• 1 Post
  • 29 Comments
Joined 1 year ago
cake
Cake day: June 13th, 2023

help-circle

  • Thats false! There is already a link to the wikipedia article, but here is the relevant quote: „but uses hardware restrictions or digital rights management (DRM) to prevent users from running modified versions of the software on that hardware.“

    It is not a violation of the GPL 2, the license of the Linux kernel, but only the GPL 3 which was basically created for this case. Linus Torvalds is a big defender of the GPL 2 and said that Tivo provided good patches for the hardware they used.






  • Yes, in the sense that you are responsible to update the Docker container and often this can lead to vulnerable containers. No, in the sense that it is much easier to scan for dependencies inside a Docker container and identify vulnerabilities. Also most containers are based on Linux distribution, so those distribute the security fixes for specific libraries. All you have to is update the base image.


  • julianwgs@discuss.tchncs.detoSelfhosted@lemmy.worldAlternative to Minio ?
    link
    fedilink
    English
    arrow-up
    2
    arrow-down
    1
    ·
    6 months ago

    Dependency-free doesnt mean they dont have dependencies. Its just that they bundle them all in the executable. When there is a security vulnerability in a library on your Linux system the vendor of your distribution (Canonical, Redhat, SUSE) takes care that it is fixed. All dependent software and libraries are then fixed as well. All I say? Not the ones which have been bundled in the executable. First they need to find out that you are affected and then the maintainer has to update the dependency manually. Often they can only do this after there has been a coordinated release of the fix by the major distributors, which can leave you vulnerable no matter how fast the maintainer is. This is the way it is in Windows. (This was a short summary)



  • Are you just starting out? I got started with home labbing with a Raspberry Pi 2B (1GB RAM!) and an external HDD I had lying around. I host Yarr, Navidrome, backups and a dashboard app Ive written on there and I am quite satisfied. I would really recommend starting small with hardware you already have and then buy new hardware as you go along. I am also using Tailscale. With this you can get your initial setup up and running in a day and save money if it turns out home labbing isnt for you or you dont really need the hardware.








  • I‘ve recently started using Tailscale for my home setup and I really can‘t recommend it enough. In my opinion it takes a lot of the dangers regarding IT security out of self hosting. Depending on who you ask it is not true self hosting, but I couldn’t care less :)

    With Tailscale you can create a VPN for your devices including your phone and even expose services to the outside world with SSL already setup (havent tried that out, yet)

    They have guides/tutorials for a lot of stuff (web server, Minecraft).


  • Free software is not about free of charge, but about freedom. If you publish open source software under a license which allows commercial use or selling the software, you have given consent. If you don‘t like that, change the license. (Users will still be able to use the software for free if they choose to compile it themself, because the source code is available.

    Redhat does exactly what you are describing: Packageing open source software into a paid Linux distribution and I would say they had an immense net positive effect on Linux doing this. I believe that this the point. Don‘t be an asshole. If you partly profit of someone else open source software, give them money, bug reports, bug fixes, recognition, etc. Be part of the community.




  • Not quite, it‘s only restricting competitors and so all companies and home labbers can still use it for free and contribute as in free speech.

    However this can bring a lot more financial sustainability to a project. I don‘t know the specifics, but the main problem is that companies make profit of the software, but don’t invest enough money back into the product. This cannot be good for users. Open source must be financially stable.

    Also right now all those competitors (and users) can create a fork and maintain it. So it is up to the community what will happen to the project.