Re: [DNG] Free faces?

[Martin Steigerwald]

Hendrik Boom - 06.08.20, 01:08:33 CEST:
> On Thu, Aug 06, 2020 at 01:00:02AM +0200, marc...@welz.org.za wrote:
> > Recall a while ago some company called clearview.ai made the
> > news - given a picture of a person it finds all the other
> > photos of that person online, and does a good job of it too.
> 
> Is there any free/libre software that can look at two photos and
> provide a reasonable guess as to whether the two are photos of the
> same person?

Digikam 7.0 has much improved face recognition built in. All locally, 
not cloud based.

I never used it, though.

https://www.digikam.org/news/2020-07-19-7.0.0_release_announcement/

Best,
-- 
Martin


___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Free faces?

[d...@d404.nl]

On 06-08-2020 01:08, Hendrik Boom wrote:
> On Thu, Aug 06, 2020 at 01:00:02AM +0200, marc...@welz.org.za wrote:
>> Recall a while ago some company called clearview.ai made the
>> news - given a picture of a person it finds all the other
>> photos of that person online, and does a good job of it too.
> Is there any free/libre software that can look at two photos and provide a 
> reasonable guess as to whether the two are photos of the same person?
>
> -- hendrik
> ___
> Dng mailing list
> Dng@lists.dyne.org
> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

With enough python skills: https://pypi.org/project/face-recgnition/


Grtz.

Nick

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[Haines Brown]

Marc, your insights much appreciated. 

Interesting, though, is a certain generation gap. Security these days 
seems to refer to personal information that evil doers can exploit to 
deprive you of your poions. I'm a product of the Great 
Depresssion, and so security for me fixates on political snooping. I'm 
less concerned about being ripped off than looming fascism. I'm not 
suggsting your concern is not important, jut that it is not the same 
as my own.

For me security refers primarily to file access. This takes me back to 
my question. If I craete a new user, named zoom for example, and have 
it run zoom, won't that limit access files on my HD?
 


-- 
Haines Brown  
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[ael]

On Thu, Aug 06, 2020 at 06:52:06AM -0400, Haines Brown wrote:
> For me security refers primarily to file access. This takes me back to 
> my question. If I craete a new user, named zoom for example, and have 
> it run zoom, won't that limit access files on my HD?

One hopes so. But I had to install the zoom deb package via root.
Since it is closed source, who knows what the package might do?

It is probably safe since zoom would have a lot to lose if there was
anything dubious in there, and many experts had tried to check.

Maybe running zoom on a live image would be safer, but even there 
root has access to permanent storage.

ael

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] End-end encryption (was: Zoom? Rather not...)

[Simon Hobson]

marc...@welz.org.za wrote:

> Some people are going to say "not possible, the call is
> end-to-end encrypted". Actually no. Illustrative example: The
> intercept reported that zoom claimed end-to-end encryption,
> but instead had one shared key, and used ECB (a really poor
> way of using a cypher). That is why it works so well, as a
> single lost packet doesn't garble the rest of the stream. More
> importantly, unlike Balsamic Vinegar or Zero Percent Fat,
> there is little enforcement of what these terms mean, and
> governments are keen to weaken encryption further.

In Zoom's case, I believe it did in fact refer to "encrypted from user to data 
centre, then encrypted from data centre to other user" with an unencrypted bit 
in the middle. You could still argue semantics and say that it is encrypted at 
both ends ...
Now for WhatsApp, things are a little trickier. From what I read it is 
genuinely encrypted from one user end all the way to the other user - good 
right ? But at each end everything is stored unencrypted. But that's no 
problem, both IOS and Android enforce sandboxed storage on Apps so the 
unencrypted chats etc are safe ?
Well what Faceborg did was to subtly change things so that both WhatsApp and 
Facebook clients use the same sandboxed storage - meaning that the Faceborg 
client has free access to your WhatsApp chats - and therefore Faceborg itself 
has free access should it choose to take a peek.
And of course, we all trust Faceborg to to abuse such access don't we, after 
all they have no track record whatsoever of dodgy dealing or ignoring the law 
do they ?

Simon

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[ael]

On Thu, Aug 06, 2020 at 02:23:04PM +0100, ael wrote:
> On Thu, Aug 06, 2020 at 06:52:06AM -0400, Haines Brown wrote:
> > For me security refers primarily to file access. This takes me back to 
> > my question. If I craete a new user, named zoom for example, and have 
> > it run zoom, won't that limit access files on my HD?
> 
> One hopes so. But I had to install the zoom deb package via root.
> Since it is closed source, who knows what the package might do?

Actually zoom does offer a tarball for download, so that can be checked
and so is safer than a closed deb.

ael

___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[Joril via Dng]

Hello,

On 06/08/20 15:27, ael wrote:

Actually zoom does offer a tarball for download, so that can be checked
and so is safer than a closed deb.


Well if you want you can inspect debs too, Midnight commander even 
provides a "virtual filesystem" implementation for it


Bye!
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[wirelessduck--- via Dng]

> On 6 Aug 2020, at 20:52, Haines Brown  wrote:
> 
> For me security refers primarily to file access. This takes me back to 
> my question. If I craete a new user, named zoom for example, and have 
> it run zoom, won't that limit access files on my HD?

With the dpkg-deb utility you can extract all the control information and 
pre/post install/rm scripts from the .deb file so you can inspect what the 
package would do on installation/removal.

— 
Tom
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

[DNG] Can't install Gwenview on Devuan Beowulf with XFCE

[Emiliano Marini via Dng]

Hi all,

I wonder if it's possible to install Gwenview (the image viewer from KDE)
on a XFCE installation.

I have this sources configuration:

root@vaio:/home/emi# cat /etc/apt/sources.list
## package repositories
deb http://pkgmaster.devuan.org/merged beowulf main
deb http://pkgmaster.devuan.org/merged beowulf-updates main
deb http://pkgmaster.devuan.org/merged beowulf-security main
deb http://download.virtualbox.org/virtualbox/debian buster contrib

And this is what i get when I try to install 'gwenview':

root@vaio:/home/emi# apt-get -s install gwenview
Reading package lists... Done
Building dependency tree
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:

The following packages have unmet dependencies:
 gwenview : Depends: kinit but it is not going to be installed
Depends: kio but it is not going to be installed
Depends: libkf5configwidgets5 (>= 5.23.0) but it is not going
to be installed
Depends: libkf5iconthemes5 (>= 4.96.0) but it is not going to
be installed
Depends: libkf5kiocore5 (>= 5.44.0) but it is not going to be
installed
Depends: libkf5kiofilewidgets5 (>= 5.41.0) but it is not going
to be installed
Depends: libkf5kiowidgets5 (>= 5.24.0) but it is not going to
be installed
Depends: libkf5kipi32.0.0 but it is not going to be installed
Depends: libkf5parts5 (>= 4.96.0) but it is not going to be
installed
Depends: libkf5xmlgui5 (>= 4.98.0) but it is not going to be
installed
Recommends: kamera but it is not going to be installed
Recommends: kio-extras but it is not going to be installed
E: Unable to correct problems, you have held broken packages.

Sorry if I'm asking a dumb question, but I'm not a DE expert user.

I tried other image viewers like eog, eom, ephoto, geeqie and phototonic,
but none of them cover my needs (I really miss Gwenview).

Appreciate any help.

Cheers,
Emiliano.
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[Rick Moen]

Quoting ael (adrian.lawre...@physics.oxon.org):

> One hopes so. But I had to install the zoom deb package via root.
> Since it is closed source, who knows what the package might do?

I hope you know that 'ar vx $THING.deb' unpacks $THING.deb in place,
without installing it.  Doing that gives you text file debian-binary 
with a brief package metadata statement, control.tar.gz containing
md5sums and a control directory for building the package, and (last but
not least) data.tar.xz, the tree of files that would be installed on
your system.

Or, if you just want the contents of the deb-enclosed data.tar.xz tree
unpacked into the current directory with less fiddling:

$ dpkg-deb -xv $THING.deb

You might want to grab and sample .deb, put it in /tmp, and experiment,
to see what I'm talking about.

Anyway, root privilege is _not_ needed for such things.

-- 
Cheers,  Lost my car phone.
Rick Moen-- Matt Watson (@biorhythmist)  
r...@linuxmafia.com 
McQ! (4x80)
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[marc]

> I'm a product of the Great 
> Depresssion, and so security for me fixates on political snooping. I'm 
> less concerned about being ripped off than looming fascism. I'm not 
> suggsting your concern is not important, jut that it is not the same 
> as my own.

My concerns relate to both of those. People being easily identified and
tracked in real life is something that strengthens authoritarian regimes 
(whether fascist or communist) as well coercive corporate interests. 

> For me security refers primarily to file access. This takes me back to 
> my question. If I craete a new user, named zoom for example, and have 
> it run zoom, won't that limit access files on my HD?

Yes, under two conditions: 

  - your other users (holding confidential data) have more restrictive 
permissions on their directories (chmod 700 ~)

  - the application won't try a local privilege escalation exploit 
(kernel or CPU bug, or even back door). 

regards

marc
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Can't install Gwenview on Devuan Beowulf with XFCE

[Ludovic Bellière]

Hi Emiliano,

In conflict resolution, I find aptitude to be superior. You should use
it too :)

On the matter of gwenview, it is part of the KDE desktop, which depends
on elogind. By default, XFCE uses consolekit which is in conflict and
thus fails the install. Thus, you'll have to switch from consolekit to
elogind if you wish to use anything KDE.

Have fun


On 6/08/20 18:27, Emiliano Marini via Dng wrote:
> Hi all,
> 
> I wonder if it's possible to install Gwenview (the image viewer from
> KDE) on a XFCE installation.
> 
> I have this sources configuration:
> 
> root@vaio:/home/emi# cat /etc/apt/sources.list
> ## package repositories
> deb http://pkgmaster.devuan.org/merged beowulf main
> deb http://pkgmaster.devuan.org/merged beowulf-updates main
> deb http://pkgmaster.devuan.org/merged beowulf-security main
> deb http://download.virtualbox.org/virtualbox/debian buster contrib
> 
> And this is what i get when I try to install 'gwenview':
> 
> root@vaio:/home/emi# apt-get -s install gwenview
> Reading package lists... Done
> Building dependency tree      
> Reading state information... Done
> Some packages could not be installed. This may mean that you have
> requested an impossible situation or if you are using the unstable
> distribution that some required packages have not yet been created
> or been moved out of Incoming.
> The following information may help to resolve the situation:
> 
> The following packages have unmet dependencies:
>  gwenview : Depends: kinit but it is not going to be installed
>             Depends: kio but it is not going to be installed
>             Depends: libkf5configwidgets5 (>= 5.23.0) but it is not
> going to be installed
>             Depends: libkf5iconthemes5 (>= 4.96.0) but it is not going
> to be installed
>             Depends: libkf5kiocore5 (>= 5.44.0) but it is not going to
> be installed
>             Depends: libkf5kiofilewidgets5 (>= 5.41.0) but it is not
> going to be installed
>             Depends: libkf5kiowidgets5 (>= 5.24.0) but it is not going
> to be installed
>             Depends: libkf5kipi32.0.0 but it is not going to be installed
>             Depends: libkf5parts5 (>= 4.96.0) but it is not going to be
> installed
>             Depends: libkf5xmlgui5 (>= 4.98.0) but it is not going to be
> installed
>             Recommends: kamera but it is not going to be installed
>             Recommends: kio-extras but it is not going to be installed
> E: Unable to correct problems, you have held broken packages.
> 
> Sorry if I'm asking a dumb question, but I'm not a DE expert user.
> 
> I tried other image viewers like eog, eom, ephoto, geeqie and
> phototonic, but none of them cover my needs (I really miss Gwenview).
> 
> Appreciate any help.
> 
> Cheers,
> Emiliano.
> 
> ___
> Dng mailing list
> Dng@lists.dyne.org
> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
> 



signature.asc
Description: OpenPGP digital signature
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] Zoom? Rather not...

[tempforever]

marc wrote:
>> For me security refers primarily to file access. This takes me back to 
>> my question. If I craete a new user, named zoom for example, and have 
>> it run zoom, won't that limit access files on my HD?
> 
> Yes, under two conditions: 
> 
>   - your other users (holding confidential data) have more restrictive 
> permissions on their directories (chmod 700 ~)
> 
>   - the application won't try a local privilege escalation exploit 
> (kernel or CPU bug, or even back door). 
> 

An additional layer of security would be for users to have encrypted
home folders.  Somehow I managed that on my ascii machine, but I'm not
seeing the --encrypt-home option in adduser now.  With encrypted home,
as long as the user is not logged in, other users (even root) will not
have access to useful data.  Or, instead of encrypting home, you could
only encrypt sensitive data, and make sure it's not currently
unencrypted while using the new user and zoom.


As a side note, this is one thing that drove me away from systemd.  On
the previous distro I used, I noticed that I could log on userA (with
encrypted home), then log off userA, and userA's home folder remained
mounted unencrypted until reboot.  This was one of the first things I
tested for functionality in Devuan -- and it does what I expected it to
do: when logging off, the unencrypted home is unmounted.

Not that I have anything to hide.  Seriously, if someone were to
confiscate or clone my hardware and manage to break the encryption, they
would be very puzzled why I bothered to do so.  :-)
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng

Re: [DNG] history

[Dimitris via Dng]

On 8/7/20 12:36 AM, marc wrote:
> People being easily identified and
> tracked in real life is something that strengthens authoritarian regimes 
> (whether fascist or communist) as well coercive corporate interests. 

there were no communist authoritarian regimes in history.. communist by
name perhaps, but in reality, authoritarian = fascist..

so please don't reproduce neoliberal b*shit...



signature.asc
Description: OpenPGP digital signature
___
Dng mailing list
Dng@lists.dyne.org
https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng