| *** ALoGeNo has quit IRC | 00:03 | |
| *** javispedro has joined #maemo | 00:13 | |
| *** ALoGeNo has joined #maemo | 00:17 | |
| *** flo_lap has joined #maemo | 00:17 | |
| *** florian has quit IRC | 00:18 | |
| *** flo_lap is now known as florian | 00:18 | |
| *** ashley has quit IRC | 00:23 | |
| *** ashley has joined #maemo | 00:24 | |
| *** ALoGeNo has quit IRC | 00:36 | |
| *** ALoGeNo has joined #maemo | 00:41 | |
| *** ALoGeNo has joined #maemo | 00:41 | |
| *** GeneralAntilles has left #maemo | 01:05 | |
| *** xes has joined #maemo | 01:32 | |
| *** javispedro has quit IRC | 01:41 | |
| *** erlehmann_ has quit IRC | 02:03 | |
| *** Kilroo has quit IRC | 02:07 | |
| *** BCMM has quit IRC | 02:12 | |
| *** Kilroo has joined #maemo | 02:13 | |
| *** Pali has quit IRC | 02:27 | |
| *** secretivesinger has joined #maemo | 02:31 | |
| *** bonemealassistan has joined #maemo | 02:34 | |
| *** mammetlugubrious has joined #maemo | 02:36 | |
| *** amizraa has quit IRC | 02:38 | |
| *** mammetlugubrious has quit IRC | 02:45 | |
| *** amizraa has joined #maemo | 02:46 | |
| *** chem|st_ is now known as chem|st | 02:46 | |
| *** florian has quit IRC | 02:46 | |
| *** bonehoodlum has joined #maemo | 02:49 | |
| *** xes has quit IRC | 02:50 | |
| *** bonehoodlum has quit IRC | 02:52 | |
| *** disco_stu_droid has joined #maemo | 02:58 | |
| *** galledallegator has joined #maemo | 02:58 | |
| *** mhlavink_afk has joined #maemo | 03:00 | |
| *** maybeWTF has joined #maemo | 03:00 | |
| *** luke-jr_ has joined #maemo | 03:01 | |
| *** jabis_ has joined #maemo | 03:02 | |
| *** oniongar1ic has joined #maemo | 03:02 | |
| *** Elleo_ has joined #maemo | 03:02 | |
| *** g3kk3r_ has joined #maemo | 03:02 | |
| *** thuttu77_2 has joined #maemo | 03:02 | |
| *** Elfix_113 has joined #maemo | 03:02 | |
| *** xkr47_ has joined #maemo | 03:02 | |
| *** gregoa has joined #maemo | 03:02 | |
| *** kylanpaj has joined #maemo | 03:03 | |
| *** HRH_H_Cr1b has joined #maemo | 03:03 | |
| *** nox- has quit IRC | 03:03 | |
| *** honestly_ has joined #maemo | 03:03 | |
| *** fizzie has quit IRC | 03:04 | |
| *** XDS2010____ has joined #maemo | 03:05 | |
| *** FredrIQ has joined #maemo | 03:06 | |
| *** Sc0rpius_ has joined #maemo | 03:06 | |
| *** ecc3g has joined #maemo | 03:06 | |
| *** netkat_ has joined #maemo | 03:06 | |
| *** fortytwo- has joined #maemo | 03:06 | |
| *** teotwaki_ has joined #maemo | 03:06 | |
| *** kylanpaj_ has quit IRC | 03:07 | |
| *** disco_stu has quit IRC | 03:07 | |
| *** ecc2g has quit IRC | 03:07 | |
| *** jabis has quit IRC | 03:07 | |
| *** oniongarlic has quit IRC | 03:07 | |
| *** netkat has quit IRC | 03:07 | |
| *** FIQ has quit IRC | 03:07 | |
| *** fortytwo has quit IRC | 03:07 | |
| *** g3kk3r has quit IRC | 03:07 | |
| *** Luke-Jr has quit IRC | 03:07 | |
| *** xkr47 has quit IRC | 03:07 | |
| *** honestly has quit IRC | 03:07 | |
| *** Elfix has quit IRC | 03:07 | |
| *** gregoa_ has quit IRC | 03:07 | |
| *** Xjs|moonshine has quit IRC | 03:07 | |
| *** teotwaki has quit IRC | 03:07 | |
| *** fortytwo- is now known as fortytwo | 03:07 | |
| *** teotwaki_ is now known as teotwaki | 03:07 | |
| *** teotwaki has quit IRC | 03:07 | |
| *** teotwaki has joined #maemo | 03:07 | |
| *** xkr47_ is now known as xkr47 | 03:07 | |
| *** FredrIQ is now known as FIQ | 03:07 | |
| *** FIQ is now known as Guest56347 | 03:08 | |
| *** disco_stu_droid is now known as disco_stu | 03:08 | |
| *** XDS2010___ has quit IRC | 03:09 | |
| *** Milhouse has quit IRC | 03:09 | |
| *** fizzie has joined #maemo | 03:10 | |
| *** maybeHere has quit IRC | 03:11 | |
| *** Sc0rpius has quit IRC | 03:11 | |
| *** Elleo has quit IRC | 03:11 | |
| *** mhlavink has quit IRC | 03:11 | |
| *** HRH_H_Crab has quit IRC | 03:11 | |
| *** thuttu77 has quit IRC | 03:11 | |
| *** Sc0rpius_ is now known as Sc0rpius | 03:11 | |
| *** Milhouse has joined #maemo | 03:14 | |
| *** Xjs|moonshine has joined #maemo | 03:14 | |
| *** HRH_H_Cr1b has quit IRC | 03:15 | |
| *** HRH_H_Crab has joined #maemo | 03:15 | |
| *** luke-jr_ is now known as Luke-Jr | 03:32 | |
| *** arcean_ has quit IRC | 03:48 | |
| *** yosafbridge has quit IRC | 03:57 | |
| *** LauRoman has quit IRC | 03:59 | |
| *** ALoGeNo has quit IRC | 04:07 | |
| *** yosafbridge has joined #maemo | 04:09 | |
| *** ALoGeNo has joined #maemo | 04:13 | |
| *** yosafbridge has quit IRC | 04:17 | |
| *** FReaper-PC has joined #maemo | 04:22 | |
| *** yosafbridge has joined #maemo | 04:23 | |
| *** Elleo_ has quit IRC | 04:24 | |
| *** spoofy has quit IRC | 04:25 | |
| *** Humpelst1lzchen has quit IRC | 04:28 | |
| *** Humpelstilzchen has joined #maemo | 04:31 | |
| *** maybeWTF has quit IRC | 05:34 | |
| *** mkaindl has quit IRC | 05:42 | |
| *** mkaindl has joined #maemo | 05:43 | |
| *** maybeWTF has joined #maemo | 05:47 | |
| *** lxp1 has joined #maemo | 06:02 | |
| *** lxp has quit IRC | 06:03 | |
| *** FReaper-PC has quit IRC | 06:18 | |
| *** mkaindl has left #maemo | 07:09 | |
| *** chainsawbike has quit IRC | 07:12 | |
| *** chainsawbike has joined #maemo | 07:25 | |
| *** FReaper-PC has joined #maemo | 07:40 | |
| *** wookey_ has joined #maemo | 07:47 | |
| wookey_ | the maemo5 SDK link here is dead: http://maemo.org/development/sdks/ | 07:48 |
|---|---|---|
| wookey_ | should I be using deb http://scratchbox.org/debian/ hathor main | 07:48 |
| wookey_ | or http://repository.maemo.org/ fremantle/sdk free non-free | 07:48 |
| wookey_ | or something else? | 07:49 |
| wookey_ | I see scratchbox2 is in debian, but I assume that won;t work without some tweakage? | 07:49 |
| *** VDVsx has quit IRC | 08:26 | |
| *** VDVsx has joined #maemo | 08:40 | |
| *** FReaper-PC has quit IRC | 08:55 | |
| *** FlameReaper-PC has joined #maemo | 09:08 | |
| *** jmlich has joined #maemo | 09:13 | |
| *** Pali has joined #maemo | 09:17 | |
| *** wizbit has quit IRC | 09:18 | |
| *** wizbit has joined #maemo | 09:20 | |
| *** jmlich has quit IRC | 09:22 | |
| *** LauRoman has joined #maemo | 09:26 | |
| *** arcean has joined #maemo | 09:41 | |
| *** louisdk has joined #maemo | 09:44 | |
| *** dima5 has joined #maemo | 09:49 | |
| sixwheeledbeast | wookey_: see /topic | 09:51 |
| *** goldkatze has joined #maemo | 09:53 | |
| *** goldkatze has joined #maemo | 09:53 | |
| wookey_ | the topic takes me to http://maemo.org/intro/, which links to the the SDK page I posted above, which has a dead link to nokia site. So I don;t see how that helps? | 09:57 |
| Sicelo | ~sb | 09:59 |
| infobot | i heard scratchbox is a cross-compiling system that uses binfmt_misc, rpc calls, and an nfs mount to make a cross-build appear to be 100% native, and is found at http://www.scratchbox.org/, hosted by maemo now. Also at http://maemo.merlin1991.at/files/SB | 09:59 |
| Sicelo | wookey_: he meant that ^^ | 09:59 |
| wookey_ | cheers | 10:01 |
| *** dima5 has quit IRC | 10:13 | |
| *** bef0rd has quit IRC | 10:15 | |
| *** florian_kc has joined #maemo | 10:19 | |
| *** florian_kc is now known as florian | 10:19 | |
| *** phlixi has joined #maemo | 10:21 | |
| *** Ariadeno has joined #maemo | 10:23 | |
| *** phlixi has joined #maemo | 10:24 | |
| *** phlixi has quit IRC | 10:25 | |
| *** phlixi has joined #maemo | 10:25 | |
| *** Ariadeno has quit IRC | 10:28 | |
| *** rm_work|away is now known as rm_work | 10:56 | |
| *** Kabouik has joined #maemo | 11:00 | |
| *** geaaru has joined #maemo | 11:01 | |
| *** skule has joined #maemo | 11:07 | |
| *** LauRoman|Laptop has joined #maemo | 11:10 | |
| *** N-Mi has joined #maemo | 11:11 | |
| *** AD-N770 has joined #maemo | 11:23 | |
| *** rm_work is now known as rm_work|away | 12:01 | |
| *** LauRoman has quit IRC | 12:21 | |
| *** LauRoman|Laptop has quit IRC | 12:23 | |
| *** thuttu77_2 is now known as thuttu77 | 12:26 | |
| *** Elleo has joined #maemo | 12:27 | |
| *** Elleo has quit IRC | 12:27 | |
| *** Elleo has joined #maemo | 12:27 | |
| *** protem has quit IRC | 12:30 | |
| *** Luke-Jr has quit IRC | 12:36 | |
| *** lbt has quit IRC | 12:36 | |
| *** lbt has joined #maemo | 12:36 | |
| *** lbt has joined #maemo | 12:36 | |
| *** Luke-Jr has joined #maemo | 12:36 | |
| *** qwazix has joined #maemo | 12:51 | |
| *** MohammadAG_ has joined #maemo | 12:54 | |
| *** MohammadAG has quit IRC | 12:55 | |
| *** MohammadAG_ is now known as MohammadAG | 12:55 | |
| *** ArkanoiD_ has quit IRC | 13:01 | |
| *** APTX has quit IRC | 13:09 | |
| *** kolp has joined #maemo | 13:10 | |
| *** Pali has quit IRC | 13:14 | |
| *** APTX has joined #maemo | 13:15 | |
| *** eMHa__ has quit IRC | 13:25 | |
| *** Pali has joined #maemo | 13:31 | |
| *** goldkatze has quit IRC | 13:32 | |
| *** eMHa__ has joined #maemo | 13:33 | |
| *** Arkenoi has joined #maemo | 13:40 | |
| *** rcg has joined #maemo | 13:48 | |
| *** erlehmann has joined #maemo | 13:58 | |
| *** lizardo has joined #maemo | 14:07 | |
| *** ALoGeNo has quit IRC | 14:09 | |
| *** auenf has quit IRC | 14:09 | |
| *** auenf has joined #maemo | 14:10 | |
| *** ALoGeNo has joined #maemo | 14:11 | |
| *** ALoGeNo has joined #maemo | 14:11 | |
| *** auenf has quit IRC | 14:17 | |
| *** auenf has joined #maemo | 14:18 | |
| *** auenf has quit IRC | 14:19 | |
| *** auenf has joined #maemo | 14:31 | |
| *** auenf has quit IRC | 14:32 | |
| *** auenf has joined #maemo | 14:45 | |
| *** auenf has quit IRC | 14:46 | |
| *** auenf has joined #maemo | 14:48 | |
| *** teotwaki_ has joined #maemo | 15:08 | |
| *** mkaindl has joined #maemo | 15:12 | |
| *** teotwaki_ has quit IRC | 15:14 | |
| *** erlehmann has quit IRC | 15:24 | |
| *** erlehmann has joined #maemo | 15:24 | |
| *** lbt has quit IRC | 16:08 | |
| *** lbt has joined #maemo | 16:08 | |
| *** ALoGeNo has quit IRC | 16:12 | |
| *** ALoGeNo has joined #maemo | 16:24 | |
| *** ALoGeNo has quit IRC | 16:37 | |
| *** galledallegator has quit IRC | 16:39 | |
| *** trailbureaucrat has joined #maemo | 16:45 | |
| *** lizardo has quit IRC | 16:48 | |
| *** Luke-Jr has quit IRC | 16:48 | |
| *** Xjs|moonshine has quit IRC | 16:48 | |
| *** marainein has quit IRC | 16:48 | |
| *** drawkula has quit IRC | 16:48 | |
| *** silviof has quit IRC | 16:48 | |
| *** hubutm20 has quit IRC | 16:48 | |
| *** warfare has quit IRC | 16:48 | |
| *** edheldil__ has quit IRC | 16:48 | |
| *** marainein has joined #maemo | 16:48 | |
| *** edheldil__ has joined #maemo | 16:49 | |
| *** silviof has joined #maemo | 16:49 | |
| *** drawkula has joined #maemo | 16:49 | |
| *** Luke-Jr has joined #maemo | 16:49 | |
| *** hubutm20 has joined #maemo | 16:50 | |
| *** trailbureaucrat has quit IRC | 16:50 | |
| *** warfare has joined #maemo | 16:52 | |
| *** lizardo has joined #maemo | 16:56 | |
| *** Xjs|moonshine has joined #maemo | 16:56 | |
| *** ALoGeNo has joined #maemo | 17:10 | |
| *** ALoGeNo has joined #maemo | 17:10 | |
| *** at1as has joined #maemo | 17:16 | |
| *** Guest56347 has quit IRC | 17:19 | |
| *** Guest56347 has joined #maemo | 17:19 | |
| *** Guest56347 is now known as FIQ | 17:19 | |
| *** florian has quit IRC | 17:21 | |
| *** louisdk has quit IRC | 17:27 | |
| *** VDVsx has quit IRC | 17:30 | |
| *** VDVsx has joined #maemo | 17:46 | |
| *** RiD has joined #maemo | 17:47 | |
| *** hubutm20 has quit IRC | 17:50 | |
| *** hubutm20 has joined #maemo | 17:51 | |
| *** Guest79101 is now known as b-p | 18:13 | |
| *** b-p is now known as budapest | 18:13 | |
| *** budapest has joined #maemo | 18:13 | |
| *** budapest is now known as b-p | 18:13 | |
| *** b-p has left #maemo | 18:14 | |
| *** b-p has joined #maemo | 18:16 | |
| *** pcfe has quit IRC | 18:36 | |
| *** darkschneider has quit IRC | 18:43 | |
| *** pcfe has joined #maemo | 18:43 | |
| *** pcfe has quit IRC | 18:43 | |
| *** pcfe has joined #maemo | 18:43 | |
| *** darkschneider has joined #maemo | 18:43 | |
| Pali | ~poettering | 18:47 |
| infobot | 'sth is poettering' means it acts invasive, possessive, destructive, and generally in an egocentric exacerbating negative way. ``this cancer is extremely poettering'', or you look here for Linus' notion on what's poettering: http://lkml.iu.edu/hypermail/linux/kernel/1404.0/01331.html, or http://lkml.iu.edu/hypermail/linux/kernel/1404.0/01488.html | 18:47 |
| Pali | DocScrutinizer05: you can add this link: http://0pointer.net/blog/revisiting-how-we-put-together-linux-systems.html | 18:48 |
| Pali | do you know how much some bounty hunter in germany cost? | 18:50 |
| Pali | this is not funny anymore... | 18:50 |
| *** RiD has quit IRC | 18:52 | |
| NIN101 | indeed. | 18:56 |
| *** protem has joined #maemo | 19:01 | |
| merlin1991 | Hence, even in this scheme RPM/DEB are highly relevant, though not strictly as an end-user tool anymore, but as a build tool. | 19:06 |
| merlin1991 | wtf² | 19:06 |
| *** sixwheeledbeast has quit IRC | 19:06 | |
| *** sixwheeledbeast has joined #maemo | 19:06 | |
| DocScrutinizer05 | ~systemd cabal is a bunch of people (Lennart Poettering, Kay Sievers, Harald Hoyer, Daniel Mack, Tom Gundersen, David Herrmann) who want to turn linux into their wet dream perverted version of windows-me-too. See http://0pointer.net/blog/revisiting-how-we-put-together-linux-systems.html | 19:06 |
| infobot | okay, DocScrutinizer05 | 19:06 |
| *** lbt_ has joined #maemo | 19:07 | |
| DocScrutinizer05 | ~pettering is also see ~systemd cabal | 19:08 |
| infobot | DocScrutinizer05: okay | 19:08 |
| *** lbt has quit IRC | 19:08 | |
| merlin1991 | looking at the whole proposal it mainly is a more complicated way of doing winsxs :D | 19:08 |
| DocScrutinizer05 | ~forget pettering | 19:08 |
| infobot | i forgot pettering, DocScrutinizer05 | 19:08 |
| DocScrutinizer05 | ~poettering is also see ~systemd cabal | 19:08 |
| infobot | okay, DocScrutinizer05 | 19:08 |
| DocScrutinizer05 | Pali: (hunter) I think there's a number of Russian immigrants that are pretty cheap and do literally *everything* when you pay them | 19:10 |
| *** rcg has quit IRC | 19:11 | |
| DocScrutinizer05 | I heard numbers in the ballpark range of 500EUR | 19:11 |
| *** florian has joined #maemo | 19:11 | |
| kerio | well | 19:11 |
| kerio | surely HiFo has 500EUR to spare | 19:11 |
| DocScrutinizer05 | haha, do you think so? | 19:11 |
| kerio | it's for the good of linux! | 19:12 |
| DocScrutinizer05 | forget it, such dude won't sign an invoice/receipt. so for HiFo it's impossible | 19:12 |
| DocScrutinizer05 | The real problem: the systemd cabal gets paid (by redhat?) for the crap they do | 19:14 |
| DocScrutinizer05 | to me the whole thing more and more looks like "the secret war between RedHat and Canonical" | 19:15 |
| DocScrutinizer05 | >>Cryptographically secure verification of the code we execute is relevant on the desktop (like ChromeOS does), but also for apps, for embedded devices and even on servers (in a post-Snowden world, in particular).<< SUUUURE Mr Poettering | 19:20 |
| DocScrutinizer05 | ~aegis | 19:20 |
| infobot | http://www.developer.nokia.com/Community/Wiki/Harmattan:Developer_Library/Developing_for_Harmattan/Harmattan_security/Security_guide , or "The purpose of this framework is: ... to make sure that the platform meets the requirements set by third party software that requires a safe execution environment.", or http://en.wikipedia.org/wiki/Trusted_Computing#Criticism, or http://en.qi-hardware.com/w/images/1/10/ME_382_LockedUpTechnology2.gif | 19:20 |
| DocScrutinizer05 | ever heard of MD5sum and similar simple straight ways to ensure what you got is what you want? | 19:21 |
| Pali | its not war anymore... canonical chosed systemd too | 19:21 |
| Luke-Jr | systemd-- | 19:26 |
| wmarone__ | DocScrutinizer05: I believe that such digests are part of said systems? | 19:32 |
| wmarone__ | only they start with SHA-256 and not md5 | 19:32 |
| kerio | what the fuck is a "post-snowden world"? | 19:32 |
| DocScrutinizer05 | kerio: no idea, AFIK snowden lives | 19:32 |
| DocScrutinizer05 | AFAIK even | 19:33 |
| wmarone__ | kerio: presumably, one that has you aware of what the NSA does...? | 19:33 |
| DocScrutinizer05 | and how's trsuted computing help with that? | 19:33 |
| DocScrutinizer05 | lemme try again | 19:33 |
| DocScrutinizer05 | and how's trusted computing going to help with that? | 19:34 |
| kerio | DocScrutinizer05: probably the converse | 19:34 |
| kerio | trusted computing is for the nsa | 19:34 |
| wmarone__ | presumably if you hold the keys, you can verify the platform | 19:34 |
| DocScrutinizer05 | what Poettering suggests is "signed upstram packages" or sth like that, that's not anything like "you hold the keys" | 19:35 |
| kerio | what the fuck even is a package | 19:35 |
| kerio | is it like the app store | 19:35 |
| wmarone__ | kerio: asking obvious questions now? | 19:35 |
| *** shentey has joined #maemo | 19:35 | |
| dos1 | woah | 19:35 |
| DocScrutinizer05 | I more than once explained that "you hold the keys" is a delusion regarding effectiveness, since it is not capable to implement more security than e.g. SElinux | 19:35 |
| dos1 | Poettering suggests something like that? | 19:36 |
| wmarone__ | signed upstream packages is a good thing, it inhibits MITM attacks where the cryptographic digest is intercepted | 19:36 |
| DocScrutinizer05 | dos1: >>We want our images to be trustable (i.e. signed). In fact we want a fully trustable OS, with images that can be verified by a full trust chain from the firmware (EFI SecureBoot!), through the boot loader, through the kernel, and initrd. Cryptographically secure verification of the code we execute is relevant on the desktop (like ChromeOS does), but also for apps, for embedded devices and even on servers (in a post-Snowden world, | 19:36 |
| DocScrutinizer05 | in particular).<< | 19:36 |
| kerio | apt already verifies packages with gnupg keys | 19:37 |
| wmarone__ | kerio: so "cryptographically signed packageS" | 19:37 |
| DocScrutinizer05 | kerio: sure. It's about "Trusted computing" | 19:37 |
| kerio | who's the trusted here | 19:37 |
| DocScrutinizer05 | whoever holds the PKI key | 19:37 |
| DocScrutinizer05 | and that's NOT you | 19:37 |
| wmarone__ | presumably you're placing your trust in your OS vendor | 19:38 |
| DocScrutinizer05 | so it's pretty in line with aegis fuckup | 19:38 |
| DocScrutinizer05 | incl all the problems | 19:38 |
| DocScrutinizer05 | Poettering evidently is a poor system architect, but this time he gone WAY too far | 19:39 |
| wmarone__ | I agree, it's better to leave yourself exposed than to look into means of securing one's system | 19:39 |
| DocScrutinizer05 | the point is I don't want $random_person to secure MY system | 19:40 |
| wmarone__ | then feel free to do it all yourself | 19:40 |
| wmarone__ | including audit all the code | 19:40 |
| DocScrutinizer05 | feel free to bend over to Poettering | 19:40 |
| wmarone__ | be more of an ass? | 19:40 |
| wmarone__ | you haven't made an argument | 19:41 |
| DocScrutinizer05 | I did, you didn't notice | 19:41 |
| DocScrutinizer05 | 2014-09-01 Mon 18:38:18] <DocScrutinizer05> so it's pretty in line with aegis fuckup | 19:41 |
| DocScrutinizer05 | [2014-09-01 Mon 18:38:31] <DocScrutinizer05> incl all the problems | 19:41 |
| DocScrutinizer05 | somebody holding the keys of your system and depriving you from doing whatever you want on your own system | 19:42 |
| wmarone__ | you forgot your blind assumption that you wont' have any control | 19:42 |
| kerio | at some point you have to sense a fucking pattern | 19:42 |
| DocScrutinizer05 | that's an immanent concept detail of that Trusted Computing shit | 19:42 |
| wmarone__ | yeah, repeated ignorance | 19:42 |
| kerio | that's literally what the human brain has evolved for | 19:42 |
| wmarone__ | it's also good at seeing patterns that aren't there, and confusing them | 19:43 |
| DocScrutinizer05 | [2014-09-01 Mon 18:35:52] <DocScrutinizer05> I more than once explained that "you hold the keys" is a delusion regarding effectiveness, since it is not capable to implement more security than e.g. SElinux | 19:43 |
| kerio | i really hope you're right | 19:43 |
| DocScrutinizer05 | http://en.wikipedia.org/wiki/Trusted_Computing#Criticism | 19:44 |
| wmarone__ | ah | 19:45 |
| wmarone__ | if you want to criticize someone over this, go after Apple and Microsoft | 19:45 |
| wmarone__ | bitching about poettering and screamig "omg trusted computing" doesn't lend you to seerious consideration | 19:47 |
| *** AD-N770 has quit IRC | 19:47 | |
| DocScrutinizer05 | when you can't see how what Poettering suggests is exactly the Trusted Computing scheme, then I can't help | 19:47 |
| kerio | holy shit i didn't know someone could be a systemd fanboy | 19:47 |
| wmarone__ | kerio: please, spout more stupid shit | 19:48 |
| wmarone__ | DocScrutinizer05: so a verifiable and reproducible system is bad? | 19:48 |
| DocScrutinizer05 | wmarone__: please, spout more stupid shit | 19:48 |
| wmarone__ | DocScrutinizer05: no, I'm asking you a question. Your primary complaint seems to be that a platform could enforce a chain of trust, why is this a bad thing? | 19:49 |
| DocScrutinizer05 | I'm sorry for you that you're not able to understand how Trusted computing works and what it means when Poettering says >>mages that can be verified by a full trust chain from the firmware (EFI SecureBoot!), through the boot loader, through the kernel, and initrd.<< | 19:50 |
| wmarone__ | remember, the system is indepenent of those who would misusei t | 19:50 |
| *** bleb has joined #maemo | 19:50 | |
| wmarone__ | so what you're saying is security is bad | 19:50 |
| bleb | Is there any option for supporting group texts on the N900? | 19:50 |
| DocScrutinizer05 | see http://en.wikipedia.org/wiki/Trusted_Computing#Criticism and ~aegis and "the HARMATTAN experience[TM]" why this is a bad thing | 19:51 |
| kerio | wmarone__: "chain of trust" is inherently bad for security | 19:51 |
| wmarone__ | kerio: so the better path is nothing at all? | 19:51 |
| kerio | bad security is worse than no security, yes | 19:52 |
| DocScrutinizer05 | no, there are like 5 dozen better alternatives | 19:52 |
| DocScrutinizer05 | which is what I said twice now | 19:52 |
| DocScrutinizer05 | and even nothing at all is better than TC | 19:52 |
| wmarone__ | and how are those 5 dozen other systems not also TC? | 19:52 |
| DocScrutinizer05 | *sigh* | 19:53 |
| DocScrutinizer05 | 7me suggests Amazon, for finding a few good books | 19:53 |
| wmarone__ | "I'm not going to support my argument, go do it for me?" | 19:54 |
| DocScrutinizer05 | fckit | 19:54 |
| DocScrutinizer05 | [2014-09-01 Mon 18:43:58] <DocScrutinizer05> [2014-09-01 Mon 18:35:52] <DocScrutinizer05> I more than once explained that "you hold the keys" is a delusion regarding effectiveness, since it is not capable to implement more security than e.g. SElinux | 19:54 |
| wmarone__ | presumably SELinux would simply be one tool of many | 19:56 |
| DocScrutinizer05 | "I'm not going to fix my ignorance, you have to spoonfeed stuff to me" | 19:56 |
| wmarone__ | "why won't you just blindly accept what I say!" | 19:56 |
| wmarone__ | "no I won't engage you when you question my bitching!" | 19:57 |
| *** wmarone__ has left #maemo | 19:57 | |
| DocScrutinizer05 | "why don't you give me a crashcourse about IT security and Trusted computing in just 5 sentences?" | 19:57 |
| DocScrutinizer05 | "No, URL pointers to wiki et al are just not enough, I'm too lazy to do some reading on my own" | 19:58 |
| DocScrutinizer05 | "I heard 'SECURITY' buzzword, so it cannot be anything bad with it" | 19:59 |
| *** mavhc has quit IRC | 20:00 | |
| *** rm_work|away is now known as rm_work | 20:01 | |
| DocScrutinizer05 | https://www.youtube.com/watch?v=0cbS_lDJuJg | 20:01 |
| *** mavhc has joined #maemo | 20:01 | |
| kerio | DocScrutinizer05: it's kind of an overkill, but restricting freedoms for the sake of security is like totalitarianism 101 | 20:04 |
| DocScrutinizer05 | exactly | 20:04 |
| *** mavhc has quit IRC | 20:05 | |
| DocScrutinizer05 | and the whole chain of trust depends on somebody else (considered trustworthy) decided what's a trusted bootloader. Or the chain of trust is broken | 20:05 |
| DocScrutinizer05 | handing "the keys" to end user cripples the whole concept of chain of trust to a level where simple unix passwords work way better | 20:06 |
| DocScrutinizer05 | than that "Trusted computing" thing | 20:07 |
| DocScrutinizer05 | see HARM and aegis | 20:07 |
| *** erlehmann has quit IRC | 20:07 | |
| *** mavhc has joined #maemo | 20:08 | |
| DocScrutinizer05 | originally they promised "ther will be open mode". Now there 'is', and it basically renders your system broken. That's not what I call open mode | 20:08 |
| DocScrutinizer05 | Does anybody want this kind of 'security'? | 20:09 |
| *** rm_work is now known as rm_work|away | 20:10 | |
| DocScrutinizer05 | We got stuff like encrypted root filesystem since decades. We got posix permissions and SElinux. We got all sorts of passwords and permission handling. TC only brings *one* new concept to the game: depriving you of your rights to compromise your system whenever you decide to | 20:11 |
| DocScrutinizer05 | that's the foundation concept TC is basing on. Take that out and all that's left over of TC is a pile of crap and annoyances | 20:12 |
| txt-file | yes, the producer … at least it looks so | 20:14 |
| *** FlameReaper-PC has quit IRC | 20:14 | |
| *** rm_work|away is now known as rm_work | 20:15 | |
| APic | DocScrutinizer05: Was that 7me intentional or inadvertently? | 20:18 |
| *** rm_work is now known as rm_work|away | 20:21 | |
| * DocScrutinizer05 failed on pressing shiftkey for "/" | 20:35 | |
| DocScrutinizer05 | intended been "/me" | 20:36 |
| *** lbt_ has quit IRC | 20:53 | |
| *** lbt_ has joined #maemo | 20:53 | |
| DocScrutinizer05 | ooh, it seems http://0pointer.net/blog/revisiting-how-we-put-together-linux-systems.html also sugests systemd becomes 2bootloader" now. And obviously *all* linux systems need btrfs now, or they won't be compatible to that new "package distribution system" | 20:56 |
| *** netkat_ is now known as netkat | 20:58 | |
| DocScrutinizer05 | >>And of course, this scheme also applies great to embedded use-cases. Regardless if you build a TV, an IVI system or a phone: you can put together you OS versions as usr trees, and then use btrfs-send-and-receive facilities to deliver them to the systems, and update them there.<< ROTFL | 20:59 |
| *** geaaru has quit IRC | 20:59 | |
| Pali | >> [18:37:38] <kerio> who's the trusted here << Factory of motherboard and SW/FW company | 21:01 |
| Pali | not user, no PKI holder | 21:02 |
| DocScrutinizer05 | exactly | 21:02 |
| kerio | nice | 21:02 |
| Pali | and also no OS | 21:02 |
| drathir | nice reading... ty... | 21:02 |
| * drathir now stop like btrfs... | 21:03 | |
| DocScrutinizer05 | >>This also allows us to implement something that we like to call Operating-System-As-A-Virus.<< crack? Or vodka made from old bread and spiced with random pharma products? | 21:03 |
| NIN101 | why not both? | 21:04 |
| APic | DocScrutinizer05: I see, thank You for the Explanation. | 21:05 |
| * drathir dont like forceing something.... | 21:05 | |
| *** darkschneider has quit IRC | 21:05 | |
| DocScrutinizer05 | >>And you don't have to be afraid that any of your personal data is copied too, as the usr sub-volume is the exact version your vendor provided you with.<< I wonder how installing new apps fits into this statement | 21:06 |
| Pali | DocScrutinizer05: I'm afraid that lennart want to use that btrfs subvolumes in systemd and because no other FS implement it btrfs could become dependency for systemd | 21:06 |
| Pali | and this is even worse | 21:06 |
| drathir | lol me like mine luks+lvm... | 21:06 |
| *** darkschneider has joined #maemo | 21:06 | |
| kerio | that would be *great* | 21:06 |
| DocScrutinizer05 | Pali: <DocScrutinizer05> ooh, it seems http://0pointer.net/blog/revisiting-how-we-put-together-linux-systems.html also sugests systemd becomes 2bootloader" now. And obviously *all* linux systems need btrfs now, or they won't be compatible to that new "package distribution system" | 21:06 |
| kerio | people would stop using systemd | 21:06 |
| Pali | process with PID 1 that needs one FS is total nonsence | 21:07 |
| Pali | see it | 21:07 |
| *** emma has joined #maemo | 21:07 | |
| DocScrutinizer05 | Pali: I agree about it being nonsense, nevertheless it seems that's *exactly* what the systemd cabal is about to shove down our throat | 21:08 |
| Pali | and now when all linux distributions (except gentoo and slackware) switched to systemd... they started listening to lennart and they will do what lennart say | 21:09 |
| Luke-Jr | which is why I'm migrating everything to Gentoo soon | 21:09 |
| DocScrutinizer05 | yes, that's why we need to start acting *now* and actively denying to follow that poettering path any longer | 21:09 |
| NIN101 | he probably almost has more influence than linus these days | 21:10 |
| Pali | Luke-Jr: do you know situation and what gentoo developers want to do? | 21:10 |
| Luke-Jr | Pali: they continue to maintain a fork of udev | 21:10 |
| Pali | ok, this is good | 21:10 |
| Pali | and what will do with init daemon? | 21:11 |
| Pali | and with applications which depends on systemd (new gnome)? | 21:11 |
| Luke-Jr | no idea about GNOME nonsense; I'm happy not using it still | 21:11 |
| DocScrutinizer05 | maybe we can convince Linus to "fork" and either announce a poetterin-free "true linux", or simply forbid that crap on linux and force the whole systemd cabal to fork and do their own carrpy poettering-linux distro? | 21:12 |
| Luke-Jr | init remains sysvinit/init-ng/OpenRC | 21:12 |
| ShadowJK | https://lh4.googleusercontent.com/-bZId5j2jREQ/U-vlysklvCI/AAAAAAAACrA/B4JggkVJi38/w480-h320-no/bd0fb252416206158627fb0b1bff9b4779dca13f.gif | 21:12 |
| kerio | isn't openrc only a set of scripts | 21:12 |
| Luke-Jr | kerio: it works | 21:12 |
| DocScrutinizer05 | a set of scripts is the best you can get | 21:13 |
| kerio | no, i mean, don't you use openrc with another init? | 21:13 |
| kerio | or is /sbin/init actually a shellscript as well? | 21:13 |
| Luke-Jr | kerio: sysvinit and init-ng are also installed | 21:13 |
| kerio | oic | 21:13 |
| kerio | i thought it was just alternatives | 21:13 |
| Luke-Jr | /sbin/init: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.16, stripped | 21:13 |
| kerio | Luke-Jr: how big? :) | 21:13 |
| Luke-Jr | 41K provided by sys-apps/sysvinit-2.88-r7 | 21:14 |
| * DocScrutinizer05 idly wonders if sbin/init shouldn't rather be statically linked | 21:14 | |
| kerio | DocScrutinizer05: ew, no | 21:14 |
| *** honestly_ is now known as honestly | 21:14 | |
| kerio | besides, have you actually tried compiling something statically, nowadays? | 21:15 |
| Luke-Jr | DocScrutinizer05: Gentoo has /bin/busybox static as a fallback | 21:15 |
| Pali | Luke-Jr: I heard that gentoo has support for systemd too... so you can choose which init daemon you want to use? (sysvinit/init-ng/openrc/systemd)? | 21:16 |
| DocScrutinizer05 | >>It's all the same. Installation becomes replication, not more. Live-CDs and installed systems can be fully identical.<< DANG those guys MUST have been on crack | 21:16 |
| Pali | kerio: I tried and small C applications (without too many external libraries) working fine | 21:16 |
| Luke-Jr | Pali: yes, it's a choice | 21:16 |
| Pali | kerio: and maybe using -flto will reduce size and speed up it | 21:17 |
| kerio | Pali: that's true in debian too | 21:17 |
| kerio | at least, it's true so far | 21:17 |
| *** xes has joined #maemo | 21:17 | |
| * drathir wonder when arch move back from systemd... | 21:17 | |
| Pali | Luke-Jr: and how gentoo solving problem that every init daemon using its own format of daemon files (or there are only init.d scripts and every init daemon only using these)? | 21:17 |
| Luke-Jr | kerio: I don't see an eudev pkg in Debian experimental | 21:17 |
| Pali | or for every init daemon there is one script/config/systemd service? | 21:18 |
| DocScrutinizer05 | kerio: this quote is for you ;-P >>Any library that is not included in the runtime the developer picked must be included in the app itself. This is similar how apps on Android declare one very specific Android version they are developed against. This greatly simplifies application installation, as there's no dependency hell: each app pulls in one runtime<< | 21:18 |
| kerio | JESUS FUCKING CHRIST | 21:18 |
| Luke-Jr | Pali: I'm not sure init is supported outside of OpenRC | 21:18 |
| Luke-Jr | Pali: every daemon installs an init script and systemd service | 21:18 |
| ShadowJK | What's the point of libraries if they aren't shared :) | 21:19 |
| * Luke-Jr facepalms | 21:19 | |
| DocScrutinizer05 | HAHA, asl Poettering | 21:19 |
| DocScrutinizer05 | ask* | 21:19 |
| kerio | you share them between the binaries of the same package? idk | 21:19 |
| Pali | Luke-Jr: ok, so packages have both files (openrc, systemd) and packagers need to provide them | 21:19 |
| Luke-Jr | Pali: for some definition of "need to" | 21:19 |
| Luke-Jr | DocScrutinizer05: have these idiots never heard of libtool? | 21:20 |
| DocScrutinizer05 | Luke-Jr: NFC | 21:20 |
| DocScrutinizer05 | ~poettering | 21:20 |
| infobot | 'sth is poettering' means it acts invasive, possessive, destructive, and generally in an egocentric exacerbating negative way. ``this cancer is extremely poettering'', or you look here for Linus' notion on what's poettering: http://lkml.iu.edu/hypermail/linux/kernel/1404.0/01331.html, or http://lkml.iu.edu/hypermail/linux/kernel/1404.0/01488.html, or see ~systemd cabal | 21:20 |
| kerio | DocScrutinizer05: how do i tell icd to connect to the data connection? | 21:21 |
| kerio | pls don't say "dbus-something" | 21:21 |
| Pali | kerio: look at maemo wiki and search for Phone Control | 21:21 |
| DocScrutinizer05 | kerio: sorry, I don't know off top of my head. Maybe ~usb-networking footnotwe helps | 21:21 |
| Pali | that page has that dbus-something described | 21:21 |
| Sicelo | hehe | 21:22 |
| kerio | ~phonecontrol | 21:22 |
| infobot | from memory, phonecontrol is http://wiki.maemo.org/Phone_control | 21:22 |
| ShadowJK | poettering is the sinofsky of linux | 21:23 |
| Pali | or Elop of Nokia | 21:23 |
| *** erlehmann has joined #maemo | 21:24 | |
| Pali | who is lennart's boss? | 21:24 |
| Pali | and who is lennart's boss boss? | 21:25 |
| Luke-Jr | anyone have any thoughts on the DragonBox Pyra? http://www.pyra-handheld.com/ | 21:26 |
| Pali | I still do not want to belive that all above lennart want this systemd stuff... | 21:26 |
| Pali | Luke-Jr: It has PowerVR™ SGX544-MP2 | 21:26 |
| Pali | so no thanks | 21:27 |
| Luke-Jr | Pali: is that bad? | 21:27 |
| Pali | yes, everything from PowerVR gpu chips are the worst option | 21:27 |
| Pali | (closed) drivers will work only with one kernel version and only with one userspace libc/libX (replace X with any library) | 21:28 |
| Pali | see N900, we can be happy that powervr drivers working with stock kernel and also with kernel-power and even after installing CSSU | 21:29 |
| Luke-Jr | I guess there are some better options nowadays | 21:29 |
| Pali | yes, everything is better then PowerVR | 21:29 |
| Pali | if nothing more, closed drivers will work | 21:29 |
| DocScrutinizer05 | well, you can't chose the GPU of your SOC | 21:30 |
| Pali | but this is not case of powervr | 21:30 |
| DocScrutinizer05 | and pyra had to chose OMAP5 in the end | 21:30 |
| Pali | sadly, but if you do not need GPU then it is OK | 21:30 |
| DocScrutinizer05 | Pyra is supposed to work when sold, so they need to come up with somewhat open drivers for powervr or they need to make sure they don't need the GPU at all | 21:31 |
| Pali | anyway do you know some cheap SoC with two ethernet slots? (100M or better 1G) where is linux working? I need box for doing network magic, nothing more | 21:32 |
| DocScrutinizer05 | hmm, nope | 21:32 |
| DocScrutinizer05 | which doesn't mean a thing since I never checked | 21:33 |
| Pali | now for 60Mbps is my raspberry pi (with second usb ethernet card) working | 21:33 |
| Pali | but I think that this is limit (do not know if 70 or 100 is possible) | 21:34 |
| kerio | Pali: dreamplug | 21:35 |
| kerio | and usb 2.0 is probably capped at 100mbps at best | 21:36 |
| Pali | thanks | 21:36 |
| kerio | i have a sheevaplug | 21:37 |
| kerio | it's... good | 21:37 |
| kerio | i dunno | 21:37 |
| kerio | it sits there | 21:37 |
| Pali | 100mbps limit is theoretical, there is CPU overhead for iptables plus routing... so I'm happy that 60 is working... | 21:37 |
| kerio | i doubt the guruplug will have those limits | 21:37 |
| kerio | it's two gigE | 21:37 |
| kerio | 1.2GHz armv5 | 21:38 |
| Wizzup | Didn't the guruplug have heating problems when using both in 1Ghz mode? | 21:39 |
| Pali | I need linux kernel with enabled multicast routing support, 8021q (vlan tagging), ipv6 and ebtables+iptables | 21:39 |
| *** erlehmann_ has joined #maemo | 21:40 | |
| Pali | all these requirements are SW, so I think it could work on any NIC which has linux driver | 21:40 |
| *** erlehmann has quit IRC | 21:43 | |
| *** Malinux has quit IRC | 21:44 | |
| *** BCMM has joined #maemo | 21:49 | |
| *** Malinux has joined #maemo | 21:52 | |
| *** SAiF has joined #maemo | 21:54 | |
| *** eMHa__ has quit IRC | 22:17 | |
| *** RiD has joined #maemo | 22:17 | |
| *** lbt_ is now known as lbt | 22:20 | |
| *** cyborg-o1e has joined #maemo | 22:28 | |
| *** sq-one has joined #maemo | 22:29 | |
| *** Kabouik has quit IRC | 22:29 | |
| *** cyborg-one has quit IRC | 22:30 | |
| *** nox- has joined #maemo | 22:31 | |
| *** RzR has joined #maemo | 22:38 | |
| *** Malinux has quit IRC | 22:40 | |
| *** Malinux has joined #maemo | 22:41 | |
| *** LauRoman has joined #maemo | 22:45 | |
| *** Kabouik has joined #maemo | 22:46 | |
| bencoh | Pali: multicast on 802.1q interfaces can get funny sometimes | 23:24 |
| bencoh | it wont work at all on some NICs | 23:24 |
| Pali | bencoh: it working fine on rpi nic which is some usb chip... | 23:25 |
| bencoh | actually I think "the dumber the better" for that kind of usecases | 23:25 |
| bencoh | I had troubles with the cubox-i NIC | 23:26 |
| bencoh | I havent tried to fiddle with offloading options yet ... maybe there is one I need to disable for it to work | 23:26 |
| bencoh | (btw, it only has one ethernet NIC, but you might want to check it - nice board and cool devteam :) | 23:29 |
| *** Psi has quit IRC | 23:32 | |
| *** _rd has joined #maemo | 23:49 | |
Generated by irclog2html.py 2.15.1 by Marius Gedminas - find it at mg.pov.lt!
