1·
8 days agojoke 18+
Fine I’ll go sit in the cuck chair again while you write out those long hard nftables commands to my server.
- 0 Posts
- 76 Comments
Joined 10 months ago
Cake day: August 25th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Cool! ufw supports nftables too.
Please tell me more, which firewall would you recommend that plays nice with Docker?
No NAT? Hahaha that’s a big if, and why would you copy paste a docker compose without reading it?
Docker is going to undo your port iptable rules with or without ufw
Running
rm -rf ~isn’t that hard to do either just don’t do it.Your router’s NAT should save you if that happens on the wrong port anyway.
Fail2ban ufw nftables
port forward only the bare minimum (80 443)
Expose docker ports with 127.0.0.1:8000:8000 then port forward with caddy server on the host
Edit: add nftables
Yes the built in browser sandboxes the website code, but the nodejs part has full freedom to encrypt your stuff and ask for bitcoin ransoms or ai scrape your browser history for better user profiling. YMMV
Sandboxing proprietary apps and containerising their outdated dependencies is a good thing.
I’d love to do that with vim for :!q to :q! And :qw to :wq
1·30 days agoThanks to the economy tanking ( mass civil unrest -> crop uncertainty -> climate change ), voting is about fixing the economy
Climate Change is not an attractive talking point
Caddy
It’s three lines of configuration
jellyfin.example.com { reverse_proxy http://localhost:8083/ }Automatic https with let’sencrypt, simplicity of a single binary, downgrade is as simple as replace binary & restart service.
5·1 month agoMint is goat
Remember to make a backup pipeline with Timeshift and you’ll be fine
Another reason the rust rewrite would have helped Firefox
Before upgrading, users are expected to visit the Arch Linux home page to check the latest news, or alternatively subscribe to the RSS feed or the arch-announce mailing list. When updates require out-of-the-ordinary user intervention (more than what can be handled simply by following the instructions given by pacman), an appropriate news post will be made.
“Arch” they just need to read the newsletter before updating.
Lots of mastodon hosts aren’t from the US.
It makes your choice of Twitter and Bluesky all the more questionable.
It sounds like you just don’t like being blocked.
is literally a single click and nobody can censor you.
Catering to CSAM is see.
That’s a huge power of the network.
If you’re going to talk about power Threads is the one to speak of and lots of hosts blocked it.
MAU 2-10k seems to be a sweet spot for alternatives to mastodon.social and that list combined is significant.
Bluesky’s modal ≠ no global admins
13·1 month agoInstall a douche in your toilet, your anus will thank you.
Is it a problem though? There are thousands of email providers you can choose form, and they still work fine for sending and receiving email.
On social platforms federating with everyone might not be desired and defederation is seen as a feature not a bug.
One your point on power law, the fediverse is pretty healthy.
I downgraded from a gtx1060 to a ryzen 5000g igpu terraria & factorio don’t need much.