Re: [dev] a suckless hex editor
Hi, * Greg Reagle <greg.rea...@umbc.edu> [2015-11-13 18:33]: > What do you think? I was afraid to overwrite the infile so I make the user > specify an outfile. Maybe if I did better error checking it would be okay > to overwrite? I'm sorry to be blunt, but this is not a suckless hex editor, but a poor mans hex editor that's barely useful for any real work in my opinion. I mean it may work fine for changing a single byte here or there and look at dumps, but it's not much more useful then dd or hd for that sake imho. I think to the very minimum, a proper hex editor should have the capability to show both hex and ascii in parallel, work well with large files, provide useful searches, and provide support for templates. Everything else is just a toy. Cheers, Nico -- Nico Golde - XMPP: n...@jabber.ccc.de - GPG: 0xA0A0 pgpvT5_aBtkSX.pgp Description: PGP signature
Re: [dev] [ii] [PATCH] keep nick synchronized with server
Hi, * Troy Sankey <sankey...@gmail.com> [2015-01-29 04:12]: > On 2015-01-28 14:44:52 -0500, Nico Golde wrote: > > What I think may be better would be to only set nick after a successful > > NICK > > message was received from the network as Truls suggests. > > Would you mind testing the attached patch? > > Tested, works. Can we still make it log to the network channel, even > after a success? (1) it is positive confirmation which helps the user > understand what's going on, (2) I think if somebody wrote an ii wrapper > which depended on that message, then this change would break it, and (3) > it makes implementing an ii wrapper easier (which is something I was > intending to do). Sorry for the blast from the past... but pushed :) Cheers, Nico -- Nico Golde - XMPP: n...@jabber.ccc.de - GPG: 0xA0A0 pgpQFQpAGcIhV.pgp Description: PGP signature
Re: [dev] [ii] [PATCH] keep nick synchronized with server
Hi,
* Truls Becken truls.bec...@gmail.com [2015-01-27 08:57]:
On Mon, Jan 26, 2015 at 3:23 AM, Troy Sankey sankey...@gmail.com wrote:
If an error occurs changing nick (with /n) then it will become out of
sync with the server. Here are some of the consequences:
* ii will log outgoing messages with the new nick, but others will
receive them from the old nick
* private messaging breaks
Conceivably, this issue is common on large networks where there is a
high likelihood of nick collisions. I noticed it on my own server where
the maximum nick length is 9 characters, and I accidentally exceeded
that.
This patch removes the /n command, making /NICK the only way to change
the nick. This could make people angry, what do you think? /me doesn't
think there are many people using ii, so it won't make many people
angry :-)
Alternatively, /n could still send NICK, but not prematurely set the variable.
Thanks for the report, this is definitely a problem. If possible, I'd like to
prevent dropping /n mostly for compatibility reasons and making sure that
basic IRC functionality is still provided by short commands.
What I think may be better would be to only set nick after a successful NICK
message was received from the network as Truls suggests.
Would you mind testing the attached patch?
Cheers
Nico
--
Nico Golde - XMPP: n...@jabber.ccc.de - GPG: 0xA0A0
diff --git a/ii.c b/ii.c
index d93266c..f52c71c 100644
--- a/ii.c
+++ b/ii.c
@@ -38,6 +38,7 @@ static time_t last_response;
static Channel *channels = NULL;
static char *host = irc.freenode.net;
static char nick[32]; /* might change while running */
+static char _nick[32]; /* might change while running */
static char path[_POSIX_PATH_MAX];
static char message[PIPE_BUF]; /* message buf used for communication */
@@ -261,7 +262,7 @@ static void proc_channels_input(Channel *c, char *buf) {
break;
case 'n':
if(strlen(buf)=3){
-snprintf(nick, sizeof(nick),%s, buf[3]);
+snprintf(_nick, sizeof(nick),%s, buf[3]);
snprintf(message, PIPE_BUF, NICK %s\r\n, buf[3]);
}
break;
@@ -357,6 +358,8 @@ static void proc_server_cmd(char *buf) {
snprintf(message, PIPE_BUF, -!- %s changed mode/%s - %s %s, argv[TOK_NICKSRV], argv[TOK_CMD + 1] ? argv[TOK_CMD + 1] : , argv[TOK_CMD + 2]? argv[TOK_CMD + 2] : , argv[TOK_CMD + 3] ? argv[TOK_CMD + 3] : );
else if(!strncmp(QUIT, argv[TOK_CMD], 5))
snprintf(message, PIPE_BUF, -!- %s(%s) has quit \%s\, argv[TOK_NICKSRV], argv[TOK_USER], argv[TOK_TEXT] ? argv[TOK_TEXT] : );
+ else if(!strncmp(NICK, argv[TOK_CMD], 5) !strcmp(_nick, argv[TOK_TEXT]))
+ snprintf(nick, sizeof(nick), _nick);
else if(!strncmp(NICK, argv[TOK_CMD], 5))
snprintf(message, PIPE_BUF, -!- %s changed nick to %s, argv[TOK_NICKSRV], argv[TOK_TEXT]);
else if(!strncmp(TOPIC, argv[TOK_CMD], 6))
pgp6Ug8aZTUyh.pgp
Description: PGP signature
Re: [dev] [ii] Patch to use ii with UCSPI backend
Hi, * Markus Teich markus.te...@stusta.mhn.de [2015-01-22 14:30]: younix wrote: I don't get the point with an additional git branch!? What would be the advantage of it, instead of a diff on the website? How would it look like if you made the next release of ii? After a new official release or just a simple new bugfix commit, I feel a `git merge master` from the new branch would be simpler than adapting the patch each time. Basically it's a tradeoff between a more complex updating mechanism (more work for the maintainer) and a more complex repository structure (harder to understand for new users). Right that was my main motivation to suggest this in the first place. Either way, I have no preference, if you prefer a patch for the website that's absolutely fine, so let's go for that! Cheers Nico -- Nico Golde - XMPP: n...@jabber.ccc.de - GPG: 0xA0A0
Re: [dev] [ii] Patch to use ii with UCSPI backend
Hi, * younix j.klem...@wemelug.de [2015-01-15 22:41]: this diff changes the network connection of ii to the UCSPI[1] protocol. This makes ii much more flexible. With the UCSPI protocol you could use features like IPv6[2], SOCKSv5[3] or even TLS[3]. This diff extracts the socket handling infrastructure to an external program like tcpclient. So it shrinks the codebase and complexity. What is your opinion about this diff? At least it would be great to put this patch at the ii suckless webpage. So I could made an OpenBSD port (flavor) of it. I would rather not want to include it upstream due to the additional dependency. However, I really like the idea and think there is definitely a value having that as an option. I see two possibilities and I have no preference in either direction, either we put this as a diff on the website or alternatively we maintain this in git as a branch. The website has the advantage that it would allow you to easily maintain that patch and put up new revision on your own. What do you think? Thanks this patch, I like the idea! Cheers Nico -- Nico Golde - XMPP: n...@jabber.ccc.de - GPG: 0xA0A0 pgpnEzUK7SHI_.pgp Description: PGP signature
Re: [dev] ncurses or ...
Hi, * Dimitris Zervas dzer...@dzervas.gr [2014-01-31 00:36]: [...] Shouldn't we create a new TUI library? I found http://www.clifford.at/stfl/ fairly decent. It's unfortunately pretty much stalled in terms of upstream development though. Nico -- Nico Golde - XMPP: n...@jabber.ccc.de - GPG: 0xA0A0
Re: [dev][ii]Help with my frontend
Hi, * Hugues Moretto-Viry hugues.more...@gmail.com [2013-04-29 20:17]: I installed ii and now I'm trying to create a little shell (mksh) frontend for it. I saw the existing frontends on the wiki, but I prefer creating another one from scratch. It will perfectly fit my needs. I use tail -f on the out file, but I would like to ask you, if you know a prompt (I don't know how to call it) like the one included with less. I want to include this prompt at the bottom of the terminal (running tail -f). Any ideas? Have you tried multitail? This would also give you syntax highlighting... Cheers Nico -- Nico Golde - XMPP: n...@jabber.ccc.de - GPG: 0xA0A0
Re: [dev] ii IPv6 support
Hi, * William Giokas 1007...@gmail.com [2013-04-12 03:35]: On Fri, Apr 12, 2013 at 09:25:25AM +0800, Patrick Haller wrote: On 2013-04-11 21:17, Carlos Torres wrote: it was there just a little hidden http://git.suckless.org/sites/tree/tools.suckless.org/ii/patches/ii-ipv6.diff i mean in the ii repo - http://git.suckless.org/ii I agree...I think they should be put into separate branches. It would make rebasing to a newer version ridiculously easy for end users, and managing patches easy as well. This is actually a great suggestion! I will do this as soon as I'm not traveling anymore. Maybe the respective people could also get access to remote branches so they can maintain this directly and I don't have to update this all the time. Cheers Nico pgpM2nJu3FhzG.pgp Description: PGP signature
Re: [dev] ii IPv6 support
Hi, * Patrick 201009-suckl...@haller.ws [2013-04-08 12:25]: Attached is a patch to add IPv6 support to ii, based on where it was as of 7a99152ce64d7006730006094b333edbecbe505a Enjoy, scream, whatever... hmm? http://tools.suckless.org/ii/patches/ii-1.7-ssl.diff Cheers Nico
Re: [dev] gregkh likes us
Hi, * Kai Hendry hen...@iki.fi [2013-02-17 04:19]: [...] The Linux kernel is sucking. http://royal.pingdom.com/wp-content/uploads/2012/04/linux-kernel.0011.jpg This picture is pretty much meaningless for judging how much the kernel sucks given the amount of new driver code, file systems etc. that get added over time. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 pgpB9PZ2wxLCP.pgp Description: PGP signature
Re: [dev] iim - ii improved and rewriten
Hi, * Ivan Kanakarakis ivan.ka...@gmail.com [2013-01-08 23:11]: On 8 January 2013 23:28, Nico Golde n...@ngolde.de wrote: * Ivan Kanakarakis ivan.ka...@gmail.com [2013-01-08 14:52]: [...] anyway, I hope I did not annoy anyone, I just found cause on what you said to express my thoughts for the community, not the software or ii and iim. Nah, not all all! Also good work! Please also send patches for ii! ;P (Not being ironic :) Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 pgpgE89Xh7gQU.pgp Description: PGP signature
Re: [dev] iim - ii improved and rewriten
Hi, * Anselm R Garbe garb...@gmail.com [2013-01-08 12:50]: On 8 January 2013 03:05, Ivan Kanakarakis ivan.ka...@gmail.com wrote: I've been tweaking ii's code lately, mainly cleaning it up and fixing a couple of things I noticed, but ended up rewriting it from scratch. Thus resulted iim[0] (name given by ^7heo on irc - thanks) Why not contributing to the official ii project instead? I guess nion would be ok with this. Please check with nion. As mentioned on irc, send patches ;) There have been many forks/rewrites of dwm concepts as well, none of those are hosted on suckless.org though for obvious reasons. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 pgpY7W_zPQqht.pgp Description: PGP signature
Re: [dev] iim - ii improved and rewriten
Hi, * Ivan Kanakarakis ivan.ka...@gmail.com [2013-01-08 14:52]: On 8 January 2013 14:02, Nico Golde n...@ngolde.de wrote: * Anselm R Garbe garb...@gmail.com [2013-01-08 12:50]: On 8 January 2013 03:05, Ivan Kanakarakis ivan.ka...@gmail.com wrote: I've been tweaking ii's code lately, mainly cleaning it up and fixing a couple of things I noticed, but ended up rewriting it from scratch. Thus resulted iim[0] (name given by ^7heo on irc - thanks) Why not contributing to the official ii project instead? I guess nion would be ok with this. Please check with nion. As mentioned on irc, send patches ;) yep, I have to study for an exam but hopefully will find some time do it Cool! [offtopic] the _obvious reasons_ though, are not so obvious to me. suckless is supposed to be about software that sucks less, software that is simple, easy to understand and easy to hack. if a piece of software is less complex than a suckless project then the suckless people should want to have it. Yep makes sense, even though it should not be the goal of the project to evaluate every single replacement for suckless software and assign a suckless score. otherwise suckless is just like every other organization that builds their own tools and ties themselves so hard to those tools that forgets why that organization was created in the first place, thinking that nothing else can ever work as good I totally agree on this general assumption. I fail to see how it applies to something which sucks technically exactly the same. In this particular case, it's mostly about personal taste and reducing a couple of lines of code for something that is already significantly reduced compared to the pieces of software that are seen as bloat. Don't get me wrong, I think I already explained this on IRC. I am not opposed to the idea of having something like iim. It's certainly a fun project to hack on. But I am against reinventing the wheel for the sake of it. Of course you can argue that iim sucks less than ii because it's parsing is simpler (I don't think it makes sense to argue with SLOC for two such small projects), but that brings up the natural question of why not patching that instead of replacing something completely. I'm not trying to pull a Jörg Schilling here, I just don't get your thinking of how free software and contributions in this ecosystem work. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 pgpUv9Pe9_0q5.pgp Description: PGP signature
[dev] [ii] 1.7 release
Hey, way too late, but I just wrapped up the current git head of ii[0] to an 1.7 release. The archive is available at [1]. 1.7 (2013-01-05) - -k now specifies an environment variable that contains the server key. This behaviour has been changed in order to not expose the password in the process list. - Fix parsing of JOIN messages for certain servers. Thanks Ivan Kanakarakis! - Use , rather than _ for slash characters in channel names. As per RFC , is not allowed in a channel name, while _ is. Thanks plomplomplom and Nils Dagsson Moskopp! Thanks everyone for the contributions! [0] http://tools.suckless.org/ii/ [1] http://dl.suckless.org/tools/ii-1.7.tar.gz Cheers Nico pgpXfDhkhiDbV.pgp Description: PGP signature
Re: [dev] ii missing include?
Hi, * Edgaras dev...@gmail.com [2012-08-14 11:40]: I was trying to compile ii against musl, and I found that it seems ii.c is missing include declaration namely #include sys/select.h otherwise fd_set is undefined and most likely select() too. I do not know how it compiles with gnu libc, or maybe this is problem with musl and select.h should be included from some other header file, I do not know. /* According to POSIX.1-2001 */ #include sys/select.h /* According to earlier standards */ #include sys/time.h #include sys/types.h #include unistd.h Anyway, I added the include. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpnwm6aaOC36.pgp Description: PGP signature
Re: [dev] [ii] exposed password on process monitoring
Hi, * Ivan Kanakarakis ivan.ka...@gmail.com [2012-06-13 14:49]: On 20 April 2012 03:37, Nico Golde n...@ngolde.de wrote: [...] I think a nice thing to do that would also resolve the naming choice would be to have -k or some other argument mean that ii should read the -k flag as an env var. so $ ii -k IRCPASS would getenv(IRCPASS), and $ ii -k OFTCPASS would getenv(OFTCPASS) etc I agree this is actually also a very nice solution! I will think about that a little before I commit. any news on this ? do you think any of the propused ideas will reach upstream ? Thanks for reminding me. ii tip contains a change now so that -k specifies an environment variable containing the password and not the password directly. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpOrOIenk83Y.pgp Description: PGP signature
Re: [dev] [ii] exposed password on process monitoring
Hi, * Bjartur Thorlacius svartma...@gmail.com [2012-04-21 01:45]: On Fri, 20 Apr 2012 00:37:40 -, Nico Golde n...@ngolde.de wrote: * Ivan Kanakarakis ivan.ka...@gmail.com [2012-04-20 01:54]: I think a nice thing to do that would also resolve the naming choice would be to have -k or some other argument mean that ii should read the -k flag as an env var. so $ ii -k IRCPASS would getenv(IRCPASS), and $ ii -k OFTCPASS would getenv(OFTCPASS) etc I agree this is actually also a very nice solution! I will think about that a little before I commit. Environment variables are of course also visible using ps (probably ps e or ps -e, depending on your system, but I'm not on a unice to test atm). Yes to your own user: [nion@nybble:~$] ls -l /proc/$$/environ -r 1 nion nion 0 Apr 21 04:11 /proc/7661/environ If you know any OS/version where this is different, don't use it ;) Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgp11AnBmQDWo.pgp Description: PGP signature
Re: [dev] [ii] exposed password on process monitoring
Hi,
* Connor Lane Smith c...@lubutu.com [2012-04-19 18:51]:
On 19 April 2012 17:24, Ivan Kanakarakis ivan.ka...@gmail.com wrote:
I was thinking in having -k with no argument to go search for a file
like oftc.passwd and grab the password from there.
How about making 'ii -k -' read the password from stdin? Flags with
optional arguments are bad, imo.
I don't really like putting that in a file. I'm more in favor of something
simpler as the following currently:
diff -r d163c8917af7 ii.c
--- a/ii.c Mon Oct 31 21:35:12 2011 +0100
+++ b/ii.c Fri Apr 20 01:18:31 2012 +0200
@@ -460,7 +460,7 @@
int i;
unsigned short port = SERVER_PORT;
struct passwd *spw = getpwuid(getuid());
- char *key = NULL, *fullname = NULL;
+ char *key = getenv(II_KEY), *fullname = NULL;
char prefix[_POSIX_PATH_MAX];
if(!spw) {
If if you don't want to leak your password use the environment variable and not
-k then...
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0
For security reasons, all text in this mail is double-rot13 encrypted.
pgpQO2lEe3DlR.pgp
Description: PGP signature
Re: [dev] [ii] exposed password on process monitoring
Hi, * Ivan Kanakarakis ivan.ka...@gmail.com [2012-04-20 01:54]: On 20 April 2012 02:24, Connor Lane Smith c...@lubutu.com wrote: On 19 April 2012 23:51, Connor Lane Smith c...@lubutu.com wrote: [...] however if one wants to connect to more than one server and has a different password for that other server then the env var doesn't help, scriptwise talking. ofcourse one can reset the var and invoke the new ii isntance, but if you're doing that in a script and you don't want to be including the passwd within the script then this cant work. Why not, the script could read it from a file not? Even though I don't see the difference. Whoever can read that script likely can also read the file. well, what I have in mind with that ^ is something like: $ IRCPASS=fooo connect.sh and connect.sh fires up two ii instances to connect to two different server which need a different password. I think a nice thing to do that would also resolve the naming choice would be to have -k or some other argument mean that ii should read the -k flag as an env var. so $ ii -k IRCPASS would getenv(IRCPASS), and $ ii -k OFTCPASS would getenv(OFTCPASS) etc I agree this is actually also a very nice solution! I will think about that a little before I commit. Cheers Nico pgp4ED1bVtWac.pgp Description: PGP signature
Re: [dev] [dwm] 2000 SLOC
Hi, * Anselm R Garbe garb...@gmail.com [2011-10-31 11:02]: On 31 October 2011 10:43, Connor Lane Smith c...@lubutu.com wrote: On 31 October 2011 08:38, Anselm R Garbe garb...@gmail.com wrote: The current list of unclear removal candidates is: * ii (Nion, are you still maintaining it?) I disagree with this on the basis that it's an interesting program. If need be I can maintain it. For ii it is just a question of maintenance. Sorry for the late response, missed this thread. I'm still maintaining and using it. So do some other people who occasionally contact me. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpydLn6OcLJZ.pgp Description: PGP signature
Re: [dev] [dwm] 2000 SLOC
Hi,
* Connor Lane Smith c...@lubutu.com [2011-10-31 21:05]:
On 31 October 2011 20:33, Nico Golde n...@ngolde.de wrote:
Sorry for the late response, missed this thread. I'm still maintaining and
using it. So do some other people who occasionally contact me.
Could you please apply the attached sanity patch? There are a few
strange bits in the source.
Thanks a lot for the patch! Applied apart from one change:
snprintf(nick, sizeof(nick), %s, spw-pw_name);
snprintf(prefix, sizeof(prefix),%s/irc, spw-pw_dir);
- if (argc = 1 || (argc == 2 argv[1][0] == '-' argv[1][1] == 'h'))
usage();
-
+ if(argc 2)
+ usage();
for(i = 1; (i + 1 argc) (argv[i][0] == '-'); i++) {
While this looks way more simple and sane I want to keep the behaviour for the
-h command line switch as it's kinda expected to work with most programs.
Rest applied.
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0
For security reasons, all text in this mail is double-rot13 encrypted.
pgpXukdq4nYgu.pgp
Description: PGP signature
Re: [dev] [ii][patch] fix custom command regression
Hi, * Hiltjo Posthuma hil...@codemadness.org [2011-01-29 20:43]: I noticed a possible regression bug introduced in changeset 84. Afaics it only allows sending custom commands with one character so it doesnt send /something. Thanks for the report, I somehow missed this last part of the original patch by samurai. Fix is on its way. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpq1pXcTx1gj.pgp Description: PGP signature
Re: [dev] [ii] patch - update man page
Hi, * Evan Gates evan.ga...@gmail.com [2010-06-24 21:37]: Small update to the ii man page to include /a to mark user away. (I got thoroughly confused) thanks, applied in hg tip. cheers nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpTKCyPikLY3.pgp Description: PGP signature
Re: [dev] Suckless BT client(s)?
Hi, * pancake panc...@youterm.com [2010-05-04 12:17]: I use rtorrent, but i thouught it was pure :? I agree. I'm also using rtorrent and imho it's the best trade-off between usability, lots of flexibility and complexity. The source code of libtorrent is also not too bad. At least for me, rtorrent (apart from some minor odds and bugs) is pretty much suckless. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpdAvefrNe9L.pgp Description: PGP signature
Re: [dev][ii]
Hey, * Andreas Wagner andreasbwag...@gmail.com [2010-03-21 16:35]: What is the proper way to leave irc channels in ii. Does one kill the process? Or remove the irc directory? Or is there a command for this? echo /l channel/in or PART directly into the server in fifo Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgp8jRjCqE804.pgp Description: PGP signature
Re: [dev] [SLOCK] is not safe
Hi, * Andres Perera andres...@gmail.com [2010-01-18 22:16]: On Mon, Jan 18, 2010 at 4:23 PM, anonymous aim0s...@lavabit.com wrote: This thread is hilarious, I find it pretty funny that on a mailing list of the suckless project people are suggesting all kinds of weird things to solve this instead just using exec /usr/bin/dwm in ~/.xinitrc rather than /usr/bin/dwm. Just checked: I was always using exec in xinitrc. And I can still killall slock. I'm also using exec dwm in xinitrc, as are most people that use startx or xinit. That doesn't solve anything. Huh? What is the issue then? The original mail stated the problem is putting the shell into background by ctrl-z and then killing slock which clearly doesn't work if you exec into startx. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpP1wNUD7XPK.pgp Description: PGP signature
Re: [dev] [SLOCK] is not safe
Hi, * Premysl Hruby dfe...@gmail.com [2010-01-19 12:21]: On (19/01/10 12:05), Nico Golde wrote: * Andres Perera andres...@gmail.com [2010-01-18 22:16]: On Mon, Jan 18, 2010 at 4:23 PM, anonymous aim0s...@lavabit.com wrote: This thread is hilarious, I find it pretty funny that on a mailing list of the suckless project people are suggesting all kinds of weird things to solve this instead just using exec /usr/bin/dwm in ~/.xinitrc rather than /usr/bin/dwm. Just checked: I was always using exec in xinitrc. And I can still killall slock. I'm also using exec dwm in xinitrc, as are most people that use startx or xinit. That doesn't solve anything. Huh? What is the issue then? The original mail stated the problem is putting the shell into background by ctrl-z and then killing slock which clearly doesn't work if you exec into startx. Problem here is not using exec startx or startx exit, not using or not using exec in xinitrc/xsession! So what else is it? Being able to switch to the console is no security issue. Being able to interact with a shell where there shouldn't be one, is. Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpxBCnihKSSJ.pgp Description: PGP signature
Re: [dev] [SLOCK] is not safe
Hi, * Nico Golde n...@ngolde.de [2010-01-18 20:03]: * Premysl Hruby dfe...@gmail.com [2010-01-17 16:53]: On (17/01/10 16:24), Gregor Best wrote: Date: Sun, 17 Jan 2010 16:24:11 +0100 From: Gregor Best g...@ring0.de To: dev@suckless.org Subject: Re: [dev] [SLOCK] is not safe List-Id: dev mail list dev.suckless.org User-Agent: Mutt/1.5.20 (2009-06-14) On Sun, Jan 17, 2010 at 04:17:16PM +0100, Julien Pecqueur wrote: Hi, I'm using slock and i am suprised to realize that is not safe at all! I launched slock in my DWM session. I just have to press CTRL+ALT+F1 and press CTRL+z (to send startx in background an get the hand on the shell) and type killall slock to unlock the session... Same thing with every other screen locker. The only solution is to remove the ChangeVT* mappings from the xmodmap. Not really, simply using 'startx exit' instead of plain 'startx' is sufficient. This thread is hilarious, I find it pretty funny that on a mailing list of the suckless project people are suggesting all kinds of weird things to solve this instead just using exec /usr/bin/dwm in ~/.xinitrc rather than /usr/bin/dwm. Seriously, WTF?! errm not exec dwm but startx, yeah sorry... here is what i use actually in my zshrc: if [ $(tty) = /dev/tty1 ]; then exec startx fi Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpDLaGPFjgW2.pgp Description: PGP signature
Re: [dev] [SLOCK] is not safe
Hi, * Nico Golde n...@ngolde.de [2010-01-19 13:48]: * Premysl Hruby dfe...@gmail.com [2010-01-19 12:21]: On (19/01/10 12:05), Nico Golde wrote: * Andres Perera andres...@gmail.com [2010-01-18 22:16]: On Mon, Jan 18, 2010 at 4:23 PM, anonymous aim0s...@lavabit.com wrote: This thread is hilarious, I find it pretty funny that on a mailing list of the suckless project people are suggesting all kinds of weird things to solve this instead just using exec /usr/bin/dwm in ~/.xinitrc rather than /usr/bin/dwm. Just checked: I was always using exec in xinitrc. And I can still killall slock. I'm also using exec dwm in xinitrc, as are most people that use startx or xinit. That doesn't solve anything. Huh? What is the issue then? The original mail stated the problem is putting the shell into background by ctrl-z and then killing slock which clearly doesn't work if you exec into startx. Problem here is not using exec startx or startx exit, not using or not using exec in xinitrc/xsession! So what else is it? Being able to switch to the console is no security issue. Being able to interact with a shell where there shouldn't be one, is. Hehe, Meilos post just made me aware of the clever sentence you made here, I assumed your english just sucks and interpreted it obviously wrong. Really a nice sentence and yeah I just realized that in 20100118185636.gc6...@ngolde.de I was saying exec dwm instead of exec startx, grr :) Ofc it is about execing into startx... Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpGGtd0ItvTs.pgp Description: PGP signature
Re: [dev] [SLOCK] is not safe
Hi, * Julien Pecqueur j...@julienpecqueur.com [2010-01-17 16:22]: I'm using slock and i am suprised to realize that is not safe at all! I launched slock in my DWM session. I just have to press CTRL+ALT+F1 and press CTRL+z (to send startx in background an get the hand on the shell) and type killall slock to unlock the session... .oO(use exec in startx to start dwm?!) Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpgitSNb9nmB.pgp Description: PGP signature
Re: [dev] [SLOCK] is not safe
Hi, * Premysl Hruby dfe...@gmail.com [2010-01-17 16:53]: On (17/01/10 16:24), Gregor Best wrote: Date: Sun, 17 Jan 2010 16:24:11 +0100 From: Gregor Best g...@ring0.de To: dev@suckless.org Subject: Re: [dev] [SLOCK] is not safe List-Id: dev mail list dev.suckless.org User-Agent: Mutt/1.5.20 (2009-06-14) On Sun, Jan 17, 2010 at 04:17:16PM +0100, Julien Pecqueur wrote: Hi, I'm using slock and i am suprised to realize that is not safe at all! I launched slock in my DWM session. I just have to press CTRL+ALT+F1 and press CTRL+z (to send startx in background an get the hand on the shell) and type killall slock to unlock the session... Same thing with every other screen locker. The only solution is to remove the ChangeVT* mappings from the xmodmap. Not really, simply using 'startx exit' instead of plain 'startx' is sufficient. This thread is hilarious, I find it pretty funny that on a mailing list of the suckless project people are suggesting all kinds of weird things to solve this instead just using exec /usr/bin/dwm in ~/.xinitrc rather than /usr/bin/dwm. Seriously, WTF?! Cheers Nico -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0 For security reasons, all text in this mail is double-rot13 encrypted. pgpOAfaUWy3EK.pgp Description: PGP signature
Re: [dev] [surf] Bookmarks patch for 0.2
Hi,
* Tadeusz So??nierz tadzi...@gmail.com [2009-11-02 09:39]:
On 2-11-2009 02:15:25, Nico Golde wrote:
* Tadeusz So??nierz tadzi...@gmail.com [2009-10-20 16:36]:
[...]
+showbmarks(Client *c, const Arg *arg) {
+ /* I wonder if 4 kB is too much or not enough */
+ char html[4096] = ;
+ /* same here. time will tell */
+ char uri[128];
+ FILE *f;
+ stop(c, NULL);
+ f = fopen(bmarksfile, r);
+ while(fscanf(f, %127s\n, uri) != EOF) {
+ snprintf(html[strlen(html)], sizeof(html) - strlen(html),
+ a href='%s'%s/abr /, uri, uri);
You may want to html escape the uri, not?
Well, there are some security reasons, if that's what you mean. But
my tiny investigation (I mean, entering query string to google
containing html tags) showed that they become urlencoded by the app
itself, so it seems safe to me. If there's anything I don't know, please
let me know.
OK fine. Yes that was what I meant.
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0
For security reasons, all text in this mail is double-rot13 encrypted.
pgp6TFCDVfjfQ.pgp
Description: PGP signature
Re: [dev] [surf] Bookmarks patch for 0.2
Hi,
* Tadeusz So??nierz tadzi...@gmail.com [2009-10-20 16:36]:
[...]
+showbmarks(Client *c, const Arg *arg) {
+ /* I wonder if 4 kB is too much or not enough */
+ char html[4096] = ;
+ /* same here. time will tell */
+ char uri[128];
+ FILE *f;
+ stop(c, NULL);
+ f = fopen(bmarksfile, r);
+ while(fscanf(f, %127s\n, uri) != EOF) {
+ snprintf(html[strlen(html)], sizeof(html) - strlen(html),
+ a href='%s'%s/abr /, uri, uri);
You may want to html escape the uri, not?
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0
For security reasons, all text in this mail is double-rot13 encrypted.
pgpGCAVwA4E9A.pgp
Description: PGP signature
