Thank You, I appreciate that. I still think the whitelisting approach is the
best one. Also having a simple method of controlling traffic is great for
someone like me who is struggling to understand, or learn iptables. I'll
watch the git, and see if the project is getting regular updates.
Thank you Ruben! Thank you for allowing your conscience to influence your
development, for instance retaining the ability to disable javascript from
the settings menu, instead of requiring users to use about:config every time
they want to disable it. Thank you so much for continuing
Can anyone explain the TEST INSTALL options, maybe I need to give some
kind of argument to proceed with these two components of the system. Any
ideas of what kind of argument? Like I said, the rest of the components were
installed fine seemingly.
Maybe, with all the news of black-box HDD controllers. Though people still
torrent as much as they ever did; you’d think that would be the first thing
to go.
Can anyone at least tell me if Snares comes with AMT, from what I understand
that's the worst offender, next to vpro-txt. AMT allowes 3rd parties to
access your computer at any time for maintnance.
Intel AMT is a set of remote management and security hardware features that
let a sys-admin
Fair enough. I usually check dates. :( So this at least isn't going to
happen? I see so much of this kind of thing, nothing surprises me anymore.
That's why I asked which ones were dangerous, search results don't bring back
much in terms of results for user violating technology, and backdoors.
I would still like information about AMD devices that come without these
features. Regardless of radeon GPUs.
I warned you...
http://www.tomshardware.com/reviews/trusted-computing-extended-hard-drives,1839.html
bump
What is poor about the CPU, and graphics card?
Is there an AMD option? If intel is releasing Chips-Motherboards without
vpro-txt, are there any safe ones from AMD? You're really saying the Snares
comes without any botnet/backdoor technology (that you know of)? AMT for
example. What about any of these (minus those mentioned)?
[VPro
@ Calinou
Yes I thought so as well, but I need something that performs this function,
I'm having tons of network activity when the system should be idle, and
tcpdump shows Russian IPs and other suspicious activity that might be better
recognized by someone familiar with network security.
Is this not possible? It's ok if it isn't. It just seems like a nice idea,
but maybe someone could tell me yes, or no. Either answer is fine. If there
is another program that can do this I'll install it. I just need to block
all traffic, and whitelist individual processes as needed. Is
Distrowatch discussed a Firewall Program a while back that blocks all network
activity by default, and allows connections that are whitelisted. When an
attempt to connect is made the user is alerted and able to choose whether to
allow or block the connection. This approach is superior to
oops sorry
https://github.com/Douane
https://github.com/Douane/Douane/wiki/Architecture
but systemd is backdoor :o
...
Fixed it myself.
The tomoyo package installed a bunch of things, including a few libs that
altered the init process to prevent malicious programs from hijacking the
boot process. I deleted three likely files, and everything booted up fine.
I then used synaptic to remove tomoyo.
As said in the title, booting mounts the encrypted partition, then freezes
just before the login screen.
Trying the recovery option shows the booting process in text, after mounting
the partition (Everything is on one partition) the system executes about
three processes, then says “No
Is chroot the only way to fix this?
http://roderick-greening.blogspot.com/2009/09/recover-non-booting-linux-system.html
Just looking for a fix here. Thank you.
Defeated Attitude, Beat Down Much? I have heard this argument multiple
times, it seems to be recycled quite often.
Do you think winning is impossible? Why strive for something unless you
believe it's possible to accomplish?
Do you believe fully free modern computers will be available to
Thank you Banana. :)
Thank you onpon, I'll have to try it then.
Thank you Banana. :)
Yes, I was going to post this. Judging by some of the dates listed in
these articles Kaspersky's knowledge of this goes back years, and much
information is redacted, as well as many involved conspirators not named,
even though the articles imply such knowledge. Why would Kaspersky be
Doesn't installing the OpenJDK framework represent a security threat?
I would also like to see this. I use Icecat as my primary browser, and
it would be great to have it Updated for security.
That’s the point, if you can just take the GPL and mutilate it into the
form of a proprietary license it is destructive to freedom.
Excuse me sir, but you seem to be lost.
Allow me to point you in the right direction.
http://windowsforum.com/
Off you go now.
BTW can anyone recommend a good 60+ inch Dumb tv that's monitor
compatible with Trisquel through VGA? Also any information about things to
look for to avoid buying one that's smart in any way is very much needed,
tags, symbols, markings language, anything. Supposedly most of the
This is the kind of thing that should be forbidden in the GPL, it destroys
freedom. They violate the spirit of the License and receive no consequences.
What about bios writes? That's a major security problem.
I'm looking for the best secure free software friendly modern laptop
with an AMD CPU, and Powerful GPU.
Will compromise on BIOS, but TPM, UEFI, Trusted Computing, or baked in
Processor WIFI allowing remote involuntary firmware/microcode changes is not
an option, also would like
I've only done this with IceCat but. One quick fix I figured out is to open
your about:home, then ctrl+S the page as xhtml. Once you've done that you
could save that to Templates or something, then open it within the browser,
and right click then hit view page source. You should then find
I shouldn't have said useless, I just meant that the one doesn't solve the
other. As long as the BIOS can be written to, the potential for damage is
always there.
A hardware switch with a physical disconnect would be fine with me. I wonder
if someone could solder a jumper in there?
Of
I'd rather see this with an AMD processor, and no UEFI. Free BIOS is
pointless since intel back-doors the CPU itself. In fact, BIOS should only
ever be on a read-only chip. Common-sense 2014
Finding free Wifi drivers can be annoying, if you can connect the computer
through ethernet, you might be able to find something in the repository.
There are some non-free wrappers for driver blobs, but I cannot recommend
them. This site (recently shared with me by a member) will list good
Until somebody smart figures out how to scrub the watermark :D.
Or until someone cracks the drm module, and posts his/her methods for
the world. XD
The more the internet becomes a thing provided 'for us, by them' the more
obvious it is that they will lock it down and seek total
Thank you! Keep up the good work!
I already knew about this HTML 5.1 BS and the corruption of Sir Tim
Berners-Lee, but I just came across this, so I thought I'd share it. Way to
go Mozilla, you and your new NSA management team have certainly put the
user first yet again.
I agree. I think it would be a good way to promote free software, even
for people running it in a closed system. They have to start somewhere. I
think IceCat (was?) or is installable in OSX with a program called (Fink?) I
think thats what it’s called. Maintaining it would be a lot
It's true. Thank's to these fine folks, I'm typeing this from IceCat 31.0.
:)
And it’s a family computer, so don’t chivvy me.
I'd suggest just burning the .iso, and installing. You can always back up
your home directory, and note your repositories, and what programs you have
installed. I don't know how old your computer is, but from what I hear
Trisquel is light on resources. You could test by installing to a
I’m trying to figure out how to create custom icons in XFCE, (for the home
folder not desktop, for that you can just make a launcher) and been getting
frustrated with mimetypes. I am able to create svg’s and change the
default “Special” icons in the home folder, but cannot create new ones.
(Though with intel VPro (VT now?) your hardware including ram is
allready hardware backdoored so...
I've heard sysD is backdoored as well.
Also, systemd controls your diskcrypto along with 100s of other
things.
This really bothers me, we already have proprietary
BTW
http://linux-beta.slashdot.org/story/14/09/05/1711243/why-munich-will-stick-with-linux
Not over?
Has Gnash improved at all?
I agree he shouldn’t have said what he said in the way that he said
it, but ostracism is so 20th century.
What is this? BadBiosVictim? I thought he was confined to redit.
Even MR. Schneier, from whom you borrow that acronym, does not consider
all of this to be fud.
I also have not insulted you, I am content to discuss.
damn, It seemed like it could have become a good alternative, if the project
received the support in needed. Too bad.
CISPA is back by th way...
I've donated in the past, in hopes of keeping the IceCat project, and
Name alive. In the past my donations have gone to the FSF, however it seems
someone here has taken over development of the project, and the last version
available on gnu.org, or the mirrors is 24 (24-Oct-2013).
Any link to what Bruce Schneier says in favor of SysV init? I searched
systemd and init on https://www.schneier.com but no relevant result
seemed to be listed.
No, I wasn't referring to systemd, those rumors are unconfirmed. I was
relating the history of agencies, and M$'s
Very well said salparadise, 5 star post. That pretty much sums up my
impression of the whole thing.
Poettering wishes to make Linux a fully self updating, self monitoring
OS.
If this was the case back when I started using GNU/Linux, I would have
learned Nothing about how the
My point was features-convenience do not conflict with freedom-power, if
the constraining elements of closed source are removed, and solely the
functionality is achieved. The two are not mutually exclusive.
I'm not ignoring the trend, which is obvious. My point is these things
I read your links Banana.
If freedom was really as important to everyone who claimed it was as they say
(Debian Devs for example) I would be able to raise my WIFI above 30 dBm
without recompiling my CRDA. Also people who asked about the problem (other
than myself) would not be treated
I think an important technique is improving functionality, and features.
Linux is not limited in any way compared to closed source alternatives,
which create their own limitations, and baggage. The list of constraints
closed source places on itself are endless, as is the potential of
Without free BIOS-Microcode, we will never have a secure platform to run on.
We also cannot allow them to force propitiatory restrictions on storage
standards. Mark my words you will regret a standardization of $mart
storage.
If you don’t think Linux is about creating a secure environment, then
find me one Dev who thinks allowing third party executables to be installed
with a double-click should be permitted in their distribution. I would argue
that security is a core tenant of the free software movement.
Will try. Guessing at your context, but will try. Thanks
No Dice.
localhost5@Localhost:~$ sudo apt-get install -f
[sudo] password for localhost5:
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages were automatically installed and are no longer
required:
linux-image-3.2.0-58-generic
Considering iTunes had an unpatched phin-phisher back door in it for over
four years, any employees installing it on corporate hardware could cause
huge problems for a company.
localhost5@Localhost:~$ sudo apt-get install icecat --reinstall
[sudo] password for localhost5:
Reading package lists... Done
Building dependency tree
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you
Ok, so. Icecat is successfully installed! Thank you everyone who helped.
I truly haven’t encountered such a helpful Linux community before, not to
diss anyone, but you guys have been much more helpful.
Following your advice I:
~$ sudo apt-get install xul-ext-torproxy tor
[sudo]
Wow, thanks :D
I added the PPA (sudo add-apt-repository ppa:legimet/abrowser-kde) and
updated synaptic. Everything went fine up to that point. Then I
accidentally installed Abrowser (which worked btw I launched it) instead of
Icecat... So I marked everything for complete removal, and synaptic said
66 matches
Mail list logo