• 14 Posts
  • 18 Comments
Joined 1 year ago
cake
Cake day: June 22nd, 2023

help-circle
















  • Indeed, ZFS uses a percentage of RAM for cache. That amount is configurable. ZFS has a easier CLI, I’d recommend it for a NAS. And, allow me to say that I am not sure the comparison is between truenas scale and proxmox really. This thread reminds me of the usual distro wars when people don’t know about desktop environments (kde, gnome, xfce, etc.) as in: you can use ZFS in proxmox ;O






  • Note that this news are important, I only want to give some peace of mind to the many amateurs self-hosting out there ;) Don’t panic. Think about how such attacker might gain access. There’s always a practical difference between a vulnerability being there and how easily it is exploitable. Most CVEs are theoretical, and combining 4 of them would be even more difficult. From what I read, the vulnerability would be in the Dockerfile itself. Also, you need to weigh in the motivation such attacker would have. If you’re an average netizen is different from a multi billion dollar company website. So, the attacker would need to meet all those conditions described in the CVEs and even in that case, they might escape the container only to find it was installed in rootless mode, so they just have access as regular user. But that’s depending on how docker was installed.