Conversation

Notices

1. Embed this notice
   THE MARTYR OF BUTLERIAN JIHAD (icon_of_computational_sin@mstdn.starnix.network)'s status on Saturday, 06-Jan-2024 03:28:13 JST THE MARTYR OF BUTLERIAN JIHAD

   Hot tip:
   If you run `busctl --monitor user` in L'Eunuchs, you can watch every password that any application requests from your system keyring in plain text.

   Security? What security?

   • Embed this notice
     THE MARTYR OF BUTLERIAN JIHAD (icon_of_computational_sin@mstdn.starnix.network)'s status on Saturday, 06-Jan-2024 03:28:10 JST THE MARTYR OF BUTLERIAN JIHAD

     in reply to

     • cho :ac_sleepy:

     @cho nuke Red Hat. Seriously, I mean it. Treat every Red Hat employee with repugnance and revulsion. Tell every single one of them to either quit and commit suicide. Red Hat is the primary corposhit behind FDo and is the driving force behind L'Eunuchs enshittification (have you even see GNOME?) and hence must suffer the consequences.

     Other than that, I'd start looking for an OS with another desktop stack. No, BSDs won't do since they run effectively the very same user space code.

   • Embed this notice
     THE MARTYR OF BUTLERIAN JIHAD (icon_of_computational_sin@mstdn.starnix.network)'s status on Saturday, 06-Jan-2024 03:28:11 JST THE MARTYR OF BUTLERIAN JIHAD

     in reply to

     • cho :ac_sleepy:

     @cho l'eunuchs kinda does. DBus and freedesktop shit does not. L'Eunuchs can grant or deny access to various resources based on your user and what not. The problem is, once you get access to dbus bus, all bets are off and you're a god. And since more and more programs use dbus for ipc, l'eunuchs security is compromised.

   • Embed this notice
     cho :ac_sleepy: (cho@fedi.layer02.net)'s status on Saturday, 06-Jan-2024 03:28:11 JST cho :ac_sleepy:

     in reply to
     @icon_of_computational_sin
     
     owari da
     
     what are our options then
     ✙ dcc :pedomustdie: :phear_slackware: repeated this.
   • Embed this notice
     cho :ac_sleepy: (cho@fedi.layer02.net)'s status on Saturday, 06-Jan-2024 03:28:12 JST cho :ac_sleepy:

     in reply to
     @icon_of_computational_sin
     
     i dont know anything about security but if it means what i think it means, wth i thought linux has some basic security
     
     edit: actually thats just plain stupid
   • Embed this notice
     THE MARTYR OF BUTLERIAN JIHAD (icon_of_computational_sin@mstdn.starnix.network)'s status on Saturday, 06-Jan-2024 03:28:13 JST THE MARTYR OF BUTLERIAN JIHAD

     in reply to

     Yeah, plain text passwords. Just as we expected.

     Should an application trust that the keyring and its access are secure? Perhaps. Should the implementation just forward secrets over a bus without any access restrictions? FUCK NO!

     Here I would like to remind you again that freedesktop.org people are a bunch of backwards shit-for-brain cockfaced retards and nothing - I repeat, NOTHING - that they have ever made is good for anything. The whole organisation is a circus full of clowns.