On Mon, Apr 10, 2017 at 11:28 PM, marc wrote:
> > You still should use sudo, with a password - the user's own password.
> > Using root password many times, every day, is bad for security (the more
> > times you type it the higher the chances are it will be captured) and it
> > instills the desi
If at all possible, get it from backports instead of testing. If that's not
possible, your options are to backport it yourself (preferable), to upgrade
to testing, or to set up pinning to limit how much of testing you pull in.
While it's strongly warned against, so long as you pay attention and ha
They won't be using it much longer. Chrome and Firefox are well on track to
phase Flash out entirely over the next year or two.
On Fri, Aug 5, 2016 at 6:01 AM richard lucassen
wrote:
> On Thu, 04 Aug 2016 22:17:04 +
> Stephanie Daugherty wrote:
>
> > As a side note,
IIRC Google dropped support of 32bit versions for both maintenance reasons
and security reasons - IIRC one of the reasons was they felt they could
offer more effective protection against various memory attacks in a 64bit
executable, but the primary reason was to reduce the number of builds that
had
Ugh, the formatting seems to be fucked in
http://www.irchelp.org/irchelp/irctutorial.html
Sorry about that, I'll have to look into that today.
On Wed, Aug 3, 2016 at 8:59 AM aitor_czr wrote:
>
> Hi Katolaz,
>
> On 08/03/2016 02:00 PM, KatolaZ
> wrote:
>
> On Wed, Aug 03, 2016 at 11:25:21AM +02
Assuming you are in #devuan on freenode, I don't see any current settings
on the channel that would be likely to stop you from speaking there.
On Tue, Aug 2, 2016 at 7:26 PM aitor_czr wrote:
> Hi all,
>
> I recently wrote a message in the IRC Channel #devuan, but it doesn't
> appear.
>
> Am i do
When recovering from systermd-related breakage while first trying out
Debian jesse, I ended up booting with init=/bin/bash a lot.
You can rather easily bring up a fully functional system that way, at least
for long enough to fire up a browser, find the problem, and then recover.
My process for d
In most cases right now, we have either the option to disable secure boot,
or there is a version of GRUB that is signed, therefore permitting booting
into other operating systems. For right now, investigate before buying to
make sure you have the option to boot your operating system of choice.
At
On Wed, May 18, 2016 at 8:13 PM Joel Roth wrote:
> Hi,
>
> Having handled many of the issues relating to init system
> to the point of being able to release Devuan jessie beta,
> I wonder if Devuan community is ready to support action on
> other scourges of the linux on personal computer ecosyste
Process supervision is something I'm very opinionated about. In a number of
high availability production environments, its a necessary evil.
However, it should *never* be an out of the box default for any
network-exposed service, Service failures should be extraordinary events,
and we should striv
I assume "penetration testing", and seems like a shortsighted view.
On Tue, May 3, 2016 at 1:57 PM Steve Litt wrote:
> On Tue, 3 May 2016 09:05:03 + (UTC)
> Go Linux wrote:
>
>
> >
> >
> > Linux = Pen testing
> > Windows = everything else
>
> What is pen testing? Am
udeb files (aka micro-deb) are stripped down packages only used in building
the installer and loading installer components into memory via a network
connection - they are explicitly intended for tightly constrained
environments such as the installation environment and embedded systems, and
not mean
Check for possible accidental causes - routing issues, PMTU blackholes, and
other oddities that could be innocent mistakes - never assume malice when
stupidity will do.
I
On Sun, May 1, 2016 at 10:53 PM Robert Storey
wrote:
> As I mentioned in the "Beta" thread, whenever I tried to access devuan
I'd like to see a long term focus on removing the entanglement with other
invasive dependencies, particularly those which are likely to be folded
into systemd in the future, and on staying true to the Unix philosophy.
DBUS and PulseAudio are freedesktop backed technologies which are likely to
be f
Correct. The hibernation image would be for the old kernel, and on the next
boot, the new kernel would choke on it, effectively making it an unclean
shutdown.
On Wed, Apr 13, 2016 at 11:22 AM Steve Litt
wrote:
> On Wed, 13 Apr 2016 12:20:49 +0200
> richard lucassen wrote:
>
>
> > Beware of kern
One of the biggest improvements I'd like to see in the installer in
general, including the netboot installer, is the ability to easily install
a newer version than the ISO was created for. I know it can be done
manually with debootstrap, and such, but being able to "self-update" the
entire installa
I would argue vdev belongs in / rather than /usr because it is likely to
be necessary to mount filesystems and such.
The split is somewhat arbitrary these days but historically things needed
during the boot process and to repair the system have gone in / while less
essential bits have gone into /
At this point, if they are so insistent on getting everyone over to win 10,
they've be better off to just declare it to be a "service pack" to Windows
7. It would be less toxic to their reputation than the underhanded shit
they are doing.now.
On Tue, Mar 15, 2016 at 4:29 PM Steven W. Scott
wrote:
PM Stephanie Daugherty
wrote:
> The version in Devuan Jessee will be the version that was currently
> packaged at the time Debian Jessie was frozen. Devuan adheres to the same
> release model as Debian - updates to a package which modify its
> functionality in any way whatsoever are f
The version in Devuan Jessee will be the version that was currently
packaged at the time Debian Jessie was frozen. Devuan adheres to the same
release model as Debian - updates to a package which modify its
functionality in any way whatsoever are forbidden for the life of the
distribution, and secur
On Wed, Mar 9, 2016 at 5:11 PM Steve Litt wrote:
> One man's opinion: *NO* computer is secure enough for an individual's
> banking or investments.
>
>
>
It's really a mixed bag. On one hand, you can't completely trust any
computer, on the other, you can't really trust the computers that handle
ch
There's a fairly elegant, but seldom used solution to this problem,. GNU
Stow, which is designed to basically be a "package manager" for locally
installed packages.
It works by using symlinks, so that a "package" foo might be installed into
/usr/local/stow/foo and have bin/ and lib/ and all the o
Just to clarify about "default" desktop environment and what that actually
means.
The "default" desktop environment is the one that gets squeezed onto the
first CD/DVD of a set of installation media, as well as the one that's
installed if you just click "desktop environment" in tasksel without
spe
On Sun, Jan 24, 2016 at 7:55 AM, Edward Bartolo wrote:
> Hi,
>
> Thanks for your reply. I am noticing that since some time ago websites
> are starting to 'brainwash' users to use cookies. This is often done
> by displaying a high contrast banner at the top threatening that by
> using their websit
On Tue, Jan 19, 2016 at 4:12 PM, Arnt Karlsen wrote:
> ..why did Debian kill ssh into localhost?
> Is su or sudo safer than ssh nowadays?
>
Because the architecture of Linux gurantees that root has a fixed account
name, fixed UID, and, if in a server environment, will be essentially a
shared ac
the plethora of numbered config files is a consequence of debian policy
(config files have to be owned by exactly one package, and that's the only
package which can automatically touch them) rather, than any design of
grub2 itself. Split configs is the way that Debian works around this policy
while
OpenBSD's overall stance on virtualization makes it a poor choice for a
desktop OS unfortunately. I partially understand the reasoning, however,
given the limits of software support on the *BSDs in general, and OpenBSD
in particular, the lack of virtualization options effectively makes it
unusable
Having dealt with systems with half a dozen interfaces in the past there's
a very small number of cases where it even matters, but when it does, it
can be a huge inconvenience either way.
Their (for once, rational) argument is that Interface names of existing
interfaces should never change by addi
On Sun, Jan 3, 2016 at 8:25 AM, Roger Leigh wrote:
> Regarding the comments people made about having separate / and /usr
> filesystems. While it was common historically, there is little or no
> practical benefit to doing so in 2016. Storage sizes make it unnecessary
> for pretty much all practi
On Sun, Jan 3, 2016 at 3:59 AM, KatolaZ wrote:
> But what's the point of having modules "at the end of [the kernel]
> image"? You can just compile-in them.
>
Simple, It's to be able to turn a packaged, distribution supplied kernel
into one that will successfully boot on obscure hardware - to be
Might be worth trying to get interest upstream for functionality to "merge"
binary modules with an already compiled kernel as a single file.
Presumably, it wouldn't be *that* difficult for the kernel to look for
modules at the end of its image and load them early.
Not sure what the kernel maintain
Regardless of who proposed it, merged /usr is still a reckless change that
needlessly complicates things.
The /usr and / split hasn't been perfectly followed, ever, but, still
achieves the goal of having a system that can be recovered from various
problems easily.
I should be able to substitute /
FHS 2.3 apparently. They appear to serve mostly the same purpose, but /mnt
is specified as "temporarily mounted filesystems" while /media is specified
as just "removable media".
Regardless, since the implementation of /media, automounters have tended to
mount stuff there, while things manually mou
On Fri, Aug 14, 2015 at 8:20 PM James Powell wrote:
> Slackware is maintained by 3 core people with extra help as needed. The
> rest of the packages are pushed by the community at large contributing.
> Devuan doesn't have to maintain every package possible. That's ludicrous to
> think so.
>
> Deb
If anything, shims for systemd should be something that relies on
LD_PRELOAD to provide the wrappers, rather than making them broadly
available - so that it's possible to use it as a workaround, but without
deliberately doing so, the affected packages WILL break.
I fear however that we're going to
On Thu, Aug 13, 2015 at 4:06 PM T.J. Duchene wrote:
>
> 1. You can't mark a package as "Do not install." APT simply does not give
> you the option.
>
> Heaven knows, there are a lot of people who dislike things like network-
> manager, and do not them to install for any reason.
>
> Someone migh
On Fri, Jul 17, 2015 at 1:50 AM James Powell wrote:
> There is one thing I would recommend different that the standard Debian
> model. Release only the right amount of packages to create a working
> operating system under a complete installation, and dedicate the rest of
> all packages to Debian
ILTS just doesn't make sense with a release cycle that's already set to be
one of the slowest in the Linux world. Debian, and now Devuan releases are
extremely conservative. N+1 cycles are good enough. The manpower that would
be required to maintain 4, 5, or more more supported "released" branches
On Sun, Jun 14, 2015 at 11:46 AM, Steve Litt
wrote:
> This is an exact analogy of saying "I believe seatbelts are evil,
> because car crashes should not happen."
>
> Shouldn't, but do. Besides that, some drivers are incompetant. Just
> like some daemon authors are incompetant. Saying incompetent
On Sun, Jun 14, 2015 at 9:59 AM, Didier Kryn wrote:
> What happens then? Does the webprinting service crash? Or does it hang
> until Cups is ready? Is it able to detect that it is hanging? The last
> would probably be the most sensible way to handle the dependency :-) A
> professional webprin
40 matches
Mail list logo
