TheHolm

joined 2 years ago
sorted by: new top controversial old
Do you rebuild your container images yourself? in c/selfhosted@lemmy.world
[–] TheHolm@aussie.zone 3 points 1 day ago* (last edited 1 day ago)

If you care about security you build it is own. No need to trust random dude in the internet. After all It just fire and forget. Copy whatever "code" is used to build container you are after, verify it once and than just rebuild it periodically to pull patches from more reliable sources.
Docker security is a joke, no need to make it worse.

Where do you store your bind mounts? in c/selfhosted@lemmy.world
[–] TheHolm@aussie.zone 1 points 1 day ago

If you using bind mounts - you are using dockers in wrong way. Use named volumes.

what do y'all use for CI/CD? in c/selfhosted@lemmy.world
[–] TheHolm@aussie.zone 2 points 1 day ago (1 children)

Woodpecker. No BS CI which can be attached to pretty much anything. It just need a webhook and way to pull your project.

2
AMD won't patch all chips affected by severe data theft vulnerability — Ryzen 3000, 2000, and 1000 will not get patched for 'Sinkclose' (www.tomshardware.com)
 

Here we are - 3600 which was still under manufacture 2-3 years ago are not get patched. Shame on you AMD, if it is true.

0
BUG: OpenZFS data corruption (www.freebsd.org)
 

Unless you are missed the news. Bug found in OpenZFS causing data corruption, FreeBSD, Linux and illumos are all affected.

Good description of the bug

Some good news from bug tracker on OpenZFS

OpenZFS 2.2.2 and 2.1.14 released with fix in place. If you don't get your OpenZFS direct from here, point your vendor at it.

Patch your systems!!