"Capabilities are—at least in theory—a nice idea: divide the privileges of root into small pieces so that a process can be granted just enough power to perform specific privileged tasks. "

"The key point from the beginning of this article is small pieces, and it's here that the Linux capabilities implementation has gone astray."

#blogshare

https://lwn.net/Articles/486306/

"Capabilities are—at least in theory—a nice idea: divide the privileges of root into small pieces so that a process can be granted just enough power to perform specific privileged tasks. "

"The key point from the beginning of this article is small pieces, and it's here that the Linux capabilities implementation has gone astray."

#blogshare

https://lwn.net/Articles/486306/

"All that hard work paid off. With the help of a video, the album went like hotcakes! They sold a quarter million copies!"

"Here is the math that will explain just how fucked they are:"

#blogshare

https://thebaffler.com/salvos/the-problem-with-music

"All that hard work paid off. With the help of a video, the album went like hotcakes! They sold a quarter million copies!"

"Here is the math that will explain just how fucked they are:"

#blogshare

https://thebaffler.com/salvos/the-problem-with-music

i found a good blog post explaining how to use systemd socket units and systemd socket proxy to automatically start a podman quadlet container on the first connection and stop it after some idle period

#blogshare #podman #quadlet #quadlets #systemd #homelab #selfhost

https://web.archive.org/web/20250726014034/https://thinkaboutit.tech/posts/2025-07-20-adhoc-containers-with-systemd-and-quadlet

i found a good blog post explaining how to use systemd socket units and systemd socket proxy to automatically start a podman quadlet container on the first connection and stop it after some idle period

#blogshare #podman #quadlet #quadlets #systemd #homelab #selfhost

https://web.archive.org/web/20250726014034/https://thinkaboutit.tech/posts/2025-07-20-adhoc-containers-with-systemd-and-quadlet

found a good blog post explaining how to use systemd socket units and systemd socket proxy to start a podman quadlet container on first connection and stop after some idle period

#blogshare

https://web.archive.org/web/20250726014034/https://thinkaboutit.tech/posts/2025-07-20-adhoc-containers-with-systemd-and-quadlet

found a good blog post explaining how to use systemd socket units and systemd socket proxy to start a podman quadlet container on first connection and stop after some idle period

#blogshare

https://web.archive.org/web/20250726014034/https://thinkaboutit.tech/posts/2025-07-20-adhoc-containers-with-systemd-and-quadlet