Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

245
active users

shakedown.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

#sysadmins

0 posts0 participants0 posts today
Public *
Tawanda :fedora:

A question for all the #selfhosting enthusiasts and #sysadmins out there:

I had a Go site on a VPS and recently decided to migrate to self-hosting Ghost on a Digital Ocean VPS (I was using Oracle before) and my site has become basically inaccessible. I checked the RAM usage in my admin and it's consistently above 90%. I have 1GB ram and figured I wouldn't need more since I don't get much traffic, but now everytime I try to open my site it takes forever to load.

What I don't understand is that, on the Oracle VPS, I not only had my Go site, but also had Caddy, Plausible for analytics with a #postgres DB and never had any issues. Now, all I have is the ghost site, mariadb, and caddy and nothing works.

Do I need more RAM or is this a DO thing? Both the Oracle and DO VPSes are hosted in the EU which is pretty far from here, to be fair. I do suspect it's a RAM issue because I can't even ssh into the VPS. When I try to open my site, the connection just loads until it eventually times out.

#linux #go #GhostCMS #nodejs

EDIT: adding the link in case someone wants to check it out, could just be my distance from the server

tawandamunongo.dev

Tawanda MunongoTawanda MunongoA software engineer trying to find the place where technology, philosophy, and story-telling meet.
Public
europlus :autisminf:

#Linux #SysAdmins #NetworkAdmins

Ubuntu 24.04 system with a publicly-routable external IP address.

For a given incoming UDP port (<1024, call it port x, I can’t change this), I want to forward that to localhost (or the ens3 interface) on another port (>1024, port y) so I can invoke QEMU as non-root and forward port y to the emulated system’s port x via slirp.

Is this doable?

I’ve tried heaps of nat prerouted examples, but haven’t yet gotten anything to stick.

Boosts appreciated!

#IPTables
Public
Kevin Karhan :verified:

@falcennial it's helpful for #sysadmins and anyone who is running their own #firewall (regardpess if WAF, hosted/managed or DIY/bare metal), as they can just pull that Feed-URL to (un)block stuff automatically...

  • I wished #Mastodon #developers would realize that supporting a Blocklist Feed is kinda crucial function as noome wants to spin up *yet another git just to diff&merge stuff because they only offer "add" and "replace" when it.comes to #CSV / #TSV input.
GitHubBlocklist Feed Support · Issue #28605 · mastodon/mastodonBy kkarhan
#Mastodon#developers#csv
Replied in thread
Public *
Kevin Karhan :verified:

@Saupreiss das bestreite ich auch nicht!

Wenn alle #Sysadmins ihre "#DueDiligence" bei #Updates gewaltet hätten, wäre all das nie passiert!

IMHO ist ja gerade jene #QA und 24/7 Support der Grund für ne gute Distro zu zahlen...

Nondeterministic ComputerMatthew Garrett (@mjg59@nondeterministic.computer)"Linux would have prevented this!" literally true because my former colleague KP Singh wrote a kernel security module that lets EDR implementations load ebpf into the kernel to monitor and act on security hooks and Crowdstrike now uses that rather than requiring its own kernel module that would otherwise absolutely have allowed this to happen, so everyone please say thank you to him
#microsoft#windows#crowdstrike
Replied in thread
Public
Kevin Karhan :verified:

@Cappyjax @WB2EEE @Zugschlus @elly

I disagree with your assessment to some extent, as on #Linux there's not much of a tolerace or even acceptance of #rootkits like #CorwdStrike for all the right reasons!

  • #Scareware like that has no legitimate reason to exist and the only place I've seen that is on #Windows because people distrusting #WindowsDefender and thus #Microsoft are unwilling to to what is evidently the correct solution and yeet Windows for good.

Cuz it's not about #Fanboyism, but a fact that most Windows - #Sysadmins (or rather decisionmakers for that matter) seem to be high on #Copium and refuse to take actual #consequences but accept the #Enshittification as a fact of life when it's not...

  • Or am I the only one who remembers the rightful backclash when #ads were shoved into #Ubuntu whilst on #Windows11 and #Windows10 people just seem to shrug their shoulders?

It's just that this entire shitshow would not have happened on #Linux because here we don't have an entire ecosystem of #ValueRemoving "#AntiVirus" bs being shoved on Desktops and Servers in the form of #Binaryblob #Kernelhacks!

MastodonCpyJx 🍉 (@Cappyjax@mastodon.social)@kkarhan@infosec.space @WB2EEE@mastodon.radio @Zugschlus@zug.network @elly@donotsta.re I'm a Linux fanboy but what you're saying are half-truths mixed with non sequiturs to make it seem like this issue could never happen on Linux. What happened to Windows/CrowdStrike can happen to _any_ system. Full stop. The only reason it didn't affect every Linux system is because the ecosystem isn't homogeneous. If they had all been on the same version that crashed, then **every single one** would have crashed. Good admin practice isn't exclusive to Linux.
#AntiVirus
Replied in thread
Public
Kevin Karhan :verified:

@WB2EEE @Zugschlus @elly Which only applied to a small subset of machines and almost all #Linux #sysadmins know to properly test stuff or at the very least have proper #backups, use #snapshots to test stuff and be able to #backroll stuff if not quickly setup stuff easily.

  • Again I blame both #CrowdStrike and #Microsoft because the first one made a #Rootkit and pushed it without proper #QA #testing and the latter one signed that shit and build an OS that doesn't easily allow for reproduceable and automated system installations!

Further proving my point in that the amount of issues would not have happened on Linux!

Nondeterministic ComputerMatthew Garrett (@mjg59@nondeterministic.computer)@james@bne.social my understanding is that that affected people still using the old kernel driver (eg, if your os is too old to have the new ebpf hotness)
Replied in thread
Public
John Abbe (aka Slow)

@evan @peterkaminski @brook @mark @emeraldsocial Evan: "Bayesian filtering..."

That line of thinking brings email servers to mind. My impression is the effort involved to keep one going robustly these days is beyond the reach of even some fairly knowledgeable and dedicated #sysadmins

Maybe what we most need is a metasystem to support learning/evolution of structures which can balance responsibilities of individual, community, and network dynamically over time?

(In a sense, the Internet. ;-)

ExploreLive feeds
About