> PRISM Break isn't about software freedom, it's about security, and
that's a secondary goal for free/libre software.
I think libre software is necessary but not sufficient for security. The
Prism Break website is a good resource for privacy, and I think that they do
care about freedom. One th
If I recall, the prism-break website people also made privacy-tools.io
38.x ESR is end of life and icecat gets no security updates now,
Yes, exactly!
What I am saying is that the way that Trisquel puts both "universe" and
"main" into a single repository (look at the /etc/apt/sources.list file) that
then shows up as "universe" and "main" in Synaptic is strange.
We get updates from Ubuntu but it is reliant on Canonical providing updates.
T
It's confusing and is not transparent. Security updates also pass by Universe
which is bad, especially for servers. So, for instance, VLC might have a
permission escalation exploit in its media library but would never get
patched.
ARM, yes, although probably only a few boards like the Beaglebone Black and
some Chromebooks would ever get support as ARM is a mess and for the most
part it is hard to buy an ARM-based computer that respects your freedom.
POWER, I think is not so important, as it is mostly servers and ancient
I assume the disk is encrypted with LUKS:
You should connect the drive to your other computer (usimg a SATA to USB
adaptor most probably) and use GNOME Disks (or terminal commands but this is
easier) to unlock the drive, then you can mount the drive partitions and read
its contents.
If you j
Regarding encryption...
GNOME Disks can created encrypted partitions. You create a new partition and
when you select the type, you choose "encrypted, compatible with GNU/Linux
systems" or similar.
It works well for me! Of course, you can use terminal commands but I have not
learnt how to do
I have a Samsung SSD. It works pretty well. But I definitely wouldn't buy a
no-name generic drive. But I back up to my old HDD just for safety...
I read that modern SSDs are just as resilient as HDDs. In fact, in many cases
they have a lower failure rate than an HDD used for the same tasks. What is
best is to use SSD for frequently-written files such as the programs while
storing and backing up to an HDD that isn't used often.
To be h
I have no idea which devices this is compatible with. It could be dodgy...
Some people have mentioned security updates, or rather seemingly lack of
them.
As far as I can tell you synchronise the packages with Ubuntu according to
templates you have created which gets rid of the nonfree packages. However,
it isn't clear how often this is done. Another concern is that
I wonder if exploiting the firmware in some USB device could be used to
create a so-called "Bad USB" attack, without the victim knowing their USB
drive has been turned into a zombie. Stranger things have happened...
Updates are delivered to Gecko HTML rendering engine (which is why
Thunderbird recently got updated to v45, the extended support release) but no
new features.
I like Thunderbird's straightforward design but I stopped using it. It is
very slow and insecure as it is very bloated. Enigmail is gr
Certainly you should go to a local business to support your community.
But I don't think that Stallman's word is law. It's not a cult after all and
"Stallman approved" is not necessarily much better. I have no qualms about
using PayPal once in a while (although I dislike Amazon as they mistrea
^ The Nitrokey looks interesting.
What I would like to see is a (internal) solid state drive running free
software. Preferably, such a device would run only very simple software to
make auditing much more simple and to minimise the quantity of bugs in the
software. The device would need to b
What if you live in the middle of nowhere, like the Canadian tundra, and only
Amazon deliver?
You just solve the Captcha. It works without scripts.
It's also pretty bloated, Qt.
How is it pronounced? Queue-tea?
I do not know the details; it probably would not be a USB port like outside,
just an internal port with the USB protocol.
If you own an Apple laptop you should have a look.
Aye the firmware is in the USB, not sure about other internal keyboards like
on Lenovo laptops.
Apple crap technical design.
It doesn't get rid of Intel ME signature checking which is the real problem
here. It can remove SPI Flash chip locks though, so the script could be used
to remove the locks to make Coreboot flashing easier (and on older models if
you convert the script to run not as an EFI program). If you co
What I am thinking if is just a small computer to act as a USB key card, with
memory that isn't easily rewritable, and just extremely simple software
running on it. I don't think we need a network boot image but I'm not an
expert. I read that a free software organisation in Japan made softwar
I think they have produced designs and software so you should contact them.
From what I can tell GRUB,the bootloader used by Trisquel, fails to install.
> So, FSF sent me their own bootloader it still didn't work on my t450, but
it worked on my Dell and my brothers IdeaPad. I tried Parabola, because I
really want to run GNU/Linux on this machine.
What do you mean?
It is an interesting project but not worth the money to be honest. $300 for a
keyboard is very expensive.
Regarding firmware, I think that this requires firmware because it is very
complex. I am unsure as of whether a simple unbranded USB keyboard has such
an embedded firmware; at least if it
If I recall, Cinnamon's default menu is similar to the Windows Start Menu in
some respects. Cinnamon is basically a fork of GNOME Shell made more like
GNOME 2. Build it from source (instructions on the Cinnamon blog, linked to
in another forum post on installing Cinnamon in Trisquel 7 by me),
Apple keyboards, even the internal ones, are USB, so the logic is stored in
flash memory on the actual keyboard. Keyboards on most other laptops connect
with LPC.
USB has other problems, because it is designed for dynamically plugging and
unplugging peripherals. For example some OSs download
This seems somewhat off-topic
All I will say is that if they want more developers, making it as easy as
possible to take part is ideal. At the moment I can't even run Guix in Qemu,
let alone install it on my computer, so it's a real pain.
Proprietary driver for any recent Broadcomm wireless card.
Get Atheros of some kind, but keep in mind some manufacturers implement BIOS
whitelist of cards so your computer might fail to boot of you violate the
whitelist.
Did you investigate the CHIRIMEN board? It has designs already, and all
firmware and drivers seem to be freely available. Maybe you should evaluate
the CHIRIMEN as a basis for another board:
https://developer.mozilla.org/en-US/docs/Mozilla/B2G_OS/Board_guide/CHIRIMEN/CHIRIMEN_FAQ
It is design
Something I think would be an interesting project would be a card for PGP
keys, with the input device on the card, to avoid software keyloggers. Is it
possible?
Thanks.
Mplayer2 was a fork of Mplayer but I think it went dead and then development
of original Mplayer started again so Mplayer2 became defunct.
You should open it from the terminal and see what errors appear: $
gnome-mplayer It may be an error with GTK libraries or something.
Or maybe your computer got pwned. ;-)
It's just impossible to install for me. Something always goes
catastrophically wrong and and I can't make it work in a VM.
Why there isn't a basic graphical installer is a question I cannot answer.
I'm sceptical of this story. If the insects could smother a raging petroleum
fire, how could the soldiers even move?
FSF doesn't recommend Debian because it promotes nonfree software.
However, I think that if you ship a system with a custom Debian install, you
can say you aren't using Debian, but custom firmware. Similar to how
Replicant is based on Android but is considered free.
Regardless, I'm of the view
To make it easier, you could accept sketches and designs (digital images, or
scanned from paper) and then build the level yourself.
Just an idea.
I like lynx better.
Partly because I think programs named after animals can only be good.
Meow!
Open a terminal.
First, type 'ping google.com' to check your internet connection is actually
working. It should return information if so (something like "received 128
bytes from google.com") if not try turning the router on and off. Also
restart the PC.
It probably uses WebKit engine.
This is what Midori and the GNOME browser use.
Brave is open source according to website.
Look at the respective Github repositories. Brave for Windows, Mac, Gnu/Linux
is MPL v2.
...
You're right, sorry, they came out on the same day.
The difference between Tor Browser and IceCat is that Tor Browser is getting
security updates while IceCat has seized to, so, IceCat is late while Tor
Browser is prompt.
Indeed, Allwinner A20 system-on-chips use Mali for graphics.
So, no 3D acceleration, but as far as I know you can use 2D without blobs due
to the Lima driver.
It's really annoying but it's the best we have.
You need to upgrade to Windows 10 for that.
Version 45 came out as a normal stable release in March.
However, it was not an ESR then. I wouldn't regard the original release date
of v45 as an indication of how late the browsers were to upgrade.
They are only late so long as they are not on an officially supported
version. So they are fin
> True, but since it's comparable to the time it took for TorBB (at least for
now), it seems reasonable.
I don't know where you got this information from at all. Tor updated the
stable release to the latest version of Firefox ESR within days, and they had
had it in the experimental release be
June 7 was 21 days ago.
So actually not as safe.
Regarding the monitor, it does often depend on your hardware. For example I
have a Rasperry Pi and it is connected with a cheap HDMI-VGA adaptor to an
ancient monitor I found at the tip. There is a reasonable image but the
monitor is never detected. Sometimes generic stuff goes funny too, lik
If it was in the hands the users, then it would be a really interesting and
useful system. It is basically an embedded computer. We could probably run a
small GNU/Linux system instead, or something entirely different like a true
random number generator. Or, just to be on the safe side, disabl
AMD have a commitment to 'open source', but not freedom. It is just corporate
propaganda they are spewing. For example they play up the importance of their
open source drivers, but they are unreliable and offer quite poor
performance, and all of the heavy lifting is done by a massive propriet
Version 38.8.0 was the last release of Firefox ESR in the 38.x series, and
after that Firefox 38.x became EOL. Firefox ESR has now switched to 45.x.
The stable Tor Browser switched to 45.x just after it was released. Looking
at the Tor blog, Tor Browser 6.0 was released on the 30th May 2016:
Use the one from Ubuntu. ESR does not have any security advantages as it is
designed just to be stable, which is why Tor Browser uses it.
If you don't trust Canonical that is a reason to build from source. I largely
do but you never know.
At any rate the option is there and really easy: you jus
I'm saying that Lenovo bought something that could be turned around.
Microsoft just bought something that is already dying a slow death and it has
a declining interest from new users.
> One way would be to boot from a CD or USB drive and edit (or replace) the
password file.
What of you have encrypted the drive, including /boot/? That might trip them
up.
The difference is that IBM's Thinkpad division still had some potential in
it. LinkedIn is going the way of MySpace. There's just not much more you can
do with it and people are losing interest.
Have you tried the official PPA? See
https://launchpad.net/~videolan/+archive/ubuntu/stable-daily
You can't post blank messages on the website, though.
Look in /etc/lightdm for the configuration file, or try in terminal or CLI cd
/ && find -name *.conf and look for a configuration file for unity greeter
(it is probably called unity-greeter.conf).
/etc/lightdm is where the GTK Greeter stores its configuration file, so I
thought it might help.
Script kiddies trying to hack your PC.
Increasing the margin of profit can pay dividends if you are selling 2000
computers to a bank or a similar large business.
Therefore, it was money well spent from the point of view of Lenovo, and IBM
Thinkpads already had a good reputation for build quality.
A protection method that nobody knows about that is really annoying.
Enable ccache, use an SSD, and set it to do two jobs (one for each core) at
once.
Best to use the package from Ubuntu as Debian and Ubuntu sometimes have
slightly different versions of libraries. Even better, build the deb package
from source if you don't want to trust Canonical.
This is why:
https://trisquel.info/en/forum/eu-all-your-internet-are-belong-us
(*shudders*)
Download it from Firefox website then add a .desktop file in /usr/local/bin
which launches the software. Alternatively, use Midori or something else.
Exactly. It should be a priority but from what I can tell the developers of
IceCat and Abrowser don't have much time. Therefore they fall behind.
Debian used to choose a version of Firefox (not ESR) and keep it for the
entire duration of the release, so had to backport security fixes to that
version. However it was too much work. Now they just use upstream Firefox
ESR.
You are a crude and nasty piece of work. That "graphic" is rude and so
unnecessary and has no place on a forum like this.
What the heck? It uses the same repositories as Ubuntu. It chooses software
for its MATE desktop environment to try to provide a good experience. But at
its heart it is still a spin of Ubuntu.
Tell me then. Why am I a "misinformed idiot"? Or is it just a needless
internet attack?
It is nothing like Fluxbox. Ratpoison is controlled with some awkward
key-bindings, which are easily customisable.
It requires no mouse so perfect for computers without touchpads like old
Thinkpads.
"Take copies or screen captures of the website, without express permission
from TONVID.COM."
Seriously, that is utterly ridiculous.
Not a mistake. They probably just don't have enough time. It is no excuse but
that is probably why there are no updates. Of course they could be too lazy
but I doubt it is anything malicious. It shows you why there are no
guarantees.
This problem is seriously frustrating and could easily be averted if they
built more up-to-date ISOs, without the GRUB password enabled.
It's a volunteer effort so no guarantees. I never saw the appeal of these
derivatives over Firefox other than ideological purity. I don't think
ideological purity should be at the expense of security updates, as long as I
can use a system with libre software alone. I am thinking of switching
IceCat and Abrowser don't apply their own security patches. They track
Firefox Extended Support Release, except when they don't, and aren't up to
date. Like, er, now.
The funny thing is that as a Ratpoison user myself I would love this more
than anything. It has just enough meanness and self-satisfied snuggery to
turn away the casual user. Ratpoison is a god among window managers.
Well there were reports of the installer going mad, which applies to all
Ubuntu spins. If you look in the mailing list you will see that Canonical
made new ISO images to solve some of the problems, but people continued to
have them.
I also think the use of the term 'distribution' is being use
Ubuntu 16.04 was released 2 months ago and it has given people so many
problems and is quite prone to odd behavior. They focused more on mobile,
embedded (IoT) and cloud, where they actually make money.
Debian is much more stable, and testing is coming along well, without
problems. Heck, even
"The office"
Perfect for the corporate CDE environment.
Install Mtpaint,
think of an object, a famous artwork, or something else entirely,
then try and draw it on a 16x16 or 32x32 tile.
Just make sure it tiles well. Patterns of shapes are good and things that
make it look like something is going into the distance.
think about it
a installing grub to a cd
would not work.
you have to burn a whole image usually.
and the installer assumes it is probably not an expensive rewritable cd. so
it is assumed that installing grub to the cd would always fail.
Just a reminder, on your website (https://onpon4.github.io/) you say your key
is 0x3D015302 but it is revoked on keyservers.
Also, I have found xterm \ xterm produces an infinite number of terminal
windows. Fun stuff.
I basically did as follows during installation:
1. Delete all partitions on disk
2. Create 200 M primary partition, for /boot
3. Create logical partition with the rest of space on the disk, with option
"use as physical area for encryption" (or whatever the option is)
4. Select "configure encrypt
There is no need to install GRUB via chroot. You just do 'grub-mkconfig -o
/boot/grub/grub.cfg' and then 'grub-install /dev/sda' (or whatever the drive
is). I suspect that 'update-grub' would work but I did not try it.
Funny how Debian Unstable doesn't play up in this respect like
Trisquel/Ub
No need for that. See my comments below this.
Yes, and it works!
Never mind the fooling around with root=UUID and all that.
All you need to do is add GRUB_ENABLE_CRYPTODISK=y to /etc/default/grub
Run 'grub-mkconfig -o /boot/grub/grub.cfg' and 'grub-install /dev/sda' (or
whatever the drive is)
then comment out /boot in /etc/fstab and run #
All right, I think I have some better idea about the true nature of
GRUB_ENABLE_CRYPTDISK. According to the Arch Wiki: Boot partition
GRUB can be set to ask for a password to open a LUKS blockdevice in order to
read its configuration and load any initramfs and kernel from it. This option
tr
Actually it hasn't worked at all, when I start GRUB it gives a list of
installed operating systems and then when I select "Debian Stretch/Sid with
linux-image-xxx" it says error: device name required
loading linux-image-xxx
going back to device scanning Then it just loads the kernel as normal
Thanks, update-grub has worked.
However, do I need to set a GRUB password in order to use GRUB_CRYPTODISK=y
(or whatever it was)?
Or does it just use my LUKS password?
I am sorry to phrase it wrong.
I meant I am unable to send money right now due to personal reasons.
However, I am still happy to take part in the level-making competition!
Looking forward to it! Meow ლ(=ↀωↀ=)ლ
So you did a normal network installation, using the 'set up full disk
encryption with encrypted LVM' option in the text mode installer?
Then you booted it, changed stuff in /etc/default/grub, and now you can boot
with an encrypted /boot?
Consult this list: http://www.defectivebydesign.org/guide/ebooks
You can always buy real books as well (shock, horror). They don't tend to run
out of batteries at inconvenient times and good ones have a great resale
value. For instance I have bought cheap books second hand and sold them to my
You should look around for an X60 laptop. They are dirt cheap and you can
flash Libreboot via software.
And you are also saving poor computers from that computer graveyard in
China...
That would be great.
Please send by PGP.
Search my address on pgp.mit.edu.
Pour moi?
I seriously think that activists could be at risk.
Perhaps it is just a matter of paperwork, then Intel hits the button to send
off some malware.
And the scary thing is no one can conclusively prove it has/hasn't happened.
We are living in the age of Orwell.
201 - 300 of 822 matches
Mail list logo