dragonlock2/matthewtran.com
1
0
Fork 0
mirror of https://github.com/dragonlock2/matthewtran.com.git synced 2026-06-28 01:58:34 +00:00
Code Issues Packages Projects Releases Wiki Activity

add time machine support

Browse Source
This commit is contained in:
Matthew Tran
2025-02-21 18:39:33 -08:00
parent d693e31c85
commit ba62e62a59
6 changed files with 39 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files
README.md
+4
View File
@@ -45,3 +45,7 @@ Services deployed on [matthewtran.com](https://matthewtran.com).
## backup
Run `scripts/backup.py` and save the resultant `data.zip` somewhere. I should probably automate this.
## security
To protect against vulnerabilities, all services run as non-root users inside containers that are on separate networks by function and have all capabilities dropped. These non-root users have a UID that doesn't exist on the host and a GID that maps to their function. Hopefully, even in the event of a full container compromise and root escalation, there is little damage an attacker can do. The main security hole left is containers accessing the LAN and host, AppArmor might help with this.