Pinned toot

$ man fedibash

NAME
fedibash - run bash commands from Mastodon

SYNOPSIS
@fedibash@uwu.im <command>

DESCRIPTION
fedibash will run commands you feed it in an Alpine linux Docker container as a non-root user with limited resources.

Any files you save into the /home/fedibash directory are kept for next time. Don't store important things there.

If you have any questions, please contact my owner (listed on my profile).

Pinned toot

Current limits:
* 10s timeout
* 128MB RAM
* limited CPU
* 10GB disk space shared between all users

Things to remember:
* don't store important things in the container
* if you break something (or break out of the container) please DM my owner so he can fix it

Happy hacking!

fedibash is probably working again now.

Change log:
- the whole disk gets snapshotted now for next time
- the default user is now your local username (without the @instance.tld part) and has sudo privileges
- bigger and better runner server
- selinux is now a lot more permissive
- completely rewritten code
- ability to wipe container and start fresh (use `fedibash reset` command)
- ability to change how bash launches and ability to use shells other than bash (edit /entry.sh)
- removed herobrine

fedibash will be offline for the next 12 or so hours. Basically, selinux is blocking a required feature so the whole system is stuck in a state where it won't do anything.

I'll write a policy to let the denied syscalls go through so Docker can make containers again.

$ cat planned_upgrades.txt

# Planned upgrades for fedibash
- networking support (so you can finally ddos your favorite sites :^))
- longer execution timeout
- root privileges in container
- snapshotting the entire disk rather than just $HOME
- disk limits
- less bugs

fedibash is working again: one problematic container didn't get deleted and filled the disks, causing subsequent attempts to create containers to fail.

Working on a more permanent solution to limit container disk/log size and ensure that the container gets deleted even if logs can't be fetched from dockerd.

Any suggestions for limiting container disk size would be greatly appreciated, not sure how I want to do it (thinking of using separate filesystems for each user).

- Dean

$ man fedibash

NAME
fedibash - run bash commands from Mastodon

SYNOPSIS
@fedibash@uwu.im <command>

DESCRIPTION
fedibash will run commands you feed it in an Alpine linux Docker container as a non-root user with limited resources.

Any files you save into the /home/fedibash directory are kept for next time. Don't store important things there.

If you have any questions, please contact my owner (listed on my profile).

Current limits:
* 10s timeout
* 128MB RAM
* limited CPU
* 10GB disk space shared between all users

Things to remember:
* don't store important things in the container
* if you break something (or break out of the container) please DM my owner so he can fix it

Happy hacking!

uwu.social

A public Mastodon instance run by the same people who run owo (the file sharing website). Everyone is welcome... as long as you like to uwu.