@JessTheUnstill @bohwaz @punkfairie @ajsadauskas @tomiahonen @fuchsiii Exactly...

Coincidentially, that's why #Android (and #iOS) doesn't let users have #root access because billions of devices owned by mostly "#TechIlliterates" that hardly get #SecurityUpdates would be an even bigger risk if they didn't boot a locked-down #ROM image, thus only allowing for #malware in user-privilegued userspace!

• I'd even go so far that I'd wish for @torproject to basically merge fmr. #FirefoxOS / #KaiOS & @tails_live / @tails / #Tails to build a #privacy-focussed #ROM for #Smartphones and #Tablets i.e. "#TailsMobile" or sth.

Cuz having a mobile OS that shoves everything through #Tor and only allows #userspace-Apps in the form modern web technologies would be a big #security and #privacy gain.

• Not to mention #amd64 is on it's way out and inevitably they gotta have to transition to supporting #arm64 and eventually #RISCv-#64bit at some point.

@kde@floss.social @kde@lemmy.kde.social

Thx for the info, then it is like that.

Here is the goal proposal

https://phabricator.kde.org/T17370

Tbh, #bubblewrap would need to be fixed drastically to be as secure as the #Android #sandbox. And (I am not sure yet) I think even #Snaps are more secure (on #Ubuntu with #Apparmor patches) than #Flatpak with the current system.

As far as I understood, sandboxing needs to happen in #userspace, with tools like #fuse doing the work while being restricted by #MAC like #SELinux or Apparmor.

dev/sysfs isn't quite the same, isn't it.

@thelegendlinux
#userspace #asciicompiler

@SweetAIBelle tho AFAICT the "#PersistentStorage" in @tails_live @tails / #Tails is just a fancy #GUI to handle #LUKS devices in #Userspace and basically just mount it's content under $HOME/Persistent/ aka. /home/amnesia/Persistent and merely handle some completely hidden subfolders for settings, translations and 3rd party apps...

I'm shure if I dive deeper into it I'll get the details at @torproject ...

The #partition layout of #ChromeOS

Like, I think I kinda understand what they do here. #fuse all the way, mounting everything in #userspace is a really good idea to reduce #attack surface.

But... it very quickly looks confusing as fuck XD

At the same time I think it would be great to have a Linux encryption setup that uses fuse purely.

Ieri in una conversazione scaturita dall’osservazione (non mia) di come possedere un “portatile Linux” (cioè, pensato e venduto con GNU+Linux; no, credo che nessuno di loro venga con distro non-GNU) sia sofferenza e miseria, perché a quanto dicono hanno sempre strani difetti di driver che non dovrebbero, e difetti hardware spettacolari (rest in piss Framework owners)… ho detto una cosa per scherzare, ma seriamente. Il tablet #Android medio, su cui si fa girare “Linux desktop” in modi più o meno ortodossi, ammesso di avere una tastiera fisica add-on decente, potrebbe essere un laptop Linux migliore di… boh, qualsiasi; a parte il Mac M1, credo. 😡️

In effetti così è imbrogliare, perché Android usa (una versione malata de) il kernel #Linux, quindi la parte desktop dell’equazione è tutta #userspace, e quindi o funziona o non funziona (funziona), vie di mezzo scomode non ce ne sono. Chrome OS sarebbe ancora più imbrogliare, perché quello in effetti è un semplicemente un sistema #desktop Linux un po’ malato, ma… chi fa i laptop Chrome OS? Esatto, gli stessi OEM che fanno i laptop Windows, che quando non hanno problemi di driver (cosa già rara) hanno sempre, e dico sempre, problemi hardware, o almeno compromessi… tablet Android da 100 euro avranno sempre uno schermo migliore di portatili Windows da 500 euro, quindi facciamo finta che non esistano proprio. 👻️

Vabbe, io la tastiera fisica ideale per #tablet non la ho, ma di tablet Adrod ne ho (anche troppi), quindi perché non fare un #esperimento??? Avendo l’urgio di spendere il mio tempo in modo poco saggio stasera, mi sono messa a configurare XFCE sul mio Galaxy Tab S6 Lite; ricordo che XFCE non è il desktop scrauso che tutti credono, ha semplicemente un tema default #scrauso, e una configurazione che su touch screen lasciamo perdere. Dopo un po’ di valutazioni, ho innanzitutto pompato i DPI custom a 168, per rendere il testo leggibile e le hitbox della UI toccabili, pur non volendo scalare tutta l’interfaccia a 2x (troppo grossa), o usare scaling frazionale (pupù cacca tutto sbleurrato), ingrandito di 2 punti tutti i font, e installato il materia-gtk-theme come stile GTK, mentre ho messo Arc-Darker, fork HiDPI, per XFWM (altrimenti, barre del titolo troppo piccole, mi sentivo a disagio). Tocchi finali: trasparenzine del compositor, singolo click per aprire elementi sul desktop e nel gestore di file, e il pannello in alto fissato a 64px di altezza, con icone belle toccabili e niente testo inutile. 💯️

Ora qualcuno dirà pure… “cosa ma #XFCE sul tablet?” Si regà, basta, è un ambiente desktop meno stupido di quanto sembri… come si vede nel video ha pure il tiling ai bordi dello schermo, e ricorda persino lo stato massimizzato delle #finestre quando una app viene riaperta (cosa a cui non vorrei rinunciare su tablet). Certo vorrei anche magari le finestre con bordi di ridimensionamento più grossi, pensandoci, cosa che però pare un vero casino (con guide che indicano file da modificare che nei miei temi non ci sono), e che mi sa non riuscirò a quagliare… ma alla fine non è vitale, avendo pure il pennino. ✨️

…Ah no? Giusto, qualcuni diranno “cosa ma XFCE sul tablet? in che modo, come hai fatto“… non c’ho tempo di spiegarlo, dopo anni e anni la pazienza non ce l’ho più. Su questo blog cinese dalla grafica rilassante ci sono guide molto efficienti al Linuxaggio sugli Androidi, tra cui come installare #Debian in #Termux (virtualmente obbligatorio, le repo di Termux hanno 2 app desktop in croce) e avere subito tutto funzionante, tra cui video, audio, e la scorciatoia home per avviare tutto in 1 click… si noti solo che io sudo l’ho settato in modo meno complicato, e l’emulazione del mouse di Termux:X11 l’ho messa a “Direct touch”, che con gli aggiustamenti di prima è perfetto, e in tutte le app GTK3/4 funge lo scrolling naturale e la selezione del testo come se fosse antani nativo… https://ivonblog.com/en-us/posts/termux-proot-distro-debian/ 🙏️

This server does not support sharing. Please visit .

https://octospacc.altervista.org/2024/08/19/linuxaggio-androidico/

#Android #desktop #Linux #Samsung #esperimento #tablet #SamsungGalaxy #Debian #userspace #GalaxyTab #scrauso #XFCE #finestre #Termux

minikube start --driver=virtualbox --no-vtx-check

#virtualization
#kernelspace vs #userspace #hypervisors

https://chatgpt.com/share/8074761e-017e-4571-aa63-384ae40b9cc1

When a developer learns kubernetes microservices, works on a windows laptop protected by cyberark and behind bluecoat and must become a devsecops expert.

https://kubernetes.slack.com/archives/C1F5CT6Q1/p1720859668481369?thread_ts=1720714401.537019&cid=C1F5CT6Q1

@hikari yeah, I'm pisded about the situation of #NativeLinuxGaming, but we've to blame the #GLibC people who constantly brick #Userspace!

After spending yesterday entirely by re-implementing #tcp in #userspace I now know:

- TCP is weird
- we have the PSH flag that completly makes the data ignore the TCP sending/recieve buffers and directly writes into the application's stream
- ACK can be part of literally any other package; you also can SYN, FIN or PSH data while ACK'ing
- zero-length data packages *technically* exist, but they dont do anything; they dont even wake up the FD when it's in a epoll
- the #linux #kernel is funny: it responds with RST to incomming TCP packets, even on raw sockets; you'll need to drop them via #iptables if you want to implement TCP in userspace

Learned a lot! Now I can go on and create a few tests for #webservers; mainly SYN floodings and so on.

But what I do agree with is that #Dropbear exists so why should one reimpement yet another #SSH #Server and/or #Client when the bare minimum #dbclient can be as little as <200kB is beyond me.

https://www.youtube.com/watch?v=SGmtP5Lg_t0&t=2749

#OS1337 #Linux #toybox #userspace #userland

I do object #Landley's opinion re: #SystemD on general-purpose #Desktop & #Server because #systemd solved a lot of issues:

But #toybox doesn't aim to be the #userland / #userspace of like @ubuntu so the #init could also ne just a simple #shell #script starting #toybox and I think that would be fine for most people.
https://www.youtube.com/watch?v=SGmtP5Lg_t0&t=2689s

After all I like #btop but I can understand why it won't he included in toybox but instead top, htop & iotop...

In fact, I like #toybox because it's clean and wants to be a #minimalist #userland / #userspace for #Linux...

And I think Linux as a #Kernel is best because it has extremely good #compatibility and #drivers across platforms...

I'm not #TerryDavis and I don't want to build another #TempleOS but make something useful yet smol for a lot of my projects...

https://www.youtube.com/watch?v=SGmtP5Lg_t0&t=1690s

New Episode: hpr3957 :: The Oh No! News.

Hosted by Some Guy On The Internet on 2023-10-03 is flagged as Clean and is released under a CC-BY-SA license.

Tags: #Userspace, #investmentscams, #recoveryscams.

https://hackerpublicradio.org/eps/hpr3957/index.html

@rq yeah, the #Enshittification is the problem.

If #Glibc wasn't a piece of shit that knowingly and willingly bricks #Userspace all the time #Docker would neither have a right to exist nor legitimate reason to be used.

I hope #Linux will migrate to #musl sooner than later...

@littlefox also since it's in #Userspace I hope there will be a way to forego any need for #sudo / #su / #doas ... entirely and thus lock down a system when needed.

https://www.howtogeek.com/devops/how-to-create-a-ram-drive-in-linux/

🍎 An #Apple #Exploitation #training a day keeps the doctor away! Learn all about #userspace level exploitation during Stefan Esser’s “#iOS 16 and #MacOS #Ventura Userspace Exploitation”. Get your ticket now!

🎟️ https://ringzer0.training/trainings/ios64-macos-userspace-exploitation.html

🍎 An #Apple #Exploitation #training a day keeps the doctor away! Learn all about #userspace level exploitation during Stefan Esser’s “#iOS 16 and #MacOS #Ventura Userspace Exploitation”. Get your ticket now!

🎟️ https://ringzer0.training/trainings/ios64-macos-userspace-exploitation.html

🍎 An #Apple #Exploitation #training a day keeps the doctor away! Learn all about #userspace level exploitation during Stefan Esser’s “#iOS 16 and #MacOS #Ventura Userspace Exploitation”. Sign up now and profit from the early bird rate!

🎟️ https://ringzer0.training/trainings/ios64-macos-userspace-exploitation.html

But one thing I do want to talk about is the recent idea, I saw probably during a discussion of @atomicpoet:

#Fediverse #autonomous #moderation - the idea that both moderation actions and the coordination of moderation teams should be completely run through the #Fediverse - thus removing a disconnect between #userspace and #moderatorspace on a technological level.

3/n

People have already submitted to our Refereed Track, Kernel Track, and Microconference Track. That's pretty neat. So make sure that you submit your proposal soon! 😊

#linuxplumbers #linuxplumbersconf #kernel #userspace #linux