Hi there 👋

I run my gaming setup in Docker. More specifically, I use docker-steam-headless, which gives me a full Steam desktop, Sunshine, X11, GPU acceleration, and remote access through Moonlight. It works surprisingly well. I can stream my desktop or Steam Big Picture from a server to almost any device. But there was one annoying problem: resolution switching. I do not always connect from the same screen. Sometimes I use an ultrawide monitor. Sometimes a laptop. Sometimes a 16:10 display. Sometimes Moonlight is configured for 2560x1080, sometimes 2560x1600, sometimes 1920x1080. ...

A few months ago, I was woken up by the sound of my server’s fans screaming. It wasn’t a spike in traffic or a scheduled backup. It was a crypto-miner. Thanks to a Remote Code Execution (RCE) vulnerability in Umami, someone had managed to turn my analytics server into a very inefficient Monero farm. I got lucky. The hacker was loud. I killed the container within minutes, and at ~10 kH/s they would have earned roughly 10 cents a day. Hardly worth the risk of being found and sued. But it left me with a cold realization: If they had been smart, they wouldn’t have mined crypto. They would have quietly exfiltrated my database. ...