Glorious

God why

This statement is at least twofold:

1 - it says “I do not have to debate to ensure I have basic human rights”, a statement that is clearly true in every instance.

2 - it is a reaction to bad-faith “debating” used as an attack tactic by oppressors; read up on sealioning: https://en.m.wikipedia.org/wiki/Sealioning

Combine those two facts, and you have people weaponizing “I’m just debating” to keep someone in an unending treadmill of debate where they constantly have to try to prove they deserve basic human rights. It’s actually hell.

Good faith debate and discourse on all key topics the media/gov pushes on us right now has been long settled, none of it is new, so someone actually willing to learn can just search “do trans people deserve basic human rights” or “can minorities be discriminated against by systemic factors” and there’s already robust answers that should not shock you!

No need to make a trans person make a case over and over again that they deserve to live or a Palestinian make a case that the system within which they live is an open-air jail. And that is what this person is saying.

How does doggo do it?? The accuracy to within +/-3 days always, seriously impressive

Commutin from my bed to the couch, stuck in traffic in the hall filled with laundry😭😭 fucking cat cut me off. almost crashed into the vacuum under a pile of shirts gdi “use a turn signal you feline” I yell as the cat claws-out zooms by. Commuting is fucking stressful omg

Yes! Loved your theorycrafting on it

And that’s why the F in fungi added up to 100 at 60 def clockwise hell yeah

I think Sandy Loam gets to know you, and she clearly has ties to Art. Who is Art??? How can I get to know him!!?

Cut my triangle into slices, this is my last resort

Horizontal, no perpendicular

Don’t give a fuck if I can add the three axes to 100

This is my last resort (to read this graph)

~So you follow the flesh axis, and the horizontal lines coming from the flesh axis are the flesh axis values. It works the same for the other axes, they just won’t be horizontal in this view. For example, one of the intersections in the “human” region is 40% flesh, 10% divine, 50% machine - you did it right if it totals 100%!

As another example, one of the intersection points for Sandy Loam is 10% flesh, 30% divine, and 60% machine. I fear Sandy Loam has evolved far past us and is pulling the strings on the global cabal, based on that measurement.

Now you know how to read an obtuse ternary plot!

Clearly nurgle was right all along

There’s so much Sandy has to answer for

NAVY SEALS BLACK FORD RAPTOR TRUCKS PRINCE HARRY IN THE SHOWERS AT RAM RANCH UNDER SIEGE UNDER LOCK DOWN

Here’s an alternate edit as well, it did get deleted from og 196 for being a fasc comic

Mmm hitting a reviewer with “out of scope😎😎😎” feels so good

More research is required straight into my veins every time

Sad to hear for my quadlet future, do you remember what things were specifically annoying?

Hey bigdickdonkey, I recently tried and wasn’t able to shit my way through podman, there just wasn’t enough chatter and guides about it. I plan to revisit it when Debian 13 comes out, which will include podman quadlets. I also tried to get podman quadlets to work on Ubuntu 24 and got closer, but still didn’t manage and Ubuntu is squicky.

I read about true user rootless Docker and decided that was too finicky to keep up to date. It needs some annoying stuff to update, from what I could tell. I was planning on many users having their own containers, and that would have gotten annoying to manage. Maybe a single user would be an OK burden.

The podman people make a good argument for running podman as root and using userns to divvy out UIDs to achieve rootless https://www.redhat.com/en/blog/rootless-podman-user-namespace-modes but since podman is on the back burner till there’s more community and Debian 13, I applied that idea to Docker.

So I went with root Docker with the goals of:

• read only
• set user to different UID:GID for each container
• silo containers in individual Docker networks
• nothing gets /var/run/docker.sock
• cap_drop: all
• security-opt=no-new-privileges
• volumes all get tagged with :rw,noexec,nosuid,nodev,Z

Basically it’s the security best practices from this list https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html

This still has risk of the Docker daemon being hacked from the container itself somehow, which podman eliminates, but it’s as close to the podman ideal I can get within my knowledge now.

Most things will run as rootless+read-only+cap_drop with minor messing. Automatic ripping machine would not, but that project is a wild ride of required permissions. Everything else has succumbed, but I’ve needed to sometimes have a “pre launch container” to do permission changes or make somewhere like /opt writable.

I would transition one app stack at a time to the best security practices, and it’s easier since you don’t need to change container managers. Hope this helps!

God’s most in denial libertarian 😞 refuses to check a box on some paper every 4 years because of anarchist cosplay mind gymnastics that’s come to the conclusion if you vote at all you’re whole heartedly endorsing candidates while simultaneously slowing the collapse into bloodshed where the fabled anarcho-society can rise from the ashes of every trans person and many more.

Your logic lacks empathy, you need to do introspection to make your beliefs consistently ethical. Claiming to help people on the ground while not helping people on the ground indirectly with basically no effort is incongruous - even if you believe the government should not exist, it does rn, and we live in a society where it can hurt or help the same people you claim to. Nudge the fabric of society that you interact with through fantastically minimal effort and never tell another anarcho-soul in your Matrix chat if they’re still doing a not voting circlejerk because goberment exist grr

I will not sacrifice trans people, genocide continues under both yet only Trump would ban HRT or make their lives even worse. It’s something that’s better than nothing. By design, Americans have two choices, take the one that keeps minorities alive. (They probably agree with your hopes, as a bonus)

A bit ago I interacted with an anarchist who refused to vote because he had everything he wanted now (right to gay marriage, specifically) but he didn’t even know that’s only accessible due to a supreme court ruling and not a law. It can disappear just as quick as abortion. Just token vote for the party that may manage to codify that into law or at least won’t ban it. People will die without marriage equality or HRT, they need to live their life before your fabled collapse occurs.

If you can’t manage empathy, you are a libertarian in the “fuck you, I got mine” worst way. No dreaming of the collapse, no advocating for radical change, just a libertarian. Be better, do both harm reduction now and foment the future collapse.

In incus, I had the same setup of an LCX container with a Docker container inside of it. I passed 1000/1000 to the LXC container but the LXC container’s default root user has a an ID set of 0/0. So I had to pass 0/0 to the Docker container, not 1000/1000 to get the read/write permissions working.

That may fix your issue as it’s basically the same tech, just different automated things implementing the LXC container!

Good to know Proxmox’s bad updates are more pervasive than the latest bad update.

I have been able to install Docker in the LXC containers and pull images in with the normal commands. I do that container-in-container to get effectively rootless docker containers for stuff that I couldn’t figure out how to run rootless. So you don’t even lose out on docker if you’re determined! And as you said incus goes on any OS, you can docker just fine on the base OS of your choice and use incus for specific things!