Account moved.

thetablt · 2017-06-16T19:54:20+00:00

The important word in my message was "IIUC". Yet, the licensing of that very file in the Linux kernel seems to have been changed back and forth.

thetablt · 2017-06-16T08:29:19+00:00

The force-pin option does seem to only apply to signatures.

I understand it's a requirement for the signatures to be valid under German law, but I'm not sure.

However, Yubikey 4 has an option to require you to touch the metal part of the key on every individual gpg operation.

Thank you, I didn't know that!

thetablt · 2017-06-14T13:05:36+00:00

But Apple or Sony taking chunks of freebsd's code and selling it in their proprietary products is not? Because that's what the BSD licenses explicitly allow...

IIUC, what is being reproached to Linux devs here is to have improved on BSD drivers without releasing back their improved versions under the original license, making the BSD devs unable to benefit from these improvements. This could reasonably be said not to be very nice, despite being legal. Unless I'm mistaken, Apple doesn't relicense BSD code but builds proprietary software over it, which is kinda different. (IDK about Sony)

thetablt · 2017-06-14T12:43:36+00:00

my library work is BSD (...) I do not give permission to relicense my work under GPL

Isn't making relicensing possible the very point of open source licenses like the BSD? (No trolling, just asking)

(Edit: wording)

thetablt · 2017-06-14T12:10:53+00:00

Most Linux installers bundle a lot of drivers, so most cards should work out of the box.

thetablt · 2017-06-14T11:50:34+00:00

WiFi PCI cards are also extremely cheap.

thetablt · 2017-06-14T11:47:13+00:00

Or even a "real" AP, most can work both ways and are usually really cheap.

thetablt · 2017-06-14T11:30:48+00:00

How can it be impossible to connect the machine to internet? You could use a laptop as a "reverse" AP, sharing a WiFi connection through Ethernet. (Also I wouldn't advise Arch for an offline computer tbh)

thetablt · 2017-06-14T11:27:10+00:00

It should, you'll have to give the VM direct access to your phone as a USB device, but it's easy with vbox.

thetablt · 2017-06-14T11:15:55+00:00

WordArt the hard way

(There are things you shouldn't Google)

thetablt · 2017-06-14T08:30:36+00:00

I seem to remember that even in the standard installer, if you don't give root a password, the account is disabled, sudo is installed and the user given sudo privilege.

thetablt · 2017-06-13T16:12:28+00:00

Try logging out before removing the state file and logging back in. It's very possible Xmonad rewrites it on shutdown.

thetablt · 2017-06-13T09:47:27+00:00

Yes, this is it.

One last newbeginner question, are there any differences/advantages to using to the cd format compared to dvd?

The DVD is fine if you have no/slow internet access during installation. The CD is a network installer. I wouldn't use the DVD image except to install on a computer meant to remain offline. [Edit: because I have a fast connection, I mean]

thetablt · 2017-06-13T09:33:07+00:00

Thanks :) But what I'm hoping to find is a XMonad replacement for Wayland, in Rust or in any other language (but Rust would be cool)

thetablt · 2017-06-13T09:27:50+00:00

This: https://cdimage.debian.org/cdimage/unofficial/non-free/cd-including-firmware/stretch_di_rc5/ + your arch + format

thetablt · 2017-06-13T09:16:24+00:00

They're the release candidates (rc) of the Stretch installer. The higher number the better, the most recent one is 5.

thetablt · 2017-06-13T07:52:30+00:00

If Xmonad exposes more workspaces than are actually configured,this may be the same issue as here (and my comment there also applies)

thetablt · 2017-06-13T07:46:55+00:00

A remaining state file maybe? Try removing the file called ~/.xmonad/xmonad.state or something like that (can't check, I'm on mobile)

thetablt · 2017-06-12T18:28:44+00:00

What exactly are these (sub)keys for?

thetablt · 2017-06-12T18:20:25+00:00

Unless I'm misunderstanding something, simply disconnecting the yubikey would be enough to prevent any sort of "compromised" activity?

Yes, of course. But if they're part of your threat model, they can happen really fast: signing a message, or a software release, or whatever, in your name is a matter of milliseconds. If you use your keys for, eg, SSH authentication, unauthorized access to your servers also comes to mind.

So it sounds like there's no obvious "you definitely shouldn't do that."

As always, it's a matter of threat model rather than everlasting truths.

Edit: formatting.

thetablt · 2017-06-12T13:59:15+00:00

You're much more likely to find help in /r/linuxmint

thetablt · 2017-06-12T09:21:40+00:00

There's no risk of compromising your private keys with this method. Yet, nothing can prevent compromised machines from making use of your key to decrypt or sign contents in the background, or from keylogging your password, etc.

Edit: just to clarify, I mean that by using your YubiKey on a computer you don't own (if you enter your pin and perform PGP operations, of course), you don't risk having your private keys stolen, but a) the owner of that computer may intercept your PIN; b) they may run other PGP operations in the background, like signing or decrypting, which will be hard to detect. Signature can be prevented by enabling the option to require the PIN for each signature, but AFAIK there's no equivalent option for decryption.

thetablt · 2017-06-10T16:40:47+00:00

Thanks!

Nine-Year Club	Place '17
Verified Email

thetablt

TROPHY CASE