failing to innovate on their platform since the beginning. EGS is still a glorified game launcher without any platform features. Where’s the equivalent to Steam Input, Remote Play and Remote Play Together, Family Sharing, Chat, Discussion Boards, Proton, Steam Deck, etc.?
Maybe spend some of that Fortnite money on your platform instead of buying up exclusives…
- Comment on Steam :: Introducing Steam Families 8 months ago:
No kidding. This solves a major issue with the Steam Deck as well, because now someone else can be playing on the Deck while you use your main PC for another game.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
Not true. Cumulative updates also take a while, so do the .NET runtimes. Maybe you have a system with a super fast NVMe drive and a new CPU so you don’t realize it, but other OSes can do much more with much less powerful hardware.
- Comment on Docker or podman? 8 months ago:
I use podman with the podman-docker compatibility layer and native docker-compose. Podman + podman-docker is a drop-in replacement for actual docker. You can run all the regular docker commands and it will work. If you run it as rootful, it behaves in exactly the same way. Docker-compose will work right on top of it.
I prefer this over native Docker because I get the best of both worlds. All the tutorials and guides for Docker work just fine, but at the same time I can explore Podman’s rootless containers. Plus I enjoy it’s integration with Cockpit.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
Settings and internet are fine. I dunno what to tell you. Very frequently Windows update shows its head, like I’ll randomly want to restart my computer because I installed a piece of software that required it, and then it kicks off a long round updates when I just want to use my computer.
I still think having to leave it on and let it run in the background is still just addressing the symptoms. An update process should be way faster than that so that such a thing isn’t needed.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
I turn off modern standby. I don’t want my computer turning on when I am not around or when I am asleep. For laptops, modern standby is famous for turning it on while its in your laptop bag, causing overheating and battery drainage.
I think if an update process is annoying enough to require something like Modern Standby in order to be “seamless”, it needs to be improved.
- Comment on PSA: Docker nukes your firewall rules, and replaces them with its own. 8 months ago:
Cockpit definitely has the ability to create bridge devices. I haven’t found a tutorial specifically for cockpit, but you can follow something like this and apply the same principles to the “Add Bridge” dialog in Cockpit’s network settings.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
is a YOU problem.
Wtf is this crap? How is it MY problem when other OSes do a much better job with the update process? You talk about 15 minutes or leaving updates running overnight as if that’s decent. I can do a Linux update within 2 minutes and get my system back up by minute 3. That’s the kind of performance I am expecting and I don’t even need a super fast NVMe drive to do it.
The fact that you’re okay with putting up with Window’s comparatively slow update speed and then have to make excuses for it by saying that the USER needs to constantly baby it or waste power by leaving it overnight is honestly hilarious. To be quite frank, you just don’t know how updates could be better because you’re just used to what Windows has always offered you.
Don’t put the blame on users for a problem that Microsoft can definitely solve but never does.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
Most updates on my system are handled overnight, outside the active hours I’ve set in the settings.
Not everyone leaves their computer on draining power. I always put it to sleep when I am not using it. If your argument is that, yeah updates aren’t a problem, you just let your computer run and chew on it for a long time, that’s still a problem…
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
I am guessing you run your computer all the time instead of putting it to sleep, because it’s never a process that completes transparently in the background for me. It will always build up and then I have to go in and manually trigger it. Or I have to restart because I installed a new application that requires it and then it decides to do them all at once and takes forever.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
The longest update I’ve had took about 15 minutes.
Asking someone to take 15 minutes out of their work time to do updates is exactly why people DON’T want to update. Even 15 minutes is insane. That’s a whole standup meeting, that’s a whole presentation, that’s work disruption for a bunch of people.
Linux updates in a minute. That’s the kind of performance we SHOULD be expecting in the modern age and that Microsoft refuses to deliver.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
Problem with this is that it’s really hard to figure out whether some update to some minor library is going to affect an application. Sometimes you don’t even know which applications are using that library.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
I legitimately haven’t had a windows update take more than 5 minutes during the reboot phase for years.
I wasn’t just talking about the reboot phase…
Downloading gigabytes worth of updates, waiting for them to install, rebooting, see more updates, reboot again takes WAY more than 5 minutes.
- Comment on PSA: Docker nukes your firewall rules, and replaces them with its own. 8 months ago:
Your containers show up in Cockpit under the “Podman containers” section and you can view logs, type commands into their consoles, etc. You can even start up containers, manage images, etc.
Are there any tutorials on how to do this from Cockpit?
I have not done this personally, but I would assume you need to create a bridge device in Network Manager or via Cockpit and then tell your VM to use that. Keep in mind, bridge devices only work over Ethernet.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
There is occasional weirdness if you don’t powercycle though. In particular, certain KDE updates will make the desktop misbehave until you reboot. I get where you’re coming from though. Quick updates and the ability to decide when you want to restart means that I have no qualms about updating frequently.
I am on Arch too and
pacman -Syuis usually a snack I have with my morning tea. - Comment on PSA: Docker nukes your firewall rules, and replaces them with its own. 8 months ago:
I am using it as a migration tool tbh. I am trying to get to rootless, but some of the stuff I host just don’t work well in rootless yet, so I use rootful for those containers. Meanwhile, I am using rootless for dev purposes or when testing out new services that I am unsure about.
Podman also has good integration into Cockpit, which is nice for monitoring purposes.
- Comment on Never-before-seen Linux malware gets installed using 1-day exploits 8 months ago:
I mean, I don’t think I would mind forced updates if they didn’t take so damned long and fail half the time. And then, just when you think you’ve finished installing all updates, you reboot and there’s more updates! Why can’t they just install it all at once?
Plus, after each major update, Microsoft wastes your time by advertising to you about Edge, Office 365, and OneDrive before they even let you get back into the desktop.
Forced security updates is addressing a symptom but not addressing the root cause, which is that the Windows update process is just painful for a myriad of reasons. In Linux, I run one command, wait 5 minutes, reboot, and I am back to work.
- Comment on PSA: Docker nukes your firewall rules, and replaces them with its own. 8 months ago:
It isn’t that much better. I use it as drop-in docker replacement. It’s better integrated with things like cockpit though and the idea is that it’s easier to eventually migrate to rootless if you’re already in the podman ecosystem.
- Comment on PSA: Docker nukes your firewall rules, and replaces them with its own. 8 months ago:
podman-compose is different from docker-compose. It runs your containers in rootless mode. This may break certain containers if configured incorrectly. This is why I suggested podman-docker, which allows podman to emulate docker, and the native docker-compose tool. Then you use
sudo docker-composeto run your compose files in rootful mode. - Comment on PSA: Docker nukes your firewall rules, and replaces them with its own. 8 months ago:
If you use firewalld, both docker and podman apply rules in a special zone separate from your main one.
That being said, podman is great. Podman in rootful mode, along with podman-docker and docker-compose, is basically a drop-in replacement for Docker.
- Comment on Horizon Forbidden West Complete Edition PC specifications revealed, out March 21 8 months ago:
Yikes, the comments section on that blog is cancer. People really need to wake up to the fact that games being multi-platform is ALWAYS good for end users. I don’t know why people insist on identifying with just one side.
- Comment on Paralyzed by indecision 9 months ago:
Thanks! Yeah i am already using a nginx reverse proxy in a docker container to expose my other docker containers so I was thinking two reverse proxies in a row might be too inefficient. Will definitely look into nftables. Nftable rules are temporary though right? What’s the correct way to automate running these rules on boot?
- Comment on Paralyzed by indecision 9 months ago:
I was thinking the same thing regarding VPS and Wireguard. I use Wireguard personally to VPN into my home network for remote management, but I still haven’t looked up how to make a VPS as a proxy using it. I know they can join the same network and talk with each other but how what’s the best way to route port 80 and 443 on the VPS to my server at home? Iptables?
- Comment on Paralyzed by indecision 9 months ago:
Not OP, but I’ve been looking into Cloudflare tunnels on my end as well and ended up not going with them because you’re forced to use their own certs so they can decrypt and see the data. I mean most likely they aren’t doing anything untoward, but it’s still a consideration with regards to data privacy.