This is not a troll post. I'm genuinely confused as to why SELinux gets so much of hate. I have to say, I feel that it's a fairly robust system. The times when I had issues with it, I created a custom policy in the relevant directory and things were fixed. Maybe a couple of modules here and there at the most. It took me about 15 minutes max to figure out what permissions were being blocked and copy the commands from. Red Hat's guide.
So yeah, why do we hate SELinux?
Hey folks, thanks for all of your recommendations for distros a while back. I ended up settling on Fedora KDE, and have been futzing around with it on my old laptop just for funsies.
I've re-encountered an old problem though. The laptop's Caps Lock and F1 keys are busted, sending in dozens of keypresses per second even when unpressed. I solved this on windows with a bit of a headache (using a program to disable those keys), but I have no idea how to solve it in this environment. I've tried futzing with keyd with little success, and my search powers are really failing me here.
Any advice?
Let's say I want to build a GPS module for my car, which is only a GPS, doesn't hold anything else.
Or a recipe tablet for my kitchen which only hold a recipe app.
Is this kind of purposes common? What would be the best way to do this kind of stuff? How do I choose the hardware? How do I "lockdown" certain aspects I don't need about software?
These kind of devices could be convenient because, by only holding what's needed, they would use less resources, they would be completely distraction free and they would be suitable to be used by non tech savy user which would need to use only one or two programs without messing with the system in any way.
I know KDE ha some kind of multi app kiosk settings, GNOME also can achieve something similar tho it's more confusing.. There are some kiosk distros which only give you a browser. But I don't see anything that can be set up, customized, and locked like that.
But would that be the best way of achieving something like that? I mean to use a GPS I don't need a terminal, nor video codecs, nor a browser.. Maybe I can add the possibility to send Osmand google maps links.. Or I can decide to make it hold Spotify too to make it a radio as well.. But a full distro would be wasted!
But how do I prevent every other use except the intended ones? Is there an easy way to achieve a "one purpose device" using Linux? Should I simply use whichever distro I like and uninstall everything which is not needed (I see use case for arch)?
I feel like we have the total freedom of Linux distros on one side, and companies using managed devices on the other by setting complicated policies, but I don't know any options in between!
Maybe the focus here is the desktop environment more than distros! Are there desktop environment purposed to give the user a set of limited apps, or a single app (which isn't only a browser)?
Optimised | Simplified | For everyone - Backed by community, DietPi is a minimal OS image for SBCs - Raspberry Pi, Odroid, PINE64 etc. Install software optimised for you!DietPi
Small tangent, I didn't have the energy to read your whole post, so you might have addressed that. But often it's cheaper to go with an established multi purpose device instead of building something new.
I used to build and sell Raspberry Pi gaming handhelds that were as cheap as possible and literally just held together by some string. My purpose was to get enough money through the sales to be able to build one for myself. Sure, the building process was fun. But when I crunched the numbers just buying a cheap smartphone and controller was much cheaper and more performant and versatile than the self-built solution.
Just buying a cheap phone or tablet is often the cheaper solution.
Heck, even Valve just bought off the shelve tablet displays and turned the image in software for the Steam Deck.
At first I was sceptical, but after a few thought, I came to the solution that, if uutils can do the same stuff, is/stays actively maintained and more secure/safe (like memory bugs), this is a good change.
What are your thoughts abouth this?
This is one of the old-time original arguments in the OSS community.
The crux of the matter is that the GNU licenses require that modifications be released back to the community. Other "more permissible" licenses like MIT do not.
So if you want to make a commercial version of X, and X is under a GPL, then any changes you make need to be released under the GPL. The idea being "I shared this code with the community with the intent that you can use it for free and modify it as you like, but you need to share back what you do." Also called "Share and share alike".
This defends against "embrace, extend, extinguish" tactics that companies like Microsoft has loved to do. They can't take your code, modify it for their own purposes and re-sell it possibly making a more popular version that is now proprietary.
Somewhat ironic example.
X (Xorg) has been MT licensed for 40 years. So is Wayland. So is Mesa.
I think Xorg is a good example of the real world risks for something like core utils. If you did not know or care until now that X and Wayland were MIT licensed, you probably do not need to care too much about utils licensing either.
In short, sell me on ufw.
I learned recently that yfw is basically replacing iptables "everywhere", and as I'm getting old and crusty, this means that I have to learn something new when I'd much rather practice yelling at kids to get off my lawn.
To me, iptables is fine, and I like its flexibility. I've been using it ever since it de facto replaced ipchains, so ease of use isn'treally a factor in this equation.
So my more pointed question is: Can I just stick to iptables, or am I missing out on something that can only be done with ufw?
These days it's a frontend for nftables. iptables is a legacy system that's eventually going to be removed (just like ipchains before it).
On modern systems, iptables is a wrapper around nftables. So you're essentially using nftables except without the ability to use any of its more powerful features.
For me, my personal projects are generally MIT licensed. I generally don't like "restrictions" on licenses, even if those "restrictions" are requiring others to provide their source and I want as many people to use my projects as possible, I don't like to restrict who uses it, even if it's just small/home businesses who don't want to publish the updated source code. Although, I admit, I'm not a huge fan of large corporations potentially using my code to generate a profit and do evil things with it, but I also think that's not going to be very common versus the amount of use others could get from it by having it using MIT who might not be able to use it otherwise with AGPL.
With that said, though, I have been starting to come around more to AGPL these days.
In my Company, we do use such code. But its mainly because we distribute our own Propriatary Linux OS.
We sometimes need to change such code, so we just put it on Github as a fork.
Hello all,
If this is not the right community for this question, I would be happy to be redirected elsewhere, so just let me know.
I recently configured my terminal emulator to an aesthetic that I like (custom font, coloring, shell prompt, etc) and it has made me wonder about customization in gnome.
One of the biggest things that I wish I could change in gnome is the grey-ness of the application view.
In this screenshot, you can see the familiar application view. In between the organizing folders, the desktops, and the dock, there is just so much nothing.
I am wondering if it is possible to customize this relatively easily. I would much prefer an image of my own choosing in place of this, or at least a different color from time to time.
Is anyone aware if this is configurable? I can't seem to find an extension for this, or any real information on how you would do such a thing.
Thanks
Those who don't have the time or appetite to tweak/modify/troubleshoot their computers: What is your setup for a reliable and low-maintenance system?
Context:
I switched to Linux a couple of years ago (Debian 11/12). It took me a little while to learn new software and get things set up how I wanted, which I did and was fine.
I've had to replace my laptop though and install a distro (Fedora 41) with a newer kernel to make it work but even so, have had to fix a number of issues. This has also coincided with me having a lot less free time and being less interested in crafting my system and more interested in using it efficiently for tasks and creativity. I believe Debian 13 will have a new enough kernel to support my hardware out of the box and although it will still be a hassle for me to reinstall my OS again, I like the idea of getting it over with, starting again with something thoroughly tested and then not having to really touch anything for a couple of years. I don't need the latest software at all times.
I know there are others here who have similar priorities, whether due to time constraints, age etc.
Do you have any other recommendations?
You simply don't do any maintenance whatsoever.
t. Got a arch linux install that I (rarely) perform "sudo pacman -Syu --noconfirm" and it works like a champ.
Comparing a PC maintenance to leaving the keys outside the front door is too dramatic, to not say the least...
...unless you work at NASA and/or your PC is holding something too valuable/sensitive/high-priority for others to want to hack it "that badly" -- which I (highly) doubt it.
No it is
pandasecurity.com/en/mediacent…
And:
You're allowing for more attack vectors that would not be there if the system were to be patched. Depending on the severity of the vulnerability, this can result in something like crashes or something as bad as remote code execution, which means attackers can essentially do whatever they want with the pwned machine, such as dropping malware and such. If you wanna try this in action, just spin up a old EOL Windows machine and throw a bunch of metasploit payloads at it and see what you can get.While nothing sensitive may be going to or on the machine (which may seem to be the case but rarely is the case), this acts as an initial foothold in your environment and can be used as a jumpbox of sorts for the attacker to enumerate the rest of your network.
And:
Not having vulnerability fixes that are already public. Once a patch/update is released, it inherently exposes to a wider audience that a vulnerability exists (assuming we’re only talking about security updates). That then sets a target on all devices running that software that they are vulnerable until updated.There’s a reason after windows Patch Tuesday there is Exploit Wednesday.
Yes, a computer with vulnerabilities can allow access to others on the network. That’s what it means to step through a network. If computer A is compromised, computer B doesn’t know that so it will still have the same permissions as pre-compromise. If computer A was allowed admin access to computer B, now there are 2 compromised computers.
From reddit.com/r/cybersecurity/com…
Many recent cyberincidents in have shared one characteristic: they have been possible thanks to a vulnerability in an IT system that needed patches.Panda Security (Panda Security Mediacenter)
Nice cherry picking/moving the goalpost, but that is not how refuting works. A PC at NASA has a much higher "threat level" than my Orange pi zero 3, just chilling on the background. Which means, a potential "security hole" may prove harmful for these pcs... but it'll definitely not hurt me in the slightest.
And before you parrot with other links and/or excuses... yes, I'm not negating their existence. I'm just saying they are there... but, well... "who cares"? If anything, its much faster to set up my distro back up "just like never happened before" than performing any "maintenance" whatsoever. Again, "Common sense antivirus" reigns supreme here -- know what you are doing, and none of these things will matter.
You keep using the word "maintenance". All I'm worried about is not installing any security patches for months.
The problem that I tried to highlight with my "cherry picking" is:
So unless you have separated this Orange Pi into its own VLAN or done some other advanced router magic, the Orange Pi can reach, and thus more easily attack all your other devices on the network.
Unless you treat your entire home network as untrusted and have everything shut off on the computers where you do keep private data, the Orange Pi will still be a security risk to your entire home network, regardless of what can be found on the little machine itself.
A PeerTube instance, mainly to publish videos concerning my own projects, but open to a community of like-minded people.AbnormalBeingsTube
Approaching the end of window 10 and have no plans on upgrading to 11.
I am trying to find alternatives to applications I regularly use before jumping ship (it is mostly a gaming focused pc) any suggestions?
There’s oculus software for my vr but don’t know what I’m going to do with that
Small update: probably going to do Linux mint as that appears to be the most beginner friendly
Update two: that's a lot of comments, and Thanks for all the info
Off the top of my head:
Gmail or any email: Thunderbird is pretty sweet and I need to use it more, but mostly just use the web clients anyway.
If you own GoG games, you can use Heroic Launcher instead of GoG Galaxy. It's gotten amazingly good, really fast. :)
I'd recommend Lutris over Heroic both because it runs locally where Heroic is Electron, and because Lutris allows community-based native Linux ports for games where applicable, eg. for Ultima VII: The Black Gate + The Forge of Virtue, Lutris gives you the option of installing that game with Exult instead of DOSbox, for Tomb Raider and Tomb Raider II, you have the option to install those with OpenLara, for Doom 1 and 2, you have the option to install those with ZDoom, for Little Big Adventure, you can install that with the ScummVM runner, etc.
Also, at least for DOS games where you don't have the option to install a community-based modern port, you can use native DOSbox as a runner instead of Windows DOSbox as well through Lutris.
Oh, and one more bonus particularly for GOG games in Lutris' favor over Heroic, is Lutris uses the offline installers so that if anything ever goes wrong with any given GOG game, you can just reinstall from the offline installer where Heroic operates more like GOG Galaxy or Steam in that it's always downloaded from scratch.
Hey, points for Lutris! Thanks for sharing!
I've had issues in the past installing stuff with Lutris, although for advanced scenarios like using community engines and stuff, that's really cool. I definitely have both installed on my machine for different reasons. Lutris handles EA / Origin stuff pretty well. (Titanfall 2 and Sims 2 Ultimate (not the Steam one) run beautifully on Linux, truly glorious!)
Electron annoys me as well, but I will say that I appreciate how Heroic hooks into GoG APIs.
It handles auto-updates, cloud saving, play time logging, that kinda stuff that made Galaxy decent and had a degree of convenience-parity with Steam.
(Maybe Lutris does this too now?)
For a complete newbie , I'd say Heroic has a bit of a smoother and expected ramp to just "Download game and run." But if you want more control, Lutris definitely has more options!
I also can't recommend Bottles enough for other games that aren't from distribution platforms. Shockingly simple.
If a tool (or distro) works well for you, it's a good option. Everyone has different opinions on the "best" distro, but since it's very subjective, there is no single "best" distro. There's only 2 distros I recommend against, that's Ubuntu (and close spin-offs) and Manjaro, because they have major objective downsides compared to equivalents like Mint or Endeavour. The distros I generally recommend to new users are Mint and Fedora, but feel free to look around, you're not forced to pick a specific one.
You noted you were likely going to choose Linux Mint, great! It's a "stable" distro, as in, it doesn't change much with small updates. Instead, new release versions (23, 24, 25, etc) come with new changes. Linux Mint comes with an App Store that can install from Flathub, which should be the first place to check for installing new applications.
As for VR, it depends heavily on which exact headset you have, and is not always a great experience on Linux right now (speaking from experience with an Index). The LVRA wiki is a great starting place: lvra.gitlab.io/. If you're on a Quest, WiVRN and ALVR exist, though they both have their own downsides. If you're on a PCVR headset from Oculus, your options are more limited. You might also want to consider a different distro, as VR development is moving very fast. Many VR users choose to go with a "harder" rolling release distribution, like EndeavourOS, to receive feature updates quicker.
Also of note, if you have the storage space, you can choose to "dual boot" (even with just one drive). This will give you a menu to choose between Windows and Linux when starting your computer, and will give you time to move stuff over. I generally recommend this, as it provides an option to immediately do a task you know how to do on Windows, when it's absolutely required to do the task asap.
Welcome to the LVRA Wiki # A collection of links, useful resources and guides for the amazing world of VR on Linux. Feel free to contribute to this wiki yourself if you find anything useful that you might want to share with others.Linux VR Adventures Wiki
3 years ago I needed a new computer and decided on an 16 inch M1 Macbook Pro, but did lots of overthinking about if I wanted to stick to it. I tried Asahi Linux didn't have any reasons at the time to use linux over macOS (but there was always the chance I might later), the build quality is 2nd to none, none of my Windows laptops lasted more than a few years.
3 years later, I've really been itching to switch to Linux. Two of several reasons: because its DEs are more customizable, it has better documented accessibility APIs if you want to make keyboard navigation software. I reinstalled Asahi Linux and really tried to make it my daily driver, but the lacks of apps would require me to dual boot: Photoshop and Roblox.
I researching again for computers closest to Macbook Pros but none of them come close to its build quality. I think it would be best for me to make my own desktop PC for linux. I don't think I'd fare well with another windows laptop brand.
9 years and 4 months ago I bought an Acer laptop with a 4 core Intel Skylake with hyperthreading (i7-6700HQ) and a Nvidia GTX 960M, because the laptop I had was slow for compiling in my classes at Uni, and I wanted a discrete GPU for the occasional game when away from my Desktop PC (winter break and such (still use it for that btw)). I regretted that three times:
On my Desktop PC I have used AMD GPUs for quite a while and dual booting Windows and Linux has always been a breeze.
Discover what's new in GNOME, the distraction-free computing platform.GNOME Release Notes
I look forward to Digital Wellbeing.
Considering Gnome 48 won't hit stable distros any time soon, any recommendations for alternatives?
Try out Proton Mail, the secure email that protects your privacy: https://proton.me/mail/TheLinuxEXP Grab a brand new laptop or desktop running Linux: https://www.tuxedocomputers.com/en# https://ww...PeerTube.wtf
It's federated, so one can setup whatever instance they want on whatever domain they want.
If the admin feels ".wtf" is edge, cool. If someone else believe it's NSFW or wouldn't help promote the cause, they can setup another instance on another domain. If the content itself is federated, they might share that link instead.
Hi all,
Relatively long time Linux user (2017 to be precise), and about two 3rds of that time has been on Arch and its derivatives.
Been running Endeavour OS for at least 2.5 years now. It's a solid distro until it's not. I'd go for months without a single issue then an update comes out of nowhere and just ruins everything to either no return, or just causes me to chase after a fix for hours, and sometimes days. I'm kinda getting tired of this trend of sudden and uncalled for issues.
It's like a hammer drops on you without you seeing it. I wish they were smaller issues, no, they're always major. Most of the time I'd just reinstall, and I hate that. It's so much work for me.
I set things the way I like them and then they're ruined, and the hunt begins. I have been wanting to switch for a long time, and I honestly have even been looking into some of those immutable distros (that's how much I don't want to be fixing my system.
I'm tired, I just want to use my system to get work done). I was also told that Nobara is really good (is it? Never tried it). My only hold back — and it's probably silly to some of you— is the AUR. I love it.
It's the most convenient thing ever, and possibly the main reason why I have stuck with Arch and its kids. Everything is there.
So, what do y'all recommend? I was once told by some kind soul to use an immutable distro and setup "distrobox" on it if I wanted the AUR.
I've never tried this "distrobox" thing (I can research it, no problem). I also game here and there and would like to squeeze as much performance as I can out of my PC (all AMD, BTW, and I only play single player games).
So, I don't know what to do. I need y'all's suggestions, please. I'll aggregate all of the suggestions and go through them and (hopefully) come up with something good for my sanity. Please suggest anything you think fits my situation. I don't care, I will 100% appreciate every single suggestion and look into it.
I'm planning to take it slow on the switch, and do a lot of research before switching. Unless my system shits the bed more than now then I don't know. I currently can't upgrade my system, as I wouldn't be able to log in after the update. It just fails to log in.
I had to restore a 10 days old snapshot to be able to get back into my damn desktop. I have already copied my whole home directory into another drive I have on my PC, so if shit hits the fan, I'll at least have my data. Help a tired brother out, please ❤. Thank you so much in advance.
Learn how to use Magit, an essential tool for any git-loving Emacs user. Magit supercharges your git workflow by removing the tedium of writing arcane commands and replacing them with a simple and ergonomic user interface.Mickey Petersen (Mastering Emacs)
Obligatory mention of lazygit for those who prefer vi and its descendants.
No, I'm not making any claim regarding which is better. Hold your cards and letters. In many other universes, I'm a daily user of magit.
That is what xrandr allows you to do on X11, create and set display modes that aren't reported by the monitor.
EDID editing is basically replacing the data reported by the monitor, which also allows you to add display modes it doesn't report itself. This is the only way to do what you are looking for on wayland.
You can either switch to X11, and use xrandr, or create an EDID file with the display mode you want, and have it load on boot. Doing that is unfortunately not simple.
don't know if this is of any help to anyone except maybe past me, but i had a hard time finding the correct Public Key to verify the current Krita AppImage: So what finally worked was gpg --import this Public Key here files.kde.org/krita/dmitry_kaz… and gpg --verify krita-5.2.9-x86_64.AppImage.sig then gpg says Good signature (fingerprint: E9FB 29E7 4ADE ACC5 E303 5B8A B69E B4CF 7468 332F). Anyway (>' v ')> here is a drawing i made using my laptops wonky touchpad.
KOOL
Microsoft's newest open-source contribution to the Linux kernel being proposed is..www.phoronix.com
From the mailing list I'm reading that kernel maintainers have heard a few companies looking for something like this, so yes?
Edit:
However, to be clear, the Hornet LSM proposed here seems very reasonable to me and I would have no conceptual objections to merging it upstream. Based on off-list discussions I believe there is a lot of demand for something like this, and I believe many people will be happy to have BPF signature verification in-tree.
They probably named it HORNET for a reason - think Japanese Murder Hornets... What Could Possibly Go Wrong??
It will probably start out as little glitches and slowdowns to destroy faith in your system ("Windows works right all the time") a random 2 second pauses. Finally one day every Linux box in the world crashes, all at the same time, because some 'dummy' in Microsoft deleted the private signing key.
Removed: firefox-136.0.1-1.fc41.x86_64 firefox-langpacks-136.0.1-1.fc41.x86_64 freerdp-libs-2:3.12.0-1.fc41.x86_64 gnome-bluetooth-1:47.1-1.fc41.x86_64 gnome-browser-connector-42.1-8.fc41.x86_64 gnome-classic-session-47.4-2.fc41.noarch gnome-initial-setup-47.2-1.fc41.x86_64 gnome-remote-desktop-47.3-1.fc41.x86_64 gnome-shell-extension-apps-menu-47.4-2.fc41.noarch gnome-shell-extension-background-logo-47.0-1.fc41.noarch gnome-shell-extension-common-47.4-2.fc41.noarch gnome-shell-extension-launch-new-instance-47.4-2.fc41.noarch gnome-shell-extension-places-menu-47.4-2.fc41.noarch gnome-shell-extension-window-list-47.4-2.fc41.noarch gstreamer1-plugin-libav-1.24.11-1.fc41.x86_64 gstreamer1-plugins-bad-free-1.24.11-1.fc41.x86_64 pipewire-utils-1.2.7-7.fc41.x86_64 uresourced-0.5.4-2.fc41.x86_64
The latest build of u-blue:main has removed these packages. Is anybody also experiencing this? I could find no information regarding this on the discourse forum.
Edit : the issue has been resolved in the next build image. It was a small error that crowd in due to shifting to dnf5. Thanks for to maintainers for doing all the hardwark
Didn't know what uBlue was, so here: universal-blue.org/
"The Universal Blue project builds a diverse set of continuously delivered operating system images using bootc. That's nerdspeak for the ultimate Linux client: the reliability of a Chromebook, but with the flexibility and power of a traditional Linux desktop.
These images represent what's possible when a community focuses on sharing best practices via automation and collaboration. One common language between dev and ops, and it's finally come to the desktop.
We also provide tools for users to build their own image using our templates and processes, which can be used to ship custom configurations to all of your machines, or finally make the Linux distribution you've long wished for, but never had the tools to create.
At long last, we've ascended."
Universal Blue is a diverse set of images using bootc's OCI support as a delivery mechanism. That's nerdspeak for the ultimate Linux client!universal-blue.org
Nice post, ~~but your title is misleading~~: the blog post is actually titled "Supply Chain Attacks on Linux distributions - Overview" - the word "attacks" as used here is a synonym for "vulnerabilities". It is not completely clear from their title if this is going to be a post about vulnerabilities being discovered, or about them actually being exploited maliciously, but the latter is at least not strongly implied.
~~This lemmy post however is titled (currently, hopefully OP will retitle it after this comment) "Supply Chain Attack found in Fedora's Pagure and openSUSE's Open Build Service".~~ edit: @OP thanks for changing the title!
Adding the word "found" (and making "Attack" singular) changes the meaning: this title strongly implies that a malicious party has actually been detected performing a supply chain attack for real - which is not what this post is saying at all. (It does actually discuss some previous real-world attacks first, but it is not about finding those; the new findings in this post are vulnerabilities which were never attacked for real.)
~~I recommend using the original post title (minus its "Overview" suffix) or keeping your more verbose title but changing the word "Attack" to "Vulnerabilities" to make it clearer.~~
TLDR: These security researchers went looking for supply chain vulnerabilities, and found several bugs in two different systems. After responsibly disclosing them, they did these (very nice and accessible, btw - i recommend reading them) writeups about two of the bugs. The two they wrote up are similar in that they both involve going from being able to inject command line arguments, to being able to write to a file, to being able to execute arbitrary code (in a context which would allow attackers to perform supply chain attacks on any software distributed via the targeted infrastructure).
Sorry if this isn't the place for this, I couldn't find a forum for the program. I have 2 monitors and when I try to use a custom location it seems like XClicker doesn't understand how to handle that. When getting a location the coordinates behave as I'd expect, treating all of my screen space as one with the numbers increasing as you go right and down, the top left of my left monitor currently being 0,142. However when I activate to start clicking it seem as though it treats the top left corner of whichever monitor the cursor is on as though it were 0,0, meaning it doesn't actually click where I want.
For example, if I Get a location on the right monitor and position the mouse on the right monitor it'll actually click a location 1920 pixels to the right, since the left is 1080p, and I think 142 pixels down. With the same coordinates, if I position my mouse on the left monitor then activate It'll go close to where I want it to on the right monitor for the first click, then shift to the right again since it's now on the right monitor.
Edit: Oh I figured it out and it's definitely newbie stuff. I was poking around and for shits tried to upgrade my OS. While I couldn't do that, it seems like it did upgrade a lot of other stuff and now the clicker works normally. I was hoping it'd be a miracle and fix another issue, too, but it didn't.
like this
Note: for readers who aren't aware, the notation ^X means hold down the ctrl key and type x (without shift).
ctrl-a though ctrl-z will send ASCII characters 1 through 26, which are called control characters (because they're for controling things, and also because you can type them by holding down the control key).
^D is the EOF character.
$ stty -a | grep eof intr = ^C; quit = ^\; erase = ^?; kill = ^U; eof = ^D; eol = <undef>; $ man stty |grep -A1 eof |head -n2 eof CHAR CHAR will send an end of file (terminate the input)
Nope, Chuck Testa: there is no EOF character. Or, one could also say there is an EOF character, but which character it is can be configured on a per-tty basis, and by default it is configured to be ^D - which (since "D" is the fourth letter of the alphabet) is ASCII character 4, which (as you can see in man ascii) is called EOT or "end of transmission".
What that stty output means is that ^D is the character specified to trigger eof. That means this character is intercepted (by the kernel's tty driver) and, instead of sending the character to the process reading standard input, the tty "will send an end of file (terminate the input)".
By default eof is ^D (EOT), a control character, but it can be set to any character.
For instance: run stty eof x and now, in that terminal, "x" (by itself, without the control key) will be the EOF character and will behave exactly as ^D did before. (The rest of this comment assumes you are still in a normal default terminal where you have not done that.)
But "send an end of file" does not mean sending EOT or any other character to the reading process: as the blog post explains, it actually (counterintuitively) means flushing the buffer - meaning, causing the read syscall to return with whatever is in the buffer currently.
It is confusing that this functionality is called eof, and the stty man page description of it is even more so, given that it (really!) does actually flush the contents of the buffer to read - even if the line buffer is not empty, in which case it is not actually indicating end-of-file!
You can confirm this is happening by running cat and typing a few characters and then hitting ^D, and then typing more, and hitting ^D again. (Each time you flush the buffer, cat will immediately echo the latest characters that had been buffered, even though you have not hit enter yet.)
Or, you can pipe cat into pv and see that ^D also causes pv to receive the buffer contents prior to hitting enter.
I guess unix calls this eof because this function is most often used to flush an empty buffer, which is how you "send an end of file" to the reader.
The empty-read-means-EOF semantics are documented, among other places, in the man page for the read() syscall (man read):
RETURN VALUE On success, the number of bytes read is returned (zero indicates end of file), and the file position is advanced by this number.
If you want to send an actual ^D (EOT) character through to the process reading standard input, you can escape it using the confusingly-named lnext function, which by default is bound to the ^V control character (aka SYN, "synchronous idle", ASCII character 22):
$ man stty|grep lnext -A1
* lnext CHAR
CHAR will enter the next character quoted
$ stty -a|grep lnext
werase = ^W; lnext = ^V; discard = ^O; min = 1; time = 0;echo " and then ctrl-V and ctrl-D and then "|xxd (and then enter) and you will see that this is sending ascii character 4.You can also send it with echo -e '\x04'. Note that the EOT character does not terminate bash:
$ echo -e '\x04\necho see?'|xxd
00000000: 040a 6563 686f 2073 6565 3f0a ..echo see?.
$ echo -e '\x04\necho see?'|bash
bash: line 1: $'\004': command not found
see?::: spoiler (Control characters are perfectly cromulent filenames btw...)
$ echo -e '#!/bin/bash\necho lmao' > ~/.local/bin/$(echo -en '\x04')
$ chmod +x ~/.local/bin/$(echo -en '\x04')
$ echo -e '\x04\necho see?'|bash
lmao
see?
Which is why I haven’t wrote ‘EOF character’, ‘EOT’ or ‘EOT character’. Neither have I claimed that \x4 character is interpreted by the shell as end of file.
Edit: Actually, I did say ‘EOF character’ originally (though I still haven’t claimed that it sends EOF character to the program). I’ve updated the comment to clear things up more.
System must be usable and fully native to the new distro (all old packages replaced with new ones).
No flatpaks, avoid snaps where physically possible, native packages only.
EDIT: Some clarification on some of the clever tools brought up here:
chroot, dd, debootstrap, and partition editors that allow you to install the new system in an empty container or blanket-overwrite the old system go against the spirit of this challenge.
These are very useful and valid tools under a normal context and I strongly recommend learning them.
You can use them if you prefer, but The ship of Theseus was replaced one board at a time. We are trying to avoid dropping a new ship in the harbor and tugging the old one out.
It may however be a good idea to use them to test out the target system in a safe environment as you perform the migration back in the real root, so you have a reference to go by.
Easy: pick two similar distros, such as Ubuntu and Debian or Manjaro and Arch and go from the base to the derivative.
Medium: Same as easy but go from the derivative to the base.
Hard: Pick two disparate distros like Debian and Artix and go from one to the other.
Nightmare: Make a self-compiled distro your target.
Honestly, at this point I’m so done with window’s bullshit. Their operating system is damn near unusable. All the convenient stuff is hidden in weird places. The constant whining about having to buy their crap. Or worse trying to get me to use the horrible software that comes with the new versions.
My excuse used to be, but I can’t play games on it. This is no longer the case for the games I love. So Windows can suck it. At this point I’m switching away from a lot of stuff I used to use. (x-box became Steam-deck, twitter became blue-sky and reddit is becoming Lemmy) As a kind of computer illiterate person, this has been a worth while transition but a difficult one. Let’s just say I had to learn a lot of new stuff.
So I’m a total Linux newbie but thanks to my Steam deck I’ve become somewhat used to using it. Not like an expert, but I have run wine to create separate environments for running pokémon fangames. And have taken a look around the Linux environment. I like it and think I’ll be able to get used to it with practice. It reminds me weirdly of windows XP in how easily I can get everything to work the way I want. It takes a bit of doing and some research, but it works. Which is all I want in an operating system.
I am looking for tips as to where to start searching, because I am converting my windows computer to Linux. I just don’t know what version.
Any user experience is welcome, I have no idea where to begin. I mostly use the computer I’m installing this on as a glorified typewriter, that I play movies, music and retro-games on.
A user friendly version is preferred, I find it hard to parse out from the various versions I have seen so far how easy they actually are to use. Extra points if a large amount of the information has easy to find tutorials on the internet. I don’t always know where to start looking and as I learned while getting wine to work, some of the names/terms are completely different. (And kind of a lot at once if you are just getting started).
Any resources you might think are useful for a newbie are also highly appreciated.
tl;dr: I (a Linux noob) am looking for a recommendation for what version of Linux to use for my needs. And any tips tricks or other info that I might need to know before I switch. Because windows sucks.
I’m sorry if this has already been asked and answered. I did try to find an answer through searching, but as I already mentioned. My lack of terms and knowledge is holding me back.
I have been looking for an email client on Linux after being tired of Gmail and Outlook web clients.
I had Thunderbird installed on my system and thought I'd give it a spin. I set up POP for my email accounts and it worked fantastic... For a total of 2 hours, after which I realised that searching in Thunderbird is simply not going to work for me. I need to search by attachment name and sometimes even by text inside attachment and unfortunately Thunderbird can't do that (I think I tried an extension too but it made the UI super clunky to the point that I couldn't even understand how to navigate it anymore).
Does Betterbird or any other email client fix this problem? I'm willing to try other options if they are FOSS.
Thanks
I've always liked Thunderbird. Geary is also nice. Not sure if it can attachment search.
You can filter messages with attachment on Thunderbird btw
Content-Type field at the very least and I don't think it can do that without an extension
Yes but I can’t search by the name of the attachment.
I just searched for text thats in an attachment filename and it worked - with a caveat. I have a filename called "PMASUP236 - Operate Vehicles In The Field.pdf" on an email. There is no reference to the PMASUP236 in any other part of any email.
If I search "PMASUP236", it returns the email as a result.
If I search "SUP236" it does not.
If I search "Operate Vehicles" it returns that email (along with a heap of others containing the word "Operate" and "Vehicles" in any order).
Admittedly this is on Windows at work, though I do run Thunderbird on Linux at home. Will have to try it there to confirm.
I just checked on Linux (Thunderbird 128.5.2esr, Opensuse Tumbleweed) and the behaviour is the same.
If I search “PMASUP236”, it returns the email as a result.
If I search “SUP236” it does not.
This is using the normal search function (top of screen in current version). Quick Filter does not look at attachments at all by the looks. The "Attachments" toggle is only a has / does not have attachment filter.
Yes; the command prefix that you're looking for is
shutdown now ; (followed by your sudo command if you wish)
It will provide the appropriate delay before using the root command via sudo or having logged again as root (sigh)!
Please don't desecrate my Linux with (what I assume is) Windows talk.
Bleugh! I need a shower!
[The worst Linux users are ex Windows users; 2004 vintage here]
sure. first, configure sudo to be passwordless, or perhaps just to stay unlocked for longer (it's easy to find instructions for how to do that).
then, put this in your ~/.bashrc:
alias sudo='echo -n "are you sure? "; for i in $(seq 5); do echo -n "$((6 - $i)) "; sleep 1; done && echo && /usr/bin/sudo '
Now "sudo" will give you a 5 second countdown (during which you can hit ctrl-c if you change your mind) before running whatever command you ask it to.
Any distro would do, but for my case, it is Arch because I have more control over the partitions. I would like the OS, so root, swap and others on 1 drive. The /home should be on a separate drive. The tricky thing is to have everything encrypted, except /boot and /efi of course.
Now, here is what I can do
1) FDE on 1 drive. This is easy: you create /efi, /boot and then create a large LUKS partition. From there, you create LVM on that LUKS partition and get your: /, /home and swap. Then mount everything correctly and install.
In the grub config, you only need to set it so it knows the LUKS partitom and where the root is. For eg, if your LUKs partition is /dev/sda3, you do:
2) Unencrypted /home on another drive. This is like 1) but /home is mounted on a separate drive. Still need to do the grub config, but nothing is needed for /home. It is automatically mounted when you login.
Now for my case: Encrypt /home
The encryption and mount part is easy. But how to get the OS to recognize it? The Arch wiki has this weird thing where you create an encryption key, they called it home.key, using cryptsetup. You then store the key in /etc and then in your /etc/crypttab, you specifiy the drive with /home and location of the key. No need for any passphrase.
The problem I have with this is that keys are stored in root. So if my root system is corrupted, I cant even decrypt home....
Any advice is welcome..
Well thanks everyone. I finally managed to get it to work on Arch. System has separate encrypted root and swap in LVM, and a separate encrypted home. It can suspend and hibernate. Below are my steps
DISK PREP
to create a LUKS container that is encrypted with: a keyfile and a password. Test both to make sure you can open the locked drive. Format and mount it at /mnt/home or where you want the /home to be.
AUTOMATIC UNLOCK
home uuid of the unencrypted home drive location of the keyfile luks
The link above said to just use /dev/sda, but imo UUID is safer if you have a removable drive.
"rd.luks.uuid=UUID of the locked luks home drive"
FOR HIBERNATION
For some reasons, hibernation doesnt work out of the box. It works when I have everything in 1 drive, i.e 1 boot, 1 efi, 1 lvm on luks for /home, swap and /. The fix is simple:
Special thanks to bodaciousFern@lemmy.dbzer0.com and Lemmchen@feddit.org for giving me correct ideas about "rd.luks.uuid" and that LUKS can do both pass and keyfile.
Just wanted to share my experience moving to Linux from MacOS. Very satisfying, but of course not at first. I think my patience has improved a lot too lol.
I started out trying live bootables on my 2012 MBA. 4GB RAM, 60GB HDD. Not a beast really, but it is my only computer. I obviously couldn't risk ending up without a working OS, so the only option was dual boot from an external drive. Bought an SSD connected via USB and started trying to install distros. Initially Fedora Workstation. Was a mess. Slow, wifi was not working well, odd crashes etc.. Decided to start over with something lighter, but all other installers crashed halfway through. I kid you not I shot my back again bent over my small laptop i
without working peripherals trying to install different distros. My doctor was not happy when I came back and told her I fucked up my back again because of my posture lol. Apparently, a shitty USB leads to crashes on most installers. I knew Anaconda worked tho, so I went back to a lighter DE with Fedora, XFCE. Set up an install on the SSD with a shared partition I could access from both MacOS and fedora. No big permission issues yet.
Then fixing network drivers. There is a lot of info about what chip needs what driver, a lot of which is incorrect apparently, because my chip which was supposed to work with bcma needed broadcom-wl. The joy when I remembered USB tethering was a thing.. For a laptop with no ethernet plug this was a godsend. Got the drivers, got wifi.
And since then, many "issues" I encountered where simply things that generally happened behind the scenes on MacOS I didn't even know where happening. Learning about these things has been very gratifying, and gives a lot of respect for a polished OS that just works like magic. Eventually, an issue on MacOS I could not solve due to it being a walled garden made me switch to Linux as a daily driver, and once I got over CMD and CTRL being swapped it sped up my workflows and runs better overall. More tweaking tho of course.
There are odd quirks but I found fun solutions for some, and began planning and learning to remedy others. Mostly, everything is working really well. I am having a lot of fun!
My tip for anyone struggling with getting started with linux, set up a log function so you can easily log any relevant changes you make, and have it accessible from somewhere else (like a shared partition or external drive for example). This way you know what you have done and can use that to fix whatever you fuck up. Also, make a knowledge base with the sources you find useful. I have a small kb in UpNote now so I can look up how some things were done instead of having to search and find the right guides over and over.
>> to append to the end of the file.function log()
{
local changelog="/run/media/jamie/DUAL/changelog"
if [ "$1" == "--view" ]; then
cat $changelog
else
echo "$(date +%D:%H:%M): $1" >> $changelog
fi
}
Nice I didn't know that ^^ should probably learn at least the basic bash operators, I am just hacking together the different commands I happen to know at the moment really
Edit: why echo instead of printf?
This was causing a lot of issues with newlines, like when I fetched the log to view it my $ was right after the log entry so I switched it back. But it is probably useful in the future to use >> instead :)
I've been using the terminal for 5 years.
99% of attempts at keeping valuable code snippets failed. Or having a useful command history.
Finally, I looked up how to send a line to terminal.
I use vscode since Atom was discontinued (looking forward to zed). But in the meanwhile, I just added
{
"key": "ctrl+enter",
"command": "workbench.action.terminal.runSelectedText",
"when": "terminalProcessSupported && editorTextFocus && editorLangId =~ /shell|bash|zsh|fish/"
}With this, I can finally keep a history of all useful commands I run. Like I can have a systemd shell file where I store the commands that I ran. Or a file to store all my podman commands. Now I do not have to type them anymore, I can just run them.
That's not what DRM is in kernel/hardware land
It stands for display rendering manager and it predates any of the other stuff.
So following on from my last post I'v now tried again, this time using Rufus to make my boot USB rather than balena etcher which despite being reccomended is apparently problematic. I also downloaded and verified a fresh install of the cinnamon ISO.
Result is uh....
Failed to open \EFI\BOOT\mmx64.efi - Not Found
Failed to load image (windows symbol): Not Found
Failed to start MokManager: Not Found
Something has gone seriously wrong: import_mok_state() failed: Not FoundPC in question is a small notebook with no discreet GPU to speak of (Intel integrated graphics) that I've been hoping to use as a testbed before comiting to Linux on my main PC.___
Sorry to link to reddit, but have you already tried the suggestions in this thread from a year ago: old.reddit.com/r/pop_os/commen… ?
Large (1920x9750, ~3MB) screenshot for posterity + those who absolutely do not want to access reddit at all: files.catbox.moe/mqsdxh.png
Edit: (Related links)
- linuxquestions.org/questions/l…
- forums.linuxmint.com/viewtopic…
- unix.stackexchange.com/questio…
I'd try the "copy \EFI\BOOT\grubx64.efi to EFI\BOOT\mmx64.efi" solution personally and see what happens. If that works, you might just have an obnoxious BIOS on that computer.
Hi guys, I'm in a real bind and I don't know what to do. Really hoping someone who has experienced something similar can help. Background: 1....reddit
So check it out: Mastodon decided to implement follower-only posts for their users. All good. They did it in a way where they were still broadcasting those posts (described as "private") in a format that other servers could easily wind up erroneously showing them to random people. That's not ideal.
Probably the clearest explanation of the root of the problem is this:
Something you may not know about Mastodon's privacy settings is that they are recommendations, not demands. This means that it is up to each individual server whether or not it chooses to enforce them. For example, you may mark your post with unlisted, which indicates that servers shouldn't display the post on their global timelines, but servers which don't implement the unlisted privacy setting still can (and do).Servers don't necessarily disregard Mastodon's privacy settings for malicious reasons. Mastodon's privacy settings aren't a part of the original OStatus protocol, and servers which don't run a recent version of the Mastodon software simply aren't configured to recognize them. This means that unlisted, private, or even direct posts may end up in places you didn't expect on one of these servers—like in the public timeline, or a user's reblogs.
That is super relevant for "private" posts by Mastodon. They fall into the same category as how you've been voting on Lemmy posts and comments: This stuff seems private, because it's being hidden in your UI, but it's actually being broadcasted out to random untrusted servers behind the scenes, and some server software is going to expose it. It's simply going to happen. You need to be aware of that. Even if it's not shown in your UI, it is available.
Anyway, Pixelfed had a bug in its handling of those types of posts, which meant that in some circumstances it would show them to everyone. Somebody wrote on her blog about how her partner has been posting sensitive information as "private," and Pixelfed was exposing it, and how it's a massive problem. For some reason, Dansup (Pixelfed author) taking it seriously and fixing the problem and pushing out a new version within a few days only made this person more upset, because in her (IMO incorrect) opinion, the way Dansup had done it was wrong.
I think the blog-writer is just mistaken about some of the technical issues involved. It sounds like she's planning on telling her partner that it's still okay to be posting her private stuff on Mastodon, marked "private," now that Pixelfed and only Pixelfed has fixed the issue. I think that's a huge mistake for reasons that should be obvious. It sounds like she's very upset that Dansup made it explicit that he was fixing this issue, thinking that even exposing it in commit comments (which as we know get way more readership than blog posts) would mean people knew about it, and the less people that knew about it, the safer her partner's information would be since she is continuing to do this apparently. You will not be surprised to discover that I think that type of thinking is also a mistake.
That's not even what I want to talk about, though. I have done security-related work professionally before, so maybe I look at this stuff from a different perspective than this lady does. What I want to talk about is this type of comments on Lemmy, when this situation got posted here under the title "Pixelfed leaks private posts from other Fediverse instances":
Non-malicious servers aren’t supposed to do what Pixelfed did.Pixelfed got caught with its pants down
rtfm and do NOT give a rest to bad behaving software
dansup remains either incompetent for implementing badly something easy or toxic for federating ignoring what the federation requires
i completely blame pixelfed here: it breaks trust in transit and that’s unacceptable because it makes the system untrustworthy
periodic reminder to not touch dansup software and to move away from pixelfed and loops
dansup is not competent and quite problematic and it’s not even over
developers with less funding (even 0) contributed way more to fedi, they’re just less vocal
dansup is all bark no bite, stop falling for it
dansup showed quite some incompetence in handling security, delivering features, communicating clearly and honestly and treating properly third party devs
I sort of started out in the ensuing conversation just explaining the issues involved, because they are subtle, but there are people who are still sending me messages a day later insisting that Dansup is a big piece of shit and he broke the internet on purpose. They're also consistently upset, among other reasons, that he's getting paid because people like the stuff he made and gave away, and chose to back his Kickstarter. Very upset. I keep hearing about it.
This is not the first time, or even the first time with Dansup. From time to time, I see this with some kind of person on the Fediverse who's doing something. Usually someone who's giving away their time to do something for everyone else. Then there's some giant outcry that they are "problematic" or awful on purpose in some way. With Dansup at least, every time I've looked at it, it's mostly been trumped-up nonsense. The worst it ever is, in actuality, is "he got mad and posted an angry status HOW DARE HE." Usually it is based more or less on nothing.
Dansup isn't just a person making free software, who sometimes posts angry unreasonable statuses or gets embroiled in drama for some reason because he is human and has human emotions. He's the worst. He is toxic and unhinged. He is keeping his Loops code secret and breaking his promises. He makes money. He broke privacy for everyone (no don't tell me any details about the protocol or why he didn't he broke it for everyone) (and don't tell me he fixed it in a few days and pushed out a new version that just makes it worse because he put it in the notes and it'll be hard for people to upgrade anyway so it doesn't count)
And so on.
Some particular moderator isn't just a person who sometimes makes poor moderation decisions and then doubles down on them. No, he is:
a racist and a zionist and will do whatever he can to delete pro-Palestinian posts, or posts that criticize Israel.a vile, racist, zionist piece of shit, and anyone who defends or supports him is sitting at the table with him and accepts those labels for themselves.
And so on. The exact same pattern happened with a different lemmy.world mod who was extensively harassed for months for various made-up bullshit, all the way up until the time where he (related or not) decided to stop modding altogether.
It's weird. Why are people so vindictive and personal, and why do they double down so enthusiastically about taking it to this personal place where this person involved is being bad on purpose and needs to be attacked for being horrible, instead of just being a normal person with a variety of normal human failings as we all have? Why are people so un-amenable to someone trying to say "actually it's not that simple", to the point that a day later my inbox is still getting peppered with insistences that Dansup is the worst on this private-posts issue, and I'm completely wrong and incompetent for thinking otherwise and all the references I've been digging up and sending to try to illustrate the point are just more proof that I'm horrible?
Guys: Chill out.
I would just recommend, if you are one of these people that likes to double down on all this stuff and get all amped-up about how some particular fediverse person is "problematic" or "toxic" or various other vague insinuations, or you feel the need to bring up all kinds of past drama any time anything at all happens with the person, that you not.
I am probably guilty of this sometimes. I definitely like to give people hell sometimes, if in my opinion they are doing something that's causing a problem. But the extent to which the fediverse seems to like to do this stuff just seems really extreme to me, and a lot of times what it's based on is just weird petty bullying nonsense.
Just take it it with a grain of salt, too, if you see it, is also what I'm saying. Whether it comes from me or whoever. A lot of times, the issue doesn't look like such a huge deal once you strip away the histrionics and the assumption that everyone's being malicious on purpose. Doubly so if the emotion and the innuendo is running way ahead of what the actual facts are.
like this
don't like this
IMO, Dan has some responsibility but more of it lies with Mastodon and other microblogging software that labels this post type as "private", "followers only" or similar without any further explanation. It needs to be clear that it's dependent on good faith and competence of remote servers that may collect that information.
Moreover we need to do a better job of letting users know that anything posted on the internet, and especially anything posted to the fediverse where it's backed up on potentially thousands of servers, should be assumed to be publicly-visible and eternal. If nothing else, it will be backed up on the internet archive. If you want to communicate privately, this is the wrong place.
I wish there was a private social media platform but it seems like the closest we're going to get is Signal.
Also "the bullying problem" has nothing to do with the Fediverse and everything to do with people in general and the erosion of nuance.
like this
Let's clarify something here. Mastodon follower only posts don't have the "public pseudo user" addressed, do they?
That's the important piece that this whole thing hinges upon
If it is present, Mastodon is a fault. If not, Pixelfed messed up.
Am I mistaken?
For example, a followers-only post is addressed to the followers collection of the author, at minimum. When NodeBB sees this, it doesn't even consider it public, because the public pseudo user isn't addressed. We also have no concept of "followers only", but we handle them just fine.
like this
don't like this
like this
don't like this
nah, it’s better for information integrity to reply in the language you understand imo, comments translated using translator services are very obvious anyway and some people are multilingual
Sure, I agree? Maybe there's a misunderstanding here and I should add that it simply would never even occur to me to enter a conversation if I didn't natively understand the language that's being used.
Interstellar (!interstellar@kbin.earth) has added Piefed support!
Install interstellar from the play store/F-droid, and create an account on preferred.social/ (only instance with the API enabled, get join code from invite). Then, login from interstellar and you're done!
Well, andrew is working on porting thunder to piefed (the main dev of it is interested in it) Admiral patrick said he might port tesseract to piefed, once the API is stable, and ae_harding said he may add it after lemmy 1.0.
Thank you @andrew_s@piefed.social, @olorin99@kbin.earth and @jwr1@kbin.earth for working tirelessly to implement this :D
An app for Mbin/Lemmy/PieFed, connecting you to the fediverse. - jwr1/interstellarGitHub
like this
fxomt likes this.
Bin wirklich noch etwas überfordert hier. Wie kann man das feddit Konto und das Mastodon konto verknüpfen?
Wo finde ich die Adresse von meinem feddit Konto und muss ich es auf Mastodon einbinden? Hilfe.... 😱 Bitte...
like this
don't like this
Maybe then she'll SHUT UP! Oh my god, is there a single person on this platform who doesn't get these messages every month???
Guys, you all KNOW what I'm talking about, right? Gonna have to go get Tim Misney on this case! And you KNOW what he DOES! eyebrows
like this
don't like this
like this
advanced38 doesn't like this.
threelonmusketeers likes this.
I always believed that problems around technocratic broligarchy could’ve been solved if the software ecosystem using GPLv3 was strong. So when I suddenly see a flurry of articles stating that the EU is trying to come up with its own spin of Linux to boycott monopolies by US companies, I think it is either a waste of time or self defeating because the ultimate power of computer codes isn’t the code itself, but the license attached to it.
Is there something that I have missed in this matter because I barely see anyone talking about the need for more libre software. I find the latest transition from GLP to MIT license for rust-based coreutils to be concerning because we’re basically adopting “doormat” licenses that will enable companies to easily embrace, extend and extinguish the freedoms we cherish so much in this space.
We as a society have to enlighten ourselves such that we have a standard and this standard is open source.
The more people refuse to use proprietary stuff, and promote open source tools, the more powerful those tools get.
As long as we pay 100 bucks for a shitty game and refuse to donate 1 buck to a foss calendar we are far away from where we'd like to be.
If people would pay good for foss, companies would do it
VimWiki is my preferred notetaking solution because it's intentionally minimal. When I want to take notes, I want to take notes, not see a mind map or extra visualizations or photos to distract me....AbnormalBeingsTube
I've started doing notes in the terminal as well. I used Obsidian and Logseq for a while, mainly because I wanted something with a GUI so that I could recommend it to people who aren't comfortable with the terminal. But eventually I figured that a terminal solution was the right one for me, since I have a terminal open all the time anyway.
I switched from vim to kakoune a while ago ( kakoune.org ), so I use nb ( xwmx.github.io/nb ) instead of vimwiki.
nb is a terminal application that will open whatever your default text editor is.
The official website of Kakoune, a selection-first modal code editorkakoune.org
^ Title ^
so I've had problems getting linux to actually setup properly but the functional preview on the boot USB stick itself works without issue, so can I just run it that way, or is that going to limit functionality in some way?
If you want to try to get Linux on the main drive working (since USB works but isn't ideal) there are a few things I encountered.
-some distros just didn't like my hardware. Failed to install, or installed but boot would get errors and halt. The remedy was using an rpm distro rather than deb based (I tried about 10 debs, the rpm ones acknowledged the bios error and moved on)
-secure boot can be a bit of a pain. If you don't want to deal with it, Turnoff secureboot, and in some cases EFI and use legacy BIOS mode.
-if you want Secure boot and EFI. Allow USB boot in BIOS, do the install and ensure it is building a GPT disk with an EFI partition. At the reboot stage it should ask if you want to enroll keys, say yes.
If during reboot it does nothing or boots to windows(assuming you have windows drive). Go into BIOS and choose secure boot option where you can pick which Secure OS it found and move that to top of boot list.
-if it is not those things it is often nvidia on Wayland or X issue on laptops. If you don't want to mess with installing a GPU switcher, you can often set your laptop to discrete graphics before install and bypass the two GPU issues
As others say, it can be done. If you want more normal umpf, you'll need to mount parts of the filesystem to your ssd. You can mount /home or / on ssd, or have an overlay file system as a file on an ssd/hdd, or use bcachefs with back propagation to the usb, or similar fancy setups.
So you'll boot linux kernel from the usb, but most disk activity will be on your ssd. Fun project, but not super easy/practical if it isn't done automatically.
My old HP microserver is 'made' to boot from a usb-stick inserted on the mb.
Anyway, perhaps an AI can suggest a script to do what you want ?
like this
don't like this
like this
Hi folks!
I'm here with another idea. Let's make an amazon alternative. I know! I know! That was asked for a couple times already but lets discuss some details.
Amazon is basically glorified dropshipping by now. What if we just made federated (not sure if over activitypub would work) ads and sales, powered by fediseer (the "trust" network of the fediverse).
Example 1:
So you buy at toms groceries, you trust them. they have experience with tina's hardware store and they trust them. so you can buy both toms and tinas wares on both sites.
Example 2:
So for example, I run a small business that sells computers. You run a small business that sells mice and keyboards. I have worked with you before so I mark you as trusted in my local website, which federates with yours, showing your products in my shop. If a customer buys my computer and buys your keyboard on top, my site sends you a buy order with customer address and payment. I get a small fee for my electricity of say 1%.
Can someone try and poke holes in this idea? It feels like this could work!
Have a nice weekend.
A version of this focussed on a gift economy/trading platform (e.g. like freecycle, or the buy nothing groups on facebook) would also be cool.
Also person-to-person buying/selling, rather than business-to-person would be nice to have, like craigslist, reverb.com, gumtree, or used items on ebay.
If this was focused on a craigslist/gumtree style of selling, where most of the actual trade is done off-site/in-person with cash or bank transfers, it would completely side-step the payment processor problem.
Anuj Ahooja https://bsky.app/profile/quillmatiq.comA New Social https://anew.social, profile https://bsky.app/profile/anew.socialBridgy https://bsky.app/prof...YouTube
like this
I absolutely love wiki walking through random obscure fan wikis, but I hate how most are on Fandom.
I think a federated wiki solution makes sense. I could see it as an evolution of the interwiki concept.
like this
don't like this
Seems like there is a federated solution for everything lol
There's also a list of ActivityPub software on Wikipedia: en.wikipedia.org/wiki/Activity…
like this
Nah... Missing IMHO:
like this
Also:
These seem kind of ideal for a federated network, IMO.
I actually think Lemmy would be a pretty decent format for something stackoverflow like - just maybe needs to UI tweaks to minimise the visual space that replies take up, plus maybe answered post flair
Is there an interest to develop a post tagging feature? I remember seeing an issue about it some time ago, but I can't find it anymore so it's possible I'm making this up. A post tag would be defin...GitHub
lgsp@feddit.it likes this.
There's codeberg.org/flohmarkt/flohmar… for a marketplace.
I'm really missing something like yrpri.org/domain/3
like this
I think you're starting too big, to use your phrase.
Get used to the basics first: what's different (to whatever you're running now), what's the same. They Linux distributions almost all have GUIs (KDE, GNOME are the main ones but there are many others).
Run a live USB version from a usb stick to get used to it until you have the confidence to install it on an old pc. Personally I do not recommend dual booting; data gets lost that way. Install it on an old pc and learn how to restore your backups to a Linux filesystem (not the fs of what you're used to on Linux platform). I write that because you said that want to end up with a Linux server.
Choose one of the top few from distrowatch.com/
Your aim is to understand what's going on under neither the GUI; how permissions work.
I started by installing a VoIP product into a VM on Windows 2000, but there are better ways now.
Good luck. You shouldn't find it that difficult.
PeerTube has a lot of settings to toggle and tweak before uploading videos and inviting new users. We're going through the most common ones for new instance owners like setting up a Home Page, tran...AbnormalBeingsTube
like this
The “privacy-first” company surprised its user base when CEO Andy Yen lauded Trump on social media.
I was looking for some collection of posts earlier about Proton Mail and the whole controversy with the CEO, and I opened a post the lemmy instance that was suggested was lemmy.zip but the community and the poster were from lemmy.world so that made me ask myself a bunch of questions. Reference link
Note: I used duckduckgo
Here are some questions I have:
I remember learning about search engines a while back but I don't know how relevant that information is any more. Having crawlers and the more a website is linked in other websites the higher up in the search result will be and the whole robot.txt thing.
I know if I wanted to search for something specific in lemmy I could just use its own search function, but what about people who ask general questions and that happens to be answered in a lemmy post. I wanted to know how exposed we are/ will be to people who don't yet know about lemmy.
like this
Meltdown doesn't like this.
So domains are recursive tree structures. So u have node com which has a bunch of nodes below it of different domains which can have sub domains etc. Its like this cos that's how DNS was designed.
Search engines gives scores to domains and pages. When u say that the content origin of ur page is some other domain the search engines will use that knowledge to adjust rating accordingly.
Say u have 2 domains site1.example.com and site2.example.com the search engine will have a rank for site1, site2, and example.com where the rating of both site1 and site2 effect the rating for example.com.
If the content origin for all federated content has the same origin say instance.fediverse.com then the rating for all federated content will be classified as part of fediverse.com and all content will be working together across all instances boosting the fediverse as a single entity.
JustAnotherKay likes this.
cross-posted from: piefed.social/post/538685
No more duplicate postsOne of the things that the recent addition of the Feeds feature highlighted was how many cross-posts / duplicate posts there are. When you display posts from linux@lemmy.world, linux@programming.dev, linux@lemmy.ml, etc all the cross-posts make it get repetitive, really fast. The same thing happens on the home feed too although it's a bit less obvious because there's a wider range of subjects involved.
Except now, it doesn't, because PieFed de-duplicates your feed! And your home page, and your topics. Attached to this post is a screenshot showing how it works out - an article posted to 7 different places is only shown once despite me having joined most of those communities.
We're still figuring out whether it's a good idea to merge all the comments from all the cross-posts into one page and how to do that in a way that respects the different culture/rules in the communities that the posts were made in. It's a tricky UX and social question.
I've held off on adding a cross-post function to PieFed until now but it'll be added soon.
like this
don't like this
like this
like this
Dynamically prioritizes CPU or memory access out of a given command.
Can be run as a non-root user.
Instructions on how to compile and usage are provided inside the code right here.
-EDIT- Just improved the code with improved nice sorting, detection and configuration.
For those not familiar, there are numerous messages containing images being repeatedly spammed to many Threadiverse users talking about a Polish girl named "Nicole". This has been ongoing for some time now.
Lemmy permits external inline image references to be embedded in messages. This means that if a unique image URL or set of image URLs are sent to each user, it's possible to log the IP addresses that fetch these images; by analyzing the log, one can determine the IP address that a user has.
In some earlier discussion, someone had claimed that local lemmy instances cache these on their local pict-rs instance and rewrite messages to reference the local image.
It does appear that there is a closed issue on the lemmy issue tracker referencing such a deanonymization attack:
github.com/LemmyNet/lemmy/issu…
I had not looked into these earlier, but it looks like such rewriting and caching intending to avoid this attack is not occurring, at least on my home instance. I hadn't looked until the most-recent message, but the image embedded here is indeed remote:
lemmy.doesnotexist.club/pictrs…
I haven't stored and looked through a list of these, but as I recall, the user sending them is bouncing around different instances. They certainly are not using the same hostname for their lemmy instance as the pict-rs instance; this message was sent from nicole92 on lemmy.latinlok.com, though the image is hosted on lemmy.doesnotexist.club. I don't know whether they are moving around where the pict-rs instance is located from message to message. If not, it might be possible to block the pict-rs instance in your browser. That will only be a temporary fix, since I see no reason that they couldn't also be moving the hostname on the pict-rs instance.
Another mitigation would be to route one's client software or browser through a VPN.
I don't know if there are admins working on addressing the issue; I'd assume so, but I wanted to at least mention that there might be privacy implications to other users.
In any event, regardless of whether the "Nicole" spammer is aiming to deanonymize users, as things stand, it does appear that someone could do so.
My own take is that the best fix here on the lemmy-and-other-Threadiverse-software-side would be to disable inline images in messages. Someone who wants to reference an image can always link to an external image in a messages, and permit a user to click through. But if remote inline image references can be used, there's no great way to prevent a user's IP address from being exposed.
If anyone has other suggestions to mitigate this (maybe a Greasemonkey snippet to require a click to load inline images as a patch for the lemmy Web UI?), I'm all ears.
Issue Summary By using markdown image embedding syntax:  Along with a link that collects IPs, an attacker may harvest IPs that visit the page. This can be combined with the "auto di...GitHub
SOLVED If any lost souls find themselves here in a similar situation let it be known that the file that worked for me was creating a file at '%h/.config/systemd/user/google-drive-ocamlfuse.service' with the following content:
[Unit]
Description=FUSE filesystem over Google Drive
After=network.target
[Service]
ExecStart=google-drive-ocamlfuse %h/googledrive
ExecStop=fusemount -u %h/googledrive
Restart=always
RestartSec=300
Type=forking
[Install]
WantedBy=default.targetI am trying to use this package to be able to access my google drive from Dolphin. And so far it works okay. Except that it doesn't survive a reboot. I have to run the command:
google-drive-ocamlfuse ~/googledriveI created /usr/local/bin/ocamlfuseStartup.sh as a file that contains the command from before:
google-drive-ocamlfuse ~/googledriveI then created another file at /usr/lib/systemd/system/startup.service that contains the following:
[Unit]
Description=Startup Script
[Service]
ExecStart=/bin/bash /usr/local/bin/ocamlfuseStartup.sh
[Install]
WantedBy=multi-user.targetstartup.service: Main process exited, code=exited, status=203/EXEC
However with it I get this error:
startup.service: Main process exited, code=exited, status=2/INVALIDARGUMENT
which I take to mean that there is something wrong with my ocamlfuseStartup.sh file maybe? But since it works when I manually execute the file I'm kind of at a loss.
I found this thread where it seemed like someone else was having a similar issue but I didn't really grok what they were talking about.
Any and all help is greatly appreciated!
Learn various ways to run a command or a script when a Linux system starts upHaidar Ali (Baeldung)
The 203 error you got is because your script isnt a valid executable, it needs to have a shebang at the top, you can change it to something like this and set the executable bit with chmod +x <file>
\#!/usr/bin/env bash
google-drive-ocamlfuse ~/googledriveIm not familliar with this google drive software, but im figuring that its exiting with an error code cuz its running as a system service, and $HOME probobly isnt set so ~ doesnt expand and the software gets an invalid path.
But I recommend using a user service for this, it will run when you login, you should be able to copy the service file you already have into ~/.config/systemd/user/ and run systemctl --user daemon-reload and systemctl --user enable startup.service --now, this will enable and start the service in one go.
I also recommend adding the following lines under [Service]
Type=simple
Restart=always
RestartSec=60If you need it to run before login, it is possible to do with a system service, but it will need a bit more setup
i would install cron if its not installed, then add a file under
/etc/cron.d/someNiceToRememberName
and with an editor write the following in it:
@reboot root /bin/bash -x /usr/local/bin/ocamlfuseStartup.sh >> /tmp/output 2>&1 ; echo returncode=$? >> /tmp/outputyou might be able to do this with systemd too, but it often messes things up and i like i.e. clean log outputs.
for testing you can add a line that would start it without a reboot.
22 * * * * root /path/to/your/command parameters >> /tmp/output 2>&1as systemd starts cron with a broken environment too, it might as well not work using cron, but then you know its the broken environment systemd starts it with.
if thats your problem, you might want to add:
PATH=$PATH:/usr/sbin:/usr/local/sbin
somewhere at the top of the shellscript depending on what is missing, which by itself would be the directories the commands executed are in.
in terminal use :
which sedto maybe more easy see what is missing i added the -x as a parameter to bash which makes it print out a line for every command it executes to sdterr so you can see what the last commands were.
you can try it in the terminal (if your terminal is bash or compatible
$ set -x
$ echo foo
+ echo foo
foo
$ echo PATH: $PATHgood luck.
transition to linux. One of the first things I have hit a wall on is getting a file to execute on boot using systemd.I am trying to use this package to be
that bash thing is the interpreter. the script ocamlFuseStartup.sh is written as bash (possibly the same as your terminal) if that script has a "shebang" (#!/bin/bash) as the very first line AND the file has the execute permission set (chmod +x /path/to/file), then you dont need /bin/bash at the beginning to start it.
Following a slew of hardware announcements in the past few months like the RP2350 shipping, Raspberry Pi 5 16GB, Raspberry Pi Monitor, and Raspberry Pi 500, today they have a new software announcementwww.phoronix.com
like this
like this
like this
Ingo Molnar began sending out the pull requests today for the upcoming Linux 6.15 merge window of code areas he oversees for the Linux kernelwww.phoronix.com
Madbrad200 likes this.
Madbrad200 doesn't like this.
Yeah I was on Fosstodon first. Moved to Sakurajima (Sharkey) and now I'm on Sakurajima (Mastodon).
You're right, the instance makes a big difference. Very important to find one you enjoy.
Fosstodon is an invite only Mastodon instance that is open to those who are interested in technology; particularly free & open source software. If you wish to join, contact us for an invite.Mastodon hosted on fosstodon.org
Given the different way they apps are structured I don't even know if it's a sensible question, but is there a way to subscribe to something on a Madison server?
The server as a community, or a tag as a community? Does mastodon have some other concept that I could subscribe to?
like this
don't like this
not from lemmy. you would have to use a microblog-interacting platform like mbin
there you can follow and be followed by microblog platforms like mastodon.
like this
Microsoft's newest open-source contribution to the Linux kernel being proposed is..www.phoronix.com
For anyone who wants an invitation to join mastodon.online, let me know! Like mastodon.social, it is one of the two official communities run by the Mastodon non-profit. The difference is that mastodon.online is invite-only.
Joining an invite-only server helps keep out spammers who target mastodon.social and lets someone be part of a more exclusive community. This can help someone have a better-quality mastodon experience, overall.
Of course, to keep out scammers, the invitation isn't open to just anyone who asks, they will have to have a posting history of some sort.
like this
don't like this
Quick question for you. I signed up to Mastadon a while back, have been endeavouring to use it more regularly, and have been trying to sign on to as many local or often-subscribed orgs (on other media platforms). What I'm finding is that remarkably few of them are on Mastadon, and often those that are have been using them as a kind of alt-Twitter content splash with little engagement.
Are the actual active profiles/communities sort of walling themselves off from bots and bad actors in the way that you're describing? Invite-only groups whose activity isn't seen by non-members, or even accessible when searching for related tags/topics? Have I been casting about looking for content like someone looking for people in a neighbourhood where everyone is inside with the curtains drawn, or is there actually low engagement on Mastadon overall?
Successful_Try543 likes this.
like this
If you want to follow specific organizations, unfortunately, there aren’t as many on Mastodon as on other social media platforms. Some are accessible through Threads.net federation, like @theonion@threads.net, through the Bluesky bridge, or via other non-Mastodon federated communities (e.g., Flipboard.com) if that’s something you’re interested in.
However, some communities do wall themselves off from bots and bad actors. For example, the most popular Mastodon instance (mastodon.social) blocks the second-largest instance (pawoo.net). Other instances, like mastodon.art, defederate from AI art supporting instances, while others like hachyderm.io has defederated from Threads.net. Additionally, some Mastodon communities, like Truth Social, are entirely isolated and defederate from everyone else.
So, if you want access to the widest range of communities, you may need to join more than one instance.
like this
like this
The servers are hosted by Hetzner with servers across Europe. They call out Hetzner when there is an outage.
status.mastodon.online/cm722jt…
We have switched back to our original networking, and all functionality and performance is restored. Hetzner has confirmed that is was indeed a vSwitch issue that caused the network outage.
More info about Hetzner here:
hetzner.com/unternehmen/ueber-…
DB connection issues - Incident details - mastodon.online Statusstatus.mastodon.online
like this
Newsletter platform Ghost, an open source competitor to Substack, is now connected to the fediverse, also known as the open social web. Federated apps runSarah Perez (TechCrunch)
like this
The docs are super unclear.
In future, we hope to develop a deeper integration between your social web profile and followers <> and your public website and registered members. To start with, though, they operate independently from one another.Your social web profile and followers are separate to the rest of your site and memberships, so you can think of it as a new, additional distribution channel.
Emphasis mine. I think the setup is basically federating links in Mastodon style. So if you have a post available as a subscription, it will prompt a login after clicking through.
jackalope likes this.
I have separate directories for uni courses, which are grouped in semester directory. I also TA some classes, which is stored in separate folder named 'TA'. That is, it is grouped like this:
University
| - ...
| - 2024.2
| | - Lie algebra
| | - Operator algebra
| - 2025.1
| | - Mathematical Algorithms
| | - Diophantine equations
| - TA
| | - ...
| | - 2024.2
| | - 2025.1Basically, I want to view directories with different grouping for each use case, as in the title. I hope this makes sense..
Is there any kind of directory structure or application-based solutions for this cases?
EDIT: I want both GUI and TUI solution for browsing files like this, it's great if linux filesystem supports this natively but fine if it doesn't.
Database with redirection capability would be even better.
Thanks in advance!
Is this what you're looking for?
University
|-TA-By-Semester
||-Semester 1
|||-Class A
||-Semester 2
|||-Class A
|-TA-By-Class
||-Class A
|||-Semester 1
|||-Semester 2
A new zypper experimental media backend and support for parallel package downloads have been introduced with the release of libzypp version 17.36.4 and zyppe...openSUSE News
like this
It's not only FreeDesktop.org that has been transitioning to new infrastructure this month but separately, Kernel.org is now receiving hosting and CDN needs provided by Akamai.www.phoronix.com
like this
like this
Palestine WIll Be Free doesn't like this.
like this
So many AP platforms are made by a couple of guys in their garage, it's not even funny, and the mentality of "just dicking around" means what gets used is whatever the whims of the day dictate, rather than the standard.
"If it works, it's not stupid" and all that.
But that kind of work lacks real world testing, and depe concern for public expectaton or desire.
Plus, you have to keep in mind that the idea of interplatform interoperability isn't this core conceit of ActivityPub. It's a potential use case, but it's not an expectation. There's no reason anyone should expect interop like that, other than some developers wanted to try it.
But some didn't, and now that their platforms are gaining audience, they're refactoring to meet that audience's expectations.
like this
like this
I recently did a library implementing pretty much the whole ActivityPub protocol and let me tell you one thing I've learned: ActivityPub is a half-assed unfinished mess.
It has so little constraints that pretty much anything is valid. You'd think that there was some logic at the core, but not really.
For example, there's the Like activity, the name is pretty self-explanatory. But it's valid to like anything. You want to like another Like activity? Why not! So you can like a like that likes a like...
Obviously, no real project implements such nonsense. But because almost everything is valid and up to interpretation of the implementer, there really is no single ActivityPub to implement that gets you running smoothly. There are many de-facto standards with various levels of compatibility with each other. Sending private messages is one such thing that many projects chose to implement in different ways.
Fun fact: Without implementing the HTTP Signatures spec, your app will not be able to send any activities to any software, because ActivityPub allows anyone to impersonate anyone, which obviously didn't really fly with people developing actual software that uses it.
In conclusion, pure ActivityPub is an unusable mess in its pure form that literally won't be able to communicate with other software implementing "ActivityPub," so everyone is kind of implementing a similar slice/hybrid of ActivityPub and other protocols, but not exactly the same ActivityPub.
like this
pwalker doesn't like this.
ActivityPub is a half-assed unfinished mess.
tried working on my own service and figured this one out very fast.
It's amazing that it works at all. 98% of the stuff is not documented at all. and the stuff that is, can hardly be called documentation.
like this
like this
They have conferences about ActivityPub. Why isn't W3C trying to fix this mess in newer backwards-incompatible versions? The time to do it is now, not later, because it would involve a major version and years of pushing for adoption. The lack of standardization of basic concepts is why integrations of different types of implementations is a broken mess, which is the whole fucking point of ActivityPub! Now, we have to compete with ATProto, which has different kinds of problems, and it's very possible that it just wins out and kills ActivityPub.
This reminds of the early days of SMTP, where there was zero thought behind security, and that created an entire spam industry.
PeerTube integration into Lemmy is still shit, poorly implemented, and rarely linked by Lemmy admins.
like this
"Rikudou's personal email"@5.75.133.3?like this
like this
Private messages and public comments are quite awkward in Activitypub, because the json format looks identical. They only way to differentiate them is to check for the presence or absence of https:...GitHub
like this
As political winds shift across the globe, the digital world is not immune to the turbulence. Governments and organizations across the globe are reassessing ...openSUSE News
like this
The future of tech doesn’t need to be American. It doesn’t need to be Chinese. It needs to be open.
And based on Tumbleweed?
Links & Resources ❯ HP Wants to Make a SteamOS Handheld: https://www.gamingonlinux.com/2025/03/hp-are-interested-in-making-a-steamos-handheld-as-the-windows-experience-sucks/ ❯ ChimeraOS 48 rel...PeerTube.wtf
like this
GoToSocial is probably the best way to get yourself onto the fediverse at the lowest price possible. It's an excellent choice for solo instances and enables you to migrate both to and from Mastodon...PeerTube.wtf
like this
irelephant [he/him]🍭 likes this.
github.com/LemmyNet/lemmy/issu…
I really hope this feature comes soon.
Requirements Is this a feature request? For questions or discussions use https://lemmy.ml/c/lemmy_support Did you check to see if this issue already exists? Is this only a feature request? Do not p...GitHub
I'm asking myself if exist something inside the fediverse where you can list your profiles and other people can Send you a message throw your most used app/profile without needing an sccount on that service, unify conversations throw different platforms and notify you if one person you follow in A service has a new profile in B service.
Something like a federated meeting point compatible with all ActivityPub developments. Does it exist?
Thanks!
like this
don't like this
Send you a message [through] your most used app/profile without needing an [account] on that service
No, I don't think so...
However, what you're describing kind of sounds like a polycentric identity. Maybe check that out. Also, I believe ActivityPods aim to handle a little of what you're describing, but I don't know how much adoption it's had.
like this
like this
Out of 120+ benchmarks run on Ubuntu 24.10 vs.www.phoronix.com
As a very exciting improvement for the open-source PostgreSQL database server, it has merged initial support for making use of IO_uring on Linux servers for asynchronous I/O and can provide for some nice performance improvements.www.phoronix.com
In the next release of Dolphin, the search backend (when Baloo indexing is disabled) will be faster and support more file types, by using external projects ripgrep-all and ripgrep to do the search. Merge RequestUse `ripgrep-all` / `ripgrep` to improve search in Dolphin
I was reminded of Recoll after reading a thread about email search.
I installed it on my desktop (Mint 22.1); does anyone have a way to integrate it directly into a desktop search.
e.g. press Super+f pops up a dialog box where I can search for something?
The Linux 6.15 kernel is set to remove support for IBM Cell Blade servers for those server platforms from around two decades ago that used the Cell Broadband Engine Architecture processorswww.phoronix.com
🔥 Support The Channel Get Zorin OS Pro here: https://zorin.com/linuxrenaissance Like, comment, and share to support more content! 📝 Quick Summary of the Video Zorin OS 17.3 is here, bringing a refi...PeerTube.wtf
KDE developers propose a new Plasma Login Manager to replace SDDM, aiming for deeper integration and a more feature-rich, modern login experience.Bobby Borisov (Linuxiac)
like this
This is great to hear. Something I love about GNOME was the login / lock experience.
SDDM felt like shit when used with Unity, and with Pantheon, and with Plasma.
Looking forward to its release.
XZ 5.8 is out today as the first notable feature release since last year's malicious backdoor in XZ 5.6 inserted by a then-co-maintainer of the projectwww.phoronix.com
An exciting new Linux kernel patch series was posted today for testing..www.phoronix.com
Following a decree by US President Trump, the Open Technology Fund is no longer receiving funding. That is why the organization is now going to court.Sven Festag (heise online)
like this
That website's cookie requirements are gross, here's the whole article
The Open Technology Fund (OTF) has filed a lawsuit in the US District Court in Washington D.C. against the US Agency for Global Media (USAGM) and the Office of Management and Budget. In its lawsuit, the OTF is seeking a preliminary injunction to have the USAGM release the withheld funding. US President Donald Trump had previously issued a decree largely restricting the USAGM under the current legal situation. The OTF uses its funds to support the certification authority Let's Encrypt and the anonymization network Tor, among others.OTF lacks 650,000 US dollars for operating costs
In its application, the OTF argues that the termination of the grant by the USAGM is unlawful, as the provision of the funding has already been decided by Congress. As part of this decision, a total amount of 43.5 million US dollars has been earmarked for 2025, which accounts for 98 percent of the OTF's funding. The USAGM oversees the financial and programmatic activities of the OTF and makes payments to the non-profit organization. The OTF had requested and not received a payment of around 650,000 US dollars for operating costs in March.
Kari Lake, executive CEO of USAGM and special advisor to the Trump administration, described the US agency in a statement as a "huge rot and burden on the American taxpayer" that also poses a national security risk. OTF Chairman Zack Cooper, on the other hand, argued that his organization is the most efficient and effective tool against censorship and influence peddling. An end to OTF projects "would weaken America's national security and keep millions of people around the world trapped behind authoritarian information firewalls", Cooper said.
Overall, the US government invests a lot of money in open source software. Last year, Let's Encrypt received around 800,000 US dollars in funding from the OTF, the Tor network received almost 500,000 US dollars and the open-source Android app store F-Droid received 396,000 US dollars. In total, the organization currently supports around 50 projects, including the development of the free VPN client OpenVPN. According to its information, the OTF has published around 2,500 patches for open-source software and the organization promotes VPNs for around 45 million people in countries with censorship. OTF President Cunningham sees the lawsuit as the only way to ensure the continued existence of these projects.
like this
People might have noticed me talking about dropping OpenH264 from Freedesktop SDK. Here, I’ll try to go a bit into the history, the timeline and what led to the final decision.Pixels
like this
like this
don't like this
I felt the same way every time I tried to use Twitter as I feel every time I try to use Mastodon. It's either way too much or way too little. I prefer everything about the reddit/lemmy/threadiverse style.
How would we even be having this conversation on microblogging? A bunch of reposts, with or without comments, disconnected from each other... So much nicer to have a "subject" line and a page where every relevant comment is presented.
like this
redshift doesn't like this.
I think the main idea is to look at some hashtags to find people to follow, then eventually wean off those hashtags if you want.
Another key detail is that you can’t read it all. Not hashtags, not people. You’ll go nuts if you try. It’s about following people who are interesting, opening the app every once in a while to check in, then going on with your day.
like this
There was a hiccup yesterday with no Linux 6.14 release or 6.14-rc8 otherwise..www.phoronix.com
like this
cp -g for a progress bar from the Rust verskons, and then a dev to come along and contribute that in the GNU C version compared the Rust ones, I think the GitHub Rust version is more inviting and easier?
like this
don't like this
like this
like this
Rivals to the Steam Deck so far have focused on Windows, but SteamOS opening up to more handhelds could mean a HP Omen device on the way.Hassam Nasir (PC Guide)
like this
like this
Among the earliest of pull requests this week ahead of the Linux 6.15 merge window expected to begin tomorrow were the media subsystem updateswww.phoronix.com
like this
The Endeavour OS enthusiast Linux distribution built atop Arch Linux is out with its March 2025 ISO refresh under the codename 'Mercury Neo' for this spin featuring the latest software packages.www.phoronix.com
like this
Lunatik is an in-kernel Lua runtime that enables dynamic scripting inside the Linux kernel—without requiring recompilation. It provides a flexible and lightweight way to extend kernel functionality…Lourival Vieira Neto (Medium)
As a grumpy old man who wishes his computer would stop changing I've been trying to get on board with XFCE for a while and the big blocker has been making things work well on my 4K screen. (For the record this post is based on Debian testing = trixie, X11, and nvidia proprietary drivers god have mercy on my soul.)
For a while XFCE only supported the type of scaling that makes things smaller. Understandably IMO this confused a few people and happily this has been upgraded and now it also makes things bigger. However in my experience this also makes things blurrier.
In my latest round of testing it appears that the situation can be fixed with a single setting: font DPI.
Settings Manager > Appearance > Fonts (tab) > Custom DPI setting > I chose 150, and logged out and in to have everything take effect.
From this single change everything is looking good in both GTK and Qt apps. I did also increase the size of my panel through the panel settings, and title bars are kind of tiny, but mostly I use maximised applications so I'm not stressing about this too much.
Hope this helps anyone else who is stuck in an "ohgod why couldn't we just stop after Windows 2000" love-hate relationship with computers.
Other noteworthy pixelfed things:
loops:
- loops source code released: mastodon.social/@dansup/114188…
- hashtags pinned videos: pixelfed.social/p/loops/798412…
- website: pixelfed.social/p/loops/781981…
Attached: 3 images The Pixelfed app login/sign-up flow has been completely redesigned based on your feedback. I was wrong, you were right. Our growing team is tackling issues I missed before, accelerating our development timeline.Mastodon
like this
No, I don't think he is sleazy or have ill-intentions. I think he genuinely wants to do good things.
The problem it's just that he lacks focus and he worries more about feeling validated than dealing with the daily grind of continuously improving his product. As soon as any of his projects start getting a minimal amount of interest and people start depending on what he has promised, he finds himself some "new" project to be busy with. At the same time, he still feels possessive about his creations, so it's hard for him to just delegate away any significant part of the system.
I hope that the successful kickstarter makes him realize that shit got real and that he already got the validation that he was seeking, and that the money is enough to get him surrounded by good people who are a bit more focused on "proper" project management.
I've recently picked up a secondhand Lenovo ThinkCentre Tiny PC which ultimately I plan to use as a home server for a variety of functions (media server being the main one) but I don't need to use it as a main desktop.
It currently has Windows 10 installed. It has a decent sized SSD but no optical drive. I want to install a suitable Linux distro on it. What's a good Linux distro for my needs? And what's the best way of doing a scorched earth on the Windows install and replacing it with said distro?
I'm not entirely a Linux noob - I used to work on Xenix and later Red Hat Linux, but that was 30 and 20 years ago respectively!
Mint is great but I have to fix my screwups.
My cheap laptop has a 128GB SSD. I have 30GB available .
I installed Mint on Sunday on a 15GB partition then realized I was immediately out of room.
Now I believe I have reformat, repartition to maybe 25GB and reinstall. Any better options?
Also, I could probably reformat the entire laptop if I could only figure out how to replace the Google Drive for sync backup for roughly 15 GB of personal photos and videos.
Technically, I wouldn’t have to do anything as it is already backed up but I guess I’d need a way to copy everything over to a Linux alternative that can be backed up from Mint.
Thoughts?
There is some new Wayland protocol support activity this week worth mentioning for both the KDE Plasma and GNOME desktops.www.phoronix.com
DigitalDilemma
in reply to marauding_gibberish142 • • •I have a saying, "If it's not DNS, then it's Selinux". It blocks stuff so frequently it's a major time sink for us.
It is overly complex and difficult to understand, especially if you're developing and deploying software that does not have correct pre-rolled policies. A regular job for me is to help developers solve this - which generally means running their service, seeing what Selinux blocks on, and then applying a fix. Repeat 2-8 times until every way Selinux is trying to access a file is explicitly allowed. And sometimes, even software that comes via official repos has buggy selinux policies that break things.
Fortunately, there are tools to help you. Install setroubleshooter amd when something doesn't work, "grep seal /var/log/messages" and if it's selinux causing the problem, you'll find instructions showing you what went wrong and how to create an exception. I absolutely consider this tool essential when using any system with selinux enabled.
Shimitar
in reply to marauding_gibberish142 • • •Its just complex.
I hate it for my Android device maintainer role much more than my Linux admin role...
On Android, its a fucking mess between vendor stuff and system stuff. But not for selinux itself, but for the mess that vendors often do.
remotelove
in reply to Shimitar • • •When a security mechanism becomes more complex to manage than what it is supposed to protect, it becomes a vulnerability itself.
If you had a minimal system that you built from the ground up yourself and wanted to only have that system function in very specific ways, SELinux would be perfect. I would go so far as to say it would be nearing perfection in some ways.
Sorry, but in the real world, ain't nobody got time for that shit. If you use auto configuration tools or pre-canned configs for SELinux on a system you are unfamiliar with, it's more likely to cause application issues, create security gaps and will likely be shut off by a Jr. admin who really has no fucking clue what he is doing anyway.
It's just easier to keep your system patched and ensure basic network security practices anyway.
It's not impossible to manage these days. In the early days it was, but most everything is automagic now. If I am not mistaken, SELinux can be enabled to 'log only' which would give you data better handled by a HIPS anyway. (Don't quote me on that.)
Shimitar
in reply to remotelove • • •remotelove
in reply to Shimitar • • •unhrpetby
in reply to marauding_gibberish142 • • •Security is much more effective and adopted when it is simple. My understanding is that SELinux is not.
This means not only will fewer people use it and more people turn it off if something doesn't work, it means more people are at risk of misconfiguring their system to allow something they didn't intend to.
This is somewhat mitigated from the fact that, from my experience, Linux Security Modules cant ever make you less secure than without it. But it still can provide a false sense of security if you misconfigure it.
Here is a good article showing what I am referring to, and providing a solid security tool: BSD pledge/unveil on Linux.
Porting OpenBSD pledge() to Linux
justine.lolredxef
in reply to marauding_gibberish142 • • •Docker container can't read a bind mount. Permission issue? No, it's SELinux, again. And I didn't even install it explicitly, it just got pulled in by another package.
And to be clear, the issue isn't SELinux really, but ~~unexpected~~ non standard behaviour which I never asked for (never explicitly installed it).
Quazatron
in reply to marauding_gibberish142 • • •marauding_gibberish142
in reply to Quazatron • • •daggermoon
in reply to marauding_gibberish142 • • •gwilikers
in reply to daggermoon • • •SELinux is an access control system for Linux. Traditionally Linux uses Dynamic Access Control (DAC) which basically means the person who creates a file can determine who can access that file. Thats pretty fine for day to day use but there are some problems with this model in terms of security. One I can think of is that it's more vulnerable to privilege escalation (a hacker getting access to a higher level account like admin through a lower level account) because it puts the onus on the user to define who can access the file. SELinux was invented by our good friends at the NSA to remedy these kinds of problems. It's an example of Mandatory Access Control. It works on top of DAC by creating policies that work to prevent things like privilage escalation. It's also a lot more comprehensive than DAC. It allows for things context based access, taking into account the broader security context of an access attempt, the user's role, etc.
I'm actually not entirely sure why some people don't like it. Understandably, some people are wary of anything the NSA let's out into the public. But as it's open source and has been integrated into a number of Linux distros like Fedora, it's unlikely they've backdoored it. If I was to hazard a guess, I'd say some people don't like it for the same reason they don't like systemd: Linux has often been an OS where user's like a big degree of control through simple traditional systems and those don't like the idea of losing some of that control to the complexity overhead involved in these new systems.
kingthrillgore
in reply to marauding_gibberish142 • • •marauding_gibberish142
in reply to kingthrillgore • • •