The officially official Devuan Forum!

You are not logged in.

#1 Re: Other Issues » backdoor targeting deb and rpm via systemd? » 2024-03-30 23:46:24

Yeah I could have been clearer. Considering I was pissed as a fart (home made dandelion and home made parsnip wine) I don't think I got to much wrong. Anyway more juice. :-)

https://www.redhat.com/en/blog/urgent-s … hide-users
https://gist.github.com/thesamesam/2239 … 78baad9e27

#2 Other Issues » backdoor targeting deb and rpm via systemd? » 2024-03-29 23:48:16

Kelsoo
Replies: 18

To be expected I guess

As one Slackware use said

The malicious code is inserted only when building a deb or rpm package of xz. Probably because some systemd based distros patch openssh to use liblzma (part of xz) and the idea is to have a backdoor in sshd.

Another reason why the traditional diversity of "Linux" was a good thing. The more we fly head first into the corporate monoculture the more we will see thing like this imo.

https://www.openwall.com/lists/oss-secu … 24/03/29/4

#3 Re: Hardware & System Configuration » How much RAM do I need to install a Devuan? » 2024-03-23 01:33:03

It all depends on what you install.

If you're careful 2GB is easily enough. I have one with 1GB most have 2GB one with 3GB one with 4GB and 1 (that's a shity MBP) with 8GB 

start with xfce if you want a DE and go from there.

#7 Re: Desktop and Multimedia » are you happy with all the old and new wm's for simple small distros? » 2023-11-19 16:22:23

https://postlmg.cc/21CpnpF2

It's pretty easy to remove stuff. As long as I boot to the desktop at around 100MB I'm fine.

The above is a bit of a cheat as it's on Hyperbola and 32bit so a lower figure than normal distros anyway.  64bit usually adds  about 15MB in my case. I could remove fittstool as I don't use it at the moment unless I login via notion4

#8 Re: Off-topic » A warning from the godfather of AI » 2023-06-02 06:18:44

Opps

AI-controlled US military drone ‘kills’ its operator in simulated test

https://www.theguardian.com/us-news/202 … lated-test

#12 Re: Off-topic » Anybody here use swisscows email service? » 2023-04-07 17:33:21

Bollenschiss wrote:

I wonder if anyone still wants to know...
I'm doing freelance work for Swisscows and they told me that Protonmail has a master key to unlock any encrypted data. With Swisscows this doesn't exist, so even the meanest of governments could force them at gunpoint to surrender data, and still they wouldn't be able to.

Proton for Business accounts use end-to-end encryption(new window) to secure emails. This is achieved using a master encryption key called the organization key, which nobody other than the administrators of your organization has access to.

Because even we do not have access to this key, your data remains private, even from us.

https://proton.me/support/organization-key

#13 Re: Hardware & System Configuration » BlackLotus malware, Secure Boot and Windows machines » 2023-03-02 23:28:50

I saw this and wondered if there were any repercussions for distros that use the Microsoft signing key?

It also highlights the issues with the UK governments Online Safety Bill and the EU Chat Control

#14 Re: Devuan Derivatives » Anyone where to find more cartoony old icons for jwm? » 2023-02-24 22:59:15

I guess you meant CC BY-NC 4.0 or similar version.

Lots of things could have changed the license either way and there and back again.

#15 Re: Devuan Derivatives » Anyone where to find more cartoony old icons for jwm? » 2023-02-24 16:58:55

Nice icon set but I always thought they were non-free in a GNU sense If they're the same icons as these

https://www.deviantart.com/mattahan/art/Buuf-37966044
https://www.deviantart.com/mattahan/art … e-72080962

Creative Commons Attribution-Noncommercial-Share Alike 3.0 License

#16 Re: Devuan Derivatives » Anyone where to find more cartoony old icons for jwm? » 2023-02-16 15:03:20

https://github.com/daemonblade/gartoon-redux

My fav theme if I can be bothered. I love how you get the source svg's so can modify them easily. Gpl'd

#17 Re: News & Announcements » X.Org Security Advisory: Security issue in the X server » 2023-02-08 17:18:41

startx /usr/bin/wm or startx /usr/local/bin/wm then chuck it in my .bashrc with an one letter alias then fire up "auto" again another alias auto=/path/to/autostart.sh. At least until I'm happy everything works as it should... I guess I'm a Cave Man. :-)

#18 Re: Hardware & System Configuration » [SOLVED] How to increase the SWAP partition » 2023-01-10 11:11:37

Maybe of use to some here:

https://github.com/Tookmund/swapspace

This is a system daemon for the Linux kernel that eliminates the need for large, fixed swap partitions.

Usually when you install a GNU/Linux system, it sets up a swap partition on disk. The swap partition serves as virtual memory, so you may need a lot of it. But you can't store data there, so you don't want to sacrifice too much disk space. And it's not always easy, or safe, to change its size afterwards!

Running swapspace solves that problem. You no longer need a large swap partition. You can even do without the whole thing. The program manages swap files for you. These work just like partitions, except they're normal files. You can add more when you need them, or delete some when you want the disk space back. And that is exactly what swapspace does. It constantly monitors your system's virtual-memory needs and manages a pool of swap files accordingly.

With swapspace you can install GNU/Linux in one single big partition, without regrets later about picking the wrong size. Your system can handle the occasional memory-intensive task, without eating up disk space that you'll never get back.

#19 Re: Off-topic » Lennart Poettering (Systemd) Lands at Microsoft After Leaving Red Hat » 2022-12-09 15:06:56

Blackhole ^

I would say I agree with most of that. Many licences are not used in the spirit they were written. I see gpl3+ code where the copyright holder will offer "bespoke licencing" i.e. proprietary. Which is why I like gpl code copyright to be assigned to the FSF and even that’s by no means perfect.

Stallmans approach of treating un-updatable firmware as hardware was a fudge in my opinion but necessary for the time, though I suspect ultimately detrimental it was better than the situation have now where firmware is closed and upgradable. Further locking down hardware.

I saw the Linux Kernel removed scrolling from the console recently. Just as I'm gearing up for life in a console because the desktop is becoming so locked down with corporate systems. I foresee the value of older computers increasing as new hardware becomes more and more enslaved.

Theo de Raadt may also believe in the spirit of permissive licencing.  Being a free/libe-software supporter I could understand why the word permissive was chosen, it sound like it's liberating you but by it's very nature "open source" means "closed source" equally as much so enslaving you too.
I always think of the FreeBSD devs getting upset with Apple switched to OSX took their code and gave little back. Apple don’t operate in the same spirit.

At the end of the day I don't want to be enslaved by proprietary software so that's why I have leaning towards the four freedoms no matter how imperfect.

#20 Re: Off-topic » Lennart Poettering (Systemd) Lands at Microsoft After Leaving Red Hat » 2022-12-03 20:54:14

apologies Hoas for forgetting the link.

Theo de Raadt quote ref:
https://web.archive.org/web/20060603230017/http://kerneltrap.org/node/6550

There's a lot I like about the BSDs technically but IMHO ethically they suck donkey balls. Particularly their "acceptable licenses" which has a very anti GPL/copyleft and with a strong pro proprietary stance. They are blood suckers with no real care about freedom issues. The free software user is like some chained peasant fed on enough crumbs to keep barely alive so as to feed the resident vampire. This is easy to see in their "goals" where they are actively trying to remove the GPL. No doubt because if affects their corporate funding. There is no ethical aim in any BSD and there never will be.

--------------------

https://www.openbsd.org/goals.html

"Integrate good code from any source with acceptable licenses. ISC or Berkeley style licences are preferred, the GPL is not acceptable when adding new code, NDAs are never acceptable. We want to make available source code that anyone can use for ANY PURPOSE, with no restrictions. We strive to make our software robust and secure, and encourage companies to use whichever pieces they want to. There are commercial spin-offs of OpenBSD. "

----------------------------------
Now on the surface this seems very open and transparent. But what drives this why do they even bother sharing their source code when they  clearly want to support closed source proprietary systems. Well the answer is pretty obvious really. The original code is from publicly (government so tax payers dollar) funded educational and military institutions. They had no choice. As the importance of the software grew so did the Proprietary interest and funding and so the never ending circle began.
-----------------------------------

Re the BSD take on: “acceptable licenses”

"GNU General Public License, GPL, LGPL, copyleft, etc.

The GNU Public License and licenses modeled on it impose the restriction that source code must be distributed or made available for all works that are derivatives of the GNU copyrighted code.

While this may superficially look like a noble strategy, it is a condition that is typically unacceptable for commercial use of software. So in practice, it usually ends up hindering free sharing and reuse of code and ideas rather than encouraging it. As a consequence, no additional software bound by the GPL terms will be considered for inclusion into the OpenBSD base system.

For historical reasons, the OpenBSD base system still includes the following GPL-licensed components: the GNU compiler collection (GCC) with supporting binutils and libraries, GNU CVS, GNU texinfo, the mkhybrid file system creation tool, and the readline library. Replacement by equivalent, more freely licensed tools is a long-term desideratum."

------------

In short the BSDs are happy to use the libre GNU utils to build their system but then want to obliterate it. Not just from their code base but entirely just like Google. Fuck em I say. They just want to destroy libre software and them no doubt revise their shitty license and we’ll all be stuck in shrink wrapped proprietary purgatory al-la Microsoft again.

------------

The idea that the GPL is anti commerce is beyond absurd and nothing more than FUD. Anti proprietary slaveware yes, anti commercial never.

-----------

https://www.gnu.org/philosophy/categories.html#ProprietarySoftware

Commercial software

“Commercial” and “proprietary” are not the same! Commercial software is software developed by a business as part of its business. Most commercial software is proprietary, but there is commercial free software, and there is non commercial nonfree software.

For example, GNU Ada is developed by a company. It is always distributed under the terms of the GNU GPL, and every copy is free software; but its developers sell support contracts. When their salesmen speak to prospective customers, sometimes the customers say, “We would feel safer with a commercial compiler.” The salesmen reply, “GNU Ada is a commercial compiler; it happens to be free software.”

For the GNU Project, the priorities are in the other order: the important thing is that GNU Ada is free software; that it is commercial is just a detail. However, the additional development of GNU Ada that results from its being commercial is definitely beneficial.

Please help spread the awareness that free commercial software is possible. You can do this by making an effort not to say “commercial” when you mean “proprietary.”

-----------------

Non free firmware is a minor concern in running any BSD. The major issue is it's funded and driven by proprietary loving companies and so shackled to their needs and desires. No-one but the most deluded libertarian fuckwit would think this is an advancement in peoples liberty.

PS. SystemD sucks almost as much as it part of the same disease.  :-p Thank fuck I'll be dead before I'm forced between choosing that and going back to pen and paper and a megaphone for unfettered communication.

#21 Re: Off-topic » Lennart Poettering (Systemd) Lands at Microsoft After Leaving Red Hat » 2022-12-02 11:22:26

It seem to me that if the firmware is distributable Theo is happy include it.

Theo de Raadt: Quite honestly I prefer chips which have no firmware, and instead use correctly designed hardware logic, which our driver must then drive. Note that most ethernet chipsets do not use a processor, but many scsi chipsets do. Most IDE chipsets do not, but for wireless devices ... it is about half and half. This clearly has to do with the complexity of the data flow problem being dealt with.

But in the end, if we wish to support any such devices, we must be practical. We must accept the risk that there is a flaw in the firmware. (Is that not what many of us have been coping with for years now with Prism wireless chipsets and their firmware update tools?) But the legal climate is a real problem for us -- that is why we must get copyright permission to distribute the firmware images. Once they are distributed... at least the device works.

#22 Re: Off-topic » Lennart Poettering (Systemd) Lands at Microsoft After Leaving Red Hat » 2022-11-29 14:32:22

https://www.gnu.org/distros/common-distros.html

"BSD systems

FreeBSD, NetBSD, and OpenBSD all include instructions for obtaining nonfree programs in their ports system. In addition, their kernels include nonfree firmware blobs.

Nonfree firmware programs used with Linux, the kernel, are called “blobs,” and that's how we use the term. In BSD parlance, the term “blob” means something else: a nonfree driver. OpenBSD and perhaps other BSD distributions (called “projects” by BSD developers) have the policy of not including those. That is the right policy, as regards drivers; but when the developers say these distributions “contain no blobs,” it causes a misunderstanding. They are not talking about firmware blobs.

None of those BSD distributions has policies against proprietary binary-only firmware that might be loaded even by free drivers."

#23 Re: Desktop and Multimedia » mc, files scrolling by dragging mouse? » 2022-11-26 23:33:48

I'm on 4.8.27 on Slackware.
RMB and drag selects for me. Though MC has way more config options than I need.
It will does scroll if I select files higher or lower than the visible window but for plain scrolling I use mouse wheel or page up/down like steve_v. 

scrolling by pulling mouse + LMB pressed works only downways, not upways. is the behavior I get.

#25 Re: Off-topic » OT nonsense » 2022-07-25 12:57:54

kyuss wrote:
Head_on_a_Stick wrote:

What is this? Fuckwit month?

No refunds vaxxie.

Double fuckwit month.

charliebrownau. I take it you're an albino Indigenous Australian.

Board footer

Forum Software