MigratingtoLemmy

I don't have spare peripherals like a monitor and a keyboard. How do you suggest I do a bare-metal install of Debian on a computer (meant to be a server)?

Hi everyone,

This would seem to be a basic question (I've been on this for a few hours and can't seem to get it working).

This is my file for my pod:

$ cat backup.pod

[Unit]
Description=backup pod

[Pod]
Network=slirp4netns:port_handler=slirp4netns
PodmanArgs=--userns=auto:size=10000
PodName=backup

And this is the file for my container which is supposed to be part of the pod:

$ cat backup.container

[Unit]
Description=backup container

[Container]
Image=docker.io/debian/debian:latest
ContainerName=backup-container
Entrypoint=/bin/bash
Exec=/bin/bash -c "apt-get update -y && apt-get upgrade -y && apt-get install rclone vim -y && exec bash"
Pod=backup
GlobalArgs=-d -t

[Service]
Restart=always

[Install]
# Start by default on boot
WantedBy=multi-user.target default.target

1. Podman's systemd-generator doesn't seem to create any service file for backup.pod in /run/user/$(id -u user). I do see a service file for backup.container, backup.service.
2. Regardless, systemctl start backup.service errors out anyway.

I'm unable to understand how to use quadlet from the documentation. AFAIK I did everything they asked (https://docs.podman.io/en/latest/markdown/podman-systemd.unit.5.html).

The primary reason why I tried this was because I couldn't figure out how to create a pod using compose.yaml either. If someone has answers to these questions, they would be much appreciated!

Thanks!

publication croisée depuis : https://lemmy.world/post/16156662

To be completely open, this is not a question about XCP-ng vs Proxmox. I'm open to doing everything in the cli, comparing two platforms is not my intention here.

I'm very interested in the security benefits one has over the other though. AFAIK Xen has a dedicated for security? I'd like to think that both are reasonably secure by default, but I do not get many hits for "KVM hardening", for example, only OS-level hardening advice.

Do both protect equally against attacks that try to escape the VM? Is there anything in terms of security that one has and the other doesn't?

I know this is not the usual kind of question that is asked on this sub, any help is greatly appreciated!

cross-posted from: https://lemmy.world/post/15706364

Transparent compression layer on Linux?

My use-case: streaming video to a Linux mount and want compression of said video files on the fly.

Rclone has an experimental remote for compression but this stuff is important to me so that's no good. I know rsync can do it but will it work for video files, and how I get rsync to warch the virtual mount-point and automatically compress and move over each individual file to rclone for upload to the Cloud? This is mostly to save on upload bandwidth and storage costs.

Thanks!

Hi, I was planning to encrypt my files with GPG for safety before uploading them to the cloud. However, from what I understand GPG doesn't pad files/do much to prevent file fingerprinting. I was looking around for a way to reliably pad files and encrypt metadata for them but couldn't find anything. Haven't found any recommendations on the privacyguides website either. Any help would be appreciated!

Thanks

Has anyone tried this?

Say I purchase a laptop from Amazon/Walmart/any big box store. I assume they note down the unique identifier for the device and link it to the purchase, which has my credit card information.

How would Ebay do this? I'm curious about the extent of information that the marketplace giants have of consumers purchasing electronics from them. Cheap Chinese gizmos might not have unique identifiers but a Dell Laptop certainly has a few.

I'm sure some here can imagine the technical reason for the question. Have a good day ahead!

I remember reading an article where the government and Google were able to read notifications and record them from every android device. I wonder if Graphene might have patched this problem, and if not, do they have any plans to do so?

Thanks!

Hi everyone,

I would like to ask your opinions on reliable cloud storage providers for media. I have a media collection that isn't too big (about 2-3TB) that I'd like to store on the cloud since I'll be moving in the future and don't think I can handle multiple hard drives.

What do you suggest? Any issues I should be looking at? I came across Wasabi too, along with the more expensive Scaleway and Cloudflare R2 offerings. For now Backblaze seems fine in terms of reliability, but has anyone come across complaints from them regarding what is stored on their servers?

Thanks!

If someone here doesn't want to use GNU at all, Plan9 is probably the next best thing. Is there anyone here that actually uses it day to day?

Conceptually, it's fairly easy to understand - nftables, relayd, likely some firewall application.

However, is it as simple as configuring the WAN port as the WiFi interface and leaving it at that? Note that I'm not bothered about double NAT since I won't be opening any ports, and the main router cannot be touched.

I do want my own SSIDs, my VLANs, control over the firewall etc. Basically, my own network space. If anyone has done this/has an idea of the problems I might run into, please do comment!

Appreciate the help!

Is it RDMA? Is it a modification of SR-IOV?

I'm having trouble even trying to find out more about this since the RDMA definition just says "remote access to device memory" and I'd like to confirm if that includes virtual instances of PCIe devices over the network.

Essentially, I'm looking for a way to share virtual instances of supported PCIe devices over IP. I.e. If you have a GPU, you can create virtual slices of it with SR-IOV on KVM-based hypervisors. I'm looking for something that will take this and make it available over IP.

I have come across Infiniband and QLogic, Mellanox and HP and IBM and RDMA support on Debian and all of that. I just need someone to ELI5 this to me so I know where/what to search and see if what I want is really even possible with FOSS.

I know that Nutanix allows one to serve PCIe hardware over IP on their hypervisor, but I plan to stick with FOSS as far as possible.

Thanks!

Edit: Please let me know what makes my post so hard to grasp - the answer was simple RoCE/iWARP. RDMA is definitely the underlying technology that offers access to the memory of the device whilst bypassing the kernel for good performance; security considerations aside, this is a very good idea since RoCE/iWARP work on the UDP/IP and the TCP/IP stack, making them routable.

Apologies if my post didn't make the most sense, I tried to describe it the best I could. Thanks