Presuming you have not limited edge port 22 to one or two IPS and that you are not translating a high port to 22 internal, the danger is that you are allowing the entire internet to hammer away at your ssh. If you have this described setup, you will most definitely see the evidence of attempts to break in in your SSH endpoint and firewall logs.
Zero days for SSH do exist, so it’s just a matter of time before you’re compromised if you leave this open.
No it doesn’t. I’ve sold items to European buyers from my location in Canada.
We are now at the point where you are completely fabricating your responses, and therefore no productive outcome can be achieved here.
Have a better day.
Again, for the nth time, NO ONE IS ASKING FOR THAT. They are asking how flohmarkt works. YOU are (for some reason) insisting that we all want a centralized market.
I would say they are copying hyper-localized newspaper classifieds, including the hyper-localized aspect, which caused newspaper classifieds to stop being used by the overwhelming majority of people when alternatives like Craigslist, eBay, and even Facebook market came about.
Good reply, I was coming to that conclusion based on the same response from them on my example of buying from another area. It is very odd that anyone would place such limits on functionality on an internet-bound platform.
I’m having trouble understanding if this person is representative of flohmarkt or not, but either way, I don’t think they understand any of our questions or arguments.
You must be joking. Ebay does not now, nor has ever worked that way.
Come on.
but apparently people here in this comment thread think this is bad design 🙄
And on top of it, you are becoming belligerent to users, insisting they don’t know what they’re talking about.
They are local listings for buying used stuff that that you might have not even have known you want before browsing the listing.
That is not how I nor anyone I know uses our listings on Kijiji. I go to look for specific things i don’t want to buy new. I do not browse used stuff for sale. I’ve personally bought motorbikes 600km away because the search area has to be bigger for more niche items. I also set up the sale of a car to a guy 1800km away via kijiji.
I couldn’t do either of these using flohmarkt, so it isn’t really useful to me, federated or not.
No, not really.
I also had some issue figuring out how radicale works, bit now that I do have it setup, it “just works” and it does the job well.
I really don’t understand why that is so hard to grasp conceptually
That is quite clear from your insistence that you know what users want.
Decentralization is not the issue here. This is a design choice that doesn’t understand how the service will be used.
In the example of my country, Canada, let’s say I have two flohmarkt servers: east and west. To look for a certain make and model of car, I have to check my region first, then sign out, sign back into the other region?
Why would anyone continue to use this as a shopping mechanism?
It"s one thing to limit searches bases on geographic location of items, but I should be able to change that to look up items at a destination to which I’m travelling, or just to compare to my area.
Plus, I might be more willing to travel farther to get a used car than a loveseat.
This is def bad design.
Recommended method is run the service as non-root and non-reserved (over 1000). The radicale documents aren’t the best, but CalDAV and CarDAV aren’t the simplest standards to implement, nor do any of the big (ms, gmail) follow the “correct spec” correctly anyway.
For example, you have to manipulate an address book exported from Google before it can be imported into Radicale.
I don’t blame the dev, though. They are pretty much a one-man show and although radicale is a connector service you don’t interact with much, it’s crazy complicated.
Beard thing?
I didn’t see ansible as a solution here, which I use. I run docker compose only. Each environment is backed up nightly and monitored. If a docker compose pull/up and then image clean breaks a service, I restore from a backup that works and see what went wrong.
The developer of bcachefs, Kent Overstreet, has repeatedly failed to abide by the expectations of kernel release schedules, particularly the rc (release candidate) stage, which is supposed to freeze new features until next release.
Kent has open-air arguments with Linus Torvalds about not being able to develop the way he wants to, Linus Torvalds does not like wasting time discussing it with Kent.
IMO, Kent created this situation himself. He’ll be happier developing outside upstream anyway.
It should be noted that while some folks have commented that bcachefs was not ready for upstream, several kernel devs have a lot of respect for the technical quality of Kent’s work, so I think the argument of whether bcachefs is good or not good is separate from Kent’s behaviour as a kernel contributor.
Is your container isolated from your internal network?
If I were to compromise your container, I’d immediately pivot to other systems on your private network.
Why do the difficult thing of breaking out of a container when there’s a good chance I can use the credentials I got breaking in to your container to access other systems on your network?