Lmst

🚫 Oh, the irony! In a riveting twist, our tech wizards decided to jump ship from #OpenBSD to #FreeBSD for firewalls—only to lock themselves out of their own blog post. 🔒 Maybe next time, consider #permissions before making grand announcements? 🤦‍♂️
https://utcc.utoronto.ca/~cks/space/blog/sysadmin/OpenBSDToFreeBSDMove #firewalls #techhumor #irony #HackerNews #ngated

#ollama #vala #gtk chat client coming along nicely - got it's own repo now https://github.com/roojs/OLLMchat
* function calling working
* updated the styling
* tool can send messages to the chat

next up #permissions (code done, but need to hook it into the interface)

can't connect to samba share on different physical drive #permissions #mount #samba

https://askubuntu.com/q/1559682/612

Big guns for Tahoe problems: which radical fixes still work?

https://fed.brid.gy/r/https://eclecticlight.co/2025/11/11/big-guns-for-tahoe-problems-which-radical-fixes-still-work/

<p>When you’ve tried all the logical solutions, restarted, had a go in Safe mode, and still can’t solve a problem, you may need to bring the big guns to bear on it. These are radical fixes that carry a risk of going further than you want, but are all you’ve got left. You might have been recommended them by someone who seems to know best, or, as we saw last week, <a href="https://eclecticlight.co/2025/11/07/inside-the-unified-log-7-claude-diagnoses-the-log/">by an AI</a>. This article looks at the state of those big guns in Tahoe 26.1, and which you should consider seriously.</p>
<h4>Reset NVRAM and SMC</h4>
<p>Although quick and simple to use, resetting the NVRAM and SMC are well known for fixing all sorts of problems. They’re still valuable in Intel Macs, but you can forget them in Apple silicon, as the SMC resets with each startup, and the NVRAM is protected from user access. The only way you could reset an Apple silicon Mac’s NVRAM is by <a href="https://eclecticlight.co/2024/07/30/nvram-in-apple-silicon-macs/">Restoring it in DFU mode</a>, which almost certainly isn’t something you want to do at this stage.</p>
<h4>Reset TCC</h4>
<p>TCC is the subsystem responsible for implementing privacy protection, and is notorious for its mystifying misbehaviour. Before convincing yourself that doing anything with TCC is going to help a problem, you should really look for a pattern of misbehaviour that points to one of the resources that it controls

Unable to update or install ssh #apt #permissions #ssh #rm

https://askubuntu.com/q/1559454/612

How to make a handy samba share with automatic permissions? #permissions #samba

https://askubuntu.com/q/1559422/612

Explainer: Permissions, privacy and TCC

https://fed.brid.gy/r/https://eclecticlight.co/2025/11/08/explainer-permissions-privacy-and-tcc/

<p>Loose words confuse, and one of the words used most loosely in macOS is <em>permissions.</em> This explainer tries to separate them from other access controls.</p>
<h4>Permissions</h4>
<p>The access permissions of files and folders are set in their attributes in the file system, stay with that item, and are applied universally for all apps and processes that try to access them.</p>
<p>The simplest and most basic of access controls, these can be inspected and changed in the Finder’s <strong>Get Info</strong> dialog for all accessible files and folders. They control the ability of apps and other code to read from and write to each file and folder. Normally, if you’re the named owner of a file or folder, you expect to have both read and write access, and that ensures the apps you run with user privileges can open, edit and save changed files.</p>
<p><span class="alignnone"><img alt="perms01" class="alignnone size-full wp-image-70321" src="https://eclecticlight.co/wp-content/uploads/2023/02/perms01.jpg?w=940" /></span></p>
<p>Permissions are relatively crude controls, so Access Control Lists (ACLs) can refine those permissions with more specific restrictions. They were introduced in Mac OS X 10.4 Tiger in 2005, and are now applied as standard to some widely used folders including the Home folder. The presence of ACLs is normally indicated in the <strong>Get Info</strong> dialog by the words <em>You have custom access.</em></p>
<p>No matter what security controls an

I wrote a simple dns client using raw sockets in C but get "sendto:Permission denied" #networking #permissions

https://askubuntu.com/q/1559269/612

Password annoyance - possible to use 2 passwords? #permissions #sudo #password #root

https://askubuntu.com/q/1559163/612

Ubuntu 24.04 / Permission error on VMWare Workstation (passthrough disk) #permissions #mount #vmwareworkstation

https://askubuntu.com/q/1559124/612

The Ethics of Writing About Real People—Especially the Ones You Once Loved https://www.writersdigest.com/the-ethics-of-writing-about-real-people-especially-the-ones-you-once-loved #WriteBetterNonfiction #PersonalWriting #MemoirWriting #Permissions #MemoirTips #Memoir #memoir

Ubuntu default Firefox app won't start after system changes #permissions

https://askubuntu.com/q/1559030/612

Remote connect from local computer to ubuntu server problem #networking #server #permissions #ssh #webserver

https://askubuntu.com/q/1558973/612

Remote connect from local computer to ubuntu server problem (noob) #networking #server #permissions #ssh #webserver

https://askubuntu.com/q/1558973/612

Should you repair permissions?

https://web.brid.gy/r/https://eclecticlight.co/2025/10/27/should-you-repair-permissions/

<p>For much of the last 25 years, macOS has had ill-defined and pervasive problems that have often been attributed to incorrect permissions in various parts of the file system. As a result, one of the common panaceas has been to repair those permissions, using procedures that have changed over those years.</p>
<h4>Repair disk permissions</h4>
<p>Until the introduction of System Integrity Protection (SIP) in 10.11 El Capitan, these problems generally resulted from files within the system acquiring incorrect permissions. To address this, Disk Utility had a feature to check and repair permissions of all major parts of the system, based on information contained in BoM files for system updates and installations. Repairing permissions in this way became one of the main panaceas in those older versions.</p>
<p><a href="https://eclecticlight.co/wp-content/uploads/2015/02/diskutilg.png"><img alt="Repairing permissions is no longer the panacea that it once was, but is part of checking general disk health." class="size-full wp-image-271" src="https://eclecticlight.co/wp-content/uploads/2015/02/diskutilg.png?w=940" /></a></p>
<p>Although primarily intended to deliver better security protection, one of the benefits of SIP was that it largely prevented system files from gaining incorrect permissions, and the feature to repair them was removed from Disk Utility. In any case, because of SIP it was no longer possible for Disk Utility to change the permissions of files that were protected by S

https://blog.odicforcesounds.com/permissionProblems.html
#permissions #social #language #comparative #think #twice #means

@silverpill That's probably because "followers only" is not a Fediverse-wide standard backed by the ActivityPub spec or a FEP, nor does it tie in with any actual permissions systems available in the Fediverse.

As an example for the latter, Hubzilla, (streams) and Forte do not translate Mastodon's "followers only" into "these Fediverse actors are granted permission to view, like/dislike and reply to this message indefinitely, and everyone else isn't".

On top of that, all three assume that the permissions of all elements in a conversation are always the same because that's how they work. So if I post in public, and one of my Mastodon followers comments "followers only", then Hubzilla will treat it as public regardless because if my post is public, and it is, then all comments and replies are public, too.

At least Hubzilla shows a red padlock symbol on each message whose "permissions" don't align with what Hubzilla understands or expects.

CC: @kopper :colon_three:

#Long #LongPost #CWLong #CWLongPost #FediMeta #FediverseMeta #CWFediMeta #CWFediverseMeta #Mastodon #Hubzilla #Streams #(streams) #Forte #Permissions #FollowersOnly

The early Unix history of chown() being restricted to root

https://utcc.utoronto.ca/~cks/space/blog/unix/ChownRestrictionEarlyHistory

#HackerNews #Unix #History #chown #root #permissions #techblog #programming

TIL: Systemd dynamic users are pretty cool! https://0pointer.net/blog/dynamic-users-with-systemd.html

#Linux #Homelab #Systemd #Users #Permissions #Security

@Helge

Good news! guide now talks about followers only posts. If you are in the set of "Some applications create replies to followers-only posts addressed to the replier's followers collection", please fix it.

This. In fact, Fediverse server software that behaves correctly has been around since long before Mastodon was made.

In fact, replies should never go to whoever is replied to unless it's the conversation starter. Replies should always go to the conversation starter and from there to all participants in the conversation, and they should do so without having to visually mention all participants. Also, conversations should be shown as a whole by default always and everywhere and not as single-message piecemeal with no context.

And in an ideal Fediverse, this should go hand in hand with only the members of the followers collection of the top-level post author being permitted to see a) the top-level post, b) any comments on the top-level post and c) any replies to comments in the first place. This would make sure that nobody who isn't intended as part of the audience will ever be able to see this content, also by making it technically impossible to repost/boost/repeat/share/otherwise forward anything in the conversation. But hardly anything in the Fediverse has the all-encompassing permissions system that's required to achieve this.

#Long #LongPost #CWLong #CWLongPost #FediMeta #FediverseMeta #CWFediMeta #CWFediverseMeta #Fediverse #AP-Next #Conversations #Permissions #FollowersOnly

#permissions

Client Info