Recent searches

No recent searches

Search options

Only available when logged in.
eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.

Administered by:

Server stats:

205
active users

eupolicy.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.1

#s3

0 posts0 participants0 posts today
*
Stefano Marinelli

Thanks to SeaweedFS, I've set up two replicas of the BSD Cafe's media. One is on a backup server (for disaster recovery purposes only, also containing the hourly zfs-autobackup backups), and the other is on a Raspberry Pi 4 running FreeBSD, which is one of my home backup servers - just one meter away from my desk.
I've also configured Nginx in a jail, so when I'm at home, the BSD Cafe's media is served directly from the local replica.
The performance is lightning fast.

#BSDCafe#SeaweedFS#S3
Brad L. :verified:

There's a lot talk about "ZeroDisk" infrastructure backed by S3. The pitch is "move your data from locally attached NVMe storage to S3 and your applications will scale easier and be more performant!"

Maybe I'm getting too old for this shit, but I swear to dog this is the 4th such cycle in my career:

1. NFS
2. iSCSI / Fibrechannel
3. Hadoop / HDFS
4. ZeroDisk with S3

Am I the only one that's like: "wait, move TBs of data to S3 from NVMe to increase performance? Are you high?"

It doesn't work, so you scale up. Now you're back to local NVMe "cache disks" running instances as expensive as the locally attached NVMe instances when you add those costs to your S3 bill. The performance is worse because of course it is.

It always comes back to the two hard problems in computer science: naming things, cache invalidation, and off-by-one errors. 😂

#zerodisk#s3#hadoop
*
Stefano Marinelli

OK, Minio has decided to drop all the useful GUI features from the open-source (CE) version, making them exclusive to the paid version. More, they'll only provide "security fixes for severe issues" and no new features/development.

Personally, I prefer software that doesn't offer a certain feature at all, rather than one that, at some point, removes it and reserves it for "paying" customers.
It almost feels like a betrayal, in my eyes.

It's probably time to move the #BSDCafe media over to Garage or Seaweedfs.

#S3#Minio#Garage
Sebastian Abshoff

Mein neuer Blog-Artikel ist online!

Ich zeige, wie Du Mastodon-Medieninhalte flexibel und einfach mit dem S3-kompatiblen Hetzner Object Storage in die Cloud auslagerst, inkl. Migration, Nginx-Konfiguration und Backup mit Synology DiskStation.

Ideal für alle, die mehr Skalierbarkeit und Unabhängigkeit wollen.

👉 Jetzt lesen: abshoff.dev/blog/2025/07/25/ma

@Mastodon @MastodonEngineering @hetzner

abshoff.devMastodon und Hetzner Object StorageSeit 2022 betreibe ich meine eigene Mastodon-Instanz auf einem Hetzner Cloud-Server. Um die Medieninhalte unabhängig vom Dateisystem des Servers zu halten, habe ich mich entschieden, den S3-kompatiblen Hetzner Object Storage als Objektspeicher zu nutzen. Dieser Artikel zeigt Dir, wie Du den Dienst einrichtest und welche Gedanken ich mir dazu gemacht habe.
#Mastodon#Hetzner#ObjectStorage
*
Chris Alemany🇺🇦🇨🇦🇪🇸

Ok #mastoadmin #selfhost #S3 aficionados. I don’t have any experience with object storage providers. I am looking to move my self-host mastodon account here from local storage on my 2007 #footimac to my account at leaseweb. Could you help me with the answers to their queries? I suggested, completely off the top of my head and without experience, i would need 1.5TB and low bandwidth. Not knowing if that makes any sense.

“ for a 1.5 TB provision with low bandwidth usage, we can provide an estimate once we have more context on access patterns, regions, and any specific requirements.”

Thanks for any help!
#askfedi #fedihelp
ping: @ai6yr

Stephan Lichtenauer | נח סתו

I don't know if anybody noticed #ZeroFS yet, but it seems there is a completely user space-implementation of #NFS and #blockstorage on top of #S3 #objectstorage: github.com/Barre/zerofs

Including a demo running #ZFS on top of it which essentially allows geo-redundant ZFS volumes: asciinema.org/a/728234 & github.com/Barre/zerofs?tab=re

I don't see no #FreeBSD port yet, but if that really works it would be absolutely awesome.

GitHubGitHub - Barre/ZeroFS: ZeroFS - The Filesystem That Makes S3 your Primary StorageZeroFS - The Filesystem That Makes S3 your Primary Storage - Barre/ZeroFS
#OpenZFS
München

„Kein Ersatzkonzept“: Mega-Chaos auf beliebter Bahnstrecke vor München bahnt sich an

Lamborghinis, Porsches und BMWs schieben sich Stoßstange an Stoßstange über die Bundesstraße 318 …
#Muenchen #Munchen #Munich #Deutschland #Deutsch #DE #Schlagzeilen #Headlines #Nachrichten #News #Europe #Europa #EU #München #Bahn #BayerischeRegionalbahn #Bayern #brb #Chaos #Deisenhofen #Feiern #Germany #Giesing #Holzkirchen #S3 #Seefeste #Sperrung #Tegernsee #TegernseerTal
europesays.com/de/245514/

München

„Kein Ersatzkonzept“: Neues Bahn-Chaos vor München droht

Lamborghinis, Porsches und BMWs schieben sich Stoßstange an Stoßstange über die Bundesstraße 318 zwischen Holzkirchen und War…
#Muenchen #Munchen #Munich #Deutschland #Deutsch #DE #Schlagzeilen #Headlines #Nachrichten #News #Europe #Europa #EU #München #Bahn #BayerischeRegionalbahn #Bayern #brb #Chaos #Deisenhofen #Feiern #Germany #Giesing #Holzkirchen #S3 #Seefeste #Sperrung #Tegernsee #TegernseerTal
europesays.com/de/243209/

Continued thread
Paco Hope #resist

If you made some kind of intercepting HTTP/HTTPS proxy (thinking of a #pentester use case here), you could make it search for these URLs in the streams of HTTP and HTML that are passing through the proxy. Copy down the full URLs and asynchronously issue your own requests for the same URLs and store your own copy of the resulting files. The end user still gets their copy and nobody can tell it's happening. You'd almost certainly be able to do this because the links would surely be valid at the time the proxy sees them, and would work if the proxy immediately issued its request for its own copy.

The only way to really detect this happening is for the bucket owner to look at the S3 object logs in CloudTrail and see more than 1 fetch of that URL. Of course, someone with network connectivity issues could issue the request more than once. But a systematic pattern of duplicate fetches would indicate hijinks. The end user can't detect this happening to them. But, of course, you're MitM'ing their internet connection, so that could be detected.

#AWS #S3 #security #pentest
4/end

Continued thread
*
Paco Hope #resist

If you know how these things work, I haven't told you anything new or useful yet. Maybe I won't. But the thing I think is important and frequently overlooked is that expiration time. Too short (5 seconds) and your user might not click the link before it expires. Too long (86400 seconds, i.e., one day) and this file is available far longer than you intended.

So looking at the X-Amz-Expires header in #AWS #S3 is a good #security thing, especially if you're doing a #pentest . Those URLs can be passed from device to device (e.g., you can Slack it to a colleague or SMS it to a friend and it will work). So you want to counsel anyone who uses them to try hard to tune the expiration as short as is reasonably practical. That expiration is all of the security control on that link.

[edit: I left out something important]
I see these URLs with 86400 as the expiration time a lot and often. If you're a developer, look at what you're setting them to. If you're a #pentester, this is a thing to warn your customer about.

3/

TrendingLive feeds
About