Re: [Trisquel-users] Are Big Sacrifice
Is $ sudo apt-get upgrade a good idea?
Re: [Trisquel-users] How to spread computing freedom?
Also, if their workflow is still dependent on proprietary apps, then switching the OS won't do much good. Also, switching the OS will make them feel like they're "finished", and they'll slow down on their progress. signature.asc Description: This is a digitally signed message part
Re: [Trisquel-users] How to spread computing freedom?
Why does the employee have to use their company's chat program on a personal device? Most companies keep everything self-contained, on company equipment, so that user freedom would remain the same regardless of the software running on them. signature.asc Description: This is a digitally signed message part
Re: [Trisquel-users] Writing my ‘common distros’ for us in 2018
If you're not interested in learning English properly, then don't do activist work that requires skills in English. There is plenty of good you can do with Cantonese, like just spreading the basic idea of libre software through Cantonese. Or you could take up programming; no one cares how good a programmer's English is. That's only a couple of the many, many possible things you could do.
Re: [Trisquel-users] Are Big Sacrifice
Processor Speed is so important for me
Re: [Trisquel-users] Binaries-free movements back-ending in RPM sources?
If I understand you correctly, you desire a libre sources-based rolling package manager. If this is true, I think you might be pleased by Guix. Perhaps you would achieve more by helping to package for Guix than by starting a similar project from scratch.
Re: [Trisquel-users] Are Big Sacrifice
dist-upgrade also removes some packages but mostly just aging ones, where full-upgrade may even conflict your essentials, so full-upgrade is very risky and never a good idea.
Re: [Trisquel-users] Binaries-free movements back-ending in RPM sources?
I have also installed the two nonfree systems, namely Sabayon and Calculate, both are the Gentoo forks, and I need them to study the Gentoo ecosystems to make ease of my sources-based system as what I’ve announced in my thread.
Re: [Trisquel-users] Writing my ‘common distros’ for us in 2018
Just no longer tell me I need more English tutoring which I’m still nowhere to be tutored more unless the unreasonable education systems in my place was already over, and they don’t treat educations to be serious and they’re always needed to be overloaded under the heavy exam practices.
Re: [Trisquel-users] Are Big Sacrifice
Big sacrifice? Unclear what you’re saying, but I just sacrifice little which the iwlwifi card is my only nonfree hardware, and I just don’t need any nonfree apps for my daily practice.
Re: [Trisquel-users] Hot news - Major flaw in Intel CPUs
https://insights.ubuntu.com/2018/01/04/ubuntu-updates-for-the-meltdown-spectre-vulnerabilities/ Ubuntu users of the 64-bit x86 architecture (aka, amd64) can expect updated kernels by the original January 9, 2018 coordinated release date, and sooner if possible. Updates will be available for: Ubuntu 17.10 (Artful) — Linux 4.13 HWE Ubuntu 16.04 LTS (Xenial) — Linux 4.4 (and 4.4 HWE) Ubuntu 14.04 LTS (Trusty) — Linux 3.13 Ubuntu 12.04 ESM** (Precise) — Linux 3.2 Note that an Ubuntu Advantage license is required for the 12.04 ESM kernel update, as Ubuntu 12.04 LTS is past its end-of-life Ubuntu 18.04 LTS (Bionic) will release in April of 2018, and will ship a 4.15 kernel, which includes the KPTI patchset as integrated upstream.
Re: [Trisquel-users] Hot news - Major flaw in Intel CPUs
Good thinking! Thanks! That's what I'll look for.
Re: [Trisquel-users] Hot news - Major flaw in Intel CPUs
Re EOMA-68 computer cards & devices. Luke has opportunity for some interesting cpu cards and theres a team developing risc cpus in India which i believe have a mandate and the money from the gov to make free cpu’s targeted for things like laptops and other computers a society needs. See for india risc cpu details: http://lists.phcomp.co.uk/pipermail/arm-netbook/2017-December/015062.html
Re: [Trisquel-users] GPS navigator with free software
On 08/01/18 04:08, onp...@riseup.net wrote: > A device with GNU/Linux like the Pyra should theoretically be fine, too, > if you add GPS to it somehow. In that case I suppose you would use Navit. There was bluegps app for using a bluetooth gps receiver on replicant/android 4.2 i think but its broken for 6.0. I have these gadgets for gps: bluetooth: https://wiki.openstreetmap.org/wiki/Holux_M-241 https://www.aliexpress.com/item/Holux-Wireless-Bluetooth-GPS-Receiver-Data-Logger-M-241/1879397311.html and a retro fit li-ion aa battery with built in usb charging, to power it.: https://www.aliexpress.com/wholesale?catId=0_id=SB_20180108181007=znter+aa+usb usb: https://www.aliexpress.com/wholesale?catId=0_id=SB_20180108180709=GlobalSat+ND-105C
Re: [Trisquel-users] Are Big Sacrifice
it appears that full-upgrade exists: $ man apt but I do not really use it. full-upgrade (apt-get(8)) full-upgrade performs the function of upgrade but will remove currently installed packages if this is needed to upgrade the system as a whole.
Re: [Trisquel-users] Hot news - Major flaw in Intel CPUs
Everyone is having a metldown because Canonical has not released fixes yet. The bigger question is: When will Canonical fix it in Ubuntu? Trisquel inherits security updates from Ubuntu so *THAT* is the question you want to be asking.
[Trisquel-users] Re : Hot news - Major flaw in Intel CPUs
I indeed did not understand it right. There are currently three demonstrated
ways to do a Spectre attack. AMD is quite fine ("near zero risk") after a
kernel patch solves one of these ways (which can therefore be solved through
a software update, unlike the other ways):
https://www.amd.com/en/corporate/speculative-execution
However, https://spectreattack.com/spectre.pdf says:
Further attacks can be designed by varying both the method of achieving
speculative execution and the method used to leak the information. Examples
of the former include mistraining return instructions or return from
interrupts. Examples of the latter include leaking information through
timing variations or by generating contention on arithmetic units.
It looks like all modern processors (including AMD's) will be at risk.
Without a way to solve the problem through software updates.
Well, in each case it would appear that exploiting spectre is quite tough and
to my understanding nowhere near as grave as meltdown.
Well, Meltdown is grave (any data in the RAM can be read at a rather high
speed)... but can be solved once and for all with the KPTI patch (accepting
performance regressions). A Spectre attack only allows to read data in the
kernel space (but there are private keys there!) at a slower speed (50 times
slower than Meltdown according to the original publications). Nevertheless,
it basically affects all processors in use and cannot be entirely solved by
software update. In the medium/long term, it looks far more problematic than
Meltdown: to be immune, everybody will have to throw their current hardware
and spends money on a newer processors that do not exist yet!
[Trisquel-users] Re : Hot news - Major flaw in Intel CPUs
Hardening is, well, making harder, not impossible, to make a Spectre attack, whereas the KAISER patch makes Meltdown attacks impossible... at the cost of a performance penalty.
Re: [Trisquel-users] Hot news - Major flaw in Intel CPUs
It might be senility or I suddenly can not understand English, so I will just copy and paste here.. The bounds check bypass has also been shown to read kernel memory on Intel and AMD processors. Importantly, this does not work on AMD processors in default configurations. The proof-of-concept requires BPF JIT to be manually enabled in the Linux kernel for AMD processors. (It is not, by default.) The tested Intel processor was vulnerable independent of the BPF JIT setting. https://www.techrepublic.com/article/massive-intel-cpu-flaw-understanding-the-technical-details-of-meltdown-and-spectre/ And this is from the goobles zero study directly: A PoC for variant 1 that, when running with normal user privileges under a modern Linux kernel with a distro-standard config, can perform arbitrary reads in a 4GiB range [3] in kernel virtual memory on the Intel Haswell Xeon CPU. If the kernel's BPF JIT is enabled (non-default configuration), it also works on the AMD PRO CPU. And yep, the variant one is -> Variant 1: bounds check bypass (CVE-2017-5753) That is the only one exploit AMD says it can represent a problem for their CPUs, meltdown does not affect it due to architecture differences and the second variant according to AMD has "near zero risk of exploitation". If so, I am a happy guy :) Well, in each case it would appear that exploiting spectre is quite tough and to my understanding nowhere near as grave as meltdown. Imagine how nice must it be to have a ready cross-platform exploit for every single Intel CPU ever made for 20 years.. Not that I wish to imply that Intel did this on purpose or to gain single core performance advantage over AMD. :P
[Trisquel-users] Re : Hot news - Major flaw in Intel CPUs
Oh! But according to: --- https://spectreattack.com/#faq-fix Is there a workaround/fix? There are patches against Meltdown for Linux ( KPTI (formerly KAISER)), Windows, and OS X. There is also work to harden software against future exploitation of Spectre, respectively to patch software after exploitation through Spectre ( LLVM patch, ARM speculation barrier header). --- I guess "hardening" isn't fixing? ;)
Re: [Trisquel-users] Are Big Sacrifice
yes its sudo apt full-upgrade
[Trisquel-users] Re : Are Big Sacrifice
Instead of 'sudo apt-get full-upgrade', you mean 'sudo apt full-upgrade' or 'sudo apt-get dist-upgrade', don't you?
[Trisquel-users] Re : Hot news - Major flaw in Intel CPUs
They are getting patches against Meltdown. No software (including firmware) update can solve Spectre.
[Trisquel-users] Are Big Sacrifice
" It has been said throughout the ages, that there can be no victory, without sacrifice." Just like all Free GNU/Linux Distros, we should give a big sacrifices to gain our liberty. As you know the new processors has a big vulnerabilitys founded in the last days cause a big problems in user privacy, and the linux kernel developers found a temporary fixes, but to use this fixes we most give a big sacrifice, the sacrifice is make your processor work under less speed, so to apply this fixes in your Uruk GNU/Linux system you should do the folllowing steps: 1- Update your system repos : sudo apt-get update 2- After that make a full upgrade to your system: sudo apt-get full-upgrade 3- Restart your system and now your system will become clear again. have fun and be free ali miracle
[Trisquel-users] Re : Hot news - Major flaw in Intel CPUs
So Windows, linux kernel, iOS, macOS are all getting patches to help mitigate until we can get all new chips lol. Can anyone tell me if the Trisquel update engine has picked up anything for itself or will soon? I just want to do what I can for my Ministry of Freedom Libreboot Trisquel Lenovo laptop. :)
Re: [Trisquel-users] Mirrors of the Linux-libre APT repo
we push the update we use the dependencies way
Re: [Trisquel-users] Any packages for "clocking"?
Allright, thanks :)
[Trisquel-users] ITU-T X.509, security token, PAdES and software freedom
Hi all, Someone in another mailing list inspired me to ask the following questions: 1. Are there free/libre device firmware and kernel driver/modules that allow interacting with security tokens that follow the ITU-T X.509 standard? If yes, which ports they use (/e.g./: USB, custom one)? 2. Are there free/libre programs that can pass/manage these signatures (such as locking, unlocking, and so on) to the top-level/user-facing applications? Or did I misunderstand something and XAdES/CAdES/PAdES don't need a dedicated manager in order to work? One year ago I organized an event in Brazil where, during the break, one of the speakers told me that one of the issues we now have in free/libre software and public administration is that there doesn't seen to exist software freedom when dealing with ITU-T X.509, security tokens and XAdES/CAdES/PAdES ([1]). However, recently in a mailing list that *appears to be* about free/libre software in Brazil, someone asked more or less the same question ([2]), and I wonder if the situation has changed. [1] https://flisol.info/FLISOL2017/Brasil/BalnearioCamboriu [2] http://listas.softwarelivre.org/pipermail/psl-brasil/2018-January/005383.html -- - https://libreplanet.org/wiki/User:Adfeno - Palestrante e consultor sobre /software/ livre (não confundir com gratis). - "WhatsApp"? Ele não é livre. Por favor, veja formas de se comunicar instantaneamente comigo no endereço abaixo. - Contato: https://libreplanet.org/wiki/User:Adfeno#vCard - Arquivos comuns aceitos (apenas sem DRM): Corel Draw, Microsoft Office, MP3, MP4, WMA, WMV. - Arquivos comuns aceitos e enviados: CSV, GNU Dia, GNU Emacs Org, GNU GIMP, Inkscape SVG, JPG, LibreOffice (padrão ODF), OGG, OPUS, PDF (apenas sem DRM), PNG, TXT, WEBM.
Re: [Trisquel-users] Writing my ‘common distros’ for us in 2018
So, you're just saying that's where your vocabulary comes from? That's immaterial. All dictionaries contain roughly the same entries, the only difference is spelling and a few new or uncommon words. The point is that you need more tutoring. You're not even close to done learning English. You can't just make up your own contractions. "dntv" is not a contraction used by anybody. The words you're looking for are "didn't have".
Re: [Trisquel-users] How to spread computing freedom?
Sure, every adult has to make their own decision, but it is also a personal decision whether or not to help, and nobody should feel forced to help install proprietary software for others. What I meant above is, for example, if somebody tells me they can use free software for everything except chat app x, y or z which everyone uses at their work, and if they don't use it they cannot do their work, then I figure if I don't help them install it they will just go back to a proprietary OS and install it themselves or ask someone else to do so, which I feel would be a worse choice. Regardless, I do it begrudgingly. I suppose I could say to them that they should stand up to their company and explain that nobody should force them to use proprietary software, etc. Realistically, that's not going to happen. At least not overnight.
Re: [Trisquel-users] How to spread computing freedom?
You're doing better than I am then I guess! Generally if a family member asks for help with their computer or smartphone then I'll help them, regardless of the software they happen to be running. I might not agree with their technology choices, but I think once we've had a chat about it then it's their equipment and therefore their decision to make. The times I usually end up discussing software freedom and GNU/Linux is when I'm asked about my own technology choices. More often than not it's when I'm challenged about the fact I won't connect with them on WhatsApp or Facebook! On a couple of occasions that very conversation has led to them asking me to set up a dual-boot Ubuntu install on their laptop they can try out. I take pride in the small victories :)
Re: [Trisquel-users] Mirrors of the Linux-libre APT repo
This is very strange indeed. What is in your sources.list? What do these commands say? dpkg-query -l linux-libre-4.9 apt-cache policy linux-libre-4.9
Re: [Trisquel-users] How to spread computing freedom?
I understand you both (Magic Banana and SuperTramp) but personally I choose to help close relatives or friends install *some* proprietary programs as long as they are making an effort to switch to free software as much as possible. Why? Otherwise they would be using *only* proprietary software. This is, of course, a personal choice and I respect your views.
[Trisquel-users] Re : Hot news - Major flaw in Intel CPUs
As far as I understand, there are two vulnerabilities, Meltdown and Spectre, but two different ways to exploit Spectre were shown. And Spectre cannot be solved through software (so no kernel configuration helps, neither does a firmware update): only the next generation of CPUs will be immune.
Re: [Trisquel-users] Is it ethical to use github?
Trisquel uses Gitlab for its own development, which apparently is on an 'open source' license and seems to work with LibreJS enabled. https://en.wikipedia.org/wiki/GitLab
Re: [Trisquel-users] Mirrors of the Linux-libre APT repo
we try but stil no update its seme we will push it useing uruk apt repo
