HackerTrans
TopNewTrendsCommentsPastAskShowJobs

vamc19

no profile record

comments

vamc19
·3 jaar geleden·discuss
I find it interesting that the author thinks "invasive user fingerprinting" would stop with WEI. If you really believe ad networks are _only_ fingerprinting users to fight fraud and will stop doing it after WEI, I have a bridge to sell you.

How else are they going to learn more about me and shove ads that they think I care about?
vamc19
·4 jaar geleden·discuss
You are correct - I should be running chmod in the download stage and that is what I did before realizing `--chmod` existed. However, `--chmod` is still a valid solution.

The reason I did not stop with running chmod in the first stage is because this seemed like a common problem - what if I was ADDing a binary or a shell script directly from a remote source and I did not have a download stage?

I'm sure there are better ways to write that Dockerfile - I'm by no means an expert. It just so happens that I noticed this problem when the Dockerfile (it was from a different project. I was modifying it) was in this state and I had nothing better to do than ~yak shave~ investigate why the image size was a bit larger than I expected :)
vamc19
·4 jaar geleden·discuss
If I build an image using the Dockerfile in the blog post 10 days later, there is no guarantee that my application would work. The packages in Ubuntu's repositories might be updated to new versions that are buggy/no longer compatible with my application.

OP's suggestion is to build a separate image with required packages, tag it with something like "mybaseimage:25032022" and use it as my base image in the Dockerfile. This way, no matter when I rebuild the Dockerfile, my application will always work. You can rebuild the base image and application's image every X days to apply security patches and such. This also means I now have to maintain two images instead of one.

Another option is to use an image tag like "ubuntu:impish-20220316" (instead of "ubuntu:21.10") as base image and pin the versions of the packages you are installing via apt.

I personally don't do this since core packages in Ubuntu's repositories rarely introduce breaking changes in the same version. Of course, this depends on package maintainers, so YYMV.
vamc19
·5 jaar geleden·discuss
Well, they did offer to pay me $30 for limited data a couple of times.

They once offered to send me a Google Home Mini (retailed for ~$30 at the time) in exchange for my Spotify playlists. This was when YouTube Music launched.

Recently, they offered me $30 if I collect all the stamps in Google Pay's Spring Challenge. To get one of the rare stamps, I have to enroll my credit card in their cash back program, which I'm assuming is going to profile my purchase history.