#container

Schon wieder Freitag

Die Zeit vergeht schnell, wenn die Arbeit interessant ist und Spaß macht

In meinem Fall war es diese Woche viel #Automatisierung mit Ansible in Openstack.

Das Produkt soll zukünftig mit Containern betrieben werden und in neuen Projekten sollen VMs automatisch installiert werden.

Übersetze gerade ein 1200 Zeilen starkes Bash-Skript eines Kollegen zuerst in ein Playbook, anschließend bereinige ich das nach DRY und KISS und was dann übrig bleibt, wird zu einer Ansible Role mit Variablen, die man dann auf 5, 10, 20 Server anwenden kann um die zu betanken.

Mein Vorschlag, auch ohne Kubernetes beim Kunden auf #Container zu setzen und dafür auf einem Server Podman zu verwenden wurde aufgenommen.

#kubernetes #SysadminAlltag #podman #ansible #sysadmin #job #openstack

Un container marittimo trasformato in casa di riposo da 20mq nel giardino di famiglia? Nella Guadalupa francese costa 750€ al mese contro i 3000 delle strutture tradizionali. Vanessah Machire ha creato MediBox per tenere gli anziani vicini ai figli senza rinunciare all'autonomia. Otto modelli già ordinati quest'anno. Avrebbe senso anche da noi?

#futuroprossimo #container #anziani

https://www.futuroprossimo.it/2025/07/medibox-la-casa-di-riposo-in-giardino-per-tenere-il-nonno-vicino/

Podman Desktop 1.20 is here – streamlining container and Kubernetes workflows like never before!
Key highlights:
- Bulk-run containers with a single click
- Smarter extension discovery via description search
- New Development Mode for live-testing local extensions
- Pause live container logs without closing the window

Whether you're managing microservices, building custom extensions, or experimenting with clusters – Podman Desktop 1.20 is for you!
https://podman-desktop.io/blog/podman-desktop-release-1.20
#Podman #Container

What #docker #containers do you guys/gals host at home?

#SelfHosting #linux #docker #container

CMA CGM launches first 100% electric river barge with NIKE in Vietnam

https://vietnam-aujourdhui.info/2025/07/11/cma-cgm-launches-first-100-electric-river-barge-with-nike-in-vietnam/

#Vietnam #SolarFarm #Ship #Transport #Container #Electric

LTT once again delivers no-nonsense, I-have-stuff-to-do-so-don't-bother-me-with-housekeeping automation based on #Flatcar #Container #Linux.

Repo here: https://github.com/jakelmg/flatcar-lancache-server

Check out the video: https://www.youtube.com/watch?v=7Lrek5XCGaI&t=1122s

#LanCache #LanParty #FlatcarLinux

https://www.europesays.com/2234366/ Disabled Eimskip Vessel to be Towed to Port by Iceland’s Coast Guard #Container #Dettifoss #drifting #Eimskip #iceland #island #Malfunction #tow

Da wir immer mehr #Container Zeug in unseren #Logs haben, suche ich was besseres als #Graylog. Pro RZ haben wir rund 110GB/Tag und das wachsend. Unser 5 Node #ELK #Cluster frisst uns die Haare vom Kopf. Die Logs müssen in der Regel 1y aufbewahrt werden.

Bin auf #grafana #loki gestoßen was wirklich nett klingt, aber nach dem Lesen

https://itnext.io/how-do-open-source-solutions-for-logs-work-elasticsearch-loki-and-victorialogs-9f7097ecbc2f

bin ich mir nicht mehr sicher. Wir haben tatsächlich nicht selten die Nadel im 1y Heuhaufen zu finden.

A #Kubernetes mutating admission #webhook that automatically rewrites #container image references to use pull-through cache registries (like #AWS #ECR Pull Through Cache).

Use AWS ECR Pull Through Cache to reduce external registry dependencies
Implement a corporate image proxy/cache
Redirect images from #Docker Hub, #GCR, Quay.io, or other registries to your internal registry
Apply different rules based on namespaces or pod labels

#devops #sre

https://github.com/flemzord/mutating-registry-webhook

~Dear #rustland #rust folks in the timeline, in a simple #docker / #podman compose case, my rust #redis client can not connect to the redis server with the following error:
`Error: Custom { kind: Uncategorized, error: "failed to lookup address information: Name or service not known" }` I am using `redis://redis:6379` as connection string. It works via redis-cli command line in the same container. Any tips? #container #DNS~

#weeklyreview 25/2025

COVID

Finally got me. After ditching it (at least according to tests) for the whole pandemic I finally watched COVID last week. The first two days were the “worst”. Felt like a flu for me. But fortunately subsided quickly just leaving a bit of sniffles and occasional coughing. But the annoying part is, that I’m still testing positive. So have to confine myself to home office and wear mask all around to not spread the stuff. Let’s see how long this takes…

Wallabag

Since Mozilla is shutting down “Pocket” many people are seeking alternatives. I stopped using Pocket ages ago and instead was using LinkDing for my bookmarks. But there seems to be an additional use case in Pocket that people like… the reader view. And since my dear friend Slamr is looking for a Pocket replacement I took a look at Wallabag as recommended by Gemlog.

There is a docker container… so how hard can it be to install …

As usual… harder than one expects… The default installation comes with its own Database container. But I’m using a central DB container and don’t want to give the Wallabag app the full root permissions. So I had to create the database manually myself upfront (described in this issue: https://github.com/wallabag/docker/issues/412 ). That was the easy part. Now the app also needs to send eMail. They are using the PHP Symfony framework for sending eMail and that’s using a single string for username, password and host of the Mailserver. Yes, that’s technically possible…but comes with a whole lot of challenges. All the special characters of a password will need to be URL escaped. Since that String needs to be passed from Docker compose to the Containers ENVIRONMENT and then be parsed by PHP to be eventually used for the actual connection there is a lot of moving parts that need handle these strings correctly. Took me a while to find https://github.com/wallabag/wallabag/issues/6927 which tells me that one has to double escape “%” … quite annoying.

So the rule is… special characters need to be URL encoded. That would make an @ look like %40 and a blank space like %20. Now the literal % is also a special character for SYMFONY and needs to be escaped with a % in front. So an @ for the Wallabag DSN string in the Docker config would look like %%40

But now Wallabag is working. The web interface is a bit simple, but works. The mobile client for the iPhone is nice though and offers an optional (payed) AI integration that suggests tags automatically and also provides summaries. One click saving of URLs from the Browser via bookmarklet and also from the iPhone share dialog forks nice.

What’s also pretty convenient is that Wallabag provides its own ATOM feed that one can use to consume with your favourite RSS reader. I’ve integrated that into my FreshRSS setup.

Gemma3 no Vision

With a school intern we were playing around with image description generation using local #LLM tools (Ollama) and Python Flask. I spend quite some time filling around with the Gemma3 model as that supports text and vision and was small enough to fit into the memory of the MacBook Air of the school intern. Gemma did provide image description… but they were always wildly off and totally made up. Didn’t had anything to do with the actual image content. No matter how I massaged the prompt to avoid hallucination Gemma would happily make up random image descriptions. Very weird and scary. We eventually found moondream:latest model which is small and does a good enough job.

Apple Containers + Pihole

Apple recently released their own Container engine for macOS which can consume OCI images. So far containers do not run natively on macOS. Docker Desktop uses the trick of bringing up a single virtual machine under the hood and run the containers inside that VM. This comes with a whole bunch of limitations when it comes to networking and volumes. Despite the fact that it’s a commercial app.

Apple uses a different approach. The support for OCI images is a big step forward. The containers obviously still do not run natively on macOS as the OS kernel is too different. But Apple now starts a very lightweight virtual machine for every container. This allows the use of x86 Docker images as well as Rosetta takes care of the translation. It consumes less memory than the Docker Desktop approach and is pretty fast as well.

I’ve wanted to give this a try although it’s still in a very early stage. I’m constantly running a virtual machine via UTM with a Pihole instance to have ads and trackers blocked. I thought it would be nice to just use the official Pihole Docker container for this purpose.

The installation of Apple Container is pretty straightforward. Just download the pre-compile package from https://github.com/apple/container/releases/tag/0.1.0 and follow the instructions on their README.

The hurdle I had to take was reconfiguring the container networking so I can actually reach the user interface of Pihole. Moellus pointed me into the right direction here. For some reason the container network was not bound to the bridge interfaces on my host. I had to reconfigure that and now it’s working.

Just pulled the Pihole Container and started it. Works

Hetzner Object Storage

pondering about the cost of my network setup again. I’m running the object storage for some of my services (Mastodon, Pixelfed, Bookwyrm) on my home server connected to my Synology NAS. As I have still plenty of disk space on the NAS and additional disk space at Hetzner is relatively expensive. But of course it’s annoying when the images are temporarily gone whenever my DSL provider at home has a hiccup. So was looking at Hetzner Object storage. For about 6 EUR/month I’d get 1TB of storage and 1TB of data transfer. That’s actually more than enough for my current usage. I’ve got around 500GB of object storage usage currently on my Minio setup. The traffic is much less than that according to my FritzBox stats (which also includes all other network traffic we cause in the household).

So the big question is, is the 6 EUR/month cheaper than the existing home setup? According to my measure the server + the NAS and FritzBox are consuming around 100W. That doesn’t sound much… but this run’s 24×7. It sums up to 2.4kWh per day … 365 days. At a price of about 0,39 EUR/kWh I’m clocking in at ~ 340 EUR/year. That’s roughly 28 EUR/month ….

So I’m looking into moving that to Hetzner now. First steps are done, but I’m still struggling to get the Reverse Proxy properly talking to the Hetzner endpoints. Still getting an access denied via the ReverseProxy, while a direct access to the Hetzner Endpoint via cURL works fine. So it’s not an object permission problem. Must be something weird with the Headers.

Cleaning Up

Needed to clean up the spare room for have in our big flat in Berlin. Will rent that out for the next year as it’s a waste of space and we can use the money for #project25

#container #COVID #LLM #project25

#Nordnachrichten

#Stadtreinigung stellt neue #Altkleider-#Container in #Hamburg auf

Stand: 29.06.2025 18:29 Uhr

Statt auf dem #Recyclinghof landet kaputte #Kleidung in Hamburg immer öfter bei Containerbetreibern wie dem Roten Kreuz oder im Hausmüll. Die Stadtreinigung will das nun mit neuen Altkleidercontainern ändern.

https://www.ndr.de/nachrichten/hamburg/stadtreinigung-stellt-neue-altkleider-container-in-hamburg-auf,altkleider264.html

#Recycling

Gibts eine Möglichkeit, klimatisierte Container-Büros zu mieten? Wenn nicht, müsste mal jemand machen... Am besten mit Container-Hotel daneben. #container

I always find it weird when people talk about #isolation when discussing #container and #application approaches.

Processes are generally "isolated" in virtual memory OSes.
That is what virtual memory is for.

APIs are a necessity for access to resources, such as files.
While full access by default is convenient for many things, it is clearly not secure by design; quite the opposite.

But policies are hard.
The culprit is that #security must not imply inconvenience.
Otherwise it becomes useless.

FOLIO Systemadministrator*in (w/m/d), E 11 TV-L (befristet) | https://karriere.niedersachsen.de/stellenausschreibungen/folio-systemadministrator-in-w-m-d-110375.html | https://bibliojobs.eu/stellenangebote/116080/
#bibliojobs
#Container #FOLIO #Kubernetes #Migration #Monitoring #Plattform #Systemadministration

Quelli di #apple hanno fatto un tool (Apple Containerization https://github.com/apple/containerization/ ) che tira su una distro #linux minimale con dentro docker e fa girare i #container settando tutti i portforwarding in maniera trasparente ....
Come già faceva #colima ( https://github.com/abiosoft/colima )

e cmq hanno rifatto la stessa cosa del #microsoft #WSL... ma vaglielo a dire...

Container Gardening for All Seasons: Enjoy Year-Round Color With 101 Designs by Barbara Wise, 2012

More than a collection of inspiring container gardening photographs, Container Gardening for All Seasons provides a shopping list of materials and a helpful planting diagram for each of the more than 100 container options.

@bookstodon
#books
#nonfiction
#gardening
#container

Wie ihr Online-Dienste selbst betreibt, zeigen wir euch im @ct_uplink. Ganz gleich, ob Smarthome auf dem Raspi, Nextcloud auf dem Homeserver oder auf einem angemieteten Server im Rechenzentrum. Selber machen ist angesagt.

Die Folge könnt ihr ganz einfach hier im Fediverse schauen, über unsere #PeerTube Instanz.

https://peertube.heise.de/w/djrpQYtR1pRdLuivb8t3G9

#selfhosting #selfhostet #diy #hosting #homelab #homeserver #nextcloud #docker #container #traefik #portainer #linux #opensource

#Apple Quietly Launches #Container On GitHub To Bring #Linux Development To #MacOS In A Native Way
Unlike Docker or Podman, this tool is designed to feel at home in the Apple ecosystem and hooks into frameworks already built into the OS
Container runs standard #OCI images, but it doesn’t use a single shared Linux VM. Instead, it creates a small Linux VM for every container. That sounds heavy at first, but the VMs are lightweight and boot quickly.
https://NERDS.xyz https://nerds.xyz/apple-quietly-launches-container-on-github-to-bring-linux-development-to-macos-in-a-native-way/

https://www.europesays.com/2157904/ Hapag-Lloyd Takes Delivery of Last Ship in its New LNG Ultra Large Class #Container #GasPrice #Hanwha #Hapag #large #LiquefiedNaturalGas #lng #LNGPrice #NaturalGas #shipbuilding #ulta