GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Notices by Julio J. 🀲 (j3j5@hachyderm.io)

  1. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Saturday, 02-Nov-2024 10:03:05 JST Julio J. 🀲 Julio J. 🀲
    in reply to
    • Hrefna (DHC)

    @hrefna wow, I'm amazed that choice hasn't been revisited since, unbelievable

    In conversation about 7 months ago from hachyderm.io permalink
  2. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Saturday, 02-Nov-2024 09:41:11 JST Julio J. 🀲 Julio J. 🀲
    in reply to
    • Hrefna (DHC)

    @hrefna I'm sorry if this is a stupid question but, why in the hell do elections happen on a Tuesday instead of a Sunday?

    It looks to me like a decision made on purpose to make it harder for working ppl to vote, idk

    In conversation about 7 months ago from hachyderm.io permalink
  3. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Wednesday, 24-Apr-2024 17:57:19 JST Julio J. 🀲 Julio J. 🀲

    tl;dr: upgrade glibc on your servers!

    Summing it up, there's a vulnerability (CVE-2024-2961) on glibc that, apparently, can be used to get RCE on servers running PHP.
    It's recommended that you update glibc to a patched version.

    https://security-tracker.debian.org/tracker/CVE-2024-2961
    https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2024-2961

    There's an upcoming talk on May 10 where the researcher will explain how it was used to hack PHP servers.

    https://www.offensivecon.org/speakers/2024/charles-fol.html

    #PHP #glibc #iconv

    In conversation about a year ago from hachyderm.io permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Invalid Bug ID
    2. Domain not in remote thumbnail source whitelist: www.offensivecon.org
      Charles Fol | OffensiveCon
  4. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Friday, 29-Mar-2024 05:25:26 JST Julio J. 🀲 Julio J. 🀲
    in reply to
    • myrmepropagandist
    • Kit Rhett Aultman

    @roadriverrail @futurebird

    In conversation about a year ago from hachyderm.io permalink

    Attachments


    1. https://media.hachyderm.io/media_attachments/files/112/174/307/338/174/550/original/81ae7944e849bf85.png
  5. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Thursday, 03-Aug-2023 01:49:57 JST Julio J. 🀲 Julio J. 🀲
    in reply to
    • FediTips has moved!
    • Datavizzard
    • Remind Me

    @feditips @datavizzard I think @remindme is what you're looking for!

    In conversation Thursday, 03-Aug-2023 01:49:57 JST from hachyderm.io permalink
  6. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Tuesday, 01-Aug-2023 01:26:16 JST Julio J. 🀲 Julio J. 🀲
    in reply to
    • e(Ag)le

    @silvereagle

    In conversation Tuesday, 01-Aug-2023 01:26:16 JST from hachyderm.io permalink

    Attachments


    1. https://media.hachyderm.io/media_attachments/files/110/765/856/842/587/139/original/98ed8cf11adb5ef8.png
  7. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Wednesday, 07-Dec-2022 12:31:49 JST Julio J. 🀲 Julio J. 🀲
    in reply to

    OK, just for the record, I've found *a solution*. I don't like it and it does feel hacky, although otoh it doesn't feel too wrong.

    Add an extra initContainer with busybox and chown the shared volume with the desired uid and gid. It's ugly but it works. If nobody throws a big reason why I shouldn't be doing this, I'm going to leave it like this.

    Thanks for the boosts #hachyderm !

    Source https://discuss.kubernetes.io/t/write-permissions-on-volume-mount-with-security-context-fsgroup-option/16524

    In conversation Wednesday, 07-Dec-2022 12:31:49 JST from hachyderm.io permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: global.discourse-cdn.com
      Write permissions on volume mount with security context fsgroup option
      I’m trying to run a tomcat container in K8S with a non-root user, to do so I set User ‘tomcat’ with the appropriate permission in Docker Image. I have a startup script that creates a directory in /opt/var/logs (during container startup) and also starts tomcat service. #steps in Dockerfile #adding tomcat user and group and permission to /opt directory addgroup tomcat -g 1001 && \ adduser -D -u 1001 -G tomcat tomcat && \ chown -R tomcat:tomcat /opt #switch user User tomcat The pod runs fine in ...
  8. Embed this notice
    Julio J. 🀲 (j3j5@hachyderm.io)'s status on Wednesday, 07-Dec-2022 12:31:48 JST Julio J. 🀲 Julio J. 🀲

    So, let's see if #hachyderm or the further #Federation can give me a hand with some #kubernetes (#k8s).
    I've got 2 containers running on the same pod. One of them (nginx) run as root and the other (app) doesn't. I'm trying to have a shared volume between the 2 using an emptyDir, but when I try to copy files on initContainer using the non-root img, I get an error telling me "Operation not permitted" when trying to chgrp the volume. Can I change the ownership of the volume? securityContext? #help

    In conversation Wednesday, 07-Dec-2022 12:31:48 JST from hachyderm.io permalink

User actions

    Julio J. 🀲

    Julio J. 🀲

    Backend engineer, #PHP & #Laravel tinkerer, #BotMakerI like #openData #science #urbanism #bikes and other weird things.ES 🌎 @j3j5#GoodBots #BotsGüenos

    Tags
    • (None)

    Following 0

      Followers 0

        Groups 0

          Statistics

          User ID
          27791
          Member since
          15 Nov 2022
          Notices
          8
          Daily average
          0

          Feeds

          • Atom
          • Help
          • About
          • FAQ
          • TOS
          • Privacy
          • Source
          • Version
          • Contact

          GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

          Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.