A small but important point people might have overlooked. An opt-out
function for Ubuntu's Dash is less helpful if you're running Ubuntu as a
liveboot. If you're running it as a liveboot, you or your startup script
will have to disable the Dash leaks each and every time you boot up your
computer.
On Tue, Feb 19, 2013 at 04:53:48AM +, Jacob Appelbaum wrote:
Sounds like someone should upload a package that fixes all of the
privacy problems, eh?
I've thought about this for a couple of days and about 20 miles, and
although my initial reaction was yes, they should, I'm now going to
Rich Kulawiec:
On Tue, Feb 19, 2013 at 04:53:48AM +, Jacob Appelbaum wrote:
Sounds like someone should upload a package that fixes all of the
privacy problems, eh?
I've thought about this for a couple of days and about 20 miles, and
although my initial reaction was yes, they should, I'm
Micah Lee:
On 02/22/2013 02:06 PM, Jacob Appelbaum wrote:
The Opt-out strategy is useful. The question is - how does it make
Ubuntu safer or more privacy preserving? For example - what if we were
able to make a privacy preserving version that was also reasonably
secure and everyone was happy?
On 19/02/13 at 11:48am, Lee Fisher wrote:
I'd suggest one that is fully-controlled by the community, like
Debian, or another one of your preference.
Anywhere in the world I won't use Debian, because of the fact that
packages shipped are modified and patched a lot. That means other people
..on Wed, Feb 20, 2013 at 06:17:16PM +0200, Maxim Kammerer wrote:
On Wed, Feb 20, 2013 at 5:49 PM, micah anderson mi...@riseup.net wrote:
Developers never made a mistake leading to a security problem, so
Debian's one mistake in 2006 should be forever trotted out as an example
of how Debian
Maxim Kammerer m...@dee.su writes:
I have sent a patch to the author of HTPdate, and he wrote back that a
“Debian security administrator” already went over the code with him
line-by-line.
There is no such thing as a Debian security administrator, and HTPdate
is not in Debian, so I'm not sure
Hi,
Julian Oliver wrote (20 Feb 2013 16:27:24 GMT) :
Did you file a bug? It doesn't look like you did. You should do it.
The program Maxim was talking of is not part of Debian.
... and I agree it's totally unclear if that “Debian security
administrator” was anything but a random system
On Wed, Feb 20, 2013 at 6:46 PM, Julian Oliver jul...@julianoliver.com wrote:
Yes, just after sending the email I 'apt-cache search htpdate', returning
nothing. It seems Maxim might have confused Debian with another distribution
of
GNU/Linux.
No, I didn't — I know what Debian is. I remember
danimoth danim...@cryptolab.net writes:
On 20/02/13 at 10:49am, micah anderson wrote:
Developers never made a mistake leading to a security problem, so
Debian's one mistake in 2006 should be forever trotted out as an example
of how Debian sucks, good point.
Sorry, but this distinction
Anyway, we are free to choose what fit our requirements.
True.
Is there any formal academic research on the topic of distro
stability/quality/security, with any listed attributes/requirements?
On one hand, corporate control tends to spyware backdoors. On the other,
volunteer control could
If this sort of behaviour from Ubuntu continues, what I would suggest
is that simply people start recommending other Linux distributions.
Personally
I'm a big Fedora fan: It has the same level of ease of use and
features as
Ubuntu and also a nice aesthetic and full SELinux security features
The short version is that Ubuntu is now pre-compromised. (Or if you
prefer Stallman's phrasing, and I agree with him, it's spyware.)
And given the appallingly tone-deaf nature of Shuttleworth/Canonical's
responses, I very much doubt that this will be the end of it --
that is, I fully expect other
Rich Kulawiec:
The short version is that Ubuntu is now pre-compromised. (Or if you
prefer Stallman's phrasing, and I agree with him, it's spyware.)
And given the appallingly tone-deaf nature of Shuttleworth/Canonical's
responses, I very much doubt that this will be the end of it --
that is,
If the Ubuntu team can't be convinced to take a policy standpoint against
things like this, then the project suffers from a cancer that runs deep and
can't be mitigated with blog posts and patches. Most users won't know
they're being tracked like this and won't be the kind of user that looks up
15 matches
Mail list logo