[01:06] Is there any real security benefit to installing apps via flatpak vs a normal deb? [01:06] I see that the applications I normally use have "--device=all" and/or "--filesystem=host", which to my mind makes the sandboxing pointless. [01:58] I'm not aware of any, but I'm not the best person to ask on this [16:21] isn't the flatpak itself mounted to a RO fs? that is a tiny security benefit? [16:33] Who do I look like, Jorge? ;) [16:33] if only he was still on IRC.... [16:36] he all over youtube. leave YT comments. :p [16:41] heh [16:41] He's also on the Mastodon [17:09] huh https://linuxcontainers.org/lxd/ https://fosstodon.org/@brauner@mastodon.social/110662028046703437 [17:09] "As of yesterday, the #LXD project is no longer part of the Linux Containers project but can now instead be found directly under Canonical's control. [17:10] so wait... it is LXD only and not LXC, LXCFS, distrobuilder and ohter tools? [17:10] so weird. [17:27] Probably because LXD is one of the few things that doesn't suck coming from Canonical [17:27] so, naturally, they have to ensuck it. [17:28] enshitify [17:28] TIL that jrwren is on mastodon too [17:29] @jrwren@fosstodon.org [17:29] plz share your names. I need good peeps to follow [17:30] @greg@social.coop (I just followed you) [17:34] i follow you back. [17:35] @craigmaloney@octodon.social [17:35] I keep it difficult, like @greg. ;) [18:32] pretty sure lxc predates lxd by a couple years [18:33] ah yeah, the second post mentions it [19:04] well yes, but its the exact same team and people who build it. It is effectively the same project. AIUI [19:06] maybe I'm wrong. Maybe Stéphane Graber is the only one heavily involved in both. [19:07] cmaloney: https://www.youtube.com/watch?v=RpMMwc0Mn0Y [19:07] you see this? [20:30] jrwren: Yep. Haven't watched it yet but it's in my video pile [20:43] :) nice