●● IRC: #boycottnovell @ Techrights IRC Network: Wednesday, April 27, 2022 ●● ● Apr 27 [00:29] *Noisytoot has quit (Ping timeout: 2m30s) [00:36] *Noisytoot (~noisytoot@y56qsb6r6yg94.irc) has joined #boycottnovell ● Apr 27 [02:06] *u-amarsh04 (~amarsh04@v6xmmrhxmbafc.irc) has joined #boycottnovell [02:07] *u-amarsh04 (~amarsh04@freenode-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [02:18] *u-amarsh04 has quit (Quit: Konversation terminated!) [02:18] *u-amarsh04 has quit (Quit: Konversation terminated!) [02:18] *u-amarsh04 (~amarsh04@v6xmmrhxmbafc.irc) has joined #boycottnovell [02:18] *u-amarsh04 (~amarsh04@freenode-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [02:34] *u-amarsh04 has quit (Quit: Konversation terminated!) [02:34] *u-amarsh04 has quit (Quit: Konversation terminated!) [02:40] *u-amarsh04 (~amarsh04@v6xmmrhxmbafc.irc) has joined #boycottnovell [02:40] *u-amarsh04 (~amarsh04@freenode-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell ● Apr 27 [04:08] *u-amarsh04 has quit (Quit: Konversation terminated!) [04:08] *u-amarsh04 has quit (Quit: Konversation terminated!) ● Apr 27 [06:13] *DaemonFC has quit (Quit: Leaving) ● Apr 27 [07:17] Techrights-sec https://lists.gnu.org/archive/html/libreplanet-discuss/2022-04/msg00037.html [07:17] -TechrightsBN/#boycottnovell-lists.gnu.org | Re: thank you elon musk [07:24] schestowitz
  • [07:24] schestowitz
    Pop!_OS 22.04 LTS has landed!
    [07:24] -TechrightsBN/#boycottnovell-blog.system76.com | System76 Blog Pop!_OS 22.04 LTS has landed! [07:24] schestowitz
    [07:25] schestowitz

    Update and upgrade Pop!_OS automatically from the OS Upgrade & Recovery panel in Settings! Minimize interruption by scheduling what day & time that you want your computer to perform the updates. Scheduled automatic updates include support for Debian, Flatpak, and Nix packages.

    [07:25] schestowitz

    To reduce distractions, notifications for available updates are set to show weekly by default. The frequency can also be set to daily or monthly notifications. Notifications wont show if you have automatic updates enabled. Automatic updates are turned off by default.

    [07:25] schestowitz
    [07:25] schestowitz
    • [07:25] schestowitz
  • [07:25] schestowitz
    Canonical may go public in 2023, claims US$175m profit last year
    [07:25] schestowitz
    [07:26] schestowitz

    The head of Canonical, the company behind the Ubuntu Linux distribution, claims it recorded a profit of US$175 million (A$237.7 million) in 2021 and is likely to undertake an IPO in 2023.

    [07:26] -TechrightsBN/#boycottnovell-iTWire - Canonical may go public in 2023, claims US$175m profit last year [07:26] schestowitz
    [07:26] schestowitz
    • [07:26] schestowitz
  • [07:26] schestowitz
    What is MongoDB and why use it for modern web applications?
    [07:26] schestowitz
    [07:26] schestowitz

    Organisations of different scales and forms want to harness the power of data to identify new business opportunities and improve current business operations. Organisations that use data effectively can hold a potential advantage the ability to make faster and more informed business decisions. However, working with data can be a long-standing problem for businesses and functions, especially in data [07:26] schestowitz management and software development.

    [07:26] schestowitz

    One essential use case in which organisations require fast phase development and excellent data management is building modern web-based applications. Organisations demand a high-quality working system that can be deployed as quickly as possible. In addition, these applications should be able to scale. So, every application must be designed and built on a suitable database. Traditionally, web [07:26] -TechrightsBN/#boycottnovell-What is MongoDB and why use it for modern web applications? | Ubuntu [07:26] schestowitz applications used relational databases as primary data store, with an appreciation for the well-normalised data model. But as applications modernise, more developers lean towards adopting alternative data stores, such as NoSQL (Not Only Structured Query Language) because of their benefits.

    [07:26] schestowitz

    One of the applications that can help organisations develop modern web-based applications is MongoDB. This database enables organisations to build scalable and data-driven applications. The data model and persistence strategies are built for high read and write throughput. In addition, it has an automatic failover capability. If youre wondering what MongoDB is, its benefits, and how MongoDB helps run [07:26] schestowitz modern web-based application production, this blog is for you.

    [07:26] schestowitz
    [07:26] schestowitz
    • [07:35] schestowitz-TR great finds in Daily Links, now we see some numbers about the effect of destroying YouTube with ads [07:35] schestowitz-TR in 2018, IIRC, Twittter did the same [07:35] schestowitz-TR killing off third parties [07:35] schestowitz-TR shoving lots of ads [07:35] schestowitz-TR they temporarily made preofit for the first time [07:35] schestowitz-TR but THEY LOST A TON OF USERS [07:35] schestowitz-TR then they were back to losses [07:35] schestowitz-TR YouTube might be the same ● Apr 27 [08:26] *teucer_ (~teucer@v74c8zibpsh3s.irc) has joined #boycottnovell [08:56] schestowitz-TR Techdirt says "utilizing established IP" [sic] but should know better! https://www.techdirt.com/2022/04/26/paradox-fully-embraces-fan-games-with-developer-affiliate-program/ | Source: Techdirt [08:56] -TechrightsBN/#boycottnovell-Paradox Fully Embraces Fan-Games With Developer Affiliate Program | Techdirt [08:57] schestowitz-TR not the first time [08:57] schestowitz-TR I see a lot of things in EFF, CC, and TechDirt that I cannot agree with [08:57] schestowitz-TR Mozilla has long crossed the border ● Apr 27 [09:04] *u-amarsh04 (~amarsh04@v6xmmrhxmbafc.irc) has joined #boycottnovell [09:04] *u-amarsh04 (~amarsh04@freenode-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [09:05] *u-amarsh04 has quit (Quit: Konversation terminated!) [09:05] *u-amarsh04 has quit (Quit: Konversation terminated!) [09:05] *u-amarsh04 (~amarsh04@v6xmmrhxmbafc.irc) has joined #boycottnovell [09:05] *u-amarsh04 (~amarsh04@freenode-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [09:07] schestowitz-TR Abusive Bully on Twitter https://www.democracynow.org/2022/4/26/twitter_elon_musk_free_speech | Source: Democracy Now [09:07] -TechrightsBN/#boycottnovell-www.democracynow.org | Elon Musk, the Worlds Richest Man, Has Been an Abusive Bully on Twitter for Years. Now He Owns It | Democracy Now! ● Apr 27 [10:11] Techrights-sec ypuotube is dying, first the sharecroppers are going elsewhere, along with their [10:11] Techrights-sec followers, and then google is tryingto squueze the remining fools, thus driving [10:11] Techrights-sec more sharecroppers away [10:12] *wallacer has quit (Ping timeout: 2m30s) [10:15] schestowitz-TR I could never prove it due to "creative" accounting, but I've long argued that like with Gulag Code [10:15] schestowitz-TR and ShitHub, there's no real business mode; [10:15] schestowitz-TR Same for Twitter [10:15] schestowitz-TR the "free" account is how they build the business [10:15] schestowitz-TR with netflix nthe expenses are huge, but they do charge a fee [10:15] schestowitz-TR so anyway, they operate in a vacuuum [10:15] schestowitz-TR assuming they can somehow turn the useds into customers [10:15] schestowitz-TR yesterday I messed aroung with youtube [10:15] schestowitz-TR toi find football videos [10:15] schestowitz-TR of the game here [10:15] schestowitz-TR they keep pushing PACKAGES for youtube [10:15] schestowitz-TR like I'd actually pay them to watch video [10:15] schestowitz-TR it's hard to convince people to start paying [10:15] schestowitz-TR for what they used to get for freee [10:15] schestowitz-TR back to gulag, they bought a losing operaiton [10:15] schestowitz-TR same for shithub [10:15] schestowitz-TR and gulag did not wish to buy shithub [10:15] schestowitz-TR it was put on offer [10:15] schestowitz-TR maybe shithub preferred to sell to gulag [10:15] schestowitz-TR the more they sequqeesze for money, like twitter in 2018 [10:15] schestowitz-TR the fewer used are left [10:15] schestowitz-TR until there's no geese left to squeeze [10:15] schestowitz-TR it's a precarious situation [10:15] schestowitz-TR spotify does charge for useds [10:15] schestowitz-TR but maybe not enough [10:15] schestowitz-TR so it tried podcasting [10:15] schestowitz-TR and lost millions of subscribers [10:15] schestowitz-TR 5 million x $10 a month = 50 a month lost. 50 million [10:15] schestowitz-TR In two months 100 million. [10:15] schestowitz-TR What they paid RogueAn. [10:17] Techrights-sec I'm not sure YouTube was losing so badly at the time it was bought but [10:17] Techrights-sec the storage and bandwidth don't pay for themselves and video is expensive [10:17] Techrights-sec as hell to even store and stream despite them getting the production work [10:17] Techrights-sec for free [10:17] schestowitz-TR remember it's easier to lose SUBSRFIBER [10:17] schestowitz-TR than a USED [10:17] schestowitz-TR because for the used it's harder to justify leaving [10:17] schestowitz-TR "it's free after all" [10:17] *wallacer (~quassel@6bsu33ajs4zs4.irc) has joined #boycottnovell [10:17] schestowitz-TR subscribers just "Stop paying" [10:17] schestowitz-TR if they are no longer happy [10:17] Techrights-sec yep [10:18] schestowitz-TR I want to see the whole bubble busrsting [10:18] schestowitz-TR NO BAILOUTS THIS TIMER [10:18] schestowitz-TR Stop doping!!! [10:18] schestowitz-TR OIn taxpayers' backs [10:18] schestowitz-TR The Reg wrote about the hololkens graft yesterday [10:24] Techrights-sec National security and preparedness would rise drastically if M$ were allowed [10:24] Techrights-sec to finally go under [10:25] schestowitz-TR but sales of all sorts would also diminish [10:25] schestowitz-TR can't allow dddat!!! [10:25] schestowitz-TR btw, rianne and I will go cycling soon, maybe in 30 mins [10:25] Techrights-sec excellent. have a great ride [10:35] schestowitz-TR Microsoft concern-trolling Linux while putting NSA back doors in Windows https://thehackernews.com/2022/04/microsoft-discovers-new-privilege.html see http://techrights.org/wiki/index.php/Microsoft_and_the_NSA [10:35] -TechrightsBN/#boycottnovell-thehackernews.com | Microsoft Discovers New Privilege Escalation Flaws in Linux Operating System [10:35] -TechrightsBN/#boycottnovell-techrights.org | Microsoft and the NSA - Techrights [10:35] schestowitz-TR -TechrightsSocial/#boycottnovell-social- thehackernews.com | Microsoft Discovers New Privilege Escalation Flaws in Linux Operating System [10:35] schestowitz-TR techrights.org | Microsoft and the NSA - Techrights [10:35] schestowitz-TR As if local privilege escalation is anywhere as severe as remotely-reachable back doors in Windows https://arstechnica.com/information-technology/2022/04/microsoft-finds-linux-desktop-flaw-that-gives-root-to-untrusted-users/ see http://techrights.org/wiki/index.php/Microsoft_and_the_NSA [10:35] -TechrightsBN/#boycottnovell-arstechnica.com | Microsoft finds Linux desktop flaw that gives root to untrusted users | Ars Technica [10:35] schestowitz-TR -TechrightsSocial/#boycottnovell-social- arstechnica.com | Microsoft finds Linux desktop flaw that gives root to untrusted users | Ars Technica [10:35] schestowitz-TR Microsoft is "concerned" about Linux security like wolves are concerned about the safety of sheep. [10:35] schestowitz-TR ICBM hypocrisy: "Many companies these days are keen to infuse their products and platforms with artificial intelligence" https://enterprisersproject.com/article/2022/4/diversity-drives-innovation [10:35] -TechrightsBN/#boycottnovell-enterprisersproject.com | 4 reasons diverse engineering teams drive innovation | The Enterprisers Project [10:35] schestowitz-TR -TechrightsSocial/#boycottnovell-social- enterprisersproject.com | 4 reasons diverse engineering teams drive innovation | The Enterprisers Project [10:35] schestowitz-TR Proprietary junk. Probably does more harm than good. Shilled by spamnil and other snakeoil spammers. https://www.globenewswire.com/news-release/2022/04/26/2429026/0/en/New-SIOS-LifeKeeper-for-Linux-Version-9-6-1-Adds-Support-for-the-Latest-Versions-of-Key-Operating-Systems-Databases-and-Cloud-Features.html [10:35] -TechrightsBN/#boycottnovell-www.globenewswire.com | New SIOS LifeKeeper for Linux Version 9.6.1 Adds Support [10:35] schestowitz-TR -TechrightsSocial/#boycottnovell-social- www.globenewswire.com | New SIOS LifeKeeper for Linux Version 9.6.1 Adds Support [10:35] schestowitz-TR "I'm going to start this blog by writing a very simple guide on installing Perl using perlbrew." http://blogs.perl.org/users/ali/2022/04/installing-perl-with-perlbrew.html [10:35] -TechrightsBN/#boycottnovell-Installing Perl with perlbrew | Ali [blogs.perl.org] [10:35] schestowitz-TR -TechrightsSocial/#boycottnovell-social- Installing Perl with perlbrew | Ali [blogs.perl.org] [10:35] schestowitz-TR This was patched a very long time ago; meanwhile, there are dozen of zero-day flaws in Windows that are remotely exploitable, not local privilege escalation https://thestack.technology/dirty-pipe-exploited-linux-vulnerability-cve-2022-0847/ [10:35] -TechrightsBN/#boycottnovell-thestack.technology | "Dirty Pipe" Linux vulnerability is now being exploited in the wild [10:35] schestowitz-TR -TechrightsSocial/#boycottnovell-social- thestack.technology | "Dirty Pipe" Linux vulnerability is now being exploited in the wild [10:35] schestowitz-TR While CISA admits Microsoft is full of holes that are actively exploited Microsoft and its faithful media operative try to shift attention to "Linux" https://www.bleepingcomputer.com/news/security/new-nimbuspwn-linux-vulnerability-gives-hackers-root-privileges/ [10:35] -TechrightsBN/#boycottnovell-www.bleepingcomputer.com | New Nimbuspwn Linux vulnerability gives hackers root privileges [10:35] schestowitz-TR -TechrightsSocial/#boycottnovell-social- www.bleepingcomputer.com | Ne [10:37] schestowitz-TR more research on the security matter would help beofore doign article/video [10:37] schestowitz-TR in case I do one [10:37] schestowitz-TR maybe there's more to it than meets the eye [10:37] schestowitz-TR like very hard to actually leverage such a bug [10:37] schestowitz-TR I did not look into it [10:37] schestowitz-TR but could use help here [10:37] schestowitz-TR Dan Goodin and other Micerosoft boot lickers... I would NOT truist a word from them [10:39] Techrights-sec I'm not sure what could be found, the media covers for M$ [10:39] Techrights-sec all day everyday [10:40] schestowitz-TR but maybe it's another one of those MS/GitHub claiming Linux has security "disaster" [10:40] schestowitz-TR because you can executive some malicious file in KDE or GNOME [10:40] schestowitz-TR Can [10:40] schestowitz-TR Not will [10:40] schestowitz-TR they tend toi exaggerate [10:40] schestowitz-TR CISA has just released a long list of severe Microsoft flaws [10:40] schestowitz-TR ACTIVELY exploited [10:42] Techrights-sec https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0847 [10:42] Techrights-sec https://nvd.nist.gov/vuln/detail/CVE-2022-0847 [10:42] Techrights-sec https://security-tracker.debian.org/tracker/CVE-2022-0847 [10:42] Techrights-sec https://security-tracker.debian.org/tracker/DSA-5092-1 [10:42] -TechrightsBN/#boycottnovell-cve.mitre.org | CVE - CVE-2022-0847 [10:42] Techrights-sec If there is a problem affecting non-M$ systems then that is unusual and therefore news. If there is a remote explo [10:42] -TechrightsBN/#boycottnovell-nvd.nist.gov | NVD - CVE-2022-0847 [10:42] Techrights-sec it in the wild being actively exploited [10:42] -TechrightsBN/#boycottnovell-security-tracker.debian.org | CVE-2022-0847 [10:42] -TechrightsBN/#boycottnovell-security-tracker.debian.org | DSA-5092-1 [10:42] Techrights-sec against M$ systems, that is the normal situation and thus not news [10:42] Techrights-sec https://www.ivanti.com/blog/how-to-mitigate-cve-2022-0847-the-dirty-pipe-vulnerability [10:42] -TechrightsBN/#boycottnovell-www.ivanti.com | How to Mitigate CVE-2022-0847 (The Dirty Pipe Vulnerability) [10:43] Techrights-sec "This includes a multitude of devices running Android 12 and Linux." [10:43] schestowitz-TR that includes apples and apple skins [10:47] Techrights-sec re: irc -- why would 951k "tweets" cost 7GB ? [10:47] Techrights-sec That's over 7kB per tweet [10:49] Techrights-sec 7GB comnpressed [10:49] schestowitz-TR i did not uncompress ot [10:49] schestowitz-TR but i assume thyey include images now [10:49] schestowitz-TR thereare 951k tweets [10:59] schestowitz-TR Security Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation Tux Machines http://www.tuxmachines.org/nod [10:59] -TechrightsBN/#boycottnovell- ( status 404 @ http://www.tuxmachines.org/nod ) [10:59] schestowitz-TR I might do a video about it when I return home ● Apr 27 [11:00] schestowitz-TR you have given some additional links to work with [11:00] schestowitz-TR inc. direct from CVE/source [11:00] schestowitz-TR what I want to know is, [11:00] schestowitz-TR and have not checked to verify [11:00] schestowitz-TR is how DIFFICULT this thing is to leverage [11:00] schestowitz-TR like pre-requisite [11:00] schestowitz-TR e.g. are there assumptions about which kernel modules are in place? [11:01] schestowitz-TR which kernel versions affected (many distros use stable old kernels) [11:01] schestowitz-TR Security Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation Tux Machines http://www.tuxmachines.org/node/164200 [11:01] -TechrightsBN/#boycottnovell-www.tuxmachines.org | Security Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation | Tux Machines [11:04] schestowitz-TR seeing the directrion itwire has taken [11:04] schestowitz-TR and the workload of "obligatory spam" [11:04] schestowitz-TR the only other person likely to check what's at stake here [11:04] schestowitz-TR is not likely to say a thing [11:04] schestowitz-TR FOSS Force is LF now [11:04] schestowitz-TR LF ACTIVELY PARTICIPATES in such antyi-Linux talking points [11:04] schestowitz-TR and then pushes Snyk et al products [11:04] *DaemonFC (~daemonfc@4cc7mshxus62e.irc) has joined #boycottnovell [11:26] *DaemonFC has quit (Quit: Leaving) ● Apr 27 [13:03] *activelow has quit (connection closed) [13:19] *activelow (~activelow@4gtddwxfc3mfn.irc) has joined #boycottnovell [13:36] *psydroid2 (~psydroid@memzbmehf99re.irc) has joined #boycottnovell ● Apr 27 [14:39] schestowitz-TR back [14:39] schestowitz-TR saved about 30-35 pounds [14:39] Techrights-sec is there a summary somewhere where FOSSForce comes clean on LF financing? [14:39] Techrights-sec https://lunduke.substack.com/p/6-dirty-secrets-of-the-linux-and [14:39] Techrights-sec "The Linux Foundation is funded (and controlled) by Microsoft and Facebook" [14:39] -TechrightsBN/#boycottnovell-lunduke.substack.com | 6 Dirty Secrets of the Linux and Open Source Industry [14:40] schestowitz-TR fossforce is an open secret [14:40] schestowitz-TR no need to fight them in the open [14:40] schestowitz-TR it would be counterproductive because we get support from them, esp. TM [14:42] Techrights-sec It would be convenient to have a link to point people to covering FOSS Force and [14:42] Techrights-sec LF but it does not have to be a link at TR [14:42] Techrights-sec [14:42] Techrights-sec The soft deadline for the temporary machine is approaching. Is there any [14:42] Techrights-sec use for it or can I power it down and repurpose it early? [14:42] Techrights-sec excellent [14:43] schestowitz-TR any offsite partitition withh backup of the site is helpful [14:43] schestowitz-TR in case of data losses [14:43] schestowitz-TR My connection is not fast, so my backups of the site are not so good [14:46] Techrights-sec The temporary system has no LXC and that is a quite unfamiliar way of managing [14:46] Techrights-sec services [14:52] schestowitz-TR a) many people with yellow labels in their carts today. maybe they come to grips [14:52] schestowitz-TR with them not being worth whatever their salary said 5 or 15 years ago, so it [14:52] schestowitz-TR is time to save where possible [14:52] schestowitz-TR b) 10 mins ago we discussed i the kitchen expenses, sum is estimated at 750/mo excluding [14:52] schestowitz-TR unexpected fees or help to family [14:52] schestowitz-TR c) lunduke is not "good neighbourhood" at this time [14:52] schestowitz-TR d) fossforce can be very schizo, so I try to stay on the good side of it [14:52] schestowitz-TR e) when TM had issue she took it very hard (fossforce), thought it was personal [14:52] schestowitz-TR I shared 3 "tweets" about that in IRC [14:52] schestowitz-TR f) we actually cycle up the stream and the food buying is comfy because it's right there and way back is downhill, [14:52] schestowitz-TR so carrying stuff in bicycle basket and backpack is easier than walking [14:52] schestowitz-TR (g) no food for the geese today (we keep heads and tails of bread for them, always) and there are already [14:52] schestowitz-TR some eggs hatching with gosling (we saw about 200 on the way) [14:52] schestowitz-TR h) I am going to start working on part 5 (belarus), maybe later I will do a video about that and about [14:52] schestowitz-TR microsoft FUD. I want to know the conditions for exploitation and how severe it really is [14:53] Techrights-sec ack [14:53] Techrights-sec c) lunduke is rather off since the last year or two [14:53] Techrights-sec e) ack [14:53] Techrights-sec grains might be healthier for the geese [14:53] Techrights-sec h) which vulnerabilities, specifically? [14:54] schestowitz-TR we limit to just one head or tail and split that among about a dozen each, so the total amount is small [14:54] schestowitz-TR because their food is grass and stuff, grain is better [14:55] schestowitz-TR [10:42] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0847 [14:55] -TechrightsBN/#boycottnovell-cve.mitre.org | CVE - CVE-2022-0847 [14:55] schestowitz-TR [10:42] https://nvd.nist.gov/vuln/detail/CVE-2022-0847 [14:55] -TechrightsBN/#boycottnovell-nvd.nist.gov | NVD - CVE-2022-0847 [14:55] schestowitz-TR [10:42] https://security-tracker.debian.org/tracker/CVE-2022-0847 [14:55] -TechrightsBN/#boycottnovell-security-tracker.debian.org | CVE-2022-0847 [14:58] schestowitz-TR CTRLC+ for copy I guess [14:58] schestowitz-TR I said, [14:58] schestowitz-TR wait there are 3 links about a new Microsoft FUD [14:58] schestowitz-TR The one about "dirty pipe" is old news [14:58] schestowitz-TR I think you pasted something from makeuseof [14:58] schestowitz-TR and then quoted two links from it [14:58] schestowitz-TR which I saw briefly [14:58] schestowitz-TR maybe then tried to pasted another [14:59] Techrights-sec yes ####################################### [14:59] Techrights-sec CVE-2022-0847 an co *are* old [14:59] Techrights-sec https://www.makeuseof.com/what-is-the-dirty-pipe-exploit-in-linux-and-fix-it/ [14:59] Techrights-sec """ [14:59] Techrights-sec The attack surface of Dirty Pipe stretches across all Linux kernel versions from 5.8 to 5.16.11. In layman's terms, [14:59] Techrights-sec it means that all the distros, from Ubuntu to Arch and everything in between, are susceptible to being compromised [14:59] -TechrightsBN/#boycottnovell-www.makeuseof.com | What Is the Dirty Pipe Exploit in Linux and How Can You Fix It? [14:59] Techrights-sec by Dirty Pipe. [14:59] Techrights-sec Affected Linux kernel versions range from 5.8 to 5.10.101. [14:59] Techrights-sec """ ● Apr 27 [15:00] schestowitz-TR There are two issues to cover (actually 3, I will mention ntfs neglect too) [15:00] schestowitz-TR but the main one is from Goodin and Bleeping garbage [15:00] Techrights-sec The problem sounds more like it is that many mobile and, especially, embedded [15:00] Techrights-sec systems don't / can't easily get kaintained [15:00] Techrights-sec despite being connected to the net. [15:01] schestowitz-TR they should have used simpler OSes, with smaller attack surface, and keep them OFF the Net where possible [15:01] schestowitz-TR but like browsers and sites throwing everything at you in bulk [15:01] schestowitz-TR they overcomplicate things for saving's sake [15:01] schestowitz-TR because small can be more expensive [15:01] schestowitz-TR small requires extra effort [15:02] Techrights-sec A problem is that everything nowadays has a network stack and the quick [15:02] Techrights-sec way to do that is throw a kernel at it [15:02] Techrights-sec ^Linux, specifically [15:02] Techrights-sec Making it smaller requires effort and skill [15:06] schestowitz-TR ===== [15:06] schestowitz-TR this is good for outsourcers [15:06] schestowitz-TR outsource software [15:06] schestowitz-TR outsource servers (hardware) [15:06] schestowitz-TR outsource dns [15:06] schestowitz-TR outsource "apps" [15:06] schestowitz-TR open an account [15:06] schestowitz-TR type in credit card [15:06] schestowitz-TR memorise GUI [15:06] schestowitz-TR some stand to benefit from this IT as "consumerist" model [15:06] schestowitz-TR even "apps" are now "storee" [15:06] schestowitz-TR in palmOS it was not like this [15:08] Techrights-sec Except that everything has been outsourced even the outsourcing so there [15:08] Techrights-sec is nothing there to build upon. ● Apr 27 [16:15] schestowitz-TR bbiab [16:15] schestowitz-TR draft [16:16] Techrights-sec ack [16:16] Techrights-sec same preview problem, probably related to HTTPS [16:16] Techrights-sec yep logging out and back in again makes it accessible [16:16] Techrights-sec The first paragraph ought to place the article in the series as well as mention [16:16] Techrights-sec in at least one line what the main point of the article will be [16:16] Techrights-sec How are Jung and SaM related to M$ and EPO? [16:16] Techrights-sec Last paragraph ought to have a conclusion or reverse summary [16:23] schestowitz-TR I am going to expand the summary [16:23] Techrights-sec . [16:23] Techrights-sec ack [16:24] schestowitz-TR ota in a few mins, rianne should do a round for tuxmachines before me to avoid collusion/dupes [16:24] schestowitz-TR I will record 2 videos [16:24] schestowitz-TR *collision [16:27] Techrights-sec thanks [16:28] schestowitz-TR gonna leave out the "OVER-THE-AIR" updates thing [16:28] schestowitz-TR and embedded devices [16:28] schestowitz-TR and small OS aspect [16:28] schestowitz-TR that 's used to discredit Linux for being bloated [16:28] schestowitz-TR but the key point is [16:28] schestowitz-TR Windows is a lot worse and a lot less safe [16:28] schestowitz-TR so I will focus on that [16:28] schestowitz-TR I won't link to the articles, I can instead show them on the screen in part [16:28] schestowitz-TR and make fun [16:28] schestowitz-TR OTA [16:30] schestowitz-TR ok [16:30] schestowitz-TR no need to feed them traffic [16:30] schestowitz-TR yes but not only is windows worse, harder to use and maintain, and a lot [16:30] Techrights-sec ok [16:30] Techrights-sec no need to feed them traffic [16:30] Techrights-sec yes but not only is windows worse, harder to use and maintain, and a lot [16:30] Techrights-sec (really a lot) less safe, all those shortcomings are taken for granted [16:30] schestowitz-TR (really a lot) less safe, all those shortcomings are taken for granted [16:30] Techrights-sec and people have become inured to them and will need to be shaken out of the [16:30] Techrights-sec complacancy or apathy [16:30] schestowitz-TR and people have become inured to them and will need to be shaken out of the [16:30] schestowitz-TR complacancy or apathy [16:30] Techrights-sec yes, all system are not perfect, no that deviation from the ideal is not on [16:30] schestowitz-TR yes, all system are not perfect, no that deviation from the ideal is not on [16:30] Techrights-sec the same scale with windows [16:30] schestowitz-TR the same scale with windows [16:56] *u-amarsh04 has quit (Quit: Konversation terminated!) [16:56] *u-amarsh04 has quit (Quit: Konversation terminated!) [16:58] *u-amarsh04 (~amarsh04@v6xmmrhxmbafc.irc) has joined #boycottnovell [16:58] *u-amarsh04 (~amarsh04@freenode-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell ● Apr 27 [17:27] *psydroid2 has quit (Ping timeout: 2m30s) ● Apr 27 [18:02] *psydroid2 (~psydroid@memzbmehf99re.irc) has joined #boycottnovell [18:02] *psydroid2 has quit (connection closed) [18:02] *psydroid2 (~psydroid@memzbmehf99re.irc) has joined #boycottnovell [18:21] schestowitz-TR will have drafts ready soon [18:21] schestowitz-TR got holiday apporoved 10-11/52022 [18:21] schestowitz-TR 5/2022 [18:21] schestowitz-TR i have 26 days for the year, I get to choose when [18:21] schestowitz-TR instead of fixed at quiet times like xmas [18:21] schestowitz-TR I did not use any in March and April, in effect saving them for later [18:22] schestowitz-TR drafts on the way, will quot you a little [18:23] Techrights-sec 2 days? [18:23] Techrights-sec nice [18:23] schestowitz-TR I say to people that they can read more in IRC to avoid repetition [18:23] schestowitz-TR and in #techrights main channel I've not participated much lately [18:23] schestowitz-TR it's doing ok on its own, relatively speaking [18:23] Techrights-sec the quotes are not of high quality though [18:25] Techrights-sec good that IRC is being taken care of on that channel [18:26] schestowitz-TR as you said, irc can be a "lot of work" [18:26] schestowitz-TR also, it is real time so attention and focus are impacted [18:45] schestowitz given what you sent me this morning, I had to check to see it's not conde nast [18:45] schestowitz or some other nasty thing [18:45] schestowitz https://en.wikipedia.org/wiki/Variety_(magazine) [18:45] -TechrightsBN/#boycottnovell-en.wikipedia.org | Variety (magazine) - Wikipedia [18:45] schestowitz turns out Variety is VERYOLD [18:46] schestowitz-TR draft (getting coffee) [18:59] Techrights-sec it sometimes covers some relevant topics [18:59] Techrights-sec https://www.homegrounds.co/how-long-should-i-boil-coffee-for/ [18:59] -TechrightsBN/#boycottnovell-www.homegrounds.co | How Long Should I Boil Coffee For? ● Apr 27 [19:01] schestowitz-TR so far I saw nothing I disliked about it [19:01] schestowitz-TR then again, similar weekly and daily "household" brands got scooped up by Condy Nasty and turned nasty [19:01] schestowitz-TR Vanity Fair is one of them, IRC [19:01] schestowitz-TR always reminds me of Variety [19:02] Techrights-sec we'll see how well they continue to do, it's been rather good so far [19:02] Techrights-sec They;ve been in the daily links since 2017 [19:04] Techrights-sec Vanity Fair is a whole different audience / genre [19:04] Techrights-sec https://en.wikipedia.org/wiki/Vanity_Fair_(magazines) [19:04] Techrights-sec That's Conde Nast [19:04] -TechrightsBN/#boycottnovell-en.wikipedia.org | Vanity Fair (magazines) - Wikipedia [19:05] Techrights-sec I always feel I have to wash my hands or something after referring to Wikipedia [19:05] Techrights-sec :( [19:06] schestowitz-TR haha, you beat me to it [19:06] schestowitz-TR I was literally about to open the same in wikipedia [19:06] schestowitz-TR and did [19:06] schestowitz-TR only to realise you already opened tyhe same page [19:06] schestowitz-TR The Internet or Web lack high-quality sites andf those that are good or were good get bought, infiltrated, perturbe [19:06] schestowitz-TR d [19:06] schestowitz-TR because there is financial incentive to do this [19:06] schestowitz-TR in paper form it's trickier to do this [19:06] schestowitz-TR SEO, anon edits, threats, DDOS... [19:07] Techrights-sec I don't trust it but it often contains links to sources that /are/ rather [19:07] Techrights-sec authoritative [19:08] schestowitz-TR or it REMOVED such links [19:08] schestowitz-TR see OSI/Simmons [19:08] schestowitz-TR because it's "toxic" to sugest some orgs like EPO or OSI don't defend their mission [19:09] schestowitz-TR people who infiltrate orgs for eprsonal or corporate gain would do the same to sites that write about such org [19:09] schestowitz-TR wikipedia, media... [19:34] Techrights-sec often the good links get removed from wikipedia, like in the ODF fight M$ put up [19:35] schestowitz-TR "sponsored" edits are the best edits (Jolliffe) [19:35] schestowitz-TR The shadow "wikipedia economy" [19:35] schestowitz-TR thank you, Microsoft [19:35] schestowitz-TR finally there is a "business model" [19:35] schestowitz-TR draft [19:40] *Despatche (~desp@u3xy9z2ifjzci.irc) has joined #boycottnovell ● Apr 27 [20:53] schestowitz-TR Microsoft lose more than 600 "top sites" this past month ago https://news.netcraft.com/archives/2022/04/27/april-2022-web-server-survey.html [20:53] -TechrightsBN/#boycottnovell-news.netcraft.com | April 2022 Web Server Survey | Netcraft News [20:58] schestowitz-TR *alone [20:58] schestowitz-TR 1881 active capsules known to Lupa. 1900 shortly. gemini://gemini.bortzmeyer.org/software/lupa/stats.gmi ● Apr 27 [21:03] *DaemonFC (~daemonfc@pgt2rhkttznbs.irc) has joined #boycottnovell ● Apr 27 [22:11] *psydroid2 has quit (Ping timeout: 2m30s)