Illecors

Illecors, 7 months ago

That’s… Not at all how it works.

Don’t worry, you’re one of today’s lucky 10000!

Launcher on android is just that - an app to launch other apps. Other apps can and do run in the background, without ever being explicitly launched. Think play services, location provider, wifi connection manager, etc. Since google runs its stuff at the highest level - nothing can hide from it. Other apps, like netflix, utilise internal telemetry. Assholes like facebook push the boundaries to the limit and collect literally every input of every sensor to have as much data about your environment as possible.

TL;DR - custom launcher cool, but no cure.

Illecors, 7 months ago

Just in case you’re not a troll - host it yourself. It’s federated, like lemmy. You don’t need to be able to program.

Illecors, 7 months ago

Is it actually dangerous to run Firefox as root?

Yes, very. This is not specific to Firefox, but anything running as root gets access to everything. Only one thing has to go wrong for the whole system to get busted.

usually logged into KDE Plasma as root.

Please don’t do this! DEs are not tested to be run as root! Millions of lines of code are expected to not have access to anything they shouldn’t have and as such might be built to fail quietly if accessing something they shouldn’t in the first place. Same thing applies to Firefox, really.

Illecors, 7 months ago (edited 5 months ago)

Sorry, this is very much a PEBKAC issue. This is a excerpt from my tmux config:

<span style="color:#323232;"># Start windows and panes at 1, not 0
</span><span style="color:#323232;">set -g base-index 1
</span><span style="color:#323232;">setw -g pane-base-index 1
</span><span style="color:#323232;">
</span><span style="color:#323232;"># Use Alt-arrow keys without prefix key to switch panes
</span><span style="color:#323232;">bind -n M-Left select-pane -L
</span><span style="color:#323232;">bind -n M-Right select-pane -R
</span><span style="color:#323232;">bind -n M-Up select-pane -U
</span><span style="color:#323232;">bind -n M-Down select-pane -D
</span><span style="color:#323232;">
</span><span style="color:#323232;"># Shift arrow to switch windows
</span><span style="color:#323232;">bind -n S-Left  previous-window
</span><span style="color:#323232;">bind -n S-Right next-window
</span><span style="color:#323232;">
</span><span style="color:#323232;"># No delay for escape key press
</span><span style="color:#323232;">set -sg escape-time 0
</span><span style="color:#323232;">
</span><span style="color:#323232;"># Increase scrollback buffer size from 2000 to 50000 lines
</span><span style="color:#323232;">set -g history-limit 50000
</span><span style="color:#323232;">
</span><span style="color:#323232;"># Increase tmux messages display duration from 750ms to 4s
</span><span style="color:#323232;">set -g display-time 4000
</span><span style="color:#323232;">
</span><span style="color:#323232;"># Bind pane creation keys to reuse current directory
</span><span style="color:#323232;">bind % split-window -h -c "#{pane_current_path}"
</span><span style="color:#323232;">bind '"' split-window -v -c "#{pane_current_path}"
</span>

I hope the comments are self explanatory.

Scrolling works with Ctrl+b Page Up/Down. There are other shortcuts, but this is probably the most obvious. q to quit scrolling.

Ctrl+b d to detach from a session. tmux a to attach. As always, many options are available to have many named sessions running simultaneously, but that is for a later time.

Illecors, 7 months ago (edited 5 months ago)

I don’t know the specifics on Fedora’s installer, but normally that question is about disabling root account, not logging into a DE.

Not sure what else to elaborate here. There’s a bunch of code that is not tested to be run as root. A whole class of exploits becomes unavailable, if you stick to an unprivileged user.

Say there’s some exploit that allows some component of KDE to be used to read a file. If it’s running under an unprivileged user - it sucks. Everything in user’s homedir becomes fair game. But if it runs as root - it’s simply game over. Everything on the system is accessible. All config, all bad config, files of all applications (databases come to mind). Everything.

Illecors, 7 months ago

Do I need to disable compression on my swap subvolume?

wiki.archlinux.org/title/Btrfs#Swap_file

Is there anything else I should keep in mind for fstab if I want to, say, not keep track of my Downloads folder when snapshotting?

Just create a separate subvolume for it. Snapshots do not work recursively, so it will be left alone.

---

Mount options also only take effect on the first mount of the device. Since it looks like you only have 1 btrfs device - only / needs the options, really.

Illecors, 7 months ago

This is really cool! Thanks for sharing!

Illecors, 8 months ago

I remember seeing the video of this. The guy was doing it for shits and giggles, but it ended up looking great!

Illecors, 8 months ago (edited 6 months ago)

Do yourself a favour and don’t host it, yet. Lemmy is not quality software. You have 3 options here:

• pay someone to take care of it for you
• learn more about computer management and computers in general, first; then host it
• ignore the first two options, which will inevitably lead to your instance crashing and burning

Best of luck!

Illecors, 8 months ago (edited 6 months ago)

Most of them.

• Debian world - apt sucks. For something with a sole purpose of resolving a dependency tree, it’s surprisingly bad at that.
• Redhat world - everything is soooo old. I can see why business people like it, buy I rarely, if ever, agree with business people.
• Opensuse world - I’ve only tried it once, probably 15 years ago. Didn’t really know my way around computers all that much at the time, but it didn’t click and I’ve left it. Later on I found out about their selling out to Microsoft and never bothered touching it again.
• Arch - it was my daily for a year or two. Big fan. It still runs my email. At some point the size of packages started to annoy me, though. Still has the best wiki. I’ve never really bothered with the spinoffs, as the model of Arch makes them useless and more problematic to deal with.

I’ve got the Gentoo bug now. For the first time I genuinely feel ~/. A lean, mean system of machines :)

Illecors, 8 months ago

Yes, it can be done. Not to the point of deleting your key (that makes no sense - you need the key), but ssh-agent is what you want. Add it to your shell config and it will only ask to be unlocked once per however often you define.

I have this function defined and called:

<span style="color:#323232;">function ssh-agent-setup() {
</span><span style="color:#323232;">    # SSH agent
</span><span style="color:#323232;">    pid_file="$HOME/.ssh/ssh-agent.pid"
</span><span style="color:#323232;">    SSH_AUTH_SOCK="$HOME/.ssh/ssh-agent.sock"
</span><span style="color:#323232;">    if [ -z "$SSH_AGENT_PID" ]
</span><span style="color:#323232;">    then
</span><span style="color:#323232;">      # no PID exported, try to get it from pidfile
</span><span style="color:#323232;">      SSH_AGENT_PID=$(cat "$pid_file")
</span><span style="color:#323232;">    fi
</span><span style="color:#323232;">
</span><span style="color:#323232;">    if ! kill -0 "$SSH_AGENT_PID" &> /dev/null
</span><span style="color:#323232;">    then
</span><span style="color:#323232;">      # the agent is not running, start it
</span><span style="color:#323232;">      rm "$SSH_AUTH_SOCK" &> /dev/null
</span><span style="color:#323232;">      >&2 echo "Starting SSH agent, since it's not running; this can take a moment"
</span><span style="color:#323232;">      eval "$(ssh-agent -s -a "$SSH_AUTH_SOCK")"
</span><span style="color:#323232;">      echo "$SSH_AGENT_PID" > "$pid_file"
</span><span style="color:#323232;">
</span><span style="color:#323232;">      >&2 echo "Started ssh-agent with '$SSH_AUTH_SOCK'"
</span><span style="color:#323232;">    fi
</span><span style="color:#323232;">    export SSH_AGENT_PID
</span><span style="color:#323232;">    export SSH_AUTH_SOCK
</span><span style="color:#323232;">}
</span><span style="color:#323232;">
</span><span style="color:#323232;">ssh-agent-setup
</span>

This way it stores the unlocked key in memory until the end of the session.

Illecors, 8 months ago

I get the same issue all the time lately. Search, click link, go back - clicked link gone, different results shown.

Illecors, 9 months ago

You can try fdisk.

If the partition table is there - create a new partition at the exact same location, of the exact same size.

If the partition table is not there - create *the exact same type (mbr vs gpt) partition table, then do the first if.

Fdisk should tell you that it found a filesystem signature. Do not wipe it.

Illecors, 9 months ago (edited 8 months ago)

Pulled pork. And then I wonder why I don’t do it more often, and then remember that I prefer homemade one, and then I realise :::: spoiler ain’t nobody got time for that :( https://i.imgflip.com/1f0umb.jpg

Illecors, 9 months ago

That is definitely not the point of this post.

Illecors, 9 months ago

I personally only run pihole and ublock origin. Pihole takes care of the most stuff, ublock picks up the leftovers where domain blocking is not good enough. I’d like to believe this saves some juice on battery powered devices, but I’ve never actually measured it nor noticed it.

Illecors, 9 months ago

What’s a fucking trumpet?

Illecors, 9 months ago

Honestly, for a long term usage like this a rolling release distro is better. I’ve never not had massive issues upgrading ubuntu release to release, but I’ve only ever had minor ones on arch and pretty much nothing on gentoo. Arch is bleeding edge, so can’t recommend it to you all that much and gentoo has some learning curve initially. But I’ve heard good things of whatever rolling names are from fedora and opensuse.

Illecors, 9 months ago

• LUKS
• Btrfs
• sway

Illecors, 10 months ago

AVs in Linux realm exist mostly for scanning windows stuff for email attachments, shared storage, etc.

Illecors, 10 months ago

Hasn’t made life hell, but the general dumb following of compliance has left me baffled:

• users must not be able to have a crontab. Crontab for users disabled.
• compliance says nothing about systemd timers, so these work just fine 🤦

I’ve raised it with security and they just shrugged it off. Wankers.

Illecors, 10 months ago

People have used the following to scam, lie, commit fraud, etc

• physical money
• digital money
• cryptocurrency
• whatsapp
• facebook
• twitter
• email
• sms
• phonecalls
• etc

I don’t think it’s the privacy bit that makes people do shit things.

Illecors, 10 months ago

All the possibilities are up to your vpn.

Illecors, 10 months ago

A friendly reminder that this prick saying something doesn’t make it true.