• 64 Posts
  • 587 Comments
Joined 1 year ago
cake
Cake day: July 2nd, 2023

help-circle






    1. For all the mentioned cases, if your firewall blocks incoming packets by default, no one can access it, no matter what is the source of the port being open.

    2. You don’t configure it on the docker level, at least if you care about outside connections. If you mean from your local computer to a docker container, by default you cannot connect, unless you expose the port to the system. If you mean from other docker containers, just create your own separate network to run the container in and even docker containers cannot access the ports.

    3. I usually use netstat -tulpn, it lists all ports, not only docker, but docker is included. docker ps should also show all exposed ports and their mappings.

    In general, all docker containers run on some internal docker network. Either the default or a custom one. The network’s ports don’t interfere with your own, that’s why you can have 20 nginx servers running in a docker container on the same port. When you bind a port in docker, you basically create a bridge from the docker network to your PC’s local network. So now anything that can connect to your PC can also connect to the service. And if you allow connection to the port from outside the network, it will work as well. Note that port forwarding on your router must be set up.

    So in conclusion, to actually make a service running in docker visible to the public internet, you need to do quite a few steps!

    • bind a port to your local host
    • have your local firewall allow connection to the port
    • have your router set up to forward connections on the port to your machine

    On Linux, local firewall is usually disabled by default, but the other two steps require you to actively change the default config. And you mention that all incoming traffic is dropped using UFW, so all three parts should be covered.


  • I mean, sure, but this could be the push to open architecture. Half the apps wouldn’t need recompiling anyway, only those containing native code.

    Realistically it could take 2-3 years for Qualcomm to switch to RISC-V (so 5 years because we all know how smooth such huge transitions are). That’s enough time for Google to fully support Android on RISC-V.

    IMO it’s now in Google’s hands, once they add support, interesting things are gonna happen. I could even see Arm going out of business, I’m sure Qualcomm would happily help others transition for a very fair fee to help get them out of business.

    I think with RISC-V being as supported as it is (meaning it’s nothing obscure, but has strong open source toolchain support), this might potentially be a very bad move for Arm.

    Anyway, I love it when corporate greed destroys corporations instead of humans for a change. And if open architecture gains traction thanks to that, well, all the better.




  • A number of games on GOG have DRM now

    Not single-player ones. Online multi-player itself is kind of a DRM and there really is no way to make it otherwise. Not for a company of GOG size, anyway. And I’d argue that even if Steam made some forced open-server requirement, they would be abandoned fairly quickly.

    They’ve also said they’d work on Linux support and that they’d open source Galaxy, but never did.

    As I said, not because the company is the best, but because you have access to the game files and can do whatever. I’m under no illusion that they are perfect, but IMO the no-DRM-installers are the single most consumer-friendly move any game store has done. And no one forces them to.





  • That just won’t work. First and foremost, I won’t be hosting illegal stuff, just so you can have your freedom. Think child porn and stuff. Happened multiple times on Lemmy and probably will happen again. If you haven’t seen it, your admin most likely has and dealt with it.

    And with stuff like Hexbear and other troll instances, I just don’t want to deal with tens of reports a day, I simply block them because they’re trolls.

    If you want that kind of freedom, you have to create your own. I’m not gonna spend a significant amount of time on reports that can be avoided. And definitely not going to prison.





  • That’s purely profit driven. The biggest difference to other corporations is that they’re privately owned, meaning they can pursue long-term strategies instead of short-term ones. Publicly traded companies have to pursue short term strategies because otherwise investors get itchy and want to sell. Doing something that costs money and will yield results in ten years is a big no-no for publicly traded companies.

    Everyone and their mother who makes any computer has to pay money to Microsoft because they put Windows on it. There are only a few outliers, most notably Apple and a few vendors who put Linux or no OS in there.

    Valve doesn’t pay them shit, meaning they can sell the device cheaper, thus getting more customers. That’s the immediate gain. When you provide a gaming OS that you want to offer to others, you’re also the one getting paid for providing support. That’s the long term profit.

    And through it all, as a nice bonus, they stopped being reliant on a single vendor and gained unbelievably great PR from a group of gamers.