I was recently attempting to troubleshoot why I couldn't get a friend's code to run on my Debian 12 system. The file in question, libc.so.6 existed, but his program was giving me an error that it didn't.

So I went looking for how to get it working and I found THIS blog by https://hachyderm.io/@bbatsov.

The command I was looking for was:

$ cd /usr/lib/x86_64-linux-gnu
$ dkpg -S libc.so.6

Which showed me it was owned by libc6:amd64.

I think ran an apt info on that package and got the following:

apt info -a libc6
Package: libc6
Version: 2.36-9+deb12u9
Priority: optional
Section: libs
Source: glibc
Maintainer: GNU Libc Maintainers <debian-glibc@lists.debian.org>
Installed-Size: 13.3 MB
Depends: libgcc-s1
Recommends: libidn2-0 (>= 2.0.5~)
Suggests: glibc-doc, debconf | debconf-2.0, libc-l10n, locales, libnss-nis, libnss-nisplus
Breaks: aide (<< 0.17.3-4+b3), busybox (<< 1.30.1-6), chrony (<< 4.2-3~), fakechroot (<< 2.19-3.5), firefox (<< 91~), firefox-esr (<< 91~), gnumach-image-1.8-486 (<< 2:1.8+git20210923~), gnumach-image-1.8-486-dbg (<< 2:1.8+git20210923~), gnumach-image-1.8-xen-486 (<< 2:1.8+git20210923~), gnumach-image-1.8-xen-486-dbg (<< 2:1.8+git20210923~), hurd (<< 1:0.9.git20220301-2), ioquake3 (<< 1.36+u20200211.f2c61c1~dfsg-2~), iraf-fitsutil (<< 2018.07.06-4), libgegl-0.4-0 (<< 0.4.18), libtirpc1 (<< 0.2.3), locales (<< 2.36), locales-all (<< 2.36), macs (<< 2.2.7.1-3~), nocache (<< 1.1-1~), nscd (<< 2.36), openarena (<< 0.8.8+dfsg-4~), openssh-server (<< 1:8.1p1-5), python3-iptables (<< 1.0.0-2), r-cran-later (<< 0.7.5+dfsg-2), tinydns (<< 1:1.05-14), valgrind (<< 1:3.19.0-1~), wcc (<< 0.0.2+dfsg-3)
Replaces: libc6-amd64
Homepage: https://www.gnu.org/software/libc/libc.html
Tag: role::shared-lib
Download-Size: 2,757 kB
APT-Manual-Installed: yes
APT-Sources: http://deb.debian.org/debian bookworm/main amd64 Packages
Description: GNU C Library: Shared libraries
 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.

Package: libc6
Version: 2.36-9+deb12u7
Priority: optional
Section: libs
Source: glibc
Maintainer: GNU Libc Maintainers <debian-glibc@lists.debian.org>
Installed-Size: 13.3 MB
Depends: libgcc-s1
Recommends: libidn2-0 (>= 2.0.5~)
Suggests: glibc-doc, debconf | debconf-2.0, libc-l10n, locales, libnss-nis, libnss-nisplus
Breaks: aide (<< 0.17.3-4+b3), busybox (<< 1.30.1-6), chrony (<< 4.2-3~), fakechroot (<< 2.19-3.5), firefox (<< 91~), firefox-esr (<< 91~), gnumach-image-1.8-486 (<< 2:1.8+git20210923~), gnumach-image-1.8-486-dbg (<< 2:1.8+git20210923~), gnumach-image-1.8-xen-486 (<< 2:1.8+git20210923~), gnumach-image-1.8-xen-486-dbg (<< 2:1.8+git20210923~), hurd (<< 1:0.9.git20220301-2), ioquake3 (<< 1.36+u20200211.f2c61c1~dfsg-2~), iraf-fitsutil (<< 2018.07.06-4), libgegl-0.4-0 (<< 0.4.18), libtirpc1 (<< 0.2.3), locales (<< 2.36), locales-all (<< 2.36), macs (<< 2.2.7.1-3~), nocache (<< 1.1-1~), nscd (<< 2.36), openarena (<< 0.8.8+dfsg-4~), openssh-server (<< 1:8.1p1-5), python3-iptables (<< 1.0.0-2), r-cran-later (<< 0.7.5+dfsg-2), tinydns (<< 1:1.05-14), valgrind (<< 1:3.19.0-1~), wcc (<< 0.0.2+dfsg-3)
Replaces: libc6-amd64
Homepage: https://www.gnu.org/software/libc/libc.html
Download-Size: 2,758 kB
APT-Sources: http://security.debian.org/debian-security bookworm-security/main amd64 Packages
Description: GNU C Library: Shared libraries
 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.

This told me that my libc6 was version 2-36, but his application was complaining it needed 2-38 or 2-39. While I didn't get the issue resolved, I did learn about dpkg and more about apt.

Contact

Email – ozoned@ozoned.net Social – https://social.ozoned.net/@ozoned Matrix – https://matrix.to/#/#the-ozoned:matrix.org Stream – https://stream.ozoned.net Peertube – https://video.firesidefedi.live/@ozoned WriteFreely – https://write.firesidefedi.live/@ozoned Ko-Fi – https://ko-fi.com/ozoned

Fireside Fedi

Livestream – https://stream.firesidefedi.live VODs – https://video.firesidefedi.live/a/firesidefedi Microblog – https://social.firesidefedi.live/@firesidefedi Blog – https://write.firesidefedi.live/firesidefedi/ Podcast – https://audio.firesidefedi.live Calendar of Events – https://events.firesidefedi.live Lemmy – https://lemmy.world/u/firesidefedi Lemmy Community – https://lemmyworld/c/firesidefedi Email – firesidefedi@firesidefedi.live

So while I was learning about Terraform today, the tutorial mentioned that S3 bucket names must all be unique. He acted like this wasn't a big deal and I was just in absolute shock by this.

If the tutorial is to be believed, AWS has like 90% of the market. I couldn't believe that Amazon would lump all of the buckets together, essentially making it a necessity that customers have to create their own unique IDs. Surely the lecturer was mistake right?

I went and found this doc and was appalled to see this:

Important

Bucket names must be unique across all AWS accounts in all the AWS Regions within a partition. A partition is a grouping of Regions. AWS currently has three partitions: aws (commercial Regions), aws-cn (China Regions), and aws-us-gov (AWS GovCloud (US) Regions).

A bucket name can't be used by another AWS account in the same partition until the bucket is deleted. After you delete a bucket, be aware that another AWS account in the same partition can use the same bucket name for a new bucket and can therefore potentially receive requests intended for the deleted bucket. If you want to prevent this, or if you want to continue to use the same bucket name, don't delete the bucket. We recommend that you empty the bucket and keep it, and instead, block any bucket requests as needed.

S3 is broken down into Commercial, China, and US Gov. If you're in one of those, then your bucket name HAS to be unique.

So say I spin up a S3 bucket and called it SuperSecretEncryptionKeys in the Commercial instance. No one else can have that name. That's fine. It's mine.

If I delete that bucket, anyone can take that name. Understood.

Here's the issue, if someone accidentally, in a gigantic organization, deletes a bucket, but doesn't delete anything referencing that bucket then ANYONE can take the name and start serving data from that bucket.

If a bad actor gets access they can delete your bucket and start serving the same name from their bucket.

Your site looks like it's up, your data looks like it's accessible. But yet you've been compromised and the person in the background is controlling the data in that bucket.

Someone please tell me I'm wrong, but this sounds absolutely insane to me.

Sure this can happen with DNS, right? You can only have one write.firesidefedi.live. But we have open systems in plan to help combat forgetting to renew your certs, renew your domains, getting back control, etc.

This is Amazon basically saying “we put minimal effort into this, it's your responsibility.” Amazon. Who owns 90% of this market, isn't concerned with this.

I imagine that if some large corp had an issue, Amazon would jump up and help. But if a mom & pop shop had an issue? Yeah, redirect all your code to your correct bucket, but even before that, good luck even figuring it out.

This is absolutely insane to me, and yet ANOTHER example of how this shit is NOT better, despite what everyone thinks.

I don't personally use an Amazon S3 bucket, but I do use a Hetzner S3 bucket to host my Peertube VODs. I just hope Hetzner has better systems set in place than this.

Contact

Email – ozoned@ozoned.net Social – https://social.ozoned.net/@ozoned Matrix – https://matrix.to/#/#the-ozoned:matrix.org Stream – https://stream.ozoned.net Peertube – https://video.firesidefedi.live/@ozoned WriteFreely – https://write.firesidefedi.live/@ozoned Ko-Fi – https://ko-fi.com/ozoned

Fireside Fedi

Livestream – https://stream.firesidefedi.live VODs – https://video.firesidefedi.live/a/firesidefedi Microblog – https://social.firesidefedi.live/@firesidefedi Blog – https://write.firesidefedi.live/firesidefedi/ Podcast – https://audio.firesidefedi.live Calendar of Events – https://events.firesidefedi.live Lemmy – https://lemmy.world/u/firesidefedi Lemmy Community – https://lemmyworld/c/firesidefedi Email – firesidefedi@firesidefedi.live

To give a history of myself, I've been a Linux nerd for a long time. When I was young I was entranced by computers. I would sit for hours writing useless basic on my father's Tandy TRS-80. It was his because he'd take it with him when he went out of town. It was a portable version.

Then we got a real computer at home and I was amazed by it. I'd play on it constantly. Games mostly, but back in the late '80's early '90's getting anything to run required a basic understanding of Dos and eventually Windows 3.11.

That eventually evolved to Windows 95, 98, etc. I was often super frustrated that when something would break with my computer that I'd have to call the manufacturer just to figure out which driver was the correct set of random numbers and letters in order to get my hardware working after a reinstall of Windows.

I always knew there had to be something better. In the late '90's I bought a boxed copy of Slackware from my local Circuit City. I could never get it to run, because I didn't know what half the values were even referencing and probably still today couldn't figure it out.

I then saw a Red Hat Linux boxed copy and figured I'd try again. I easily got it running on an old machine I had. Then that was it. I didn't know what to do with it.

Games wouldn't run on it. Every application I was taught in school wouldn't run on it. So it was fun, but personally for me, it was useless.

Jump to 2007 and I was about to graduate with my bachelor's degree in Criminal Justice. I decided that games weren't a necessity and I'd be willing to give them up to be free of Windows.

It was an absolutely mesmerizing experience. Everything I knew was basically useless and I had to relearn everything. I absolutely loved it.

One day while I was at college, they were being hit by a bad virus that was flying around the network. A friend said I should shut down my laptop and I just laughed and said I wouldn't be affected.

I had fallen in love with Linux. I graduated in 2008 right as the market crashed and I decided to pivot back into computers and went for a Master's degree in Computer Information Systems. I wanted Linux to be my career.

I've been on Linux since that time in 2007. I've given my life to learning as much as I can about it, and I still love it.

Now I'm at the Federal Reserve in IT, and I feel absolutely useless and so under valued. I'm in a group that doesn't do much, but we're supposedly Sys Admins.

When I asked my manager the best way I could contribute he recommended I learn Terraform. Sure, why not? I had learned Ansible while at Red Hat, how hard can it be.

So I've been looking at Terraform, learning on acloud.guru, and honestly, I absolutely despise it.

I have to learn yet another new language, that pulls runners from Terraform's repository, that aren't even supported by the vendor, to spin up on AWS, just to run some code.

The latest Terraform lesson had us using Docker. So I'm writing Terraform (a new language to me), to pull a Docker runtime (that isn't supported by Docker, but is on Terraform's repo), to pull a Docker image (on Docker's repo), to run on AWS (which we have no control over), to run some code.

This screams to me that no one values a sys admin. Everyone just wants to run the code and not be responsible for managing their systems.

It's a very sad state I've found myself in. I absolutely hate this. I've wanted to surround myself with open and free tech and be able to dig in to the deep levels of how it works.

Instead I've found myself paid very well, to do very little, and I honestly hate it. I hate where this career is going. This is just another example of we'll pay for everything and own nothing.

We don't control the Docker images. We don't control the Terraform providers (aka runners is what I think of them as). We don't control the hardware.

With SAS we don't control the software.

If a bad actor inserts themselves into ANY of these levels, we won't have a clue. We own nothing and we're supposed to be excited for technology?

This just says to me that sys admins aren't valued and that code is king.

I'm just an old man yelling at the Cloud. Very tired of this shit.

This is why I love the Fediverse. I can run my own stuff and take responsibility for me. I can own my content. Own my software. Own my digital identity.

I'll keep moving forward, but holy shit things have to change.

Contact

Email – ozoned@ozoned.net Social – https://social.ozoned.net/@ozoned Matrix – https://matrix.to/#/#the-ozoned:matrix.org Stream – https://stream.ozoned.net Peertube – https://video.firesidefedi.live/@ozoned WriteFreely – https://write.firesidefedi.live/@ozoned Ko-Fi – https://ko-fi.com/ozoned

Fireside Fedi

Livestream – https://stream.firesidefedi.live VODs – https://video.firesidefedi.live/a/firesidefedi Microblog – https://social.firesidefedi.live/@firesidefedi Blog – https://write.firesidefedi.live/firesidefedi/ Podcast – https://audio.firesidefedi.live Calendar of Events – https://events.firesidefedi.live Lemmy – https://lemmy.world/u/firesidefedi Lemmy Community – https://lemmyworld/c/firesidefedi Email – firesidefedi@firesidefedi.live

I've never written a blog before, so let me know if you have any suggestions/constructive criticisms/etc.

I was watching some FOSDEM videos yesterday with my community on my Owncast. We came across THIS video and instantly Yuning Liang pulled us in.

Yuning Liang has such incredible charisma, humor, and an absolute tangible passion for computing. You can tell from the offset.

I've tracked RISC-V, and I've tempered my expectations. After seeing Yuning Liang present his company's creations, ideals, dreams, I'm convinced that this man could personally move RISC-V to the end goal.

His passion for open projects, projects for HUMANITY, was contagious.

Yuning Liang is the founder of DeepComputing. He started his company right smack dab in the middle of the COVID pandemic. Who is crazy enough to start a company during a world wide pandemic? A man so impassioned about opening computing and helping change the world is who.

As he points out in the video he went from nothing to a working design in 18 months, pitched it at Framework, designed the Framework RISC-V motherboard, and isn't stopping there.

Yuning Liang has four different designs scheduled just for 2025. Four releases is a lot for even a large company, but for a start up on open RISC-V, this man is either crazy, or believes so much in openness that he could probably do it.

PLEASE never lose this passion Yuning Liang. PLEASE help change the world.

I'd already planned on eventually buying a FrameWork laptop. But now I'll also have to buy a RISC-V board. Not because I'm a developer and can do much with it, but because I believe Yuning Liang could make anything worthwhile.

Contact

Email – ozoned@ozoned.net Social – https://social.ozoned.net/@ozoned Matrix – https://matrix.to/#/#the-ozoned:matrix.org Stream – https://stream.ozoned.net Peertube – https://video.firesidefedi.live/@ozoned WriteFreely – https://write.firesidefedi.live/@ozoned Ko-Fi – https://ko-fi.com/ozoned

Fireside Fedi

Livestream – https://stream.firesidefedi.live VODs – https://video.firesidefedi.live/a/firesidefedi Microblog – https://social.firesidefedi.live/@firesidefedi Blog – https://write.firesidefedi.live/firesidefedi/ Podcast – https://audio.firesidefedi.live Calendar of Events – https://events.firesidefedi.live Lemmy – https://lemmy.world/u/firesidefedi Lemmy Community – https://lemmyworld/c/firesidefedi Email – firesidefedi@firesidefedi.live