Sure, sudo is a setuid binary, but it’s a fairly simple program, and at some point, you have to trust the code.
Have to trust the code ? doas for OpenBSD was created because of issues with sudo.
Talking with deraadt and millert, however, I wasn’t quite alone. There were some concerns that sudo was too big, running too much code in a privileged process. And there was also pressure to enable even more options, because the feature set shipped in base wasn’t big enough.
What Chinera is doing with dinit and turnstile is really interesting. It would be nice to have feature comparable approaches to the systemd monolith that distributions could choose from.
I’ve attempted to create a VM on my ubuntu host machine that is accessing the internet via a dedicated VPN app. I’m able to disconnect my host VPN and access the web within the VM, but cannot access the web when the host VPN is enabled. Ideally I’d like to enable the VPN on the host and pass through web access to the VM....
The moment your VPN app starts it will change gateway and name servers for your host. If the virtual NIC of your VM is bridged with your host I would expect it to work fine for the VM. Is this with KVM or Qemu or VirtualBox or something else ? How is networking configured ?
This comes a few days after Jack Dorsey confirmed that he had left the board of Bluesky and then starting to use Tw(X)tter and calling Tw(X)tter “freedom technology”. Coincidence ?
Earlier on Saturday, he unfollowed all but three accounts on X: Edward Snowden, Stella Assange, the wife of the WikiLeaks founder Julian, and Musk.
“Don’t depend on corporations to grant you rights,” Dorsey tweeted. “Defend them yourself using freedom technology. (you’re on one).”
Despite his promotion of alternatives to the site he founded, Dorsey has publicly shared his admiration for Musk. In 2022, he called the multibillionaire the “singular solution I trust” for the future of Twitter, though a year later he criticised Musk for his “fairly reckless” moves after taking control of the site.
I have a Raspberry Pi 02W running Pi-Hole and ordinarily things work perfectly, but I’ve got something in my house tripping my fuse box which I’m unable to locate. The tripper, not the fuse box. Anyway, what it means is occasionally, I lose power and so my router and my Pi-Hole go down....
On routers and modems the DHCP range is usually not allocating the full range for IP addresses to hand out to devices. If I were you I would configure the pi-hole to have a static IP address on the pi-hole itself so it will be independent from your router’s DHCP server. For example let’s say
the DHCP IP range is 192.168.1.20 to 192.168.1.254
then you can pick for example 192.168.1.19 for your pi-hole
With that approach you will avoid IP address conflicts and the pi-hole should be fine. If you’re using systemd on the pi-hole that is maybe easiest, here an example :
I bought a laptop yesterday, it came pre-installed with Windows 11. I hate win 11 so I switched it down to Windows 10, but then started considering using Linux for total control over the laptop, but here’s the thing: I keep seeing memes about how complicated or fucky wucky Linux is to install and run. I love the idea of open...
You don’t have to install Linux if you are not ready for it. You can test it without installing by using Linux live distributions. With Ventoy you can have 10 or 20 different Linux distributions on one USB stick and test them to see how well your laptop works with it and which flavors you would prefer.
If you want to test several Linux distributions Ventoy can be useful. You can have 10 or more different Linux distributions on one USB stick depending on the size of the stick. This will also save you time “flashing” an image iso to the stick each time because with Ventoy you’d simply copy the image iso files to the stick, quick and easy.
All the commenters suggesting that Proton is just a company and would always give in to legal requests and all other companies and any email provider would do the same, here’s some more to add. Yesterday I saw a now invalid toot comment from ProtonPrivacy on Mastodon Social where they wrote that it was Apple who was to blame and that Proton gave the recovery email address only because this was a case of a terrorism suspect suggesting that if that (terrorism) was not the case they would not have given in to the request. Today their comment sadly gives a 404 error. Searching a bit further this article comes up mentioning Proton and Wire :
In the new resolution, the National Audience judge recalls that in January, in a judicial report he issued on the case, he highlighted a conversation from July 12th and 13th, 2020, about the king’s visits, which was included in the Tsunami investigative evidence, and of which he admits that until that point he had not made reference in his investigation which extends over the period from 2016 to 2022. Specifically, one of the people under investigation, the Girona businessperson Josep Campmajó, spoke to the figure named Xuxu Rondinaire, with profile @marietadelulllviu, about mobilizations in 2019, using the Wire messenger app. The judge has asked for the identification of this person, information now obtained by the Civil Guard, which details that they used Europol to ask the Swiss authorities for the Wire firm to identify the person behind this pseudonym, with a profile that is also used in Proton Mail, an encrypted email system. In the police cooperation form requesting the information, the Spanish officers indicate to the Swiss authorities that the investigation is for the crime of terrorism.
The name/address of the terrorism suspect was actually given to police by Apple, not Proton. The terror suspect added their real-life Apple email as an optional recovery address in Proton Mail. Proton can’t decrypt data, but in terror cases Swiss courts can obtain recovery email.
Long time ago Riseup, focused on activists, required two invite codes, probably to avoid abuse. They’ve relaxed it with asking for only one invite code. You should imho not be asking for invite codes on the Internet but ask your activist friends or read this : support.riseup.net/…/13-how-do-i-get-an-account
Disroot stopped using RainLoop long time ago when people became aware of a security bug in RainLoop and the fact that the RainLoop project appeared to be dormant. I think Disroot switched to SnappyMail, and then to Roundcube.
Apparently it’s (by default) everything that doesn’t explicitly specify a license (especially a FOSS one) within the javascript code of the page, which is a ridiculously huge portion of JS on the internet.
It is never to late to start something and make people aware of problems and as far as I am concerned not only about software licenses but JavaScript as a security problem.
Mounting External Drives on Linux without root from the terminal
Hi friends,...
Smart meter data: the Government’s at it again (www.openrightsgroup.org)
Systemd Looks to Replace sudo with run0 (news.itsfoss.com)
Stack Overflow bans users en masse for rebelling against OpenAI partnership — users banned for deleting answers to prevent them being used to train ChatGPT (www.tomshardware.com)
[Question] Securely Passing Host VPN to KVM?
I’ve attempted to create a VM on my ubuntu host machine that is accessing the internet via a dedicated VPN app. I’m able to disconnect my host VPN and access the web within the VM, but cannot access the web when the host VPN is enabled. Ideally I’d like to enable the VPN on the host and pass through web access to the VM....
Telegram founder and CEO alledges signal has backdoors, they don't provide reproduceible builds, etc.
Here’s what he said in a post on his telegram channel:...
[Resolved] Cannot Reconnect With Static IP
I have a Raspberry Pi 02W running Pi-Hole and ordinarily things work perfectly, but I’ve got something in my house tripping my fuse box which I’m unable to locate. The tripper, not the fuse box. Anyway, what it means is occasionally, I lose power and so my router and my Pi-Hole go down....
Zed Decoded: Linux when? - Zed Blog (zed.dev)
KVM Forum 2024: Call for presentations - QEMU (www.qemu.org)
I don't know anything about Linux and the idea of installing it frightens me. Where do I start?
I bought a laptop yesterday, it came pre-installed with Windows 11. I hate win 11 so I switched it down to Windows 10, but then started considering using Linux for total control over the laptop, but here’s the thing: I keep seeing memes about how complicated or fucky wucky Linux is to install and run. I love the idea of open...
Windows is hell, i need to do something
Yo linux team, i would love some advice....
Proton Mail Discloses User Data Leading to Arrest in Spain (restoreprivacy.com)
Junkyard computing - Repurposing Discarded Smartphones to Minimize Carbon (dl.acm.org)
The major takeaways of this work are:...
Mural painted on a house in Ilford, England (files.mastodon.online)
mstdn.social/...
First, Google wanted a tax break. Now, they want our water (www.thegazette.com)
Tom Mohan...
Free Software Webmail Systems (fsf recommended email providers) (www.fsf.org)