Re: [Tails-dev] Mandatory Access Control, SELinux and Tails
intrigeri: > Next question, then: is it compatible with aufs, or perhaps it does > not need to be? Good questions, but I have no real answer to them. The AuFS page has this statement on Aufs3 in the section titled "Features": "Features or just an idea in the future (see also design/*.txt), ... - xattr, acl" http://aufs.sourceforge.net/ So I think that means that there is no xattr support in Aufs3. But I am not sure what the implications are. Cheers, Andreas ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] Mandatory Access Control, SELinux and Tails
intrigeri: > I'm curious: have you been running a GNOME desktop in enforcing mode? No, I am usually using KDE in permissive mode. There are still some AVC warnings I want to get rid off. But due to the involvement of Red Hat in both SELinux policy development and Gnome I do not expect that many difficulties with Gnome and SELinux, but I did not try. Cheers, Andreas ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] Include gdm logs in whisperback
Hi,
a...@boum.org wrote (29 Jul 2012 12:31:45 GMT) :
> Implemented in tails git, branch feature/more_whisperback_logs,
> merged into experimental. Please test !
Great!
I'll test it, but probably not before 10 days.
> +except OSError:
> +debugging_info += "sudo command not found\n" % debug_command
Why the "% debug_command"?
> +except subprocess.CalledProcessError:
> +debugging_info += "debugging command returned an error\n" %
> debug_command
The "% debug_command" lets me think a %s is missing in the
format string, isn't it?
> +debug_command() {
> +echo
> +echo "= output of command $@ ="
> +"$@"
> +}
I think this won't work once commands that span multiple words are
used; or am I wrong, that is, do the changes introduced by commit
38293d actually work?
___
tails-dev mailing list
tails-dev@boum.org
https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] WhisperBack configuration
Hi, a...@boum.org wrote (29 Jul 2012 12:32:09 GMT) : > Implemented in tails git, branch feature/whisperback_16, merged into > experimental. Please test too! I will, but I cannot promise it will be before 10 days. Can you please publish the commits and tag used to build the WhisperBack 1.6~alpha1 .deb? ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] Mandatory Access Control, SELinux and Tails
Hi, Andreas Kuckartz wrote (29 Jul 2012 03:36:07 GMT) : > Ague Mill: >> Is it compatible with SquashFS? > SELinux requires xattr-support. According to this page SquashFS > supports xattr since Linux 2.6.35, so that should work with > a current kernel version (but I have not yet tried): > http://kernelnewbies.org/Linux_2_6_35#head-7b60ef60876830625c37e8f1c24e460eebc418cc Nice to hear :) Next question, then: is it compatible with aufs, or perhaps it does not need to be? ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] Mandatory Access Control, SELinux and Tails
Hi Andreas, Andreas Kuckartz wrote (27 Jul 2012 18:53:01 GMT) : > I have some experience with SELinux and Debian unstable which might > help, but installing the relevant SELinux packages and enabling > permissive mode is quite straightforward (at least in Debian > unstable ;-). I'm curious: have you been running a GNOME desktop in enforcing mode? Cheers! ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] Mandatory Access Control, SELinux and Tails
Hi, Andreas Kuckartz wrote (27 Jul 2012 19:23:18 GMT) : >> https://tails.boum.org/todo/Mandatory_Access_Control/ > I just tried to update that page but got an error message as a result: > "Error: Sorry, but that looks like spam to blogspam: bayes, 13 links > found" :-/ Sorry, our wiki antispam is pretty rough :( ... but since we've had it, it has significantly cut down the amount of work we have to do to fight spam, compared to the relatively rare false positives we have been told of. > Can someone tell me how I can edit that page?! Like you just did :) I applied your changes but edited them a bit. Git patches or pull requests are welcome too. Cheers! ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] CheckIt no longer available
On Sat, Aug 04, 2012 at 12:17:03PM +0200, sajolida wrote: > >> I found a workaround for most cases but I wanted your opinion before > >> putting that in the documentation. > >> > >> 1. Download the ISO > >> 2. Install MD5 Reborned Hasher, restart Firefox > >> 3. Open the ISO image from File ▸ Open File… and save it on top of > >> itself. That's the weird move. It seems to work ok on Windows XP but it > >> was not working on my machine where /tmp didn't have enough space to > >> store a temporary copy of the full ISO. > >> 4. Check the SHA-256 from the Download window. > >> > >> What do you think? > > > > I think it is better than nothing or unusable documentation. I'd say go > > for it. > > Ok, I fixed the documentation accordingly. Please review: > > https://tails.boum.org/doc/get/verify_the_iso_image_using_other_operating_systems/ I only read it (no tests), but it looked clear and easy enough. We'll see how our users feel about it. Good work! :) -- Ague pgpZfL4UatO2i.pgp Description: PGP signature ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
Re: [Tails-dev] CheckIt no longer available
On 01/08/12 21:40, Ague Mill wrote: > On Wed, Aug 01, 2012 at 05:28:49PM +0200, sajolida wrote: >> As pointed out by a user on the forum [1], the CheckIt add-on is not >> available anymore. > > Do you know why? The mozilla.org page for the extension says “This add-on has been removed by its author” and the author is not actively developing any other extension. >> I found a workaround for most cases but I wanted your opinion before >> putting that in the documentation. >> >> 1. Download the ISO >> 2. Install MD5 Reborned Hasher, restart Firefox >> 3. Open the ISO image from File ▸ Open File… and save it on top of >> itself. That's the weird move. It seems to work ok on Windows XP but it >> was not working on my machine where /tmp didn't have enough space to >> store a temporary copy of the full ISO. >> 4. Check the SHA-256 from the Download window. >> >> What do you think? > > I think it is better than nothing or unusable documentation. I'd say go > for it. Ok, I fixed the documentation accordingly. Please review: https://tails.boum.org/doc/get/verify_the_iso_image_using_other_operating_systems/ -- sajolida signature.asc Description: OpenPGP digital signature ___ tails-dev mailing list tails-dev@boum.org https://mailman.boum.org/listinfo/tails-dev
