|
Someone go heckle them and by heckle I mean scream at them to stop pretending OpenOffice is still in development already
|
# ? Feb 9, 2022 03:31 |
|
|
# ? Mar 28, 2024 11:46 |
|
wait, OpenOffice? not LibreOffice? lol
|
# ? Feb 9, 2022 04:04 |
|
yeah the OO side of the fork has been zombie'ing around pretending it's still a real viable project for some inexplicable reason
|
# ? Feb 9, 2022 08:15 |
|
BobHoward posted:yeah the OO side of the fork has been zombie'ing around pretending it's still a real viable project for some inexplicable reason well yeah isn't that the whole point of any apache project
|
# ? Feb 9, 2022 11:22 |
|
sb hermit posted:wish we could get a hot take from nbsd One of you should step up imo.
|
# ? Feb 18, 2022 15:30 |
|
AnimeIsTrash posted:One of you should step up imo. I'm already putting up my hot takes but they definitely aren't spicy enough for a probation or a ban. Unless it's anime, but that's someone else's posting gimmick.
|
# ? Feb 18, 2022 16:42 |
|
if you use linux, you watch anime. simple as
|
# ? Feb 18, 2022 16:48 |
|
can confirm
|
# ? Feb 18, 2022 19:24 |
|
mycophobia posted:if you use linux, you watch anime. simple as lies. i am professing my hate for anime from the linux arch, btw, etc
|
# ? Feb 19, 2022 05:14 |
|
Lol imagine hating anime in tyool 2022.
|
# ? Feb 19, 2022 05:24 |
|
mycophobia posted:if you use linux, you watch anime. simple as wrong. i stopped watching anime when i started using linux (middle school)
|
# ? Feb 19, 2022 05:51 |
|
you should watch one punch man it is pretty good
|
# ? Feb 19, 2022 07:04 |
|
I get second hand embarrassment from reading about people watching anime and using linux
|
# ? Feb 19, 2022 07:06 |
|
wow sucks to be you, you should try therapy
|
# ? Feb 19, 2022 07:11 |
|
linux users watch anime because it’s guaranteed to have subtitles
|
# ? Feb 19, 2022 08:57 |
|
Soricidus posted:linux users watch anime because it’s guaranteed to have subtitles
|
# ? Feb 19, 2022 10:21 |
|
Soricidus posted:linux users watch anime because it’s guaranteed to have subtitles i thought linux audio jokes were properly beaten to death by now, but this is pretty much perfect
|
# ? Feb 19, 2022 11:21 |
|
Most anime is poorly animated and bad and I refuse to gamble on it any more. But I digress, how about them linuxes and it's tuxes, 2022 is the year of the linux etc.
|
# ? Feb 19, 2022 11:52 |
|
Soricidus posted:linux users watch anime because it’s guaranteed to have subtitles
|
# ? Feb 19, 2022 12:25 |
Kamrat posted:Most anime is poorly animated and bad and I refuse to gamble on it any more.
|
|
# ? Feb 19, 2022 12:40 |
https://www.youtube.com/watch?v=wjyOwTToJQk
|
|
# ? Feb 19, 2022 14:44 |
|
BlankSystemDaemon posted:i'm sure some idiot with a gpu will use neural-network assisted frame-interpolation to make things better I think it's easier to just watch something else
|
# ? Feb 19, 2022 15:07 |
|
deaf people use linux and dumb people use windows
|
# ? Feb 20, 2022 16:32 |
|
hifi posted:deaf people use linux and dumb people use windows
|
# ? Feb 20, 2022 16:34 |
|
lol come on
|
# ? Feb 20, 2022 17:10 |
|
mystes posted:I realize that audio output doesn't work in linux, but does speech recognition really not work in windows? no it does not https://www.youtube.com/watch?v=MzJ0CytAsec&t=94s
|
# ? Feb 20, 2022 17:19 |
|
I was helping someone find out which USB cable was having intermittent issues and was corrupting poo poo on their e-reader. I then told them to open whatever disk utility their distro ships and do an fsck of the file system of that reader, because it was shot to bits. A few extremely confusing exchanges later, I had to check something… quote:Disks 3.3+ is a complete rewrite of the old gnome-disk-utility (aka Palimpsest). It no longer appears to include an option to check filesystems gparted did the trick…
|
# ? Feb 20, 2022 21:22 |
|
|
# ? Feb 21, 2022 01:41 |
|
Image failed to attach
|
# ? Feb 21, 2022 01:41 |
|
take ownership: grab Linux by the balls
|
# ? Feb 21, 2022 05:31 |
|
Sapozhnik posted:Image failed to attach What the gently caress.
|
# ? Feb 21, 2022 08:45 |
|
looking for a new internet janitor job, it seems like every gig out there wants kubernetes regardless of their environment or application maybe this rant belongs in the security thread, but how the gently caress is it that k8s *still* has no baked in image verification mechanism in 20 loving 22? for decades now, cryptographically signed sources/binaries have been the standard for distributing software, then dockerhub and gcr come along and everyone just says "yolo bitches, tls is all the integrity guarantee I need"
|
# ? Feb 21, 2022 21:10 |
|
i think you can stick @sha256:whatever on the end of an image tag? not ideal admittedly but it's something
|
# ? Feb 21, 2022 22:00 |
|
that's technically correct. But unless the hash is baked into the image by all the tools, and is cryptographically signed, and all these items are checked by the deployment tools, then they may as well not exist because no one is going to utilize them and the checksums won't be trustworthy anyway. Sure, you can roll out your own tooling to do the hash and check it. You can also deploy Gentoo. The vast majority of computer janitors will do neither. On the other hand, if there is a watering hole attack, the problem will be fixed very fast. sb hermit fucked around with this message at 22:23 on Feb 21, 2022 |
# ? Feb 21, 2022 22:21 |
|
Sapozhnik posted:i think you can stick @sha256:whatever on the end of an image tag? you *can* but nobody *does* in the realm of things you *can* do are some pretty robust solutions like portieris, which will check dct and redhat simple signatures (among other things) as an image admission controller.... ...but good luck finding signed images. gcr doesn't support dct at all, and dockerhub images are either totally unsigned, or rubber-stamp signed by dockerhub controlled keys and that's all assuming you found a way to verify the etcd and apiserver and other kube infrastructure images when you deployed them I get that this is as gently caress, but it all feels like a major regression in supply chain security from having an os package keyring containing keys from your distro and the occasional 3rd party vendor.
|
# ? Feb 21, 2022 22:25 |
|
I get the impression that the sha256 digest is more for identifying an image, rather than for verification. So I guess a CJ could use the tag on a tightly controlled system to make sure things stay on a specific version. But then the tag would need to be updated all the time. Still, it would be useful for a rigorous CM environment.
|
# ? Feb 21, 2022 22:28 |
|
sb hermit posted:I get the impression that the sha256 digest is more for identifying an image, rather than for verification this could just be something I dreamt up in a fit of docker hate, but I want to say at one time the docker image hash was only of image metadata, and not of the image contents itself
|
# ? Feb 21, 2022 22:32 |
|
well, given that npm malware is found with increasing regularity, it's not like stuff like this is out of the ordinary https://www.theregister.com/2022/02/03/npm_malware_report/ https://www.theregister.com/2022/01/10/npm_fakerjs_colorsjs/ Bring back cryptographically signed manifests.
|
# ? Feb 21, 2022 22:36 |
|
sadly I don't think it'll happen because there is no money to be made in locking down the supply chain instead it seems like we're moving in the direction of subscription services that scan images for malware and subscription image blacklists
|
# ? Feb 21, 2022 22:41 |
|
|
# ? Mar 28, 2024 11:46 |
|
nudgenudgetilt posted:this could just be something I dreamt up in a fit of docker hate, but I want to say at one time the docker image hash was only of image metadata, and not of the image contents itself From what I remember, the image metadata names the data layers via their sha256 hash. So it's a bit roundabout, but you can still establish a chain of image integrity. I'm not a docker expert so maybe someone else can correct me on that.
|
# ? Feb 21, 2022 22:42 |