wgs
2 weeks ago
•
100%
C'est pas illégal de le demander à ton/ta collègue cela dit.
As the next release is slowly cooking, I'd like to mention an artist that I love: @pmjv, or *prahou*. He's been dedicated to submitting awesome artwork about his universe, here at /c/unix_surrealism, which features many openbsd related comics (puffy being an important protagonist). I was thus wondering how an artist could pretend at submitting an artwork for the next release ? Is it a shortlist ? Do you simply upload some on the mail list ?
unix_surrealism
"Do you know the old fable: The Girl and The Fish?"
wgs
3 weeks ago
•
100%
My dear friend, this is (again!) some beautiful art you got there ! This could easily be the artwork for openbsd 7.6 ! If you don't mind me I'd like to mention it on /c/openbsd so your work doesn't go unnoticed? :D
unix_surrealism
"Do you know the old fable: The Girl and The Fish?"
wgs
3 weeks ago
•
100%
I cannot speak for prahou, but I'm fairly sure we both agree on this:
- Codebase is clean and lean
- Security is a first grade citizen
- Dev team is not afraid to call stuff obsolete and remove/replace stuff
- It's a full operating system, not just a kernel that you need to build on top of before distributing it
- Config files syntax is cohérent across the whole OS
masterPuffy rocks.
unix_surrealism
apocalypse
wgs
2 months ago
•
100%
We call them crowdstals down there. They used to only target ancients NT kernels but apparently they evolved to infect other environments. Eh, nature.
wgs
2 months ago
•
100%
Nope. But I'm eager to know how you can be so confident saying that ? (FYI the WiFi is served by a hotspot from my phone, which uses a randomized MAC address)
unix_surrealism
de-spare
wgs
3 months ago
•
100%
Oh I love this style <3 It's refreshing and yet so comforting because it's still girl :D
wgs
4 months ago
•
100%
You don't have any plugins on surf. I personally use a DNS based ad blocker.
wgs
5 months ago
•
100%
Gotta punch holes in the screen and hammer the keyboard a bit haha. But remember friends, Hardware is forever.
wgs
5 months ago
•
100%
Easy, become a Magnetic Nymph today !
- Window manager: *[glazier](https://z3bra.org/glazier)* (with _many_ [wmutils](https://github.com/wmutils/core) scripts) - Terminal: *st* - IRC: *irssi* - Widgets: *lemonbar* - Wallpaper: _Fan service_ by [@pmjv@lemmy.sdf.org](https://lemmy.sdf.org/u/pmjv)
wgs
5 months ago
•
100%
Une dictature, comme vous y allez !
Programmer Humor
just make
wgs
5 months ago
•
100%
The real answer here.
unix_surrealism
OpenWellington pt1
wgs
5 months ago
•
100%
Worth it.
wgs
5 months ago
•
100%
Right now overlays requires elevated privilèges, but ideally it shouldn't. Rewriting the Linux kernel to implement per user namespaces like plan9 does would allow unprivileged actions from any user (just like if any user was sitting in a container, overlayed from the base system).
I know we're not there, and that's not the direction development is going, but this thread is about dreams, right ? 😉
About the XDG specs, they serve a totally different purpose so they're out of the discussion IMO. I'm not advocating against env variables. Just $PATH which is a workaround as I see it, but your mileage may vary.
As for your "issue" with steam, of course this is the best way to solve it. Because of today's OS limitation. My point is that with a better designed namespacing implementation, there would be more elegant solutions to solve it (and would get rid of the need to use LD_LIBRARY_PATH too, or literally any *_PATH env variable)
wgs
5 months ago
•
100%
By mounting the binary over, I mean something like a bind mount. But in your case of a wrapper script, it doesn't apply indeed. Though in this case I would simply name the script steam-launcher and call it a day 🙂
Having multiple executables with the same name and relying on $PATH and absolute paths feels hackish to me, but that's only a matter of preference at this point.
wgs
5 months ago
•
100%
I'm not saying we should get rid of $PATH right now. My point is that it was created to solve a problem we don't have anymore (not enough disk capacity), but we still keep it out of habit.
As a reminder, the discussion is about what should be rewritten from scratch in linux. And IMO, we should get rid of $PATH as there are better options.
wgs
5 months ago
•
100%
Today's software would probably break, but my point is that $PATH is a relic from ancient times that solved a problem we don't have anymore.
wgs
5 months ago
•
100%
You missed my point. The reason $PATH exists in the first place is because binaries were too large to fit on a single disk, so they were scattered around multiple partitions (/bin, /sbin, /usr/bin, etc...). Now, all your binaries can easily fit on a single partition (weirdly enough, /usr/bin was chosen as the "best candidate" for it), but we still have all the other locations, symlinked there. It just makes no sense.
As for the override mechanism you mention, there are much better tools nowadays to do that (overlayfs for example).
This is what plan9 does for example. There is no need for $PATH because all binaries are in /bin anyways. And to override a binary, you simply "mount" it over the existing one in place.
wgs
5 months ago
•
75%
$PATH shouldn't even be a thing, as today disk space is cheap so there is no need to scatter binaries all over the place.
Historically, /usr was created so that you could mount a new disk here and have more binaries installed on your system when the disk with /bin was full.
And there are just so many other stuff like that which doesn't make sense anymore (/var/tmp comes to mind, /opt, /home which was supposed to be /usr but name was already taken, etc ...).
unix_surrealism
seer
wgs
5 months ago
•
100%
I KNEW IT !! Last of the puffer clan, that couldn't be real !
wgs
6 months ago
•
100%
sysupgrade seems to fetch 7.5 right now. I'll see how well it goes !
Edit: upgrade went fine, running 7.5 now !
unix_surrealism
dutch angle
wgs
6 months ago
•
100%
Can't wait for next year to keep on investigating this... Girl does have the same "run bad" tatoo as her though so that's why I'm asking ;)
Mechanical Keyboards
[UPDATE] Could use some recommendations for a (usually) quick typist.
wgs
6 months ago
•
100%
+1 on the Gazzew U4. I just swapped from browns to it and I'm never going back ! They're more tactile and much more silent.
unix_surrealism
dutch angle
wgs
6 months ago
•
100%
Is girl turning into the foss girl ? 😮 IT IS ALL CONNECTED !
Programming
What are your preferred code editors/IDEs to use on Android?
wgs
6 months ago
•
100%
To be honest, Ed.
When I'm forced to edit text on my phone (eg. to fix a broken server while on the go), I ssh in and fire up ed. This is what takes the less screen space on my already to small screen, and because it's line oriented the screen doesn't bounce/resize/screw up when the keyboard appears/disappear.
Selfhosted
endlessh-go: a Golang SSH tarpit that traps bots/scanners
wgs
6 months ago
•
100%
endlessh was pretty cool and a more modern version is even better ! I'll give it a shot !
On a side note, I found a way to trap HTTP connections too while working on my cyb.farm project. The go implementation is ridiculously simple: tarpit.go. It works by providing an endless stream of custom headers to the client, which it is supposed to ingest before getting to the content itself.
unix_surrealism
Techno-Male
wgs
6 months ago
•
100%
Isn't it « puffie » ?
wgs
6 months ago
•
100%
I find the config syntax cleaner.
Mechanical Keyboards
Presoldered split keyboard
wgs
6 months ago
•
100%
Switches indeed ;)
Both voyager and moonlander are prebuilt, right ? I like the voyager, but might like just a few keys under the thumb compared to my current planck layout.
Thanks for the suggestions !
Mechanical Keyboards
Presoldered split keyboard
wgs
6 months ago
•
100%
It's not about the cost, it's more about my current situation, storage space, and besides this specific use-case, I have no use for it (and I dont like buying stuff I don't use).
Hi everyone! I'm planning on getting a split keyboard to replace my planck, but I don't have a soldering iron. What are my options ? Ideally I want: - DIY, no soldering involved - QMK firmware - 40% format The keyboard I'm leaning toward is the let's split as it's a planck split in two halves, but it seems that you need to at least solder the keycaps yourself, which I can't.
unix_surrealism
forbidden man pages
wgs
6 months ago
•
100%
Section 9 of manpages is undocumented in man(7) but refers to obscure processes to access the spirit of the machine.
You can see the nymph (damn she's cool !) reading :
man 9 awaken
wgs
6 months ago
•
100%
Soon: unix_surrealism, the movie 🍿
unix_surrealism
It's oekaki Monday!
wgs
6 months ago
•
100%
I know I'm weird, but boy do I love this art style <3
unix_surrealism
safest login method on the market - jack2head
wgs
6 months ago
•
100%
More like openblade2head. What an evolution !
Programmer Humor
:3{:3|:3&};:3
wgs
7 months ago
•
100%
I didn't come up with this idea myself, this is straight from OpenBSD disk setup guide (which I personally trust as a good source of info) :
Encrypting External Disks
This section explains how to set up a cryptographic softraid volume for an external USB drive. An outline of the steps is as follows:
- Overwrite the drive's contents with random data
[...]
# dd if=/dev/urandom of=/dev/rsd3c bs=1m
Programmer Humor
:3{:3|:3&};:3
wgs
7 months ago
•
100%
/usr/share/language/pack/français: Permission refusée
wgs
7 months ago
•
100%
Well as I see it, it will just do a lot of write operations to your disk, which might eventually damage it if you do it a lot (just like any write operation done on a disk). However, this specific command isn't bad per se, and is even technically a good thing to do for preparing to full disk encryption.
Programmer Humor
:3{:3|:3&};:3
wgs
7 months ago
•
100%
sudo cat is pointless here, better do
</dev/urandom sudo tee /dev/sd*
As a bonus it'll scramble your terminal 💪
Hey everyone ! With so many people stuck at 200 points on the board, I'm wondering if the chapter 2 isn't too "abstract" ? The Cyb3r Hunt is meant to be challenging, but it shouldn't discourage players because they can't figure out what to do. For those that went past it, did you find the solution sketchy ? Did it all make sense, or you went past it without really understanding what all these files were for ? For those stuck, where are you stuck at (please use a spoiler tag) ? I'm considering removing some files I consider "optional", and changing the hint to make it less like a guessing game as to what to do. Any opinions on this ?
ploum.net
I've been working on this project for over a year now, and I'm sure many people here will like it ! This is a game where the player must complete technical challenges about various technologies (programming, cryptography, networking, etc...) to progress through the story. It puts the Unix family under the light, and features many opensource technologies all running on a single server! Check out the [about](https://cyb.farm/about.html) page for details, and happy hunting !
Bonjour amis technophiles ! J'avais déjà teasé ce projet il y a 15 jours, et ça y est, le jeu démarre aujourd'hui ! Il reste encore de la place sur le tableau des scores donc c'est le moment de plonger dans cette aventure dystopique et de mettre vos compétences techniques à rude épreuve !
Over the past year, I've created technical adventure for people eager to challenge their skill and knowledge about many technical fields, while also having fun ! Programming, version control, command line, network protocols, cryptography, steganography, games, … Thorough the game you'll switch from decades old to state of the art technologies, and use it all to progress through a dystopian story happening around the 2^nd^ Epochalypse. Get your systems ready, and hope that you'll be done with it before the Advent of Code starts, because you will probably not handle both at the same time ;)
https://cyb.farm _artwork by the mighty @pmjv_
Just spreading love for `sysupgrade(8)`. I had a private server running 7.2 dutyfully serving a PHP software for a local organisation for the past 4 years. Our provider suffered an outage which brought the server down for a few hours. When it got back up, I decided to use this outage to upgrade it to 7.4. Two `sysupgrade` and one `pkg_add -u` later, the server is up and running again, without further intervention needed. I did it all from my phone, in a train with a a laggy connection. Thanks OpenBSD for caring this much about your users ! 🐡♥️
[CYB3R HUNT](https://cyb.farm) is an epochalyptic online adventure of which you are the hero! Check out the [about](https://cyb.farm/about.html) page, the [rules](https://cyb.farm/rules.html), and prepare for the opening on the 31^st^ of october ! Artworks are made by [prahou](https://analognowhere.com), creator of the *unix_surrealism* universe (check out his [mastodon](https://merveilles.town/@prahou) account for the image on the background, and more quality content!). As for the programs running : - window manager: [glazier](https://z3bra.org/glazier) & [wmutils](https://github.com/wmutils/core) - terminal: [st](https://st.suckless.org) - web browser: firefox (with borders removed for better visual effect) - irc client: [irssi](https://irssi.org) - image viewer: [lel](https://git.2f30.org/lel/log.html) - widgets: [lemonbar](https://github.com/LemonBoy/bar)
Je viens d'achever la création de ma [CYB3R HUNT](https://cyb.farm), une aventure dystopique dont vous êtes le héros! L'accès ouvrira à la fin du mois, et offrira un grand nombre de challenge techniques allant _crescendo_ en terme de difficulté et d'implication. En progressant dans les défis proposés, vous ferez avancer l'histoire vers son dénouement, et gagnerez des "flags" permettant de mettre à jour votre score sur le tableau général. Rendez-vous le 31 octobre pour vous mesurer à ce défi technique que je vous propose ! N'hésitez pas à repartager le lien d'ici là; plus on est de fous, plus ont rit ! 😉 https://cyb.farm _(J'espère que l'auto promotion n'est pas un problème, auquel cas je retirerais mon post)_
Came back from a trip in Corsica where we climb the most mental slab I've ever put my hands on !
cross-posted from: https://lemmy.sdf.org/post/5947610 > On the 19th of January [...] The admin team was helpless. In the split of a second, the whole CYBFARM network went down. Every subsystem on the planet stopped, and there was nothing they could do against it. The CYBFARM has always been autonomous, and nobody had enough knowledges of its internals to debug or fix anything. > > Hopefully, a few minutes later, the first system came back up: the security module. Then other subsystems rebooted one after the others, and the production of goods restarted as expected. > > We later found that an overflow occurred in the system clock. This caused a disruption of the internal message bus of the CYBFARM, which entered a locked state, and shut itself down to prevent harming the subsystems. > The CYBFARM eventually found and patched the bug automatically, without any external intervention from our part. This was the first time in History that [an autonomous system] healed itself without human action! > > This is such a major milestone in History! > > _Agatha Zieg-Movnieski_ > _Epochalypse incident report_ *artwork: @pmjv* ----- _The [CYB3R HUNT](https://cyb.farm) will be starting soon… Spread the word, and get ready!_
> On the 19th of January [...] The admin team was helpless. In the split of a second, the whole CYBFARM network went down. Every subsystem on the planet stopped, and there was nothing they could do against it. The CYBFARM has always been autonomous, and nobody had enough knowledges of its internals to debug or fix anything. > > Hopefully, a few minutes later, the first system came back up: the security module. Then other subsystems rebooted one after the others, and the production of goods restarted as expected. > > We later found that an overflow occurred in the system clock. This caused a disruption of the internal message bus of the CYBFARM, which entered a locked state, and shut itself down to prevent harming the subsystems. > The CYBFARM eventually found and patched the bug automatically, without any external intervention from our part. This was the first time in History that [an autonomous system] healed itself without human action! > > This is such a major milestone in History! > > _Agatha Zieg-Movnieski_ > _Epochalypse incident report_ *artwork: @pmjv*
Case stared at the old laptop. > Is it broken ? Molly closed the lid, and put it next the others, all destroyed by the CYBFARM security module. There must be a way to bypass it... *artwork: @pmjv*
I used to rock a bare metal 1Tib HDD server for 17€/month, that I used as an NFS server for all my other servers which needed storage space. First of all, NFS kinda sucks and I'm looking for alternative solution that I can use on OpenBSD to mount remote volumes. Secondly, I'm planning to move this server to hetzner (my current provider), but they lack affordable storage (it's 50€/month for 1Tib). Do you know an hosting provider which would provide high volumes for not so expensive prices ?
Salut les Français ! Je bosse sur un projet dans le cadre duquel j'ai besoin de construire une table de correspondance entre des mots de passe et leurs hash cryptographiques. Seulement voilà, l'algorithme de calcul de ces hash (argon2id) est spécifiquement construit pour être long et coûteux a calculer. Or moi j'ai besoin d'un gros volume de données aléatoires (+2Gib), et memes avec toute ma puissance dont je dispose a la maison, ça me prendrait des mois. J'ai donc mis au point [hashcrush](https://git.z3bra.org/hashcrush), un "brûleur de CPU", qui calcule ces précieux hash en utilisant toute la puissance disponible sur la machine qui l'exécute. Je l'ai testé sous Linux et OpenBSD. Parce que je crois en l''esprit communautaire et l'entraide dans la vie de tous les jours, je préfères demander de l'aide au sein des communautés auxquelles j'appartiens plutôt que d'engraisser les fournisseur de service (qui me louerait du CPU à foison pour le même résultat avec grand plaisir). Donc si vous voulez bien me filer un coup de main, clonez le dépôt et mangez du hash ! Toutes les infos sont sur la [page du projet](https://pub.z3bra.org/hashcrush/goal.html). Si vous avez des questions, n'hésitez pas à les poser ici. Merci les copains :) Edit: pour ceux que ça intéresse, on a atteint l'objectif. Ça nous aura prit 3 jours, contre 8 mois si j'avais fais ça tout seul !
I've recently dug into my firewall logs and the most traffic I seem to receive from internet is targeting port 3389. While I could just blacklist the source IPs and call it a day, I would like to actually listen on this port and "trap" them in a fake RDP connection. There are tools like [endlessh](https://nullprogram.com/blog/2019/03/22/), and I've found that you can do the same for [http](https://phroxy.z3bra.org/z3bra.org:70/0/notes/tarpit.go) by sending an endless stream of headers. I would like to do the same for RDP, and before I start digging into the whole spec, I was wondering if there is already something similar for RDP. Is anyone aware of that ? Is that even a thing ?
cross-posted from: https://lemmy.sdf.org/post/1341812 > The one true white rabbit.
Hey everyone ! I finally decided to monitor my applications more closely with Grafana. However I'm having issues building dashboards their logs. Their logs are currently sent over syslog (in RFC3164 format) into telegraf. But it simply puts the whole message into the `message` field, so I can't use specific fields (eg. URL for httpd, source IP for DNS requests, username for SSH, …) to build graphs. I've read about grok patterns, but I have no idea how to use them. Would someone have any pointer on how I could make sense out of these logs for later use ?
I would like to add a new keyboard layout ([FR - AZERTY AFNOR](http://norme-azerty.fr)). What is the correct way to do it ? Ideally I would like to use it for everything: - full disk encryption - TTY - xenodm - xenocara session For now, I updated `/usr/X11R6/share/X11/xkb/symbols/fr` to add the variant, which I load in xenodm and my xsession using `setxkbmap`. However I feel like it's not "clean" as it should be done with `wsconsctl` . So what is the correct way to do it ?
chimera-linux.org
I just found about this distro, which is relatively new (2021). Its specificity is that it doesn't features any GNU software by default, which I find interesting.
[Old computer challenge V3](https://dataswamp.org/~solene/2023-06-04-old-computer-challenge-v3.html) I stumbled upon this challenge just in time, and decided to blow the dust out of my trusty Acer Aspire one from 2008. This beast features an Intel Atom clocking at 1.67Ghz, 230Gib HDD and a whooping 1024Mib of RAM ! I slapped OpenBSD 7.3 on it just to find that my wireless card is still not supported (probably never will...). I had to scrap one from an (even older!) Asus EEE PC to get it going. It's now up and running, ready to choke at the 512Mib limit while trying to browse the web ! I'm using `st` for the terminal. Programs running are `sacc` (gopher client), `vis` (text editor) and `irssi` (IRC client). It runs my own window manager: [glazier](https://z3bra.org/glazier) with [wmutils](https://github.com/wmutils/core). Will happily answer any questions !
Hey everyone, I decided after many year to try again to slap OpenBSD on my old Acer Aspire one. The Wifi adapter is not supported, but I was thinking about using my phone to get network connectivity out of it. Unfortunately I'm hitting a strange behavior: `ifconfig urndis0 autoconf` works as expected, and I get an IP over DHCP. Ping and DNS resolution work as expected, but when I try any TCP connection, the connectivity simply stops working, and I cannot even ping the gateway anymore. `dmesg` doesn't say anything about it. Has anyone encountered this already ?
Does anyone do this ? I've been using irssi for years but it does not support using a SOCKS proxy which makes it unsuitable for this purpose.
**TL;DR**: I use a vim like editor which tackles Vim's greatest weakness: [vis](https://github.com/martanne/vis).
**TL;DR**: I use a vim like editor which tackles Vim's greatest weakness: [vis](https://github.com/martanne/vis).
My main frustration with the phlogosphere is that it's not trivial to comment or discuss a phlog entry by other means that the web (which we all despise, right?) There are solutions of course, but I find them inconvenient: - emails - instant messaging (IRC/matrix/...) - /7/ item trick - ??? What's your take on that ?
www.laquadrature.net
Un groupe d'individus est jugé pour comportement terroriste, à cause de leur utilisation d'outils de protection de la vie privée (Tails, Tor, Signal, uBlock, ...), et non sur la base de fait avérés.
I used to run it on my Xperia, and life was good. Then they announced a version for the Xperia 10 III, so I got hyped and bought the device. When the release came out, it lacks so many features and was riddled with bugs, so I never installed it. As of today (4.5.19), it seems the software still lacks basic features (ability to use the 3 cameras), and still has very annoying bugs (must use loidspeaker when in communication to prevent echo). Am I misinformed ? Is anyone using it daily that could share their experience? Thanks!
For the past 4 years, I've been working on this hacked version of Pokemon Crystal. The story takes place in an alternate reality where Mewtwo defeated Mew, and decided to took his revenge on humanity, turning the world into a wasteland. This hack is very short to play, but will hopefully offer a different but refreshing experience to the player compared to the traditional games. As a huge fan of the original GBC games, this is my tribute to them. Hope you guys can enjoy this as much as I did ;) _Edit_: I hope it's ok to post self-promotion like this here. It's not like I'll make a new game every week anyway 🙃
I've been accessing my servers over Yggdrasil for the last few years and I never see it mentioned in self hosting communities, so here you go ! Yggdrasil works over IPv6 and brings encryption at the network interface level (similarly to a VPN). The cool thing is that your IP address is derived from your private key, so when you try to connect to a specific IP, your packets are encrypted so that ONLY the destination server can decrypt it (thus preventing MITM attacks). And as everything is encrypted at the NIC level, you can safely use plain text protocols ;) How cool is that ?
Gopher link: [Bongusta!](gopher://i-logout.cz/1/bongusta/) I appreciate the effort of this community to share random posts on the gopher space. I'm the same vein, here's Bongusta!, an effort to aggregate many phlogs in the same place, scrap them, and present new posts in descending order for all of them. I've been using that for a few years now and it's pretty neat to discover cool phlogs ! Edit: sorry for the http link, Jerboa wouldn't let me post a `gopher://` scheme.
Hi everyone, For a very special use case of mine, I need to allow users to connect over SSH to my server to setup a SOCKS proxy: ``` ssh -D localhost:1080 -N my.server.domain.tld ``` However, I only want them to be able to reach 127.0.0.1 through this proxy (so, my server itself). Is that even possible ?
I'm subscribed to different communities on other instances, and the posts there did not appear on this instance for the past 3 days. Is it a known issue ? _Edit_: The instance has switch to 0.18.0, and I don't have the issue anymore. Thanks mods !