Won’t speak to Webstorm, but hard disagree when it comes to Rider. VSCode/Zed really fit into an entirely different category from Jetbrains IDE’s. Lightweight editors vs full fat development environments. There are use cases for each.
deleted by creator
90% sure wireguard (the VPN server) is going to need an open port if you want to connect from the outside.
It is and it isn’t. It’s super dependant on use case. They bill on operations, not bandwidth. Obviously if you are hosting video/audio to be streamed, that could mean massive savings.
FWIW: I’m running jellyfin and a whole host of other services on a Beelink with an Intel n95 and 8gb of ram. Runs like a champ.
Using Firefox mobile, everything works and is mostly performance 🤷♂️
The OP ruled out zig and rust already
deleted by creator
im a big fan of the nas device being single purpose. its life should only exist in fileserving. i have several redundant nas devices and then a big ol app server.
This is the way. Except my “big ol’ app server” is an n95 mini pc that sips power.
Because even if an attacker could gain access even as root he cannot modify system files.
Your comment was already from the position of if an attacker could gain root access. My responses were to that directly, and nothing else.
Your comment also contained
The filesystem itself is also read-only.
Which is what led to the further discussion of root making that not so.
I don’t believe that to be the intent of the OP’s comment, given their second sentence, but they are welcome to state otherwise. I just don’t want them thinking that an immutable distribution gives them some kind of bulletproof security that it doesn’t.
While you are correct, any system is compromised if you have root, so isn’t that irrelevant at that point?
The original context for the comment chain was:
Because even if an attacker could gain access even as root he cannot modify system files.
So no, it’s completely relevant.
Someone with root can run ostree admin unlock --hotfix to make /usr writable. Someone with root can also delete all restore points.
It would be strange for them to call it that if it actually means “completely irrelevant from a security perspective”.
See the comment by superkret.
An attacker escaping from a container can’t be system root as Podman runs rootless (without some other exploit or weak password).
That would be true of podman running anywhere, and is not unique to an immutable distribution.
The filesystem itself is also read-only.
You can change that real quick if you have root access.
Because even if an attacker could gain access even as root he cannot modify system files.
They 100% can.
The “down” was definitely edited after the fact.
Thanks! Not quite as wild as I was expecting (kind of surprised this was enough to push them to delete their account)
Do you have any sources for this?
They are for sure talking about the ARM servers from Oracle. You get 24gb of memory and 4 cpu cores that you can carve into virtual machines.
Issue is that the free stock is very limited, and there have been some claims of people having their free service resources reclaimed by Oracle.
Still, if you can get one, it is probably the best you can get for free.
As a C# developer on Linux, I wish this was more true than it is. Working on a multi project dotnet solution in VSCode is still far behind Visual Studio / Jetbrains Rider.
Its also worth pointing out that the more you add to VSCode, the slower it becomes. If you add the toolkits to make it compete with Jetbrains products, it isn’t nearly the same lightweight editor anymore.