The sudo password is a security theater. If untrusted code is isolated, it will be unable to run sudo (or other privilege escalation tool) at all. If untrusted code is not isolated, it has millions of ways to sniff the sudo password. This applies to both server and desktop Linux installations.
Keep your stuff sandboxed. The Evil Systemd, despite being Evil, has a set of useful options for this. Check systemd.service(5).
Here we go.
If somebody wants to try it - clone master branch and do 'git cherry-pick d0e7df023cadb3d7068e5b09509bc562ad63f10b', then run build.sh script as usual.
maddy is getting milter client support once I figure out how to use go-fuzz!
So far testing IPNS performance:
IPNS lookup + fetch using gateway.ipfs.io
1. 17.12 seconds
2. 23 seconds
IPNS lookup + fetch using ipfs.hex.dn42
1. 7.23 seconds
2. 0.147 seconds (cache hit)
3. 0.876 seconds (after node restart, wtf)
IPNS lookup + fetch using cloudflare-ipfs.com:
IPNS lookup + fetch using ipfs.eternum.io
1. 64.49 secs
IPNS lookup + fetch using ipfs.best-practice.se
1. 502 Bad Gateway
go-ipfs 0.5 is released. Promises IPNS performance improvement. Now `ipfs name publish` fails with timeout instead of failing silently after a terribly big amount of time. That is an improvement, I think?
<jrb0001> ansible is slow
<jrb0001> foxcpp: ansible is 7+ minutes for me, and that's just copying files over + restarting stuff if needed. generating all files is a custom tool and takes much less than a second.
(from #dn42 at hackint)
Can even be fully automated via little systemd timer/cron job.
Often heard argument for Docker: security via isolation. As a complete security freak, I think AppArmor combined with simple application https://github.com/foxcpp/scmp-confine for seccomp offers more security with less management overhead. If you want more - you have bubblewrap.
Noticed several days that some IETF people are apparently working on IMAP4rev2. Even further, the work was started back in 2015 and is still active.
Sadly, it is just merging extensions. [imap5] mailing list is still quiet as a graveyard, you know.
Pragmatic open technology enthusiast.
A general furry public instance. You don't have to be a furry to join. Any and all topics are fair game provided they do not conflict with the Code of Conduct.