Firefox iOS is crippled by Apple’s policy. Orion browser has shown it’s possible to install Firefox extensions on iOS. Hope Firefox implements something similar.
Even the researcher who reported this doesn’t go as far as this headline.
“I am an admin, should I drop everything and fix this?”
Probably not.
The attack requires an active Man-in-the-Middle attacker that can intercept and modify the connection’s traffic at the TCP/IP layer. Additionally, we require the negotiation of either ChaCha20-Poly1305, or any CBC cipher in combination with Encrypt-then-MAC as the connection’s encryption mode.
[…]
“So how practical is the attack?”
The Terrapin attack requires an active Man-in-the-Middle attacker, that means some way for an attacker to intercept and modify the data sent from the client or server to the remote peer. This is difficult on the Internet, but can be a plausible attacker model on the local network.
It definitely receives more clicks. I’ve posted this link here a day ago, but arstechnicas title is more engaging. My first thought was whether there’s been another vulnerability found.
That said, this headline isn’t as bad as it could’ve been.
Yeah, if the attacker is in a position to do a MitM attack you have much larger problems than a ssh vulnerability that so far can at most downgrade the encryption of your connection in nearly all cases
It’s not wrong, as such, but simply not right. Since you’re using btrfs, having a separate partition for home makes little sense. I, personally, also prefer using a swapfile to a swap partition, but that’s potato/potato.
Alright, but actually I don’t think I’m maximizing my use of btrfs. I only use btrfs because of its compatibility with Linux Mint’s Timeshift tool. Would you be implying if I used btrfs for the whole partition, I can reinstall / without overwriting /home?
BTRFS has a concept called a subvolume. You are allowed to mount it just like any other device. This is an example /etc/fstab I’ve copied from somewhere some time ago.
/efi (or /boot, or /boot/efi, whatever floats your boat) still has to be a separate vfat partition, but all the other mounts are, technically speaking, the same partition mounted many times with a different subvolume set as the target.
Obviously, you don’t need to have all of them separated like this, but it allows you to fine tune the parts of system that do get snapshot.
I wanted to move my Arch VM to bare metal, so I copied out all the important bits. Then I wanted to move that copy to a new drive so I could boot into it.
I THOUGHT I’d MV all the files in the Arch install’s etc directory using sudo MV /etc …
I also (somehow) mashed my install’s etc with Arch’s and bungled both, with no live CD to help.
I learned a thing or two about absolute file paths…
Example: there’s another user with sudo access, he has access to my home folder, encrypting the drive doesn’t solve anything. Or maybe you just are not the system administrator.
It’s not my usecase, but it’s definitely a reasonable situation.
Unless some sandboxing or other explicit security measure is in place, any software you run typically has access to your entire home directory, including .ssh/. If any one of those was compromised somehow, they’ve got access to your SSH keys.
Just checked my own sshd configs and I don’t use CBC in them. I’ve based the kex/cipher/Mac configs off of cipherlist.eu and the mozilla docs current standards. Guess it pays to never use default configs for sshd if it’s ever exposed to the Internet.
Edit: I read it wrong. It’s chacha20 OR CBC. I rely heavily on the former with none of the latter.
It’s a little puzzling to me that Linux isn’t popular in low-income countries. Why wouldn’t it be the OS of choice there? Do we need to become linux missionaries? I imagine it would be easier to convince people who can’t buy an iPhone to use FLOSS than those who can drive to an Apple Store and waddle over to get yet another one.
They know little about open source. Microsoft is exclusively in schools and government, and that is what they grow up with. They probably know more about pirating Windows, than using Linux legally. There is also a good kick-back in terms of MS license mark-ups for middle-men businesses. One would hope there is some mandatory education around different OSs as I’m sure kids would love to explore and modify software.
is this community the Peertube channel? through Newpipe i can see peertube comments (even lemmy accounts!) but on that community i see none. also the lammy client might be an issue…?
i’m really exited about this, now i’ll be able to correct people wrong on the internet like i can’t do on youtube videos!!
Lemmy “communities”, PeerTube “channels”, Mobilizon “Groups”, Kbin “magazines”, and Mastodon “Groups” are all functionally the same thing in the Fedi.
You can follow Lemmy communities on Mastodon as well, it just has a different (bad) UI. That’s why you’ll occasionally see users on Lemmy annoyingly @ 12 people in a reply.
yes i’ve interacted with mastodon users here through lemmy, but am still figuring out how i get on the other platforms from here
thanks for the clarification!
now i’ll get a mastoson client to follow communities on lemmy, hop on peertube comments from here and hopefully lurk on mastodon from newpipe muAHAHaHahHahah
am still figuring out how i get on the other platforms from here
Not sure what you mean by that. You can’t log into a Mastodon server with a Lemmy account. And I don’t think you can follow a Mastodon user from Lemmy. They’re just designed to be separate, for good reason.
I’m at college at the moment, so printing is essential for me, right now I can’t print on my desktop but my laptop can do it fine, but yeah that was the final step fot the shift
My personal favorite is Debian. I'm the IT director at my job, and 90% of our machines, including end user workstations, are running some form of Linux.
One really nice thing is that most stuff is saved somewhere in your home directory. You can switch between all sorts of distros, and if you install the same software, browser, email client, etc. most of your stuff will automatically be there and work out of the box.
I didn’t know this for a long while when distro hopping and since every distro tinkered with grub etc and I really hated debugging grub, and I was afraid of something happening to my home directory, I overwrote it every single time. I wish I have had a separate drive just for it when I began with linux.
linux
Active
This magazine is from a federated server and may be incomplete. Browse more on the original instance.