@GustavoM@lemmy.world
@GustavoM@lemmy.world avatar

GustavoM

@GustavoM@lemmy.world

Definitely Not GustavoM. :^)

This profile is from a federated server and may be incomplete. Browse more on the original instance.

GustavoM,
@GustavoM@lemmy.world avatar

“But can Linux install things via a single .exe file? HAHAH EAT IT NERD!”

  • 10’ish years ago past me, before discovering the magical wonders of the package manager
GustavoM, (edited )
@GustavoM@lemmy.world avatar

Curiosity, mostly. And Ubuntu giving away freebies.

Took me a couple years to get out of the “Why change a winning team?” mentality and my baby duck syndrome.

GustavoM,
@GustavoM@lemmy.world avatar

Arch on my “desktop PC”, Armbian on my rpi 4, Dietpi soon ™ on my Orange pi zero 3.

GustavoM,
@GustavoM@lemmy.world avatar

Stop talkimg about your ex, Cartman.

Preparing to move from Ubuntu to Fedora

Hi! I’m seeking some advice and sanity check on hopping from Ubuntu to Fedora on my personal PC. I’ve been using Ubuntu LTS for almost two years now, switched from Windows and never looked back. But I cannot say I know Linux well. I use my PC for browsing, some gaming with Steam (I have AMD GPU), occasional video editing,...

GustavoM,
@GustavoM@lemmy.world avatar

Yep. Did this on my orange pi zero 3 (which has no support on Linux) and it worked. :^)

GustavoM,
@GustavoM@lemmy.world avatar

This. Edit /etc/sources/apt, switch to sid, sudo apt update and you’ll have “a better ubuntu.”

Wanting to improve my Linux skills after 17 months of daily driving Linux

I’ve been daily driving Linux for 17 months now (currently on Linux Mint). I have got very comfortable with basic commands and many just works distros (such as Linux Mint, or Pop!_OS) with apt as the package manager. I’ve tried Debian as a distro to try to challenge myself, but have always ran into issues. On my PC, I could...

GustavoM,
@GustavoM@lemmy.world avatar

I drink water. So does my wife. Haha

GustavoM,
@GustavoM@lemmy.world avatar

Any distro is “stable” if you know how to use it.

A-bleeping-men. All GNU/Linux distros are equally good.

Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]

Title. Long,short story: creating or editing files with nano as my non-root user gives (the file) elevated privileges, like I have ran it w/ sudo or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL,...

GustavoM,
@GustavoM@lemmy.world avatar

I already talked about it in this thread – it shows my sudoer username on both columns.

GustavoM,
@GustavoM@lemmy.world avatar

No. ps aux remains the same. And yes, “My sudoer username” is my non-root user with sudo privileges. Therefore, the “sudoer”.

And I’m not really “pulling my hair out” because of this, honestly – just curious if this can be mentioned as a hack, a hack attempt, or whatevertheheck. Because this is the first time in my entire life that this happened with me, so yep.

GustavoM, (edited )
@GustavoM@lemmy.world avatar

Just adding more (relevant) info, since its my “security hole” as of now. As mentioned in the OP.

100% vanilla distribution challenge

what does this consist of? Well, it’s easy, whenever you install a new distribution of Linux, don’t customise anything, nothing please!! Out of the box experience, you may install software but that’s all. And if you are already using a customised distro, then delete the .config file and reboot, but please be careful and...

GustavoM,
@GustavoM@lemmy.world avatar

So… install a minimal distro image and the usual with the only caveat of being forced to type something that I want to run in the CLI instead of setting up hotkeys? Such challenge, much horror.

deleted_by_author

    •
    GustavoM,
    @GustavoM@lemmy.world avatar

    I also cried internally when I saw Doom (“classic”) running at my Linux distro for the first time.

    Just you wait until you find out you can (almost) break the OS yet still make it work.

    GustavoM,
    @GustavoM@lemmy.world avatar

    OH COME ON MAN

    GustavoM,
    @GustavoM@lemmy.world avatar

    Imagine you are having a great time with someone of the opposite sex and suddenly s/he starts to eat you.

    Literally.

    Anyone want to try this "nyancat" docker image? It's pretty big -- 23kIB. :^) (hub.docker.com)

    Long, short story: CLI animation with some minor annoyances. “Handcrafted” most of em out of the .c file, followed by a bunch of gcc flags. Made it distroless, and this came up. Then my “sharing itch” started after checking the memory usage of the container at a whooping 0 bytes. (I know it must be way more than that,...

    GustavoM,
    @GustavoM@lemmy.world avatar

    Eh…the usual “FROM: alpine:edge”, pull everything in with git, change the code as needed, static compiling everything, strip dead code out of the binary, send the binary in a scratch image and then assigning a non-root user to it.

    GustavoM,
    @GustavoM@lemmy.world avatar

    Oh. Thank you then. :p

    GustavoM,
    @GustavoM@lemmy.world avatar

    Glad to hear! Thanks.

    GustavoM,
    @GustavoM@lemmy.world avatar

    Eh, that was meant to be a slight mockery for “ex-redditors” (since they are mostly composed of “downvote-happy” users).

    GustavoM,
    @GustavoM@lemmy.world avatar

    Because I’m doing this as a “self-learning” process. Plus, docker is an excellent tool and even “silly” images like this one can give me an edge while looking for (more) jobs, so there’s that. Coding could grant me the same “edge” as well yes, but docker has “more value” since it requires you to code -AND- to have some knowledge/depth regarding typical “dockerization” processes.

    GustavoM,
    @GustavoM@lemmy.world avatar

    Eh, I don’t have anything “complex” to add, other than buying a raspberry pi and using it as a DNS sinkhole/recursive dns under docker/ipvlan network, and then “hiding” it behind a macvlan connection + ufw. Been doing this over several years and never had any problems with it. You can even use it as a music player of sorts by configuring a hotkey to bring up mpv with a playlist, and another one to close it. Oh, and even as a “live stream player 24/7” if you are into it.

    Recommend security-first basic Linux Apps! (github.com)

    As part of the effort of making a “Chromebook-like” secure, autoupdating, cloud-native, “unbreakable” (but still free and privacy-friendly) Distro, I would like some of your recommendations on especially secure software, that could replace common ones like File managers, Archive Managers, PDF reader, Image viewer etc....

    GustavoM,
    @GustavoM@lemmy.world avatar

    firejail

    ufw

    And docker if you are paranoid. (You can completely shut off the network of specific commands – can’t get any better (and safer) than that!).

    GustavoM,
    @GustavoM@lemmy.world avatar

    Not really relevant, but I’ve got a “rule of thumb” for all security-related issues;

    “If it doesn’t nuke my PC, then I’m good. If it does, then I’m still good since backups and logs exist, and if it was related to the latest seucirty issue? Then I make a quick patch and/or update. Then back to 1.”

    GustavoM,
    @GustavoM@lemmy.world avatar

    …and also, good ol’ baby duck syndrome.

    Even then, gaming was 100% doable/acceptable at that time. Even not (just) a year back, but a COUPLE years back.

    How exactly "secure" is a container with all capabilities dropped, distroless, with a custom rootfs directory, a static, single binary with chmod set at 100 and file ownership pointed to non-root u...

    ser*, and said non-root user being “nonexistant” (i.e set via ENV)? Can such container -STILL- be exploited/breached through malicious means? Forgot to mention that its a DOCKER container @ title, but there you have it. Just curious....

    GustavoM,
    @GustavoM@lemmy.world avatar

    Fair enough. Thank you for your input.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • localhost
  • All magazines
    •
    Loading…
    Loading the web debug toolbar…
    Attempt #