Skip Navigation

User banner
Karna
Karna @ KarnaSubarna @lemmy.ml
Posts
160
Comments
255
Joined
2 yr. ago

XZ Hack - "If this timeline is correct, it’s not the modus operandi of a hobbyist. [...] It wouldn’t be surprising if it was paid for by a state actor."

Jump

  • Definitely state sponsored attack. It could be any nation - US to North Korea, and any other nation in between.

    • XZ Hack - "If this timeline is correct, it’s not the modus operandi of a hobbyist. [...] It wouldn’t be surprising if it was paid for by a state actor."

    Jump

    • How do you track security vulnerabilities?

    Jump

    • Your first distribution

    Jump

  • Ubuntu, 2005

    • As a linux user, do you know about/use openwrt?

    Jump

  • Installed OpenWRT on my NetGear router like 2 years back, and it didn't give me any trouble since then. BTW, the amount of configuration options it offer is mindbogglingly.

    • Permanently Deleted

    Jump

    • Former distrohoppers, where did you settle down?

    Jump

  • Ubuntu > Fedora > Ubuntu > Arch > Ubuntu

    • Privacy focused email recommendation

    Jump

  • Ah! I was not aware of the fact that Alias service can encrypt email before forwarding to actual mailbox.

    • Privacy focused email recommendation

    Jump

  • Email alias indeed helps to avoid spam and helps you to assume separate identity per site, but won't help in any way to stop mail provider/server from processing your email data for user profiling / targeted ad purpose.

    Buying email domain and self-hosting is only the full proof way from privacy POV, but it is really difficult target to accomplish. A privacy respecting email hosting + alias should be next ideal choice, IMO.

    • Cyberus Develops Open-Source KVM Backend For VirtualBox

    Jump

  • Known issues and limitations

     
            Currently, Intel x86_64 is the only supported host platform.
        AMD will most likely work too but is considered experimental at the moment.
    Linux is required as a host operating system for building and running VirtualBox KVM.
    Starting with Intel Tiger Lake (11th Gen Core processors) or newer, split lock detection must be turned off in the host system. This can be achieved using the Linux kernel command line parameter split_lock_detect=off or using the split_lock_mitigate sysctl.

    Source: https://github.com/cyberus-technology/virtualbox-kvm

    • Leaky Vessels flaws allow hackers to escape Docker, runc containers

    Jump

    • Use work laptop as personal device by dual booting on a separate internal drive?

    Jump

  • In most cases, work laptops have software(s) installed to automatically keep track of these activities, and flag it to security team of your organization. At that point, it will either lead to a formal warning to you, or termination/forced resignation.

    From organization point of view, this is to avoid any accidental (or intentional) leak of confidential data, and/or accidentally (or intentionally) infecting your (work) system with malware/ransomware.

    The latter had happened in one of my previous organizations, and the person responsible was terminated from job immediately.

    • GitHub - mendel5/alternative-front-ends: Overview of alternative open source front-ends for popular internet platforms (e.g. YouTube, Twitter, etc.)

    Jump

  • True, but till the transition completes (if it ever), these privacy frontends are quite handy tool to view content of those services.

    I heavily use LibReddit to follow certain Subreddits, although I now mostly frequent Lemmy.

    • GitHub - mendel5/alternative-front-ends: Overview of alternative open source front-ends for popular internet platforms (e.g. YouTube, Twitter, etc.)

    Jump

  • Same as that happened to Bibliogram earlier – a cat-n-mouse game between Dev and API owner.

    • Intel Thread Director Virtualization Patches Boost Some Workloads By ~14%

    Jump

  • Are the latest generation (11th onwards) of Intel CPUs still affected by any of these two vulnerabilities?

    • Sendent for MS Teams: Integrating Nextcloud and Microsoft Teams - Nextcloud

    Jump

  • Not just MS Team, but the whole MS ecosystem.

    • Is Linux pretty much unusable with an Nvidia GPU?

    Jump

  • I actually own a steam deck and I never had any major issues with it, so my only conclusion is that this time it’s the fault of either linux mint

    Isn't Steam Deck use AMD and not NVIDIA? Btw, playing CS:GO2 on Nvidia 3070 Ti on Linux desktop using driver version 545 doesn't give me a major issue so far.

    • Sendent for MS Teams: Integrating Nextcloud and Microsoft Teams - Nextcloud

    Jump

  • The post is about Nextcloud self-hosted file storage as an open source replacement for One Drive which is deeply integrated with MS Teams. For those, who can't replace MS Teams with FOSS equivalent for whatever reason, can at least stop relying on One Drive for file storage solution.

    And, for your information, Nextcloud does offer 1:1 and group chat solution[1], which is an open source replacement for MS Teams.

    [1] https://nextcloud.com/talk/

    • Sendent for MS Teams: Integrating Nextcloud and Microsoft Teams - Nextcloud

    Jump

  • You are essentially sharing a file link via MS Teams.

    Instead of keeping the actual file on OneDrive, it is hosted on your own (Nextcloud) server. Sorry but how it leads to privacy issue?

    • Sendent for MS Teams: Integrating Nextcloud and Microsoft Teams - Nextcloud

    Jump

  • Nextcloud[1] is an open source and self-hostable SaaS product.

    Instead of using OneDrive and Google Drive (and similar proprietary solutions), Nextcloud is a better solution from Privacy POV, IMO.

    [1] https://en.wikipedia.org/wiki/Nextcloud