Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
Let's Encrypt is coming soon: https://letsencrypt.org/
Re: [Trisquel-users] Ubuntu 10.04 (and Trisquel 4.0 Taranis) reaches End of Life
the link gives a 404 error
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
I don't understand mozilla: on one hand, they decide to include anti-privacy and annoying features like adds included inside the browser and third party cookies enabled by default and on the other hand they are dropping http in favor of the more secure https. If you see the scripts Mr. Rodrigez uses to build abrowser you will appreciate how large the configuration modifier is to make the browser more secure; let me share some examples: // Disable third party cookies pref(network.cookie.cookieBehavior, 1); // Privacy Freedom Issues // https://webdevelopmentaid.wordpress.com/2013/10/21/customize-privacy-settings-in-mozilla-firefox-part-1-aboutconfig/ // https://panopticlick.eff.org // https://wiki.mozilla.org/Fingerprinting pref(privacy.donottrackheader.enabled, true); pref(privacy.donottrackheader.value, 1); pref(dom.ipc.plugins.flash.subprocess.crashreporter.enabled, false); pref(browser.safebrowsing.enabled, false); pref(browser.safebrowsing.malware.enabled, false); pref(services.sync.privacyURL, http://trisquel.info/en/legal;); pref(social.enabled, false); pref(social.remote-install.enabled, false); pref(datareporting.healthreport.uploadEnabled, false); pref(social.toast-notifications.enabled, false); pref(datareporting.healthreport.uploadEnabled, false); pref(datareporting.healthreport.service.enabled, false); pref(browser.slowStartup.notificationDisabled, true); pref(network.http.sendRefererHeader, 2); //Disable heartbeat pref(browser.selfsupport.url, ); // Disable plugin installer pref(plugins.hide_infobar_for_missing_plugin, true); pref(plugins.hide_infobar_for_outdated_plugin, true); pref(plugins.notifyMissingFlash, false); And that is just a sample. I don't know what is happening in Mozilla but does not seem good
Re: [Trisquel-users] is Laptop Ibm X60 Mini Tablet supported by libreboot?
Now comes the hardest part. Install libreboot without bricking the machine xD for the x60 if you know how to use a terminal then its much easier than it looks as the install is mostly automated with scripts but if your worried about bricking you could ask here or at the #libreboot irc channel and pepole would gladly guide you Tonight I'll sleep well knowing I own a x60 tablet compatible with libreboot. Awesome :) awesome indeed btw dose the tablet work well with trisquel?
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
This probably won't work out too well for old websites that aren't maintained anymore.
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
I think this is a great idea. Note that Mozilla and EFF are starting Let's Encrypt, so it will be much easier for people to move to HTTPS.
Re: [Trisquel-users] Bob's talk on LibreCMC @ North West (including pictures and video!)
https://trisquel.info/files/north-west-2015-ms-table.jpg kinda of funny and sickening at the same time!
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
as pepole tend not to visit your site when a scary: this connection is not trusted message comes up dose anyone know of a way to register your https certificate gratis or cheap? the lowest i found was £40 a year :(
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
In the hands of Big Co interests? as rtechie wrote : As someone who does a lot of work with PKI, I think this is an extremely bad idea. Making HTTPS mandatory will seriously degrade the security of existing web sites. Right now, the main problems with SSL/TLS have to do with bad actions by root Certificate Authorities (like China’s CA) issuing inappropriate or questionable certificates. You’re assuming that site operators, and more importantly users, are going to use HTTPS intelligently and appropriately and that’s a bad assumption. Forcing every single site to use HTTPS means that unless that site has a root CA cert, users will get a browser error. And we’ve “trained” users to avoid sites with browser errors. This will create a “gold rush” with the root CAs as lots of smaller sites start requesting certs. This will inevitably lead to more bad certs being issued. And there will be a LOT more questionable certs issued. Because you intend to block features behind HTTPS, you’re making it impossible to TEST using HTTP, so every single internal, QA, or test site needs a cert. Sure, they can use self-signed, but users will get a browser error. So now either that organization has to run their own CA or get more certs from the root CAs, which is a lot easier. That’s going to be a flood of cert requests on the CAs. I really need to stress what a problem it is that you’re requiring certs for all internal web sites. And what about intranet sites in general? Have you guys developed a better method, of any kind, for distributing enterprise root certs around? Right now, I have to manually install them on every PC. Now you’re saying I have to do that no matter what. The short version is that the core problem with HTTPS right now is that it’s too popular. Making HTTPS mandatory will further degrade it’s utility and put serious and important uses of HTTPS, like financial transactions, in danger.
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
Hello, I know about Let's Encrypt and I believe it's a great idea. But helping people switch from HTTP to HTTPS is one thing and forcing people to switch is another. I believe this decision will affect both users and website owners, at least for a long period of time because: - some users (actually a lot of them) don't know the issues with HTTP and they will believe it's the browsers fault and probably they will switch to another, proprietary maybe. - some sites owners don't know about Let's Encrypt and that they can get a good certificate for free. Choosing a free certificate nowadays is not quite easy. - some sites owners don't have the money to buy one or don't care. When users will start to complain the the website is not displayed correctly those website owners will tell they visitors to change the browser. I don't think it's a win situation for anyone, at least not for now.
Re: [Trisquel-users] colord maxing out CPU
I don't know why this happened, but restarting my computer solved it.
Re: [Trisquel-users] Searx metasearch engine
I set searx as my browser's default engine, and tried a bunch of searches. I'd say the results were comparable to ones I'd get by hitting bing or google. but the result presentation is wonderfully clean and easy to read. Thanks rfor the suggestion.
Re: [Trisquel-users] foire
Thanks a lot! This is great! :) Could you please join us on freenode at ##freepost to chat about this? Or if you prefer, ping me at zplus@peers.community
Re: [Trisquel-users] foire
joined ##freepost, Is that your email address or jabber account?
Re: [Trisquel-users] Calling all Trisquel users in GNU Social
I use orca 3.14.3 and was able to join !trisquel. I've noticed that some gnusocial instances are more accessible than others. Cheers, Dave gnusocial: http://social.2mb.solutions/davehunt
Re: [Trisquel-users] Verifying Trisquel download : md5 and sha256 OK, but GPG failed because key not found
You are smart to check what the commands do, before executing them. But, they are pretty safe - they don't do anything irreversible. :) Actually, originally I made a mistake, as the last command should be 'chmod 600 ~/.gnupg/*', not 'chmod 500 ~/.gnupg/*' (my previous post is corrected now). Commands beginning with 'sudo' are for doing something with admin/super privileges. Commands like 'chown -R mampir: DIRECTORY' are for making a DIRECTORY and everything in it belong to the user 'mampir'. The ':' after 'mampir' is for making everything also belong the primary usergroup of 'mampir', which is what you want 99% of the time. '$USERNAME' can be written in place of 'mampir', so everything will become owned by the user executing the command, no matter what his username is. 'chmod 700 DIRECTORY' makes a directory only accessible by you. '7' stands for the permissions: 4 (read) + 2 (write) + 1 (execute), so you can read, write in and execute a file/directory: 4 + 2 + 1 = 7 The two '0' digits are for setting permission on users belonging to your group and for all other users on your system. They are '0' so everything is disallowed for them. 'chmod 600 DIRECTORY/* makes all files within DIRECTORY accessible only by you: 4 (read) + 2 (write) = 6 (read-write) While directories need to be 'executable' for to be used, most files don't, so that's why it's '600', not '700'. The '*' means 'everything'.
[Trisquel-users] Searx metasearch engine
https://searx.me/about
Re: [Trisquel-users] Share your Desktop!
...
[Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
Hi there, I don't know if it's ok to post this here but has anyone red this https://blog.mozilla.org/security/2015/04/30/deprecating-non-secure-http/ ? It's just me or Mozilla is crazy ? How could this affect Abrowser and IceCat? I know HTTPS is better than HTTP but to force everyone to switch I don't think is a good idea. What do you think about this?
[Trisquel-users] Antwort: Searx metasearch engine
May it get's downvoted just because there's no further information in his post?
Re: [Trisquel-users] Screen resolution
I recently reinstalled trisquel and I noted that the summary which I posted was not complete. In order to make it work was also needed to comment my network card (radeon) from: /etc/modprobe.d/fbdev-blacklist.conf /etc/modprobe.d/disable-radeon.conf /etc/modprobe.d/blacklist-framebuffer.conf and in order to download kernel through apt-get was needed also: sudo echo deb http://es.archive.trisquel.info/trisquel toutatis-updates main /etc/apt/sources.list / sorry to reply to death issue, but I find it benefitial.
Re: [Trisquel-users] Searx metasearch engine
Why do people vote this down? Thanks a lot for sharing this link. I'll give it a try or is there anything wrong with this project?
Re: [Trisquel-users] Lavabit founder has stopped using email
J'en veux un !!! http://knowyourmeme.com/memes/shut-up-and-take-my-money
Re: [Trisquel-users] Ubuntu 10.04 (and Trisquel 4.0 Taranis) reaches End of Life
Goodbye Taranis. You were my first version of Trisquel.
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
https://www.eff.org/deeplinks/2014/11/certificate-authority-encrypt-entire-web
Re: [Trisquel-users] Mozilla - Deprecating Non-Secure HTTP
I'm not convinced by the way it's enforced upon and the comments on that Mozilla page are well worth reading,some lift proper and well placed objections and concerns as Lestat wrote on May 1, 2015 at 7:30 am: What about hobby projects which do only offer static HTML pages? This is a whole discrimination of small webprojects which either see no reason moving on towards HTTPS or have neither time or the necessary knowledge.