72
nobody 1y ago

A few thoughts after a year running front facing web services:

- containerized services really shouldn’t include SSL, and if the author insists, there should be a setting to turn it off.

- the number of containers that include a DB in the app container is disturbing. I don’t need six Postgres instances on the same server. This is what docker compose is for.

- why do people store binary files in Postgres? PicSur becomes an abomination after a few thousand files.

- Nostr relays are probably some of the best behaved containers I’ve played with.

🤷

Reply to this note

Please Login to reply.

Discussion

Avatar
Uno 1y ago

I don't know what most this stuff means 😭 😂

72
nobody 1y ago

Nobody starts out knowing it, and much of it is learned by trying, screwing up, and letting a friend explain it while laughing…

Along with a heaping dose of searching online.

Avatar
Uno 1y ago

True, nothing comes from nothing

72
nobody 1y ago

Except the universe. Still boggles the mind.

Avatar
Uno 1y ago

Yeah same

Avatar
Sovran Systems 1y ago

NixOS fixes this. Mic drop.

72
nobody 1y ago

I don’t know enough about it yet to know how it would, but that’s my lack. I have been using it on my laptop but I’m not sure how I would feel about using a distro with non-standard paths for everything when. I’m editing tons of config for nginx, etc over ssh.

Avatar
Mal Gifson 1y ago

I wish I understood containers better, specifically with respect to storage and persistence.

72
nobody 1y ago

You lose some of the flexibility with docker when you are persisting data (more complex to use Docker Swarm) but it’s pretty easy on a single node.

You can create volumes, which can be backed up, but I prefer to just map a path for each container to the host’s file system. It’s a one line add. Then I just have to back up one parent folder and all my persisted data is backed up.

Avatar
Mal Gifson 1y ago

Yeah I've tried with both docker & k8s and both are a pain. As well, my developers don't load test or provide information to help set mem/cpu probe constraints so it's all guess and check 🤨

72
nobody 1y ago

I’m facinated by k8s, but don’t know enough about it, and haven’t really had a reason to play with it, since vertical scaling has been much simpler for the stuff I’m running.

Sounds like you’re working with some pretty high throughput services. Hopefully it’s still an interesting problem. I feel like things get much harder when they quit being interesting and become a chore.

Avatar
Mal Gifson 1y ago

Lol yes and boss man just wants to know the next steps... like it's some linear issue. And unfortunately it's not interesting Lolol. Thankfully though, it's a complete side project!

72
nobody 1y ago

Small victories. 🤣

And yes, I have my own Pointy Haired Boss (Dilbert reference). It’s astounding how I can do the same thing at home that I do at work, and hate my job and love my hobby. 🤣🤯

Avatar
ChipTuner 1y ago

I have a lot of issues myself generally with Docker, most of them are probably with the containers themselves but yeah this, logs, and configs. IDK everyone is afraid of configuration files, I dislike having to define like 20 something environment variables in a docker-compose file (or a script when I'm lazy). I have finally removed docker from my internal services stack, I just cant keep up with maintenance and setup of containerized apps. I have built "enterprise" infrastructure, let me use it.

Avatar
ChipTuner 1y ago

Oh and one more thing. Please, please, give some instructions on using/building the app outside of the container. I have seen a few tools that won't support and discourage trying to build the app outside the container. I feel like I'm probably going to write a blog about this at some point...