It’s the multiple volumes that are throwing it.
You want to mount the drive at /media/HDD1:/media or something like that and configure Radarr to use /media/movies and /media/downloads as it’s storage locations.
Hardlinks only work on the same volume, which technically they are, but the environment inside the container has no way of knowing that.
I’ve not used dockge so it may be great but at least for this case portainer puts all the stack (docker-compose) files on disk. It’s very easy to grab them if the app is unavailable.
I use a single Portainer service to manage 5 servers, 3 local and 2 VPS. I didn’t have to relearn anything beyond my management tool of choice (compose, swarm, k8s etc)
How is being paid “from pushback to arrival” even vaguely legal?
I’ve not tried it but have been keep tabs.
The two main problems appear to still be ongoing PRs/issues; magazine/community sidebar content doesn’t update and doesn’t federate out at all to lemmy, and moderation actions don’t federate at all (any of the various types) - which is particularly problematic.
If only k/mbin federated better - I’d be all over it :(
Didn’t even think 4k80 was generally available yet?
You’ve not factored in egress costs. Which on Amazon can add up quite quickly.
There’s a couple of caveats with it, but I think neither are worse than your proposed flow.
Immich does support folders?
https://immich.app/docs/administration/storage-template/
With this you can store your photos in whatever structure you want.
Yes.
Docker will have only exposed container ports if you told it to.
If you used -p 8080:80 (cli) or - 8080:80 (docker-compose) then docker will have dutifully NAT’d those ports through your firewall. You can either not do either of those if it’s a port you don’t want exposed or as @[email protected] says below you can ensure it’s only mapped to localhost (or an otherwise non-public) IP.
Documentation people don’t read
Too bad people don’t read that advice
Sure, I get it, this stuff should be accessible for all. Easy to use with sane defaults and all that. But at the end of the day anyone wanting to using this stuff is exposing potential/actual vulnerabilites to the internet (via the OS, the software stack, the configuration, … ad nauseum), and the management and ultimate responsibility for that falls on their shoulders.
If they’re not doing the absolute minimum of R’ingTFM for something as complex as Docker then what else has been missed?
People expect, that, like most other services, docker binds to ports/addresses behind the firewall
Unless you tell it otherwise that’s exactly what it does. If you don’t bind ports good luck accessing your NAT’d 172.17.0.x:3001 service from the internet. Podman has the exact same functionality.
But… You literally have ports rules in there. Rules that expose ports.
You don’t get to grumble that docker is doing something when you’re telling it to do it
Dockers manipulation of nftables is pretty well defined in their documentation. If you dig deep everything is tagged and natted through to the docker internal networks.
As to the usage of the docker socket that is widely advised against unless you really know what you’re doing.
Did someone manage to grab the flatpak in a usb installable format? It’s no longer on flathub, boo.
“For example, if every time I post a new update on BlueSky, if I had to send my post to every single one of my followers’ repositories, that would be extremely inefficent”
Somewhat ironic to have this posted on and activitypub driven fediverse.
In nostr’s case, that’s tech bros and freedom of speech “absolutists”,
Don’t forget the crypto bros.
Just paid £650 out to get my 2007 Astra hatchback through an MOT.
It doesn’t get driven much so it makes zero sense to replace it. Even if I’m spending double that in a year to keep it on the road it’s still waaaaay cheaper than me paying for a “new” one. It’s got bodywork rust now though and it’s apparently really hard to find a place that’ll do repairs like that :(
But, the theory goes, you’re not supposed to be reliant on third parties as you should be in control of your own domain (or within a few degrees of the person who is).
Large instances are what are antithetical to decentralisation.
Of course, the reality of it is that, it just hasn’t worked out like that.
Activitypub makes it next to impossible to “move” an instance to a new domain.
Every post/comment/and user is uniquely identified using the domain. In the eyes of ActivityPub changing the domain just makes each of those things a completely new thing.
You can set up a new service at your new domain and potentially get most all your users to migrate but they’ll be leaving behind their entire histories and as a “new” fediverse user they’ll only be discoverable via the historical posts for as long as the original server is reachable.
All your followers would see it and sometimes you don’t want replies?