six demon bag

Wind, fire, all that kind of thing!


Run a time server in an LXC container

Running a network time server in an LXC container normally doesn't work even if you run the container in privileged mode. The reason is that containers drop certain capabilities upon startup for security reasons (sys_module, mac_admin, mac_override, sys_time).

See more ...

Posted 21:38 [permalink]


Firefox extensions disabled due to expired intermediate CA certificate

As most people probably know by now Mozilla fucked up the certificate chain for Firefox extensions. Great. And their proposed (temporary) fix is "just enable telemetry for us, and you'll probably get the fix in the next couple hours". Let me think about that for a moment ...

See more ...

Posted 12:59 [permalink]