N.E.P.T.R

N.E.P.T.R@lemmy.blahaj.zone · 2 days ago

People on Snapchat dont give a fuck about cleanliness.

N.E.P.T.R@lemmy.blahaj.zone · 8 days ago

Gender is obviously a signed byte.

N.E.P.T.R@lemmy.blahaj.zone · edit-2 1 month ago

Docker is good when combined with gVisor runtime for better isolation.

What is gVisor?

gVisor is an application kernel, written in memory safe Golang, that emulates most system calls and massively reduces the attack surface of the kernel. This is important since the host and guest share the same kernel, and Docker runs rootful. Root inside a Docker container is the same as root on the host, as long as a sandbox escape is used. This could arise if a container image requires unsafe permissions like Docker socket access. gVisor protects against privilege escalation by only using root at the start and never handing root over to the guest.

Sydbox OCI runtime is also cool and faster than gVisor (both are quick)

N.E.P.T.R@lemmy.blahaj.zone · edit-2 2 months ago

YouTube is a monopoly. The reason no one really uses multiple platforms to upload videos at the same level as YouTube is because it was run for a long time at a loss to push out all competition. I have no simpthy.