Bonum Certa Men Certa

Links 12/07/2022: Microsoft/Lenovo Against GNU/Linux, Network Security Toolkit (NST) Has New Release



  • GNU/Linux

    • Desktop/Laptop

      • DaemonFC (Ryan Farmer)Matthew Garrett makes noise about Lenovo attacking GNU/Linux six years after accusing me of “spewing nonsense” for taking action against Lenovo. – BaronHK's Rants

        In 2016, I filed an antitrust complaint against Lenovo with the state government of Illinois, which opened an investigation. I believe I still have most of the documents about that. They entered into a settlement agreement with me in which they agreed to release “non-official” firmware that was “Linux-compatible” and arrange to knock it off on their future laptops, in exchange for me dropping my complaint.

        Yet here we are in 2022, and I suppose they haven’t technically violated that agreement, however, as you can still run the firmware in a non-default configuration in two ways to get GNU/Linux to load on an affected system. Apparently, there’s an option to re-enable the 3rd party Microsoft key in the UEFI setup, or you can just go in there and turn Secure Boot to “Disabled”.

        Linux boots either way on my Lenovo ThinkBook 15 ITL Gen2, which was Ubuntu certified (I am currently writing this in Fedora 36 and pleased as punch with the way my computer is operating.), but I turned off “Secure Boot”. There have been numerous issues with it, since it was designed by shitheads and implemented clumsily on GNU/Linux by another one who even got a Free Software Award for doing so, but when it is off you don’t run into any problems with it and you don’t have to figure out how to administer it and what to do when an OS fucks up something called a “dbx” that I don’t even want to read about.

        The whole system sucks. It is over-designed and full of bugs, and even assuming the user had any meaningful and straightforward way of controlling it that was guaranteed to be there (they don’t), more points of failure can only cause more breakdowns in any system.

        We’ve seen cases where people just left “Secure” Boot on because that’s what OEMs and people like Garrett recommend to do, and if they boot this OS or that OS in the wrong order, or load Windows, then their other operating systems can become quite unusable without going in there and resetting everything to factory settings and turning it off anyway.

        “Secure” Boot is a disaster waiting for a time and place to happen if you leave it on and for most users, especially ones that use competently designed operating systems, it brings nothing good to the table.

        I’m just crazy and want my computer to load what I tell it to.

        And I’m not even the first one to notice Lenovo and their insane defaults, btw.

        In 2012(?), Mr. Garrett himself blogged on whatever he was using back then that there was a Lenovo laptop that only booted if the boot manager was called “Windows” or “Red Hat Enterprise Linux”, and I don’t think they ever fixed that.

    • Applications

      • DaemonFC (Ryan Farmer)NewsWaffle on Gemini: A better way to read the news. – BaronHK's Rants

        NewsWaffle is a site in Geminispace that relays major news Web sites into a Gemini browser, such as my favorite, Lagrange. (Which I have installed on Fedora GNU/Linux from Flatpak.)

        The Gemini protocol doesn’t do much of anything that you can’t do already on the Web, if you want to use a subset of Web functionality.

        However, the point of constraining Gemini is to prevent people from being tempted to abuse sites in the direction in which the Web started to go in the mid to late 90s when browser vendor wars erupted, and ridiculous Web technologies and “incompatibility as a feature” arose, and companies started to find fundamentally inefficient and insecure technologies such as JavaScript easy to use in order to spy on the users and make their computer spend time doing things that they did not want it to do.

        Modern Web sites have gotten so grotesque that when you load their articles through Gemini using NewsWaffle, you can see the comparison between the HTML junk that it parsed, and the text that it cached and sent along to you. Oftentimes, just the HTML, not the style sheets, videos, JavaScript, or images, is 100 times larger than the Gemtext.

    • Instructionals/Technical

      • Linux HintSELinux on Ubuntu Tutorial

        One way to enhance your Linux system’s security is by adding an extra security layer using SELinux. With Security-Enhanced Linux (SELinux), the applications on your Linux systems get isolated from each other, protecting your host system. By default, Ubuntu uses the AppArmor, a Mandatory Access Control system which enhances the security, but you can use the SELinux to achieve the same.

        SELinux is beneficial, and in case of a security breach on your system, it prevents the spread of the breach to protect your system. Moreover, the tool protects the web servers depending on the mode you set for the SELinux. This guide offers a hands-on tutorial on how to disable the AppArmor, install the SELinux, enable the different modes, and disable SELinux.

      • Linux HintHow to Convert Image to PDF on Linux Command Line

        Often, you may need to convert or add the images to the PDF files, especially if you have an application and you want the users to download the images as PDF files.

        There are different online tools that convert the images to PDF. But security is always a concern, and you can’t trust these online sites with your data. The best method is to convert the images on your machine. Linux offers various command-line utilities to aid you with that. The two common tools are Img2PDF and ImageMagick.

      • LinuxTechiHow to Install and Configure HAProxy on RHEL 9

        In this guide, we will demonstrate how to install and configure HAProxy on RHEL 9 with Apache HTTP Server step by step.

        HAProxy stands for High Availability Proxy. It is an opensource and high-performance TCP/HTTP load balancer and reverse proxy for web applications. It works by distributing traffic across multiple backend web servers using a specified algorithm to prevent an application from being flooded by requests.

        Top websites that use HAProxy in their software stacks include Twitter, Reddit, Tumblr and Stack Overflow.

      • UNIX CopHow to Install PHP 7.X in CentOS 9 Stream

        CentOS 9 Stream incorporates many applications and packages with recent versions. This is generally good because it allows us to take advantage of the new features they incorporate. However, there are times when we have to install previous versions of components such as PHP. So, in this post, you will learn how to install PHP 7.x on CentOS 9 Stream.

        PHP is a web-oriented programming language. On CentOS 9 Stream version 8.1 is available, but there are times when we need an earlier version. In this sense, PHP 7.x still has some way to go, and many web applications require it.

      • Linux Shell TipsHow to Add a User to Multiple Linux Groups

        As a Linux administrator or growing Linux user, you will come across plenty of sysadmin routines that seem general yet are a must-have skill. Once such routine/skill relates to user and group administration. Such skill is important in Linux user account management where permissions (access controls) and audits are enforced by a privileged system user.

        This article will help us understand the implementation of the Linux sysadmin role related to adding a Linux user to multiple Linux groups. Therefore, to be fluent in this article guide’s walk-through, we will also need to briefly touch on user management and group management as separate modules in Linux user and group administration.

      • Barry KaulerRestore traditional direct writes to drive

        EasyOS 4.0 introduced running the session in RAM, specifically ZRAM, which is compressed RAM. This meant that the top read-write layer of the aufs layered filesystem is in RAM, which eliminates writes to the physical drive until specifically perform a session-save. It also has a speed advantage. And a security advantage.

        However, the traditional pre-4.0 behaviour, direct writing to the working-partition, can be reverted to. If you have a good quality SSD, you will probably find it will last "forever" anyway. I have been using "reasonable quality" flash sticks for years, without failure. But then, not on a continuous basis, as I my regular daily startup is a frugal install in a HDD.

  • Distributions and Operating Systems

  • Free, Libre, and Open Source Software

    • Licensing / Legal

      • The Register UKEven robots have the right to learn from open source [Ed: That's not learning, that's plagiarising]

        If the soap opera of Microsoft's relationship with open source had a theme tune, it'd be "The Long and Winding Goad".

        To a company whose entire existence depended on market control, open source's radical freedoms were an existential, cancerous threat. In return, open source was only too happy to play the upstart punk movement to Microsoft's bloated prog rock.

        In the end, both sides accepted the inevitable. Redmond wasn't going to control the cloud and mobile the way it controlled business IT, and the cloud and mobile loved open source. Interoperability was more profitable than insults. For its part, open source was, well, open. It couldn't stop Microsoft's newfound friendliness so wary acceptance became the new world order.

    • Programming/Development

  • Leftovers

  • Gemini* and Gopher

    • Personal

      • Ferrari surprisingly strong in Austria

        Strategy in motor racing can be weird. Normally you want to be in front, and you time your pit stops and make your tyre choices to avoid your rival getting ahead. But this weekend in Austria, Ferrari were happy to give Leclerc a strategy that involved passing Verstappen three times. He made the passes, and won the race, despite a throttle pedal that in the last few laps stayed on when he lifted his foot. His team mate Sainz should have been second but his engine blew and his car caught fire. "No! No! No!" he said, understandably.

      • Mushroom Growing Guide: BRF Cake Recipe & PF TEK

        Heres a post for anyone interested in mushroom growing. This document is my personal notes on making brown rice flour (BRF) cakes and using the Pf Tek procedure to fruit.

      • [Living] Hikes

        A big 'ol list of the hikes I've done, with a quick description/review for each, updated as I do more hikes.

      • Dream IX
      • Finally Settled In



        Of course, last night, I tested positive for COVID again, so that kind of marrs the whole thing, but I'll get over it, lol.

    • Politics

      • hayden white

        going to try to make this page for notes about deconstructionist historian hayden white i think. white is my new pet fixation so i want to have a home for his ideas as i understand them.

    • Technical

      • Programming

        • zshbrev

          zshbrev allows you to mix zsh code and brev code. Not for polished li’l “eggs” but for your own duct tape and chewing gum hacking and automation. Quick and dirty.


* Gemini (Primer) links can be opened using Gemini software. It's like the World Wide Web but a lot lighter.



Recent Techrights' Posts

su lisa && rm -rf /home/ibm/power
Novell was ruined by another person from IBM, Ronald Hovsepian
A Record Demand at Microsoft: Demand to Cancel
What we're witnessing is a very ungraceful destruction of XBox
Richard Stallman is Going to Finland to Give a Talk Next Thursday
A day later he speaks in Sweden
 
For the Second Time in a Few Weeks Microsoft Lunduke Makes False Accusations Against Senior Red Hat Staff to Incite a Despicable 'Troll Army'
Nothing that Microsoft Lunduke claims of says can be trusted
Microsoft is Losing Europe
Hence all the "support" and "discount" offers that are limited to Europe
The Free Software Foundation Starts Fund-raising for 40th Anniversary
New pop-up 2-3 days ahead of the 40th anniversary event
Michael “Monty” Widenius: It Started in 1983 With Richard Stallman (RMS)
The other co-founder of MySQL is a bit notorious for confronting RMS rather viciously
Systemd Breaks Networking in Debian and Microsoft Staff Rushes to Make Face-Saving Excuses in LWN
Microsoft's bluca is already there in the comments, his Microsoft money pays for LWN to let him leave comments early
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, October 01, 2025
IRC logs for Wednesday, October 01, 2025
What the End of XBox Will Look Like: a Fiery Crash
XBox is the next Skype. It won't last much longer. Expect many more layoffs.
Gemini Links 02/10/2025: SMTP Pipelining and End of ROOPHLOCH 2025
Links for the day
Slopwatch: Plagiarism, Fake Articles, and FUD About Linux
not a day goes by without Google News feeding FUD from slopfarms
Gemini Links 01/10/2025: Chat Control and End of Life
Links for the day
Links 01/10/2025: Long Covid Risk Reiterated, "Bitcoin Queen" Caught
Links for the day
Links 01/10/2025: EA $55 Billion Deal is Debt and Slop "Raises Vishing Risks"
Links for the day
Bluewashing at Red Hat Means Redundancies
The man who sold Red Hat to IBM meanwhile became a Microsoft Mono booster
After Killing OpenSource.com, IBM ('Red Hat') and OSI Told Us OpenSource.net Would Replace It (But That Didn't Happen)
Now it's time to move on, perhaps tarnishing the "Open Source" label some more (for whatever sponsor wants this)
Linux is Not a Community Project, It's a Wall Street Product
The core goal should be freedom
Bad Actors Abusing the Free Software Community, Vandalising It Using Rogue Politics and Old Tactics
Oil giants have long attempted to do this; now, the digital equivalent of Big Oil does this in technology
Social Control Media Isn't the Future, The Federation or Fediverse Isn't Growing, People's Accounts Vanish for Good
users' accounts will get deleted, not just become inactive
IBM is Failing, This Helps Show Wall Street is Entirely Detached From Actual Commercial Performance
IBM is unable to grow, it's just constantly shrinking
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, September 30, 2025
IRC logs for Tuesday, September 30, 2025
Clerical Aspects of Publishing and Development
In Free software, the management aspects are considerably reduced
Slopwatch: Fake Articles and Google News Promoting "Linux" Spam or Bot-Generated Fear, Uncertainty, Doubt (FUD)
These slopfarms help misplace blame
Third Wave of Microsoft Layoffs in September, This Time Many in Liverpool Affected
Be ready for more waves of layoffs ahead of the so-called "results" in late October
Gemini Links 30/09/2025: Motorcycling in Central Oregon, Protocol Styles and the Flag of Sark
Links for the day
Links 30/09/2025: Death Sentences, Internet Censorship, and Internet Shutdowns
Links for the day
Gemini Links 30/09/2025: Social Control Media and ROOPHLOCH
Links for the day
Richard Stallman About to Give More Talks in Europe, Some Confirmed Already
In Göteborg
Links 30/09/2025: CERN in "Have I Been Pwned" and More Windows TCO Blunders
Links for the day
Microsoft Canonical is Selling Mass Surveillance and Back Doors as "Security for Ubuntu"
If you are looking for a GNU/Linux distro to use, just remember that Microsoft has Ubuntu in the bag
Justice for Wildlife
animals cannot speak to humans who hate animals
Cowboys Gonna Be Cowboys (on the Internet, They're Not a New Problem)
Boys will be boys
Cowboys of the "Left" and Cowboys of the "Right"
Don't believe the lie that this is some "leftist" thing
When Codes of Conduct Serve to Protect Criminals From Much-Deserved Scrutiny
CoCs are typically unfit for purpose because enforcement lacks context and suitable understanding of the full background (the "full story")
It Took the Open Source Initiative (OSI) 4+ Years to Address the 'Data Breach' or Data Protection Violation Reported to the California Privacy Protection Agency (CPPA) in March 2025
We may never know the dialogue or its nature
Even Microsoft's Biggest Boosters (and Media Operatives) Are Turning Against Microsoft
Expect many more layoffs before the fake "results" next month
GNU Was Right 42+ Years Ago
Since then the abusive, user-hostile technology has spread like mushrooms
Old Isn't Always Inadequate
How many gadgets manufactured today (in 2025) will still work in 2075?
The Monkey Business of Rust People
Compatibility won't matter
Almost Half of the FSFE's Money (the Fake 'FSF', Misusing the Brand) Comes From Vodafone
That money always comes with strings, even if they're invisible to most of us
Microsoft Lunduke Spreads Deliberate Lies to Incite Online Mobs
Has he lost his reading comprehension skills?
Our 19th Birthday (in Just Over 5 Weeks From Now)
We meanwhile have ongoing, solid plans to cover patent-related issues when the FSF turns 40
British GNU/Linux Distro FydeOS Tops DistroWatch
That seems like a decent site and decent effort to keep an eye on
We'll Soon Have 75,000 GemText Pages
avoid many perils of today's Web
Google Used Free Software to Build a Monopoly. Now Google Kicks Free Software to the Curb
The "G" in "Google" does not stand for GNU. It never did. It's just another greedy company.
Gemini Links 30/09/2025: Retro Hardware, Federated Fragmentation, and Nex Server Written in C
Links for the day
4 More Days Till "4 decades, 4 freedoms, 4 all users"
We are now just 4 days away from the rare anniversary
Two Months After Merging to Hide GitHub Losses Microsoft is Doing It Again (This Time Windows)
Merging those two together is not a sign of strength but a tightening of budget
Speculations About the Next Large Wave of IBM/Red Hat Layoffs
the mass layoffs are likely to happen on week 3 or 4 in October
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, September 29, 2025
IRC logs for Monday, September 29, 2025