• 0 Posts
Joined 9M ago
Cake day: Oct 28, 2020


Anonymous comments would be best, but only if it’s integrated with upvoting/downvoting/flagging to provide personalized ranking of comments.

Also: sudo debi --with-depends <fn>.deb

How is this different from say, SystemD?

It’s very different because SystemD does way more things than running containers. Also, this is whataboutism.

The link you pointed out has every CVE for every application packaged as Docker image.

You could scan through the list and check for yourself which ones are due to docker itself. Besides, I updated the link to filter out the spurious CVEs.

Would you make the same point that APT or AppImage is insecure because there are insecure applications packaged that way?

I would not… unless the tool itself was actively encouraging bad security practices, for example bundling dependencies, as Docker/AppImage/Flatpak/Snap do.

Docker runs the whole daemon as root and has a large attack surface. Also, it has a lot of footguns that can mislead the user. Its security track record speaks for itself: https://www.cvedetails.com/product/28125/Docker-Docker.html?vendor_id=13534

docker is really bad for security and adds a lot of unnecessary complexity

Even better, js should be entirely optional.

copilot itself? Still no. Copyright applies to creative work made by humans. The copyright of copilot belongs to microsoft and that’s it.

Of course not. This is not how copyright law works.

Go is Flappy Bird. Famous, easy to learn and pretty stupid.


“something (such as a service) that is marketed or sold as a commodity” (Merriam Webster)

“object or system made available for consumer use; it is anything that can be offered to a market to satisfy the desire or need of a customer” (Wikipedia)

In short: paid software is a product. A volunteering effort is not a product, it’s a gift.

Complaining about a gift not being good enough is quite entitled.

I never found evidence backing the claims that 5G is a pressing need for IoT or enterprise usage.

Instead, there’s a huge incentive for ISPs to replace wired broadband with 5G because the cabled infrastructure is the most expensive - especially in low density areas.

Making these devices 5G compatible is a much simpler and more elegant solution

citation needed

Yes and it’s not enough. Tor has been maintaining a number of patches for years to mitigate the problem of fingeprinting.

These are just a bunch of addons. This is far from enough. You need the Tor Browser.

A lot of patching needs to be done on the Firefox sources to mitigate browser fingerprinting, which is a privacy breach. Extensions don’t help nearly enough.

You are confusing very different types of tools. Firejail is excellent for sandboxing applications. AppArmor is not very powerful and almost obsoleted. SELinux is an RBAC and Tomoyo is a MAC: for a single-user desktop they have marginal utility.

https://wiki.debian.org/FreedomBox/Introduction is already part of Debian. You can buy an SBC or run it on a VPS.

Activism is the 6th stage of grief.

I’m talking about algorithms to help the user sift through tons of messages based on the user’s needs and preferences. The effect is to show the users the most interesting content first. Importantly, they can understand how and why the contents have been selected and control the filtering.

Not to be confused with those social networks that use similar algorithms but with the goal of manipulating users (see Cambridge Analytica) or increasing engagement by fueling disagreements and outrage (see Twitter).

User-centric content rating and sorting is sorely missing.

Unfortunately a lot of people are confuse the concept with the opaque, often user-hostile filtering run by big social networks.