Due to an array of critical security vulnerabilities, it is definitely time
to push an update to the users. I've migrated my systems away from Trisquel
until the issue is resolved. Debian without enabling the non-free repository
is a good alternative option.
If you want to help with development, the documentation is here:
https://trisquel.info/en/wiki/development-0
And the source code is here:
https://devel.trisquel.info/groups/trisquel
You can try to get pull requests from git that ruben can import and save him
some time, but afaik everything sti
You forgot that the FSF also has to spend a ton of money on union dues.
(Rough estimate per worker: https://i.imgur.com/WXj2Hzz.jpg )
Awesome! One benefit of Windows 10 being so draconian is that it's pushing
people into using alternatives. If we can people into trying out GNU/Linux
instead of Apple we might have a shot at dramatically increasing the number
of GNU/Linux users and spreading free software. :)
Nice list, added one item to it concerning DRM.
Courtesy Reddit - be sure and vote for your favorite free software charities.
https://www.reddit.com/donate
Some EIN's of known F/LOSS that you can vote for...
04-248 FSF
412165986 SFLC
043572618 GNOME
20-8096820 Tor
412203632 Software Freedom Conservancy
841611178 XM
To change your e-mail on these forums just navigate to:
The Sidbar's "My Account" --> "Edit" then --> "Personal Information"
Regarding changing your e-mail entirely, you should be able to setup an
e-mail forwarder to your new e-mail, then just e-mail all your contacts (be
sure to use BCC) and
It seems like you can use duplicity with a passphrase instead of a key if
that's what you would like.
Ubuntu wiki has a script for it explaining your problem of "if computer is
destroyed" as well:
https://help.ubuntu.com/community/DuplicityBackupHowto
Nice.
I also found some successful attempts at firmware modification, doesn't make
much sense to me but probably is a wealth of knowledge to those who do...
http://malthus.mooo.com/viewtopic.php?p=1841#p1841
Cool, it would be nice to find any projects like this and post them here for
anyone who might be interested in helping on the effort.
Try ublock, also libre, much faster, and more blocking ability than AdBlock
Edge. :)
https://trisquel.info/en/browser/addons/ublock
Also don't forget link tracking...
https://trisquel.info/en/browser/addons/clean-links
As you may have heard in the news recently, Western Digital, Seagate, and
Toshiba are all vulnerable to firmware exploitation and low-level malware
hosting. News source:
http://www.stuff.co.nz/technology/digital-living/66279485/nsa-hiding-equation-spy-program-on-hard-drives
The problem with
The researcher is saying it is a bug not a backdoor, that allowed for
directory traversal and possible an exploit.
More on this:
https://www.owasp.org/index.php/Path_Traversal
Keep in mind Heartbleed was also a "bug" but convenient enough that it may
have been used as a backdoor.
We may ne
It may have been a regression, or you just disabled it.
This copied from Ubuntu wiki (which shares the same code base as trisquel):
To manually configure bluetooth, you will need:
sudo apt-get install bluez python-gobject python-dbus
python-gobject and python-dbus are needed for the python scri
I've not tried it but it seems possible assuming I2P runs (uses Java which
eats loads of ram).
You can access it via SSH, Found this:
http://www.irongeek.com/i.php?page=videos/i2p-darknet-hidden-servers
Alternatively, TOR uses less ram and could also do this.
RE: Can any Trisquelers help me? What do I do? We have two LG Smart TV's and
a Panasonic Smart Viera.
You can do a number of things.
- At the router level you can find out which hosts it is connecting to (via
e.g. WireShark) and blackhole those domains.
Tom's Hardware provides an example fo
I would second that it is a bit risky to go backwards for security reasons.
However there is a bug report on this:
https://github.com/owncloud/mozilla_sync/issues/33
Mozilla also has a bug ticket:
https://bugzilla.mozilla.org/show_bug.cgi?id=989756#c23
I've added uBlock to the addons repo several days ago, it is considerably
better in both performance and blocking than ABP or ABE.
https://trisquel.info/en/browser/addons/ublock
Subrosa.io is another F/LOSS project that works in the browser:
https://subrosa.io/
However, Pidgin and XMPP will be the easiest. Just pick a privacy respecting
server:
http://hack2wwworld.blogspot.com/2014/08/the-best-xmppjabber-servers-for.html
I would second that a trusted VPN is a far better choice for this purpose.
You can get a rating of VPNs that don't sell you out here:
http://torrentfreak.com/which-vpn-services-take-your-anonymity-seriously-2014-edition-140315/
TOR is meant for browsing anonymously, but as they say during the
I have done it and it was a success. However I had a lot of help from
#libreboot - and a lot of patience to get wait for help during the confusing
parts.
LibreBoot provides a lot of freedom and was worth the risk. :)
Seems a bit fishy, you can try kNuBSD on Parabola GNU/Linux-libre for free.
https://wiki.parabola.nu/Parabola_GNU/kNuBSD-fire
There are several text-to-speech programs.
https://help.ubuntu.com/community/TextToSpeech
And additional voices:
http://www.firevox.clcworld.net/voices.html
I can confirm the about:home page has an anti-feature that you have
discovered, I have filed a bug report here:
https://trisquel.info/en/issues/13112
Normally, you would type "about:config" and search for
"browser.search.defaultenginename" and change it to your desired search
engine.
Or
I don't have this either, I find it rather interesting though. If OP is able
to reproduce try running WireShark and upload the .pcap when it is connecting
to this domain. Then someone here can review the internet traffic and see
what's up.
As others mentioned it would hurt fingerprinting, test here for example:
https://panopticlick.eff.org
I think by default TOR Browser doesn't allow foreign extensions (for your
security). It would be possible to override this at your own peril. You could
accomplish similar simply by using GNUI
It is "Open Source" but not "Free Software", the main difference being it
suggests non-free plugins and includes many anti-features. I actually had
wanted Google Chrome and/or Chromium myself when I first switched to
GNU/Linux.
Whereas would be possible to do, large amounts of code would need
I will admit I have purchased some items I could find nowhere else on Amazon.
However, I am constantly looking for alternatives. I wouldn't say Amazon is a
"would be" threat, it is "a threat" to free software and to privacy
world-wide.
"One day, Bezos marched into Steve Kessel's of
I'm really starting to dislike Amazon.com, we should start ordering from
other websites whenever possible... RMS also has some negative things to say
about their business practices. :/
The Federal Communications Commission is proposing rules that would kill —
rather than protect — Net Neutrality and allow rampant discrimination
online.
Under these rules, telecom giants like AT&T, Comcast and Verizon would be
able to pick winners and losers online and discriminate against
Assuming aBrowser is up to FireFox 29 you can experience a large number of
bugs. Interestingly due to the layout changes, memory leaks, and segfaults
FireFox has reached it's presumably all time low. 86% of FireFox users are
sad. See here:
https://input.mozilla.org/en-US/
Here's at least two options.
If you have to use your head you can try XKCD's famous Horse Staple Battery
Method: http://xkcd.com/936/
Generator - http://correcthorsebatterystaple.net/
Alternatively there's KeepassX (Same as Keypass but doesn't need Mono), plus
it's in the native repo so you
While the OP claim against Debian isn't entirely valid (Julian never stated
that OS in the video interview), much of the information is based on truth.
We do know that many systems are intentionally infected - See: To Protect &
Infect [303c3], and also the trail of strange Debian bugs which l
The only concern here is...
"We do not -- at least not yet -- but I strongly believe that the NSA has a
significant advantage in breaking ECC. This doesn't mean it's bad, but I
think we need to 1) make sure we know where our curves come from, and 2)
build in a hefty security margin."
"Pref
OpenDNS is fair, however I have never seen them deny keeping logs. OpenNIC is
the best alternative since a majority of their user operated servers on
purposely don't log your DNS queries. http://www.opennicproject.org/
Additionally you can still use DNSCrypt which adds considerably strong
s
I'd take this upstream since it should affect more than just Trisquel. Also
they will likely suggest you test against the nightly builds over at Xorg
Edgers to clarify the bug exists in their latest version:
https://launchpad.net/~xorg-edgers
Lately I don't trust RSA too much...
https://www.eff.org/deeplinks/2014/01/after-nsa-backdoors-security-experts-leave-rsa-conference-they-can-trust
I think by SHA-256 as a minimum he means you should go higher. SHA-512 is
pretty fair :P
Ha, I definitely should have noticed this before, except I don't use Trisquel
as my main desktop. It's been busy though...
gnu@PC:/var/log$ grep -ir ssh /var/log/*
/var/log/auth.log:Feb 18 06:45:53 PC sshd[2700]: error: Could not load host
key: /etc/ssh/ssh_host_ecdsa_key
/var/log/auth.log:F
WOW, this is a major issue. Not because it's SSH, but because it's the MOST
INSECURE SSH setup I've ever seen. Just tested scanning my local area network
running a Trisquel box. It runs on a default port with password based
authentication (no KEYS!). What this means essentially is any script
Welcome to Trisquel Users forums. :)
Trisquel is probably most similar to Linux Mint. You can even install the
cinnamon desktop:
http://blog.sudobits.com/2012/07/25/how-to-install-cinnamon-desktop-on-ubuntu-12-04/
Happy hopping, just keep in mind all other distros generally don't include
t
Not sure the take away of having no swap, but I found this option on a DDG
search: https://www.antagonism.org/privacy/encrypted-swap-linux.shtml
Regarding original post, firewall is the least of the concern here.
* All public hotspots are hackable.
* HTTPS doesn't help much thanks to old implementations of SSL and SSLStrip.
You should:
1) Use a reputable VPN service to protect anyone from both gaining access to
your computer as well as
The best option currently would likely be OwnCloud:
https://owncloud.com/blog/the-android-app-is-here
For syncing just music files Rhythmbox should work.
For Calendar related functions this GPL program can sync calendar
information:
http://dmfs.org/caldav/
Has this bug been filed? I could not find it anywhere upstream.
https://bugzilla.gnome.org/buglist.cgi?quicksearch=product%3A%22nautilus%22+opening
@Darksoul71: The recently endorsed gluglug x60 is about as close as their is
at the moment. It boots free with coreboot, wifi, and they're actively
working on VGA. The only nonfree part would be hard drive firmware, which imo
is something people should be working on for a large number of driv
Nice work! Could be useful to make a Trisquel Studio fork.
TRENDnet makes GNU/Linux friendly modems, I used to have their TFM-560X 56k
modem with TU-S9 serial to usb adapter and it worked fine with wvdialconf and
then gnome-ppp. I imagine their newer direct usb modems would work fine too.
And try to avoid getting your parts shipped in the mail either! lolz... xD
NSA's TAO group is able to divert shipping deliveries to its own "secret
workshops" in a method called interdiction, where agents load malware onto
the electronics or install malicious hardware that can give US intellig
https://www.legalzoom.com/intellectual-property-rights/intellectual-property-basics/selling-patent-copyright-or
http://info.legalzoom.com/renew-patent-23430.html
"Plant patents and utility patents last up to 20 years from the date of
application, while patents for designs last up to 14 years f
Glad to see you got it working! Though one word of caution on HPLIP. I have
had it suggest non-free firmware before. Taking for example this printer:
http://h-node.org/printers/view/en/1259/HPLaserJet-P1102w
Make sure you don't agree to any evil EULA when using HPLIP. ;)
Their relatives can renew the patent and patents can also be sold and renewed
by the new owners as I understand it.
A bigger issue than this is:
http://gigaom.com/2013/11/26/troll-wins-newegg-encryption-patent-case-threatening-web-firms-that-protect-customers/
Now we're talking people actually
Nifty site to find alternatives -
http://www.osalt.com/publisher
And as icarolongo mentioned those are your best bet; LibreOffice Writer or
Drawing, and Scribus.
Hmm sad to see all the flamewar above, but back on topic.
1) I find it very strange that there has been no public announcement of which
exploit or vulnerability the proposed patch fixes. Where's the changelog??
The very vague information I found on Intel's website doesn't leave me
wanting to
I use google because of relevant results.
Not an excuse, use StartPage.com instead. :D
Quoting from a MajorGeeks post with the same error:
Run Chkdsk /f /r to detect and resolve any file corruption. You must restart
your PC before the disk scan begins . If you cannot start the system due to
the error, use the Recovery Console and run Chkdsk /r
(You should also have a Windows X
While I appreciate Rubén and his few friends making the git commits, I wish
he would allow more people write access to the git. In this way bugs and
ports such as this would be completed much faster. Some of the bugs are very
easy to fix.
Confirming. :(
English >> Text Mode >> Language >> Location >> Detect Keyboard Layout >>
Layout Type >> Detecting network hardware >> Continue >> Hostname >> Continue
>> Choose Mirror >> Leave Blank for Proxy >> Error Bad Mirror >> Stuck in
loop... (Should allow you to skip)
Someone shou
I installed using the normal mode (Live CD >> Use installer from desktop) and
it works offline. It should be possible with text mode too, just skip the
part that asks to configure networking and make sure it's unplugged from the
internet.
>The "oh you need this done? here's the source code so do it yourself" free
>software mentality is very common and thrown around a lot. It is like you
>owning a car and your transmission goes out and someone tells you that
>anything is possible if you learn how to fix it and do it yourself.
Any program can be abused. However, strong AI to me personally seems... like
not a good idea. Take for example the great example in Tron. In man's attempt
to create a perfect system he creates Clue! xD
Regardless there are some people working on them:
https://duckduckgo.com/html/?q=artificial
It would be a bit ridiculous, but yes you can run IPTables on the router and
do netfiltering. You'd need to analyze the spyware and drop all packets from
offending IPs and/or whitelist only the good IP addresses and block
everything else. Obviously the latter would make surfing the internet
It appears to be an ever learning artificial intelligence streaming data from
MANY different sources. Since this will be proprietary and under central
control could mean this is a very dangerous super computer powered by many
little computers all over the world. I could see this being easily
This appears to be a known bug:
https://bugs.launchpad.net/ubuntu/+source/brasero/+bug/504645
One option is to convert to MP3 and burn:
http://askubuntu.com/questions/62168/can-how-to-burn-a-flac-to-an-audio-cd
I would imagine using ogg may also work.
Sounds like the kernel module didn't compile. Try installing virtualbox-dkms
pacakge. Additionally running "sudo /etc/init.d/vboxdrv setup" in a terminal
should work too. If the module fails to compile you may need a -generic
kernel with headers; and if all else fails you might want to try QE
Marble is listed along with a few others that support open street maps here:
https://wiki.openstreetmap.org/wiki/Category:Linux
Licenses are included on each wiki page.
audacious is basically winamp and can use winamp skins, however it would be
useful for this project to be opensource. The one problem with this petition
is it seems to imply: 1) Keep WinAmp alive! 2) If not alive make it
opensource...
I would say Winamp should be opensourced with a free sof
Assuming what's app isn't a walled garden, which it seems to be - any XMPP
account would work. This program also has HUGE security and privacy
vulnerabilities:
https://en.wikipedia.org/wiki/WhatsApp
Some suggested FLOSS alternatives for XMPP chatting over your phone would be:
Beem Project
It seems that the PengoPods are being liquidated on eBay, and he is closing
down operation. This is very unfortunate, but it does allow us some time to
get our hands on some libre-supporting hardware.
http://www.ebay.com/sch/items/?_nkw=pengpod
Just thought everyone might like to know before
I would also be very interested in how to do this, however it seems that even
if you do manage to get an e-mail server going - 90% of the internet
corporations (e.g. yahoo/gmail/hotmail) will block you as a sender with Error
550 because it is coming from an unapproved sender. I have heard adj
Hello All,
I've mirrored the Trisquel installer onto aMule, if anyone is interested it
uses the classic KAD and ed2k network. It's an old P2P protocol but still a
goodie.
To use just:
sudo apt-get install amule
(or eMule for Windows users)
Update server list/bootstrap KAD and download eithe
Pretty much anything java would work.
Quick search reveals these (not tried them):
http://sourceforge.net/projects/ohcrypt/
http://sourceforge.net/projects/cryptds/
Regarding Skype-like software- I just found this today, also in Java:
http://sourceforge.net/projects/ftalksecurevoip/?source=directory
He responded to my e-mail confirming the license is GPLv3; he is planning to
get it adjusted on Mozilla Addons. :)
http://www.fugly.com/media/IMAGES/Random/tinfoil_computer.jpg
Cygwin is mostly free. It has several packages with freedom issues which is
why I mentioned it was non-free; see here: http://www.cygwin.com/packages/
Compare those against this libre blacklist:
http://repo.parabolagnulinux.org/docs/blacklist.txt
http://www.upubuntu.com/2011/07/how-to-move-your-mouse-pointer-with.html
Without a numpad (easy way):
http://askubuntu.com/questions/88948/control-mouse-pointer-with-keyboard-without-a-number-pad
Another way:
http://ubuntuforums.org/showthread.php?t=2053587&s=9af477b145f9337ab8a04e2ffa481393&p=1
Hmm... as leny2010 mentioned there should be an applet:
http://www.ihaveapc.com/2011/03/gnomenu-an-alternate-menu-for-gnome-desktop-in-linux-mintubuntu/
It may only be available in gnome3 default mode (not gnome3-fallback with
gnome-panel)
Also e-mailed. Sent mine to an alternate e-mail address I found here on his
homepage:
http://www.s3blog.org/about.html
This seems to be a very closely related error with solution:
http://stackoverflow.com/questions/16068976/git-push-failing-suddenly-git-remote-https-relocation-error
1) Trisquel Doesn't spy on you; Windows 7 does.
2) Trisquel let's you run unix applications; Windows 7 has non-free cygwin
but it's just not the same.
3) Trisquel let's you recover a Windows PC from a LiveCD; Windows 7 doesn't
have a LiveCD officially and BartPE imo doesn't do as good of a
They deserve it. ;)
Regarding Chromium it has a few settings that could be spyware related, e.g:
* Autocomplete while typing in address bar (queries google for every letter).
* Prefetching DNS to google
* Checks all visited sites (as does firefox) against Google's bad website
list for malware/p
Confirming there are "some" concerns for radiation:
http://www.cnn.com/2011/HEALTH/05/31/who.cell.phones/index.html
However -
Radiation prevention: http://radblocker.com/
Spying prevention: http://offpocket.com/
Now you can safely use your phone only when required. ;D
Cynanogenmod. But I don't trust it, even with AFWall blocking everything.
jxself has it right - avoid them if you can!
I'm not at my Trisquel box right now, but I think will do it:
To add a new item to update-alternatives, use the following options.
Code:
update-alternatives --install /usr/bin/$LINK $PROVIDES /usr/bin/$BIN $XX
So for example... (Assuming Luajit is not available in t
Interesting, that part seems right. Here is a copy of my working one:
http://pastebin.com/0J5yfr6V
I'd wait until someone with the inner workings of galternative (Gnome
update-alternatives) replies. Or if your feeling adventurous here's some
troubleshooting ideas I would try:
sudo rm /etc/a
Interesting. Can you run:
file /etc/alternatives/x-www-browser
And if it exists paste the content of the file here via:
gedit /etc/alternatives/x-www-browser
Sounds like it got deleted or corrupted as you mentioned.
I do not have Windows 8 and many users here likely do not have it either,
however you may find this of help:
You should be able to do this via the Trisquel Live CD.
Go to Trisquel >> Accessories >> Terminal
Install efibootmgr by typing:
sudo apt-get ins
I believe because this is a core package the system is hickuping over removal
since there will be no default browser. (e.g. update-alternatives)
To see current default (should be aBrowser):
sudo update-alternatives --display x-www-browser
To change this see here:
https://wiki.debian.org/FAQ/Gn
It could be nice to have one, and of course to make ours special...
http://sebsauvage.net/wiki/doku.php?id=php:zerobin
The original application was actually GPLv3; this guy simply did bug fixes so
I don't think that is legal to make a GPL app proprietary. Someone should
definitely contact him about this issue. I found his e-mail if you want to
reach out to him: pag77[at]mail(dot)ru
I would suggest asking in #replicant on freenode irc as it may be a replicant
bug.
However, from simply a smart-phone user perspective I would imagine your
MicroSD may be going up; assuming you were installing the data to SDCard and
not to the phones memory. Have you tested transferring wit
The two items you put in DNS are internal OpenNic Nameservers, not the IPs of
resolvers. Replace the stuff you have in "DNS Servers" field with the two IP
numbers given to you on their homepage: http://www.opennicproject.org/
Amazon utilizes several tracking methods.
* Third-Parties (including devices with Amazon Cloud, music apps, ebook
readers, etc.)
* Session Cookies
* Ever-Cookies/DOM (Most important)
* Referrer Tracking
* Click-Handling
I don't think they are tracking browser fingerprints, or if they do it
d
+1 on the OpenNIC reference. Definitely recommended and will solve the DNS
poisoning problem. Their site: http://www.opennicproject.org/
The problem is due to the t=trisquel being hardcoded as the default search
engine in the browser during compile.
You will find that the keyword.url is set here on line 74:
http://devel.trisquel.info/gitweb/?p=package-helpers.git;a=blob;f=helpers/make-ubufox;h=0c4c42197c038738e8d9ef45f9e07f4c068
I have an .xsession-errors log from the affected computer, including it
below:
http://pastebin.com/v2Ehx6zh
If others could post their "/home/user/.xsession-errors" log it may help us
track down the culprit. Likely compiz, but not sure will need to do further
testing...
I've also had that happen; I presume YouTube requires some information dumped
before playing videos and if it doesn't get it they freak out. You may want
to try "Blender" firefox addon; it's not quite as good as firegloves but
keeps some of the information hidden and YouTube still works with
Not sure if this would help or not, but can't you use "UnPlug" addon for
FireFox and then just copy the url for the media file and run it through VLC?
This has worked for me in some cases, e.g. where plugins are required to
download an MP3 and all that is needed is finding the hotlink and str
I also prefer to use CDs and buy local when possible.
There's also trading sites such as SwapACD which helps you find aftermarket
CDs and contribute without directly giving money to the big unethical
companies like Amazon. Unfortunately they require PayPal and identification.
One solution ma
Has anyone tried contacting the developers to change their current licesning?
It really makes no sense, it's already GPL and companies are already going to
steal the code if they wanted to. So holding LinuxSampler back for this is
really sad...
1 - 100 of 130 matches
Mail list logo
