On Friday 25 September 2020 07:54:54 Albretch Mueller wrote: > On 9/25/20, Greg Wooledge <wool...@eeg.ccf.org> wrote: > > On Thu, Sep 24, 2020 at 05:58:49PM -0500, David Wright wrote: > >> On Thu 24 Sep 2020 at 17:50:16 (+0200), Albretch Mueller wrote: > >> > >> How do I get all packages to be locally installed using dpkg > >> > >> from a public Windows machine? > >> > > >> > Why do you think you need to do this? What do you hope to achieve > >> > by doing this? > >> > >> Perhaps the answer might be hinted at in postings like: > >> https://lists.debian.org/debian-user/2019/10/msg00449.html > >> https://lists.debian.org/debian-user/2020/08/msg00352.html > > Yes, I am the one who posted both messages and, as I said, in my kind > of reality I can't "simply" connect my work computer to the Internet > and "just" go: apt-get ... > Your paranoia is excessive. I have 5 machines online ATM, but they are all on a local network in the 1902.168.xx.xx block, which is NOT routable from the internet but are NAT'd to my net address by having such a setup in a router running dd-wrt. In nearly 2 decades, no one has come into my systems from the internet that I didn't give the credentials to do so. dns is handled by host files locally, but a name that is unk to the host files is sent to the router where the resolution is done by my ISP's dns servers. Each of those machines has a cron job that updates software availability of updates on a daily basis, and thet can indeed sudo apt-get update|list --upgradable|upgrade. Each can also run a browser and download an appimage, dpkg, tarball or whatever from any site on the net serving it.
Your inability to look at "security" in light of what is available to keep you secure, on a 24/7/365 basis by spending maybe $70 US on a router capable of being reflashed to run something like dd-wrt (theres 3 or so others that can also do this) to serve as your guard dog, is a poor excuse indeed. I even serve up my web pages such as they are, from this machine, but my connection is cheap and slow, so I do run a second copy of iptables on this machine which currently has 102 bot addresses blocked. It seems they want to mirror my site which uses up my upload bandwidth, constituting a DDOS. I don't mind their indexing it, so the search engines can serve the results, but the minute I see them downloading everything they can touch, they get added to iptables and dropped. Those blocked addy's are, because they are moved around to get around such blocking about weekly, are blocked on a /24, or for the bigger offenders, a /16 basis. That also blocks their paying subscribers too, but I officially don't care that they choose to use an ISP that also abuses the net residents like that. Is it a war? Sure it is, but computers never sleep, they can stand guard while you are sleeping. They don't need a vacation or time off duty. Use them for what they are good at. > I never connect my work computer to the Internet. That is why I > always install packages locally via dpkg, which is an option debian > users have, no? I see a lot of people asking the same kinds of > questiions I ask, so it seems as Lenon sang that "I am not the only > one" No you are not the only one, but you are a minority that does not always want to understand how to use the internet and be safe at the same time. It can be done, I'm doing it. And I've been doing it since the later 90's. > L Like Greg, I've said it, and done. Cheers, Gene Heskett -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) If we desire respect for the law, we must first make the law respectable. - Louis D. Brandeis Genes Web page <http://geneslinuxbox.net:6309/gene>
