[gentoo-user] Re: I guess it is time to update udev from 171-r10 to 197-r8...
On 2013-03-17, Tanstaafl wrote: On 2013-03-17 2:17 PM, Neil Bothwick n...@digimed.co.uk wrote: On Sun, 17 Mar 2013 13:46:39 -0400, Tanstaafl wrote: Also, should I manually fix the blockers: [blocks B ] sys-apps/module-init-tools (sys-apps/module-init-tools is blocking sys-apps/kmod-12-r1) [blocks B ] sys-apps/kmod (sys-apps/kmod is blocking sys-apps/module-init-tools-3.16-r2) by doing emerge -C module-init-tools emerge kmod *before* upgrading udev? No, because that adds kmod to world. Just unmerge module-init-tools and then emerge world, letting portage install what it needs Ah, ok... but as for the rest... I should be able to safely upgrade udev, with a reasonable (I know there are no guarantees) expectation of everything 'just working' (ie, my lvm managed /usr partition shouldn't be an issue like it would have been earlier on in this process)? From what I know (no LVM experience here), if you had it working with 171, it will work with a newer udev. There were no changes regarding how stuff from /usr is used between 171 and the newer udevs. -- Nuno Silva (aka njsg) http://njsg.sdf-eu.org/
Re: [gentoo-user] Re: I guess it is time to update udev from 171-r10 to 197-r8...
On 2013-03-18 4:18 AM, (Nuno Silva) nunojsi...@ist.utl.pt wrote: On 2013-03-17, Tanstaafl wrote: Ah, ok... but as for the rest... I should be able to safely upgrade udev, with a reasonable (I know there are no guarantees) expectation of everything 'just working' (ie, my lvm managed /usr partition shouldn't be an issue like it would have been earlier on in this process)? From what I know (no LVM experience here), if you had it working with 171, it will work with a newer udev. There were no changes regarding how stuff from /usr is used between 171 and the newer udevs. Well, there were 'big scary warnings'(tm) a while back that screamed of major breakage with the newer udevs for those poor lost souls who had /usr on a separate partiton (lvm managed or not), then, at some later point, I guess because of the 'wailing and gnashing of teeth'(tm), the devs relented and changed things so that a separate /usr was supported except under certain specific circumstances... but since I'm not a programmer, I didn't (and still don't) understand most of it, hence my asking for confirmation here... My system is fairly simple, all local storage, with only /usr, /var and /home on separate lvm managed partitions (root is *not* on lvm)... So, I'm here asking if anyone who had waited (masked everything above 171) has unmasked it and updated since, and whether or not they had any problems booting afterwards... Thanks, Charles
Re: [gentoo-user] Re: I guess it is time to update udev from 171-r10 to 197-r8...
On 18/03/2013 12:14, Tanstaafl wrote: On 2013-03-18 4:18 AM, (Nuno Silva) nunojsi...@ist.utl.pt wrote: On 2013-03-17, Tanstaafl wrote: Ah, ok... but as for the rest... I should be able to safely upgrade udev, with a reasonable (I know there are no guarantees) expectation of everything 'just working' (ie, my lvm managed /usr partition shouldn't be an issue like it would have been earlier on in this process)? From what I know (no LVM experience here), if you had it working with 171, it will work with a newer udev. There were no changes regarding how stuff from /usr is used between 171 and the newer udevs. Well, there were 'big scary warnings'(tm) a while back that screamed of major breakage with the newer udevs for those poor lost souls who had /usr on a separate partiton (lvm managed or not), then, at some later point, I guess because of the 'wailing and gnashing of teeth'(tm), the devs relented and changed things so that a separate /usr was supported except under certain specific circumstances... but since I'm not a programmer, I didn't (and still don't) understand most of it, hence my asking for confirmation here... My system is fairly simple, all local storage, with only /usr, /var and /home on separate lvm managed partitions (root is *not* on lvm)... So, I'm here asking if anyone who had waited (masked everything above 171) has unmasked it and updated since, and whether or not they had any problems booting afterwards... No issues here. I have a variety of systems with different configs. I followed the elog and news messages: DEVTMPFS enable in kernel edit fs type for /dev IF listed in fstab Remove all those persistent-rules files remove udev-postmount from runlevels and every time it all worked out find. The one case I don't have is / in lvm or code in /usr needed at early-start time; I think that was the key thing and nicely side-stepped any possible lurking issues -- Alan McKinnon alan.mckin...@gmail.com
Re: [gentoo-user] I guess it is time to update udev from 171-r10 to 197-r8...
Ok, spent a little time re-reading the old threads about this... Just to confirm, changes I should make in my /etc/fstab... snip normal fs lines # NOTE: The next line is critical for boot! none /proc procdefaults0 0 I can/should simply delete the above two lines? then # glibc 2.2 and above expects tmpfs to be mounted at /dev/shm for # POSIX shared memory (shm_open, shm_unlink). # (tmpfs is a dynamically expandable/shrinkable ramdisk, and will # use almost no memory if not populated with files) shm /dev/shmtmpfsnodev,nosuid,noexec 0 0 I should change the above line to: tmpfs /dev/shmtmpfsnodev,nosuid,noexec 0 0 Combined with the other recommended changes: - Remove udev-postmount from runlevels. - Enable CONFIG_DEVTMPFS=y in the kernel; I've also seen recommendation to enable: CONFIG_DEVTMPFS_MOUNT=y ? need to verify the fstype for possible /dev line in /etc/fstab is devtmpfs (and not, for example, tmpfs) I have no /dev line, and only one network adapter, so nothing to do here - The case of separate /usr; if it worked for you with 171 it will continue to work for you with 197 (or newer). We still recommend initramfs with separate /usr mounting capabilities because you might need packages like sys-apps/kbd (keymaps in /usr) or net-wireless/bluez (possible keyboard) in early boot. Ok, this one is unclear... My system is currently indeed (and always has been) booting fine with a separate /usr (on lvm)... but... The above reference to 'might need packages like sys-apps/kbd', which is now *required* by udev, suggests that now I again do need an initramsf? Thanks for ya'lls patience. I have a feeling this is going to be another non-event, but I'd much prefer a little pre-update pain than a lot of post-update pain... ;)
Re: [gentoo-user] Emerge problems
meino.cra...@gmx.de writes: FIXED! The problem seemed to be *~-file in package.use left from my last vim session...sigh Huh? I once filed a request that *.bck files should be ignored, because NEdit creates such files per default, and was told that they already ignore those. https://bugs.gentoo.org/show_bug.cgi?id=346075 Alex
Re: [gentoo-user] I guess it is time to update udev from 171-r10 to 197-r8...
On Mon, 18 Mar 2013 07:15:39 -0400, Tanstaafl wrote: Thanks for ya'lls patience. I have a feeling this is going to be another non-event, but I'd much prefer a little pre-update pain than a lot of post-update pain... ;) quickpkg udev before the update. Then if it all goes TU, you can boot from a live disc and untar the package into your root directory. -- Neil Bothwick Remember that the Titanic was built by experts, and the Ark by a newbie signature.asc Description: PGP signature
[gentoo-user] Re: HTML editor WYSIWYG
On 2013-03-17, Joseph syscon...@gmail.com wrote: Any recommendation for HTML editor Graphical. I've tried to use Open Office but it not user friendly. There's no such thing as a WYSIWYG HTML editor, since WYG depends on the redering engine, display size, and various browser settings... -- Grant Edwards grant.b.edwardsYow! Clear the laundromat!! at This whirl-o-matic just had gmail.coma nuclear meltdown!!
[gentoo-user] Can I chroot to a folder?
Hi list, I want to install a samba server using Gentoo. But I decided to start the installation o my machine and make a stage4 at some folder. The idea is to spent less time at the target machine. But, when I try to chroot, I get the error: chroot: failed to run command '/bin/bash': Permission Denied the permitions are ok: ls -l /media/outro/gentoo/bin/bash -rwxr-xr-x 1 root root 737808 Jan 30 02:55 /media/outro/gentoo/bin/bash Do I need to create a partition just for this? Thank you, -- João de Matos Linux User #461527
Re: [gentoo-user] Can I chroot to a folder?
Am 18.03.2013 19:43, schrieb João Matos: Do I need to create a partition just for this? no
Re: [gentoo-user] Can I chroot to a folder?
On Mon, Mar 18, 2013 at 1:43 PM, João Matos jaon...@gmail.com wrote: Hi list, I want to install a samba server using Gentoo. But I decided to start the installation o my machine and make a stage4 at some folder. The idea is to spent less time at the target machine. But, when I try to chroot, I get the error: chroot: failed to run command '/bin/bash': Permission Denied the permitions are ok: ls -l /media/outro/gentoo/bin/bash -rwxr-xr-x 1 root root 737808 Jan 30 02:55 /media/outro/gentoo/bin/bash Is that partition mounted with noexec option? or user option without explicit exec option? Do I need to create a partition just for this? Nope
Re: [gentoo-user] Re: HTML editor WYSIWYG
sublimetext is nice, not OSS though:/ -Andy On Mon, Mar 18, 2013 at 9:10 AM, Grant Edwards grant.b.edwa...@gmail.comwrote: On 2013-03-17, Joseph syscon...@gmail.com wrote: Any recommendation for HTML editor Graphical. I've tried to use Open Office but it not user friendly. There's no such thing as a WYSIWYG HTML editor, since WYG depends on the redering engine, display size, and various browser settings... -- Grant Edwards grant.b.edwardsYow! Clear the laundromat!! at This whirl-o-matic just had gmail.coma nuclear meltdown!!
Re: [gentoo-user] Can I chroot to a folder?
2013/3/18 Paul Hartman paul.hartman+gen...@gmail.com On Mon, Mar 18, 2013 at 1:43 PM, João Matos jaon...@gmail.com wrote: Hi list, I want to install a samba server using Gentoo. But I decided to start the installation o my machine and make a stage4 at some folder. The idea is to spent less time at the target machine. But, when I try to chroot, I get the error: chroot: failed to run command '/bin/bash': Permission Denied the permitions are ok: ls -l /media/outro/gentoo/bin/bash -rwxr-xr-x 1 root root 737808 Jan 30 02:55 /media/outro/gentoo/bin/bash Is that partition mounted with noexec option? or user option without explicit exec option? problem solved :) Do I need to create a partition just for this? Nope -- João de Matos Linux User #461527 Graduando em Engenharia de Computação 2005.1 UEFS - Universidade Estadual de Feira de Santana
Re: [Bulk] Re: [gentoo-user] Can I chroot to a folder?
Is that partition mounted with noexec option? or user option without explicit exec option? problem solved :) You know you can bind mount just the directories you want with exec but as interpreters don't check this mount option, it's not as effective as it could be ;-( -- ___ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) ___
Re: [Bulk] Re: [gentoo-user] Re: HTML editor WYSIWYG
sublimetext is nice, not OSS though Netbeans is quite useful for html5. Also chrome and firefox have good developer options so you can try changes and see them without a refresh. When I load my pages in a browser they are fine but in every WYSIWYG editor I have tried they are desimated to unreadable, though I do do width scaling without javascript ;-). -- ___ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) ___
Re: [gentoo-user] Re: Gentoo speed comparison to other distros
On 15 March 2013, at 17:32, Kevin Chadwick wrote: If you use the Gentoo hardened Tinfoil Linux you will need lots of ram and wait ages to boot but firefox will just pop up. I'm sorry, I don't understand this statement. Could you possibly explain, please? It's one of Blueness projects based on Hardened Gentoo. It loads into ram at boot (you need something like 4 gig of ram) which takes ages from dvd but could be from an ssd/hdd (defeating half the point without a ro switch though). It can update from the net once booted too. Once done everythings in ram so firefox can literally pop up like a web advert upon execution. -- ___ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) ___
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
Wait, K9 Mail doesn't have a plain text option? Perhaps I shouldn't be surprised, as I am also unable to comprehend why K9 might enforce top-posting on replies. K9 Mail can do both plain text and bottom posting. Both set in Account settings/Sending mail. It can write but forces html onto users, which potentially includes jpg exploits, png exploits, html exploits, script exploits, font exploits... And before you say anything. For what benefit, annoying ads from paypal. I am quite capable of opening a browser and deciding which domains *I* trust?? Google's network fell into this trap and banned Windows, but did they fix the real problem or just raise the bar a little (though I expect they took other unreleased measures that would be more interesting)? Would be even worse on Iphones where webkit is forced and so as old as the rom image. Rom cycle time is a major reason why even on cyanogenmod I use firefox over the chrome package which is ancient. Of course on Apple laptops even, Safari's webkit is sometimes months old anywhow. Having knocked Android, I haven't found the time to try the latest native email app. I'm not expecting a no html option but I'm pretty sure it will have some major pluses over k9mail, which was a trade of good for bad on Gingerbread. -- ___ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) ___
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
On 03/18/2013 04:38 PM, Kevin Chadwick wrote: Wait, K9 Mail doesn't have a plain text option? Perhaps I shouldn't be surprised, as I am also unable to comprehend why K9 might enforce top-posting on replies. K9 Mail can do both plain text and bottom posting. Both set in Account settings/Sending mail. It can write but forces html onto users, which potentially includes jpg exploits, png exploits, html exploits, script exploits, font exploits... And before you say anything. For what benefit, annoying ads from paypal. I am quite capable of opening a browser and deciding which domains *I* trust?? Google's network fell into this trap and banned Windows, but did they fix the real problem or just raise the bar a little (though I expect they took other unreleased measures that would be more interesting)? Would be even worse on Iphones where webkit is forced and so as old as the rom image. Rom cycle time is a major reason why even on cyanogenmod I use firefox over the chrome package which is ancient. Of course on Apple laptops even, Safari's webkit is sometimes months old anywhow. Having knocked Android, I haven't found the time to try the latest native email app. I'm not expecting a no html option but I'm pretty sure it will have some major pluses over k9mail, which was a trade of good for bad on Gingerbread. I don't know what mail client you use (I suppose I could check your headers), but *every* mail client I've used disables loading remote content by default. Further, you're ranting about users being forced to send email with HTML, intimating that this means they'll send exploit-laden messages to their recipients. That's patently silly; the people forced to send HTML emails aren't going to be sending exploits. That's like suggesting that people forced to drive to work are forced to commit vehicular manslaughter... It's the recipient of the email who has the burden of remaining secure, and this is possible largely through simply disabling loading rich media by default. Again, most mail clients disable loading remote media by default, and most I've used support disabling packaged media as well. signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] Re: Gentoo speed comparison to other distros
On 03/18/2013 04:21 PM, Kevin Chadwick wrote: On 15 March 2013, at 17:32, Kevin Chadwick wrote: If you use the Gentoo hardened Tinfoil Linux you will need lots of ram and wait ages to boot but firefox will just pop up. I'm sorry, I don't understand this statement. Could you possibly explain, please? It's one of Blueness projects based on Hardened Gentoo. It loads into ram at boot (you need something like 4 gig of ram) which takes ages from dvd but could be from an ssd/hdd (defeating half the point without a ro switch though). It can update from the net once booted too. Once done everythings in ram so firefox can literally pop up like a web advert upon execution. In other words, it's a distribution designed to not allow persistent storage that might possibly be poisoned, and instead get much of its security-conscious code updated over the network. The just pops up being referred to simply comes from everything being loaded into the kernel file cache before you can do anything with the system. (Frankly, this sounds quite nice for kiosk environments.) signature.asc Description: OpenPGP digital signature
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
I don't know what mail client you use (I suppose I could check your headers), but *every* mail client I've used disables loading remote content by default. Except the content within the message. Why do you assume I am talking about remote content. Further, you're ranting about users being forced to send email with HTML, intimating that this means they'll send exploit-laden messages to their recipients. I am not. On 03/18/2013 04:38 PM, Kevin Chadwick wrote: It can write but forces html onto users, You seem to miss some of the details. I'll find time to respond on ipv6 too at some point ;-) -- ___ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) ___
Re: [gentoo-user] Re: Gentoo speed comparison to other distros
It's one of Blueness projects based on Hardened Gentoo. It loads into ram at boot (you need something like 4 gig of ram) which takes ages from dvd but could be from an ssd/hdd (defeating half the point without a ro switch though). It can update from the net once booted too. Once done everythings in ram so firefox can literally pop up like a web advert upon execution. In other words, it's a distribution designed to not allow persistent storage that might possibly be poisoned, Not really, that is one benefit, but don't forget that BIOS, HDD or Video card firmware could have been altered. The main goals are reliability and leave no trace elements but it does have some added tamper ensurance yes. I didn't spell it out because you should check the site to see all the details and would be bound to get it a little wrong without checking myself. and instead get much of its security-conscious code updated over the network. Security conscious code??? What do you mean? That says to me things like PAX brute force protection?? Even though it is from a DVD it can be updated just like standard linux. The problem is, if you run out of ram then things get killed. (Frankly, this sounds quite nice for kiosk environments.) Could be if you have a good enough network connection for Linux kernel updates or cut it right down ;-) -- ___ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) ___
Re: [gentoo-user] Re: Gentoo speed comparison to other distros
On 03/18/2013 05:38 PM, Kevin Chadwick wrote: It's one of Blueness projects based on Hardened Gentoo. It loads into ram at boot (you need something like 4 gig of ram) which takes ages from dvd but could be from an ssd/hdd (defeating half the point without a ro switch though). It can update from the net once booted too. Once done everythings in ram so firefox can literally pop up like a web advert upon execution. In other words, it's a distribution designed to not allow persistent storage that might possibly be poisoned, Not really, that is one benefit, but don't forget that BIOS, HDD or Video card firmware could have been altered. Sure. The main goals are reliability and leave no trace elements but it does have some added tamper ensurance yes. I didn't spell it out because you should check the site to see all the details and would be bound to get it a little wrong without checking myself. and instead get much of its security-conscious code updated over the network. Security conscious code??? What do you mean? That says to me things like PAX brute force protection?? I mean everything that gets updated more frequently owing to its being a high-profile target in security contexts. Web browsers. Mail clients. Listening daemons. Having a static image that you need to update every time you boot is a bit like plugging in an unpatched Windows machine that you need to run updates on...every time you boot. It's a tad silly in that respect. Even though it is from a DVD it can be updated just like standard linux. The problem is, if you run out of ram then things get killed. (Frankly, this sounds quite nice for kiosk environments.) Could be if you have a good enough network connection for Linux kernel updates or cut it right down ;-) Local gigabit is cheap, and a gigabit connection would transfer the image in under a minute. A bit more, of course, if you've got an overloaded server being slammed by ten or twenty machines. (I wonder if one can anycast TFTP on a local segment. Hm. I think you could just barely pull it off, since you'd have resolved the layer 2 address for your syn packet, and that should stick with the connection.) signature.asc Description: OpenPGP digital signature
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
On Mon, 18 Mar 2013 20:38:11 +, Kevin Chadwick wrote: K9 Mail can do both plain text and bottom posting. Both set in Account settings/Sending mail. It can write but forces html onto users, which potentially includes jpg exploits, png exploits, html exploits, script exploits, font exploits... What are you talking about? K9 forces HTML on no one, it sends plain text if you set it to do so. Having knocked Android, I haven't found the time to try the latest native email app. I'm not expecting a no html option but I'm pretty sure it will have some major pluses over k9mail, which was a trade of good for bad on Gingerbread. K9 is not Android, any more than yourfavouriteemailer is Linux. It is a program that runs on Android. As for being less capable than the native app, the opposite is the case as it is based on the code from the native app, but actively developed. -- Neil Bothwick Pedestrians come in two types: Quick or Dead. signature.asc Description: PGP signature
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
On Mon, 18 Mar 2013 19:16:52 -0400 Michael Mol mike...@gmail.com wrote: On 03/18/2013 04:38 PM, Kevin Chadwick wrote: It can write but forces html onto users, You seem to miss some of the details. About that. See the attachment. It's a screenshot of the setting in K-9 where you can select composition methods. I took the screenshot on my own phone. (And then ran it through pngcrush -brute in deference to ML bandwidth...) I knew that perfectly well?? You even missed the quote? I only wrote two lines and you still missed it never mind the examples I had given in my original mail that do not only apply to remote content and that you wrongly interpreted. There is a security saying. Assumption is the mother of all f
Re: [gentoo-user] Re: Gentoo speed comparison to other distros
On Mon, 18 Mar 2013 19:28:04 -0400 Michael Mol mike...@gmail.com wrote: Even though it is from a DVD it can be updated just like standard linux. The problem is, if you run out of ram then things get killed. (Frankly, this sounds quite nice for kiosk environments.) Could be if you have a good enough network connection for Linux kernel updates or cut it right down ;-) Local gigabit is cheap, and a gigabit connection would transfer the image in under a minute. A bit more, of course, if you've got an overloaded server being slammed by ten or twenty machines. (I wonder if one can anycast TFTP on a local segment. Hm. I think you could just barely pull it off, since you'd have resolved the layer 2 address for your syn packet, and that should stick with the connection.) Kiosks are notorious for having difficulty in getting to connections as there place is determined by other factors. Still it may make a good choice of OS except for reboot time.
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
On Mon, 18 Mar 2013 23:38:11 + Neil Bothwick n...@digimed.co.uk wrote: K9 Mail can do both plain text and bottom posting. Both set in Account settings/Sending mail. It can write but forces html onto users, which potentially includes jpg exploits, png exploits, html exploits, script exploits, font exploits... What are you talking about? K9 forces HTML on no one, it sends plain text if you set it to do so. If you receive a html email you have no choice but to execute code to handle as per my above examples. Having knocked Android, I haven't found the time to try the latest native email app. I'm not expecting a no html option but I'm pretty sure it will have some major pluses over k9mail, which was a trade of good for bad on Gingerbread. K9 is not Android, any more than yourfavouriteemailer is Linux. It is a program that runs on Android. As for being less capable than the native app, the opposite is the case as it is based on the code from the native app, but actively developed. Googles mail is part of android and they do maintain it. I maintain that while k9 has some improvements it also breaks things and I guess would have not seen light without Googles initial efforts.
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
On Tue, 19 Mar 2013 00:15:34 +, Kevin Chadwick wrote: What are you talking about? K9 forces HTML on no one, it sends plain text if you set it to do so. If you receive a html email you have no choice but to execute code to handle as per my above examples. That applies to mails from any software set to send as email, it is not specific to K9, Android or the price of fish. K9 is not Android, any more than yourfavouriteemailer is Linux. It is a program that runs on Android. As for being less capable than the native app, the opposite is the case as it is based on the code from the native app, but actively developed. Googles mail is part of android and they do maintain it. I maintain that while k9 has some improvements it also breaks things and I guess would have not seen light without Googles initial efforts. Are you referring to the Googlemail or the Mail program on Android, they are completely different? But I guess there's no defence against such specific accusations as it breaks things. -- Neil Bothwick Bang on the LEFT side of your computer to restart Windows signature.asc Description: PGP signature
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
On 03/18/2013 08:15 PM, Kevin Chadwick wrote: On Mon, 18 Mar 2013 23:38:11 + Neil Bothwick n...@digimed.co.uk wrote: K9 Mail can do both plain text and bottom posting. Both set in Account settings/Sending mail. It can write but forces html onto users, which potentially includes jpg exploits, png exploits, html exploits, script exploits, font exploits... What are you talking about? K9 forces HTML on no one, it sends plain text if you set it to do so. If you receive a html email you have no choice but to execute code to handle as per my above examples. Either you ignored what I said about being able to disable loading remote content and being able to disable showing inline rich content, or you're seriously concerned about HTML parser vulnerabilities. If that's the case, set up a defanging filter for your email. Having knocked Android, I haven't found the time to try the latest native email app. I'm not expecting a no html option but I'm pretty sure it will have some major pluses over k9mail, which was a trade of good for bad on Gingerbread. K9 is not Android, any more than yourfavouriteemailer is Linux. It is a program that runs on Android. As for being less capable than the native app, the opposite is the case as it is based on the code from the native app, but actively developed. Googles mail is part of android and they do maintain it. I maintain that while k9 has some improvements it also breaks things and I guess would have not seen light without Googles initial efforts. I'm really not sure what Google's native client (or K9) breaks. I use K9 because I require GPG support for communicating with one of my clients. signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] Re: HTML editor WYSIWYG
On Monday 18 March 2013 14:10:40 Grant Edwards wrote: There's no such thing as a WYSIWYG HTML editor Depends. Kompozer is built on the Firefox tree, so if Firefox gives you what you want to see, Kompozer will be WYSIWYG.. On the other hand, its HTML is not pure, the application is buggy and it hasn't been updated for a year or two. I made extensive use of it while developing my choir's website, but mostly for its very useful help with CSS. If I were starting out again, which I may do soon, I'd want both Kompozer and Bluefish to hand. HTH. -- Peter
Re: [Bulk] Re: Email encodings (was Re: [gentoo-user] Gentoo speed comparison to other distros )
On 03/18/2013 08:05 PM, Kevin Chadwick wrote: On Mon, 18 Mar 2013 19:16:52 -0400 Michael Mol mike...@gmail.com wrote: On 03/18/2013 04:38 PM, Kevin Chadwick wrote: It can write but forces html onto users, You seem to miss some of the details. About that. See the attachment. It's a screenshot of the setting in K-9 where you can select composition methods. I took the screenshot on my own phone. (And then ran it through pngcrush -brute in deference to ML bandwidth...) I knew that perfectly well?? You say 'It can write but forces html onto users'. So I pointed out that, no, it doesn't. So I take it you're complaining that *other peoples'* HTML clients force HTML on you. That's a complete and total abdication of responsibility on your part! You can ignore these people if you wish. You can ignore the HTML parts of emails if you wish. You can defang incoming emails if you wish. You have no obligation to do any more than the minimum required for you to selectively ignore emails with data you don't want. You even missed the quote? If you're going to call me out for ignoring things, missing things or simply not knowing things, please highlight what it is. the quote isn't very enlightening in this context. You have a nasty habit of referencing things without inlining them or referencing them directly, and this has gotten in the way of clear communication *multiple* times over the last week. I only wrote two lines and you still missed it I respond to what's written in the email I'm replying to, because that's what I've just read, and that's the context of the email. never mind the examples I had given in my original mail that do not only apply to remote content and that you wrongly interpreted. Honestly, I never expected you to be up in arms over being exposed to HTML syntax. I presumed you were concerned about libpng, libjpeg, swf and gif. I presumed you were concerned about privacy concerns. Those are what most people who gripe about HTML email security are concerned with. Being concerned with HTML syntax is a new one. Being angry with mail clients for allowing people to send emails you don't want to read? That'd ridiculous. There is a security saying. Assumption is the mother of all f Try including more context, and I won't have to assume as much or as often. signature.asc Description: OpenPGP digital signature
Re: [gentoo-user] Re: Gentoo speed comparison to other distros
On 03/18/2013 08:10 PM, Kevin Chadwick wrote: On Mon, 18 Mar 2013 19:28:04 -0400 Michael Mol mike...@gmail.com wrote: Even though it is from a DVD it can be updated just like standard linux. The problem is, if you run out of ram then things get killed. (Frankly, this sounds quite nice for kiosk environments.) Could be if you have a good enough network connection for Linux kernel updates or cut it right down ;-) Local gigabit is cheap, and a gigabit connection would transfer the image in under a minute. A bit more, of course, if you've got an overloaded server being slammed by ten or twenty machines. (I wonder if one can anycast TFTP on a local segment. Hm. I think you could just barely pull it off, since you'd have resolved the layer 2 address for your syn packet, and that should stick with the connection.) Kiosks are notorious for having difficulty in getting to connections as there place is determined by other factors. Still it may make a good choice of OS except for reboot time. I was thinking POS-style setups in a makerspace I help with. If I had to cope with wireless or cellular, and I was seriously concerned about security on a budget, I'd use an internal USB stick with a fuse diode to prevent further writing, or an SD card with a similar fuse tripped. Expire on a schedule. Send updates as replacement data devices. signature.asc Description: OpenPGP digital signature
