I’ve never been an SRE nor had to deal with super demanding giant corporate customers, but that seems exceptionally insane.
Serious suggestion: would the terms of your SLA allow you automate those emails to customers? Then you’d only have to actually deal with replies from customers. (Who I assume aren’t replying in the middle of the night.)
IMO, the best free option is https://freedns.afraid.org/. The biggest downside of that one is that you have to login a couple times a year (IIRC?) to keep it active. I actually still use this even though I have a paid domain, I just CNAME my real domains to the afraid dynamic name. That was easier than changing the config every time I become unhappy with my domain registrar and have to reconfigure everything after swapping.
For the purposes of data collection, the US basically isn’t foreign for AU: https://en.m.wikipedia.org/wiki/Five_Eyes
We tried that in the 90s, it went poorly: https://en.wikipedia.org/wiki/Trans_fat#History
Less commercial interest means only hobby level development
Podman is developed by RedHat: https://github.com/containers/podman/graphs/contributors
Unfortunately, no. Samba needs a different label. Doing that relabels things so that only containers (and anything unrestriced) can access those files.
IMO, yes. Docker (or at least OCI containers) aren’t going anywhere. Though one big warning to start with, as a sysadmin, you’re going to be absolutely aghast at the security practices that most docker tutorials suggest. Just know that it’s really not that hard to do things right (for the most part[1]).
I personally suggest using rootless podman with docker-compose via the podman-system-service.
Podman re-implements the docker cli using the system namespacing (etc.) features directly instead of through a daemon that runs as root. (You can run the docker daemon rootless, but it clearly wasn’t designed for it and it just creates way more headaches.) The Podman System Service re-implements the docker daemon’s UDS API which allows real Docker Compose to run without the docker-daemon.
If anyone can tell me how to set SELinux labels such that both a container and a samba server can have access, I could fix my last remaining major headache. ↩︎
That’s a problem anywhere with user generated content & user defined communities. The usual example is that when BOTW came out there were at least half a dozen subreddits created and more than one survived, so there were two that were both really popular at the same time and that’s in addition to multiple Zelda and multiple Nintendo subs that might all get the same links/posts.
Its a non-powered version of a hot shoe, both of which are the thing you use to mount an external flash that’s on the top of a lot of (all?) full sized cameras.
It’s for a hook to keep the handset on when the phone is mounted flat on a wall. It can usually be slid/folded down or removed when its not need.
If you have any straight straws, you might want to hold them up to the light. They get pretty grody on the inside.
I’m not sure that applies to billionaires, who have unlimited access to the best possible medical care.
Defense in depth. If something escapes the container it’s limited to only what’s under that user and not the whole system. Having access to the whole system makes it easier for malware to hide/persist itself.
If your distro offers it, rootless podman + podman system service is the best setup, IMO. That will give you a docker
command that is 1-to-1 compatible with docker and lets you use tools like docker-compose that expect a docker service socket. Then you can just follow tutorials that only explain things for docker.
That’s not really possible with docker TBH, and I say that as a diehard Podman advocate. Docker, the tooling that you install with your package manager, is open source. Sure they have windows and mac desktop stuff that isn’t open, but it’s not like you’re self-hosting with that, right?
Plus there’s always Podman to switch to, which can be a (mostly) drop-in replacement, if you want something with a more trustworthy provenience.
Yep, I did exactly that. I passed a class because the prof graded on a curve, but if he hadn’t no one would have passed, so I learned nothing. I went and talked to the prof that was teaching it the next semester, just before classes started, and he said it was fine fine to sit in as long as I didn’t come on any of the test days.
I suggest you go in person to ask, it might be something they’re not supposed to do, so if you ask in some way that leaves a paper trail, they might have to say no just to cover their ass.
Your thoughts.
(And to a lesser extent your actions, but that gets tougher to define since external factors will apply more there.)
The exact laws vary by state, but it’s always “get the fuck out the way, as quickly as you can while being as predictable as possible.”
I’ve never heard that you’re supposed to not stop (if that’s what you meant), but as far as I know, you’re not required to stop if you’re out of the way and not preventing anyone else from getting out if the way.
C was originally created as a “high-level” language, being more abstract (aka high-level) than the other languages at the time. But now it’s basically considered very slightly more abstract than machine code when compared to the much higher level high-level languages we have today.