pantherina

joined 1 year ago
MODERATOR OF
kaufempfehlungen
sorted by: new top controversial old
Thinking about switching from fish to bash + extensions in c/linux@programming.dev
[–] pantherina@feddit.org 1 points 1 day ago (1 children)

I think so. If I do ./script.sh I get fish errors, same with . script.sh

Only sh script.sh works, which is dash inside of fish

Thinking about switching from fish to bash + extensions in c/linux@programming.dev
[–] pantherina@feddit.org -1 points 1 day ago* (last edited 1 day ago)

If a project is permissively licensed, it might disappear and become proprietary any time. But established projects are less in danger than for example uutils (which I use)

Thinking about switching from fish to bash + extensions in c/linux@programming.dev
[–] pantherina@feddit.org 2 points 1 day ago (1 children)

Yes that is what I do. But bash snippets dont work in fish.

I could learn something better like lua, but never used it

Thinking about switching from fish to bash + extensions in c/linux@programming.dev
25
Thinking about switching from fish to bash + extensions (feddit.org)
submitted 1 day ago* (last edited 1 day ago) by pantherina@feddit.org to c/linux@programming.dev
15 comments fedilink
 

I am writing POSIX shell scripts quite often, mostly for speed and portability. Though, that might not even be needed, as bash might have gotten a speed increase compared to dash, ash and whatnot.

Here are some tests I plan to run to see if the speed difference is still the case

As my normal user shell I use fish since quite some time. I enjoy

  • a simple PS1 that shows the git branch, git status, truncated path where I am
  • autocompletion based on history
  • autosuggestions from -h or --help even if the tool has no autocompletions in other shells
  • abbr instead or alias is quite cool to not forget the actual commands. But I can live without

I dont use more features really. I have a couple of fish functions, and fish might just be a better bash with easier syntax. But bash is the standard, so I never use them anyways.

I wouldnt want to switch to zsh because it is weird permissively licensed. But if it is faster or better than bash, maybe?

I also like that fish is completely rewritten in rust. There is rusty-bash aka. sushi shell, anyone use that? Is is compatible with modules?

Are these extensions just scripts that you run on startup of the shell?

Mirroring git repos with force push protection? in c/linux@programming.dev
[–] pantherina@feddit.org 3 points 4 days ago

True, I can do that with btrfs snapshots

German state of Schleswig-Holstein to save €15 million each year by kicking out Microsoft for Open Source, local government says in c/europe@feddit.org
[–] pantherina@feddit.org 1 points 4 days ago* (last edited 4 days ago)

Btw: Germany is working on some "tech stack" they wanna use for public projects or something.

It is pretty weak, contains little bullshit on the technical side, but in politics and law you know that everything has to be precisely written out to avoid people fucking it up:

They mention "open source" like twice, and "free software" is mentioned nowhere. In contrary, many requirements are heavily corpo-shaped, like the original idea of the Cyber Resilience Act (CRA), with audits and compliance and stuff, but no mention of software needing to be

  • auditable not only once, but open forever
  • free to study, adapt, fork and reuse
  • trustworthy by design

The Free Software Foundation Europe made a statement on that recently

German state of Schleswig-Holstein to save €15 million each year by kicking out Microsoft for Open Source, local government says in c/europe@feddit.org
[–] pantherina@feddit.org 4 points 4 days ago

Biggest thing here: I hope they donate 5mio€ to Libreoffice and others instead!

I never read that this is a big step to invest in free software.

EU weighs ban on veggie 'burger' and 'sausage' labels in c/europe@feddit.org
[–] pantherina@feddit.org 9 points 4 days ago

NO11!1! A sausage has to be a ground animal stuffed into it's own intestine!

Just like God intended!!1!

5
Mirroring git repos with force push protection? (feddit.org)
 

Use case: I want to mirror a bunch of repositories of a project. I suppose this would be pretty easy with a script.

But to the git part: I fear that the developers might force push things and thus revert commits and de facto delete code.

Is there a way to git clone and auto-checking out to a different branch or something else, to avoid force pulling and reverting commits?

[Video] German cops arrest kid at pro-Palestine demonstration and then assault elderly man for calling them out in c/europe@feddit.org
[–] pantherina@feddit.org 18 points 4 days ago

This person has never seen a cop or a court from less than 10m away

[Video] German cops arrest kid at pro-Palestine demonstration and then assault elderly man for calling them out in c/europe@feddit.org
[–] pantherina@feddit.org 1 points 4 days ago

Cops are just better in court...

GrapheneOS being targeted by France in c/europe@feddit.org
[–] pantherina@feddit.org 1 points 2 weeks ago

Vanilla LineageOS is not amazing. It connects to Google for some things, the apps are nice, generally pretty privacy friendly by itself but not amazing.

Also why cant they use a normal install method that allows bootloader relocking? Their method is fundamentally incapable of that afaik, as they dont support that even on Pixels

GrapheneOS being targeted by France in c/europe@feddit.org
[–] pantherina@feddit.org 1 points 2 weeks ago* (last edited 2 weeks ago)

This is ironic but still

  • Android phones are encrypted? And Pixels have secure elements, making brute forcing impossible
  • disk encryption doesnt matter shit as physical attacks are like 10% of them
  • your device is decrypted all the time
  • desktop linux is a total security mess (I am using it daily and try to improve it but it is hard)
10
Signal Group: Healthy Mind, Body and Planet (signal.group)
 

A Signal group to discuss sports, meditation, food, sleep, and all sorts of other healthy things.

We focus on being environmentally acceptable, i.e. no keto carnivore nonsense ;)

To join, please make a nice profile pic and name, doesn't need to be something personal.

20
"Whatsapp Contacts Bypasser": Open a chat in Whatsapp using only a phone number! (github.com)
 

Whatsapp is privacy invasive, and we likely know that even when using E2EE, this is possible due to metadata tracking.

An easy way to avoid one creepy thing, contact scanning and the creation of "who knows whom" social nets, is to not grant apps permission to your contacts!

But this is not easy, as apps often enforce this, just as they do with

  • embedded cameras instead of using the system camera
  • embedded galleries instead of the 2 available portals (but Google will soon forbid that)
  • asking for unneeded permissions

Only GrapheneOS also allows blocking these permissions

  • sensors
  • internet
  • loading code from memory i.e. from the internet (why would they do that? Is there something they want to hide?)
  • debugging their own code to spy on the system behavior

But this app can help everyone on any Android to at least fix this :)

15
"Whatsapp Contacts Bypasser": Open a chat in Whatsapp using only a phone number! (github.com)
 

Whatsapp is privacy invasive, and we likely know that even when using E2EE, this is possible due to metadata tracking.

An easy way to avoid one creepy thing, contact scanning and the creation of "who knows whom" social nets, is to not grant apps permission to your contacts!

But this is not easy, as apps often enforce this, just as they do with

  • embedded cameras instead of using the system camera
  • embedded galleries instead of the 2 available portals (but Google will soon forbid that)
  • asking for unneeded permissions

Only GrapheneOS also allows blocking these permissions

  • sensors
  • internet
  • loading code from memory i.e. from the internet (why would they do that? Is there something they want to hide?)
  • debugging their own code to spy on the system behavior

But this app can help everyone on any Android to at least fix this :)

18
"Whatsapp Contacts Bypasser": Open a chat in Whatsapp using only a phone number! (github.com)
 

Whatsapp is privacy invasive, and we likely know that even when using E2EE, this is possible due to metadata tracking.

An easy way to avoid one creepy thing, contact scanning and the creation of "who knows whom" social nets, is to not grant apps permission to your contacts!

But this is not easy, as apps often enforce this, just as they do with

  • embedded cameras instead of using the system camera
  • embedded galleries instead of the 2 available portals (but Google will soon forbid that)
  • asking for unneeded permissions

Only GrapheneOS also allows blocking these permissions

  • sensors
  • internet
  • loading code from memory i.e. from the internet (why would they do that? Is there something they want to hide?)
  • debugging their own code to spy on the system behavior

But this app can help everyone on any Android to at least fix this :)

3
Erfahrungen mit "Conny" zur Mietpreisbremse? (conny.de)
submitted 1 year ago* (last edited 1 year ago) by pantherina@feddit.org to c/berlin@feddit.org
0 comments fedilink
 

Conny ist ein Inkasso-Service, der einem hilft die Mietpreisbremse einzuklagen.

Man geht einen Vertrag ein, und sobald man Geld spart, zahlt man ihnen die Kosten. Das ist super viel, die Ersparnisse von 6 Monaten + 2/3 der rückgezahlten Miete.

Theoretisch klingt das super nice, weil man nichts zahlt falls man verliert.

Sie berichten von 10.000 erfolgreichen Verfahren. Ich bin aber sehr skeptisch.

Vor allem, warum sollte man nicht einfach normal fristgerecht gekündigt werden? Es findet sich doch eh jemand dummes, der nach einem einzieht?

Hat hier wer Erfahrung damit gemacht, oder kennt wen?

Was ich so gefunden habe

Rechtsstreit gegen Conny, Verstoß gegen EU Recht?

Ausführlicher englischer Blog, evtl nicht neutral

Test.de Artikel von letztem Jahr

Reddit Thread

Hier gibts Infos zur Mietpreisbremse

Absolut krass. Wir sind Erstmieter nach einer merkwürdigen Modernisierung. Neben sinnvoller energetischer Sarnierung soll der Altbau in einem Randbezirk zu einem modernen Dingsbums werden.

Ich könnte mir denken, dass sie uns absichtlich genommen haben weil wir schön brav aussehen. Denn...

So darf der Vermieter auch die bisherige Miete aus dem Mietverhältnis mit dem Vormieter weiter fordern, wenn diese schon über der Grenze „Vergleichsmiete plus 10 Prozent lag“. Eine Anhebung darüber hinaus ist bei Vertragsabschluss jedoch nicht zulässig.

Wtf??? Es ist also fast unsere Pflicht, dagegen vorzugehen. 25€ pro m², das ist halt Wucher.

Von der Mietpreisbremse ausgenommen sind Neubauwohnungen, die nach dem 1. Oktober 2014 erstmals genutzt und vermietet werden. Auch gilt die Mietpreisbremse nicht für Wohnungen, die erstmals nach einer umfassenden Modernisierung vermietet werden. Gemeint sind hier Fälle, in denen Modernisierungsinvestitionen mehr als ein Drittel des notwendigen Aufwandes für eine vergleichbare Neubauwohnung betragen.

Das klingt jedoch danach, als würden unsere Modernisierungsmaßnahmen bedeuten, dass wir unsere Wohnung nicht unter den Mietspiegel fällt...

-16
Best and worst Linux distros in a tier list - Freebooters (www.youtube.com)
 

I love those guys, their way too long podcast-type videos are always fun to watch

3
Here's What I Would Do If I Could Start Over In Cybersecurity... (www.youtube.com)
submitted 1 year ago* (last edited 1 year ago) by pantherina@feddit.org to c/cybersecurity@sh.itjust.works
3 comments fedilink
 

(His videos are often very lengthy and beating around the bush, so here is a short summary)

  1. Learn basics of IT, Hardware, Software, OS, Networking

Like CompTIA A+, Networking+, Security+ Certificates (they have educational material, no need to do the test)

  1. Learn how big security is, security domains

How they work together

  1. Try Overcome Imposter Syndrome

Focus on what you want to do and what you can

  1. Hobby vs. Career

Separate identities to prevent burnout. You shouldnt work your hobby all the time, I guess

  1. Work with tools to increase productivity (and use ads lol)

  2. Join the InfoSec community

Learn from another, projects, conferences

  1. Take one step at a time
14
Best directory encryption that passed an audit? (feddit.org)
 

I know of CryFS and encFS which both failed an Audit.

I know LUKS and veracrypt which work but are both tedious and not useful for my use case.

I want to encrypt folders on Linux and then sync them with a cloud or just store them locally.

There is goCryptFS which is in Go, i.e. memorysafe which is good. It also failed the audit when it comes to cloud sync.

The issue: if an attacker has access to the encrypted files over time, if you always upload changes, they can crack you.

This would not be relevant for local file stores, but for synced ones it is.

There I used Cryptomator, which has many downsides though

  • the app is GUI only, the CLI variant is last released 2021, which I dont consider maintained when it comes to security? Or is it?
  • the GUI App is in electron, no Wayland support
  • the app devs dont care about flatpak rules and store secrets outside the app container, meaning the app is unconfined by default, you need to manually add an override and it is still pretty insecure in the case that all untrusted apps are flatpaks

KDE KVaults only supports insecure algorithms, goCryptFS would be the most secure for local only stuff, but that was abandoned as a Fedora package and is only available from COPR, currently. (I should learn RPM packaging once again).

Cryptomator seems to be the only one 1. Suitable for cloud sync (not encrypting everything always again) 2. That passed an audit.

The CLI may be fine if it just interacts with the GUI app? I wonder how that would work with the Flatpak.

Do you know any alternatives?

17
Fedora Asahi: How they did it and how it is going (www.youtube.com)
submitted 1 year ago* (last edited 1 year ago) by pantherina@feddit.org to c/linux@programming.dev
1 comments fedilink
 

What hacks they needed, where they get MacOS binaries, how the boot works etc.

Very interesting talk.

Btw they have a regular Function touchbar ;)

1
Mods gesucht! (feddit.org)
submitted 1 year ago* (last edited 1 year ago) by pantherina@feddit.org to c/kaufempfehlungen@feddit.org
0 comments fedilink
 

Wer hier kommentiert mit einer guten Begründung kann Moderator werden :)

view more: next ›