Honestly lately I’ve been feeling like this must be the perfect time to move to the US.

Maybe the Panthers were smart enough to accept the help without bothering about the flag.

That ship has sailed, man…

No it has not - if it had, there'd be no need to shout down folk who disagree.

Not everyone buys into the inevitabilism. Why should I read code "author" didn't bother to write?

I always wondered, what is the practical advantage of running coreboot on my laptop?

The PROCHOT discussion in this thread is a good example. Lenovo stops making batteries, third party ones trigger artificial throttling, and the only fix is poking registers with a boot script. With coreboot you can just... fix it properly.

More broadly: faster boot times (sub-second POST is common), no vendor bloat or hidden phone-home behavior in the firmware, and you can actually audit what runs before your OS loads. That last one matters more than people think. Your BIOS has full access to everything on the machine before any OS-level security even starts.

If you don't want to use the base system (which docker is NOT the base system on Linux) then Bastille offers a pretty much identical workflow to docker, but built on FreeBSD jails: https://github.com/BastilleBSD/bastille

> I don’t know why i keep hearing about jails being better

Jails have a significantly better track record in terms of security.

I can delegate a ZFS dataset to a jail to let the jail manage it.

Do Linux containers have an equivalent to VNET jails yet? With VNET jails I can give the jail its own whole networking stack, so they can run their own firewall and dhcp their own address and everything.

You've been able to setup separate firewalls, network interfaces, IP addresses, etc. for probably 20 years using network namespaces. How do you think container networking is implemented? But you can also use it through other tools; for example, I use firejail to isolate a couple of proprietary desktop applications such that they cannot contact anything on my desktop (or network in general) except the internet gateway.

> If you don't want to use the base system (which docker is NOT the base system on Linux)

There are many ways to manage "containers" on linux. I might agree with the fact that docker is not the base system (although it really depends on what distro you're using).

But I might also use something like systemd-nspawn or systemd-machined (see https://wiki.archlinux.org/title/Systemd-nspawn or https://en.opensuse.org/Systemd-machined) to handle those.

> I can delegate a ZFS dataset to a jail to let the jail manage it.

I could probably do the same.

> Do Linux containers have an equivalent to VNET jails yet? With VNET jails I can give the jail its own whole networking stack, so they can run their own firewall and dhcp their own address and everything.

I'm not sure, but most likely yes. Maybe not through docker. Docker isn't the only way to run containers in GNU/Linux though.

Is there a docker-compose analogue in Bastille? I like being able to spin up an isolated local copy of my infrastructure, run integration tests, and then tear it all down automatically. I'd like to be able to do a similar thing with jails. I wonder if there's a straightforward way to achieve something similar with VNET jails?

Not that I'm aware of. FreeBSD did recently gain support for OCI containers and therefore has podman. I see podman-compose is in the ports tree, but I haven't tried it myself.

  https://freebsdfoundation.org/blog/oci-containers-on-freebsd/
  https://www.freshports.org/sysutils/podman-compose/

Sorry what? It's a 5 line configuration file to create a FreeBSD jail.

This is so good.

I have a perfectly working iPhone se 3rd gen that’s becoming unusable because the battery is work out after four years of daily use.

I don’t want to change the whole phone, but I’m pretty much forced to and turn it into ewaste.

External battery and transparent duct tape?

> Does Garmin charge $100 per year to developers?

as a consumer i couldn't give half a shit what developers get charged, to be honest

Yeah none of your concern, not like they will use you to recuperate their money.

Will they fix their shitty moderation?

If they don’t then they can die in bankruptcy for all I care.

Ironic to see this posted here, as YCombinator is the nesr from which Sam Altman originally spread his wings.

I’m keeping my chatgpt subscription though.

I think that rest and html could probably be already used for this purpose BUT html is often littered with elements used for visual structure rather than semantics.

In an ideal world html documents should be very simple and everything visual should be done via css, with JavaScript being completely optional.

In such a world agents wouldn’t really need a dedicated protocol (and websites would be much faster to load and render, besides being much lighter on cpu and battery)

> html could probably be already used for this purpose

You’re right, and it already is, and tools like playwright MCP can easily parse a webpage to use it and get things done with existing markup today.

> BUT html is often littered with elements used for visual structure rather than semantics.

This actually doesn’t make much of a difference to a tool like playwright because it uses a snapshot of the accessibility tree, which only looks at semantic markup, ignoring any presentation

> In such a world agents wouldn’t really need a dedicated protocol

They still do though, because they can work more better when given specific tools. WebMCP could provide tools not available on the page. Like an agent hits the dominoes.com landing page. The page could provide an order_pizza tool that the agent could interact with, saving a bunch of navigation, clicks and scrolling and whatnot. It calls the order_pizza tool with “Two large pepperoni pizzas for John at <address>”, and the whole process is done.