Should be something stable but I dunno how sensitive virtualization is to age.
Like CentOS, sure it's probably nice and stable, but how much did one miss out on by having your hypervisors stuck on CentOS 7 from 2014 until quite recently.
@quad Definitely do not go with CentOS.
Alpine would be nice, I'm sure, but the lack of glibc may end up breaking stuff (or maybe not).
Hmm... Why not Ubuntu LTS?
@tk @quad Anything can indeed be agile if you install Docker. Docker is a blessing for me, honestly. I run tens of services, and I don't have to worry about manually updating them (through apt, yum, dnf, or else) anymore. I just have an Ansible playbook that shuts the Docker machines down while keeping the volumes intact, and fetches the latest Docker image from hub.docker.com, while reconnecting them to their volumes and starting all of them up.
It's pure bliss.
i support containerization for quick deployment of test environments, temporary applications and isolation of certain components. But I absolutely despise seeing docker pretty much being used as a package manager
@quad @tk I think it adds a lot of stability, reproducibility, and security to a prod deployment.
For example, my Docker "master node" has like 3 or 4 networks that are isolated from each other, and allow services like MariaDB and such to talk to other servers. This way, all my databases are isolated from each other, and if a web service contains a vulnerability that allows the attacker to dump the databases, they won't see much from the other ones.
@crunklord420 @tk @quad To be fair, software engineering exists and very few companies seem to get it right. I don't understand why this is, but I suspect it's the same reason why Docker is not used properly either.
And then everyone acts shocked when basically half the MongoDB instances are fully exposed with no-authentication requirements and hundreds of millions (possibly near a billion) of users information is stolen.
@quad @tk @crunklord420 My previous company hired me for sysadmin work. Their previous employees were maintaining all the server infrastructure, but their official title was Developer.
Let me tell you. It wasn't a pretty sight.
I mean, all things considered, it wasn't that terrible either. But I had to fix a lot of stuff. Not that I hated the job, anyway.
About 2-3 years ago I took over some Linux servers "maintained" by the devs. The thing was a honeypot of everything from Java software that was two years out of date to LXC containers with postfix and SSLv3 enabled.
Even now I haven't managed to fix even half of them. So I'll be setting up a whole new proper Linux environment from scratch.