this post was submitted on 21 Feb 2025
248 points (100.0% liked)

Selfhosted

42729 readers
988 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
248
Docker Hub limiting unauthenticated users to 10 pulls per hour (docs.docker.com)
submitted 2 days ago by lepinkainen@lemmy.world to c/selfhosted@lemmy.world
46 comments fedilink hide all child comments
 

AFAIK every NAS just uses unauthenticated connections to pull containers, I'm not sure how many actually allow you to log in even (raising the limit to a whopping 40 per hour).

So hopefully systems like /r/unRAID handle the throttling gracefully when clicking "update all".

Anyone have ideas on how to set up a local docker hub proxy to keep the most common containers on-site instead of hitting docker hub every time?

you are viewing a single comment's thread
view the rest of the comments
[–] KingThrillgore@lemmy.ml 7 points 1 day ago* (last edited 1 day ago) (1 children)

Well shit, I still rely on Docker Hub even for automated pulls so this is just great. I guess i'm going back to managing VMs with OpenTofu and package managers.

What are our alternatives if we use Podman or K8s?

[–] wireless_purposely832@lemmy.world 14 points 1 day ago* (last edited 1 day ago) (1 children)

The issue isn't Docker vs Podman vs k8s ~~vs LXC~~ vs others. They all use OCI images to create your container/pod/etc. This new limit impacts all containerization solutions, not just Docker. EDIT: removed LXC as it does not support OCI

Instead, the issue is Docker Hub vs Quay vs GHCR vs others. It's about where the OCI images are stored and pulled from. If the project maintainer hosts the OCI images on Docker Hub, then you will be impacted by this regardless of how you use the OCI images.

Some options include:

  • For projects that do not store images on Docker Hub, continue using the images as normal
  • Become a paid Docker member to avoid this limit
  • When a project uses multiple container registries, use one that is not Docker Hub
  • For projects that have community or 3rd party maintained images on registries other than Docker Hub, use the community or 3rd party maintained images
  • For projects that are open source and/or have instructions on building OCI images, build the images locally and bypass the need for a container registry
  • For projects you control, store your images on other image registries instead of (or in addition to) Docker Hub
  • Use an image tag that is updated less frequently
  • Rotate the order of pulled images from Docker Hub so that each image has an opportunity to update
  • Pull images from Docker Hub less frequently
  • For images that are used by multiple users/machine under your supervision, create an image cache or image registry of images that will be used by your users/machines to mitigate the number of pulls from Docker Hub
  • Encourage project maintainers to store images on image registries other than Docker Hub (or at least provide additional options beyond Docker Hub)
  • Do not use OCI images and either use VM or bare metal installations
  • Use alternative software solutions that store images on registries other than Docker Hub
[–] interdimensionalmeme@lemmy.ml 3 points 1 day ago (3 children)

Lxc doesn't use oci images? I always end up using docker in lxc when dockeris the only option (which I have not figured how to makw work on my airgapped side

[–] shertson@mastodon.world 1 points 1 day ago

@interdimensionalmeme @wireless_purposely832

I believe Graber did a talk at FOSDEM this year about using OCI images in Incus.

[–] wireless_purposely832@lemmy.world 3 points 1 day ago

Ah, you're right. I'll edit my comment.

incus may be an option for you though. It supports both LXC/LXD and OCI (although not nearly as well as Docker/Podman/Kubernetes - I don't think it supports any compose files).