RULE by glizzyguzzler in c/196
[-] glizzyguzzler 24 points 6 months ago

The blur really helps hide the videa gameness, but just cause he’s not real doesn’t mean he don’t love

His

🏳️‍🌈🏳️‍🌈Lesbian🏳️‍🌈🏳️‍🌈

Daughter

Explain plz (rule) by glizzyguzzler in c/196
Steel orbs 😋 by glizzyguzzler in c/196
[-] glizzyguzzler 23 points 8 months ago

haha yeah… i’d ponder those

rule my orb by glizzyguzzler in c/196
[-] glizzyguzzler 23 points 8 months ago

Wizards rule goblins drool

TIL computers can sometimes grow crystals by glizzyguzzler in c/til@lemmy.world
[-] glizzyguzzler 22 points 8 months ago

This statement is not fully accurate. Whiskers in OP’s case are about (usually) tin whiskers that grow, often visibly, and then can connect (short) to unintended areas.

Electromigration is effectively when a large potential difference encourages ions to relocate to reduce the potential difference.

Big Whiskers have two methods of formation. The first way is that tin ions are able to move by becoming soluble in some form of water so they’re mobile. The other way whiskers can form is from stress alone. (Stress being force per area that compresses or tensions the metal in question, applied through a multitude of ways) Whiskers can be directed by electromigration so they form tendrils to a differing potential, basically purposefully ruining stuff instead of randomly shorting things.

Now in integrated circuits (ICs), there are extremely high currents running through extremely small regions. Electromigration in ICs is caused by electrons getting yeeted at extremely fast speeds, giving them significant momentum. They collide with ions in their path and dislodge the ions from their matrix. This can result in voids of ions preventing current from flowing (open circuits) or tendrils of ions making a path to an unintended area and connecting to it (shorting it). The tendrils here are also called whiskers, but are generated in a very different way (e.g., no water solubility or inherent stresses required) and on a significantly smaller scale. And probably not in tin.

The more you know!

nv robo rule by glizzyguzzler in c/196
[-] glizzyguzzler 24 points 9 months ago

Tumble gonna tumble

nv robo rule by glizzyguzzler in c/196
[-] glizzyguzzler 21 points 9 months ago

It is called an eyebot, I promise :) just drop the “mommy dommy”. I didn’t interpret the me-me as being ED-E because ED-E doesn’t talk afaik but other eyebots do spout fascist propaganda (at least in later games…)

494
rule (lemmy.blahaj.zone)
submitted 10 months ago by glizzyguzzler to c/196
8 comments fedilink
365
rule (lemmy.blahaj.zone)
submitted 10 months ago by glizzyguzzler to c/196
5 comments fedilink
92
How do y'all backup docker databases with backup programs like Borg/Restic? (self.selfhosted)
submitted 10 months ago* (last edited 10 months ago) by glizzyguzzler to c/selfhosted@lemmy.world
54 comments fedilink

Edit: Results tabulated, thanks for all y'alls input!

Results fitting within the listed categories

Just do it live

  • Backup while it is expected to be idle @MangoPenguin@lemmy.blahaj.zone @khorak@lemmy.dbzer0.com @dandroid@sh.itjust.works

  • @Darkassassin07@lemmy.ca suggested adding a real long-ass-backup-script to run monthly to limit overall downtime

Shut down all database containers

  • Shutdown all containers -> backup @PotatoPotato@lemmy.world

  • Leveraging NixOS impermanence, reboot once a day and backup @thejevans@lemmy.ml

Long-ass backup script

  • Long-ass backup script leveraging a backup method in series @STROHminator@lemmy.world @lemmyvore@feddit.nl

Mythical database live snapshot command

(it seems pg_dumpall for Postgres and mysqldump for mysql (though some images with mysql don't have that command for meeeeee))

  • Dump Postgres via pg_dumpall on a schedule, backup normally on another schedule @RegalPotoo@lemmy.world

  • Dump mysql via mysqldump and pipe to restic directly @youRFate@feddit.de

  • Dump Postgres via pg_dumpall -> backup -> delete dump @2xsaiko@discuss.tchncs.de @SteveDinn@lemmy.ca

Docker image that includes Mythical database live snapshot command (Postgres only)

  • Make your own docker image (https://gitlab.com/trubeck/postgres-backup) and set to run on a schedule, includes restic so it backs itself up @Undaunted@discuss.tchncs.de (thanks for uploading your scripts!!)

  • Add docker image prodrigestivill/postgres-backup-local and set to run on a schedule, backup those dumps on another schedule @brewery@lemmy.world @Lem453@lemmy.ca (also recommended additionally backing up the running database and trying that first during a restore)

New catagories

Snapshot it, seems to act like a power outage to the database

  • LVM snapshot -> backup that @butitsnotme@lemmy.world

  • ZFS snapshot -> backup that @ikidd@lemmy.world (real world recovery experience shows that databases act like they're recovering from a power outage and it works)

  • (I assume btrfs snapshot will also work)

One liner self-contained command for crontab

  • One-liner crontab that prunes to maintain 7 backups, dump Postgres via pg_dumpall, zips, then rclone them @DeltaTangoLima@reddrefuge.com

Turns out Borgmatic has database hooks

  • Borgmatic with its explicit support for databases via hooks (autorestic has hooks but it looks like you have to make database controls yourself) @PastelKeystone@lemmy.world

I've searched this long and hard and I haven't really seen a good consensus that made sense. The SEO is really slowing me on this one, stuff like "restic backup database" gets me garbage.

I've got databases in docker containers in LXC containers, but that shouldn't matter (I think).

me-me about containers in containersa me-me using the mental gymnastics me-me template; the template is split into two sections with the upper being a simple 3-step gymnastic routine while the bottom has the one being mocked flipping on gymnastic bars, using gymnastic rings, a balance beam, before finally jetpacking over a burning car. The top says "docker compose up -d" in line with the 3 simple steps of the routine, while the bottom, while becoming increasingly more cluttered, says "pass uid/gid to LXC", "add storage devices to LXC", "proxy network", "install docker on every container", and finally "docker compose up -d".

I've seen:

  • Just backup the databases like everything else, they're "transactional" so it's cool
  • Some extra docker image to load in with everything else that shuts down the databases in docker so they can be backed up
  • Shut down all database containers while the backup happens
  • A long ass backup script that shuts down containers, backs them up, and then moves to the next in the script
  • Some mythical mentions of "database should have a command to do a live snapshot, git gud"

None seem turnkey except for the first, but since so many other options exist I have a feeling the first option isn't something you can rest easy with.

I'd like to minimize backup down times obviously, like what if the backup for whatever reason takes a long time? I'd denial of service myself trying to backup my service.

I'd also like to avoid a "long ass backup script" cause autorestic/borgmatic seem so nice to use. I could, but I'd be sad.

So, what do y'all do to backup docker databases with backup programs like Borg/Restic?

22
Rootless podman adguard home failing [SEMI-SOLVED] (self.selfhosted)
submitted 10 months ago* (last edited 10 months ago) by glizzyguzzler to c/selfhosted@lemmy.world
15 comments fedilink

[Semi-solved edit]: To answer my question, I was not able to figure out podman. There's just too little community explanations about it for me to pull myself up by my own bootstraps.

So I went for Incus, which has a lot of community explanations (also via searching LXD) and made an Incus container with a macvlan and put the adguard home docker in that. Ran the docker as "root" and used docker compose since I can rely on the docker community directly, but the Incus container is not root-privileged so my goal of avoiding rootful is solved.

Anyone finding this via search, the magic sauce I needed to achieve a technically rootless adguardhome docker setup was:

sudo incus create gooner # For networking, it doesn't need to be named gooner
sudo incus profile device add gooner eth0 nic nictype=macvlan parent=enp0s10 # Get your version of 'enp0s10' via 'ip addr', macvlan thing won't work with wifi
sudo incus profile set gooner security.nesting=true
sudo incus profile set gooner security.syscalls.intercept.mknod=true
sudo incus profile set gooner security.syscalls.intercept.setxattr=true
# Pause here and make adguardhome instance in the Incus web UI (incus-ui-canonical) with the "gooner" profile
# Make sure all network stuff from docker-compose.yml is deleted
# Put docker-compose.yml in /home/${USER}/server/admin/compose/adguardhome
printf "uid $(id -u) 0\ngid $(id -g) 0" | sudo incus config set adguardhome raw.idmap - # user id -> 0 (root), user group id -> 0 (root) since debian cloud default user is root
sudo incus config device add adguardhome config disk source=/home/${USER}/server/admin/config/adguardhome path=/server/admin/config/adguardhome # These link adguard stuff to the real drive
sudo incus config device add adguardhome compose disk source=/home/${USER}/server/admin/compose/adguardhome path=/server/admin/compose/adguardhome
# !! note that the adguardhome docker-compose.yml must say "/server/configs/adguardhome/work" instead of "/home/${USER}/server/configs/adguardhome/work"
# Install docker
sudo incus exec adguardhome -- bash -c "sudo apt install -y ca-certificates curl"
sudo incus exec adguardhome -- bash -c "sudo install -m 0755 -d /etc/apt/keyrings"
sudo incus exec adguardhome -- bash -c "sudo curl -fsSL https://download.docker.com/linux/debian/gpg -o /etc/apt/keyrings/docker.asc"
sudo incus exec adguardhome -- bash -c "sudo chmod a+r /etc/apt/keyrings/docker.asc"
sudo incus exec adguardhome -- bash -c 'echo \
  "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/debian \
  $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | \
  sudo tee /etc/apt/sources.list.d/docker.list > /dev/null'
sudo incus exec adguardhome -- bash -c "sudo apt update"
sudo incus exec adguardhome -- bash -c "sudo apt install -y docker-ce docker-ce-cli containerd.io docker-compose-plugin"
# Disable port 53 binding
sudo incus exec adguardhome -- bash -c "[ -d /etc/systemd/resolved.conf.d ] || mkdir -p /etc/systemd/resolved.conf.d"
sudo incus exec adguardhome -- bash -c "printf "%s\n%s\n" '[Resolve]' 'DNSStubListener=no' | sudo tee /etc/systemd/resolved.conf.d/10-make-dns-work.conf"
sudo incus exec adguardhome -- bash -c "sudo systemctl restart systemd-resolved"
# Run the docker
sudo incus exec adguardhome -- bash -c "docker compose -f /server/admin/compose/adguardhome/docker-compose.yml up -d"

I'm trying to get rootless podman to run adguard home on Debian 12. I run the docker-compose.yml file via podman-compose up -d.

I get errors that I cannot google successfully, sadly. I do occasionally see shards of people saying things like "I have adguard running with rootless podman" but never any guides. So tantalizing.

I have applied this change so rootless can yoink port 53:

sudo nano /etc/sysctl.conf

net.ipv4.ip_unprivileged_port_start=53 # at end, required for rootless podman to be able to do 53

(Do I even need that change with a macvlan?)

The sticking point seems to be the macvlan. I want a macvlan so I can host a PiHole as a redundant fallback on the same server. I error with:

Error: netavark: Netlink error: No such device (os error 19) and that error really gets me no where searching for it. I am berry sure the ethernet connection is named enp0s10 and spelled right in the docker-compose file, cause I copied and pasted it in.

I tried forcing the backend to "CNI" but probably did it wrong, it complained about:

WARN[0000] Failed to load cached network config: network dockervlan not found in CNI cache, falling back to loading network dockervlan from disk
WARN[0000] 1 error occurred:
        * plugin type="macvlan" failed (delete): cni plugin macvlan failed: Link not found

(I also made a /etc/cni/net.d/90-dockervlan.conflist file for cni but it didn't seem to see it and I couldn't muster how to get it to see it)

Both still occur if I pre-make the dockervlan with:

podman network create -d macvlan -o parent=enp0s10 --subnet 10.69.69.0/24 --gateway 10.69.69.1 --ip-range 10.69.69.69/32 dockervlan

And adjust the compose file's networks: call to:

networks:
    dockervlan:
        external: true
        name: dockervlan

Has anyone succeeded at this or done something similar?

docker-compose.yml:

version: '3.9'
#
***
NETWORKS
***
networks:
    dockervlan:
        name: dockervlan
        driver: macvlan
        driver_opts:
            parent: enp0s10
        ipam:
            config:
              - type: "host-local"
              - dst: "0.0.0.0/0"
              - subnet: "10.69.69.0/24"
                rangeStart: "10.69.69.69/32" # This range should include the ipv4_address: in services:
                rangeEnd: "10.69.69.79/32"
                gateway: "10.69.69.1"
#
***
SERVICES
***
services:
    adguardhome:
        container_name: adguardhome
        image: docker.io/adguard/adguardhome
        hostname: adguardhome
        restart: unless-stopped
        networks:
            dockervlan:
                ipv4_address: 10.69.69.69# IP address inside the defined dockervlan range
        volumes:
            - '/home/${USER}/server/configs/adguardhome/work:/opt/adguardhome/work'
            - '/home/${USER}/server/configs/adguardhome/conf:/opt/adguardhome/conf'
            #- '/home/${USER}/server/certs/example.com:/certs # optional: if you have your own SSL certs
        ports:
            - '53:53/tcp'
            - '53:53/udp'
            - '80:80/tcp'
            - '443:443/tcp'
            - '443:443/udp'
            - '3000:3000/tcp'

podman 4.3.1

podman-compose 1.0.6

Getting a newer podman-compose is pretty easy peasy, idk about newer podman if that's needed to fix this.

197
STOP RIGHT THERULE (files.catbox.moe)
submitted 10 months ago* (last edited 10 months ago) by glizzyguzzler to c/196
4 comments fedilink

An Oblivion Imperial Watch guard in Lake Rumare with only his head above the water, and his mouth half in the water talking to you with the classic Oblivion NPC zoom-in and direct eye contact: Stop right there, sweet angel! Nobody talks bad about their self on my watch! I'm confiscating your bad vibes. Now love yourself or it's off to jail. (I did not make this me-me)

125
Anxious at work rule [sound] (files.catbox.moe)
submitted 11 months ago by glizzyguzzler to c/196
2 comments fedilink
267
rule (lemmy.blahaj.zone)
submitted 11 months ago by glizzyguzzler to c/196
8 comments fedilink
66
rule [vid w sound] (files.catbox.moe)
submitted 11 months ago by glizzyguzzler to c/196
1 comments fedilink
585
rule (lemmy.blahaj.zone)
submitted 11 months ago by glizzyguzzler to c/196
25 comments fedilink
289
melon rule (lemmy.blahaj.zone)
submitted 11 months ago by glizzyguzzler to c/196
16 comments fedilink
252
clap o’ the asscheeks rule (lemmy.blahaj.zone)
submitted 11 months ago by glizzyguzzler to c/196
5 comments fedilink
497
rule (lemmy.blahaj.zone)
submitted 11 months ago by glizzyguzzler to c/196
10 comments fedilink
tentirules by glizzyguzzler in c/196
[-] glizzyguzzler 23 points 1 year ago

🙏blessed be the ancestors that created such traditional folk art🙏they wa~~n~~lked so we could c-

rule by glizzyguzzler in c/196
[-] glizzyguzzler 24 points 1 year ago

Trans people are at risk right now, states that ban transitioning will kill them. Gay people were at risk years ago but decades of voting for politicians that support peoples’ rights have allowed you to live and be out now. I am glad you have the rights you deserve and will not lose them in a year, but trans people are losing rights they deserve now. Not to mention abortion rights have been lost that are deserved well.

But voting got justices in place to enact rulings that decriminalized sodomy in 2003. Literally it was illegal to be gay in a bunch of states prior to 2003. Just as not voting let Trump install justices that removed abortion access.

Your right to a same-sex marriage (2015 ruling, very recent, only 36/50 states allowed same-sex marriage prior to that ruling and of course after 2003) and even being with someone of the same-sex (2003 ruling) are both Supreme Court rulings that can easily be repealed just as Roe v Wade was. I want everyone’s right to love who they want to be enshrined in the constitution, but until it is same-sex relationships are somewhat vulnerable. Voting and political action are the only way to enable your rights to remain forever. And voting is ez pz you just tick a few boxes for the person that doesn’t want to kill trans people.

You are correct; your life will continue whether or not you vote. But the quality of life is greatly impacted by the will of the people, which is gauged through voting. And the quality of life of other groups (people transitioning) are in danger right now

Why is this community filled with neoliberals from lemmy.world ? by glizzyguzzler in c/196
[-] glizzyguzzler 21 points 1 year ago

196 stands with Palestine

fried n dried by glizzyguzzler in c/196
[-] glizzyguzzler 24 points 1 year ago

TTFA (time to fall asleep) is such a huge efficiency drop in my opinion. Wish i could just have a wile e coyote style cartoonishly giant mallet I could bonk myself in the head with and just pass the fuck out immediately ya know, I got shot to do not lie around

rule by glizzyguzzler in c/196
view more: ‹ prev next ›

glizzyguzzler

joined 2 years ago