I once saw someone in the irc channel jokingly refer to Alpine as Alpine linux pine. Now when I goto the website, all my mind reads is Alpine Linux Pine Linux...

I tend to view the types of people who strongly identify and present themselves as straight to be people that are living in a state of near absolute hypocrisy. Their actions are often the opposite of what they say. This really spreads out and changes the people and culture around them.

When looking at modern masculinity, how often do these contradictions appear? So many men feel they must present themselves as strong and emotionless yet are quick to express explosive anger. It's as if anger does not exist as an emotion to them. But anger is an emotion.

Then while feeling hurt and angry, they will point to anyone else who feels their own hurt and anger and accuse those other people of being something less than a man. All while feeling the same types of emotions.

Dominance and submission is also an interesting part of the masculinity confusion. Men are often told or shown examples of men who are strong and independent. So they want to be strong and independent. And they say they are strong and independent.

Then they are told to be loyal and that they must respect their elders, especially the men. Now that strength and independence must submit to their elders. Everything they are told to be gets cancelled out by how they think they must act. They can scream in your face that they are men, they are strong and they are independent, yet cower at presence of a man who they see as someone with authority and power.

This view that I have of people who strongly see themselves as straight gets very weird and very uncomfortable when you start applying it to sex, sexuality and kinks. Think "virile, black stallion" or cuckoldry for example.

I've reached a point where I personally no longer view those who identify themselves as gay to be gay. They are simply people doing people things. Because they are simply people, nothing more, nothing less. Those who use the word gay as an attack are often everything they are afraid to being. Which is sad because there's nothing wrong with loving another person.

Living in such a constant state of hypocrisy is confusing. For everyone. To be a man, you are very much at a war with everyone including yourself. To be on the outside of masculinity, you are forced into a war with people who are at war with everyone including themselves. It's exhausting because this war is fueled by everyone else's time, energy and patience.

I spent 10 months trying to get fired from my last job in the trades. After dealing with lawyers and finishing with that part of my life, I cancelled my apprenticeship.

I've spent most of my life in manual labour or trade jobs and I can't stomach going back into these fields. The men I have to deal with in those fields are awful and they act so gross.

I could go forever about their shit behaviour. The lockdowns from 2020 amplified that shitty behaviour. It was unbearable. The shit they would say about women and the shit they would say to women were gross and fucked up.

These guys basically used their shitty attitude towards women as a way to gain attention from other men. It's weird and really, really gay in a gross, repressed and unattractive way.

Over the past few years I've come across some survival ebooks. The first bundle was from some random google drive link on reddit and the second bundle I got came from a humble bundle.

You can download them here: https://drive.proton.me/urls/QWA614FTX0#TXeqSBVzjzk5

Not as convenient as a physical book but it's something :)

Canada here, they usually stop by Toronto when they North American tours, so I make my way there :)

I got to see them twice since 2020. Worth it both times. Even made a good friend because of one of their concerts :)

D:

I got fixed a couple months ago. Best decision ever.

For nearly 40 years, I've been told the horrors of climate change. For nearly 40 years, I've watched climate change unravel. And now at nearly 40 years on this planet, I've reached a point where I am more concerned about immediate human activity affecting my life rather than the breakdown and collapse of our planet's environment.

At no point in my life has there ever been a desire to bring a new life into this horrifying existence.

Now if only those weird and miserable old men would stop calling me selfish for not having children. Their obsession with my genitals makes me uncomfortable.

I hate stuff. I hate receiving because too much stuff gives me anxiety. That anxiety over stuff makes giving just as difficult.

I prefer spending my time with people. Either by being there for them or helping them. While I generally don't like receiving help unless I specifically ask, I'll allow those with good intentions to help. I can put aside any feelings of annoyances because I know they will feel good being able to help do something for someone else.

My closest relationships have been built on simply being available for each other. Gifts have never had the same outcome from my experiences.

I used to think he was a big dumb dumb. Then January 6th happened and I quickly realized he was a dangerous idiot and I haven't been the same ever since.

I've been watching history repeat itself while I've been surrounded people who still act like Trump and his cult-like followers are still a bunch of silly dumb dumbs.

I'm too exhausted to have any words to say anymore.

I've finally figured out how to install frogcomposband in a docker container. It's a fork of a game called Angband that's played in a terminal window. Angband itself has a long history. Somewhere around 30 years if I remember correctly.

It's setting is closer to lord of the rings but it has the insane complexity of a pen and paper, dungeons and dragons type game. A huge amount of races and classes to play and even the option to play an impressive amount of different monsters or enemies.

I think what I'm enjoying about it is that the graphics are just coloured numbers, letters and symbols. The playable character is just the @ symbol. It leaves room for the imagination to fill in the blanks which feels very calming.

When I was going through my Baldur's Gate phase, I noticed my brain was in complete overdrive after playing a session. I think processing the crazy details in that game was too much for my brain.

Now when I shut off the game I'm not overwhelmed and I still get my role playing game fix. It's nice.

I had a former coworker come pick me up one day after work to go for sushi and catch up. I just got home from work and needed a shower.

Tried to get him to wait outside because it was a beautiful day. Nah, he wanted to chill in my room. First thing he did was call my room a jail cell...

I've upgraded since then. Now I have a bunch of pothos plants and a depressed chilli pepper plant I keep watering because this creepy, demonic little puking worm lives in there. Only seen it a few times but it's there. I throw bits of food in the pot to keep it happy :)

I hate flirting. I just don't understand it. It's this weird social dance that no one explains but expects people to understand. It all feels hypocritical that comes with unreasonable expectations.

The biggest source of frustration for me comes from the fact that I have to act in a way that says I am interested while not saying I am interested. That just does not work for me.

I don't flirt. I don't even try. I don't want to be with someone flirty because from my past experiences, flirty people are also not straight forward about other parts of their true selves.

Flirty people also misinterpret a lot of my actions as a result of me not understanding flirting as well. Many flirty people from my experiences have assumed I am flirting. I was just being nice. I was treating them like a person. Just like I treat family like people. And friends like people. And strangers like people.

As a not flirty person, the number of times people have pushed me up against a wall and kissed me, or just jump to kissing me has been way more than I ever expected out of life. Each time has been equally confusing. I wasn't flirting. I was just treating them how I wanted to be treated.

I have no advice to give but I have some thoughts to share from my life experiences. People like being treated like people. People who make mistakes. People who have their own thoughts and feelings. People who are themselves. I've made more genuinely close connections with people, intimate or not, by just treating people as people. And it's really something as simple as that. Also having a genuine smile helps quite a bit too. When I smile because I'm enjoying the moment, I notice that it draws people towards me. It's a type of energy that draws people in and it makes me feel even better about myself too.

I had the opportunity to live in Berlin for a year. I made friends with a group of Yemen students. All of these people had friends, family or relatives bombed to death. Over the course of 2 weeks, one person lost 3 relatives to the bombings...

These people were sent to Germany to study and be as far away as possible from the horrors at home. Away from friends, family, everyone.

I was told that after flying to somewhere near Yemen, it would have taken another 16 hours to travel by road to get home. Their parents refused them coming to visit because it was just too dangerous.

I don't know how they managed to hold their shit together and carry on even as their families were getting bombed back home.

It broke my heart and I felt powerless to even attempt to comfort them. I'm sure they felt a sense of powerlessness that's beyond anything I could understand at that time.

I got super lucky, someone created a restart policy for Podman just a week ago. It works without changing anything to my docker-compose.yml files, as long as the file states restart: always. Following Alpine's Wiki to install and setup Podman followed by the instructions on this Github Repository and everything works quite well on Alpine Linux.

I'll have to play around with Podman some more and give it time to see how it holds up, but so far it seems promising.

I've spent a few hours with Podman and I was able to get my reverse proxy and a couple smaller services running which is quite nice. I'm using Alpine Linux so there were some extra steps I had to follow but their wiki handles that pretty good. The only issue I need to figure out is how to auto start my services on a system restart since Podman seems to focus on Systemd development. This seems like a good start but I think I need to figure out how pods and containers work in Podman first.

I've only started learning this stuff not too long ago but I'm surprised how relaxed Docker is with port management. I was under the impression that docker is more secure because it's containerized. Even more surprising was how little documentation there is for how to secure Docker ports.

A couple weeks ago I stumbled on to the fact that Docker pretty much ignores your firewall and manipulates iptables in the background. The way it sets itself up means the firewall has no idea the changes are made and won't show up when you look at all the firewall policies. You can check iptables itself to see what docker is doing but iptables isn't easy or simple to work with.

I noticed your list included firewalld but I have some concerns about that. The first is that the firewall backend has changed from iptables to nftables as the default. That means the guide you linked is missing a step to change backends. Also, when changing back ends by editing /etc/firewalld/firewalld.conf there will be a message saying iptables is deprecated and will be removed in the future:

 undefined

    
# FirewallBackend
# Selects the firewall backend implementation.
# Choices are:
#	- nftables (default)
#	- iptables (iptables, ip6tables, ebtables and ipset)
# Note: The iptables backend is deprecated. It will be removed in a future
# release.
FirewallBackend=nftables


  

If following that guide works for other people, it may be okay for now. Although I think finding alternative firewalls for the future may be a thing to strongly consider.

I did stumble across some ways to help deal with opened docker ports. I currently have 3 docker services that all sit behind a docker reverse proxy. In this case I'm using Caddy as a reverse proxy. First thing to do is create a docker network, for example I created one called "reverse_proxy" with the command:

docker network create reverse_proxy

After that I add the following lines to each docker-compose.yml file for all three services plus Caddy.

 undefined

    
services:
    networks:
      - reverse_proxy

networks:
  reverse_proxy:
    external: true

  

This will allow the three services plus Caddy to communicate together. Running the following command brings up all your currently running. The Name of the container will be used in the Caddyfile to set up the reverse proxy.

docker container ls --format "table {{.ID}}\t{{.Names}}\t{{.Ports}}" -a

Then you can add the following to the Caddyfile. Replace any capitalized parts with your own domain name and docker container name. Change #### to the Internal port number for your docker container. If your ports in your docker-compose.yml look like "5000:8000" 5000: is the external port, :8000 is the internal port.

 undefined

    
SUBDOMAIN.DOMAINNAME.COM:80 {
        reverse_proxy DOCKER_CONTAINER_NAME:####
}

  

After starting the Caddy docker container, things should be working as normal, however the three services behind the reverse proxy are still accessible outside the reverse proxy by accessing their ports directly, for example Subdomain.domainname.com:5000 in your browser.

You can add 127.0.0.1: to the service's external port in docker-compose.yml to force those service containers ports to only be accessible through the localhost machine.

Before:

 undefined

    
    ports:
      - 5000:8000

  

After:

 undefined

    
    ports:
      - 127.0.0.1:5000:8000

  

After restarting the service, the only port that should be accessible from all your services should only be Caddy's port. You can check what ports are open with the command

netstat -tunpl

Below I'll leave a working example for Caddy and Kiwix (offline wikipedia)

Caddy: docker-compose.yml

 undefined

    
services:
  caddy:
    container_name: caddy
    image: caddy:latest
    restart: unless-stopped
    ports:
      - 80:80
      - 443:443
    networks:
      - reverse_proxy
    volumes:
      - ./Caddyfile:/etc/caddy/Caddyfile
      - caddy_data:/data
      - caddy_config:/config

volumes:
  caddy_data:
  caddy_config:

networks:
  reverse_proxy:
    external: true

  

Caddy: Caddyfile

 undefined

    
wiki.Domainname.com:80 {
        reverse_proxy kiwix:8080
}


  

Kiwix: docker-compose.yml (if you plan to use this setup, you MUST download a .zim file and place it in the /data/ folder. In this case /srv/kiwix/data) Kiwix Library .zim Files

 undefined

    
services:
  kiwix:
    image: ghcr.io/kiwix/kiwix-serve
    container_name: kiwix
    ports:
      - 127.0.0.1:8080:8080
    volumes:
      - /srv/kiwix/data:/data
    command: "*.zim"
    restart: unless-stopped
    networks:
      - reverse_proxy

networks:
  reverse_proxy:
    external: true

  

What I'm interested in from a firewall is something that offers some sort of rate limiting feature. I would like to set it up as a simple last line of defense against DDOS situations. Even with my current setup with Docker and Caddy, I still have no control over the Caddy exposed port so anything done by the firewall will still be completely ignored still.

I may try out podman and see if I can get UFW or Awall to work as I would like it to. Hopefully that's not to deep or a rabbit hole.

When it finally came to the firewall, after realizing I was working with docker containers and my brain said "no more rabbit holes, friend." Thanks for the information.

Also gufw is just a simple graphical user window that that's built on top of ufw. I was using VNC when I began learning all this and planned on using gfuw. By the time I finished the guide, I had become comfortable handling everything from the terminal alone. It's was just kinda there in the guide at that point.

That's good to know about docker. I ran into issues modifying docker-compose.yml files while a container was up so I just made it a habit to shut containers down before making changes. I can see using pull while a container is up being more important for places concerned about unnecessary downtime though.

I'll be using whitelists to manage federation in order to keep things small. Also I am only interested in allowing people in my local community to join since that's the goal I am working towards.

I am also interested in seeing how it does hold up in the future but it's not a permanent solution. It's why I went through the process of learning RSync so I can hopefully have a simpler data migration process and setup whenever that time comes.

I wanted to share the process for everyone since a lot of what's in the guide could be useful for anyone with more appropriate server solutions, especially regarding Cloudflare's services.

The Pi itself was convenient for learning since wiping everything to start over is simple and quick.

I haven't had a chance to really test how Lemmy and PieFed work long term on the Pi 5 yet. So far it's been quick and responsive and I'm still using wifi instead of a direct ethernet connection to the main modem. Ethernet is for the future. I still have more work to finish on the Pi 5.

The Pi 5 is also running Kiwix, Dufs for file sharing and a static page. All run through their own docker containers. With only me using it, everything seems to run just quite smoothly.

My goals with the Pi 5 aren't long term. I'm using it more as a working example until I can get better equipment for hosting but that involves other plans for a local project I want to put my energy into now.

You'll definitely want to use a reliable type of USB media storage with good read and write speeds. An SD card won't do well considering these webapps are database heavy and will be constantly writing stuff.

Lemmy easy deploy seems interesting, if you can get caddy in that script to handle TLS encryption certificates, It should do nicely. I struggled with Let's Encrypt and went a different route for now.