You are not logged in.
- Topics: Active | Unanswered
#76 Hardware & System Configuration » TSC or HPET clock timer? » 2022-06-25 19:36:20
- czeekaj
- Replies: 0
Does anyone have any insight what one should be using?
I'm noticing on some hardware TSC is giving me a warning in dmesg that it is found to be 'unstable'
Switching to hpet seems to negate this. However, I feel from no real understanding that using TSC would be ideal if it remains 'stable'
Does it depend on CPU and motherboard? What kind of things should I be looking at when we are talking about clock timers?
For reference hpet is part of the southbridge chip set where TSC is software managed I believe.
I figure TSC provides you ultimately with more control. But if deemed 'unstable' I am unsure what to think, but maybe sounds like this is an issue in itself where your kernel cannot 'control' the CPU timing.
Anyone have any insights into event timers? Something you can configure with grub.
From what i've seen about APIC and it's registers has been interesting to say the least.
#77 Re: Other Issues » Daedalus Bluetooth problem... » 2022-06-25 19:19:35
I did not have this issue before running only free repos.
I don't want to use non-free drivers. I noticed a behavior change at boot up and handing off bluetooth to the OS.
rfkill unblock all seems to have changed nothing after reboot. Only after booting in does it do anything. Before I had no issue. It's like the rfkill switch if toggled off does not hand off to the OS now during boot. It stays off on the OS and I must through software enable bluetooth. Before I could toggle BT and Wifi on and off with just the switch never having to mess with rfkill package. Maybe a newer version of rfkill is to blame
Now it's like the OS doesn't 'grab' the bluetooth. When I boot rfkill starts with a softlock but I imagine maybe it's just now the default after installing the package. Maybe it's just my configuration. It's not something I messed with before but now I am paying attention to it.
Not sure anyway to fix this without nuking the setup.
I'm using a t400 running libreboot.
#78 Re: Desktop and Multimedia » [SOLVED] edit music file properties as in Windows » 2022-06-25 18:47:54
picard (music brainz) is also a good one. Although bloated
It can be a little tricky but it can automate some things like track order. It queries possible matches and helps tidy up your library.
Album art is not as automated. It can make a mess of things if you are not careful, but then it's more manual anyway. Stops you from having to renumber tracks per album and can allow you to work on a album by album basis rather then track by track.
#79 Re: Hardware & System Configuration » Linux malware - possibly undetectable? » 2022-06-25 18:37:38
Right,
I wonder if checking your sockets could detect it. I think you are pretty save.
netstat -ao | less check your sockets in recovery and in full user mode.
Look for anything abnormal. It's good to get familiar with what your system sockets look like. dbus is pretty busy. If you can minimize sockets you minimize attack surface.
Most of the targeted libs are apache or java related. Minimalism is a good bet.
Again though a lot of linux vulnerabilities seem to happen early during boot process or in between system upgrades I imagine is when they are the most vulnerable. I am only guessing though that's when you are dealing with root kit level stuff.
Only way to get persistence as well I imagine.
#80 Re: Off-topic » Why don't we just fork systemd and remove unneccessary bloat? » 2022-05-28 17:57:00
can't wait to have my home directory managed by systemd-homed.
homectl create devuan --storage=luks
simply share your .identity folder between divices and your home directory becomes a modular transferable mount space. This is solving all sorts of problems..
I can't imagine a world where systemd has solved a single problem all it's done is just ended up making things unnecessarily more convoluted.
#81 Re: Other Issues » [SOLVED] Can't stop the WiFi spoofed / Cloned MAC address :'( » 2022-05-28 17:41:20
see GNUser's init script to modify your mac address at boot up.
It automates the whole process.
https://dev1galaxy.org/viewtopic.php?id=786
you can use macchanger from the repo. you can manually set or change whenever you want.
#82 Re: Other Issues » Firejail security concerns » 2022-05-28 17:38:34
firejail from my experience has been pretty good. Issue is when you start running untrusted programs and required to hash out seccomp for hardware and/or syscall access. Along with other security settings that otherwise would make it pretty solid choice.
#83 Re: Other Issues » Daedalus Bluetooth problem... » 2022-05-28 17:14:11
I am having issues myself on chimera blue tooth. After upgrading. I had the bluetooth show up as disabled on boot up if RF kill switch was on during boot up then switch back on after logged in.
Got dmesg warning me failed to load bluetooth firmware. rfkill shows bluetooth as hard disabled even after switch is turned on.
#84 Re: Off-topic » Music » 2022-05-19 11:59:43
I always enjoy a good blast from the past
https://www.youtube.com/watch?v=bJ9r8LMU9bQ
My favorite Clash song is probably Washington Bullets
https://www.youtube.com/watch?v=zdIdv2ReeDY
#85 Re: Hardware & System Configuration » OPENVPN - Setting up service for a given user » 2022-05-19 11:21:18
you'll have to move openvpn from /sbin into /usr/local/bin
I'd suggest trying to use network manager or some user side application with VPN support.
As of now I have not tried and always ran it as root.
Potentially you can try experimenting with firejail or fakeroot .
#86 Re: Installation » I am shocked: The most official way to install Devuan is TERROR pure! » 2022-05-19 11:03:21
Also before finishing expert installation. Chrooting in and setting the password there is a viable option.
so
lsblk (to list your drives)
mount /dev/sda1 /mnt
cd /mnt
mount --bind /proc ./proc
mount --bind /sys ./sys
mount --bind /dev ./dev
chroot ./
passwd rootone thing you can try is just using sudo -i when you get in. running passwd root then uninstall sudo.
The devuan installation is not terrorizing. It admittedly it can be when you instruct /dev/random to write to the drive. It can be hours of waiting sometimes it never seems to finish with no status on the task.
fsmithred wrote:Refractainstaller has supported full disk encryption for at least a couple of years. Select encryption for the root partition and do not select a separate /boot partition.
The way I usually install my systems using the Debian installer, I get something like this:
/dev/sda1 /boot *unencrypted* <ext2> /dev/sda2 *LUKS* > /dev/mapper/crypt *LVM* >> /dev/mapper/crypt-root *logical volume* <ext4> >> /dev/mapper/crypt-home *logical volume* <xfs> >> /dev/mapper/crypt-swap *logical volume*This is basically LVM on LUKS if I understand it correctly. Root + home + swap are fully encrypted as part of a volume group. Upon booting from GRUB I enter a password to decrypt only once.
Also, am I correct there is no support for creating XFS file systems using the live image?
Yes, I'd love to see XFS support on Refract installer but that would involve updates to gparted or cfdisk. For some reason it's greyed out to form a XFS logical partition. Maybe if you use refracta2usb on a XFS system already installed the support would be baked in. I have not tested though! Give it a shot. Compress a system then dd it onto a usb and see if it will allow you to do a XFS install.
Advantage to this is making a tmp mount point, and in fstab enforcing a noexec condition for your tmp folder. It gives versatility using a extended logical partition in several ways making encryption simpler. But makes mounting a VFS running XFS a little trickier for recovery purposes. I noticed it can boot a little slower on some hardware. But aside from that I'd always use XFS in a LVM if refracta installer supported it.
#87 Re: Installation » alternatives to Mozilla's and Chomethings » 2022-05-19 10:53:06
I see there is a iceweasel package. I opted to use that.
Although i see no real change between firefox-esr. It's still in the repo so I use it instead.
#88 Re: Installation » [SOLVED] UFW causes errors under Chimaera » 2022-05-19 10:48:22
Instead of errors. Upon upgrading UFW was deactivated for me (issue being. if you don't notice for a time you have a more vulnerable system.) I simply reactivated.
I noticed I am using ipv6 as well now.
Try removing and then re-adding the option to append to iptables.
after enabling ufw it seems to start fine on boot up.
I might just have to migrate to biting the bullet and learning iptables and nftables.
That way you have less overhead and less to worry about.
#89 Re: Freedom Hacks » Do not use pulseaudio » 2022-04-27 01:54:15
Excuse me if I am being ignorant. But pipewire also can deal with video?
Isn't this the kind of encroachment systemd is guilty of? Doing too much?
Anyway kinda sounds like a user level PAVP. I'd rather just have alsa but with easier device switching.
czeekaj wrote:I was unable to get the media player to push it through the TV.
Could you elaborate on this? I dont understand you.
Apologies. When trying to play a movie on a TV from the laptop. Running Devuan or even Debian. I had no sound through the HDMI port so no sound out of the TV.
#90 Re: Devuan » setnet.sh script depreciated? » 2022-04-17 21:50:27
If I repackaged it and got permission from the author, Could it be re-added to the repos?
I could repackage it, If I manage to improve it I'll include an update. I haven't found any bugs in version 4 from my personal use.
I have been using it in Beowulf for quite some time now. No issues to be noted. It works in Chimaera as well.
Also I tried to audit the temp file created in /tmp.
I wasn't able to snag credentials for networks as root. But I am wondering if it is possible.
So far I feel comfortable using it still.
I can maintain it in the sense porting it to new devuan releases. What is required for a package to be added to official devuan repos?
I never really considered repackaging it due to refracta utils being so handy I don't have to re-install it ever. However, I might be able to re-bundle it with one less build dependency for other devuan users to make it easier to obtain.
#91 Re: Installation » [SOLVED] Where did obmenu go? » 2022-04-17 16:43:40
yikes. I'll miss it but looks like there are already drop in replacements.
Am I missing something or is chimaera recently had obmenu added again? I never noticed it going missing.
#92 Re: News & Announcements » Sudo Vulnerability CVE-2021-3156 » 2022-04-17 10:00:26
I was suspicious and not surprised.
I don't really have this issue anymore, I don't install proprietary Nvidea drivers anymore but I've since smartened up.
But Nvidea drivers the screen would flash.
I uninstall sudo, install Nvidea driver and it didn't flash the screen.
Nvidea must of known about some way to exploit sudo. I couldn't say why or what happened but I was suspicious.
#93 Re: Off-topic » Is wayland the new systemd ? » 2022-04-16 05:53:53
I don't know enough to comment about the functionality. Well I haven't bothered to 'upgrade' to wayland.
However, X as it is now. As I still use it suffices. But I do realize any big security holes or oversight in X would be difficult to patch.
I am hopeful wayland will provide added security.
Now I can't say Xorg is terribly insecure. More so I have noticed I've only had issues when I am using say a Dell laptop. The news of SMM vulnerabilities on Dell systems does not surprise me in the slightest. Xorg works, and it's familiar. Now booting a minimal system, sure might take away some issues. But honestly the Meta packages that is xfce makes it difficult to trim it down and keep all the niceties
I had issues when booting into a X session, going to tty1 logging in as root. Coming back to the X session and seeing bounce keys or sticky keys is activated. I assume key logging. It's only happening to me on Dell systems, and due to it being such low level on the system I can only imagine automation and big 3 letter agencies at play. No issues of the sort on something running core boot or when I run a dell system further away from untrusted networks.
Now I hate to be that guy but the idea of an accessibility feature being leveraged for key logging doesn't sit well for me. But what does that have to do with Xorg? Why does Xorg have to pick up the slack for XFCEs mishaps and meta package bloat. Modularity and modability are great goals. I think X does a decent job and will continue to do a good job.
I think it comes down to user wants and needs. I do buy hardware based off of software. My first bare metal install was on a Dell laptop, now I do not want to repeat a purchase of a system that has questionable security under the hood. Devuan released under the pretense of Watching your first step. The rabbit hole does go pretty deep, down to the microcode, boot up, bios and uefi. I think we can all agree if you have a trusted execution at lower layers. IE Coreboot. You are better off. The average person doesn't care, and more fear mongering will only make you sound like a news reporter. But when it comes down to trust. I trust Xorg more then I trust Dell, Microsoft, or Google. Heck I trust systemd more then those 3. Hopefully wayland will become something people wont blink twice on installing. Maybe it can provide some functionality and no cost of security. As it stands now I don't think it's there yet.
Now this pipewire, concerns me. Why does pipewire need to deal with video? Oh containerized programs. right,
if snaps and flatpacks were not disruptive enough. What happened do one thing and do it well? Pipewire should of stuck to audio. It'll be a monolithic blob like systemd. Dangerous. That is the devil in the details to me. pipewire is trying to do too much and runs on the MIT license. Which is inferior to the GPL.
#94 Re: Devuan » Devuan look and feel » 2022-04-15 05:01:51
It would be a shame to break tradition.
I tampered around a little bit in the past
However, I also cannot find any way to make a dark theme with clearlooks. If some one knows what Clearlooks is missing, would be nice in the future. (mostly the scroll bars and other side elements I can't seem to figure how to manipulate)
But yes. building another color pallet tough choice on the colour. I'd have no issues manipulating the files or the Desktop / grub image colours. Most tedious part would be the widgets. But most of the ground work is already done.
Edit:
I've got two colour variations in the works. I have a couple discrepancies I'll have to track down. Definitely not ready. One theme the widgets (Check boxes and the like are still Cinnabar.) The other I have some gtk3 text that is slightly out. Sigh, I flipped too many switches now I have to figure out where I went wrong. I am tweaking the openbox themes yet. I'm kinda liking what this is looking like. I've just icons and wallpapers to work on. I did the xfwm4 title bars no problem.
@golinux Where should I dump the themes I am working on? Once they get close to 'complete' I would like to get some feed back, maybe some help. I am fairly certain the more I look at it the more I will tweak it that was a good suggestion in the guide.
#95 Re: Devuan » Devuan look and feel » 2022-04-15 01:52:08
I know nothing of GTK3 theming. All I know so far is modifying basic hex values.
I'll look into it I see some documentation is a place to start. One thing I miss on the Clear looks theme is the Workspace squares changing color when hovered over. I'll see if I can re-introduce that.
It'd also be an excuse to make my GTK2 and Gtk3 colour palates match perfectly. Currently if you look close there are discrepancies on the theme I am using.
If I have time I'd throw in a openbox pallet with it. No promises, but I'd love to try and contribute something helpful.
#96 Re: Freedom Hacks » Do not use pulseaudio » 2021-02-08 02:29:24
For those who have laptops with HDMI outputs see this guide for setting the non-HDMI output as the default:
Even with pulse I ran into an Issue getting Audio out of my HDMI to the TV.
I used Alsa to push audio out the HDMI port as a test. I was able to push sound out through HDMI and it came out the Tv.
However, I was unable to get the media player to push it through the TV. 
Was odd sure it is an Easy fix. Pulse wouldn't do it. I tried changing every setting possible found no sound.
I had pulse installed I maybe should try removing pulse and changing default to HDMI and rebooting.
#97 Re: Desktop and Multimedia » SOLVED: Wicd Network Manager on MATE is unreliable » 2021-02-08 01:30:47
I use that program setnet.sh (I'd be nice if it was in the repos I found it on an Old Iso in Ascii and I transferred it over to BeoWulf)
Thanks to Vincenzo "KatolaZ" Nicosia
Connecting never was easier.
Although it lacks features like Hostname spoofing Channel selection. but it's really good program. Unfortunately the github version seems slightly older the one I have is from 2018. It might of migrated to gitlab or something
Any issues I have usually come from intel Wifi Cards. Not as stable (oddly no other cards drop connection for me) and funny that hostname spoofing is quirky on intel Wifi cards starting a new tty it will change your tty hostname. 
so yeah Free Wifi cards are a good place to start.
#98 Re: Desktop and Multimedia » Alternative browser for Devuan/Debian - Brave » 2021-02-08 01:23:50
Chromium will give more ads on Google. None relevant but I wanted to try ungoogled. However,
I see iceweasel is in the repos. How does it differ from firefox? All my add-ons previously installed work. All my bookmarks and history are intact? It seems identical to mozilla. I cannot discern a difference but I think I will use iceweasel for now just for the Spirit of it.
#99 Re: Desktop and Multimedia » [Ceres] Xfce4: not more xfce4-panel | kernel 5.9 » 2020-12-18 04:46:44
I am on 5.9 on this laptop.
I have not noticed any issue with Xfce4-panel (4.12 version)
I am using openbox session. w/ Ati gpu.
#100 Re: Freedom Hacks » package usbmuxd - used for IPhone Tethering » 2020-12-18 04:33:26
hmm If i can mount it. That means I can jail break it. Great hack.
Board footer
