Choose style:

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - esjay

Pages: [1] 2 3
1
GNU/Linux Discussion / Re: When do we say its enough?
« on: November 20, 2019, 02:56:07 pm »
Have a look and think about it:

https://www.debian.org/vote/2019/vote_002

Personally speaking, I dare to say that every systemd user has no real reason to feel naked in comparison to other users of other init systems. There are way more ways to get hacked. So many engineers (Fedora, Ubuntu, Suse, communities) have a close look.

I like Pep with systemd. If the debian vote mentioned above would show a strong sign against using systmd - well, I would change my mind. But not now.

2
General Discussion / Re: Too many elements from different DE's?
« on: November 20, 2019, 02:23:16 pm »
Quote
Depending on the stuff you have installed and the weight of them actually running I guess. Is this all installed in Peppermint? Did you uninstall any of the original managers, before installing the others?? Usually yes you could run into problems, if you installed these with the existing LXDE/Xfce still installed as Deepin is totally different the mouse theme is OK. I take it you login to Deepin side separately? As in on the login screen you pick Deepin? Problem here though is you'll probably find some Peppermint Apps not work properly, because they were written to run with Nemo and LXDE/Xfce. PCNetSpec will be able to explain better than I and no doubt others can too.  ;D
Yeah, all installed in Pep 10. I never use any other desktop, just the default XFCE/LXDE. Seems to be working fine so far (about an hour) but I just wanted to pick someone's brain. Thanks.

Wait, all this on Pep 10 - that's some kind of a Seasonal Best. On the other hand this shows the Power of Linux. Peppermint's success story is based on cherry picking. If all the stuff on your system with its fulfilled dependencies is installed successfully it should work for a while. I am curious.
 

3
I am late to the party.

I was thinking about updating the BIOS and did not do it. I love peace and silence.
Correct me if I am wrong but it might be a good idea to stay with an old BIOS if it still works and get some nice linux-firmware updates. Use a secure browser and enjoy your life.

All the best!

4
Development / Re: Xorg or Wayland, that's the question
« on: June 01, 2019, 04:48:54 pm »
At least I tried to do my very best.  ;)
I don't know when it happened but I got the impression that Wayland is in theory a great concept while Xorg still is in practice a great concept. (Ups!)
Question: Is it impossible to put a security layer above Xorg to protect its levels?

5
Development / Xorg or Wayland, that's the question
« on: June 01, 2019, 02:09:41 pm »
To make it short: A lot talk is about Wayland as the upcoming standard for security. Despite of the benchmark performance (Xorg/Xserver is a strong competitor!) I am interested in technical details. I still think that Xorg is not a bad choice, considering all the possible security features like sandboxing, apparmor and so on. Thoughts?

6
Have made a freshhhhhhh install and all I can say is thank you all.  :D
If someone has the time for a quick answer:
Everybody is talking about Wayland and how secure it is. I still believe that Xorg isn't that bad and it still is a good choice. Input please!

7
General Discussion / Re: Update the isos
« on: November 03, 2018, 07:48:00 am »
Yeah you can expect a respin of the ISO around Christmas(ish) .. this will bring all packages up to date, and may contain a few minor 'tweaks'.

Basically we have a new release annually (some time around May-July), and a respin of the ISO at around the 6 months stage.

I must add my mustard. :)

This rhythm is all right. Compared to a rolling release distro, the resulting update after the initial installation is at the moment downright cute.

8
Nowhere in that patch does it mention the issue is with the "flatpak runtime", it could equally be saying there's a problem with the "epiphany runtime" (as contained in the flatpak version).

Unless you have confirmation from elsewhere that it's the "flatpak runtime" that's opening the rest of the system to a security issue ?

Or is this that they think the flatpak version of epiphany isn't secured properly .. which may not be a flatpak issue at all, and more about epiphany itself ?

My point is, there's too little info here to draw any meaningful conclusions.

Don't take this as me defending flatpak/snap, I hate the things for plenty of other reasons (including from a security standpoint when compared to repos with oversight), but if I'm gonna go off shouting about security issues a little information would be nice.

A liitle bit too late, sorry for that, but busy times...

You are right and it is better to avoid conclusions without any good infos. That is why I have asked here if someone is knowing more than I do (and I still know nothing new). Sorry.

9

"So what's the problem here? .. an issue with epiphany, or a problem with flatpak's as a whole?

Which "runtime" are they talking about? "

I have no idea what this means. But the sentence "Flathub downloads are currently not recommended due to major
security problems discovered in the application runtime" (sic!) indicates that this is something fundamental, because all flatpak apps are connected with a so called runtime environment which is specific for all flatpaks to make them work in every linux distribution, no matter which one. If I am right, this is a good and a bad news. Bad, because flatpaks (and snaps) were introduced as state of the art for security fans and now we have to realize once again that security is wishful thinking. Good, because there is always someone who makes a good job...

10
I have disabled Secure Boot on all my laptops as well.

To whom it may concern: We are talking about security. This was my yesterday shocker, what do you think about this:

https://github.com/GNOME/epiphany/commit/8f26b7ff3b7d4cec5c752bc00cae7c8e8c8b0ce4

11
That is true. To sum up, Peppermint with its LTS base is a fine system. Apparmor, Snaps, firejail, ufw and more - quite a lot to feel good at all.

12
Considering secure boot I am still waiting for enlightenment, the WOW-effect that it makes my life better. I can imagine a situation that this might happen but right now - nothing around here.

I think the NCSC has given good advice and I am looking to follow up. By the way, at the moment I am a big fan of firejail and snaps (Chromium beta).   

13
New Users / Re: Kernel 4.15.0-24 kills my ethernet connection
« on: July 20, 2018, 04:09:21 pm »
That is excellent work! Very fast and now hassle-free. Kernel 4.15.29 is working fine.
Thanks to whom it may concern and especially Zeb and PCNetSpec :)
Happy to be here and thinking about a way to help with my limited skills...


14
New Users / Re: Kernel 4.15.0-24 kills my ethernet connection
« on: July 19, 2018, 04:26:52 pm »
I have had problems with my wlan as well and was confused, but I went back to 4.15.23. I do not think that it is a risk if a router and/or a firewall runs in the background. We should wait until the next kernel release is out.

A few weeks ago I have read an article about the quality of the kernel releases. If I remember well there was some talk about too much work and no proper quality control. I can not say if this is true  but we all know that bleeding edge with kernel installations means a little bit too much stress sooner or later. Do less, but do it well...







15
Thanks a lot, you made my day.
That is exactly the link I should have found on my own.... ;)

Pages: [1] 2 3