LXC is more focused on the OS than the application, where docker is more focused in the application. In general, I don’t recommend piping to bash, but take a look here for some lxc build scripts:

https://community-scripts.github.io/ProxmoxVE/

And you can still run docker with proxmox. You can make a VM and put docker in it, or you can run it in an LXC.

Regarding VMs, that’s purely an example of how I am doing things, and only for specific things. I start and stop VMs because I’m passing specific hardware (a discrete GPU) to the VM, its not a shared resource in this case. I’m not making a virt GPU, the VM gets to use the quadro that’s in there directly. I have other VMs (HomeAssistantOS for example) that run all the time.

LXC can be used to share resources with a host. VMs can be used to dedicate resources. LXCs are semi-isolated, and a VM is fully isolated.

My example of the iGPU/dGPU is because of my use cases, nothing more.

Clustering is easy and can be done over time. Your new host needs to join the existing server before adding any VMs or LXCs, that’s about it. A good overview of how to do it is here:

https://www.wundertech.net/how-to-set-up-a-cluster-in-proxmox/

Even better would be them posting to PTB after…

Yes, and they have “shared” it. After repeat requests, they sent a zip out, and it was posted here:

https://codeberg.org/TruthSocial/truth-social

Certainly out of date by now though.

I support change.

A change from ICE and DHS existing to not.

https://anarchist.nexus/comment/2135956

From the readme:

============================================================= PATRIOT FRONT LEAKS

This torrent archive contains nearly 500 gigabytes of leaked records from Patriot Front, a U.S.-based neo-nazi organization with chapters around the country. This leak includes videos, photos, documents, and chat messages.

Full report: https://unicornriot.ninja/patriotfrontleaks

Unicorn Riot is releasing this information as part of our work covering far-right, white supremacist and neo-nazi organizations. If you find this release useful, please consider making a donation (tax-deductible in U.S.) to our nonprofit media organization: https://unicornriot.ninja/donate

For more, see our Far-Right Investigations Desk: https://unicornriot.ninja/far-right-investigations-desk/

2017 reporting on Patriot Front: https://unicornriot.ninja/2017/southern-front-logs-expose-neo-nazi-extremist-cell/

2018: https://unicornriot.ninja/2018/americans-fascists-inside-patriot-front/

Additional files from these reports on Patriot Front are included in the 2017 and 2018 directories.

Previously leaked Patriot Front and Vanguard America Discord chats can also be viewed on DiscordLeaks: https://discordleaks.unicornriot.ninja/discord/server/2 https://discordleaks.unicornriot.ninja/discord/server/5 https://discordleaks.unicornriot.ninja/discord/server/6 https://discordleaks.unicornriot.ninja/discord/server/7 (Vanguard America was the predecessor organization to Patriot Front, with overlapping membership.)

Other stories related to Patriot Front are linked here: https://unicornriot.ninja/tag/patriot-front/

The files in this torrent archive are also available at: https://vault.unicornriot.ninja/patriotfrontleaks/

RocketChat is open-source chat server software similar to Slack, a messaging platform with multiple channels. The data here includes chat rooms, direct messages, and file attachments. The RocketChat file attachments and screenshots are zipped. Machine-readable versions of Patriot Front RocketChat messages are included as JSON files.

JSON copies of previously leaked Patriot Front and Vanguard America Discord chats are also included. 7zip ( https://www.7-zip.org/ ) can expand these .xz archives.

You can also view this RocketChat archive on DiscordLeaks: https://discordleaks.unicornriot.ninja/rocket-chat/

The Mega.co.nz archives form more than 400 gigabytes of this release. Patriot Front uses Mega to send packages of raw video, photos and other media gathered in the field during fascist propaganda operations. While many of the media files were not labeled by date, a large number have EXIF data which can be scanned via exiftool ( https://exiftool.org/ ) to determine when the pictures and videos were taken.

Torrent hosting courtesy of Distributed Denial of Secrets https://ddosecrets.com/

=============================================================

Debian for my workstation desktops, servers, etc, anything that’s stable.

Arch for playing around with new toys/features.

I hope so.

I’m still seeding 400GB of patriot front leak (just noticed 21 seeders now! It was 7 or so when I first started). I’ll gladly add this to my permanently seeded torrents.

My setup doesnt matter, I don’t use Unifi for my main home infra.

You can use the Unifi device itself. Teleport is just a single click Wireguard service, with no need for port forwarding or additional configuration.

Last I saw it, you can export the config from the browser for use with client devices, you can use that with wireguard tunnel and set it as always on.

I am, though I’m not using unifi.

Teleport is just Wireguard with unifi stacked on top. You can just export the config and its literally a Wireguard connection. Unifi Teleport is just using their online services to replace a step.

But teleport (which is Wireguard under the hood) is not meant for an always-on connection, its meant for ad-hoc connections.

So if you want always on, export the config and run it as a Wireguard tunnel. Its exactly the same service, running on exactly the same device, without using wifiman and allowing for an always on VPN.

I am pretty sure they were saying they weren’t going to share the examples they looked up in defense of cops, not suggesting that you were defending them.

I am quite sure they were agreeing with you.

If you want it to run all the time, I’d export the config file and use Wireguard tunnel rather than wifiman for teleport.

VPN only access for just you is a perfectly appropriate solution.

Unifi teleport is a Wireguard VPN.

If you want to access your internal devices/services from elsewhere, and dont require public internet access, yes, this is perfectly fine.

Traefik (and other proxy tools) are generally used for public internet based access, not VPN.

If they worked on a star wars movie

They did not.

S8 was such a complete pile of shit that they lost the deal.

I really like the noise they make when they get pressed

If its for work, its on a work machine.

That said, I have a lot of efforts (personal projects with hardware I get given, or side work not related to my job) where I need specific software. For those, I have a VM tailored to that application that’s been trimmed down as much as possible.

This let’s me rdp into them, do what I need to do, save to a designated location, and shut the VM down. Since its a VM I tend not to give it network access unless required, and I have USB drive I pass through to the VM.

This makes sure everything works, I limit the access of MS with local only accounts and win 10 (among other specific versions like XP for a specific piece of hardware, server 2008 for an irritating piece of software I sometimes need, etc).

All the VMs are on my proxmox cluster, easy to start/stop with a script.

Generally my preference.

And a great excuse to get my company and/or clients to contribute to open source software efforts.

Unfortunately that doesnt change what @drdalek@lemmy.dbzer0.com is concerned about, specifically when we take the executive order that marks nonexistent organizations and basic political beliefs as “terrorist organizations”.

Which can be applied to both groups. So it comes down to the response to that - and we know how ICE is being used and how they are trying to use the NG.

My fear is that this is going to get extremely bloody. Elections won’t matter at that point, even if they were held.

I see you didnt actually read the title or the writings.

Goodbye.