Most often you dont want your close friends and family to know about your problems with your partner for many reasons.
- 3 Posts
- 64 Comments
Joined 4 years ago
Cake day: September 14th, 2021
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
2·4 months agoThe only two important columns are “Local address: port” and “process”. The later is what process is listening whille the former is the interface that process is listening on and the port.
So you see that I don’t have any process listening on any port other than 80 and 443 iin the host and the regular ones.
That said, you containers will still listen on the ports you want but only on a virtual network interface.
Basically you only need to publish ports 80 amd 443 on the container or pod you have your reverse proxy on. Other containers need to only be attached to the same network as you already did.
It is good you have solved you initial issue. However, as you say, your rules are too permissive. You should not publish ports from containers to the host. Your container ports should only be accessible over reverse-proxy network. Said otherwise <my domain>:3000 should not resolve to anything.
This can be simply acheive by not publishing any port on your service containers.
Here is an example of my VPS:
Exposed ports:
$ ss -ntlp State Recv-Q Send-Q Local Address:Port Peer Address:Port Process LISTEN 0 128 0.0.0.0:22 0.0.0.0:* users:(("sshd",pid=4084094,fd=3)) LISTEN 0 4096 0.0.0.0:443 0.0.0.0:* users:(("conmon",pid=3436659,fd=6)) LISTEN 0 4096 0.0.0.0:5355 0.0.0.0:* users:(("systemd-resolve",pid=723,fd=11)) LISTEN 0 4096 0.0.0.0:80 0.0.0.0:* users:(("conmon",pid=3436659,fd=5)) LISTEN 0 4096 127.0.0.54:53 0.0.0.0:* users:(("systemd-resolve",pid=723,fd=19)) LISTEN 0 4096 127.0.0.53%lo:53 0.0.0.0:* users:(("systemd-resolve",pid=723,fd=17))Redacted list of containers:
$ podman container ls CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES [...] docker.io/tootsuite/mastodon-streaming:v4.3 node ./streaming 2 months ago Up 2 months (healthy) social_streaming docker.io/eqalpha/keydb:alpine keydb-server /etc... 2 months ago Up 2 months (healthy) cloud_cache localhost/podman-pause:4.4.1-1111111111 2 months ago Up 2 months 0.0.0.0:80->80/tcp, 0.0.0.0:443->443/tcp 1111111111-infra docker.io/library/traefik:3.2 traefik 2 months ago Up 2 months 0.0.0.0:80->80/tcp, 0.0.0.0:443->443/tcp traefik docker.io/library/nginx:1.27-alpine nginx -g daemon o... 3 weeks ago Up 3 weeks cloud_web docker.io/library/nginx:1.27-alpine nginx -g daemon o... 3 weeks ago Up 3 weeks social_front [...]
2·4 months agoYou can use a black theme. Look at gnome-look.org
You can also reverse engineer them to look how they make the theme blank and apply it to adwaita. This is not complicated as themes are mostly CSS.
Edit to add that you can chat with people from open deskttop (gnome look) to ask your question: https://chat.opendesktop.org/#/welcome
@noclue I guess the dress is just three hundred fifty five dollars.
I guess they say $335,000 with a coma si it is just three hunder thirty five dollars while the interest rate is 6.95% with a dot so it is almost a seven?
6·4 months agoThey have potential. They always endup being used. Sometimes, to make better use of space I might swap bigger jars with smaller ones depending on the content. In the storage cabinet, bigger jars can contain smaller ones.
Seems like you have a permissions issue. I just tested it on Fedora workstation gnome, run it from regular menu, then it asked me for password. You, you have a permission denied isssue, so you need to figure out how to run it as root.
They get better everyday. You will use them at some point if you cannot find your software via your favorite package manager.
1·6 months agoBut you will be canceled. There are things like fediblock and block lists. Does not reaaly harm you but you get suppressed little by little.
2·7 months agoGreat to hear it is a good drop-in replacement. I’ve been using KeyDB, but seeing valkey is more actif, I may endup using it too.
I cannot reproduce it, I just tried to copy some files with various methods but they always end up correctly named. The only difference is that I have Btrfs. I never encountered this issue when I was using ext4 though.
9·7 months agoSeems to be a Pixelfed instance.
I don’t know how to contact them but they put the URL for https://milpamerica.org/ wrong. It has an accent. Such a missed opportunity to promote it.
Never noticed that? How do you copy them, from terminal? What software do you use? What file system do you use?
There are 2 kinds of distributions. Ones that are on customization side and those on stability side.
For example Debian, Fedora, and arguably Arch are on stability side. They are intended for people that want things to work predictably and software to be packaged and shipped as the developer intended it. Customization or lack of it is up to the user.
Distributions like Manjaro, Zorin OS, Elementary OS, LMDE or even Linux XP are have a given goal to a particular customization. Either a set of tweaks, a particular look or even their own desktop environment or set of software they develop themselves.
This means that the first kind would have the most boring update, as they just ship new and correctly integrated software. While the second kind would provide very nice customisations or patching of their own to their environment.
My logitech mx master 3 works instantly on fedora with all it’s features. I also have various wired and worless keyboards and mouses that work instantly on Fedora.
For same mouse on windows, I need to wait for it to download and install outs drivers.
Maybe you got things confused or are using LinuxFromScratch or something.
Look for a desktop app.