| 1 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 2 |
DENIED
|
moderate
|
App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
} |
|
Show voter details
|
| 3 |
DENIED
|
edit
|
App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
} |
|
Show voter details
|
| 4 |
DENIED
|
moderate
|
App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
} |
|
Show voter details
|
| 5 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 6 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4023
+user: App\Entity\User {#3972 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "This is like removing a safety feature in your car. Like removing seatbelts or maybe anti-lock brakes."
+lang: "en"
+isAdult: false
+favouriteCount: 11
+score: 0
+lastActive: DateTime @1704353439 {#3933
date: 2024-01-04 08:30:39.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4021 …}
+nested: Doctrine\ORM\PersistentCollection {#4019 …}
+votes: Doctrine\ORM\PersistentCollection {#4017 …}
+reports: Doctrine\ORM\PersistentCollection {#4015 …}
+favourites: Doctrine\ORM\PersistentCollection {#3983 …}
+notifications: Doctrine\ORM\PersistentCollection {#3987 …}
-id: 278923
-bodyTs: "'anti':17 'anti-lock':16 'brake':19 'car':10 'featur':7 'like':3,11 'lock':18 'mayb':15 'remov':4,12 'safeti':6 'seatbelt':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6395975"
+editedAt: null
+createdAt: DateTimeImmutable @1704353439 {#3969
date: 2024-01-04 08:30:39.0 +01:00
}
} |
|
Show voter details
|
| 7 |
DENIED
|
edit
|
App\Entity\EntryComment {#4023
+user: App\Entity\User {#3972 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "This is like removing a safety feature in your car. Like removing seatbelts or maybe anti-lock brakes."
+lang: "en"
+isAdult: false
+favouriteCount: 11
+score: 0
+lastActive: DateTime @1704353439 {#3933
date: 2024-01-04 08:30:39.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4021 …}
+nested: Doctrine\ORM\PersistentCollection {#4019 …}
+votes: Doctrine\ORM\PersistentCollection {#4017 …}
+reports: Doctrine\ORM\PersistentCollection {#4015 …}
+favourites: Doctrine\ORM\PersistentCollection {#3983 …}
+notifications: Doctrine\ORM\PersistentCollection {#3987 …}
-id: 278923
-bodyTs: "'anti':17 'anti-lock':16 'brake':19 'car':10 'featur':7 'like':3,11 'lock':18 'mayb':15 'remov':4,12 'safeti':6 'seatbelt':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6395975"
+editedAt: null
+createdAt: DateTimeImmutable @1704353439 {#3969
date: 2024-01-04 08:30:39.0 +01:00
}
} |
|
Show voter details
|
| 8 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4023
+user: App\Entity\User {#3972 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "This is like removing a safety feature in your car. Like removing seatbelts or maybe anti-lock brakes."
+lang: "en"
+isAdult: false
+favouriteCount: 11
+score: 0
+lastActive: DateTime @1704353439 {#3933
date: 2024-01-04 08:30:39.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4021 …}
+nested: Doctrine\ORM\PersistentCollection {#4019 …}
+votes: Doctrine\ORM\PersistentCollection {#4017 …}
+reports: Doctrine\ORM\PersistentCollection {#4015 …}
+favourites: Doctrine\ORM\PersistentCollection {#3983 …}
+notifications: Doctrine\ORM\PersistentCollection {#3987 …}
-id: 278923
-bodyTs: "'anti':17 'anti-lock':16 'brake':19 'car':10 'featur':7 'like':3,11 'lock':18 'mayb':15 'remov':4,12 'safeti':6 'seatbelt':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6395975"
+editedAt: null
+createdAt: DateTimeImmutable @1704353439 {#3969
date: 2024-01-04 08:30:39.0 +01:00
}
} |
|
Show voter details
|
| 9 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 10 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4068
+user: App\Entity\User {#4052 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "I just wanted to add that you can run gui applications through ssh with x11 forwarding, options -X or -Y (untrusted/trusted but at least in Debian back in the day they behaved the same). So if you wanted a gui file manager you run it in the ssh session on the remote server, sudo if you need but NEVER logged as root, and the window will pop on your local DE instead of having to run an entire desktop on each server"
+lang: "en"
+isAdult: false
+favouriteCount: 11
+score: 0
+lastActive: DateTime @1704286335 {#4069
date: 2024-01-03 13:52:15.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4060 …}
+nested: Doctrine\ORM\PersistentCollection {#4063 …}
+votes: Doctrine\ORM\PersistentCollection {#4061 …}
+reports: Doctrine\ORM\PersistentCollection {#4059 …}
+favourites: Doctrine\ORM\PersistentCollection {#4058 …}
+notifications: Doctrine\ORM\PersistentCollection {#4049 …}
-id: 276274
-bodyTs: "'add':5 'applic':11 'back':27 'behav':32 'day':30 'de':71 'debian':26 'desktop':79 'entir':78 'file':41 'forward':16 'gui':10,40 'instead':72 'least':24 'local':70 'log':60 'manag':42 'need':57 'never':59 'option':17 'pop':67 'remot':52 'root':62 'run':9,44,76 'server':53,82 'session':49 'ssh':13,48 'sudo':54 'untrusted/trusted':21 'want':3,38 'window':65 'x':18 'x11':15 'y':20"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4385137"
+editedAt: DateTimeImmutable @1711211964 {#4074
date: 2024-03-23 17:39:24.0 +01:00
}
+createdAt: DateTimeImmutable @1704286335 {#4072
date: 2024-01-03 13:52:15.0 +01:00
}
} |
|
Show voter details
|
| 11 |
DENIED
|
edit
|
App\Entity\EntryComment {#4068
+user: App\Entity\User {#4052 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "I just wanted to add that you can run gui applications through ssh with x11 forwarding, options -X or -Y (untrusted/trusted but at least in Debian back in the day they behaved the same). So if you wanted a gui file manager you run it in the ssh session on the remote server, sudo if you need but NEVER logged as root, and the window will pop on your local DE instead of having to run an entire desktop on each server"
+lang: "en"
+isAdult: false
+favouriteCount: 11
+score: 0
+lastActive: DateTime @1704286335 {#4069
date: 2024-01-03 13:52:15.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4060 …}
+nested: Doctrine\ORM\PersistentCollection {#4063 …}
+votes: Doctrine\ORM\PersistentCollection {#4061 …}
+reports: Doctrine\ORM\PersistentCollection {#4059 …}
+favourites: Doctrine\ORM\PersistentCollection {#4058 …}
+notifications: Doctrine\ORM\PersistentCollection {#4049 …}
-id: 276274
-bodyTs: "'add':5 'applic':11 'back':27 'behav':32 'day':30 'de':71 'debian':26 'desktop':79 'entir':78 'file':41 'forward':16 'gui':10,40 'instead':72 'least':24 'local':70 'log':60 'manag':42 'need':57 'never':59 'option':17 'pop':67 'remot':52 'root':62 'run':9,44,76 'server':53,82 'session':49 'ssh':13,48 'sudo':54 'untrusted/trusted':21 'want':3,38 'window':65 'x':18 'x11':15 'y':20"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4385137"
+editedAt: DateTimeImmutable @1711211964 {#4074
date: 2024-03-23 17:39:24.0 +01:00
}
+createdAt: DateTimeImmutable @1704286335 {#4072
date: 2024-01-03 13:52:15.0 +01:00
}
} |
|
Show voter details
|
| 12 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4068
+user: App\Entity\User {#4052 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "I just wanted to add that you can run gui applications through ssh with x11 forwarding, options -X or -Y (untrusted/trusted but at least in Debian back in the day they behaved the same). So if you wanted a gui file manager you run it in the ssh session on the remote server, sudo if you need but NEVER logged as root, and the window will pop on your local DE instead of having to run an entire desktop on each server"
+lang: "en"
+isAdult: false
+favouriteCount: 11
+score: 0
+lastActive: DateTime @1704286335 {#4069
date: 2024-01-03 13:52:15.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4060 …}
+nested: Doctrine\ORM\PersistentCollection {#4063 …}
+votes: Doctrine\ORM\PersistentCollection {#4061 …}
+reports: Doctrine\ORM\PersistentCollection {#4059 …}
+favourites: Doctrine\ORM\PersistentCollection {#4058 …}
+notifications: Doctrine\ORM\PersistentCollection {#4049 …}
-id: 276274
-bodyTs: "'add':5 'applic':11 'back':27 'behav':32 'day':30 'de':71 'debian':26 'desktop':79 'entir':78 'file':41 'forward':16 'gui':10,40 'instead':72 'least':24 'local':70 'log':60 'manag':42 'need':57 'never':59 'option':17 'pop':67 'remot':52 'root':62 'run':9,44,76 'server':53,82 'session':49 'ssh':13,48 'sudo':54 'untrusted/trusted':21 'want':3,38 'window':65 'x':18 'x11':15 'y':20"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4385137"
+editedAt: DateTimeImmutable @1711211964 {#4074
date: 2024-03-23 17:39:24.0 +01:00
}
+createdAt: DateTimeImmutable @1704286335 {#4072
date: 2024-01-03 13:52:15.0 +01:00
}
} |
|
Show voter details
|
| 13 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 14 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4136
+user: App\Entity\User {#4149 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Usig *anything* as root is a security risk.\n
\n
Using *any* UI application as root is a bigger risk. That’s because every UI toolkit loads plugins and what not from all over the place and runs the code from those plugins (e.g. plugins installed system wide and into random places some environment variables point to). Binary plugins get executed in the context of the application running and can do change every aspect of your program. I wrote a small image plugin to debug an issue once that looked at all widgets in the UI and wrote all the contents of all text fields (even those obfuscated to show only dots in the UI) to disk whenever some image was loads. Plugins in JS or other non-native code are more limited, but UI toolkits tend to have binary plugins.\n
\n
So if somebody manages to set the some env vars and gets root to run some UI application with those set (e.g. using sudo), then that attacker hit the jackpot. In fact some toolkits will not even bring up any UI when run as root to avoid this.\n
\n
Running any networked UI application as root is the biggest risk. Those process untrusted data by definition with who knows what set of plugins loaded.\n
\n
Ideally you run the UI as a normal user and then use sudo to run individual commands as root.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 8
+score: 0
+lastActive: DateTime @1711208212 {#4131
date: 2024-03-23 16:36:52.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4137 …}
+nested: Doctrine\ORM\PersistentCollection {#4139 …}
+votes: Doctrine\ORM\PersistentCollection {#4141 …}
+reports: Doctrine\ORM\PersistentCollection {#4143 …}
+favourites: Doctrine\ORM\PersistentCollection {#4145 …}
+notifications: Doctrine\ORM\PersistentCollection {#4147 …}
-id: 276098
-bodyTs: "'anyth':2 'applic':12,65,158,193 'aspect':72 'attack':167 'avoid':187 'bigger':17 'biggest':198 'binari':56,139 'bring':178 'chang':70 'code':38,129 'command':230 'content':99 'context':62 'data':203 'debug':83 'definit':205 'disk':115 'dot':110 'e.g':42,162 'env':149 'environ':52 'even':104,177 'everi':22,71 'execut':59 'fact':172 'field':103 'get':58,152 'hit':168 'ideal':214 'imag':80,118 'individu':229 'instal':44 'issu':85 'jackpot':170 'js':123 'know':208 'limit':132 'load':25,120,213 'look':88 'manag':144 'nativ':128 'network':191 'non':127 'non-nat':126 'normal':221 'obfusc':106 'place':34,50 'plugin':26,41,43,57,81,121,140,212 'point':54 'process':201 'program':75 'random':49 'risk':8,18,199 'root':4,14,153,185,195,232 'run':36,66,155,183,189,216,228 'secur':7 'set':146,161,210 'show':108 'small':79 'somebodi':143 'sudo':164,226 'system':45 'tend':136 'text':102 'toolkit':24,135,174 'ui':11,23,94,113,134,157,181,192,218 'untrust':202 'use':9,163,225 'user':222 'usig':1 'var':150 'variabl':53 'whenev':116 'wide':46 'widget':91 'wrote':77,96"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://programming.dev/comment/6099001"
+editedAt: null
+createdAt: DateTimeImmutable @1704274379 {#4132
date: 2024-01-03 10:32:59.0 +01:00
}
} |
|
Show voter details
|
| 15 |
DENIED
|
edit
|
App\Entity\EntryComment {#4136
+user: App\Entity\User {#4149 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Usig *anything* as root is a security risk.\n
\n
Using *any* UI application as root is a bigger risk. That’s because every UI toolkit loads plugins and what not from all over the place and runs the code from those plugins (e.g. plugins installed system wide and into random places some environment variables point to). Binary plugins get executed in the context of the application running and can do change every aspect of your program. I wrote a small image plugin to debug an issue once that looked at all widgets in the UI and wrote all the contents of all text fields (even those obfuscated to show only dots in the UI) to disk whenever some image was loads. Plugins in JS or other non-native code are more limited, but UI toolkits tend to have binary plugins.\n
\n
So if somebody manages to set the some env vars and gets root to run some UI application with those set (e.g. using sudo), then that attacker hit the jackpot. In fact some toolkits will not even bring up any UI when run as root to avoid this.\n
\n
Running any networked UI application as root is the biggest risk. Those process untrusted data by definition with who knows what set of plugins loaded.\n
\n
Ideally you run the UI as a normal user and then use sudo to run individual commands as root.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 8
+score: 0
+lastActive: DateTime @1711208212 {#4131
date: 2024-03-23 16:36:52.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4137 …}
+nested: Doctrine\ORM\PersistentCollection {#4139 …}
+votes: Doctrine\ORM\PersistentCollection {#4141 …}
+reports: Doctrine\ORM\PersistentCollection {#4143 …}
+favourites: Doctrine\ORM\PersistentCollection {#4145 …}
+notifications: Doctrine\ORM\PersistentCollection {#4147 …}
-id: 276098
-bodyTs: "'anyth':2 'applic':12,65,158,193 'aspect':72 'attack':167 'avoid':187 'bigger':17 'biggest':198 'binari':56,139 'bring':178 'chang':70 'code':38,129 'command':230 'content':99 'context':62 'data':203 'debug':83 'definit':205 'disk':115 'dot':110 'e.g':42,162 'env':149 'environ':52 'even':104,177 'everi':22,71 'execut':59 'fact':172 'field':103 'get':58,152 'hit':168 'ideal':214 'imag':80,118 'individu':229 'instal':44 'issu':85 'jackpot':170 'js':123 'know':208 'limit':132 'load':25,120,213 'look':88 'manag':144 'nativ':128 'network':191 'non':127 'non-nat':126 'normal':221 'obfusc':106 'place':34,50 'plugin':26,41,43,57,81,121,140,212 'point':54 'process':201 'program':75 'random':49 'risk':8,18,199 'root':4,14,153,185,195,232 'run':36,66,155,183,189,216,228 'secur':7 'set':146,161,210 'show':108 'small':79 'somebodi':143 'sudo':164,226 'system':45 'tend':136 'text':102 'toolkit':24,135,174 'ui':11,23,94,113,134,157,181,192,218 'untrust':202 'use':9,163,225 'user':222 'usig':1 'var':150 'variabl':53 'whenev':116 'wide':46 'widget':91 'wrote':77,96"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://programming.dev/comment/6099001"
+editedAt: null
+createdAt: DateTimeImmutable @1704274379 {#4132
date: 2024-01-03 10:32:59.0 +01:00
}
} |
|
Show voter details
|
| 16 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4136
+user: App\Entity\User {#4149 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Usig *anything* as root is a security risk.\n
\n
Using *any* UI application as root is a bigger risk. That’s because every UI toolkit loads plugins and what not from all over the place and runs the code from those plugins (e.g. plugins installed system wide and into random places some environment variables point to). Binary plugins get executed in the context of the application running and can do change every aspect of your program. I wrote a small image plugin to debug an issue once that looked at all widgets in the UI and wrote all the contents of all text fields (even those obfuscated to show only dots in the UI) to disk whenever some image was loads. Plugins in JS or other non-native code are more limited, but UI toolkits tend to have binary plugins.\n
\n
So if somebody manages to set the some env vars and gets root to run some UI application with those set (e.g. using sudo), then that attacker hit the jackpot. In fact some toolkits will not even bring up any UI when run as root to avoid this.\n
\n
Running any networked UI application as root is the biggest risk. Those process untrusted data by definition with who knows what set of plugins loaded.\n
\n
Ideally you run the UI as a normal user and then use sudo to run individual commands as root.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 8
+score: 0
+lastActive: DateTime @1711208212 {#4131
date: 2024-03-23 16:36:52.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4137 …}
+nested: Doctrine\ORM\PersistentCollection {#4139 …}
+votes: Doctrine\ORM\PersistentCollection {#4141 …}
+reports: Doctrine\ORM\PersistentCollection {#4143 …}
+favourites: Doctrine\ORM\PersistentCollection {#4145 …}
+notifications: Doctrine\ORM\PersistentCollection {#4147 …}
-id: 276098
-bodyTs: "'anyth':2 'applic':12,65,158,193 'aspect':72 'attack':167 'avoid':187 'bigger':17 'biggest':198 'binari':56,139 'bring':178 'chang':70 'code':38,129 'command':230 'content':99 'context':62 'data':203 'debug':83 'definit':205 'disk':115 'dot':110 'e.g':42,162 'env':149 'environ':52 'even':104,177 'everi':22,71 'execut':59 'fact':172 'field':103 'get':58,152 'hit':168 'ideal':214 'imag':80,118 'individu':229 'instal':44 'issu':85 'jackpot':170 'js':123 'know':208 'limit':132 'load':25,120,213 'look':88 'manag':144 'nativ':128 'network':191 'non':127 'non-nat':126 'normal':221 'obfusc':106 'place':34,50 'plugin':26,41,43,57,81,121,140,212 'point':54 'process':201 'program':75 'random':49 'risk':8,18,199 'root':4,14,153,185,195,232 'run':36,66,155,183,189,216,228 'secur':7 'set':146,161,210 'show':108 'small':79 'somebodi':143 'sudo':164,226 'system':45 'tend':136 'text':102 'toolkit':24,135,174 'ui':11,23,94,113,134,157,181,192,218 'untrust':202 'use':9,163,225 'user':222 'usig':1 'var':150 'variabl':53 'whenev':116 'wide':46 'widget':91 'wrote':77,96"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://programming.dev/comment/6099001"
+editedAt: null
+createdAt: DateTimeImmutable @1704274379 {#4132
date: 2024-01-03 10:32:59.0 +01:00
}
} |
|
Show voter details
|
| 17 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 18 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4210
+user: App\Entity\User {#4223 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "Without any judgement: why are your servers running X11? Just because you dislike SSH’ing to them?"
+lang: "en"
+isAdult: false
+favouriteCount: 7
+score: 0
+lastActive: DateTime @1711793244 {#4205
date: 2024-03-30 11:07:24.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4211 …}
+nested: Doctrine\ORM\PersistentCollection {#4213 …}
+votes: Doctrine\ORM\PersistentCollection {#4215 …}
+reports: Doctrine\ORM\PersistentCollection {#4217 …}
+favourites: Doctrine\ORM\PersistentCollection {#4219 …}
+notifications: Doctrine\ORM\PersistentCollection {#4221 …}
-id: 276099
-bodyTs: "'dislik':13 'ing':15 'judgement':3 'run':8 'server':7 'ssh':14 'without':1 'x11':9"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://programming.dev/comment/6099407"
+editedAt: null
+createdAt: DateTimeImmutable @1704275308 {#4206
date: 2024-01-03 10:48:28.0 +01:00
}
} |
|
Show voter details
|
| 19 |
DENIED
|
edit
|
App\Entity\EntryComment {#4210
+user: App\Entity\User {#4223 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "Without any judgement: why are your servers running X11? Just because you dislike SSH’ing to them?"
+lang: "en"
+isAdult: false
+favouriteCount: 7
+score: 0
+lastActive: DateTime @1711793244 {#4205
date: 2024-03-30 11:07:24.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4211 …}
+nested: Doctrine\ORM\PersistentCollection {#4213 …}
+votes: Doctrine\ORM\PersistentCollection {#4215 …}
+reports: Doctrine\ORM\PersistentCollection {#4217 …}
+favourites: Doctrine\ORM\PersistentCollection {#4219 …}
+notifications: Doctrine\ORM\PersistentCollection {#4221 …}
-id: 276099
-bodyTs: "'dislik':13 'ing':15 'judgement':3 'run':8 'server':7 'ssh':14 'without':1 'x11':9"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://programming.dev/comment/6099407"
+editedAt: null
+createdAt: DateTimeImmutable @1704275308 {#4206
date: 2024-01-03 10:48:28.0 +01:00
}
} |
|
Show voter details
|
| 20 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4210
+user: App\Entity\User {#4223 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "Without any judgement: why are your servers running X11? Just because you dislike SSH’ing to them?"
+lang: "en"
+isAdult: false
+favouriteCount: 7
+score: 0
+lastActive: DateTime @1711793244 {#4205
date: 2024-03-30 11:07:24.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4211 …}
+nested: Doctrine\ORM\PersistentCollection {#4213 …}
+votes: Doctrine\ORM\PersistentCollection {#4215 …}
+reports: Doctrine\ORM\PersistentCollection {#4217 …}
+favourites: Doctrine\ORM\PersistentCollection {#4219 …}
+notifications: Doctrine\ORM\PersistentCollection {#4221 …}
-id: 276099
-bodyTs: "'dislik':13 'ing':15 'judgement':3 'run':8 'server':7 'ssh':14 'without':1 'x11':9"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://programming.dev/comment/6099407"
+editedAt: null
+createdAt: DateTimeImmutable @1704275308 {#4206
date: 2024-01-03 10:48:28.0 +01:00
}
} |
|
Show voter details
|
| 21 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 22 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4284
+user: App\Entity\User {#4297 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "That’d be the same as asking if leaving your house front door open is dangerous – it depends. If an ill-intended individual sees it open however, s/he won’t think twice to trash your home."
+lang: "en"
+isAdult: false
+favouriteCount: 5
+score: 0
+lastActive: DateTime @1704294218 {#4278
date: 2024-01-03 16:03:38.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4285 …}
+nested: Doctrine\ORM\PersistentCollection {#4287 …}
+votes: Doctrine\ORM\PersistentCollection {#4289 …}
+reports: Doctrine\ORM\PersistentCollection {#4291 …}
+favourites: Doctrine\ORM\PersistentCollection {#4293 …}
+notifications: Doctrine\ORM\PersistentCollection {#4295 …}
-id: 276603
-bodyTs: "'ask':7 'd':2 'danger':16 'depend':18 'door':13 'front':12 'home':37 'hous':11 'howev':28 'ill':22 'ill-intend':21 'individu':24 'intend':23 'leav':9 'open':14,27 's/he':29 'see':25 'think':32 'trash':35 'twice':33 'won':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6381634"
+editedAt: DateTimeImmutable @1711244127 {#4279
date: 2024-03-24 02:35:27.0 +01:00
}
+createdAt: DateTimeImmutable @1704294218 {#4280
date: 2024-01-03 16:03:38.0 +01:00
}
} |
|
Show voter details
|
| 23 |
DENIED
|
edit
|
App\Entity\EntryComment {#4284
+user: App\Entity\User {#4297 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "That’d be the same as asking if leaving your house front door open is dangerous – it depends. If an ill-intended individual sees it open however, s/he won’t think twice to trash your home."
+lang: "en"
+isAdult: false
+favouriteCount: 5
+score: 0
+lastActive: DateTime @1704294218 {#4278
date: 2024-01-03 16:03:38.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4285 …}
+nested: Doctrine\ORM\PersistentCollection {#4287 …}
+votes: Doctrine\ORM\PersistentCollection {#4289 …}
+reports: Doctrine\ORM\PersistentCollection {#4291 …}
+favourites: Doctrine\ORM\PersistentCollection {#4293 …}
+notifications: Doctrine\ORM\PersistentCollection {#4295 …}
-id: 276603
-bodyTs: "'ask':7 'd':2 'danger':16 'depend':18 'door':13 'front':12 'home':37 'hous':11 'howev':28 'ill':22 'ill-intend':21 'individu':24 'intend':23 'leav':9 'open':14,27 's/he':29 'see':25 'think':32 'trash':35 'twice':33 'won':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6381634"
+editedAt: DateTimeImmutable @1711244127 {#4279
date: 2024-03-24 02:35:27.0 +01:00
}
+createdAt: DateTimeImmutable @1704294218 {#4280
date: 2024-01-03 16:03:38.0 +01:00
}
} |
|
Show voter details
|
| 24 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4284
+user: App\Entity\User {#4297 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "That’d be the same as asking if leaving your house front door open is dangerous – it depends. If an ill-intended individual sees it open however, s/he won’t think twice to trash your home."
+lang: "en"
+isAdult: false
+favouriteCount: 5
+score: 0
+lastActive: DateTime @1704294218 {#4278
date: 2024-01-03 16:03:38.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4285 …}
+nested: Doctrine\ORM\PersistentCollection {#4287 …}
+votes: Doctrine\ORM\PersistentCollection {#4289 …}
+reports: Doctrine\ORM\PersistentCollection {#4291 …}
+favourites: Doctrine\ORM\PersistentCollection {#4293 …}
+notifications: Doctrine\ORM\PersistentCollection {#4295 …}
-id: 276603
-bodyTs: "'ask':7 'd':2 'danger':16 'depend':18 'door':13 'front':12 'home':37 'hous':11 'howev':28 'ill':22 'ill-intend':21 'individu':24 'intend':23 'leav':9 'open':14,27 's/he':29 'see':25 'think':32 'trash':35 'twice':33 'won':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6381634"
+editedAt: DateTimeImmutable @1711244127 {#4279
date: 2024-03-24 02:35:27.0 +01:00
}
+createdAt: DateTimeImmutable @1704294218 {#4280
date: 2024-01-03 16:03:38.0 +01:00
}
} |
|
Show voter details
|
| 25 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 26 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4359
+user: App\Entity\User {#4372 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
On a typical home user desktop linux setup, there’s virtually no difference between your regular user and root.\n
\n
Access to your data, emails, passwords, installing software (in /home), access to LAN and so on are already possible without root permissions, so there really is not a whole lot that an attacker cannot do even without root.\n
\n
And then, if you use sudo or su (or whatever) to switch to root with a password, escalating to root privileges is basically trivial for an attacker. An attacker can divert your PATH to compromised binaries. They could just replace “sudo” with their own little script that steals your password.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 5
+score: 0
+lastActive: DateTime @1704276999 {#4354
date: 2024-01-03 11:16:39.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4360 …}
+nested: Doctrine\ORM\PersistentCollection {#4362 …}
+votes: Doctrine\ORM\PersistentCollection {#4364 …}
+reports: Doctrine\ORM\PersistentCollection {#4366 …}
+favourites: Doctrine\ORM\PersistentCollection {#4368 …}
+notifications: Doctrine\ORM\PersistentCollection {#4370 …}
-id: 276047
-bodyTs: "'/home':29 'access':20,30 'alreadi':37 'attack':52,84,86 'basic':80 'binari':93 'cannot':53 'compromis':92 'could':95 'data':23 'desktop':6 'differ':13 'divert':88 'email':24 'escal':75 'even':55 'home':4 'instal':26 'lan':32 'linux':7 'littl':102 'lot':49 'password':25,74,107 'path':90 'permiss':41 'possibl':38 'privileg':78 'realli':44 'regular':16 'replac':97 'root':19,40,57,71,77 'script':103 'setup':8 'softwar':27 'steal':105 'su':65 'sudo':63,98 'switch':69 'trivial':81 'typic':3 'use':62 'user':5,17 'virtual':11 'whatev':67 'whole':48 'without':39,56"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.ml/comment/7038752"
+editedAt: null
+createdAt: DateTimeImmutable @1704276999 {#4355
date: 2024-01-03 11:16:39.0 +01:00
}
} |
|
Show voter details
|
| 27 |
DENIED
|
edit
|
App\Entity\EntryComment {#4359
+user: App\Entity\User {#4372 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
On a typical home user desktop linux setup, there’s virtually no difference between your regular user and root.\n
\n
Access to your data, emails, passwords, installing software (in /home), access to LAN and so on are already possible without root permissions, so there really is not a whole lot that an attacker cannot do even without root.\n
\n
And then, if you use sudo or su (or whatever) to switch to root with a password, escalating to root privileges is basically trivial for an attacker. An attacker can divert your PATH to compromised binaries. They could just replace “sudo” with their own little script that steals your password.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 5
+score: 0
+lastActive: DateTime @1704276999 {#4354
date: 2024-01-03 11:16:39.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4360 …}
+nested: Doctrine\ORM\PersistentCollection {#4362 …}
+votes: Doctrine\ORM\PersistentCollection {#4364 …}
+reports: Doctrine\ORM\PersistentCollection {#4366 …}
+favourites: Doctrine\ORM\PersistentCollection {#4368 …}
+notifications: Doctrine\ORM\PersistentCollection {#4370 …}
-id: 276047
-bodyTs: "'/home':29 'access':20,30 'alreadi':37 'attack':52,84,86 'basic':80 'binari':93 'cannot':53 'compromis':92 'could':95 'data':23 'desktop':6 'differ':13 'divert':88 'email':24 'escal':75 'even':55 'home':4 'instal':26 'lan':32 'linux':7 'littl':102 'lot':49 'password':25,74,107 'path':90 'permiss':41 'possibl':38 'privileg':78 'realli':44 'regular':16 'replac':97 'root':19,40,57,71,77 'script':103 'setup':8 'softwar':27 'steal':105 'su':65 'sudo':63,98 'switch':69 'trivial':81 'typic':3 'use':62 'user':5,17 'virtual':11 'whatev':67 'whole':48 'without':39,56"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.ml/comment/7038752"
+editedAt: null
+createdAt: DateTimeImmutable @1704276999 {#4355
date: 2024-01-03 11:16:39.0 +01:00
}
} |
|
Show voter details
|
| 28 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4359
+user: App\Entity\User {#4372 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
On a typical home user desktop linux setup, there’s virtually no difference between your regular user and root.\n
\n
Access to your data, emails, passwords, installing software (in /home), access to LAN and so on are already possible without root permissions, so there really is not a whole lot that an attacker cannot do even without root.\n
\n
And then, if you use sudo or su (or whatever) to switch to root with a password, escalating to root privileges is basically trivial for an attacker. An attacker can divert your PATH to compromised binaries. They could just replace “sudo” with their own little script that steals your password.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 5
+score: 0
+lastActive: DateTime @1704276999 {#4354
date: 2024-01-03 11:16:39.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4360 …}
+nested: Doctrine\ORM\PersistentCollection {#4362 …}
+votes: Doctrine\ORM\PersistentCollection {#4364 …}
+reports: Doctrine\ORM\PersistentCollection {#4366 …}
+favourites: Doctrine\ORM\PersistentCollection {#4368 …}
+notifications: Doctrine\ORM\PersistentCollection {#4370 …}
-id: 276047
-bodyTs: "'/home':29 'access':20,30 'alreadi':37 'attack':52,84,86 'basic':80 'binari':93 'cannot':53 'compromis':92 'could':95 'data':23 'desktop':6 'differ':13 'divert':88 'email':24 'escal':75 'even':55 'home':4 'instal':26 'lan':32 'linux':7 'littl':102 'lot':49 'password':25,74,107 'path':90 'permiss':41 'possibl':38 'privileg':78 'realli':44 'regular':16 'replac':97 'root':19,40,57,71,77 'script':103 'setup':8 'softwar':27 'steal':105 'su':65 'sudo':63,98 'switch':69 'trivial':81 'typic':3 'use':62 'user':5,17 'virtual':11 'whatev':67 'whole':48 'without':39,56"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.ml/comment/7038752"
+editedAt: null
+createdAt: DateTimeImmutable @1704276999 {#4355
date: 2024-01-03 11:16:39.0 +01:00
}
} |
|
Show voter details
|
| 29 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 30 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
} |
|
Show voter details
|
| 31 |
DENIED
|
edit
|
App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
} |
|
Show voter details
|
| 32 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
} |
|
Show voter details
|
| 33 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 34 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4857
+user: Proxies\__CG__\App\Entity\User {#4858 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "Damn, you are so lucky that the downvotes are disabled or you would be downvoted to Oblivion."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704420036 {#4855
date: 2024-01-05 03:00:36.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4859 …}
+nested: Doctrine\ORM\PersistentCollection {#4861 …}
+votes: Doctrine\ORM\PersistentCollection {#4863 …}
+reports: Doctrine\ORM\PersistentCollection {#4865 …}
+favourites: Doctrine\ORM\PersistentCollection {#4867 …}
+notifications: Doctrine\ORM\PersistentCollection {#4869 …}
-id: 281512
-bodyTs: "'damn':1 'disabl':10 'downvot':8,15 'lucki':5 'oblivion':17 'would':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://reddthat.com/comment/6087774"
+editedAt: null
+createdAt: DateTimeImmutable @1704420036 {#4856
date: 2024-01-05 03:00:36.0 +01:00
}
} |
|
Show voter details
|
| 35 |
DENIED
|
edit
|
App\Entity\EntryComment {#4857
+user: Proxies\__CG__\App\Entity\User {#4858 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "Damn, you are so lucky that the downvotes are disabled or you would be downvoted to Oblivion."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704420036 {#4855
date: 2024-01-05 03:00:36.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4859 …}
+nested: Doctrine\ORM\PersistentCollection {#4861 …}
+votes: Doctrine\ORM\PersistentCollection {#4863 …}
+reports: Doctrine\ORM\PersistentCollection {#4865 …}
+favourites: Doctrine\ORM\PersistentCollection {#4867 …}
+notifications: Doctrine\ORM\PersistentCollection {#4869 …}
-id: 281512
-bodyTs: "'damn':1 'disabl':10 'downvot':8,15 'lucki':5 'oblivion':17 'would':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://reddthat.com/comment/6087774"
+editedAt: null
+createdAt: DateTimeImmutable @1704420036 {#4856
date: 2024-01-05 03:00:36.0 +01:00
}
} |
|
Show voter details
|
| 36 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4857
+user: Proxies\__CG__\App\Entity\User {#4858 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "Damn, you are so lucky that the downvotes are disabled or you would be downvoted to Oblivion."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704420036 {#4855
date: 2024-01-05 03:00:36.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4859 …}
+nested: Doctrine\ORM\PersistentCollection {#4861 …}
+votes: Doctrine\ORM\PersistentCollection {#4863 …}
+reports: Doctrine\ORM\PersistentCollection {#4865 …}
+favourites: Doctrine\ORM\PersistentCollection {#4867 …}
+notifications: Doctrine\ORM\PersistentCollection {#4869 …}
-id: 281512
-bodyTs: "'damn':1 'disabl':10 'downvot':8,15 'lucki':5 'oblivion':17 'would':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://reddthat.com/comment/6087774"
+editedAt: null
+createdAt: DateTimeImmutable @1704420036 {#4856
date: 2024-01-05 03:00:36.0 +01:00
}
} |
|
Show voter details
|
| 37 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 38 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4989
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4857
+user: Proxies\__CG__\App\Entity\User {#4858 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "Damn, you are so lucky that the downvotes are disabled or you would be downvoted to Oblivion."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704420036 {#4855
date: 2024-01-05 03:00:36.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4859 …}
+nested: Doctrine\ORM\PersistentCollection {#4861 …}
+votes: Doctrine\ORM\PersistentCollection {#4863 …}
+reports: Doctrine\ORM\PersistentCollection {#4865 …}
+favourites: Doctrine\ORM\PersistentCollection {#4867 …}
+notifications: Doctrine\ORM\PersistentCollection {#4869 …}
-id: 281512
-bodyTs: "'damn':1 'disabl':10 'downvot':8,15 'lucki':5 'oblivion':17 'would':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://reddthat.com/comment/6087774"
+editedAt: null
+createdAt: DateTimeImmutable @1704420036 {#4856
date: 2024-01-05 03:00:36.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
Honestly friend I don’t give a rats ass about up or down votes. I’m just here to read, learn and converse. Some things I’ll get right, some I’ll get wrong. That’s life.\n
\n
I could stop using this tomorrow and it would make zero difference to my life, know what I mean? It’s just some site. My real life is something altogether different.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704454874 {#4987
date: 2024-01-05 12:41:14.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@tslnox@reddthat.com"
]
+children: Doctrine\ORM\PersistentCollection {#4990 …}
+nested: Doctrine\ORM\PersistentCollection {#4992 …}
+votes: Doctrine\ORM\PersistentCollection {#4994 …}
+reports: Doctrine\ORM\PersistentCollection {#4996 …}
+favourites: Doctrine\ORM\PersistentCollection {#4998 …}
+notifications: Doctrine\ORM\PersistentCollection {#5000 …}
-id: 282246
-bodyTs: "'altogeth':67 'ass':9 'convers':23 'could':39 'differ':49,68 'friend':2 'get':28,33 'give':6 'honest':1 'know':53 'learn':21 'life':37,52,64 'll':27,32 'm':16 'make':47 'mean':56 'rat':8 'read':20 'real':63 'right':29 'site':61 'someth':66 'stop':40 'thing':25 'tomorrow':43 'use':41 'vote':14 'would':46 'wrong':34 'zero':48"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6432266"
+editedAt: null
+createdAt: DateTimeImmutable @1704454874 {#4988
date: 2024-01-05 12:41:14.0 +01:00
}
} |
|
Show voter details
|
| 39 |
DENIED
|
edit
|
App\Entity\EntryComment {#4989
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4857
+user: Proxies\__CG__\App\Entity\User {#4858 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "Damn, you are so lucky that the downvotes are disabled or you would be downvoted to Oblivion."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704420036 {#4855
date: 2024-01-05 03:00:36.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4859 …}
+nested: Doctrine\ORM\PersistentCollection {#4861 …}
+votes: Doctrine\ORM\PersistentCollection {#4863 …}
+reports: Doctrine\ORM\PersistentCollection {#4865 …}
+favourites: Doctrine\ORM\PersistentCollection {#4867 …}
+notifications: Doctrine\ORM\PersistentCollection {#4869 …}
-id: 281512
-bodyTs: "'damn':1 'disabl':10 'downvot':8,15 'lucki':5 'oblivion':17 'would':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://reddthat.com/comment/6087774"
+editedAt: null
+createdAt: DateTimeImmutable @1704420036 {#4856
date: 2024-01-05 03:00:36.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
Honestly friend I don’t give a rats ass about up or down votes. I’m just here to read, learn and converse. Some things I’ll get right, some I’ll get wrong. That’s life.\n
\n
I could stop using this tomorrow and it would make zero difference to my life, know what I mean? It’s just some site. My real life is something altogether different.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704454874 {#4987
date: 2024-01-05 12:41:14.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@tslnox@reddthat.com"
]
+children: Doctrine\ORM\PersistentCollection {#4990 …}
+nested: Doctrine\ORM\PersistentCollection {#4992 …}
+votes: Doctrine\ORM\PersistentCollection {#4994 …}
+reports: Doctrine\ORM\PersistentCollection {#4996 …}
+favourites: Doctrine\ORM\PersistentCollection {#4998 …}
+notifications: Doctrine\ORM\PersistentCollection {#5000 …}
-id: 282246
-bodyTs: "'altogeth':67 'ass':9 'convers':23 'could':39 'differ':49,68 'friend':2 'get':28,33 'give':6 'honest':1 'know':53 'learn':21 'life':37,52,64 'll':27,32 'm':16 'make':47 'mean':56 'rat':8 'read':20 'real':63 'right':29 'site':61 'someth':66 'stop':40 'thing':25 'tomorrow':43 'use':41 'vote':14 'would':46 'wrong':34 'zero':48"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6432266"
+editedAt: null
+createdAt: DateTimeImmutable @1704454874 {#4988
date: 2024-01-05 12:41:14.0 +01:00
}
} |
|
Show voter details
|
| 40 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4989
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4857
+user: Proxies\__CG__\App\Entity\User {#4858 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "Damn, you are so lucky that the downvotes are disabled or you would be downvoted to Oblivion."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704420036 {#4855
date: 2024-01-05 03:00:36.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4859 …}
+nested: Doctrine\ORM\PersistentCollection {#4861 …}
+votes: Doctrine\ORM\PersistentCollection {#4863 …}
+reports: Doctrine\ORM\PersistentCollection {#4865 …}
+favourites: Doctrine\ORM\PersistentCollection {#4867 …}
+notifications: Doctrine\ORM\PersistentCollection {#4869 …}
-id: 281512
-bodyTs: "'damn':1 'disabl':10 'downvot':8,15 'lucki':5 'oblivion':17 'would':13"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://reddthat.com/comment/6087774"
+editedAt: null
+createdAt: DateTimeImmutable @1704420036 {#4856
date: 2024-01-05 03:00:36.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
Honestly friend I don’t give a rats ass about up or down votes. I’m just here to read, learn and converse. Some things I’ll get right, some I’ll get wrong. That’s life.\n
\n
I could stop using this tomorrow and it would make zero difference to my life, know what I mean? It’s just some site. My real life is something altogether different.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704454874 {#4987
date: 2024-01-05 12:41:14.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@tslnox@reddthat.com"
]
+children: Doctrine\ORM\PersistentCollection {#4990 …}
+nested: Doctrine\ORM\PersistentCollection {#4992 …}
+votes: Doctrine\ORM\PersistentCollection {#4994 …}
+reports: Doctrine\ORM\PersistentCollection {#4996 …}
+favourites: Doctrine\ORM\PersistentCollection {#4998 …}
+notifications: Doctrine\ORM\PersistentCollection {#5000 …}
-id: 282246
-bodyTs: "'altogeth':67 'ass':9 'convers':23 'could':39 'differ':49,68 'friend':2 'get':28,33 'give':6 'honest':1 'know':53 'learn':21 'life':37,52,64 'll':27,32 'm':16 'make':47 'mean':56 'rat':8 'read':20 'real':63 'right':29 'site':61 'someth':66 'stop':40 'thing':25 'tomorrow':43 'use':41 'vote':14 'would':46 'wrong':34 'zero':48"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6432266"
+editedAt: null
+createdAt: DateTimeImmutable @1704454874 {#4988
date: 2024-01-05 12:41:14.0 +01:00
}
} |
|
Show voter details
|
| 41 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 42 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
} |
|
Show voter details
|
| 43 |
DENIED
|
edit
|
App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
} |
|
Show voter details
|
| 44 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
} |
|
Show voter details
|
| 45 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 46 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4974
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "You mean if he has some malicious script that wants to install something or run something it’s not going to adjust ask him “do you want to install x?”"
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704367451 {#4972
date: 2024-01-04 12:24:11.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#4975 …}
+nested: Doctrine\ORM\PersistentCollection {#4977 …}
+votes: Doctrine\ORM\PersistentCollection {#4979 …}
+reports: Doctrine\ORM\PersistentCollection {#4981 …}
+favourites: Doctrine\ORM\PersistentCollection {#4983 …}
+notifications: Doctrine\ORM\PersistentCollection {#4985 …}
-id: 279203
-bodyTs: "'adjust':22 'ask':23 'go':20 'instal':12,29 'malici':7 'mean':2 'run':15 'script':8 'someth':13,16 'want':10,27 'x':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6398504"
+editedAt: null
+createdAt: DateTimeImmutable @1704367451 {#4973
date: 2024-01-04 12:24:11.0 +01:00
}
} |
|
Show voter details
|
| 47 |
DENIED
|
edit
|
App\Entity\EntryComment {#4974
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "You mean if he has some malicious script that wants to install something or run something it’s not going to adjust ask him “do you want to install x?”"
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704367451 {#4972
date: 2024-01-04 12:24:11.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#4975 …}
+nested: Doctrine\ORM\PersistentCollection {#4977 …}
+votes: Doctrine\ORM\PersistentCollection {#4979 …}
+reports: Doctrine\ORM\PersistentCollection {#4981 …}
+favourites: Doctrine\ORM\PersistentCollection {#4983 …}
+notifications: Doctrine\ORM\PersistentCollection {#4985 …}
-id: 279203
-bodyTs: "'adjust':22 'ask':23 'go':20 'instal':12,29 'malici':7 'mean':2 'run':15 'script':8 'someth':13,16 'want':10,27 'x':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6398504"
+editedAt: null
+createdAt: DateTimeImmutable @1704367451 {#4973
date: 2024-01-04 12:24:11.0 +01:00
}
} |
|
Show voter details
|
| 48 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4974
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "You mean if he has some malicious script that wants to install something or run something it’s not going to adjust ask him “do you want to install x?”"
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704367451 {#4972
date: 2024-01-04 12:24:11.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#4975 …}
+nested: Doctrine\ORM\PersistentCollection {#4977 …}
+votes: Doctrine\ORM\PersistentCollection {#4979 …}
+reports: Doctrine\ORM\PersistentCollection {#4981 …}
+favourites: Doctrine\ORM\PersistentCollection {#4983 …}
+notifications: Doctrine\ORM\PersistentCollection {#4985 …}
-id: 279203
-bodyTs: "'adjust':22 'ask':23 'go':20 'instal':12,29 'malici':7 'mean':2 'run':15 'script':8 'someth':13,16 'want':10,27 'x':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6398504"
+editedAt: null
+createdAt: DateTimeImmutable @1704367451 {#4973
date: 2024-01-04 12:24:11.0 +01:00
}
} |
|
Show voter details
|
| 49 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 50 |
DENIED
|
moderate
|
App\Entity\EntryComment {#5042
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4974
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "You mean if he has some malicious script that wants to install something or run something it’s not going to adjust ask him “do you want to install x?”"
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704367451 {#4972
date: 2024-01-04 12:24:11.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#4975 …}
+nested: Doctrine\ORM\PersistentCollection {#4977 …}
+votes: Doctrine\ORM\PersistentCollection {#4979 …}
+reports: Doctrine\ORM\PersistentCollection {#4981 …}
+favourites: Doctrine\ORM\PersistentCollection {#4983 …}
+notifications: Doctrine\ORM\PersistentCollection {#4985 …}
-id: 279203
-bodyTs: "'adjust':22 'ask':23 'go':20 'instal':12,29 'malici':7 'mean':2 'run':15 'script':8 'someth':13,16 'want':10,27 'x':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6398504"
+editedAt: null
+createdAt: DateTimeImmutable @1704367451 {#4973
date: 2024-01-04 12:24:11.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "I genuinely hope that you're kidding. If you're not. No. Just no."
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704385235 {#5040
date: 2024-01-04 17:20:35.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#5043 …}
+nested: Doctrine\ORM\PersistentCollection {#5045 …}
+votes: Doctrine\ORM\PersistentCollection {#5047 …}
+reports: Doctrine\ORM\PersistentCollection {#5049 …}
+favourites: Doctrine\ORM\PersistentCollection {#5051 …}
+notifications: Doctrine\ORM\PersistentCollection {#5053 …}
-id: 279887
-bodyTs: "'genuin':2 'hope':3 'kid':7 're':6,10"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4404035"
+editedAt: null
+createdAt: DateTimeImmutable @1704385235 {#5041
date: 2024-01-04 17:20:35.0 +01:00
}
} |
|
Show voter details
|
| 51 |
DENIED
|
edit
|
App\Entity\EntryComment {#5042
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4974
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "You mean if he has some malicious script that wants to install something or run something it’s not going to adjust ask him “do you want to install x?”"
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704367451 {#4972
date: 2024-01-04 12:24:11.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#4975 …}
+nested: Doctrine\ORM\PersistentCollection {#4977 …}
+votes: Doctrine\ORM\PersistentCollection {#4979 …}
+reports: Doctrine\ORM\PersistentCollection {#4981 …}
+favourites: Doctrine\ORM\PersistentCollection {#4983 …}
+notifications: Doctrine\ORM\PersistentCollection {#4985 …}
-id: 279203
-bodyTs: "'adjust':22 'ask':23 'go':20 'instal':12,29 'malici':7 'mean':2 'run':15 'script':8 'someth':13,16 'want':10,27 'x':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6398504"
+editedAt: null
+createdAt: DateTimeImmutable @1704367451 {#4973
date: 2024-01-04 12:24:11.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "I genuinely hope that you're kidding. If you're not. No. Just no."
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704385235 {#5040
date: 2024-01-04 17:20:35.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#5043 …}
+nested: Doctrine\ORM\PersistentCollection {#5045 …}
+votes: Doctrine\ORM\PersistentCollection {#5047 …}
+reports: Doctrine\ORM\PersistentCollection {#5049 …}
+favourites: Doctrine\ORM\PersistentCollection {#5051 …}
+notifications: Doctrine\ORM\PersistentCollection {#5053 …}
-id: 279887
-bodyTs: "'genuin':2 'hope':3 'kid':7 're':6,10"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4404035"
+editedAt: null
+createdAt: DateTimeImmutable @1704385235 {#5041
date: 2024-01-04 17:20:35.0 +01:00
}
} |
|
Show voter details
|
| 52 |
DENIED
|
moderate
|
App\Entity\EntryComment {#5042
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4974
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4873
+user: Proxies\__CG__\App\Entity\User {#4874 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: App\Entity\EntryComment {#4432
+user: App\Entity\User {#4445 …}
+entry: App\Entity\Entry {#2412}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
It should be ok because nothing will run on your system without a permission prompt at least. So they that should ring some bells of system is asking for your password when you didn’t try to install anything.\n
\n
But best practice would be log in as a regular user and use sudo to do any admin tasks.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 3
+score: 0
+lastActive: DateTime @1711910704 {#4427
date: 2024-03-31 20:45:04.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4433 …}
+nested: Doctrine\ORM\PersistentCollection {#4435 …}
+votes: Doctrine\ORM\PersistentCollection {#4437 …}
+reports: Doctrine\ORM\PersistentCollection {#4439 …}
+favourites: Doctrine\ORM\PersistentCollection {#4441 …}
+notifications: Doctrine\ORM\PersistentCollection {#4443 …}
-id: 277411
-bodyTs: "'admin':57 'anyth':39 'ask':28 'bell':24 'best':41 'didn':34 'instal':38 'least':17 'log':45 'noth':6 'ok':4 'password':31 'permiss':14 'practic':42 'prompt':15 'regular':49 'ring':22 'run':8 'sudo':53 'system':11,26 'task':58 'tri':36 'use':52 'user':50 'without':12 'would':43"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6386455"
+editedAt: null
+createdAt: DateTimeImmutable @1704312245 {#4428
date: 2024-01-03 21:04:05.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: """
A process running as root does not need a prompt or any user interaction to do whatever the hell it wants on most (nearing ALL, but I'd be wary of absolutes with Linux) systems. I'm unaware of any means that a Desktop Environment could restrict a process running with root permissions by requiring an interactive prompt of some sort for anything. If your DE is running as root, all of its children are also running as root (unless you've rigged things up to run explicitly as other users) which means just about anything you are doing could be running rampant malicious actors on your system and nothing would seem amiss until it made itself evident.\n
\n
Now, it does seem unlikely that anyone has written any malicious code that would run in a browser expecting to be root on a Linux system, so that's likely the saving grace here, but that's only security through obscurity and that's not much to hang your hopes on for any system you care about.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 4
+score: 0
+lastActive: DateTime @1704331532 {#4871
date: 2024-01-04 02:25:32.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
]
+children: Doctrine\ORM\PersistentCollection {#4875 …}
+nested: Doctrine\ORM\PersistentCollection {#4877 …}
+votes: Doctrine\ORM\PersistentCollection {#4879 …}
+reports: Doctrine\ORM\PersistentCollection {#4881 …}
+favourites: Doctrine\ORM\PersistentCollection {#4883 …}
+notifications: Doctrine\ORM\PersistentCollection {#4885 …}
-id: 278286
-bodyTs: "'absolut':32 'actor':105 'also':76 'amiss':113 'anyon':125 'anyth':63,96 'browser':136 'care':174 'children':74 'code':130 'could':46,100 'd':28 'de':66 'desktop':44 'environ':45 'evid':118 'expect':137 'explicit':88 'grace':151 'hang':166 'hell':19 'hope':168 'interact':14,57 'like':148 'linux':34,143 'm':37 'made':116 'malici':104,129 'mean':41,93 'much':164 'near':24 'need':8 'noth':110 'obscur':159 'permiss':53 'process':2,49 'prompt':10,58 'rampant':103 'requir':55 'restrict':47 'rig':83 'root':5,52,70,79,140 'run':3,50,68,77,87,102,133 'save':150 'secur':157 'seem':112,122 'sort':61 'system':35,108,144,172 'thing':84 'unawar':38 'unless':80 'unlik':123 'user':13,91 've':82 'want':21 'wari':30 'whatev':17 'would':111,132 'written':127"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4395459"
+editedAt: null
+createdAt: DateTimeImmutable @1704331532 {#4872
date: 2024-01-04 02:25:32.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "You mean if he has some malicious script that wants to install something or run something it’s not going to adjust ask him “do you want to install x?”"
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704367451 {#4972
date: 2024-01-04 12:24:11.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#4975 …}
+nested: Doctrine\ORM\PersistentCollection {#4977 …}
+votes: Doctrine\ORM\PersistentCollection {#4979 …}
+reports: Doctrine\ORM\PersistentCollection {#4981 …}
+favourites: Doctrine\ORM\PersistentCollection {#4983 …}
+notifications: Doctrine\ORM\PersistentCollection {#4985 …}
-id: 279203
-bodyTs: "'adjust':22 'ask':23 'go':20 'instal':12,29 'malici':7 'mean':2 'run':15 'script':8 'someth':13,16 'want':10,27 'x':30"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6398504"
+editedAt: null
+createdAt: DateTimeImmutable @1704367451 {#4973
date: 2024-01-04 12:24:11.0 +01:00
}
}
+root: App\Entity\EntryComment {#4432}
+body: "I genuinely hope that you're kidding. If you're not. No. Just no."
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704385235 {#5040
date: 2024-01-04 17:20:35.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@danielfgom@lemmy.world"
"@DarthYoshiBoy@kbin.social"
]
+children: Doctrine\ORM\PersistentCollection {#5043 …}
+nested: Doctrine\ORM\PersistentCollection {#5045 …}
+votes: Doctrine\ORM\PersistentCollection {#5047 …}
+reports: Doctrine\ORM\PersistentCollection {#5049 …}
+favourites: Doctrine\ORM\PersistentCollection {#5051 …}
+notifications: Doctrine\ORM\PersistentCollection {#5053 …}
-id: 279887
-bodyTs: "'genuin':2 'hope':3 'kid':7 're':6,10"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://kbin.social/m/linux@lemmy.ml/t/737763/-/comment/4404035"
+editedAt: null
+createdAt: DateTimeImmutable @1704385235 {#5041
date: 2024-01-04 17:20:35.0 +01:00
}
} |
|
Show voter details
|
| 53 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 54 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4507
+user: App\Entity\User {#4520 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Firefox does sandbox everything but vulnerabilities exist and sometimes go unnoticed for a while before they’re discovered and patched. If a malicious script does manage to escape the sandbox it will be able to do literally anything to the system since it has root privileges. It would have full access to any device that’s in /dev, it could create, modify and delete udev or iptables rules, it could mess with the BIOS since the kernel exposes EFI variables, if the mainboard has re-writable flash chips for the firmware it could write malicious code to them since they may show up in /dev, etc. If any of this makes you uneasy then you probably should stop running stuff as root in general except for when you really need to.\n
\n
Also in general you don’t want to run any graphical applications on a Server unless there is a very specific reason for it because it takes up extra resources and therefore makes the machine use more power overall. This is especially bad when the machine in question has no hardware acceleration and renders everything in software. Remote desktop also adds CPU/GPU load and takes up a good bit of I/O and network bandwidth which is not ideal for a NAS server.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704338209 {#4501
date: 2024-01-04 04:16:49.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4508 …}
+nested: Doctrine\ORM\PersistentCollection {#4510 …}
+votes: Doctrine\ORM\PersistentCollection {#4512 …}
+reports: Doctrine\ORM\PersistentCollection {#4514 …}
+favourites: Doctrine\ORM\PersistentCollection {#4516 …}
+notifications: Doctrine\ORM\PersistentCollection {#4518 …}
-id: 278500
-bodyTs: "'/dev':58,106 'abl':34 'acceler':184 'access':51 'add':193 'also':133,192 'anyth':38 'applic':144 'bad':175 'bandwidth':206 'bio':74 'bit':201 'chip':89 'code':97 'could':60,70,94 'cpu/gpu':194 'creat':61 'delet':64 'desktop':191 'devic':54 'discov':18 'efi':79 'escap':28 'especi':174 'etc':107 'everyth':4,187 'except':126 'exist':7 'expos':78 'extra':161 'firefox':1 'firmwar':92 'flash':88 'full':50 'general':125,135 'go':10 'good':200 'graphic':143 'hardwar':183 'i/o':203 'ideal':210 'iptabl':67 'kernel':77 'liter':37 'load':195 'machin':167,178 'mainboard':83 'make':112,165 'malici':23,96 'manag':26 'may':102 'mess':71 'modifi':62 'nas':213 'need':131 'network':205 'overal':171 'patch':20 'power':170 'privileg':46 'probabl':117 'question':180 're':17,86 're-writ':85 'realli':130 'reason':154 'remot':190 'render':186 'resourc':162 'root':45,123 'rule':68 'run':120,141 'sandbox':3,30 'script':24 'server':147,214 'show':103 'sinc':42,75,100 'softwar':189 'sometim':9 'specif':153 'stop':119 'stuff':121 'system':41 'take':159,197 'therefor':164 'udev':65 'uneasi':114 'unless':148 'unnot':11 'use':168 'variabl':80 'vulner':6 'want':139 'would':48 'writabl':87 'write':95"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmygrad.ml/comment/3365779"
+editedAt: DateTimeImmutable @1711455403 {#4502
date: 2024-03-26 13:16:43.0 +01:00
}
+createdAt: DateTimeImmutable @1704338209 {#4503
date: 2024-01-04 04:16:49.0 +01:00
}
} |
|
Show voter details
|
| 55 |
DENIED
|
edit
|
App\Entity\EntryComment {#4507
+user: App\Entity\User {#4520 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Firefox does sandbox everything but vulnerabilities exist and sometimes go unnoticed for a while before they’re discovered and patched. If a malicious script does manage to escape the sandbox it will be able to do literally anything to the system since it has root privileges. It would have full access to any device that’s in /dev, it could create, modify and delete udev or iptables rules, it could mess with the BIOS since the kernel exposes EFI variables, if the mainboard has re-writable flash chips for the firmware it could write malicious code to them since they may show up in /dev, etc. If any of this makes you uneasy then you probably should stop running stuff as root in general except for when you really need to.\n
\n
Also in general you don’t want to run any graphical applications on a Server unless there is a very specific reason for it because it takes up extra resources and therefore makes the machine use more power overall. This is especially bad when the machine in question has no hardware acceleration and renders everything in software. Remote desktop also adds CPU/GPU load and takes up a good bit of I/O and network bandwidth which is not ideal for a NAS server.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704338209 {#4501
date: 2024-01-04 04:16:49.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4508 …}
+nested: Doctrine\ORM\PersistentCollection {#4510 …}
+votes: Doctrine\ORM\PersistentCollection {#4512 …}
+reports: Doctrine\ORM\PersistentCollection {#4514 …}
+favourites: Doctrine\ORM\PersistentCollection {#4516 …}
+notifications: Doctrine\ORM\PersistentCollection {#4518 …}
-id: 278500
-bodyTs: "'/dev':58,106 'abl':34 'acceler':184 'access':51 'add':193 'also':133,192 'anyth':38 'applic':144 'bad':175 'bandwidth':206 'bio':74 'bit':201 'chip':89 'code':97 'could':60,70,94 'cpu/gpu':194 'creat':61 'delet':64 'desktop':191 'devic':54 'discov':18 'efi':79 'escap':28 'especi':174 'etc':107 'everyth':4,187 'except':126 'exist':7 'expos':78 'extra':161 'firefox':1 'firmwar':92 'flash':88 'full':50 'general':125,135 'go':10 'good':200 'graphic':143 'hardwar':183 'i/o':203 'ideal':210 'iptabl':67 'kernel':77 'liter':37 'load':195 'machin':167,178 'mainboard':83 'make':112,165 'malici':23,96 'manag':26 'may':102 'mess':71 'modifi':62 'nas':213 'need':131 'network':205 'overal':171 'patch':20 'power':170 'privileg':46 'probabl':117 'question':180 're':17,86 're-writ':85 'realli':130 'reason':154 'remot':190 'render':186 'resourc':162 'root':45,123 'rule':68 'run':120,141 'sandbox':3,30 'script':24 'server':147,214 'show':103 'sinc':42,75,100 'softwar':189 'sometim':9 'specif':153 'stop':119 'stuff':121 'system':41 'take':159,197 'therefor':164 'udev':65 'uneasi':114 'unless':148 'unnot':11 'use':168 'variabl':80 'vulner':6 'want':139 'would':48 'writabl':87 'write':95"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmygrad.ml/comment/3365779"
+editedAt: DateTimeImmutable @1711455403 {#4502
date: 2024-03-26 13:16:43.0 +01:00
}
+createdAt: DateTimeImmutable @1704338209 {#4503
date: 2024-01-04 04:16:49.0 +01:00
}
} |
|
Show voter details
|
| 56 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4507
+user: App\Entity\User {#4520 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Firefox does sandbox everything but vulnerabilities exist and sometimes go unnoticed for a while before they’re discovered and patched. If a malicious script does manage to escape the sandbox it will be able to do literally anything to the system since it has root privileges. It would have full access to any device that’s in /dev, it could create, modify and delete udev or iptables rules, it could mess with the BIOS since the kernel exposes EFI variables, if the mainboard has re-writable flash chips for the firmware it could write malicious code to them since they may show up in /dev, etc. If any of this makes you uneasy then you probably should stop running stuff as root in general except for when you really need to.\n
\n
Also in general you don’t want to run any graphical applications on a Server unless there is a very specific reason for it because it takes up extra resources and therefore makes the machine use more power overall. This is especially bad when the machine in question has no hardware acceleration and renders everything in software. Remote desktop also adds CPU/GPU load and takes up a good bit of I/O and network bandwidth which is not ideal for a NAS server.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1704338209 {#4501
date: 2024-01-04 04:16:49.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4508 …}
+nested: Doctrine\ORM\PersistentCollection {#4510 …}
+votes: Doctrine\ORM\PersistentCollection {#4512 …}
+reports: Doctrine\ORM\PersistentCollection {#4514 …}
+favourites: Doctrine\ORM\PersistentCollection {#4516 …}
+notifications: Doctrine\ORM\PersistentCollection {#4518 …}
-id: 278500
-bodyTs: "'/dev':58,106 'abl':34 'acceler':184 'access':51 'add':193 'also':133,192 'anyth':38 'applic':144 'bad':175 'bandwidth':206 'bio':74 'bit':201 'chip':89 'code':97 'could':60,70,94 'cpu/gpu':194 'creat':61 'delet':64 'desktop':191 'devic':54 'discov':18 'efi':79 'escap':28 'especi':174 'etc':107 'everyth':4,187 'except':126 'exist':7 'expos':78 'extra':161 'firefox':1 'firmwar':92 'flash':88 'full':50 'general':125,135 'go':10 'good':200 'graphic':143 'hardwar':183 'i/o':203 'ideal':210 'iptabl':67 'kernel':77 'liter':37 'load':195 'machin':167,178 'mainboard':83 'make':112,165 'malici':23,96 'manag':26 'may':102 'mess':71 'modifi':62 'nas':213 'need':131 'network':205 'overal':171 'patch':20 'power':170 'privileg':46 'probabl':117 'question':180 're':17,86 're-writ':85 'realli':130 'reason':154 'remot':190 'render':186 'resourc':162 'root':45,123 'rule':68 'run':120,141 'sandbox':3,30 'script':24 'server':147,214 'show':103 'sinc':42,75,100 'softwar':189 'sometim':9 'specif':153 'stop':119 'stuff':121 'system':41 'take':159,197 'therefor':164 'udev':65 'uneasi':114 'unless':148 'unnot':11 'use':168 'variabl':80 'vulner':6 'want':139 'would':48 'writabl':87 'write':95"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmygrad.ml/comment/3365779"
+editedAt: DateTimeImmutable @1711455403 {#4502
date: 2024-03-26 13:16:43.0 +01:00
}
+createdAt: DateTimeImmutable @1704338209 {#4503
date: 2024-01-04 04:16:49.0 +01:00
}
} |
|
Show voter details
|
| 57 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 58 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4582
+user: App\Entity\User {#4595 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
> I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system)\n
\n
I’m not going to judge you (too much), it’s your system, but that’s unnecessarily risky setup. You should never need to logon to root desktop like that, even for convenience reasons.\n
\n
I hope this is done over VPN and that you have 2FA configured on the VPN endpoint? Please don’t tell me it’s just portforward directly to a VNC running on the servers or something similar because then you have bigger problems than just random ‘oops’.\n
\n
> I do also remember using the browser in my main server to figure out how to set up the PiHole\n
\n
To be honest, you’re most probably OK - malicious ad campaigns are normally not running 24/7 globally. Chances of you randomly tumbling into a malicious drive-by exploit are quite small (normally they redirect you to install fake addons/updates etc), but of course its hard to tell because you don’t remember what sites you visited. Since most of this has gone through PiHole filters, I’d say there’s even smaller chance to get insta-pwned.\n
\n
But have a look at browser history on the affected root accounts, the sites along with timestamps should be there. You can also examine your system logs and correlate events to your browser history, look for weird login events or anything that doesn’t look like “normal usage”. You can set up some network monitoring stuff (like SecurityOnion) on your routers SPAN, if you’re really paranoid and try to see if there’s any anomalous connections when you’re not using the system. You could also consider setting up ClamAV and doing a scan.\n
\n
You’re probably OK and that’s just paranoia.\n
\n
But… having mentioned paranoia… now you’ll always have that nagging lack of trust in your system that won’t go away. I can’t speak to how you deal with that, because it’s all about your own risk appetite and threat model.\n
\n
Since these are home systems the potential monetary damage from downtime and re-install isn’t huge, so personally I’d just take the hit and wipe/reinstall. I’d learn from my mistakes and build it all up again with better routines and hygiene. But that’s what I’d do. You might choose to do something else and that might be OK too.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1711894974 {#4576
date: 2024-03-31 16:22:54.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4583 …}
+nested: Doctrine\ORM\PersistentCollection {#4585 …}
+votes: Doctrine\ORM\PersistentCollection {#4587 …}
+reports: Doctrine\ORM\PersistentCollection {#4589 …}
+favourites: Doctrine\ORM\PersistentCollection {#4591 …}
+notifications: Doctrine\ORM\PersistentCollection {#4593 …}
-id: 276015
-bodyTs: "'24/7':170 '2fa':99 'account':245 'ad':164 'addons/updates':194 'affect':243 'along':248 'also':137,256,320 'alway':345 'anomal':309 'anyth':274 'appetit':378 'away':359 'better':423 'bigger':129 'browser':141,239,266 'build':417 'campaign':165 'chanc':172,228 'choos':436 'clamav':324 'command':21,39 'configur':100 'connect':310 'consid':321 'conveni':35,86 'correl':262 'could':319 'cours':198 'd':222,403,411,432 'damag':390 'deal':367 'desktop':44,81 'direct':47,114 'doesn':276 'done':92 'downtim':392 'drive':181 'drive-bi':180 'els':440 'endpoint':104 'etc':195 'even':84,226 'event':263,272 'examin':257 'exploit':183 'fake':193 'figur':147 'file':26 'filter':220 'find':32 'get':230 'global':171 'go':57,358 'gone':217 'hard':200 'histori':240,267 'hit':407 'home':385 'honest':157 'hope':89 'huge':399 'hygien':426 'ing':50 'insta':232 'insta-pwn':231 'instal':192,396 'instead':45 'isn':397 'judg':59 'kde':12 'lack':349 'learn':412 'like':82,279,290 'line':22,40 'll':344 'log':10,260 'login':271 'logon':78 'look':237,268,278 'm':55 'main':144 'malici':163,179 'manag':8,27 'mention':340 'might':435,443 'mistak':415 'model':381 'monetari':389 'monitor':288 'much':62 'nag':348 'need':76 'network':287 'never':75 'normal':167,187,280 'ok':162,332,445 'oop':134 'open':28 'order':6 'paranoia':337,341 'paranoid':300 'person':30,401 'pihol':154,219 'plasma':13 'pleas':105 'portforward':113 'potenti':388 'probabl':161,331 'problem':130 'pwned':233 'quit':185 'random':133,175 're':159,298,313,330,395 're-instal':394 'realli':299 'reason':87 'redirect':189 'regular':2 'rememb':138,207 'remot':3,43 'risk':377 'riski':71 'root':15,80,244 'router':294 'routin':424 'run':118,169 'say':223 'scan':328 'securityonion':291 'see':304 'server':121,145 'set':151,284,322 'setup':72 'sever':20 'similar':124 'sinc':212,382 'site':209,247 'small':186 'smaller':227 'someth':123,439 'span':295 'speak':363 'ssh':49 'ssh-ing':48 'stuff':289 'system':53,66,259,317,354,386 'take':405 'tell':108,202 'threat':380 'timestamp':250 'tri':302 'trust':351 'tumbl':176 'unnecessarili':70 'usag':281 'use':37,139,315 'usual':9,16 'visit':211 'vnc':117 'vpn':94,103 'weird':270 'window':23 'wipe/reinstall':409 'won':356"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://beehaw.org/comment/1938830"
+editedAt: DateTimeImmutable @1711178223 {#4577
date: 2024-03-23 08:17:03.0 +01:00
}
+createdAt: DateTimeImmutable @1704275913 {#4578
date: 2024-01-03 10:58:33.0 +01:00
}
} |
|
Show voter details
|
| 59 |
DENIED
|
edit
|
App\Entity\EntryComment {#4582
+user: App\Entity\User {#4595 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
> I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system)\n
\n
I’m not going to judge you (too much), it’s your system, but that’s unnecessarily risky setup. You should never need to logon to root desktop like that, even for convenience reasons.\n
\n
I hope this is done over VPN and that you have 2FA configured on the VPN endpoint? Please don’t tell me it’s just portforward directly to a VNC running on the servers or something similar because then you have bigger problems than just random ‘oops’.\n
\n
> I do also remember using the browser in my main server to figure out how to set up the PiHole\n
\n
To be honest, you’re most probably OK - malicious ad campaigns are normally not running 24/7 globally. Chances of you randomly tumbling into a malicious drive-by exploit are quite small (normally they redirect you to install fake addons/updates etc), but of course its hard to tell because you don’t remember what sites you visited. Since most of this has gone through PiHole filters, I’d say there’s even smaller chance to get insta-pwned.\n
\n
But have a look at browser history on the affected root accounts, the sites along with timestamps should be there. You can also examine your system logs and correlate events to your browser history, look for weird login events or anything that doesn’t look like “normal usage”. You can set up some network monitoring stuff (like SecurityOnion) on your routers SPAN, if you’re really paranoid and try to see if there’s any anomalous connections when you’re not using the system. You could also consider setting up ClamAV and doing a scan.\n
\n
You’re probably OK and that’s just paranoia.\n
\n
But… having mentioned paranoia… now you’ll always have that nagging lack of trust in your system that won’t go away. I can’t speak to how you deal with that, because it’s all about your own risk appetite and threat model.\n
\n
Since these are home systems the potential monetary damage from downtime and re-install isn’t huge, so personally I’d just take the hit and wipe/reinstall. I’d learn from my mistakes and build it all up again with better routines and hygiene. But that’s what I’d do. You might choose to do something else and that might be OK too.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1711894974 {#4576
date: 2024-03-31 16:22:54.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4583 …}
+nested: Doctrine\ORM\PersistentCollection {#4585 …}
+votes: Doctrine\ORM\PersistentCollection {#4587 …}
+reports: Doctrine\ORM\PersistentCollection {#4589 …}
+favourites: Doctrine\ORM\PersistentCollection {#4591 …}
+notifications: Doctrine\ORM\PersistentCollection {#4593 …}
-id: 276015
-bodyTs: "'24/7':170 '2fa':99 'account':245 'ad':164 'addons/updates':194 'affect':243 'along':248 'also':137,256,320 'alway':345 'anomal':309 'anyth':274 'appetit':378 'away':359 'better':423 'bigger':129 'browser':141,239,266 'build':417 'campaign':165 'chanc':172,228 'choos':436 'clamav':324 'command':21,39 'configur':100 'connect':310 'consid':321 'conveni':35,86 'correl':262 'could':319 'cours':198 'd':222,403,411,432 'damag':390 'deal':367 'desktop':44,81 'direct':47,114 'doesn':276 'done':92 'downtim':392 'drive':181 'drive-bi':180 'els':440 'endpoint':104 'etc':195 'even':84,226 'event':263,272 'examin':257 'exploit':183 'fake':193 'figur':147 'file':26 'filter':220 'find':32 'get':230 'global':171 'go':57,358 'gone':217 'hard':200 'histori':240,267 'hit':407 'home':385 'honest':157 'hope':89 'huge':399 'hygien':426 'ing':50 'insta':232 'insta-pwn':231 'instal':192,396 'instead':45 'isn':397 'judg':59 'kde':12 'lack':349 'learn':412 'like':82,279,290 'line':22,40 'll':344 'log':10,260 'login':271 'logon':78 'look':237,268,278 'm':55 'main':144 'malici':163,179 'manag':8,27 'mention':340 'might':435,443 'mistak':415 'model':381 'monetari':389 'monitor':288 'much':62 'nag':348 'need':76 'network':287 'never':75 'normal':167,187,280 'ok':162,332,445 'oop':134 'open':28 'order':6 'paranoia':337,341 'paranoid':300 'person':30,401 'pihol':154,219 'plasma':13 'pleas':105 'portforward':113 'potenti':388 'probabl':161,331 'problem':130 'pwned':233 'quit':185 'random':133,175 're':159,298,313,330,395 're-instal':394 'realli':299 'reason':87 'redirect':189 'regular':2 'rememb':138,207 'remot':3,43 'risk':377 'riski':71 'root':15,80,244 'router':294 'routin':424 'run':118,169 'say':223 'scan':328 'securityonion':291 'see':304 'server':121,145 'set':151,284,322 'setup':72 'sever':20 'similar':124 'sinc':212,382 'site':209,247 'small':186 'smaller':227 'someth':123,439 'span':295 'speak':363 'ssh':49 'ssh-ing':48 'stuff':289 'system':53,66,259,317,354,386 'take':405 'tell':108,202 'threat':380 'timestamp':250 'tri':302 'trust':351 'tumbl':176 'unnecessarili':70 'usag':281 'use':37,139,315 'usual':9,16 'visit':211 'vnc':117 'vpn':94,103 'weird':270 'window':23 'wipe/reinstall':409 'won':356"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://beehaw.org/comment/1938830"
+editedAt: DateTimeImmutable @1711178223 {#4577
date: 2024-03-23 08:17:03.0 +01:00
}
+createdAt: DateTimeImmutable @1704275913 {#4578
date: 2024-01-03 10:58:33.0 +01:00
}
} |
|
Show voter details
|
| 60 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4582
+user: App\Entity\User {#4595 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
> I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system)\n
\n
I’m not going to judge you (too much), it’s your system, but that’s unnecessarily risky setup. You should never need to logon to root desktop like that, even for convenience reasons.\n
\n
I hope this is done over VPN and that you have 2FA configured on the VPN endpoint? Please don’t tell me it’s just portforward directly to a VNC running on the servers or something similar because then you have bigger problems than just random ‘oops’.\n
\n
> I do also remember using the browser in my main server to figure out how to set up the PiHole\n
\n
To be honest, you’re most probably OK - malicious ad campaigns are normally not running 24/7 globally. Chances of you randomly tumbling into a malicious drive-by exploit are quite small (normally they redirect you to install fake addons/updates etc), but of course its hard to tell because you don’t remember what sites you visited. Since most of this has gone through PiHole filters, I’d say there’s even smaller chance to get insta-pwned.\n
\n
But have a look at browser history on the affected root accounts, the sites along with timestamps should be there. You can also examine your system logs and correlate events to your browser history, look for weird login events or anything that doesn’t look like “normal usage”. You can set up some network monitoring stuff (like SecurityOnion) on your routers SPAN, if you’re really paranoid and try to see if there’s any anomalous connections when you’re not using the system. You could also consider setting up ClamAV and doing a scan.\n
\n
You’re probably OK and that’s just paranoia.\n
\n
But… having mentioned paranoia… now you’ll always have that nagging lack of trust in your system that won’t go away. I can’t speak to how you deal with that, because it’s all about your own risk appetite and threat model.\n
\n
Since these are home systems the potential monetary damage from downtime and re-install isn’t huge, so personally I’d just take the hit and wipe/reinstall. I’d learn from my mistakes and build it all up again with better routines and hygiene. But that’s what I’d do. You might choose to do something else and that might be OK too.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 1
+score: 0
+lastActive: DateTime @1711894974 {#4576
date: 2024-03-31 16:22:54.0 +02:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4583 …}
+nested: Doctrine\ORM\PersistentCollection {#4585 …}
+votes: Doctrine\ORM\PersistentCollection {#4587 …}
+reports: Doctrine\ORM\PersistentCollection {#4589 …}
+favourites: Doctrine\ORM\PersistentCollection {#4591 …}
+notifications: Doctrine\ORM\PersistentCollection {#4593 …}
-id: 276015
-bodyTs: "'24/7':170 '2fa':99 'account':245 'ad':164 'addons/updates':194 'affect':243 'along':248 'also':137,256,320 'alway':345 'anomal':309 'anyth':274 'appetit':378 'away':359 'better':423 'bigger':129 'browser':141,239,266 'build':417 'campaign':165 'chanc':172,228 'choos':436 'clamav':324 'command':21,39 'configur':100 'connect':310 'consid':321 'conveni':35,86 'correl':262 'could':319 'cours':198 'd':222,403,411,432 'damag':390 'deal':367 'desktop':44,81 'direct':47,114 'doesn':276 'done':92 'downtim':392 'drive':181 'drive-bi':180 'els':440 'endpoint':104 'etc':195 'even':84,226 'event':263,272 'examin':257 'exploit':183 'fake':193 'figur':147 'file':26 'filter':220 'find':32 'get':230 'global':171 'go':57,358 'gone':217 'hard':200 'histori':240,267 'hit':407 'home':385 'honest':157 'hope':89 'huge':399 'hygien':426 'ing':50 'insta':232 'insta-pwn':231 'instal':192,396 'instead':45 'isn':397 'judg':59 'kde':12 'lack':349 'learn':412 'like':82,279,290 'line':22,40 'll':344 'log':10,260 'login':271 'logon':78 'look':237,268,278 'm':55 'main':144 'malici':163,179 'manag':8,27 'mention':340 'might':435,443 'mistak':415 'model':381 'monetari':389 'monitor':288 'much':62 'nag':348 'need':76 'network':287 'never':75 'normal':167,187,280 'ok':162,332,445 'oop':134 'open':28 'order':6 'paranoia':337,341 'paranoid':300 'person':30,401 'pihol':154,219 'plasma':13 'pleas':105 'portforward':113 'potenti':388 'probabl':161,331 'problem':130 'pwned':233 'quit':185 'random':133,175 're':159,298,313,330,395 're-instal':394 'realli':299 'reason':87 'redirect':189 'regular':2 'rememb':138,207 'remot':3,43 'risk':377 'riski':71 'root':15,80,244 'router':294 'routin':424 'run':118,169 'say':223 'scan':328 'securityonion':291 'see':304 'server':121,145 'set':151,284,322 'setup':72 'sever':20 'similar':124 'sinc':212,382 'site':209,247 'small':186 'smaller':227 'someth':123,439 'span':295 'speak':363 'ssh':49 'ssh-ing':48 'stuff':289 'system':53,66,259,317,354,386 'take':405 'tell':108,202 'threat':380 'timestamp':250 'tri':302 'trust':351 'tumbl':176 'unnecessarili':70 'usag':281 'use':37,139,315 'usual':9,16 'visit':211 'vnc':117 'vpn':94,103 'weird':270 'window':23 'wipe/reinstall':409 'won':356"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://beehaw.org/comment/1938830"
+editedAt: DateTimeImmutable @1711178223 {#4577
date: 2024-03-23 08:17:03.0 +01:00
}
+createdAt: DateTimeImmutable @1704275913 {#4578
date: 2024-01-03 10:58:33.0 +01:00
}
} |
|
Show voter details
|
| 61 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 62 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4655
+user: App\Entity\User {#4668 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "No if you leave it running and don’t use it."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704295937 {#4650
date: 2024-01-03 16:32:17.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4656 …}
+nested: Doctrine\ORM\PersistentCollection {#4658 …}
+votes: Doctrine\ORM\PersistentCollection {#4660 …}
+reports: Doctrine\ORM\PersistentCollection {#4662 …}
+favourites: Doctrine\ORM\PersistentCollection {#4664 …}
+notifications: Doctrine\ORM\PersistentCollection {#4666 …}
-id: 276696
-bodyTs: "'leav':4 'run':6 'use':10"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6382108"
+editedAt: null
+createdAt: DateTimeImmutable @1704295937 {#4651
date: 2024-01-03 16:32:17.0 +01:00
}
} |
|
Show voter details
|
| 63 |
DENIED
|
edit
|
App\Entity\EntryComment {#4655
+user: App\Entity\User {#4668 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "No if you leave it running and don’t use it."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704295937 {#4650
date: 2024-01-03 16:32:17.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4656 …}
+nested: Doctrine\ORM\PersistentCollection {#4658 …}
+votes: Doctrine\ORM\PersistentCollection {#4660 …}
+reports: Doctrine\ORM\PersistentCollection {#4662 …}
+favourites: Doctrine\ORM\PersistentCollection {#4664 …}
+notifications: Doctrine\ORM\PersistentCollection {#4666 …}
-id: 276696
-bodyTs: "'leav':4 'run':6 'use':10"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6382108"
+editedAt: null
+createdAt: DateTimeImmutable @1704295937 {#4651
date: 2024-01-03 16:32:17.0 +01:00
}
} |
|
Show voter details
|
| 64 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4655
+user: App\Entity\User {#4668 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: "No if you leave it running and don’t use it."
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704295937 {#4650
date: 2024-01-03 16:32:17.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4656 …}
+nested: Doctrine\ORM\PersistentCollection {#4658 …}
+votes: Doctrine\ORM\PersistentCollection {#4660 …}
+reports: Doctrine\ORM\PersistentCollection {#4662 …}
+favourites: Doctrine\ORM\PersistentCollection {#4664 …}
+notifications: Doctrine\ORM\PersistentCollection {#4666 …}
-id: 276696
-bodyTs: "'leav':4 'run':6 'use':10"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://lemmy.world/comment/6382108"
+editedAt: null
+createdAt: DateTimeImmutable @1704295937 {#4651
date: 2024-01-03 16:32:17.0 +01:00
}
} |
|
Show voter details
|
| 65 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 66 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4729
+user: App\Entity\User {#4742 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Yes. Running anything as root is potentially dangerous. And a browser is a complex and big piece of software with many security issues that can be (potentially) triggered remotely. So it’s bad because of two reasons.\n
\n
Btw a desktop environment also is a complex and big piece of software with potential issues. Running the whole desktop as root is another thing you wouldn’t do for extra security.\n
\n
The proper way is to just create a user account and run the desktop and browser as a user. Open a terminal and ‘su’ or ‘sudo’ to limit root rights to the operations that actually need those permissions.\n
\n
Just running everything as root certainly works. But you do away with all the extra layers of security and end up with something as secure as MS-DOS or a Windows in the 90s or early 2000s.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704276769 {#4723
date: 2024-01-03 11:12:49.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4730 …}
+nested: Doctrine\ORM\PersistentCollection {#4732 …}
+votes: Doctrine\ORM\PersistentCollection {#4734 …}
+reports: Doctrine\ORM\PersistentCollection {#4736 …}
+favourites: Doctrine\ORM\PersistentCollection {#4738 …}
+notifications: Doctrine\ORM\PersistentCollection {#4740 …}
-id: 287121
-bodyTs: "'2000s':145 '90s':142 'account':79 'actual':104 'also':42 'anoth':61 'anyth':3 'away':118 'bad':33 'big':16,47 'browser':11,85 'btw':38 'certain':113 'complex':14,45 'creat':76 'danger':8 'desktop':40,57,83 'dos':136 'earli':144 'end':127 'environ':41 'everyth':110 'extra':68,122 'issu':23,53 'layer':123 'limit':97 'mani':21 'ms':135 'ms-dos':134 'need':105 'open':89 'oper':102 'permiss':107 'piec':17,48 'potenti':7,27,52 'proper':71 'reason':37 'remot':29 'right':99 'root':5,59,98,112 'run':2,54,81,109 'secur':22,69,125,132 'softwar':19,50 'someth':130 'su':93 'sudo':95 'termin':91 'thing':62 'trigger':28 'two':36 'user':78,88 'way':72 'whole':56 'window':139 'work':114 'wouldn':64 'yes':1"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://discuss.tchncs.de/comment/6096233"
+editedAt: DateTimeImmutable @1712572070 {#4724
date: 2024-04-08 12:27:50.0 +02:00
}
+createdAt: DateTimeImmutable @1704276769 {#4725
date: 2024-01-03 11:12:49.0 +01:00
}
} |
|
Show voter details
|
| 67 |
DENIED
|
edit
|
App\Entity\EntryComment {#4729
+user: App\Entity\User {#4742 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Yes. Running anything as root is potentially dangerous. And a browser is a complex and big piece of software with many security issues that can be (potentially) triggered remotely. So it’s bad because of two reasons.\n
\n
Btw a desktop environment also is a complex and big piece of software with potential issues. Running the whole desktop as root is another thing you wouldn’t do for extra security.\n
\n
The proper way is to just create a user account and run the desktop and browser as a user. Open a terminal and ‘su’ or ‘sudo’ to limit root rights to the operations that actually need those permissions.\n
\n
Just running everything as root certainly works. But you do away with all the extra layers of security and end up with something as secure as MS-DOS or a Windows in the 90s or early 2000s.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704276769 {#4723
date: 2024-01-03 11:12:49.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4730 …}
+nested: Doctrine\ORM\PersistentCollection {#4732 …}
+votes: Doctrine\ORM\PersistentCollection {#4734 …}
+reports: Doctrine\ORM\PersistentCollection {#4736 …}
+favourites: Doctrine\ORM\PersistentCollection {#4738 …}
+notifications: Doctrine\ORM\PersistentCollection {#4740 …}
-id: 287121
-bodyTs: "'2000s':145 '90s':142 'account':79 'actual':104 'also':42 'anoth':61 'anyth':3 'away':118 'bad':33 'big':16,47 'browser':11,85 'btw':38 'certain':113 'complex':14,45 'creat':76 'danger':8 'desktop':40,57,83 'dos':136 'earli':144 'end':127 'environ':41 'everyth':110 'extra':68,122 'issu':23,53 'layer':123 'limit':97 'mani':21 'ms':135 'ms-dos':134 'need':105 'open':89 'oper':102 'permiss':107 'piec':17,48 'potenti':7,27,52 'proper':71 'reason':37 'remot':29 'right':99 'root':5,59,98,112 'run':2,54,81,109 'secur':22,69,125,132 'softwar':19,50 'someth':130 'su':93 'sudo':95 'termin':91 'thing':62 'trigger':28 'two':36 'user':78,88 'way':72 'whole':56 'window':139 'work':114 'wouldn':64 'yes':1"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://discuss.tchncs.de/comment/6096233"
+editedAt: DateTimeImmutable @1712572070 {#4724
date: 2024-04-08 12:27:50.0 +02:00
}
+createdAt: DateTimeImmutable @1704276769 {#4725
date: 2024-01-03 11:12:49.0 +01:00
}
} |
|
Show voter details
|
| 68 |
DENIED
|
moderate
|
App\Entity\EntryComment {#4729
+user: App\Entity\User {#4742 …}
+entry: App\Entity\Entry {#2412
+user: Proxies\__CG__\App\Entity\User {#1970 …}
+magazine: App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#1915 …}
+slug: "Is-it-actually-dangerous-to-run-Firefox-as-root"
+title: "Is it actually dangerous to run Firefox as root?"
+url: null
+body: """
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the system), but if I have an issue, I’ve just been absentmindedly searching stuff up and trying to find solutions using the preinstalled Firefox instance from within the remote desktop itself, which would also be running as root.\n
\n
I never even thought to install uBlock Origin on it or anything, but the servers are all configured to use a PiHole instance which blocks the vast majority of ads. However, I do also remember using the browser in my main server to figure out how to set up the PiHole instance in the first place, and that server also happens to be the most important one and is my main NAS.\n
\n
I never went on any particularly shady websites, but I also don’t remember exactly which websites I’ve been on as root, though I do seem to remember seeing ads during the initial pihole setup, because it didn’t go very smoothly and I was searching up error messages trying to get it to work.\n
\n
This is definitely on me, but it never crossed my mind until recently that it might be a bad idea to use a browser as root, and searching online everyone just states the general cybersecurity doctrine to never do it (which I’m now realizing I shouldn’t have) but no one seems to be discussing how risky it actually is. Shouldn’t Firefox be sandboxing every website and not allowing anything to access the base system? Between “just stop doing it” and “you have to reinstall the OS right now there’s probably already a virus on there,” how much danger do you suppose I’m in? I’m mainly worried about the security/privacy of my personal data I have stored on the servers. All my servers run Fedora KDE Spin and have Intel processors if that makes a difference?
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 88
+favouriteCount: 93
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1712572029 {#2410
date: 2024-04-08 12:27:09.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#1884 …}
+votes: Doctrine\ORM\PersistentCollection {#1973 …}
+reports: Doctrine\ORM\PersistentCollection {#1959 …}
+favourites: Doctrine\ORM\PersistentCollection {#1927 …}
+notifications: Doctrine\ORM\PersistentCollection {#2442 …}
+badges: Doctrine\ORM\PersistentCollection {#2440 …}
+children: []
-id: 26893
-titleTs: "'actual':3 'danger':4 'firefox':7 'root':9 'run':6"
-bodyTs: "'absentmind':73 'access':301 'actual':287 'ad':129,202 'allow':298 'alreadi':322 'also':95,133,159,182 'anyth':111,299 'bad':246 'base':303 'block':124 'browser':137,251 'command':30,48 'configur':117 'conveni':44 'cross':236 'cybersecur':262 'danger':329 'data':346 'definit':230 'desktop':53,91 'didn':210 'differ':368 'direct':56 'discuss':283 'doctrin':263 'error':220 'even':102 'everi':294 'everyon':257 'exact':186 'fedora':357 'figur':143 'file':35 'find':41,80 'firefox':85,291 'first':154 'general':261 'get':224 'go':212 'happen':160 'home':8 'howev':130 'idea':247 'import':165 'ing':59 'initi':205 'instal':105 'instanc':86,122,151 'instead':54 'intel':362 'issu':68 'kde':21,358 'line':31,49 'linux':5 'log':19 'm':270,334,337 'main':140,170,338 'major':127 'make':366 'manag':17,36 'messag':221 'might':243 'mind':238 'much':328 'nas':171 'never':101,173,235,265 'one':166,279 'onlin':256 'open':37 'order':15 'origin':107 'os':316 'particular':177 'person':39,345 'pihol':121,150,206 'place':155 'plasma':22 'preinstal':84 'probabl':321 'processor':363 'realiz':272 'recent':240 'regular':11 'reinstal':314 'rememb':134,185,200 'remot':12,52,90 'right':317 'riski':285 'root':24,99,194,253 'run':97,356 'sandbox':293 'search':74,218,255 'security/privacy':342 'see':201 'seem':198,280 'server':6,114,141,158,352,355 'set':147 'setup':207 'sever':29 'shadi':178 'shouldn':274,289 'smooth':214 'solut':81 'spin':359 'ssh':58 'ssh-ing':57 'state':259 'stop':307 'store':349 'stuff':75 'suppos':332 'system':62,304 'though':195 'thought':103 'tri':78,222 'ublock':106 'use':46,82,119,135,249 'usual':18,25 'vast':126 've':70,190 'virus':324 'websit':179,188,295 'went':174 'window':32 'within':88 'work':227 'worri':339 'would':94"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1704359289
+visibility: "visible "
+apId: "https://lemmy.ml/post/10062491"
+editedAt: DateTimeImmutable @1711170613 {#1850
date: 2024-03-23 06:10:13.0 +01:00
}
+createdAt: DateTimeImmutable @1704272889 {#2420
date: 2024-01-03 10:08:09.0 +01:00
}
}
+magazine: App\Entity\Magazine {#266}
+image: null
+parent: null
+root: null
+body: """
Yes. Running anything as root is potentially dangerous. And a browser is a complex and big piece of software with many security issues that can be (potentially) triggered remotely. So it’s bad because of two reasons.\n
\n
Btw a desktop environment also is a complex and big piece of software with potential issues. Running the whole desktop as root is another thing you wouldn’t do for extra security.\n
\n
The proper way is to just create a user account and run the desktop and browser as a user. Open a terminal and ‘su’ or ‘sudo’ to limit root rights to the operations that actually need those permissions.\n
\n
Just running everything as root certainly works. But you do away with all the extra layers of security and end up with something as secure as MS-DOS or a Windows in the 90s or early 2000s.
"""
+lang: "en"
+isAdult: false
+favouriteCount: 0
+score: 0
+lastActive: DateTime @1704276769 {#4723
date: 2024-01-03 11:12:49.0 +01:00
}
+ip: null
+tags: null
+mentions: [
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
"@HiddenLayer5@lemmy.ml"
]
+children: Doctrine\ORM\PersistentCollection {#4730 …}
+nested: Doctrine\ORM\PersistentCollection {#4732 …}
+votes: Doctrine\ORM\PersistentCollection {#4734 …}
+reports: Doctrine\ORM\PersistentCollection {#4736 …}
+favourites: Doctrine\ORM\PersistentCollection {#4738 …}
+notifications: Doctrine\ORM\PersistentCollection {#4740 …}
-id: 287121
-bodyTs: "'2000s':145 '90s':142 'account':79 'actual':104 'also':42 'anoth':61 'anyth':3 'away':118 'bad':33 'big':16,47 'browser':11,85 'btw':38 'certain':113 'complex':14,45 'creat':76 'danger':8 'desktop':40,57,83 'dos':136 'earli':144 'end':127 'environ':41 'everyth':110 'extra':68,122 'issu':23,53 'layer':123 'limit':97 'mani':21 'ms':135 'ms-dos':134 'need':105 'open':89 'oper':102 'permiss':107 'piec':17,48 'potenti':7,27,52 'proper':71 'reason':37 'remot':29 'right':99 'root':5,59,98,112 'run':2,54,81,109 'secur':22,69,125,132 'softwar':19,50 'someth':130 'su':93 'sudo':95 'termin':91 'thing':62 'trigger':28 'two':36 'user':78,88 'way':72 'whole':56 'window':139 'work':114 'wouldn':64 'yes':1"
+ranking: 0
+commentCount: 0
+upVotes: 0
+downVotes: 0
+visibility: "visible "
+apId: "https://discuss.tchncs.de/comment/6096233"
+editedAt: DateTimeImmutable @1712572070 {#4724
date: 2024-04-08 12:27:50.0 +02:00
}
+createdAt: DateTimeImmutable @1704276769 {#4725
date: 2024-01-03 11:12:49.0 +01:00
}
} |
|
Show voter details
|
| 69 |
DENIED
|
edit
|
App\Entity\Magazine {#266
+icon: Proxies\__CG__\App\Entity\Image {#247 …}
+name: "linux@lemmy.ml"
+title: "linux"
+description: """
From Wikipedia, the free encyclopedia\n
\n
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
\n
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
\n
### Rules\n
\n
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
- No misinformation\n
- No NSFW content\n
- No hate speech, bigotry, etc\n
\n
### Related Communities\n
\n
- [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
- [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
- [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
- [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
\n
Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 1406
+entryCommentCount: 28632
+postCount: 6
+postCommentCount: 214
+isAdult: false
+customCss: null
+lastActive: DateTime @1729583542 {#276
date: 2024-10-22 09:52:22.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#238 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#234 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#223 …}
+entries: Doctrine\ORM\PersistentCollection {#181 …}
+posts: Doctrine\ORM\PersistentCollection {#139 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#201 …}
+bans: Doctrine\ORM\PersistentCollection {#118 …}
+reports: Doctrine\ORM\PersistentCollection {#104 …}
+badges: Doctrine\ORM\PersistentCollection {#82 …}
+logs: Doctrine\ORM\PersistentCollection {#72 …}
+awards: Doctrine\ORM\PersistentCollection {#61 …}
+categories: Doctrine\ORM\PersistentCollection {#1820 …}
-id: 73
+apId: "linux@lemmy.ml"
+apProfileId: "https://lemmy.ml/c/linux"
+apPublicUrl: "https://lemmy.ml/c/linux"
+apFollowersUrl: "https://lemmy.ml/c/linux/followers"
+apInboxUrl: "https://lemmy.ml/inbox"
+apDomain: "lemmy.ml"
+apPreferredUsername: "linux"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1729583596 {#270
date: 2024-10-22 09:53:16.0 +02:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1698929468 {#272
date: 2023-11-02 13:51:08.0 +01:00
}
} |
|
Show voter details
|