I gave up because pipx refuses to install urwid, and I think Debian's version is drumroll way too old. ;)
I wish pipx just had scli. There's an scli package in PyPI, but it's literally an empty placeholder for nothing.
Infuriating.
🌀 16 years of CVE-2008-0166 - Debian OpenSSL Bug
— 16years.secvuln.info
"A patch in Debian's and Ubuntu's OpenSSL packages broke the random number generator, effectively limiting the number of possible keys to a few ten thousand plausible variations"
On the topic of "key rotation, it's not just for HTTPS", @hanno finds hundreds of DKIM keys apparently generated using the #Debian#OpenSSL predictable PRNG vulenrability from 2008 (CVE-2008-0166):
Wenn der Package-Maintainer die Software die er packertiert selber nicht nutzt... Ich hab schon wieder massive Kopfschmerzen...
"...schreibt Klode, dass er die [...] diese Funktionen entfernt. Diese dienten vermutlich dem Nachladen eines favicon einer Webseite, meint der Maintainer. Er gehe davon aus, dass die meisten Leute nicht wollten, dass ihre Passwort-Manager irgendwohin verbinden, wovon sie nichts wüssten."
Schade das der Maintainer des Debian-Paketes nicht ansatzweise die Funktionalität eines Passwortmanagers verstanden hat. Meiner Meinung nach missbraucht hier ein Paketbetreuer seine Kompetenzen. Letzlich schadet er mit seiner Vorgehensweise Debian insgesamt als Linuxdistribution.
The whole #KeePassXC#Debian thing is kinda giving me second thoughts wrt. the whole #Linux distro and #opensource packaging thing in general. My understanding of the implied agreement between me as a dev and a distro's package maintainer is: the maintainer, to the best of their ability, tries to make my software work "as intended". In return, they get to publish it under my software's name.
That's clearly not how Debian views things. And I can't accept distros publishing broken sw w/ my name.
I see some people are really disappointed about Debian packaging a stripped-down version of KeePassXC. But hey, I actually wish there was also a minimal @thunderbird package without integrations of IRC or Matrix etc, just with core email functionality.
Breakthrough: I wrote a program that prints a line of text!
So what's the point?
Program written in #rust, cross compiled on #debian, linked with #vlink to a TOS executable {on Windows), put into a disk image on debian and executed on a real ST via a #gotek floppy emulator with #flashfloppy firmware.
Amazing experience! 😎
The system uses roughly around 20 - 30 Watts under normal desktop usage - peaking at 60 when the load is high.
Not going back to the #Ryzen anytime soon... just don't need the power.
Besides: It is quiet and cool - like that a lot.
Running #Debian with #Xfce on it and also have two vm's that I run most of the time.
Also: There is a spare NVMe in there... room for more fun 😎
This "packagers thinking they know better than the developers, and unilaterally patching things" mentality, along with distros often shipping outdated versions, is why many upstream software developers dislike dealing with Debian (& any LTS distro), and now ask users to test/run #Flatpak versions of their applications first and foremost.
Debian Users - Be aware the maintainer of the KeePassXC package for Debian has unilaterally decided to remove ALL features from it. You will need to switch to keepassxc-full to maintain capabilities once this lands outside of testing/sid.