Wonder what distro I should use if I set up a libvirt system instead.

Should be something stable but I dunno how sensitive virtualization is to age.

Like CentOS, sure it's probably nice and stable, but how much did one miss out on by having your hypervisors stuck on CentOS 7 from 2014 until quite recently.

@quad Definitely do not go with CentOS.

Alpine would be nice, I'm sure, but the lack of glibc may end up breaking stuff (or maybe not).

Hmm... Why not Ubuntu LTS?

@L1Cafe Ubuntu LTS seems sensible, but I just kind of hate Ubuntu because of Canonical. 18.04 switching to netplan was the final nail in the coffin and from then on I kind of just quit running Ubuntu on servers unless Debian was too outdated for things to function.
@tk @L1Cafe Debian is pretty chill on servers.

Though in today's "agile" (bleh) software environment many things don't work or are too fiddly to get working on Debian

@tk @quad Anything can indeed be agile if you install Docker. Docker is a blessing for me, honestly. I run tens of services, and I don't have to worry about manually updating them (through apt, yum, dnf, or else) anymore. I just have an Ansible playbook that shuts the Docker machines down while keeping the volumes intact, and fetches the latest Docker image from hub.docker.com, while reconnecting them to their volumes and starting all of them up.

It's pure bliss.

@L1Cafe @tk Docker is easy but it feels like such a god damn overkill solution to just keeping my server software updated.

i support containerization for quick deployment of test environments, temporary applications and isolation of certain components. But I absolutely despise seeing docker pretty much being used as a package manager

@quad @tk I think it adds a lot of stability, reproducibility, and security to a prod deployment.

For example, my Docker "master node" has like 3 or 4 networks that are isolated from each other, and allow services like MariaDB and such to talk to other servers. This way, all my databases are isolated from each other, and if a web service contains a vulnerability that allows the attacker to dump the databases, they won't see much from the other ones.

@L1Cafe @tk If you're using docker properly then yes.

What I hate is when instead of setting up software someone just pulls 20 docker containers to run Plex, SickRage, CouchPotato, Deluge and whatnot on their home server.

That's just Docker being used as a glorified package manager.

@crunklord420 @tk @quad To be fair, software engineering exists and very few companies seem to get it right. I don't understand why this is, but I suspect it's the same reason why Docker is not used properly either.

@L1Cafe @tk @quad actually it's about taking all the tech specializations and trying to get the most soy code-camper webdevs to do it instead.

And then everyone acts shocked when basically half the MongoDB instances are fully exposed with no-authentication requirements and hundreds of millions (possibly near a billion) of users information is stolen.
@crunklord420 @L1Cafe @tk That's just what happens when tech companies think sysadmins and developers are the same thing except developers are smarter
Follow

@quad @tk @crunklord420 My previous company hired me for sysadmin work. Their previous employees were maintaining all the server infrastructure, but their official title was Developer.

Let me tell you. It wasn't a pretty sight.

I mean, all things considered, it wasn't that terrible either. But I had to fix a lot of stuff. Not that I hated the job, anyway.

@L1Cafe @tk @crunklord420 Not sure how closely you follow me but I recently managed to convince my workplace to let me spend the money and resources to set up a proper linux environment based on Red Hat with external consultants available and some Ansible for automation.

About 2-3 years ago I took over some Linux servers "maintained" by the devs. The thing was a honeypot of everything from Java software that was two years out of date to LXC containers with postfix and SSLv3 enabled.

Even now I haven't managed to fix even half of them. So I'll be setting up a whole new proper Linux environment from scratch.
Sign in to participate in the conversation
Mastodon 🔐 privacytools.io

Fast, secure and up-to-date instance. PrivacyTools provides knowledge and tools to protect your privacy against global mass surveillance.

Website: privacytools.io
Matrix Chat: chat.privacytools.io
Support us on OpenCollective, many contributions are tax deductible!