I guess it’s just google sans, they use this placeholder elsewhere too

oh, LXC containers! I see. I never used them because I find LXC setup more complicated, once tried to use a turnkey samba container but couldn’t even figure out where to add the container image to LXC, or how to start if not that way.

but also, I like that this way my random containerized services use a different kernel, not the main proxmox kernel, for isolation.

Additionally, having them as CTs mean that I can run straight on the container itself instead of having to edit a Docker file which by design is meant to be ephemeral.

I don’t understand this point. on docker, it’s rare that you need to touch the Dockerfile (which contains the container image build instructions). did you mean the docker compose file? or a script file that contains a docker run command?

also, you can run commands or open a shell in any container with docker, except if the container image does not contain any shell binary (but even then, copying a busybox or something to a volume of the container would help), but that’s rare too.
you do it like this: docker exec -it containername command. bit lengthy, but bash aliases help

Also for the over committing thing, be aware that your issue you’ve stated there will happen with a Docker setup as well. Docker doesn’t care about the amount of RAM the system is allotted. And when you over-allocate the system, RAM-wise, it will start killing containers potentially leaving them in the same state.

in docker I don’t allocate memory, and it’s not common to do so. it shares the system memory with all containers. docker has a rudimentary resource limit thingy, but what’s better is you can assign containers to a cgroup, and define resource limits or reservations that way. I manage cgroups with systemd “.slice” units, and it’s easier than it sounds

the PRC is not nearly an alternative to the US empire, its a replacement to it, with different but overlapping trade-offs. what about neither? It’s seriously like instagram users fleeing to tiktok, then to upscroll or whichever other corporate platform.

the bad of the US does not make the PRC good. I want change, big changes, but definitely not that kind.

lemmy.ml is just like that, maybe you want to look for a new home instance.

just know that sometimes their buggy frontend loads the analytics code even if you have opted outm there’s an ages old issue of this on their github repo, closed because they don’t care.

It’s matomo analytics, so not as bad as some big tech, but still.

unless you have zillion gigabytes of RAM, you really don’t want to spin up a VM for each thing you host. the separate OS-es have a huge memory overhead, with all the running services, cache memory, etc. the memory usage of most services can largely vary, so if you could just assign 200 MB RAM to each VM that would be moderate, but you can’t, because when it will need more RAM than that, it will crash, possibly leaving operations in half and leading to corruption. and to assign 2 GB RAM to every VM is waste.

I use proxmox too, but I only have a few VMs, mostly based on how critical a service is.

Honestly, this is the kind of response that actually makes me want to stop self hosting. Community members that have little empathy.

why. it was not telling that they should quit self hosting. it was not condescending either, I think. it was about work.

but truth be told IT is a very wide field, and maybe that generalization is actually not good. still, 15 containers is not much, and as I see it they help with not letting all your hosted software make a total mess on your system.

working with the terminal sometimes feels like working with long tools in a narrow space, not being able to fully use my hands, but UX design is hard, and so making useful GUIs is hard and also takes much more time than making a well organized CLI tool.
in my experience the most important here is to get used to common operations in a terminal text editor, and find an organized directory structure for your services that work for you. Also, using man pages and --help outputs. But when you can afford doing it, you could scp files or complete directories to your desktop for editing with a proper text editor.

What needs more than 1gbe? Are you streaming 8k?

I think they wanted to mean it was a bottleneck while moving to the new hardware

its that even their app installs is driven by recommendation algorithms of the app store. google will never recommend social media apps to people that don’t try to destroy society

but its algorithm is not as addictive, so its shit

I don’t think they hired them, they just use the open source code library that the signal app also uses.

an end to end encryption implementation is broken when secret keys leak, whether its intentional or not.

No need for details, just wondering.

oh. well, there are the details anyway! :D

I swear to fuck, I can’t address security issues faster than they can enshittify the whole world.

I often feel the same, too

recent android devices randomize it by default, per network, reusing them later when connected again to the same network.

on linux it’s pretty easy to change the wifi MAC address, because it does not try to prevent you if you have admin rights.
most commonly ip link set dev wlan1 address macaddresshere, details here: https://www.baeldung.com/linux/change-media-access-control-address

but if your system uses NetworkManager or another comprehensive network management program, it might change your settings. so in that case you should set this through NetworkManager or what have you. It could sound bad but actually often it’s better this way, because NM has clickable GUI integrations for the popular desktops, like KDE, Gnome, and it will also remember your wishes across reconnects and reboots. if you use the kde plasma desktop, it’s straightforward: on the taskbar’s right end open the network icon, expand your network adapter, click configure, and in the window that appears use the wired or wifi tab to change the mac address for that single interface. I think NM does not do mac randomization, but maybe I’m outdated on that, or perhaps there’s already a setting that’s off by default

edit: NM does support it, but you should check what is the current config for you: https://fedoramagazine.org/randomize-mac-address-nm/

when people say linux phones, the point is not the kernel but believing it could have the same open ecosystem as the linux PC. no forced lockdown, no spyware, open source and in turn extensible system software, where its not the oligarchs who dictate. other then the first point these can be told about mostly none of the current phones, and even the first point is going away recently, despite that being the only way to get rid of the preinstalled, google mandated (and sometimes additional) malware.

you may be locked out of using specific security focused apps such as banking apps.

they locked me out already, so it does not matter. they can’t play the same card twice.

well, yes most people dont know that about instagram and snapchat, but I do, main reasons why I was refusing both since years. I think tiktok is worse. I still hear people admitting it is much more addictive than facebook’s platforms. that they are surprised how quickly it learns your “interests”. and part of the app’s functionality in code when it is opened? it is changing how it works when it detects a debugger? it behaved like malware from the beginning. it was spreading surprisingly fast too, I can’t believe it was organic growth. at some point it was preinstalled bloatware on all new phones, besidss the ranks of facebook and twitter, maybe still is.

looking at the parent comments, or the other reply I got, I don’t think everyone agrees

the issues with tiktok started when it was first announced. It’s sad that it got “heroified” through the gaza events

that being said, it works correctly here with and without javascript, in firefox, opened from voyager, so I don’t get it