I don’t use protonmail, bit the things you posted are not nearly enough to condemn the entire service.

I would say that their support of the trump admin is far more damming, but still not enough for people to drop them outright.

I agree that it shouldn’t be there. LibreOffice is the clear replacement.

It’s an older image, not updated.

Nothing, OP’s just saying things

Hey Ash Whatcha Playin

I feel this way about pickles

I have disabled history on youtube, so I only get shorts from people I’m subscribed to, and they are mostly very enjoyable. You can often get through all new shorts in about 30 mins before you start seeing repeats.

At least one person believed the “joke comment”

Just don’t question it, why bother? :3

Did you even read your own report? It says that AI works are copyrightable in certain circumstances, not that they make a whole project public:

Copyright law has long adapted to new technology and can enable case-by- case determinations as to whether AI-generated outputs reflect sufficient human contribution to warrant copyright protection. As described above, in many circumstances these outputs will be copyrightable in whole or in part—where AI is used as a tool, and where a human has been able to determine the expressive elements they contain. Prompts alone, however, at this stage are unlikely to satisfy those requirements.

As much as I wish this was true, I don’t really think it is.

What are you trying to say? You “made” a entirw streaming app, or are you just hosting someting someone else made? Because those are two very different things.

Beeple? As in the duche that started the NFT trend?

Yeah, that’s what I said :)

Hehe, why do you have a butthole next to Tux?

Damn, didn’t know Elvis’s hair was that curly.

You’re pretty :3

I don’t know much about ip routing, but userns=keep-id id determined based on what podman is run as. For example, I run podman as user 1000 on the host, so if I do keep-id the user in the container will map to the same id. This often messes with things as the container require it is root inside it’s own context. It seems you are running podman as root, meaning that keep-id will map the container user to the actual root id, givintthe container essentially root access. Normally the container user is mapped to a random id on the host, like 653477, not 0. It’s unsafe to map the containers id to root as they would be unbounded if they managed to escape. I would recommend doing systemctl cat on the different services to see what the .container file expands to.

When it comes to the networking I think that you need to create a podman network with internal set to true. I believe that this restricts internet access. Then you would need to only let these services communicate with gluetun.

I don’t know if this was any help, but it’s all I’ve managed to learn from doing it myself.

Here are some liks I found:
https://lists.podman.io/archives/list/podman@lists.podman.io/thread/NKVFO4JQO5JLYKWXHHODC2WHQRG7A2KO/
https://docs.podman.io/en/v4.6.1/markdown/options/userns.container.html

I like that you can see the wheel missing in panel 2 and 3

Based.