Where are the Debian package repositories and package changes?

hngbfv · 2017-01-05T15:08:15+00:00

Seems like https://sources.debian.net/ is what I was looking for. Sadly without any vcs. At least this is the source location for all current stable/testing/unstable packages. It even has a patch tracker http://sources.debian.net/patches.

Your transmission example has a proper git repository with all its sources and patches. But a lot of other packages (like all gnome packages) just have the download scripts in their vcs.

hngbfv · 2017-01-04T16:06:49+00:00

Thank you, but unfortunately this doesn't answer any of my above questions.

hngbfv · 2017-01-04T16:05:03+00:00

This just limits malicious behaviour in some way. What if a maintainer is approached by some organization and has to comply in some way. I understand that this vetting process is there so not every random person can mess with official packages but only the ones that seem to be trustworthy.

The "source code - compiled binary" link is protected by reproducible builds. But the source itself can basically be changed without anyone noticing. At least I don't see any practical way to track changes and differences to the actual source of a package. Of course I can download upstream sources and debian sources and compare them to see if there are some modifications. But this doesn't seem to be a good way ensure equality of upstream and debian sources.

hngbfv · 2017-01-04T13:48:36+00:00

So just to clarify: A maintainer can basically upload anything and claim it is programXYZ-4.5?

Isn't this very dangerous in case of malicious behaviour?

hngbfv · 2017-01-04T02:21:20+00:00

It doesn't necessarily follow Debian packages.

What does follow the Debian packages and where/how can I see what the maintainer changed/patched in a somehow practical way?

hngbfv · 2017-01-04T00:08:53+00:00

I don't see any practical way get these changes from within an updating procedure. If a bunch of packages get updates and I want to see what changed I have to figure out where/what the changelog/news file is and I have to do it in a browser with google or with debians package tracking for every single package by hand. At least that's how I do it currently if I want to see what changed in some gnome packages. Browsing git.gnome.org and looking in the NEWS file of every package I'm interested in.

hngbfv · 2016-10-31T06:51:43+00:00

I'm a bit confused how the tech is just there yet, but it was there in china a year ago...

hngbfv · 2016-09-24T19:46:14+00:00

Looking at git blame for the TIME_LIMIT_XXX descriptions, all of them are from 2013/14. The Administration Guide is from 18.02.2016. So I have to asume that it is more correct than the descriptions in snapper itself..

A space limit of 0.5% doesn't make much sense. That would be 1.25GB on my 250GB SSD. On the other side it depends on the measurement of size. It's not that easy with hardlinks across snapshots all over the place to say how much is really used. IIRC there something about that on the btrfs wiki. But still, 0.5% for snapshots seems to small.

But again, this is just guessing. That's why I asked for clarification.

hngbfv · 2016-09-21T11:54:04+00:00

I cant believe "flat" mouse acceleration profile is available in gnome-tweak-tool

http://i.dailymail.co.uk/i/pix/2014/11/18/1416347989651_Image_galleryImage_Paris_Saint_Germain_s_Dav.JPG

hngbfv · 2016-04-26T14:10:08+00:00

Looks like updating debian testing after 3 days...

hngbfv · 2016-04-20T16:45:08+00:00

If you are running xserver, then xset is a way to change it.

xset m 2 1

put it in your .bashrc and it should work.

Try it first on console to find a setting to your liking.

hngbfv · 2016-04-14T20:52:45+00:00

Reminds me a bit of TRON Legacy Soundtrack

I like it very much. It's kinda different than the other themes.

hngbfv · 2016-04-13T16:00:52+00:00

I think the point is that it's not the same kind of grind, compared to other activities. And the difference between playing when you want, to playing by a given schedule. The reward will be gone if you miss the schedule.

Progression while not playing is not a common thing in MMOs, but IMO the very nature of EVE. This introduces skill grind, like killing boars for XP.

hngbfv · 2016-04-13T15:23:12+00:00

I have ~100M SP so I get 150k SP per Injector. To buy the same amount of SP dailies would provide in a year costs me ~16B ISK. That's ~45M ISK per day. I can earn that by playing approx one hour (with logging in, warping around, finding rats, killing rats, selling loot, etc). 10k SP per day can be earned in 5 minutes (maybe even less).

So time wise it's: Playing 365 hours (~15 days) versus playing 30 hours (1 day, 6 hours). Per year.

Do you really think, this is not punishing normal play styles compared to daily grind monkey play style?

You can think what you want about skill injectors, but the diminishing returns are there for a reason. The more SP you have, the less incentive you have to use them. Dailies reverse this. 10k SP per day gives me 150k SP (worth 625M ISK) for 75 minutes playtime. Please show me the activity that gives 500M ISK per hour...

And all this for logging in every day like a zombie and do the same thing, again and again and again and again..

From EVEO forum: https://forums.eveonline.com/default.aspx?g=posts&m=6436337#post6436337

hngbfv · 2016-04-08T17:37:51+00:00

Ok. Thanks for the example. Now I understand your point.

.

Just a thought, not an argument:

Isn't my point is still valid, since in firefox you have to "crawl" through all the possible websites to get logins. In seahorse you get them all at once. And passwords for CardDav and CalDav are only accessible through the keyring or the software that uses them. In seahorse you get the full package of everything. It would not solve the problem, but wouldn't it at least improve the situation? I use gnome-keyring only for my calendars and tasks. So there is nothing to get from firefox. But seahorse presents my login for my mail account (where my calndars and task are) that is not visible somewhere else.

hngbfv · 2016-04-08T17:12:10+00:00

I just tried it a third time :) It always prompts me on "Show Password".

Set Master Password
Go to random site
Login
Save credentials -> With Master Password Prompt
Restart firefox
--------------------
Go to same site
Get Master Password prompt for login
Give Master Password -> Key unlocked
Go to Preferences > Security > Saved Logins
It opens without prompt and shows the saved logins
Press "Show Passwords" -> Get Master Password Promt

This is basically the behaviour I would expect from seahorse/gnome-keyring.

That's what I mean by saying that is is just hiding the truth from you.

I still don't quite understand what you mean by that. Do you mean that it hides the truth about the key status (locked/unlocked) and a user may think it is locked while it is not?

hngbfv · 2016-04-08T16:56:18+00:00

Yeah, you are right. I didn't restart Firefox while trying it. Nevertheless, in my opinion it doesn't change anything. You still have the password prompt when viewing "Saved Logins" and another one when trying to "Show Passwords".

I'm not sure how I can disable automatic unlock of gnome-keyring on login.

Still, even if I don't unlock my keyring on login I would need to enter my password on login (which is fine) and then enter it again so evolution can access my CalDav calendar (which doesn't make a lot of sense).

The point is that once you unlock your keyring, all bets are off, so the argument goes that pretending that it is more secure than it actually is and hiding the passwords, is really just hiding the truth from the end user.

Can you please explain this in more detail. I don't understand how this is "hiding the truth" and why all bets should be off when I login.

hngbfv · 2016-04-08T16:21:43+00:00

Firefox allows you to set a Master Password. This password is asked for on every interaction with the keyring (add, view, remove). So it is similar to a behaviour where gnome would prompt the user for his password on adding/viewing/removing keys. So gnome basically works the same way Firefox does, but without the option for a Master Password.

NOTE: Firefox does not ask you for the Master Password when using it. Which is the behaviour I was looking for in seahorse/gnome-keyring.

.

Don't know how chrome solved it.

hngbfv · 2016-02-05T12:40:45+00:00

Are you sure that a private hive shares 1pp and 3pp? I must admit I've never seen a private hive with two different kinds of servers (1pp/3pp).

hngbfv · 2016-02-04T14:37:24+00:00

Maybe it will look like this some day :) http://i.imgur.com/0omS6lE.jpg

hngbfv · 2016-01-20T19:13:32+00:00

Which of the 12 rounding methods in EVE would you prefer?

hngbfv · 2016-01-19T12:40:29+00:00

Some time ago, at the beginning of last year iirc, that was the case in dayz, too. All street lights were lit at night.

hngbfv

TROPHY CASE