I wrote earlier about how to backup a small SQLite database. That solution works well for small databases, but can become impractical for larger databases. In particular if the machine with the database has not enough disk space for another copy of it, and you want to backup to another machine. One option is to use sqlite3_rsync, but I could not get that to work, it kept running out of memory.

I want an easy way to run one or more ephermal Linux VMs in Ubuntu desktop, including the possibility to mount host directories into them in an efficient fashion. Those VMs should have the same CPU architecture and hardware features as the host, no need to emulate some foreign CPU or special hardware, and no GUI in the VMs. The intended use case is sandboxing and isolation for security and reproducability reason.

Most Linux systems uses systemd as init and service manager nowadays. You can use systemd to start your services, so that they are automatically restarted if they crash, and automatically started when the system boots. You can even do this as a regular user, without root access (then the service will run with permissions of your user), and have it automatically started when the system boots without you having to login.

You can publish a Java or Kotlin library built with Gradle on Maven Central like this. First setup your Gradle build to produce a valid bundle for Maven Central. Include the Maven Publish Plugin in your build. Setup building of Javadoc and Source archives using Dokka. Set the required POM metadata in Gradle like this. See here for a complete working example. Now you can run gradle publish to create the Maven bundle in the mavenPublish directory (which you probably want to include in .

AppArmor is a good way to sandbox programs on a Linux system, but it has some limitations. In particular, it requires you to define a static profile for each program, and changing profiles requires root access. This can be impractical for ad-hoc usages, and in particular if you want to give the program access to a particular directory (such as the current directory). These gaps can be filled with bubblewrap.

If you have a Linux system with AppArmor, you can use it to sandbox IntelliJ IDEA. Do not install IntelliJ with snap, download the .tar.gz archive instead and unpack it in /opt/JetBrains/. Then add this file to /etc/apparmor.d. #include <tunables/global> profile idea /opt/JetBrains/idea*/bin/* { #include <abstractions/base> #include <abstractions/consoles> #include <abstractions/nameservice> #include <abstractions/ssl_certs> #include <abstractions/gnome> #include <abstractions/xdg-open> #include <abstractions/dbus-session> /etc/** r, /dev/** r, /dev/ptmx rw, @{PROC}/ r, @{PROC}/** r, /sys/** r, /bin/* rixm, /usr/bin/{[^s]*,?

If you have a Linux system with AppArmor, you can use it to secure your Go builds. First install Go in /usr/local/go as in the the instructions. Then add this file to /etc/apparmor.d, replace ${HOME} with your home directory. #include <tunables/global> profile go /usr/local/go/bin/go { #include <abstractions/base> #include <abstractions/consoles> /tmp/ r, /tmp/** rwkix, @{PROC}/** r, /sys/** r, /dev/** r, /etc/** r, /usr/** r, /bin/** ix, /usr/bin/** ix, /usr/libexec/** ix, /usr/lib/** ix, /usr/local/go/** rix, owner @{HOME}/.

If you have a Linux system with AppArmor, you can use it to secure your Rust builds. First install Rust with rustup in ~/.cargo/bin. Then add this file to /etc/apparmor.d, replace ${HOME} with your home directory. #include <tunables/global> profile cargo-bin ${HOME}/{.cargo/bin/*,.local/share/JetBrains/IntelliJIdea*/intellij-rust/bin/linux/x64/*} { #include <abstractions/base> #include <abstractions/consoles> @{PROC}** r, /sys/** r, /usr/bin/** ix, /usr/include/** r, /usr/libexec/** rix, /usr/share/** r, /tmp/ r, /tmp/** rwkix, owner @{HOME}/.gitconfig r, owner @{HOME}/.gitignore r, owner @{HOME}/.rustup/** r, owner @{HOME}/.

If you have a Linux system with AppArmor, you can use it to secure your Gradle builds. Here is how I installed it on Ubuntu Linux: Make sure you have a Java Development Kit installed. Set the JAVA_HOME environment variable to point to your JDK by creating a file /etc/profile.d/java.sh with this content: #!/bin/sh export JAVA_HOME=/usr/lib/jvm/java-21-openjdk-amd64 Make a manual installation of Gradle in /opt/gradle. Make it available in PATH: $ cd /usr/bin $ sudo ln -s .

You can speed-up Maven builds considerably by using Maven Daemon. Here is how I installed it on Ubuntu Linux: Make sure you have a Java Development Kit installed. Set the JAVA_HOME environment variable to point to your JDK by creating a file /etc/profile.d/java.sh with this content: #!/bin/sh export JAVA_HOME=/usr/lib/jvm/java-21-openjdk-amd64 Download Maven Daemon. Unpack it into /opt Make it available in PATH: $ cd /usr/bin $ sudo ln -s ../../opt/maven-mvnd-1.0.2-linux-amd64/bin/mvnd . $ sudo ln -s mvnd mvn You can configure IntelliJ IDEA to use it by setting Maven home path to /opt/maven-mvnd-1.