overview for Helix

reddit founders made hundreds of fake profiles so site looked popular in c/technology@beehaw.org

[–] Helix@feddit.de 3 points 2 years ago

oh that's just what I did for Lemmy, and it worked!

Megathread: Reddit Blackout in c/main@feddit.de

[–] Helix@feddit.de 3 points 2 years ago

woop woop, r/videos ist gerade dunkel gegangen

Looks like CS2 will have mixed use zoning! in c/gaming@beehaw.org

[–] Helix@feddit.de 36 points 2 years ago (3 children)

ah, Cities Skylines 2, not Counter-Strike 2. You might want to change your title, I thought Counter-Strike 2 followed Fortnite and allowed building all of a sudden :D

Kämpfe noch gegen Muscle Memory in c/main@feddit.de

[–] Helix@feddit.de 4 points 2 years ago* (last edited 2 years ago) (1 children)

ich hatte 200k Karma.

solche nutzlosen Metriken brauchen wir hier nicht (:

Kann ich Serverpower spenden? in c/main@feddit.de

[–] Helix@feddit.de 1 points 2 years ago* (last edited 2 years ago) (1 children)

Entschuldige, da habe ich mich falsch ausgedrückt. Das Frontend ist node/typescript und spammt die API regelrecht zu. Wenn sie das reduzieren und wie du sagst Caching, indexes etc einführen, wird es sicher performanter.

Hier z.B. ein PR zum Thema Caching, welcher sowohl backend als auch Frontend betrifft: https://github.com/LemmyNet/lemmy-ui/issues/1098

Kann ich Serverpower spenden? in c/main@feddit.de

[–] Helix@feddit.de 1 points 2 years ago (4 children)

Zuerst müssen die mal websockets entfernen: https://github.com/LemmyNet/lemmy/issues/2905

Dann müssen die Devs noch schauen, dass sie das Backend load-balancing-freundlich machen.

Das ist halt alles node.js und sie haben (noch) keine Möglichkeit zum Clustern im Backend vorgesehen.

I often read that (docker) containers are not good for security. What are secure methods of creating secure isolated environments to run questionable programs in? in c/linux@lemmy.ml

[–] Helix@feddit.de 2 points 2 years ago (1 children)

Yep, e.g. https://www.sciencedirect.com/science/article/abs/pii/S0167404821000523

I often read that (docker) containers are not good for security. What are secure methods of creating secure isolated environments to run questionable programs in? in c/linux@lemmy.ml

[–] Helix@feddit.de 1 points 2 years ago

Try firejail and flatseal for that.

Is there a point to making an account on multiple Lemmy servers? in c/asklemmy@lemmy.ml

[–] Helix@feddit.de 21 points 2 years ago (1 children)

If your current instance is down, you can still read and comment from another instance.

I just wish there was a way to sync subscriptions.

where are you from? in c/chat@beehaw.org

[–] Helix@feddit.de 1 points 2 years ago (1 children)

left coast of what?

I often read that (docker) containers are not good for security. What are secure methods of creating secure isolated environments to run questionable programs in? in c/linux@lemmy.ml

[–] Helix@feddit.de 10 points 2 years ago (6 children)

Where did you read that and which arguments did the authors make?

Many times, the configuration of Docker is the issue, e.g. mounting stuff like files from /etc/ or the Docker socket from the outside, using insecure file permissions or running the application as root user.

If you use rootless Docker or Podman, you already eliminated one of the security risks. The same goes for the other mentioned things.

What exactly do you mean by "questionable programs"? If you want to run malware, you shouldn't do so in an environment where it can break out of anything. There's the possibility of hardware virtualisation which prevents many of the outbreaks possible, but even then, exploits have been found.

You're really only secure if you run questionable software on an airgapped computer with no speakers and never run anything else on it.

What would be your use case?

Perfect online security in c/cybersecurity@lemmy.ml

[–] Helix@feddit.de 3 points 2 years ago

ah, so a zero knowledge password proof with a static key then. Your idea is susceptible to rainbow tables as all responses to all challenges could be precomputed without even knowing the password.