toad.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mastodon server operated by David Troy, a tech pioneer and investigative journalist addressing threats to democracy. Thoughtful participation and discussion welcome.

Administered by:

Server stats:

273
active users

#xen

1 post1 participant0 posts today
Stefano Marinelli<p>I've never hidden my admiration for <a href="https://mastodon.bsd.cafe/tags/illumos" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>illumos</span></a>-based systems. I have a few setups based on <a href="https://mastodon.bsd.cafe/tags/OmniOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OmniOS</span></a> and <a href="https://mastodon.bsd.cafe/tags/SmartOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SmartOS</span></a>, and they're solid as a rock. I like them both: OmniOS is more "malleable", while SmartOS is more of a hypervisor like <a href="https://mastodon.bsd.cafe/tags/xcp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xcp</span></a>-ng or <a href="https://mastodon.bsd.cafe/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> - meaning you install it on the host and delegate everything else to the zones.</p><p>I also love <a href="https://mastodon.bsd.cafe/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FreeBSD</span></a> jails, but zones sometimes cover use cases that jails can't (and vice versa). For example, imposing RAM limits in jails works, but it effectively "denies more ram" to a process when it requests more memory. The end user doesn't see this directly. On illumos, the user sees everything. I have some `lx` zones with Debian and Virtualmin, and users have never noticed that they aren't really on <a href="https://mastodon.bsd.cafe/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a>. A free or top will show only the assigned RAM.</p><p>And that's one of the biggest problems with open-source operating systems: they all have something good, and I always feel the urge to use them all! 🙂</p><p><a href="https://mastodon.bsd.cafe/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.bsd.cafe/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IT</span></a> <a href="https://mastodon.bsd.cafe/tags/SysAdmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SysAdmin</span></a></p>
Dendrobatus Azureus<p>Please read the screen cap closely and also read the Alt text &amp; realize how much boxyBSD has blown up</p><p>600 plus VMS!!!</p><p><a href="https://mastodon.bsd.cafe/tags/BoxyBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BoxyBSD</span></a> <a href="https://mastodon.bsd.cafe/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>programming</span></a> <a href="https://mastodon.bsd.cafe/tags/Coding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Coding</span></a> <a href="https://mastodon.bsd.cafe/tags/Debian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Debian</span></a> <a href="https://mastodon.bsd.cafe/tags/GNU" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GNU</span></a> <a href="https://mastodon.bsd.cafe/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.bsd.cafe/tags/FediVerse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FediVerse</span></a> <a href="https://mastodon.bsd.cafe/tags/freeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freeBSD</span></a> <a href="https://mastodon.bsd.cafe/tags/HowTos" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HowTos</span></a> <a href="https://mastodon.bsd.cafe/tags/KVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KVM</span></a> <a href="https://mastodon.bsd.cafe/tags/Module" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Module</span></a> <a href="https://mastodon.bsd.cafe/tags/Development" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Development</span></a> <a href="https://mastodon.bsd.cafe/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.bsd.cafe/tags/OS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OS</span></a> <a href="https://mastodon.bsd.cafe/tags/ProxLB" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProxLB</span></a> <a href="https://mastodon.bsd.cafe/tags/LoadBalancer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LoadBalancer</span></a> <a href="https://mastodon.bsd.cafe/tags/Proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proxmox</span></a> <a href="https://mastodon.bsd.cafe/tags/Ansible" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ansible</span></a> <a href="https://mastodon.bsd.cafe/tags/Virtualization" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Virtualization</span></a> <a href="https://mastodon.bsd.cafe/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> <a href="https://mastodon.bsd.cafe/tags/Bash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bash</span></a> <a href="https://mastodon.bsd.cafe/tags/csh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>csh</span></a> <a href="https://mastodon.bsd.cafe/tags/zsh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>zsh</span></a> <a href="https://mastodon.bsd.cafe/tags/ksh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ksh</span></a> <a href="https://mastodon.bsd.cafe/tags/tksh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tksh</span></a></p>
Dendrobatus Azureus<p>An insightful article was written by <span class="h-card" translate="no"><a href="https://mastodon.gyptazy.com/@gyptazy" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gyptazy</span></a></span> <br>If this is of your interest, and you take the time to read, analyze between the lines what has been said, you will learn a lot from this</p><p>If you are passionate about Proxmox like I am, you will love to read these kind of posts, because they've been systematically, logically and relatively simply formulated, so that it's digestible for the end user of proxmox all the way up to the diehard programmer who hacks in Proxmox code</p><p><a href="https://mastodon.bsd.cafe/tags/BoxyBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BoxyBSD</span></a> <a href="https://mastodon.bsd.cafe/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>programming</span></a> <a href="https://mastodon.bsd.cafe/tags/Coding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Coding</span></a> <a href="https://mastodon.bsd.cafe/tags/Debian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Debian</span></a> <a href="https://mastodon.bsd.cafe/tags/GNU" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GNU</span></a> <a href="https://mastodon.bsd.cafe/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.bsd.cafe/tags/FediVerse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FediVerse</span></a> <a href="https://mastodon.bsd.cafe/tags/freeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freeBSD</span></a> <a href="https://mastodon.bsd.cafe/tags/HowTos" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HowTos</span></a> <a href="https://mastodon.bsd.cafe/tags/KVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KVM</span></a> <a href="https://mastodon.bsd.cafe/tags/Module" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Module</span></a> <a href="https://mastodon.bsd.cafe/tags/Development" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Development</span></a> <a href="https://mastodon.bsd.cafe/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.bsd.cafe/tags/OS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OS</span></a> <a href="https://mastodon.bsd.cafe/tags/ProxLB" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProxLB</span></a> <a href="https://mastodon.bsd.cafe/tags/LoadBalancer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LoadBalancer</span></a> <a href="https://mastodon.bsd.cafe/tags/Proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proxmox</span></a> <a href="https://mastodon.bsd.cafe/tags/Ansible" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ansible</span></a> <a href="https://mastodon.bsd.cafe/tags/Virtualization" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Virtualization</span></a> <a href="https://mastodon.bsd.cafe/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> <a href="https://mastodon.bsd.cafe/tags/Bash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bash</span></a> <a href="https://mastodon.bsd.cafe/tags/csh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>csh</span></a> <a href="https://mastodon.bsd.cafe/tags/zsh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>zsh</span></a> <a href="https://mastodon.bsd.cafe/tags/ksh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ksh</span></a> <a href="https://mastodon.bsd.cafe/tags/tksh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tksh</span></a></p>
argonaut<p><span class="h-card" translate="no"><a href="https://troet.cafe/@ralphruthe" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ralphruthe</span></a></span> eine hängende vm in einem <a href="https://bonn.social/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> in einem <a href="https://bonn.social/tags/proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>proxmox</span></a></p>
Kroc Camen<p>I wish this was easier :( I've got <a href="https://oldbytes.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> and <a href="https://oldbytes.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> dual-booting, that was the easy part. I want to get Windows running in a <a href="https://oldbytes.space/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> hypervisor, even though I've added the SSD drive to the VM (that took a lot of searching!), the machine still can't boot. If anybody could help, *please* do so, I've been fighting with adopting Linux for months now and I just want to get on with making things rather than getting stuff to work :|</p>
Brett Sheffield (he/him)<p>Xenophobia (n) — the irrational fear of Type 1 hypervisors</p><p><a href="https://chaos.social/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> <a href="https://chaos.social/tags/Virtualization" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Virtualization</span></a></p>
Freexian :debian:<p>Freexian is excited to announce that we are partnering with Invisible Things Lab to extend security support for Xen hypervisor version 4.17. <a href="https://www.freexian.com/blog/xen-4.17-lts/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">freexian.com/blog/xen-4.17-lts</span><span class="invisible">/</span></a></p><p><a href="https://hachyderm.io/tags/freexian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freexian</span></a> <a href="https://hachyderm.io/tags/debian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>debian</span></a> <a href="https://hachyderm.io/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> <a href="https://hachyderm.io/tags/lts" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lts</span></a> <a href="https://hachyderm.io/tags/hypervisor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hypervisor</span></a></p>
Radio Azureus<p><span class="h-card" translate="no"><a href="https://mastodon.social/@nixCraft" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nixCraft</span></a></span> </p><p>One of the hashtags _guru</p><p><a href="https://mastodon.social/tags/bash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bash</span></a> <a href="https://mastodon.social/tags/csh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>csh</span></a> <a href="https://mastodon.social/tags/ksh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ksh</span></a> <a href="https://mastodon.social/tags/sh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sh</span></a> <a href="https://mastodon.social/tags/parameters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>parameters</span></a> &nbsp;&nbsp;<a href="https://mastodon.social/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.social/tags/XEN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XEN</span></a> <a href="https://mastodon.social/tags/VM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VM</span></a> <a href="https://mastodon.social/tags/Boot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Boot</span></a> <a href="https://mastodon.social/tags/Proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proxmox</span></a> <a href="https://mastodon.social/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>programming</span></a>&nbsp;&nbsp;<a href="https://mastodon.social/tags/POSIX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>POSIX</span></a></p>
gyptazy<p>No April Fools' joke - the new <a href="https://mastodon.gyptazy.com/tags/ProxLB" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProxLB</span></a> release is scheduled for the 1st of April! Stay tuned!</p><p>ProxLB is an advanced <a href="https://mastodon.gyptazy.com/tags/loadbalancer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>loadbalancer</span></a> for <a href="https://mastodon.gyptazy.com/tags/Proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proxmox</span></a> clusters that brings in features like <a href="https://mastodon.gyptazy.com/tags/DRS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DRS</span></a> (known from <a href="https://mastodon.gyptazy.com/tags/VMware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VMware</span></a>), <a href="https://mastodon.gyptazy.com/tags/maintenance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>maintenance</span></a> mode and (anti-)#affinity groups.</p><p><a href="https://mastodon.gyptazy.com/tags/homelab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>homelab</span></a> <a href="https://mastodon.gyptazy.com/tags/virtualization" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>virtualization</span></a> <a href="https://mastodon.gyptazy.com/tags/VM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VM</span></a> <a href="https://mastodon.gyptazy.com/tags/virtualmachine" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>virtualmachine</span></a> <a href="https://mastodon.gyptazy.com/tags/ProxmoxVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProxmoxVE</span></a> <a href="https://mastodon.gyptazy.com/tags/Prox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Prox</span></a> <a href="https://mastodon.gyptazy.com/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> <a href="https://mastodon.gyptazy.com/tags/alternatives" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>alternatives</span></a> <a href="https://mastodon.gyptazy.com/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> <a href="https://mastodon.gyptazy.com/tags/coding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>coding</span></a> <a href="https://mastodon.gyptazy.com/tags/projects" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>projects</span></a> <a href="https://mastodon.gyptazy.com/tags/KVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KVM</span></a> <a href="https://mastodon.gyptazy.com/tags/qemu" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>qemu</span></a> <a href="https://mastodon.gyptazy.com/tags/guests" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>guests</span></a> <a href="https://mastodon.gyptazy.com/tags/workloads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>workloads</span></a> <a href="https://mastodon.gyptazy.com/tags/LXC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LXC</span></a> <a href="https://mastodon.gyptazy.com/tags/container" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>container</span></a></p>
Dendrobatus Azureus<p>While I'm busy configuring the VM I thought it would be good to get a nice taste of Italia<br>With the compliments of Sesto Giovanni I got some Birra Moretti from a friend of mine in Europe</p><p><span class="h-card" translate="no"><a href="https://mastodon.bsd.cafe/@stefano" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>stefano</span></a></span> </p><p><a href="https://mastodon.bsd.cafe/tags/bash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bash</span></a> <a href="https://mastodon.bsd.cafe/tags/csh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>csh</span></a> <a href="https://mastodon.bsd.cafe/tags/ksh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ksh</span></a> <a href="https://mastodon.bsd.cafe/tags/sh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sh</span></a> <a href="https://mastodon.bsd.cafe/tags/parameters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>parameters</span></a> &nbsp;&nbsp;<a href="https://mastodon.bsd.cafe/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.bsd.cafe/tags/XEN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XEN</span></a> <a href="https://mastodon.bsd.cafe/tags/VM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VM</span></a> <a href="https://mastodon.bsd.cafe/tags/Boot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Boot</span></a> <a href="https://mastodon.bsd.cafe/tags/Proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proxmox</span></a> <a href="https://mastodon.bsd.cafe/tags/freeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freeBSD</span></a> <a href="https://mastodon.bsd.cafe/tags/jails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>jails</span></a> <a href="https://mastodon.bsd.cafe/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>programming</span></a>&nbsp;&nbsp;<a href="https://mastodon.bsd.cafe/tags/POSIX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>POSIX</span></a></p>
Dendrobatus Azureus<p>From the photographs and the hashtags it must be obvious what I'm doing. Creating a virtual machine with which I will go into simulation mode to ride beautiful machines of absolute maximum Torque and Power</p><p><a href="https://mastodon.bsd.cafe/tags/bash" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bash</span></a> <a href="https://mastodon.bsd.cafe/tags/csh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>csh</span></a> <a href="https://mastodon.bsd.cafe/tags/ksh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ksh</span></a> <a href="https://mastodon.bsd.cafe/tags/sh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sh</span></a> <a href="https://mastodon.bsd.cafe/tags/parameters" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>parameters</span></a> &nbsp;&nbsp;<a href="https://mastodon.bsd.cafe/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.bsd.cafe/tags/XEN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XEN</span></a> <a href="https://mastodon.bsd.cafe/tags/VM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VM</span></a> <a href="https://mastodon.bsd.cafe/tags/Boot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Boot</span></a> <a href="https://mastodon.bsd.cafe/tags/Proxmox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Proxmox</span></a> <a href="https://mastodon.bsd.cafe/tags/freeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freeBSD</span></a> <a href="https://mastodon.bsd.cafe/tags/jails" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>jails</span></a> <a href="https://mastodon.bsd.cafe/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>programming</span></a>&nbsp;&nbsp;<a href="https://mastodon.bsd.cafe/tags/POSIX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>POSIX</span></a></p>
Juno the 35th 🏳️‍⚧️<p>Hm, bandcamp friday, is it?</p><p>I haven't written any new music this year yet, but I'm still proud of the album I published last year:</p><p><a href="https://cyllhu.bandcamp.com/album/initio-itineris" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cyllhu.bandcamp.com/album/init</span><span class="invisible">io-itineris</span></a></p><p>Genre - Cheerful Horror? Kitchen instruments? Primodal tunings? Strange new planets? Childish serious?</p><p><a href="https://kind.social/tags/xenharmonic" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xenharmonic</span></a> <a href="https://kind.social/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> <a href="https://kind.social/tags/microtonal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microtonal</span></a></p>
Alex<p><span class="h-card" translate="no"><a href="https://infosec.space/@MsDropbear42" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>MsDropbear42</span></a></span> the type-1/type-2 terminology should probably be retired at this point. <a href="https://mastodon.org.uk/tags/kvm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>kvm</span></a> exhibits a lot of type-2 behaviour (e.g. guests are processes to the kernel) although being <a href="https://mastodon.org.uk/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> it accesses the hardware directly. <a href="https://mastodon.org.uk/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> looks more like a typical type-1 layered <a href="https://mastodon.org.uk/tags/hypervisor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hypervisor</span></a> although a lot of <a href="https://mastodon.org.uk/tags/hardware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hardware</span></a> management is delegated to the <a href="https://mastodon.org.uk/tags/dom0" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dom0</span></a> guest. And that's before you look at the architectural differences between for example <a href="https://mastodon.org.uk/tags/x86" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>x86</span></a> and <a href="https://mastodon.org.uk/tags/arm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>arm</span></a> (with and without <a href="https://mastodon.org.uk/tags/vhe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vhe</span></a>).</p>
Pope Bob the Unsane<p>After taking the nickle tour of <a href="https://kolektiva.social/tags/Qubes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Qubes</span></a>, my hasty conclusion is that it is anti-<a href="https://kolektiva.social/tags/KISS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KISS</span></a>; there are seemingly many moving parts under the surface, and many scripts to grok to comprehend what is going on.</p><p>I plan to give it some more time, if only to unwrap how it launches programs in a VM and shares them with dom0's X server and audio and all that; perhaps it's easier than I think.</p><p>I also think <a href="https://kolektiva.social/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> is a bit overkill, as the claim is that it has a smaller kernel and therefore smaller attack surface than the seemingly superior alternative, <a href="https://kolektiva.social/tags/KVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KVM</span></a>. Doing some rudimentary searching out of identified / known VM escapes, there seem to be many more that impact Xen than KVM, in the first place.</p><p>Sure, the <a href="https://kolektiva.social/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> kernel may be considerably larger than the Xen kernel, but it does not need to be (a lot can be trimmed from the Linux kernel if you want a more secure hypervisor), and the Linux kernel is arguably more heavily audited than the Xen kernel.</p><p>My primary concern is compartmentalization of 'the web', which is the single greatest threat to my system's security, and while <a href="https://kolektiva.social/tags/firejail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>firejail</span></a> is a great soltion, I have run into issues maintaining my qutebrowser.local and firefox.local files tuned to work well, and it's not the simplest of solutions.</p><p>Qubes offers great solutions to the compartmentalization of data and so on, and for that, I really like it, but I think it's over-kill, even for people that desire and benefit from its potential security model, given what the threats are against modern workstations, regardless of threat actor -- most people (I HOPE) don't have numerous vulnerable services listening on random ports waiting to be compromised by a remote threat.</p><p>So I am working to refine my own security model, with the lessons I'm learning from Qubes.</p><p>Up to this point, my way of using a system is a bit different than most. I have 2 non-root users, neither has sudo access, so I do the criminal thing and use root directly in a virtual terminal.</p><p>One user is my admin user that has ssh keys to various other systems, and on those systems, that user has sudo access. My normal user has access to some hosts, but not all, and has no elevated privileges at all.</p><p>Both users occasionally need to use the web. When I first learned about javascript, years and years ago, it was a very benevolent tool. It could alter the web page a bit, and make popups and other "useful" things.</p><p>At some point, <a href="https://kolektiva.social/tags/javascript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>javascript</span></a> became a beast, a monster, something that was capable of scooping up your password database, your ssh keys, and probe your local networks with port scans.</p><p>In the name of convenience.</p><p>As a result, we have to take browser security more seriously, if we want to avoid compromise.</p><p>The path I'm exploring at the moment is to run a VM or two as a normal user, using KVM, and then using SSH X forwarding to run firefox from the VM which I can more easily firewall, and ensures if someone escapes my browser or abuses JS in a new and unique way, that no credentials are accessible, unless they are also capable of breaking out of the VM.</p><p>What else might I want to consider? I 'like' the concept of dom0 having zero network access, but I don't really see the threat actor that is stopping. Sure, if someone breaks from my VM, they can then call out to the internet, get a reverse shell, download some payloads or build tools, etc.</p><p>But if someone breaks out of a Qubes VM, they can basically do the same thing, right? Because they theoretically 'own' the hypervisor, and can restore network access to dom0 trivially, or otherwise get data onto it. Or am I mistaken?</p><p>Also, what would the <a href="https://kolektiva.social/tags/LXC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LXC</span></a> / <a href="https://kolektiva.social/tags/LXD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LXD</span></a> approach look like for something like this? What's its security record like, and would it provide an equivalent challenge to someone breaking out of a web browser (or other program I might use but am not thinking of at the moment)?</p>
Paco Hope #resist<p>If any <a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>homelab</span></a> folks have some spare disk space and bandwidth and want to help <a href="https://infosec.exchange/tags/resist" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>resist</span></a>, you can <a href="https://infosec.exchange/tags/selfhost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhost</span></a> an instance of <a href="https://wiki.archiveteam.org/index.php/ArchiveTeam_Warrior" rel="nofollow noopener" target="_blank">ArchiveTeam Warrior</a> as a VM.</p><p>The VM appliances are downloadable off of GitHub and then you just launch the VM and let it work.</p><p>If you use <a href="https://infosec.exchange/tags/xcp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xcp</span></a> as your <a href="https://infosec.exchange/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> hypervisor, and <a href="https://infosec.exchange/tags/xenorchestra" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xenorchestra</span></a> to manage it, you might think you can just give it the GitHub URL and import. Sadly, no. I got an error. But the VM is only 165M, so if you download it to your laptop and then upload it via the XO web interface, it's trivial to launch.</p>
Fabrice Flore<p>TIL that <a href="https://pouet.chapril.org/tags/xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>xen</span></a> is not dead and they have super kind people at the <a href="https://pouet.chapril.org/tags/vates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vates</span></a> booth at <a href="https://pouet.chapril.org/tags/fosdem" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fosdem</span></a> <a href="http://vates.tech" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">http://</span><span class="">vates.tech</span><span class="invisible"></span></a></p>
heise online English<p>VMware: Broadcom loses another major customer due to high costs</p><p>The decisive factor for the British cloud provider Beeks to switch from VMware to the open source solution OpenNebula was the high price increases.</p><p><a href="https://www.heise.de/en/news/VMware-Broadcom-loses-another-major-customer-due-to-high-costs-10187555.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&amp;utm_source=mastodon" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/en/news/VMware-Broadc</span><span class="invisible">om-loses-another-major-customer-due-to-high-costs-10187555.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&amp;utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Broadcom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Broadcom</span></a> <a href="https://social.heise.de/tags/CloudComputing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudComputing</span></a> <a href="https://social.heise.de/tags/CloudDienste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudDienste</span></a> <a href="https://social.heise.de/tags/KVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KVM</span></a> <a href="https://social.heise.de/tags/Server" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Server</span></a> <a href="https://social.heise.de/tags/Virtualisierung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Virtualisierung</span></a> <a href="https://social.heise.de/tags/VMware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VMware</span></a> <a href="https://social.heise.de/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>news</span></a></p>
iX Magazin<p>VMware: Broadcom verliert weiteren Großkunden wegen hoher Kosten</p><p>Ausschlaggebend für den Wechsel des britischen Cloud-Anbieters Beeks von VMware zu der Open-Source-Lösung OpenNebula waren die hohen Preissteigerungen.</p><p><a href="https://www.heise.de/news/VMware-Broadcom-verliert-weiteren-Grosskunden-wegen-hoher-Kosten-10186752.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&amp;utm_source=mastodon" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/VMware-Broadcom-</span><span class="invisible">verliert-weiteren-Grosskunden-wegen-hoher-Kosten-10186752.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&amp;utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Broadcom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Broadcom</span></a> <a href="https://social.heise.de/tags/CloudComputing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudComputing</span></a> <a href="https://social.heise.de/tags/CloudDienste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudDienste</span></a> <a href="https://social.heise.de/tags/KVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KVM</span></a> <a href="https://social.heise.de/tags/Server" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Server</span></a> <a href="https://social.heise.de/tags/Virtualisierung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Virtualisierung</span></a> <a href="https://social.heise.de/tags/VMware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VMware</span></a> <a href="https://social.heise.de/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>news</span></a></p>
Stephen Borrill<p>Because this is on <a href="https://justfollow.me.uk/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a> and NetBSD 9, the following {munged) patches are used. Not needed in NetBSD 10 because of MAXPHYS changes</p><p>+++ external/cddl/osnet/dist/uts/common/fs/zfs/zfs_ioctl.c<br>@@ -7172,6 +7172,7 @@</p><p> printf("WARNING: ZFS on NetBSD is under development\n");<br>+ printf("ZFS module compiled with MAXPHYS %d\n", MAXPHYS);</p><p>+++ sys/modules/zfs/Makefile.zfsmod<br>@@ -135,5 +135,6 @@<br>+CPPFLAGS+= -DMAXPHYS=32768</p>
txt.file<p>TIL: <a href="https://chaos.social/tags/btrfs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>btrfs</span></a> is longer part of Linux than <a href="https://chaos.social/tags/Xen" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xen</span></a></p><p>btrfs was merged into 2.6.29. Xen merged into 3.0.</p>