BlanK0

@BlanK0@lemmy.ml

This profile is from a federated server and may be incomplete. For a complete list of posts, browse on the original instance.

BlanK0 , (edited )

I would first approach this problem by first trying to convert as many apps that you have into a Foss alternative ( you could use this site to find the alternatives: https://alternativeto.net/).

Then if I was comfortable enough I would later on try flashing a custom rom like lineageOS (I would recommend doing this with a second phone if you have one, like a older phone to get used to the OS since it is a bit different and if something happens you have the original phone as a backup).

Then I guess the final step would be to isolate your work apps that aren't Foss like WhatsApp into a separate environment with an app like shelter.

Edit: Also try to not rely on google services as much as possible by using alternatives like protonmail/tutamail for email and other search engines like startpage, duckduckgo and searX (or searXNG, I do prefer more this one) (searX/XNG instances being the best search engines out there)

BlanK0 ,

Same bro 😮‍💨

BlanK0 ,

Lets gooooo 🔥

Glad to see growth on flathub 💪

BlanK0 ,

Welcome aboard! 🐧

If you decide later to test other distros I would highly recommend using a virtual machine in virtualbox. Saves the hassle when it comes to testing distros 👍

BlanK0 ,

KVM is indeed a much better hypervisor, but it does require some setup with the terminal.

Since he is a beginner I decided to recommend virtualbox since it just works after installing. But if he doesn't mind setting up things via terminal then KVM is definitely the way.

BlanK0 OP , (edited )

GNU Guix, definitely going to check out! I think also most of the packages I have are foss, for non-foss I have flatpak anyway 🤔👍

BlanK0 OP ,

From a forum:

"Systemd provides a lot of network functionality in systemd-networkd, journald, timesyncd, etc. that is remote attack surface. All the systemd "cloud of daemons" is tightly coupled by dbus interfaces that enable an attacker to move from one exploited system service to the next. Even if the attacker doesn't manage to find an exploit in another system service, DoS is easily possible because the DBUS interfaces are quite fragile. Even as a benevolent admin it is easily possible to get the system into a state where e.g. clean shutdown is no longer possible because systemctl doesn't want to talk to systemd any longer and you cannot fix that. systemd-udevd also has raceconditions galore, so sending any message to it in the wrong order relative to another one will kill the system, maybe even open exploit vectors. At the very least I would, for hardening, recommend not using any network-facing systemd functionality.

And lines of code are not ridiculous, they are the best first-order estimate available. Of course an actual inspection of the code is better for a comparison, but that is a huge task. sloccount is quick and easy."

BlanK0 OP , (edited )

For daemons, its simply symlinking the services in the 'sv' folder to the var/services, it should be running after that.

Not sure how compatibility with systemd apps work on other inits but for what I know the packages that are shipped focus on specifically the init system that you are running (from whatever repo you use to install on the distro, for example artix has other inits besides runit).

Edit: Also you have the 'sv' command on runit that acts exactly like systemctl. You can stop, start and all that stuff

BlanK0 OP ,

I didn't know about bashrc poisoning, thx for the intel.

You are probably right, systemd attack vector might not be that big as it seems. But its a bit unfortunate that it has that small extra negative layer of security.

BlanK0 OP ,

Thx, I will check out Guix. Seems a very interesting distro 🔥

BlanK0 OP ,

I am not saying this proves single-handedly that systemd has vulnerabilities but it is one of probably many out there. I am not saying enterprise is stupid but I could definitely see some sacrifice being possibly made to spend less time setting up utilities on every systemd machine for enterprise work.

BlanK0 OP ,

I was saying that you do spend less time cause it is already there. Also you can have logs on other init systems, what I said on the post is that if later I wanted logs I could just setup instead of being already there (and the other utilities, not just the logs of course).

BlanK0 OP ,

Thx for clarifying the point. 👍

BlanK0 ,

Are there any plans on adding features that enable easier interaction with other federated platforms like mastodon and peertube (for example being able to comment/interact with peertube videos and mastodon posts)?

BlanK0 ,

We really need Foss software for printers, specially for mainstream machines so that majority can afford a less scamy product.

BlanK0 , (edited )

I would recommend trying out first sway just because the configuration is very straightforward and you easily find on the internet configuration files of other people, most of the setup is already done for you out of the box as well.

After getting used to sway I would then recommend moving into WMs that require more tinkering, like hyperland you mention on the post.

Also if you ended up removing animations and don't really care that much, you might want to try other projects that have different focuses such as the minimalism of dwl or the different approach of tilling with tags with river (it all ends up on preference after getting used to this kinda of graphical servers)

Edit: FYI, most of the ricing (aesthetics) tends to come from the status bar you choose, the colors you choose to configure on files and the background image (I would say background img being the most important cause everything is built around it (colors, themeing, etc) )

BlanK0 ,

Like some have mentioned, if you want to try different distros setup a VM (I would recommend KVM for better performance, but virtualbox is easier for beginners in VMing) with the iso of the distro you want to test out.

Like this you can keep a functional system without the hassle of having to setup on baremetal just for testing and having to go back again if doesn't pay-out.

Also would suggest messing around with more tech-savy setups like debian and fedora (specially minimal ones) if you want to delve deeper into the Linux nerdiness.

BlanK0 ,

Bringing more interactivity between fediverses would be very cool, maybe in the future we can have more direct interaction as well hopefully

BlanK0 ,

You could try fedora sway or gnome spins

BlanK0 ,

Try installing it with nix

BlanK0 ,

This blog should help you with the installation and how to use, also if you need more in depth info there is this guide as well

BlanK0 ,

Lmao, "required componentes to protect your privacy" 🤣🤣🤣🤣

BlanK0 ,

Maybe they did it cause Ubuntu pushed them to get the snap version running 🤷

Open Sustainable Technology

Earth's uniqueness in creating a stable environment for life in a completely hostile space is a miracle. Various life forms have taken billions of years to build up the natural resources humans depend on, such as a protective atmosphere, fertile soil, stable weather, and clean drinking water. As a movement to democratize...

BlanK0 ,

We need to see more projects like this ✊🌱

BlanK0 ,

Biological life be like: ahaha entropy go brrrr

Permacomputing site has been revamped ( wiki.xxiivv.com )

The abundance of digital storage and processing power has caused an explosion in wastefulness, which shows in things like ridiculous hardware requirements for computing even the most trivial tasks. Permacomputing is about using computation only when it has a strengthening effect on ecosystems.

BlanK0 ,

Very good read 👍, explains very well the concept and its related subjects

BlanK0 ,

Librera (pdf reader and other formats), tuta mail (private mail), feeder (RSS reader), iceraven (Firefox fork), saver tuner (battery management), aurora store (replacement of play store), breezy-weather (for checking the weather), openBoard (Foss keyboard with spell correction)

BlanK0 ,

I like seeing the posts of people finding comfort with their new linux installs even tho they might appear a couple of times.

Linux is still considered a niche so the most likelihood of the newer folk appearing is higher then the more experienced ones. Also I wasn't always experienced and if it wasn't for newbie friendly content I wouldn't be here helping other people as well.

After all, information doesn't spawn out of thin air, it requires someone to carry and distribute it so that other people become also educated in those ways.

Which is way I find weird finding some people say "people are dumb they should do x, y or z cause its better" but then they don't provide any information and expect others to also know what they already know/have learned recently.

In conclusion, sharing is caring and I don't mind people sharing their experiences which also helps others on the same situation.

BlanK0 ,

Good vid 👍

BlanK0 ,

Nice to see older projects being rejuvenated 👍

BlanK0 ,

Fedora kde

BlanK0 ,

Still the exploit is easier to avoid compared to windows viruses and stuff. Even with the linux popularity increasing there is already out there good solutions to prevent this kinda stuff like have SELinux installed, use firejail to run suspicious files, use proxies to visit weird sites (you can use proxychains + tor, a bit overkill but works if you don't have a local proxy), etc.

Not to mention that one of the attack vectors of this exploit requires using a systemd feature which is the sysnetd which isnt going to work on other init systems. Reason why a lot of times minimalism can be superior to just having all the features + unnecessary ones out of the box.

BlanK0 ,

I not sure this is going to help but I use essentially all the default apps of lineageOS when it comes down to file manager, recorder and gallery.

But I do know that fossify has currently file manager and gallery apps which are very good, the recorder I don't really know a alternative.

Since I don't edit videos on the phone I can't really recommend an app but I am sure there is something in the fdroid repos or even on the github to install via obtainium.

BlanK0 , (edited )

Found the contacts app repo, also there is the main LineageOS repo if you want to delve deeper into it.

Also found a relevant thread in LineageOS subreddit which claims that all of the apps are open source belonging to the AOSP or Android Open Source Project, and based on the contacts app it seems to be under the apache license (so it is Foss)

BlanK0 ,

Ok, no worries 👌.
Add the fossify ones it should be easier for the general user.

BlanK0 ,

LETS F* GOOO 😲😲😲

BlanK0 ,

Optimism is important, just gotta keep pushing

BlanK0 ,

I have to give a go to bedrock eventually, the concept sounds amazing 😄

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • test
  • worldmews
  • mews
  • All magazines
    •