@theorytoe

1. i'm using docker
2. i don't use "the cures"
3. nobody "suppresses" ftp

you're retarded

@mk @theorytoe you missed the point. containers just make things harder. they are nice rube goldberg machines for shit languages like python which are hell to deploy.

when just installing everything from packages, things will receive timely security patches of the distribution.

when using VMs, one has to upgrade a few VMs for this. not great, not terrible.

with containers one has to hope that some image down the stack will be upgraded to include the fix, while the whole setup provides worse isolation than VMs (which already is prone to leakage). with containers the isolation is essentially the same as for plain linux users and chroot. no improvement. cgroups limiting resource usage can be set by the init system, i think systemd does this already.

containers sure have their use case, but mostly they are a crappy solution waiting for problems.

in the end the image is a meme which makes the point that ftp-ing a directory full of php scripts worked better than all the modern shit.

@bonifartius @mk
I can attest to this
containers are a solution to a self-inflicted problem being that people dont want to actually write software that is runable bare-metal

for starters, containers provide no security (docker daemon manager process runs as root, therefore on a basic level one would have to be retarded to think that is good security practice -- it is not). secondly docker works fine for prebuilt images, but I have never had a good experience with compose ever, it has always broken stuff and it never works. it is basically a glorified chroot with ""chroot management"" so you can install others rubbish onto your system

as well docker seems to try to plug into load balancing with k8s/k3s and if you have done any level of k8s management you will know it is a nighmare. when you could just run on a few hosts and incorporate a load balancer. this option is way easier on setup but also on maintenance since its just plain old hosts.

if you cant run software bare-metal without hassle its not good software

@theorytoe @bonifartius

"containers are a solution to a self-inflicted problem being that people dont want to actually write software that is runable bare-metal"

what does "running containers" have to do with bare-metal? you can run containers within a bare-metal system. it doesn't make sense.

@mk @bonifartius
>what does "running containers" have to do with bare-metal?
lol its literally not bare metal
you are running a process under a hypervisor
thats not bare metal

@theorytoe @mk @bonifartius
:mfw: SIR, YOU MUST BE RUNNING SHINATOR'S OTHERWISE YOU WILL DIE BECAUSE YOU WONT ADD MORE COMPLEXITY THAT LEADS TO FAILURE.

@dcc @theorytoe @bonifartius

is your argument that docker is too complex?

complex in what sense?

@mk @theorytoe @bonifartius
>complex in what sense
In every sense? its a another layer of shit that will fail on you causing more issuses. It has no real benefits either that a real vm or bare metal have.

@dcc @theorytoe @bonifartius

is your argument that docker is too complex? -> "In every sense?"

installing software is part of too complex in "every sense", correct?

ok..here's a 10min video that enables noobs to install a bitcoin lightning network daemon that reachable from the internet without the need of:

- a static ip
- a public ip
- a domain name
- a ssl certificate
- portforwarding in the router
- firewall rule in the router

https://mastodon.satoshishop.de/@mk/111819231243916351

docker makes it god damn easy.

@mk @theorytoe @bonifartius And i can also make a script that can do that on bare metal so what?

@dcc @theorytoe @bonifartius

i don't believe you.

@mk @theorytoe @bonifartius Question, what came first. The software or the container?

@dcc @theorytoe @bonifartius

counter question.

what's got more adoption?

installing shit via docker or bash-scripts?

@mk @theorytoe @bonifartius Ansible :columbo_smug:

@dcc @theorytoe @bonifartius

i'm using 13 opensource webapps.
https://mastodon.satoshishop.de/@mk/111848148348012587

11 of them have dockerfiles right in their official repo.

https://github.com/nextcloud/docker/blob/59dd41aaca14d3cd3ddbf072973c1b8a7bc14cc8/Dockerfile-debian.template#L4
https://github.com/Chocobozzz/PeerTube/blob/88006beeb379d55b4448da73b4063863295b36dc/support/docker/production/Dockerfile.bookworm#L4
https://github.com/mastodon/mastodon/blob/main/Dockerfile
https://github.com/hedgedoc/hedgedoc/blob/17aade09347e7dd54218a71693690e206c7c821f/frontend/docker/Dockerfile#L4
https://github.com/gogs/gogs/blob/7b06bf642a04f3ee5485da185c53d990df062a12/Dockerfile#L4
https://github.com/excalidraw/excalidraw/blob/d426cc968d49071749c0d831490501cf572eb571/Dockerfile#L4
https://github.com/elastic/elasticsearch/blob/4c4463305630010e1d362b867bf83033b1e63d6e/distribution/docker/src/docker/Dockerfile#L4
https://github.com/searx/searx/blob/276ffd3f01cdd823f75676c51231fad4040059d3/Dockerfile#L2
https://github.com/lightningnetwork/lnd/blob/cf4f468ab5c70e644d8974145d1ffd74a3dabc35/Dockerfile#L4
https://github.com/mempool/mempool-cli/blob/fdb8d4002ff34f82ab210f4eafa3ca3ee2d7ba70/Dockerfile#L4
https://github.com/search?q=org%3Amailcow%20dockerfile&type=code

show me the ansible files in their repos.

@mk @theorytoe @bonifartius You shift you're goal post's in one post and are entirely off base, there is nothing to say anymore.

@dcc @theorytoe @bonifartius

the argument tldr..

you: docker too complex
me: complex?
you: everything!
me: install easy
you: MANUAL INSTALL !
me: no adoption. devs support docker ! <3