Bonum Certa Men Certa

Links 12/07/2022: Microsoft/Lenovo Against GNU/Linux, Network Security Toolkit (NST) Has New Release



  • GNU/Linux

    • Desktop/Laptop

      • DaemonFC (Ryan Farmer)Matthew Garrett makes noise about Lenovo attacking GNU/Linux six years after accusing me of “spewing nonsense” for taking action against Lenovo. – BaronHK's Rants

        In 2016, I filed an antitrust complaint against Lenovo with the state government of Illinois, which opened an investigation. I believe I still have most of the documents about that. They entered into a settlement agreement with me in which they agreed to release “non-official” firmware that was “Linux-compatible” and arrange to knock it off on their future laptops, in exchange for me dropping my complaint.

        Yet here we are in 2022, and I suppose they haven’t technically violated that agreement, however, as you can still run the firmware in a non-default configuration in two ways to get GNU/Linux to load on an affected system. Apparently, there’s an option to re-enable the 3rd party Microsoft key in the UEFI setup, or you can just go in there and turn Secure Boot to “Disabled”.

        Linux boots either way on my Lenovo ThinkBook 15 ITL Gen2, which was Ubuntu certified (I am currently writing this in Fedora 36 and pleased as punch with the way my computer is operating.), but I turned off “Secure Boot”. There have been numerous issues with it, since it was designed by shitheads and implemented clumsily on GNU/Linux by another one who even got a Free Software Award for doing so, but when it is off you don’t run into any problems with it and you don’t have to figure out how to administer it and what to do when an OS fucks up something called a “dbx” that I don’t even want to read about.

        The whole system sucks. It is over-designed and full of bugs, and even assuming the user had any meaningful and straightforward way of controlling it that was guaranteed to be there (they don’t), more points of failure can only cause more breakdowns in any system.

        We’ve seen cases where people just left “Secure” Boot on because that’s what OEMs and people like Garrett recommend to do, and if they boot this OS or that OS in the wrong order, or load Windows, then their other operating systems can become quite unusable without going in there and resetting everything to factory settings and turning it off anyway.

        “Secure” Boot is a disaster waiting for a time and place to happen if you leave it on and for most users, especially ones that use competently designed operating systems, it brings nothing good to the table.

        I’m just crazy and want my computer to load what I tell it to.

        And I’m not even the first one to notice Lenovo and their insane defaults, btw.

        In 2012(?), Mr. Garrett himself blogged on whatever he was using back then that there was a Lenovo laptop that only booted if the boot manager was called “Windows” or “Red Hat Enterprise Linux”, and I don’t think they ever fixed that.

    • Applications

      • DaemonFC (Ryan Farmer)NewsWaffle on Gemini: A better way to read the news. – BaronHK's Rants

        NewsWaffle is a site in Geminispace that relays major news Web sites into a Gemini browser, such as my favorite, Lagrange. (Which I have installed on Fedora GNU/Linux from Flatpak.)

        The Gemini protocol doesn’t do much of anything that you can’t do already on the Web, if you want to use a subset of Web functionality.

        However, the point of constraining Gemini is to prevent people from being tempted to abuse sites in the direction in which the Web started to go in the mid to late 90s when browser vendor wars erupted, and ridiculous Web technologies and “incompatibility as a feature” arose, and companies started to find fundamentally inefficient and insecure technologies such as JavaScript easy to use in order to spy on the users and make their computer spend time doing things that they did not want it to do.

        Modern Web sites have gotten so grotesque that when you load their articles through Gemini using NewsWaffle, you can see the comparison between the HTML junk that it parsed, and the text that it cached and sent along to you. Oftentimes, just the HTML, not the style sheets, videos, JavaScript, or images, is 100 times larger than the Gemtext.

    • Instructionals/Technical

      • Linux HintSELinux on Ubuntu Tutorial

        One way to enhance your Linux system’s security is by adding an extra security layer using SELinux. With Security-Enhanced Linux (SELinux), the applications on your Linux systems get isolated from each other, protecting your host system. By default, Ubuntu uses the AppArmor, a Mandatory Access Control system which enhances the security, but you can use the SELinux to achieve the same.

        SELinux is beneficial, and in case of a security breach on your system, it prevents the spread of the breach to protect your system. Moreover, the tool protects the web servers depending on the mode you set for the SELinux. This guide offers a hands-on tutorial on how to disable the AppArmor, install the SELinux, enable the different modes, and disable SELinux.

      • Linux HintHow to Convert Image to PDF on Linux Command Line

        Often, you may need to convert or add the images to the PDF files, especially if you have an application and you want the users to download the images as PDF files.

        There are different online tools that convert the images to PDF. But security is always a concern, and you can’t trust these online sites with your data. The best method is to convert the images on your machine. Linux offers various command-line utilities to aid you with that. The two common tools are Img2PDF and ImageMagick.

      • LinuxTechiHow to Install and Configure HAProxy on RHEL 9

        In this guide, we will demonstrate how to install and configure HAProxy on RHEL 9 with Apache HTTP Server step by step.

        HAProxy stands for High Availability Proxy. It is an opensource and high-performance TCP/HTTP load balancer and reverse proxy for web applications. It works by distributing traffic across multiple backend web servers using a specified algorithm to prevent an application from being flooded by requests.

        Top websites that use HAProxy in their software stacks include Twitter, Reddit, Tumblr and Stack Overflow.

      • UNIX CopHow to Install PHP 7.X in CentOS 9 Stream

        CentOS 9 Stream incorporates many applications and packages with recent versions. This is generally good because it allows us to take advantage of the new features they incorporate. However, there are times when we have to install previous versions of components such as PHP. So, in this post, you will learn how to install PHP 7.x on CentOS 9 Stream.

        PHP is a web-oriented programming language. On CentOS 9 Stream version 8.1 is available, but there are times when we need an earlier version. In this sense, PHP 7.x still has some way to go, and many web applications require it.

      • Linux Shell TipsHow to Add a User to Multiple Linux Groups

        As a Linux administrator or growing Linux user, you will come across plenty of sysadmin routines that seem general yet are a must-have skill. Once such routine/skill relates to user and group administration. Such skill is important in Linux user account management where permissions (access controls) and audits are enforced by a privileged system user.

        This article will help us understand the implementation of the Linux sysadmin role related to adding a Linux user to multiple Linux groups. Therefore, to be fluent in this article guide’s walk-through, we will also need to briefly touch on user management and group management as separate modules in Linux user and group administration.

      • Barry KaulerRestore traditional direct writes to drive

        EasyOS 4.0 introduced running the session in RAM, specifically ZRAM, which is compressed RAM. This meant that the top read-write layer of the aufs layered filesystem is in RAM, which eliminates writes to the physical drive until specifically perform a session-save. It also has a speed advantage. And a security advantage.

        However, the traditional pre-4.0 behaviour, direct writing to the working-partition, can be reverted to. If you have a good quality SSD, you will probably find it will last "forever" anyway. I have been using "reasonable quality" flash sticks for years, without failure. But then, not on a continuous basis, as I my regular daily startup is a frugal install in a HDD.

  • Distributions and Operating Systems

  • Free, Libre, and Open Source Software

    • Licensing / Legal

      • The Register UKEven robots have the right to learn from open source [Ed: That's not learning, that's plagiarising]

        If the soap opera of Microsoft's relationship with open source had a theme tune, it'd be "The Long and Winding Goad".

        To a company whose entire existence depended on market control, open source's radical freedoms were an existential, cancerous threat. In return, open source was only too happy to play the upstart punk movement to Microsoft's bloated prog rock.

        In the end, both sides accepted the inevitable. Redmond wasn't going to control the cloud and mobile the way it controlled business IT, and the cloud and mobile loved open source. Interoperability was more profitable than insults. For its part, open source was, well, open. It couldn't stop Microsoft's newfound friendliness so wary acceptance became the new world order.

    • Programming/Development

  • Leftovers

  • Gemini* and Gopher

    • Personal

      • Ferrari surprisingly strong in Austria

        Strategy in motor racing can be weird. Normally you want to be in front, and you time your pit stops and make your tyre choices to avoid your rival getting ahead. But this weekend in Austria, Ferrari were happy to give Leclerc a strategy that involved passing Verstappen three times. He made the passes, and won the race, despite a throttle pedal that in the last few laps stayed on when he lifted his foot. His team mate Sainz should have been second but his engine blew and his car caught fire. "No! No! No!" he said, understandably.

      • Mushroom Growing Guide: BRF Cake Recipe & PF TEK

        Heres a post for anyone interested in mushroom growing. This document is my personal notes on making brown rice flour (BRF) cakes and using the Pf Tek procedure to fruit.

      • [Living] Hikes

        A big 'ol list of the hikes I've done, with a quick description/review for each, updated as I do more hikes.

      • Dream IX
      • Finally Settled In



        Of course, last night, I tested positive for COVID again, so that kind of marrs the whole thing, but I'll get over it, lol.

    • Politics

      • hayden white

        going to try to make this page for notes about deconstructionist historian hayden white i think. white is my new pet fixation so i want to have a home for his ideas as i understand them.

    • Technical

      • Programming

        • zshbrev

          zshbrev allows you to mix zsh code and brev code. Not for polished li’l “eggs” but for your own duct tape and chewing gum hacking and automation. Quick and dirty.


* Gemini (Primer) links can be opened using Gemini software. It's like the World Wide Web but a lot lighter.



Recent Techrights' Posts

They Say That People Are Afraid of or Worried About "Hey Hi", But the Worriers Should be the Fools Who Invested in It
At the end of the day nobody should worry more than those who invested their money in this bubble
Throwing Away "Old" Computers (Mozilla and Other Climate Deniers)
Mozilla is not leftist
 
Xubuntu Site Compromised
Let's hope it is not a security breach
Links 10/09/2025: Retaliation at Facebook and Microsoft Reveals Almost 100 Security Holes
Links for the day
Gemini Links 10/09/2025: Annihilation of Self, The Future Eaters, and Leaving Academia
Links for the day
Harassment evidence: franceinfo's Clara Lainé report on Ubisoft prosecution
Reprinted with permission from Daniel Pocock
Links 10/09/2025: Microsoft Layoffs in "RTO" Clothing and Windows TCO, GitHub TCO
Links for the day
Blaming Everything on China
TikTok works for China. GAFAM works for fascists.
People Get Tired of "Hey Hi" (AI), Unlike the Subservient Money-Obsessed Media That Gets Paid to Pretend This Bubble Still Matters
"crash will be way bigger than dot.com burst in 90s. and that was Internet, actually transformative technology, not this expensive AI toy with direct dependency on the energy input which is not scalable"
Brett Wilson LLP Accepts That the Serial Strangler From Microsoft Filed a Case That Also Implicates My Wife (Everything is Connected)
They used to pretend that there were two separate cases
10 Reasons to Disable (or Enable) UEFI Secure Boot
Tomorrow the "trusted corporation" Microsoft will see a certificate expire
Gemini Links 10/09/2025: Hospital and Large Feeds
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, September 09, 2025
IRC logs for Tuesday, September 09, 2025
The Bluewashing of Red Hat is Being Completed, Many Staff Understand They'll be Made Redundant
Jim AllowHurst (Whitehurst) is meanwhile promoting Microsoft's agenda from within other companies
statCounter Sees GNU/Linux Exceeding 10% in Bulgaria This Month
What can Microsoft still do to stop GNU/Linux?
Dark Patterns
Microsoft saying "security" is like a Convicted Felon in the White House saying "law and order".
It's Almost Fall (Autumn)
To "Facebook prison" you are bound
Bruce Schneier About "Secure Boot"
Bruce Schneier isn't a fan of "Secure Boot"
Links 09/09/2025: Microsoft Mass Layoffs Again and "RTO" (Timed Like It Serves as a Distraction From the Mass Layoffs)
Links for the day
RMS Told Microsoft to Stop 'Secure Boot' (He Even Went There to Say That), But They Didn't Listen
Dr. Stallman (RMS) assumed that speaking to sociopaths would work
What Richard Stallman Told Me About 'Secure' Boot in 2012
"if the user doesn't control the keys, then it's a kind of shackle"
Those Who Helped Microsoft Weaponise "Secure Boot" Against GNU/Linux and BSDs Are Fleeing
Microsofters doing what they do best: they evade accountability
Simple is Better, Simplicity is Power
That is "the advantage of having commodity GNU/Linux systems," an associate notes
Much Ado About Nonsense
Microsoft Lunduke is still all dramatisation and sensationalism
Current Events in France
It needs to dump Microsoft and other GAFAM (US) giants, move to Free software
Further Media Cut-downs
media reporting about the media being cut
Links 09/09/2025: US-Korea Tensions and Meta Whistleblowers
Links for the day
Gemini Links 09/09/2025: Moon Eclipse and ROOPHLOCH Reports
Links for the day
Links 09/09/2025: “Torrents of Hate” and Political Crisis in France
Links for the day
Gemini Links 09/09/2025: "Dedigitizing" and Forgejo on FreeBSD
Links for the day
Google News (Not Just Google Search) Lets Itself by Gamed by One Slopfarm - to the Point Almost Half of "Linux" News is Bot-Produced Plagiarism (LLM Slop With Slop Images)
That says a lot about what Google thinks of quality, even in Google News
Bill Gates-Funded Media Inadvertently Refutes the Microsoft Lie That in 2025 Microsoft Had Just Two Waves of Layoffs
There were about 12 rounds of layoffs so far in 2025
Official SUSE Blog Still Uses LLM Slop (Bots) to Make Fake Articles (Marketing)
The company is all about sound bites
Companies Realise That Slop Doesn't Work as Advertised, Accordingly Dump It
"Hype dims as a country-wide survey of US corporations shows a sudden drop-off in AI use among firms with more than 250 employees."
Microsoft-Funded Lawsuits Against Critics of UEFI 'Secure Boot'
Remember that no company (or law firm) ever survives collaborations with Microsoft
From theregister.co.uk to theregister.com (US) to The Register MS (Run by Microsoft Operatives) and theregister.ai
The best way to break this racket (or cycle of hype and harm) is to break the chains of funding
Open Source Initiative (OSI) Culture of Censorship Necessitates More Speech
The OSI bans dissent or people who merely point out that the OSI is abusive
How to Reach Us Discreetly (Other Than Encrypted E-mail)
We're still managing to maintain a 100% source protection record. We soon turn 19.
LLMs Are Vastly Worse Than a Waste of Energy and the Externalities Are Huge
Worse than just higher power bills for everybody
LLMs Versus Search (Not Replacing Search But Engaging in DDoS Attacks Against Web Sites That Permit Searching)
The state of the Web isn't just bad; it's utterly terrible
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, September 08, 2025
IRC logs for Monday, September 08, 2025
It's Only the Second Week of September and Already Two Waves of Layoffs at Microsoft, Slopfarms and Microsoft-Funded Sites Spin It as "AI Investments" Rather Than Commercial Failure
A very large third one expected next week
The UEFI 9/11 - Part IX - Shunning Old Computers (in 2023 the Certificate Was Updated/Overridden, Underlying Aim May Be Herding/Forcing People to Get TPM and Other 'Novel' Restrictions)
the "upgrade treadmill"
Rumour: Second Wave of Microsoft Mass Layoffs in September to Commence Third Week of September
That basically answers questions like, "Any specific date or time of the month?"
If Your Machine Still Has "Secure Boot" Enabled, Then Microsoft Has a de Facto Kill Switch (Even If Your Machine Doesn't Have Windows and Never Had Windows)
It is not incorrect to call UEFI 'secure boot' a "kill switch"
Gemini Links 08/09/2025: Reality, ROOPHLOCH 2025, and Writing Another Gemini Client
Links for the day
Updating Firmware is Not the Solution But Only Additional Risk, Disable "Secure Boot" Today
firmware blobs are buggy, secret, impossible to audit, and barely tested
Microsoft Tim's DevClass (Part of The Register MS/Situation Publishing) is Full of Slop
Looking at many sites that are full of slop images is becoming an eye sore and hallmark of text too likely generated by LLMs or 'assisted' (tainted) by them
Microsoft Trying to Fake Demand for Slop. At What Cost?
That's a giant demotion and broken promises
Reddit is Corporate Propaganda
To make matters worse, Reddit ousted many original moderators
Jeff Geerling Shocked to Discover Many Metrics in YouTube Are Fake (His Audience Turns Out to be Much Smaller)
Maybe self-host all videos, don't rely on Google's "FOMO" cheating (addiction based on false assumptions)
Sunlight is the Best Disinfectant and Kryptonite/Garlic to Vampires
Transparency (sometimes described by words like "Sunlight" or "Truth") is paramount
The Register MS Uses Slop in Articles About Slop
we are fairly certain it's slop or CG based on other people's work
Visiting a Web Page or a Public URL Should be Safe, Predictable, and Benign
It's probably too late to "fix" the Web
The Register MS (Situation Publishing) is Paid to Spread Mindless Hype for the "Hey Hi" Ponzi Scheme and That's a Serious Problem
"Sponsored by Zoom."
Links 08/09/2025: Burger King Cracked, Cox v. Sony Analysed
Links for the day
Gemini Links 08/09/2025: Socialist Computer Museum and GAFAM/ByteDance/TikTok-Dominated Net
Links for the day
Links 08/09/2025: Tim Crook Disappoints Apple Faithfuls and Zuckerberg Lies (Financial Fraud) for Cheeto King
Links for the day
EPO Workers Point Out that the EPO is Destroying the Planet Under the Guise of "Hey Hi" (It Also Grants Many Invalid Patents Illegally
On 12 March and 16 June 2025, staff representation met with the administration in the Local Occupational Health, Safety and Ergonomics Committee (LOHSEC) in Munich
Turn Off Microsoft's Restricted Boot ("Secure Boot")
We're still running a series on this issue
Social Control Media Sites Have Become Bot Farms (Not Limited to LLMs and Automation)
linkedin.com was nothing but trouble and losses for Microsoft
Deep in Debt With the Magnitude of Losses Quickly Growing, Microsoft "Open" "Hey Hi" Now Uses Broadcom for Vapourware, Pretending It'll Do OK Next Year
At some stage it'll collapse
You Can Tell Microsoft is in Trouble When Its Own Fans and Staff Blast it
"Microsoft sinks billions into chasing artificial intelligence fads to hype up its share price."
Multiple Undersea Cable Cuts and We're Still OK
Microsoft customers experience problems
Lawyers Who Think They Are Online Assassins Don't Deserve a Licence to Operate
they've become a laughing stock in their "sector"
Microsoft Windows Fell to 3.9% "Market Share" in Bahamas
Based on statCounter
How the European Union (EU) Fell Out of Love With Free/Libre Software
Lots of bribery
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, September 07, 2025
IRC logs for Sunday, September 07, 2025