+bonifartius 𒂼𒄄
@bonifartius@qoto.org
- woke?
- bespoke!
- pronouns?
- sure, nouns are nice
- ,.-~-.,.-~-.,.-~ <°((((((((((>< ,.-~-.,.-~-.,.-~
- ,.-~-.,.-~-.,.-~ <°((((((((((>< ,.-~-.,.-~-.,.-~
- problems?
- yes, many.
state licensed lolbert and hypernatalist with a breeding kink. never watched rick & morty and i'm proud of it.
don't only rely on my words, read what happy customers wrote about me: "10/10 would buy again", "top seller, great value", "wildly incorrect", "teil des problems", "without imagination", "Repeated provocation using copy/paste.", "if you take a dump in my mentions, I just might notice the smell", "log out and never login again", "Du redest wirr.", "My brother in Christ, this is such a ridiculously dumb statement that I will no longer entertain this silly conversation.", "Auf Derailing-Diskussionen habe ich keine Lust. Finger über dem Blocken-Knopf.", "Wie gesagt, du kannst der Diskussion inhaltlich nicht folgen."
➡️ NO PRESSURE ⬅️ 💄NO DIAMOND💍
one day at a time.
Joined Jun 2020
+bonifartius 𒂼𒄄
boosted
#FleurisTonFil
La claytonie_perfoliee, curieuse petite fleur blanche originaire du continent Américain
#photographie #photography
@Moon @theorytoe @mk haven't used lxc in a long time, i think since they switched to using images? is it worth the trouble?
@Moon @theorytoe @mk well, if things run as root they need to be locked down ;) a user can't do very much given permissions aren't set badly, privileged ports can't be used, etc.
it doesn't help that to do things like using chroot, namespaces, cgroups one has to be root - it means docker or lxc likely will be run as root.
would be nice if more things would use capabilities.
+bonifartius 𒂼𒄄
boosted
@theorytoe @mk @bonifartius anyway to contribute to this thread the problem with containers is really the problem with the os which is by default you can access everything not locked down, rather than having no access and needing to be passed in capabilities to do anything.
+bonifartius 𒂼𒄄
boosted
@bonifartius @mk
I can attest to this
containers are a solution to a self-inflicted problem being that people dont want to actually write software that is runable bare-metal
for starters, containers provide no security (docker daemon manager process runs as root, therefore on a basic level one would have to be retarded to think that is good security practice -- it is not). secondly docker works fine for prebuilt images, but I have never had a good experience with compose ever, it has always broken stuff and it never works. it is basically a glorified chroot with ""chroot management"" so you can install others rubbish onto your system
as well docker seems to try to plug into load balancing with k8s/k3s and if you have done any level of k8s management you will know it is a nighmare. when you could just run on a few hosts and incorporate a load balancer. this option is way easier on setup but also on maintenance since its just plain old hosts.
if you cant run software bare-metal without hassle its not good software
I can attest to this
containers are a solution to a self-inflicted problem being that people dont want to actually write software that is runable bare-metal
for starters, containers provide no security (docker daemon manager process runs as root, therefore on a basic level one would have to be retarded to think that is good security practice -- it is not). secondly docker works fine for prebuilt images, but I have never had a good experience with compose ever, it has always broken stuff and it never works. it is basically a glorified chroot with ""chroot management"" so you can install others rubbish onto your system
as well docker seems to try to plug into load balancing with k8s/k3s and if you have done any level of k8s management you will know it is a nighmare. when you could just run on a few hosts and incorporate a load balancer. this option is way easier on setup but also on maintenance since its just plain old hosts.
if you cant run software bare-metal without hassle its not good software
+bonifartius 𒂼𒄄
boosted
+bonifartius 𒂼𒄄
boosted
Almost everyone who bitched about Scientology in the 00s is now silent about a much more malicious, much more fraudulent, much more powerful religion.
+bonifartius 𒂼𒄄
boosted
MOVED
I'm still looking for a dev job and @raccoon suggested to ask here again with hashtags idk.
rn my job is making popcorn and it doesn't pay and drives me insane.
I'm decent at webdev and previously worked as a gamedeveloper on several commercial projects, as well as embedded (RTOS) safety critical avionics software development and testing on vxworks in C99 and VkCoreSC (like vulkan SC but from coreavi).
best would be remote work but anything within the Schengen-area works for me tbh, if i can manage to move for the job.
I'm 26, trans (mtf) and speak german and english fluently.
#FediHire #GetFediHired #Job #MutualAid
rn my job is making popcorn and it doesn't pay and drives me insane.
I'm decent at webdev and previously worked as a gamedeveloper on several commercial projects, as well as embedded (RTOS) safety critical avionics software development and testing on vxworks in C99 and VkCoreSC (like vulkan SC but from coreavi).
best would be remote work but anything within the Schengen-area works for me tbh, if i can manage to move for the job.
I'm 26, trans (mtf) and speak german and english fluently.
#FediHire #GetFediHired #Job #MutualAid
+bonifartius 𒂼𒄄
boosted
@bonifartius @RGBCube @theorytoe
ok.. and while we wait for your doomsday prediction, the whole world moves to containerization.
..the whole world? no !
a little man in germany is fighting back by putting all his php-egg into one basket.
@mk @RGBCube @theorytoe and who always wins in your cultural reference?
@mk @RGBCube @theorytoe it's ok, just think of me when your jenga software stack breaks :)
@mk @RGBCube @theorytoe i don't have to stop using anything as i'm not the one, according to the insults used by you, who has a problem with what people are :)
@RGBCube @theorytoe @mk just getting out data when something in the rube goldberg machinery will inevitably break will be hell enough :)
@mk @RGBCube @theorytoe
> unilaterally declares victory due to made up facts
bless your heart
i described pretty well what the things involved do and what they were made for. @RGBCube explained that they are in use by distribution packages.
i can't keep you from using fluoridated stuff like docker or proxmox. maybe it's one of these things in life one has to learn the hard way 
@chromeratt @mk @RGBCube @theorytoe
not arguing that, developer environments is what docker was developed for anyway
@DCR das sind halt diese pseudo-sozialen floskeln. wie irgendwen "abholen wo er steht".
@DCR hihi :D
ich war mir da auch nicht ganz sicher wer da überhaupt denkt und erst recht nicht wer oder was zusammen :P
@mk @RGBCube @theorytoe
i have to do some drywall now, so i'll keep it short:
- namespaces are a copy of a plan9 idea to have composable environments, isolation is a side effect.
- cgroups limit resource usage, might be worthwhile to prevent some daemon going crazy. otoh there already were things in place for that like umask.
- chroot is no "container feature". postfix chroots by default, so do many other daemons. you still need good user/group structure and appropriately set permissions in any case.
all of these things are usable without resorting to docker. @RGBCube explained how a distribution can use the same features with it's packages.
side note: you using words like "retard" and "faggot" while shilling docker which frequently has pride events borders on the comedic.
- woke?
- bespoke!
- pronouns?
- sure, nouns are nice
- ,.-~-.,.-~-.,.-~ <°((((((((((>< ,.-~-.,.-~-.,.-~
- ,.-~-.,.-~-.,.-~ <°((((((((((>< ,.-~-.,.-~-.,.-~
- problems?
- yes, many.
state licensed lolbert and hypernatalist with a breeding kink. never watched rick & morty and i'm proud of it.
don't only rely on my words, read what happy customers wrote about me: "10/10 would buy again", "top seller, great value", "wildly incorrect", "teil des problems", "without imagination", "Repeated provocation using copy/paste.", "if you take a dump in my mentions, I just might notice the smell", "log out and never login again", "Du redest wirr.", "My brother in Christ, this is such a ridiculously dumb statement that I will no longer entertain this silly conversation.", "Auf Derailing-Diskussionen habe ich keine Lust. Finger über dem Blocken-Knopf.", "Wie gesagt, du kannst der Diskussion inhaltlich nicht folgen."
➡️ NO PRESSURE ⬅️ 💄NO DIAMOND💍
one day at a time.
Joined Jun 2020
