On 02/22/2017 08:35 AM, pelzflorian (Florian Pelz) wrote:
> Note that if you want to fine-tune a sandbox for a single application,
> bubblewrap is great. However, what I wanted is that I can install the
> GNOME packages in one tree and then create other trees out of it, for
> exam
Hello,
A while ago I started pacman and pacbub for file system isolation of
pacman packages. pacpak and pacbub are dead now. They were the wrong
approach for user space isolation. It all gets too hacky. It’s not KISS.
I don’t like it anymore and would rather use GNU Guix for isolating
users’ appli
manager is a better approach?
The same missing separation may be a reason to use Mach/Hurd over Linux.
Of course that is still in its infancy.
Regards,
Florian Pelz
is “the boy”.
Regards,
Florian Pelz
On 07/19/2016 08:37 PM, pelzflorian (Florian Pelz) wrote:
> On 07/19/2016 07:03 PM, Carsten Mattner via arch-general wrote:
>> This is a nice and useful project, but I think we could be served
>> better in the short term by having supported firejail profiles
>> for th
i. Maybe you need to use the
--no-remote option on Firefox if you have another running Firefox?
Firejail does not isolate from other Firefox sessions.
Regards,
Florian Pelz
signature.asc
Description: OpenPGP digital signature
r Bubblewrap; apparently there is some disagreement about the scope,
e.g. whether how Pulseaudio should be dealt with.
Regards,
Florian Pelz
g
list and a pacpak’d bugtracker. Incorporate the ideas from this discussion.
· August: Make sure every basic command works and is unit tested (-S,
-R, -Q, -U, -Syu, -Sc).
· September: Make sure the user experience for these is good enough,
e.g. -Syu should not take an hour to complete.
Regards,
Florian Pelz
ckages.
Customizing packages and taking care of bug reports cannot be done fully
automatically in this way, so that part of app containerization is
perhaps not ideal anyway. This link has recently been posted on the
GNOME gtk-devel list; I think it is relevant here:
http://kmkeen.com/maintainers-matter/2016-06-16-11-31-07-560.html
Either way, this is not what I want pacpak to be.
Regards,
Florian Pelz
the effort to compete here. Developers
should use the official Flatpak platforms, not Arch. Only if a single
user or organization wants to use an Arch app on another distribution,
pacpak is appropriate.
Regards,
Florian Pelz
ion and its possibilities, but running
> malicious software will never be safe. this only adds another layer of
> control to the os.
>
> georg
>
It won’t be completely safe. I will add a reminder for new pacpak users
to make sure they are aware of this as well.
Regards,
Florian Pelz
e popular. I will set it up elsewhere.
Regards,
Florian Pelz
signature.asc
Description: OpenPGP digital signature
On 07/11/2016 03:32 AM, 郑文辉(Techlive Zheng) via arch-general wrote:
> Florian, I love it, the tool itself is a break-through, just depends how we
> use it properly.
>
Thank you. I’m happy to get some positive feedback :) .
ion mostly
provides added security by privilege revocation and separation of
privileges.
Regards,
Florian Pelz
[1] https://github.com/cgwalters/build-api
.
I’m sorry for not expressing myself clearly in previous posts.
Regards,
Florian Pelz
utodetected
defaults, the user should review the privileges granted to software. It
should be clear that the pacpak user will be responsible for specifying
such privileges or at least confirm autodetected privilege settings.
Regards,
Florian Pelz
hat Flatpaks can be run without any fear at all.
pacpak users should be made aware of this.
Regards,
Florian Pelz
me for those using
pure pacman.
Regards,
Florian Pelz
sire to support Flatpak “officially” as
an Arch project, then I probably will end up setting up a mailing list
and bug tracker on my server sometime in the coming weeks.
Regards,
Florian Pelz
similar tool eventually becomes an official Arch
project.
Let me conclude by thanking those who develop Flatpak, those who package
and maintain Flatpak for Arch and all the other Arch and free software
developers we rely on.
Regards,
Florian Pelz
On 05/24/2016 11:03 AM, G. Schlisio wrote:
> Am 24.05.2016 um 10:58 schrieb pelzflorian (Florian Pelz):
>> On 05/24/2016 10:41 AM, G. Schlisio wrote:
>>> maybe this helps you to debug further (and lets see the state of my dkim
>>> signature…)
>>
>> Not sure i
On 05/24/2016 10:41 AM, G. Schlisio wrote:
> maybe this helps you to debug further (and lets see the state of my dkim
> signature…)
Not sure if you confused me with Florian Pritz or meant him by “you”. I
changed my e-mail From name now. There's too many Florians on other
lists as well…
Giovanni Santini's and my mails still fail to verify when they come from
arch-general.
Is this an error on my side?
Regards,
Florian
On 05/22/2016 02:23 PM, Ralf Mardorf wrote:
> On Sun, 22 May 2016 14:01:47 +0200, Florian Pritz wrote:
>> On Sun, 22 May 2016 08:36:10 +0200 Florian Pelz wrote:
>
> Oops, I just noticed yet, that two Florian P*z replied to this thread.
>
Ah, now I understand. Sorry for the confusion ;) .
On 05/22/2016 02:01 PM, Florian Pritz wrote:
> As for DKIM, I just now noticed this too. It appears that our DNS
> provider's UI mangled the entry I put in. I'm working on
> fixing this problem.
>
That sounds great. Strangely for other people's arch-general mail, DKIM
works fine.
Thank you for y
On 05/21/2016 02:35 PM, Giovanni 'ItachiSan' Santini wrote:
> Good afternoon,
> after some time, I decided to shift to another email address in order to
> have an account on this mailing list.
> My previous account was based on a Yahoo! Mail address which seems
> unusable from the start of January.
On 04/16/2016 04:01 AM, flow wrote:
> Still have yet unwanted font.
Can you use gnome-tweak-tool to change the font and font hinting? I have
never tried using it on a non-GNOME desktop, so I'm not sure this helps.
There are no problems on my Adwaita-themed GNOME; Raleigh is broken for
me too, but
On 04/12/2016 09:07 PM, Kyle Terrien wrote:
> Does anyone off the top of his/her head know of any good tools or guides
> for converting gtk2 themes to gtk3 themes?
>
> --Kyle
>
I don't know very much, but it's all done in CSS nowadays. There are no
more programmable theming engines for GTK+ 3, i
Hello,
You can install GRUB for EFI too.
If Windows does break (it shouldn't) then [1] contains instructions on
how to fix it from a Windows DVD/USB installer. You can download the
Windows installer image from Microsoft. I actually had to put the
Windows installer on a multiboot USB to make it bo
On 03/07/2016 09:20 PM, Damjan Georgievski wrote:
> there's also `sysinfo(2)`
>
I didn't know there's a syscall for that. That seems like the easiest
way to get memory data. I'm not sure if you can get the other
information the original poster wanted without parsing /proc though.
On 02/19/2016 0
On 03/07/2016 04:36 PM, Jonathan Horacio Villatoro Córdoba wrote:
> On Sun, Mar 06, 2016 at 05:13:37PM +0100, Florian Pelz wrote:
>> On 03/06/2016 04:47 PM, Jonathan Horacio Villatoro Córdoba wrote:
>>> On Sun, Mar 06, 2016 at 03:23:33PM +0100, Andre Schmidt wrote:
On 03/06/2016 04:47 PM, Jonathan Horacio Villatoro Córdoba wrote:
> On Sun, Mar 06, 2016 at 03:23:33PM +0100, Andre Schmidt wrote:
>> hello archers,
>>
>> thought i ask here first, before i try some kernel mailing list.
>>
>> i'm writing (for fun) a tiny daemon that sends linux usage (cpu, mem, net
On 10/06/2015 12:58 PM, Guus Snijders wrote:
> A reboot is probably the quickest way to get rid of this "ghost"
> entry.
Maybe it's enough to systemctl disable vboxvmservice@A.service.
On 07/17/2015 01:01 AM, Natu wrote:
> On 07/16/2015 02:55 PM, Ralf Mardorf wrote:
>> On Thu, 16 Jul 2015 13:43:25 -0700, Natu wrote:
>>> And yes, you have to turn off features in firefox to avoid
>>> similar spying behavior, but it can be done without maintaining your
>>> own version of the source
On 06/10/2015 01:43 AM, Oon-Ee Ng wrote:
> On Tue, Jun 9, 2015 at 9:26 PM, Florian Pelz
> wrote:
>> On 06/09/2015 09:26 AM, Oon-Ee Ng wrote:
>>> How do I track down the issue? The library's source code is available,
>>> but without knowing it well I'm unsu
On 06/09/2015 09:26 AM, Oon-Ee Ng wrote:
> How do I track down the issue? The library's source code is available,
> but without knowing it well I'm unsure where to even begin.
>
> Normally I'd contact the authors, but as this issue was caused (on my
> system) by a system update I think I'd need to
Is this issue related?
https://code.google.com/p/chromium/issues/detail?id=490398
signature.asc
Description: OpenPGP digital signature
On 05/16/2015 01:31 AM, cao...@mail2tor.com wrote:
> → Sometimes, even the window manager (Gnome) freezes and I have to
> go to a tty to have a chance to get it unfreeze. It doesn't always work
> then sometimes I have to reboot my computer because it has become
> absolutely frozen (no mouse, no key
Does it occur with all applications? For example, I have crackling sound
with headphones in all ALSA applications such as unpatched wine, but not
in e.g. a patched wine-staging or VLC or most Linux games because they
use Pulseaudio.
signature.asc
Description: OpenPGP digital signature
On 05/10/2015 09:16 AM, Heiko Becker wrote:
> But just
> for simplicity I tried with awesome WM instead of Plasma 5.3 and
> strangely it works.
> Can someone help me with this?
So when you run `aplay something.wav` on Awesome it works, but when you
run it on KDE it doesn't?
(aplay is from the als
I'm using Pulseaudio and my headphone has issues with applications using
ALSA (such as an unpatched Wine), but not with applications supporting
Pulseaudio natively. Have you tried if that makes a difference for you?
signature.asc
Description: OpenPGP digital signature
On 02/20/2015 07:22 PM, Dolan Murvihill wrote:
> CAs can, and have, deliberately issued fraudulent certificates.
> TrustWave is the only one that has been discovered doing this ---
> and that, only because they came forward on their own years after
> the fact. The security community generally agree
On 02/20/2015 04:51 PM, Daniel Micay wrote:
> PKGBUILD checksums provide *zero*, yes *zero* security for the case
> that matters most, which is the build done by the packager. It does
> provide the ability for other people to verify that a MITM attack
> was not used to target a specific packager...
>
This certainly is the right way to go, but I don't think enough
upstream projects care to make it a viable option for personal
computers today. PKGBUILD checksums provide less security, but they do
provide some.
> On 20/02/15 09:41 AM, Florian Pelz wrote:
>> I'm not sur
Hi,
On 02/20/2015 03:22 PM, Daniel Micay wrote:
> On 20/02/15 09:03 AM, Mark Lee wrote:
>> I understand that the metadata changed which changed the checksum, but
>> that doesn't really change the question of what to do with source code
>> versioning systems that have changing checksums and the nee
On 10/17/2014 08:49 AM, Klearchos-Angelos Gkountras wrote:
> is there any problem with ethernet amd nm-applet ? i cant connect via
> ethernet
>
nm-applet works for me. Why do you mention ethernet -- does wireless
work for you and ethernet does not? Does "systemctl status -l
NetworkManager" show h
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/28/2014 07:04 AM, Benjamin A. Shelton wrote:
> On 09/27/2014 02:13 AM, Ralf Mardorf wrote:
>> On Sat, 2014-09-27 at 10:02 +0200, Florian Pelz wrote:
>>
>>> Same here. With only NoExtract, I linked /bin/sh to dash,
>&g
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/27/2014 09:30 AM, Benjamin A. Shelton wrote:
> On 09/27/2014 01:28 AM, Ralf Mardorf wrote:
>> On Sat, 2014-09-27 at 01:21 -0600, Benjamin A. Shelton wrote:
>>> I assumed NoExtract should have been enough
>> Correct! Or are we missing something?
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/27/2014 09:23 AM, Ralf Mardorf wrote:
> On Sat, 2014-09-27 at 09:04 +0200, Florian Pelz wrote:
>> On 09/27/2014 09:01 AM, Benjamin A. Shelton wrote:
>>> On 09/26/2014 05:11 PM, Doug Newgard wrote:
>>>>
>>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/27/2014 09:01 AM, Benjamin A. Shelton wrote:
> On 09/26/2014 05:11 PM, Doug Newgard wrote:
>>
>> I should qualify that in that I don't think adding another
>> package to base is a good idea *unless* there is a significant
>> benefit to doing so.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 09/26/2014 07:43 PM, Lorenzo Bandieri wrote:
> Hi list,
>
> I have a favor to ask to those that are currently testing Gnome
> 3.14.
>
> In gnome 3.12 I am having problems with user switching, which is
> quite important for me. In particular, I had
51 matches
Mail list logo
