Components
22
Twig Components
102
Render Count
392
ms
Render Time
12.0
MiB
Memory Usage
Components
Render calls
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 60.89 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } "showNested" => true "dateAsUrl" => false "showMagazineName" => true "showEntryTitle" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#2312 +comment: App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } +showMagazineName: true +showEntryTitle: true +showNested: true +level: 1 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.38 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#1354 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.50 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#2557 +date: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.30 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } "editedAt" => DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#2621 +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } } |
|||
| magazine_inline | App\Twig\Components\MagazineInlineComponent | 12.0 MiB | 5.67 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\MagazineInlineComponent {#2686 +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +showTitle: true +fullName: false +stretchedLink: false +showAvatar: false } |
|||
| entry_inline | App\Twig\Components\EntryInlineComponent | 12.0 MiB | 5.71 ms | |
|---|---|---|---|---|
| Input props | [ "entry" => Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryInlineComponent {#2817 +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 10.82 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#2880 +width: 40 +height: 40 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 3.36 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#3016 +subject: App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 1.44 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#3083 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 15.78 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } "level" => 1 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#3385 +comment: App\Entity\EntryComment {#1833 +user: App\Entity\User {#2358 +avatar: Proxies\__CG__\App\Entity\Image {#1523 …} +cover: null +email: "TheAnonymouseJoker@lemmy.ml" +username: "@TheAnonymouseJoker@lemmy.ml" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1719499996 {#2396 : 2024-06-27 16:53:16.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: true +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: false +notifyOnNewEntryCommentReply: false +notifyOnNewPost: false +notifyOnNewPostReply: false +notifyOnNewPostCommentReply: false +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1539 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1518 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1710 …} +entries: Doctrine\ORM\PersistentCollection {#1516 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1497 …} +entryComments: Doctrine\ORM\PersistentCollection {#1473 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1470 …} +posts: Doctrine\ORM\PersistentCollection {#1777 …} +postVotes: Doctrine\ORM\PersistentCollection {#1754 …} +postComments: Doctrine\ORM\PersistentCollection {#1422 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1453 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1459 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1463 …} +follows: Doctrine\ORM\PersistentCollection {#1700 …} +followers: Doctrine\ORM\PersistentCollection {#1694 …} +blocks: Doctrine\ORM\PersistentCollection {#1743 …} +blockers: Doctrine\ORM\PersistentCollection {#1606 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1676 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#1678 …} +reports: Doctrine\ORM\PersistentCollection {#1752 …} +favourites: Doctrine\ORM\PersistentCollection {#1671 …} +violations: Doctrine\ORM\PersistentCollection {#1651 …} +notifications: Doctrine\ORM\PersistentCollection {#1656 …} +awards: Doctrine\ORM\PersistentCollection {#1663 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#1581 …} +categories: Doctrine\ORM\PersistentCollection {#1568 …} -id: 8990 -password: "$2y$13$peWJARQT0roc//u.NSM2EeeeLmDR58xCceUkU3dnR/OYB05tq8Roy" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#1566 …} +apId: "TheAnonymouseJoker@lemmy.ml" +apProfileId: "https://lemmy.ml/u/TheAnonymouseJoker" +apPublicUrl: "https://lemmy.ml/u/TheAnonymouseJoker" +apFollowersUrl: null +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "TheAnonymouseJoker" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1710544259 {#1791 : 2024-03-16 00:10:59.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1687519621 {#1824 : 2023-06-23 13:27:01.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Some stuff related to madaidan I wrote and compiled a couple years ago.\n \n [i.imgur.com/FiYhbkk.jpg](https://i.imgur.com/FiYhbkk.jpg): madaidan being very 4chan-y in terms of blaming the computer language for problems in particular software code (in this case Linux kernel), while dismissing everything when it comes to Windows. His blog page about Linux is a massive piece of “toilet paper” repeatedly debunked at this point. If you think the phrase “toilet paper” is mine, come, have a look.\n \n [web.archive.org/…/thoughts_about_an_article_talki…](https://web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)\n \n [web.archive.org/web/20220111035527/https:/…/item?…](https://web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)\n \n [archive.is/zxS72](https://archive.is/zxS72)\n \n TL;DR his blog has been dismissed enough at this point to consider it nothing more than digital rag. Security zealots are dangerous to FOSS community, like Brad Spengler/grsecurity, madaidan, GrapheneOS and so on. You can identify them as Big Tech security evangelists trying to shit on FOSS with arguments I would say do not end up being very intelligent and academic, and more reactionary and flakey.\n \n Also a little note on security. You do not need as much security as much as you need privacy, freedom and anonymity. Security is variable, it only buys you the time against attacker, and is the least priority among these 4 things in computing. """ +lang: "en" +isAdult: false +favouriteCount: 14 +score: 0 +lastActive: DateTime @1700828802 {#1919 : 2023-11-24 13:26:42.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1513 …} +nested: Doctrine\ORM\PersistentCollection {#1851 …} +votes: Doctrine\ORM\PersistentCollection {#1827 …} +reports: Doctrine\ORM\PersistentCollection {#2418 …} +favourites: Doctrine\ORM\PersistentCollection {#2481 …} +notifications: Doctrine\ORM\PersistentCollection {#2416 …} -id: 158269 -bodyTs: "'/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':16 '/item':87 '/thoughts_about_an_article_talki':80 '/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':83 '/web/20220111035527/https:/':86 '/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':90 '/zxs72](https://archive.is/zxs72)':93 '4':201 '4chan':21 '4chan-y':20 'academ':155 'ago':13 'also':161 'among':199 'anonym':182 'archive.is':92 'archive.is/zxs72](https://archive.is/zxs72)':91 'argument':143 'attack':193 'big':133 'blame':26 'blog':50,97 'brad':121 'buy':188 'case':38 'code':35 'come':46,75 'communiti':119 'compil':9 'comput':28,204 'consid':106 'coupl':11 'danger':116 'debunk':62 'digit':111 'dismiss':42,100 'dr':95 'end':149 'enough':101 'evangelist':136 'everyth':43 'flakey':160 'foss':118,141 'freedom':180 'grapheneo':124 'i.imgur.com':15 'i.imgur.com/fiyhbkk.jpg](https://i.imgur.com/fiyhbkk.jpg):':14 'identifi':130 'intellig':153 'kernel':40 'languag':29 'least':197 'like':120 'linux':39,53 'littl':163 'look':78 'madaidan':5,17,123 'massiv':56 'mine':74 'much':172,175 'need':170,178 'note':164 'noth':108 'page':51 'paper':60,72 'particular':33 'phrase':70 'piec':57 'point':65,104 'prioriti':198 'privaci':179 'problem':31 'rag':112 'reactionari':158 'relat':3 'repeat':61 'say':146 'secur':113,135,166,173,183 'shit':139 'softwar':34 'spengler/grsecurity':122 'stuff':2 'tech':134 'term':24 'thing':202 'think':68 'time':191 'tl':94 'toilet':59,71 'tri':137 'variabl':185 'web.archive.org':79,82,85,89 'web.archive.org/web/20210929053611/https://old.reddit.com/r/linux/comments/pwi1l9/thoughts_about_an_article_talking_about_the/)':81 'web.archive.org/web/20220111035527/https:/':84 'web.archive.org/web/20220111035527/https://news.ycombinator.com/item?id=25590079)':88 'window':48 'would':145 'wrote':7 'y':22 'year':12 'zealot':114" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.ml/comment/6078314" +editedAt: DateTimeImmutable @1701354549 {#2397 : 2023-11-30 15:29:09.0 +01:00 } +createdAt: DateTimeImmutable @1700828802 {#1847 : 2023-11-24 13:26:42.0 +01:00 } } +nestedComments: [] +level: 1 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 41.04 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } "showNested" => true "dateAsUrl" => false "showMagazineName" => true "showEntryTitle" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#3476 +comment: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +showMagazineName: true +showEntryTitle: true +showNested: true +level: 1 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.52 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#3521 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.17 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#3576 +date: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.11 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } "editedAt" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#3630 +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } +editedAt: null } |
|||
| magazine_inline | App\Twig\Components\MagazineInlineComponent | 12.0 MiB | 0.22 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\MagazineInlineComponent {#3684 +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +showTitle: true +fullName: false +stretchedLink: false +showAvatar: false } |
|||
| entry_inline | App\Twig\Components\EntryInlineComponent | 12.0 MiB | 0.16 ms | |
|---|---|---|---|---|
| Input props | [ "entry" => Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryInlineComponent {#3739 +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 0.51 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#3794 +width: 40 +height: 40 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 0.42 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#3869 +subject: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 0.70 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#3926 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 25.61 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } "level" => 1 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#4166 +comment: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +nestedComments: [ 157623 => App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701} +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } ] +level: 1 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 6.92 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } "showNested" => true "level" => 2 "showEntryTitle" => false "showMagazineName" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#4226 +comment: App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } +showMagazineName: false +showEntryTitle: false +showNested: true +level: 2 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.15 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#4273 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.14 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#4328 +date: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.09 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } "editedAt" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#4382 +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } +editedAt: null } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 0.15 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#4436 +width: 40 +height: 40 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 0.48 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#4509 +subject: App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 0.73 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#4566 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 0.37 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } "level" => 2 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#4806 +comment: App\Entity\EntryComment {#2229 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#1701 +user: App\Entity\User {#1598 +avatar: Proxies\__CG__\App\Entity\Image {#1630 …} +cover: Proxies\__CG__\App\Entity\Image {#1629 …} +email: "bbbhltz@beehaw.org" +username: "@bbbhltz@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Music lover and English teacher with an interest in slightly geeky things\n \n [mastodon](https://framapiaf.org/@bbbhltz) / [blog](https://bbbhltz.codeberg.page) / [listenbrainz](https://listenbrainz.org/user/pasdechance/) """ +lastActive: DateTime @1727694629 {#1613 : 2024-09-30 13:10:29.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#1628 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#1599 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1625 …} +entries: Doctrine\ORM\PersistentCollection {#1617 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1725 …} +entryComments: Doctrine\ORM\PersistentCollection {#1722 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1726 …} +posts: Doctrine\ORM\PersistentCollection {#1736 …} +postVotes: Doctrine\ORM\PersistentCollection {#1737 …} +postComments: Doctrine\ORM\PersistentCollection {#1732 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#1735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1729 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1719 …} +follows: Doctrine\ORM\PersistentCollection {#1714 …} +followers: Doctrine\ORM\PersistentCollection {#1720 …} +blocks: Doctrine\ORM\PersistentCollection {#1717 …} +blockers: Doctrine\ORM\PersistentCollection {#1741 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1707 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2464 …} +reports: Doctrine\ORM\PersistentCollection {#2448 …} +favourites: Doctrine\ORM\PersistentCollection {#2447 …} +violations: Doctrine\ORM\PersistentCollection {#2462 …} +notifications: Doctrine\ORM\PersistentCollection {#2461 …} +awards: Doctrine\ORM\PersistentCollection {#2460 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2452 …} +categories: Doctrine\ORM\PersistentCollection {#2454 …} -id: 57379 -password: "$2y$13$nMhZ8U2idkzqlUYi/cuTdOzNXk/L9rWzl4lEciiE/JwNGCOOP5Tym" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2459 …} +apId: "bbbhltz@beehaw.org" +apProfileId: "https://beehaw.org/u/bbbhltz" +apPublicUrl: "https://beehaw.org/u/bbbhltz" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "bbbhltz" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1728900248 {#1683 : 2024-10-14 12:04:08.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1697173847 {#1621 : 2023-10-13 07:10:47.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: "As far as I recall, it never was relevant. It was generally viewed as a rant written by a non-professionnel. Perhaps I am wrong? Sorry if I am wrong?? [Don’t start reporting me, please.](https://chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)" +lang: "en" +isAdult: false +favouriteCount: 12 +score: 0 +lastActive: DateTime @1701330385 {#1565 : 2023-11-30 08:46:25.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#1620 …} +nested: Doctrine\ORM\PersistentCollection {#1680 …} +votes: Doctrine\ORM\PersistentCollection {#1686 …} +reports: Doctrine\ORM\PersistentCollection {#1692 …} +favourites: Doctrine\ORM\PersistentCollection {#1705 …} +notifications: Doctrine\ORM\PersistentCollection {#1616 …} -id: 157570 -bodyTs: "'/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':40 'chef-koch.bearblog.dev':39 'chef-koch.bearblog.dev/attack-on-my-gitlab-account-after-an-engagement-with-madaidan-group/)':38 'far':2 'general':12 'never':7 'non':21 'non-professionnel':20 'perhap':23 'pleas':37 'professionnel':22 'rant':16 'recal':5 'relev':9 'report':35 'sorri':27 'start':34 'view':13 'written':17 'wrong':26,31" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722426" +editedAt: null +createdAt: DateTimeImmutable @1700807386 {#1604 : 2023-11-24 07:29:46.0 +01:00 } } +root: App\Entity\EntryComment {#1701} +body: """ I remember reading there, when it wasn’t on github pages but it’s own website, the recommendation to keep your critical dotfiles permissioned to a different user account of yours. I don’t think that’s bad advice. Yes it is probably not needed if you use the system as a pro sysadmin for server purposes, but for desktop use it’s just natural that you’ll run a lot more programs in a much less controlled manner.\n \n Of course there were ones that I thought they went overboard, but it has at least a few good pieces, if not more, I don’t really remember. """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700809862 {#2252 : 2023-11-24 08:11:02.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@bbbhltz@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2232 …} +nested: Doctrine\ORM\PersistentCollection {#2230 …} +votes: Doctrine\ORM\PersistentCollection {#2213 …} +reports: Doctrine\ORM\PersistentCollection {#2216 …} +favourites: Doctrine\ORM\PersistentCollection {#2223 …} +notifications: Doctrine\ORM\PersistentCollection {#2224 …} -id: 157623 -bodyTs: "'account':29 'advic':39 'bad':38 'control':78 'cours':81 'critic':22 'desktop':60 'differ':27 'dotfil':23 'github':10 'good':98 'keep':20 'least':95 'less':77 'll':68 'lot':71 'manner':79 'much':76 'natur':65 'need':45 'one':84 'overboard':90 'page':11 'permiss':24 'piec':99 'pro':53 'probabl':43 'program':73 'purpos':57 'read':3 'realli':106 'recommend':18 'rememb':2,107 'run':69 'server':56 'sysadmin':54 'system':50 'think':35 'thought':87 'use':48,61 'user':28 'wasn':7 'websit':16 'went':89 'yes':40" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1722547" +editedAt: null +createdAt: DateTimeImmutable @1700809862 {#2228 : 2023-11-24 08:11:02.0 +01:00 } } +nestedComments: [] +level: 2 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 80.51 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } "showNested" => true "dateAsUrl" => false "showMagazineName" => true "showEntryTitle" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#4882 +comment: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +showMagazineName: true +showEntryTitle: true +showNested: true +level: 1 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.16 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#4927 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.15 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#4982 +date: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.10 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } "editedAt" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#5036 +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } +editedAt: null } |
|||
| magazine_inline | App\Twig\Components\MagazineInlineComponent | 12.0 MiB | 0.19 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\MagazineInlineComponent {#5090 +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +showTitle: true +fullName: false +stretchedLink: false +showAvatar: false } |
|||
| entry_inline | App\Twig\Components\EntryInlineComponent | 12.0 MiB | 0.20 ms | |
|---|---|---|---|---|
| Input props | [ "entry" => Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryInlineComponent {#5145 +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 0.14 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#5200 +width: 40 +height: 40 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 0.37 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#5273 +subject: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 0.65 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#5330 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 72.45 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } "level" => 1 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#5570 +comment: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +nestedComments: [ 158086 => App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363} +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } 162857 => App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065} +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } 158202 => App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065} +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } ] +level: 1 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 71.33 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } "showNested" => true "level" => 2 "showEntryTitle" => false "showMagazineName" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#5630 +comment: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +showMagazineName: false +showEntryTitle: false +showNested: true +level: 2 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.53 ms | |
|---|---|---|---|---|
| Input props | [ "user" => Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#5675 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.18 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#5788 +date: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.10 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } "editedAt" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#5842 +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } +editedAt: null } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 0.16 ms | |
|---|---|---|---|---|
| Input props | [ "user" => Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#5896 +width: 40 +height: 40 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 0.48 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#5969 +subject: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 0.77 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#6026 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 62.73 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } "level" => 2 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#6266 +comment: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +nestedComments: [] +level: 2 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 26.33 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } "showNested" => true "level" => 3 "showEntryTitle" => false "showMagazineName" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#6321 +comment: App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } +showMagazineName: false +showEntryTitle: false +showNested: true +level: 3 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.15 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#6366 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.15 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#6421 +date: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.09 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } "editedAt" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#6475 +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } +editedAt: null } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 0.14 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#6529 +width: 40 +height: 40 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 0.45 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#6598 +subject: App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 0.80 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#6655 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 20.20 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } "level" => 3 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#6895 +comment: App\Entity\EntryComment {#2043 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "I’m not sure if at this point the browser verifies whether the cert is even legit for github.com" +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700929355 {#2162 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2161 …} +nested: Doctrine\ORM\PersistentCollection {#2123 …} +votes: Doctrine\ORM\PersistentCollection {#2115 …} +reports: Doctrine\ORM\PersistentCollection {#2122 …} +favourites: Doctrine\ORM\PersistentCollection {#2117 …} +notifications: Doctrine\ORM\PersistentCollection {#2114 …} -id: 162857 -bodyTs: "'browser':10 'cert':14 'even':16 'github.com':19 'legit':17 'm':2 'point':8 'sure':4 'verifi':11 'whether':12" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1735772" +editedAt: null +createdAt: DateTimeImmutable @1700929355 {#2127 : 2023-11-25 17:22:35.0 +01:00 } } +nestedComments: [] +level: 3 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 35.30 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } "showNested" => true "level" => 3 "showEntryTitle" => false "showMagazineName" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#6961 +comment: App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } +showMagazineName: false +showEntryTitle: false +showNested: true +level: 3 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.58 ms | |
|---|---|---|---|---|
| Input props | [ "user" => Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#7006 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.14 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#7120 +date: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.12 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } "editedAt" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#7174 +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } +editedAt: null } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 0.50 ms | |
|---|---|---|---|---|
| Input props | [ "user" => Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#7228 +width: 40 +height: 40 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 6.37 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#7299 +subject: App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 1.42 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#7356 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 0.34 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } "level" => 3 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#7394 +comment: App\Entity\EntryComment {#2110 +user: Proxies\__CG__\App\Entity\User {#2106 +avatar: Proxies\__CG__\App\Entity\Image {#7046 …} +cover: null +email: "Strit@lemmy.linuxuserspace.show" +username: "@Strit@lemmy.linuxuserspace.show" +roles: [] +followersCount: 0 +homepage: "front" +about: "Linux enthusiast, family man and nerd" +lastActive: DateTime @1726328845 {#7043 : 2024-09-14 17:47:25.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#7047 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#7049 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#7051 …} +entries: Doctrine\ORM\PersistentCollection {#7053 …} +entryVotes: Doctrine\ORM\PersistentCollection {#7055 …} +entryComments: Doctrine\ORM\PersistentCollection {#7057 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#7059 …} +posts: Doctrine\ORM\PersistentCollection {#7061 …} +postVotes: Doctrine\ORM\PersistentCollection {#7063 …} +postComments: Doctrine\ORM\PersistentCollection {#7065 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#7067 …} +subscriptions: Doctrine\ORM\PersistentCollection {#7069 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#7071 …} +follows: Doctrine\ORM\PersistentCollection {#7073 …} +followers: Doctrine\ORM\PersistentCollection {#7075 …} +blocks: Doctrine\ORM\PersistentCollection {#7077 …} +blockers: Doctrine\ORM\PersistentCollection {#7079 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#7081 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#7083 …} +reports: Doctrine\ORM\PersistentCollection {#7085 …} +favourites: Doctrine\ORM\PersistentCollection {#7087 …} +violations: Doctrine\ORM\PersistentCollection {#7089 …} +notifications: Doctrine\ORM\PersistentCollection {#7091 …} +awards: Doctrine\ORM\PersistentCollection {#7093 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#7095 …} +categories: Doctrine\ORM\PersistentCollection {#7097 …} -id: 69878 -password: "$2y$13$pwWoC7DgFHMWPD06SHqbBu6ejTQ7ZI5lTehnjO.le5nPbpbwlZiiC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#7099 …} +apId: "Strit@lemmy.linuxuserspace.show" +apProfileId: "https://lemmy.linuxuserspace.show/u/Strit" +apPublicUrl: "https://lemmy.linuxuserspace.show/u/Strit" +apFollowersUrl: null +apInboxUrl: "https://lemmy.linuxuserspace.show/inbox" +apDomain: "lemmy.linuxuserspace.show" +apPreferredUsername: "Strit" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027530 {#7044 : 2024-10-15 23:25:30.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698931515 {#7045 : 2023-11-02 14:25:15.0 +01:00 } +__isInitialized__: true …2 } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2065 +user: Proxies\__CG__\App\Entity\User {#2315 …2} +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: App\Entity\EntryComment {#2363 +user: App\Entity\User {#2378 +avatar: null +cover: null +email: "ReversalHatchery@beehaw.org" +username: "@ReversalHatchery@beehaw.org" +roles: [] +followersCount: 0 +homepage: "front" +about: """ Computers and the internet gave you freedom. Trusted Computing would take your freedom. \n Learn why: [vimeo.com/5168045](https://vimeo.com/5168045) """ +lastActive: DateTime @1729157044 {#2467 : 2024-10-17 11:24:04.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2379 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2383 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#1906 …} +entries: Doctrine\ORM\PersistentCollection {#1708 …} +entryVotes: Doctrine\ORM\PersistentCollection {#1410 …} +entryComments: Doctrine\ORM\PersistentCollection {#1907 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#1407 …} +posts: Doctrine\ORM\PersistentCollection {#2391 …} +postVotes: Doctrine\ORM\PersistentCollection {#2369 …} +postComments: Doctrine\ORM\PersistentCollection {#2392 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2395 …} +subscriptions: Doctrine\ORM\PersistentCollection {#1384 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#1383 …} +follows: Doctrine\ORM\PersistentCollection {#1405 …} +followers: Doctrine\ORM\PersistentCollection {#1382 …} +blocks: Doctrine\ORM\PersistentCollection {#1404 …} +blockers: Doctrine\ORM\PersistentCollection {#1361 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#1403 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2023 …} +reports: Doctrine\ORM\PersistentCollection {#2032 …} +favourites: Doctrine\ORM\PersistentCollection {#2024 …} +violations: Doctrine\ORM\PersistentCollection {#2018 …} +notifications: Doctrine\ORM\PersistentCollection {#2011 …} +awards: Doctrine\ORM\PersistentCollection {#2021 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2029 …} +categories: Doctrine\ORM\PersistentCollection {#2020 …} -id: 53309 -password: "$2y$13$yaMDirBnxPglTi1FZcWHeeIsQV58zcvh5YhOYRzceTdPE6xctuKvu" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2027 …} +apId: "ReversalHatchery@beehaw.org" +apProfileId: "https://beehaw.org/u/ReversalHatchery" +apPublicUrl: "https://beehaw.org/u/ReversalHatchery" +apFollowersUrl: null +apInboxUrl: "https://beehaw.org/inbox" +apDomain: "beehaw.org" +apPreferredUsername: "ReversalHatchery" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729027069 {#2471 : 2024-10-15 23:17:49.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696732297 {#2371 : 2023-10-08 04:31:37.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 …2} +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ “This connection is untrusted” “SSL_ERROR_BAD_CERT_DOMAIN”\n \n The irony. """ +lang: "en" +isAdult: false +favouriteCount: 11 +score: 0 +lastActive: DateTime @1701510560 {#2470 : 2023-12-02 10:49:20.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2370 …} +nested: Doctrine\ORM\PersistentCollection {#2360 …} +votes: Doctrine\ORM\PersistentCollection {#2361 …} +reports: Doctrine\ORM\PersistentCollection {#2372 …} +favourites: Doctrine\ORM\PersistentCollection {#2386 …} +notifications: Doctrine\ORM\PersistentCollection {#2385 …} -id: 157122 -bodyTs: "'bad':7 'cert':8 'connect':2 'domain':9 'error':6 'ironi':11 'ssl':5 'untrust':4" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://beehaw.org/comment/1721846" +editedAt: null +createdAt: DateTimeImmutable @1700793081 {#2469 : 2023-11-24 03:31:21.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: """ I mean the origin is still legit, so there is no real problem with it, right?\n \n One cannot just register a site as github.com """ +lang: "en" +isAdult: false +favouriteCount: 0 +score: 0 +lastActive: DateTime @1700824252 {#2069 : 2023-11-24 12:10:52.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2320 …} +nested: Doctrine\ORM\PersistentCollection {#2302 …} +votes: Doctrine\ORM\PersistentCollection {#2309 …} +reports: Doctrine\ORM\PersistentCollection {#2293 …} +favourites: Doctrine\ORM\PersistentCollection {#2311 …} +notifications: Doctrine\ORM\PersistentCollection {#2189 …} -id: 158086 -bodyTs: "'cannot':18 'github.com':24 'legit':7 'mean':2 'one':17 'origin':4 'problem':13 'real':12 'regist':20 'right':16 'site':22 'still':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://feddit.de/comment/5103814" +editedAt: null +createdAt: DateTimeImmutable @1700824252 {#2073 : 2023-11-24 12:10:52.0 +01:00 } } +root: App\Entity\EntryComment {#2363} +body: "It uses the github cert, but that is not set to use the github.io subpages that start with www." +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1700827184 {#2112 : 2023-11-24 12:59:44.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" "@ReversalHatchery@beehaw.org" ] +children: Doctrine\ORM\PersistentCollection {#2103 …} +nested: Doctrine\ORM\PersistentCollection {#2102 …} +votes: Doctrine\ORM\PersistentCollection {#2111 …} +reports: Doctrine\ORM\PersistentCollection {#2105 …} +favourites: Doctrine\ORM\PersistentCollection {#2100 …} +notifications: Doctrine\ORM\PersistentCollection {#2041 …} -id: 158202 -bodyTs: "'cert':5 'github':4 'github.io':14 'set':10 'start':17 'subpag':15 'use':2,12 'www':19" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.linuxuserspace.show/comment/623231" +editedAt: null +createdAt: DateTimeImmutable @1700827184 {#2107 : 2023-11-24 12:59:44.0 +01:00 } } +nestedComments: [] +level: 3 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| entry_comment | App\Twig\Components\EntryCommentComponent | 12.0 MiB | 178.96 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } "showNested" => true "dateAsUrl" => false "showMagazineName" => true "showEntryTitle" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryCommentComponent {#7481 +comment: App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } +showMagazineName: true +showEntryTitle: true +showNested: true +level: 1 +canSeeTrash: false +dateAsUrl: false -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -authorizationChecker: Symfony\Component\Security\Core\Authorization\AuthorizationChecker {#931 …} } |
|||
| user_inline | App\Twig\Components\UserInlineComponent | 12.0 MiB | 0.15 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } "showAvatar" => false ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserInlineComponent {#7526 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +showAvatar: false } |
|||
| date | App\Twig\Components\DateComponent | 12.0 MiB | 0.14 ms | |
|---|---|---|---|---|
| Input props | [ "date" => DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateComponent {#7581 +date: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } |
|||
| date_edited | App\Twig\Components\DateEditedComponent | 12.0 MiB | 0.11 ms | |
|---|---|---|---|---|
| Input props | [ "createdAt" => DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } "editedAt" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DateEditedComponent {#7635 +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } +editedAt: null } |
|||
| magazine_inline | App\Twig\Components\MagazineInlineComponent | 12.0 MiB | 0.13 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\MagazineInlineComponent {#7689 +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +showTitle: true +fullName: false +stretchedLink: false +showAvatar: false } |
|||
| entry_inline | App\Twig\Components\EntryInlineComponent | 12.0 MiB | 0.13 ms | |
|---|---|---|---|---|
| Input props | [ "entry" => Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\EntryInlineComponent {#7744 +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } } |
|||
| user_avatar | App\Twig\Components\UserAvatarComponent | 12.0 MiB | 3.59 ms | |
|---|---|---|---|---|
| Input props | [ "user" => App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } "width" => 40 "height" => 40 "asLink" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserAvatarComponent {#7799 +width: 40 +height: 40 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +asLink: true } |
|||
| vote | App\Twig\Components\VoteComponent | 12.0 MiB | 0.46 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\VoteComponent {#7874 +subject: App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } +formDest: "entry_comment" +showDownvote: true -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| boost | App\Twig\Components\BoostComponent | 12.0 MiB | 0.64 ms | |
|---|---|---|---|---|
| Input props | [ "subject" => App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\BoostComponent {#7931 +formDest: "entry_comment" +subject: App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} } |
|||
| entry_comments_nested | App\Twig\Components\EntryCommentsNestedComponent | 12.0 MiB | 163.46 ms | |
|---|---|---|---|---|
| Input props | [ "comment" => App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } "level" => 1 "showNested" => true "view" => "tree" ] |
|||
| Attributes | [ "showNested" => true ] |
|||
| Component | App\Twig\Components\EntryCommentsNestedComponent {#8171 +comment: App\Entity\EntryComment {#2061 +user: App\Entity\User {#2098 +avatar: Proxies\__CG__\App\Entity\Image {#2063 …} +cover: Proxies\__CG__\App\Entity\Image {#2080 …} +email: "GustavoM@lemmy.world" +username: "@GustavoM@lemmy.world" +roles: [] +followersCount: 0 +homepage: "front" +about: "Definitely Not GustavoM. :^)" +lastActive: DateTime @1719679748 {#2037 : 2024-06-29 18:49:08.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#2064 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#2088 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2087 …} +entries: Doctrine\ORM\PersistentCollection {#2086 …} +entryVotes: Doctrine\ORM\PersistentCollection {#2093 …} +entryComments: Doctrine\ORM\PersistentCollection {#2094 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#2140 …} +posts: Doctrine\ORM\PersistentCollection {#2133 …} +postVotes: Doctrine\ORM\PersistentCollection {#2131 …} +postComments: Doctrine\ORM\PersistentCollection {#2138 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#2345 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2330 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#2346 …} +follows: Doctrine\ORM\PersistentCollection {#2347 …} +followers: Doctrine\ORM\PersistentCollection {#2344 …} +blocks: Doctrine\ORM\PersistentCollection {#2042 …} +blockers: Doctrine\ORM\PersistentCollection {#2060 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#2331 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#2289 …} +reports: Doctrine\ORM\PersistentCollection {#2326 …} +favourites: Doctrine\ORM\PersistentCollection {#2325 …} +violations: Doctrine\ORM\PersistentCollection {#2329 …} +notifications: Doctrine\ORM\PersistentCollection {#2323 …} +awards: Doctrine\ORM\PersistentCollection {#2300 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#2340 …} +categories: Doctrine\ORM\PersistentCollection {#2342 …} -id: 55594 -password: "$2y$13$3rtBI4j23F.4f2HFNduFZ.ylG7FHwAbghmxkem/xJ.FpSGPS6xPYO" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#2343 …} +apId: "GustavoM@lemmy.world" +apProfileId: "https://lemmy.world/u/GustavoM" +apPublicUrl: "https://lemmy.world/u/GustavoM" +apFollowersUrl: null +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "GustavoM" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1727835761 {#2144 : 2024-10-02 04:22:41.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696981499 {#2075 : 2023-10-11 01:44:59.0 +02:00 } } +entry: Proxies\__CG__\App\Entity\Entry {#1871 +user: Proxies\__CG__\App\Entity\User {#2315 +avatar: null +cover: null +email: "Pantherina@feddit.de" +username: "@Pantherina@feddit.de" +roles: [] +followersCount: 0 +homepage: "front" +about: null +lastActive: DateTime @1721498243 {#5712 : 2024-07-20 19:57:23.0 +02:00 } +markedForDeletionAt: null +fields: null +oauthGithubId: null +oauthGoogleId: null +oauthFacebookId: null +oauthKeycloakId: null +hideAdult: true +showSubscribedUsers: true +showSubscribedMagazines: true +showSubscribedDomains: true +preferredLanguages: [] +featuredMagazines: null +showProfileSubscriptions: false +showProfileFollowings: true +markNewComments: false +notifyOnNewEntry: false +notifyOnNewEntryReply: true +notifyOnNewEntryCommentReply: true +notifyOnNewPost: false +notifyOnNewPostReply: true +notifyOnNewPostCommentReply: true +addMentionsEntries: false +addMentionsPosts: true +isBanned: false +isVerified: false +isDeleted: false +isBot: false +spamProtection: true +customCss: null +ignoreMagazinesCustomCss: false +moderatorTokens: Doctrine\ORM\PersistentCollection {#5715 …} +magazineOwnershipRequests: Doctrine\ORM\PersistentCollection {#5717 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#5719 …} +entries: Doctrine\ORM\PersistentCollection {#5721 …} +entryVotes: Doctrine\ORM\PersistentCollection {#5723 …} +entryComments: Doctrine\ORM\PersistentCollection {#5725 …} +entryCommentVotes: Doctrine\ORM\PersistentCollection {#5727 …} +posts: Doctrine\ORM\PersistentCollection {#5729 …} +postVotes: Doctrine\ORM\PersistentCollection {#5731 …} +postComments: Doctrine\ORM\PersistentCollection {#5733 …} +postCommentVotes: Doctrine\ORM\PersistentCollection {#5735 …} +subscriptions: Doctrine\ORM\PersistentCollection {#5737 …} +subscribedDomains: Doctrine\ORM\PersistentCollection {#5739 …} +follows: Doctrine\ORM\PersistentCollection {#5741 …} +followers: Doctrine\ORM\PersistentCollection {#5743 …} +blocks: Doctrine\ORM\PersistentCollection {#5745 …} +blockers: Doctrine\ORM\PersistentCollection {#5747 …} +blockedMagazines: Doctrine\ORM\PersistentCollection {#5749 …} +blockedDomains: Doctrine\ORM\PersistentCollection {#5751 …} +reports: Doctrine\ORM\PersistentCollection {#5753 …} +favourites: Doctrine\ORM\PersistentCollection {#5755 …} +violations: Doctrine\ORM\PersistentCollection {#5757 …} +notifications: Doctrine\ORM\PersistentCollection {#5759 …} +awards: Doctrine\ORM\PersistentCollection {#5761 …} +subscribedCategories: Doctrine\ORM\PersistentCollection {#5763 …} +categories: Doctrine\ORM\PersistentCollection {#5765 …} -id: 48318 -password: "$2y$13$ltFqzTJ0eHIMY8NTIUV0JOoX1AZlaj64ntUxYh5oQTJrg6.lxQmuC" -totpSecret: null -totpBackupCodes: [] -oAuth2UserConsents: Doctrine\ORM\PersistentCollection {#5767 …} +apId: "Pantherina@feddit.de" +apProfileId: "https://feddit.de/u/Pantherina" +apPublicUrl: "https://feddit.de/u/Pantherina" +apFollowersUrl: null +apInboxUrl: "https://feddit.de/inbox" +apDomain: "feddit.de" +apPreferredUsername: "Pantherina" +apDiscoverable: true +apManuallyApprovesFollowers: false +privateKey: null +publicKey: null +apFetchedAt: DateTime @1721236644 {#5713 : 2024-07-17 19:17:24.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1696428300 {#5714 : 2023-10-04 16:05:00.0 +02:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 +icon: Proxies\__CG__\App\Entity\Image {#2732 …} +name: "linux@lemmy.ml" +title: "linux" +description: """ From Wikipedia, the free encyclopedia\n \n Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n \n Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n \n ### Rules\n \n - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n - No misinformation\n - No NSFW content\n - No hate speech, bigotry, etc\n \n ### Related Communities\n \n - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n \n Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/) """ +rules: null +subscriptionsCount: 1 +entryCount: 1406 +entryCommentCount: 28632 +postCount: 6 +postCommentCount: 214 +isAdult: false +customCss: null +lastActive: DateTime @1729583542 {#2729 : 2024-10-22 09:52:22.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#2733 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#2735 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#2737 …} +entries: Doctrine\ORM\PersistentCollection {#2739 …} +posts: Doctrine\ORM\PersistentCollection {#2741 …} +subscriptions: Doctrine\ORM\PersistentCollection {#2743 …} +bans: Doctrine\ORM\PersistentCollection {#2749 …} +reports: Doctrine\ORM\PersistentCollection {#2757 …} +badges: Doctrine\ORM\PersistentCollection {#2770 …} +logs: Doctrine\ORM\PersistentCollection {#2780 …} +awards: Doctrine\ORM\PersistentCollection {#2762 …} +categories: Doctrine\ORM\PersistentCollection {#2786 …} -id: 73 +apId: "linux@lemmy.ml" +apProfileId: "https://lemmy.ml/c/linux" +apPublicUrl: "https://lemmy.ml/c/linux" +apFollowersUrl: "https://lemmy.ml/c/linux/followers" +apInboxUrl: "https://lemmy.ml/inbox" +apDomain: "lemmy.ml" +apPreferredUsername: "linux" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1729583596 {#2730 : 2024-10-22 09:53:16.0 +02:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1698929468 {#2731 : 2023-11-02 13:51:08.0 +01:00 } +__isInitialized__: true …2 } +image: null +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } +slug: "Just-read-Madaidans-Insecurities-Do-you-know-how-much-is" +title: "Just read Madaidans Insecurities. Do you know how much is still relevant?" +url: "https://www.madaidans-insecurities.github.io/linux.html" +body: """ Basically\n \n - Sandboxing is bad, bubblewrap (used in Flatpak) is a really good implementation though. Firefox and other apps are not very well sandboxed though\n - The kernel is endangered through user namespaces (used in Flatpak and Podman/Docker containers i.e. in Distrobox and Toolbox too)\n - the root password can be extracted veeery easily, especially when entering it through a terminal. Windows “okay” button might actually be more secure!\n - X11 is insecure, okay we know that\n - the kernel is very bloated and everything in there has all the permissions, which is not needed\n - Kernel bugs are often not fixed quickly or at all\n - Stable Distros are insecure if only CVE bugs are backported, as many security bugs dont get a CVE\n \n I am currently experimenting with the hardened Kernel and hardened_malloc, I use GrapheneOS since over a year.\n \n On Linux its a bit more difficult though, as Flatpak and Distrobox dont work anymore.\n \n This would mean user namespaces need to be enabled again, which I can’t seem to make work with\n \n `sudo sysctl -w kernel.unprivileged_users_clone=1`\n \n But the file doesnt exist and creating it doesnt work, probably needs to be a karg or something?\n \n I am testing all this using the hardened mod of Ublue (a slight Fedora deviation using its image-based distribution model):\n \n [github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)\n \n The images are rather opinionated though and have things like Flatpak removed, making them nearly unusable.\n \n Maybe nix is a solution? Would this be a good idea?\n \n Another point, bubblejail is not yet in the Fedora repos, which would be a way to make secure sandboxing accessible. [Here](https://github.com/rusty-snake/fedora-extras/tree/main/bubblejail) is a spec file from rusty-snake.\n \n What do you know about this? """ +type: "link" +lang: "en" +isOc: false +hasEmbed: false +commentCount: 8 +favouriteCount: 36 +score: 0 +isAdult: false +sticky: false +lastActive: DateTime @1700929355 {#2187 : 2023-11-25 17:22:35.0 +01:00 } +ip: null +adaAmount: 0 +tags: null +mentions: null +comments: Doctrine\ORM\PersistentCollection {#2173 …} +votes: Doctrine\ORM\PersistentCollection {#2183 …} +reports: Doctrine\ORM\PersistentCollection {#2168 …} +favourites: Doctrine\ORM\PersistentCollection {#2008 …} +notifications: Doctrine\ORM\PersistentCollection {#1991 …} +badges: Doctrine\ORM\PersistentCollection {#2362 …} +children: [] -id: 16138 -titleTs: "'insecur':4 'know':7 'madaidan':3 'much':9 'read':2 'relev':12 'still':11" -bodyTs: "'/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':220 '/rusty-snake/fedora-extras/tree/main/bubblejail)':271 '1':177 'access':267 'actual':63 'anoth':248 'anymor':151 'app':18 'backport':110 'bad':4 'base':215 'basic':1 'bit':141 'bloat':78 'bubblejail':250 'bubblewrap':5 'bug':92,108,114 'button':61 'clone':176 'contain':37 'creat':184 'current':121 'cve':107,118 'deviat':210 'difficult':143 'distribut':216 'distro':102 'distrobox':40,148 'doesnt':181,186 'dont':115,149 'easili':51 'enabl':160 'endang':28 'enter':54 'especi':52 'everyth':80 'exist':182 'experi':122 'extract':49 'fedora':209,256 'file':180,275 'firefox':15 'fix':96 'flatpak':8,34,146,231 'get':116 'github.com':219,270 'github.com/qoijjj/hardened-images](https://github.com/qoijjj/hardened-images)':218 'github.com/rusty-snake/fedora-extras/tree/main/bubblejail)':269 'good':12,246 'grapheneo':132 'harden':125,128,203 'i.e':38 'idea':247 'imag':214,222 'image-bas':213 'implement':13 'insecur':69,104 'karg':193 'kernel':26,75,91,126 'kernel.unprivileged':174 'know':72,283 'like':230 'linux':138 'make':168,233,264 'malloc':129 'mani':112 'mayb':237 'mean':154 'might':62 'mod':204 'model':217 'namespac':31,156 'near':235 'need':90,157,189 'nix':238 'often':94 'okay':60,70 'opinion':225 'password':46 'permiss':86 'podman/docker':36 'point':249 'probabl':188 'quick':97 'rather':224 'realli':11 'remov':232 'repo':257 'root':45 'rusti':278 'rusty-snak':277 'sandbox':2,23,266 'secur':66,113,265 'seem':166 'sinc':133 'slight':208 'snake':279 'solut':241 'someth':195 'spec':274 'stabl':101 'sudo':171 'sysctl':172 'termin':58 'test':198 'thing':229 'though':14,24,144,226 'toolbox':42 'ublu':206 'unus':236 'use':6,32,131,201,211 'user':30,155,175 'veeeri':50 'w':173 'way':262 'well':22 'window':59 'work':150,169,187 'would':153,242,259 'x11':67 'year':136 'yet':253" +cross: false +upVotes: 0 +downVotes: 0 +ranking: 1700870525 +visibility: "visible " +apId: "https://feddit.de/post/5981126" +editedAt: null +createdAt: DateTimeImmutable @1700784125 {#2172 : 2023-11-24 01:02:05.0 +01:00 } +__isInitialized__: true …2 } +magazine: Proxies\__CG__\App\Entity\Magazine {#1658 …2} +image: null +parent: null +root: null +body: """ Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;\n \n “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.” """ +lang: "en" +isAdult: false +favouriteCount: 2 +score: 0 +lastActive: DateTime @1700867849 {#2031 : 2023-11-25 00:17:29.0 +01:00 } +ip: null +tags: null +mentions: [ "@Pantherina@feddit.de" ] +children: Doctrine\ORM\PersistentCollection {#2079 …} +nested: Doctrine\ORM\PersistentCollection {#2078 …} +votes: Doctrine\ORM\PersistentCollection {#2097 …} +reports: Doctrine\ORM\PersistentCollection {#2082 …} +favourites: Doctrine\ORM\PersistentCollection {#2096 …} +notifications: Doctrine\ORM\PersistentCollection {#2081 …} -id: 160365 -bodyTs: "'1':63 'and/or':58 'back':61 'backup':38 'doesn':20 'exist':41 'good':28,36 'got':7 'issu':17,51 'latest':49 'log':40 'm':27,34 'make':54 'nuke':22 'patch':57 'pc':24 'quick':56 'realli':2 'relat':16,46 'relev':3 'rule':9 'secur':15 'security-rel':14 'seucirti':50 'sinc':37 'still':35 'thumb':11 'updat':59 've':6" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://lemmy.world/comment/5562525" +editedAt: null +createdAt: DateTimeImmutable @1700867849 {#2036 : 2023-11-25 00:17:29.0 +01:00 } } +nestedComments: [] +level: 1 +view: "tree" -entryCommentRepository: App\Repository\EntryCommentRepository {#558 …} -twig: Twig\Environment {#1252 …} -security: Symfony\Bundle\SecurityBundle\Security {#1101 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| domain | App\Twig\Components\DomainComponent | 12.0 MiB | 1.40 ms | |
|---|---|---|---|---|
| Input props | [ "domain" => App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DomainComponent {#8236 +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } } |
|||
| domain_sub | App\Twig\Components\DomainSubComponent | 12.0 MiB | 0.68 ms | |
|---|---|---|---|---|
| Input props | [ "domain" => App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\DomainSubComponent {#8285 +domain: App\Entity\Domain {#285 +entries: Doctrine\ORM\PersistentCollection {#251 …} +name: "madaidans-insecurities.github.io" +entryCount: 1 +subscriptionsCount: 0 +subscriptions: Doctrine\ORM\PersistentCollection {#273 …} -id: 1090 } } |
|||
| settings_row_enum | App\Twig\Components\SettingsRowEnumComponent | 12.0 MiB | 0.26 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Sidebar position" "settingsKey" => "KBIN_GENERAL_SIDEBAR_POSITION" "values" => [ [ "name" => "Left" "value" => "LEFT" ] [ "name" => "Right" "value" => "RIGHT" ] ] "defaultValue" => "RIGHT" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowEnumComponent {#8415 +label: "Sidebar position" +help: "" +settingsKey: "KBIN_GENERAL_SIDEBAR_POSITION" +values: [ [ "name" => "Left" "value" => "LEFT" ] [ "name" => "Right" "value" => "RIGHT" ] ] +defaultValue: "RIGHT" +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.22 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Dynamic lists" "settingsKey" => "KBIN_GENERAL_DYNAMIC_LISTS" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#8487 +label: "Dynamic lists" +help: "" +settingsKey: "KBIN_GENERAL_DYNAMIC_LISTS" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.19 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Rounded edges" "settingsKey" => "KBIN_GENERAL_ROUNDED_EDGES" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#8550 +label: "Rounded edges" +help: "" +settingsKey: "KBIN_GENERAL_ROUNDED_EDGES" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.13 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Infinite scrolling" "help" => "Automatically load more content when you reach the bottom of the page." "settingsKey" => "KBIN_GENERAL_INFINITE_SCROLL" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#8606 +label: "Infinite scrolling" +help: "Automatically load more content when you reach the bottom of the page." +settingsKey: "KBIN_GENERAL_INFINITE_SCROLL" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.13 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Sticky navbar" "help" => "The navbar will stick to the top of the page when you scroll down." "settingsKey" => "KBIN_GENERAL_FIXED_NAVBAR" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#8665 +label: "Sticky navbar" +help: "The navbar will stick to the top of the page when you scroll down." +settingsKey: "KBIN_GENERAL_FIXED_NAVBAR" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.16 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show top bar" "settingsKey" => "KBIN_GENERAL_TOPBAR" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#8721 +label: "Show top bar" +help: "" +settingsKey: "KBIN_GENERAL_TOPBAR" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.13 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Turbo mode (experimental)" "settingsKey" => "KBIN_GENERAL_TURBO" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#8777 +label: "Turbo mode (experimental)" +help: "" +settingsKey: "KBIN_GENERAL_TURBO" +defaultValue: false +reloadRequired: true } |
|||
| user_settings_row_switch | App\Twig\Components\UserSettingsRowSwitchComponent | 12.0 MiB | 0.31 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Mark new comments" "settingsKey" => "KBIN_MARK_NEW_COMMENTS" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserSettingsRowSwitchComponent {#8835 +label: "Mark new comments" +help: "" +settingsKey: "KBIN_MARK_NEW_COMMENTS" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.16 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show "Support Us" block" "settingsKey" => "KBIN_GENERAL_SUPPORT_US_BLOCK" "defaultValue" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#8898 +label: "Show "Support Us" block" +help: "" +settingsKey: "KBIN_GENERAL_SUPPORT_US_BLOCK" +defaultValue: true +reloadRequired: true } |
|||
| user_settings_row_switch | App\Twig\Components\UserSettingsRowSwitchComponent | 12.0 MiB | 0.19 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show subscribed users" "settingsKey" => "KBIN_SUB_CHANNEL_USERS" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserSettingsRowSwitchComponent {#8956 +label: "Show subscribed users" +help: "" +settingsKey: "KBIN_SUB_CHANNEL_USERS" +defaultValue: false +reloadRequired: true } |
|||
| user_settings_row_switch | App\Twig\Components\UserSettingsRowSwitchComponent | 12.0 MiB | 0.21 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show subscribed magazines" "settingsKey" => "KBIN_SUB_CHANNEL_MAGAZINES" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserSettingsRowSwitchComponent {#9012 +label: "Show subscribed magazines" +help: "" +settingsKey: "KBIN_SUB_CHANNEL_MAGAZINES" +defaultValue: false +reloadRequired: true } |
|||
| user_settings_row_switch | App\Twig\Components\UserSettingsRowSwitchComponent | 12.0 MiB | 0.19 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show subscribed domains" "settingsKey" => "KBIN_SUB_CHANNEL_DOMAINS" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\UserSettingsRowSwitchComponent {#9068 +label: "Show subscribed domains" +help: "" +settingsKey: "KBIN_SUB_CHANNEL_DOMAINS" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.20 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Auto media preview" "help" => "Automatically expand media previews." "settingsKey" => "KBIN_ENTRIES_SHOW_PREVIEW" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9124 +label: "Auto media preview" +help: "Automatically expand media previews." +settingsKey: "KBIN_ENTRIES_SHOW_PREVIEW" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.18 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Compact view" "settingsKey" => "KBIN_ENTRIES_COMPACT" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9180 +label: "Compact view" +help: "" +settingsKey: "KBIN_ENTRIES_COMPACT" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.16 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show users’ avatars" "settingsKey" => "KBIN_ENTRIES_SHOW_USERS_AVATARS" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9236 +label: "Show users’ avatars" +help: "" +settingsKey: "KBIN_ENTRIES_SHOW_USERS_AVATARS" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.18 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show magazines’ icons" "settingsKey" => "KBIN_ENTRIES_SHOW_MAGAZINES_ICONS" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9292 +label: "Show magazines’ icons" +help: "" +settingsKey: "KBIN_ENTRIES_SHOW_MAGAZINES_ICONS" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.18 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show thumbnails" "settingsKey" => "KBIN_ENTRIES_SHOW_THUMBNAILS" "defaultValue" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9348 +label: "Show thumbnails" +help: "" +settingsKey: "KBIN_ENTRIES_SHOW_THUMBNAILS" +defaultValue: true +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.18 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Auto media preview" "help" => "Automatically expand media previews." "settingsKey" => "KBIN_POSTS_SHOW_PREVIEW" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9404 +label: "Auto media preview" +help: "Automatically expand media previews." +settingsKey: "KBIN_POSTS_SHOW_PREVIEW" +defaultValue: false +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.19 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show users’ avatars" "settingsKey" => "KBIN_POSTS_SHOW_USERS_AVATARS" "defaultValue" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9460 +label: "Show users’ avatars" +help: "" +settingsKey: "KBIN_POSTS_SHOW_USERS_AVATARS" +defaultValue: true +reloadRequired: true } |
|||
| settings_row_enum | App\Twig\Components\SettingsRowEnumComponent | 12.0 MiB | 0.20 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Comment reply position" "help" => "Display the comment reply form either at the top or bottom of the page. When 'infinite scroll' is enabled the position will always appear at the top." "settingsKey" => "KBIN_COMMENTS_REPLY_POSITION" "values" => [ [ "name" => "top" "value" => "TOP" ] [ "name" => "bottom" "value" => "BOTTOM" ] ] "defaultValue" => "TOP" ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowEnumComponent {#9516 +label: "Comment reply position" +help: "Display the comment reply form either at the top or bottom of the page. When 'infinite scroll' is enabled the position will always appear at the top." +settingsKey: "KBIN_COMMENTS_REPLY_POSITION" +values: [ [ "name" => "top" "value" => "TOP" ] [ "name" => "bottom" "value" => "BOTTOM" ] ] +defaultValue: "TOP" +reloadRequired: true } |
|||
| settings_row_switch | App\Twig\Components\SettingsRowSwitchComponent | 12.0 MiB | 0.19 ms | |
|---|---|---|---|---|
| Input props | [ "label" => "Show Comment Avatars" "help" => "Display/hide user avatars when viewing comments on a single thread or post." "settingsKey" => "KBIN_COMMENTS_SHOW_USER_AVATAR" "defaultValue" => true ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SettingsRowSwitchComponent {#9574 +label: "Show Comment Avatars" +help: "Display/hide user avatars when viewing comments on a single thread or post." +settingsKey: "KBIN_COMMENTS_SHOW_USER_AVATAR" +defaultValue: true +reloadRequired: true } |
|||
| related_magazines | App\Twig\Components\RelatedMagazinesComponent | 12.0 MiB | 10.13 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => null "tag" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\RelatedMagazinesComponent {#9639 +limit: 4 +tag: null +magazine: null +type: "random" +title: "random_magazines" +refreshedRandom: false -repository: App\Repository\MagazineRepository {#9640 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -twig: Twig\Environment {#1252 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| active_users | App\Twig\Components\ActiveUsersComponent | 12.0 MiB | 1.01 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\ActiveUsersComponent {#9727 +magazine: null -userRepository: App\Repository\UserRepository {#603 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -twig: Twig\Environment {#1252 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| related_categories | App\Twig\Components\RelatedCategoriesComponent | 12.0 MiB | 3.87 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => null "tag" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\RelatedCategoriesComponent {#9786 +limit: 4 +tag: null +magazine: null +type: "random" +title: "random_categories" +refreshedRandom: false -repository: App\Repository\CategoryRepository {#9787 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -twig: Twig\Environment {#1252 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} } |
|||
| related_posts | App\Twig\Components\RelatedPostsComponent | 12.0 MiB | 3.30 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => null "tag" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\RelatedPostsComponent {#9857 +limit: 4 +tag: null +magazine: null +type: "random" +post: null +title: "random_posts" +refreshedRandom: false -repository: App\Repository\PostRepository {#9856 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -twig: Twig\Environment {#1252 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -mentionManager: App\Service\MentionManager {#2530 …} } |
|||
| related_entries | App\Twig\Components\RelatedEntriesComponent | 12.0 MiB | 3.60 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => null "tag" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\RelatedEntriesComponent {#9927 +limit: 4 +tag: null +magazine: null +type: "random" +entry: null +title: "random_entries" +refreshedRandom: false -repository: App\Repository\EntryRepository {#9926 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -twig: Twig\Environment {#1252 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -mentionManager: App\Service\MentionManager {#2530 …} } |
|||
| support_us_block | App\Twig\Components\SupportUsBlock | 12.0 MiB | 0.84 ms | |
|---|---|---|---|---|
| Input props | [] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\SupportUsBlock {#9996 +subject: ? App\Entity\Contracts\VotableInterface +url: ? string -twig: Twig\Environment {#1252 …} -cache: Symfony\Component\Cache\Adapter\TraceableTagAwareAdapter {#600 …} -requestStack: Symfony\Component\HttpFoundation\RequestStack {#1328 …} -partnerBlockRepository: App\Repository\PartnerBlockRepository {#9997 …} } |
|||
| featured_magazines | App\Twig\Components\FeaturedMagazinesComponent | 12.0 MiB | 3.33 ms | |
|---|---|---|---|---|
| Input props | [ "magazine" => null ] |
|||
| Attributes | [] |
|||
| Component | App\Twig\Components\FeaturedMagazinesComponent {#10089 +magazine: null -twig: Twig\Environment {#1252 …} -repository: App\Repository\MagazineRepository {#9640 …} } |
|||