Choose style:

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - esjay

Pages: [1] 2 3
1
Development / Re: Xorg or Wayland, that's the question
« on: June 01, 2019, 04:48:54 pm »
At least I tried to do my very best.  ;)
I don't know when it happened but I got the impression that Wayland is in theory a great concept while Xorg still is in practice a great concept. (Ups!)
Question: Is it impossible to put a security layer above Xorg to protect its levels?

2
Development / Xorg or Wayland, that's the question
« on: June 01, 2019, 02:09:41 pm »
To make it short: A lot talk is about Wayland as the upcoming standard for security. Despite of the benchmark performance (Xorg/Xserver is a strong competitor!) I am interested in technical details. I still think that Xorg is not a bad choice, considering all the possible security features like sandboxing, apparmor and so on. Thoughts?

3
Have made a freshhhhhhh install and all I can say is thank you all.  :D
If someone has the time for a quick answer:
Everybody is talking about Wayland and how secure it is. I still believe that Xorg isn't that bad and it still is a good choice. Input please!

4
General Discussion / Re: Update the isos
« on: November 03, 2018, 07:48:00 am »
Yeah you can expect a respin of the ISO around Christmas(ish) .. this will bring all packages up to date, and may contain a few minor 'tweaks'.

Basically we have a new release annually (some time around May-July), and a respin of the ISO at around the 6 months stage.

I must add my mustard. :)

This rhythm is all right. Compared to a rolling release distro, the resulting update after the initial installation is at the moment downright cute.

5
Nowhere in that patch does it mention the issue is with the "flatpak runtime", it could equally be saying there's a problem with the "epiphany runtime" (as contained in the flatpak version).

Unless you have confirmation from elsewhere that it's the "flatpak runtime" that's opening the rest of the system to a security issue ?

Or is this that they think the flatpak version of epiphany isn't secured properly .. which may not be a flatpak issue at all, and more about epiphany itself ?

My point is, there's too little info here to draw any meaningful conclusions.

Don't take this as me defending flatpak/snap, I hate the things for plenty of other reasons (including from a security standpoint when compared to repos with oversight), but if I'm gonna go off shouting about security issues a little information would be nice.

A liitle bit too late, sorry for that, but busy times...

You are right and it is better to avoid conclusions without any good infos. That is why I have asked here if someone is knowing more than I do (and I still know nothing new). Sorry.

6

"So what's the problem here? .. an issue with epiphany, or a problem with flatpak's as a whole?

Which "runtime" are they talking about? "

I have no idea what this means. But the sentence "Flathub downloads are currently not recommended due to major
security problems discovered in the application runtime" (sic!) indicates that this is something fundamental, because all flatpak apps are connected with a so called runtime environment which is specific for all flatpaks to make them work in every linux distribution, no matter which one. If I am right, this is a good and a bad news. Bad, because flatpaks (and snaps) were introduced as state of the art for security fans and now we have to realize once again that security is wishful thinking. Good, because there is always someone who makes a good job...

7
I have disabled Secure Boot on all my laptops as well.

To whom it may concern: We are talking about security. This was my yesterday shocker, what do you think about this:

https://github.com/GNOME/epiphany/commit/8f26b7ff3b7d4cec5c752bc00cae7c8e8c8b0ce4

8
That is true. To sum up, Peppermint with its LTS base is a fine system. Apparmor, Snaps, firejail, ufw and more - quite a lot to feel good at all.

9
Considering secure boot I am still waiting for enlightenment, the WOW-effect that it makes my life better. I can imagine a situation that this might happen but right now - nothing around here.

I think the NCSC has given good advice and I am looking to follow up. By the way, at the moment I am a big fan of firejail and snaps (Chromium beta).   

10
New Users / Re: Kernel 4.15.0-24 kills my ethernet connection
« on: July 20, 2018, 04:09:21 pm »
That is excellent work! Very fast and now hassle-free. Kernel 4.15.29 is working fine.
Thanks to whom it may concern and especially Zeb and PCNetSpec :)
Happy to be here and thinking about a way to help with my limited skills...


11
New Users / Re: Kernel 4.15.0-24 kills my ethernet connection
« on: July 19, 2018, 04:26:52 pm »
I have had problems with my wlan as well and was confused, but I went back to 4.15.23. I do not think that it is a risk if a router and/or a firewall runs in the background. We should wait until the next kernel release is out.

A few weeks ago I have read an article about the quality of the kernel releases. If I remember well there was some talk about too much work and no proper quality control. I can not say if this is true  but we all know that bleeding edge with kernel installations means a little bit too much stress sooner or later. Do less, but do it well...







12
Thanks a lot, you made my day.
That is exactly the link I should have found on my own.... ;)

13
Hi everybody, nice offer for a low budget machine and therefore I am having hard times to withstand. Do you think the specs will be a problem to install Peppermint as the only OS? Edit: I ask because of the 32GB EMMC drive. I have no idea if this may cause trouble during the installation (lack of support?).

Lenovo 120S-14IAP 81A500ACGE 14", Intel Pentium N4200, 4GB Onboard Ram (LPDDR4 2400), 32GB EMMC, W10

14
General Discussion / Re: Peppermint OS 9 Is Awesome!
« on: July 11, 2018, 02:37:50 am »
I am here to say thank you. This release works. It is fast and stable. Great job!

15
General Discussion / Re: Google's Steely Tentacles.
« on: March 18, 2018, 12:53:22 pm »
Graeme, I understand what you mean. Let me clarify my position. I see that writing just a few words is misleading and I am not a native english speaker.

I do care about privacy and open speech or all the other rights. When I say that I have nothing to hide (because I have had to realize that in IT technologies a highly competent person or organization can spy me out easily) this simply means in other words that I can not stop it unfortunately, but whoever is doing so is gonna waste time and energy. I will not change my way of living. Instead of showing my middle finger I prefer to say that I have nothing to hide. It does not mean that I am not angry (indeed I am). The more people talk about privacy in the www  the better. This is important to understand what is possible and what is going on.

Pages: [1] 2 3