/srv/irclogs.ubuntu.com/2021/02/27/#ubuntu-discuss.txt

lotuspsychjegood morning03:45
ducassegood morning07:19
oerheksyay, the end of GA? ( google analystics) https://twitter.com/__jakub_g/status/136540030676758118512:50
oerheks( and FB and more..)12:50
clarkkhello lotuspsychje13:42
lotuspsychjeclarkk: the snap pages do indeed show publisher vs verified account13:43
clarkkto summarise, what is the green tick next to the developer name in the Ubuntu Software app13:43
clarkklotuspsychje, at the moment, it's very obscure. It needs some documentation so people can use it13:44
lotuspsychjemaybe popey or ogra might know more of that, if they are online atm13:44
tomreynlast time i asked (and pointed out this needs to be documented), which i have to admit is probably 2 years ago by now, i was told there are no fixed criteria which define whether or not something is flagged as verified13:52
tomreynhopefully this has improved since.13:52
ducassethat sounds useless13:54
tomreynthe user guide at https://snapcraft.io/docs/getting-started mentioned verification ("verified") but does not explain what it means.13:54
tomreyn*mentions13:54
ducassethe word 'verified' implies some effort has been taken13:54
tomreynrelevant past context https://forum.snapcraft.io/t/bogus-apps-in-store/4703 https://ubuntu.com/blog/trust-and-security-in-the-snap-store13:54
lotuspsychjeclarkk: ^13:57
tomreynhttps://forum.snapcraft.io/t/how-does-a-snap-publisher-become-verified/19902 is newer13:58
tomreyn(but lack an answer)13:58
tomreynclarkk: <tomreyn> relevant past context https://forum.snapcraft.io/t/bogus-apps-in-store/4703 https://ubuntu.com/blog/trust-and-security-in-the-snap-store13:58
tomreynalso newer, also without answer https://forum.snapcraft.io/t/verified-developers/2005/613:59
clarkktomreyn, thank you. I'll have a read14:00
tomreynnote there is also #snapcraft - the channel for developers trying to build snaps - which is where you *may* be able to get a current answer to the question14:01
tomreynapart from the point that it's not clear what "verified" means, there's also the issue that you as a user don't get to choose who you trust, not in a systemic way (you can choose to only install snaps which are tagged verified manually, but there is no preference to only display verified ones). This is equivalent to configuring which apt repositories you'll install software from, in the apt domain (where you can even make choices on a14:07
tomreynpackage name or package name pattern through apt preferences).14:07
tomreynand then there is the issue of delegated trust - you don't get to choose whom you trust, you need to rely on the snap store maintainers to make wise choices for you, and to keep those updated for you, and to take counter measures for you once it turns out a "verified" developer has actually (intentionally or unintentionally) published malicious software.14:09
tomreynthose issues also apply to the apt ecosystem. but there it's somewhat well documented (at least for the main repositories) whom you're trusting and what they promise to deliver.14:10
tomreynnote also that the ubuntu security team does not have a handle on snaps14:10
tomreynclarkk: ^ more to read, if you care. ;) i'll end the momologue here.14:11
ograhuh ?14:11
ograwhere is that from ?14:11
tomreynmy brain14:12
ograadding any random apt repo means you give the repo owner 100% root access to your machine ... this is never the case for snaps, they only can gain root in their own confined sandbox ever14:12
ograyou can not really compare that14:12
tomreyni did not compare this aspect, but i agree, that's a positive part of snaps14:13
tomreynthere are up- and downsides14:13
ograthe security team maintains the upload checks for snaps, the whole interface system, does the security review for each single classic snap and a lot more stuff that i forgot14:13
ograthey are *deeply* invloved in snaps14:14
tomreynoh, so this changed and my info is outdated, i guess14:14
ograno, thats tha case since day one in 2014 when snaps started14:14
tomreynwhat are the "upload checks for snaps"?14:14
ograin fact the interface system was *designed* by the security team14:15
ograif you upload a snap it will be held if it uses any overly privileged interface or is classic (i.e. unconfined)14:15
ograthere is an automated check in place14:15
clarkkogra, essentially, will you install literally any snap without worrying whether it's malicious?  If not, what general checks do you do?14:16
ograi do install any snap because i trust the confinement system ...14:16
ograbut thats a matter of personal taste šŸ˜‰14:17
tomreyni know that seth designed much of the containment, after all it uses apparmor a lot14:17
* ogra has to take back the above ...14:18
ogra... in fact i do install *any confined* snap without checking the dev14:19
ograif i install a classic snap i check very well who made it14:19
tomreyni wasn't aware that unconfined snaps are always reviewed by the security team, but that is one of the many things that should be documented, i think.14:19
ograit is14:19
ograhttps://forum.snapcraft.io/t/process-for-reviewing-classic-confinement-snaps/146014:20
tomreynunlike a few, i don't consider forum posts to be documentation.14:20
ograwell, then you should shift your mind ..14:20
ogra*all* newer ubuntu documentation uses forum posts as input14:21
clarkkhow do I know what's a classic snap and what isn't?14:21
ogra(non snap stuff lives on discourse.ubuntu.com )14:22
ograclarkk, you can not install it without consent14:22
clarkkthat's the only way of knowing?14:22
ograi admittedly never installed a clssic snap via the UI but i think there is a popup14:23
ograbefore it gets installed14:23
ograon cli you need to explicitly use the --classic snap to the snap install command14:23
ograelse snap will refuse to install it14:23
* ogra shakes head 14:24
ogras/the --classic snap/the --classic switch/14:24
ogra(too much snap in my fingers today)14:24
tomreynhttps://forum.snapcraft.io/t/process-for-reviewing-classic-confinement-snaps/1460 states this about the security teams' involvement: "The technical requirements [for why the snap uses classic confinement, as stated by its developer / publisher,] are gathered in [a] forum post [and] will be reviewed by the security team and/or an architect."14:26
ograyep14:26
tomreyniit's not clear wat "an architect is" (who can replace the security team in this task)14:27
tomreyn* "an architect" is14:27
ograwell, ask in the post šŸ™‚14:27
tomreynalso, the way i interpret this is that the security team (or "an architect") reviews the statements made by the developer, not the source code?14:28
ograi personally havent seen any classic reviews withut security team involvement so i cant really tell14:28
tomreynso hopefully the review is not limited to reading the statement a developer / publisher has made on whether or not a given snap should be trusted. ;-)14:29
ograeither way, classic snaps are rare ...14:29
tomreynright, and restricted snaps aren't reviewed by the security team, just run through some automated checks.14:30
ograwhich is fine since they can only use guarded access to the host14:30
tomreyndepends on what you consider to be fine, if you can't access the source nor know who the developer really is (other than a nickname)14:31
tomreyni'm sure they could still do phishing with no system access, and probably more.14:32
ograwell, if you really dis-trust a strict snap, just disconnect its interfaces14:32
ogranot sure what/how they would phish14:32
tomreynonline banking logins, for example.14:33
tomreyncould also do click jacking14:33
ograhow would they phish that ?14:33
ogra(from wheer would such a snap get said info ?)14:34
tomreyni haven't fully thought through the details, but i donp't see why a malicious snap can't choose to display a banking login form which they user might be led into bbelieving was the proper one.14:35
tomreynbut it's just an example, phishing can have a lot of varieties14:35
ogradisply where ?14:35
ograor how14:35
tomreynon screen of the users' computer?14:36
ogrado you mean someone does "snap install my-electron-phishing-app", then launches the app and types in her bank credentials ?14:36
ogra(note that a snap wont have access to your browser ... unless it is classic indeed)14:37
tomreyni mean someone does    "snap install my-confined-something-app", then launches the app and half an hour later this app pops up a login form which prompts the user for their bank credentials. or something completely different.14:38
tomreyna snap can be a browser, though. or a browser and also an online game.14:38
tomreynor a phishing app and also a tax declaration software14:38
ograso you'D not be surprised if your calculator app started asking for your banking passwrod ?14:38
tomreynsure, i would be, if i knew this was what is happening14:39
tomreynbut most users probably would not14:39
ograyes, snap can be a browser (i maintain a bunch of electron snaps) but the popup will still be inside that app ... if it opens an additional window the window will still have the icon of the original app etc ...14:39
ograsure, you definitely *can* create a banking fake app and push it to the store ...14:40
ograbut here the vetted publishers come in ...14:40
ograi.e. you'd only install a banking app that is actually released by your bank14:40
tomreyni see potential risks, which some users may fall for. you see ways how those might not apply to some or many users. but you don't gain security by safeguarding a couple users.14:40
ograright, you can surely still shoot yourself in the foot, even with snaps ... but the risk is a lot lower14:41
tomreynif you haven't reviewed the source code, you don't know what things, and maybe what other things, a software can choose to (not) do.14:41
ogra(i.e. by installing an unverified banking app an typing in you creds.)14:41
ograright ...14:42
ograbut it can only do that within the defined bounds the snap system allows14:42
tomreynfor many attacks you don't need more than a way to take user inut and send it to the internet14:42
tomreynwhich i assume is still possible with a fully confined snap14:43
tomreynthanks for the discussion,though, i enjoy it. we probably have gone over much of the relevant points by now.14:43
ograa confined snap can only do what you permit it to14:44
tomreynbut it comes with default permissions, doesn't it?14:45
ograindeed such a malicious snap would come with the network interface and the desktop interface14:45
ograso it could read input thats going to itself n it could send this input to the internet14:45
ograyou as a user can simply disconnect the network interface though14:45
ogra(the snap interface i mean, i'm not referring to "pull the network cable" ... the effect is the same though)14:46
ograas a user you always have the full control what you allow a snap to access14:47
ogranot different from android or IOS14:47
tomreynsure, but any malware developer would probably packaghe two applications in one snap. one software that has a legitimate use, probably a copy of some open source software, and another one, which has a malicious purpose. they'd choose the legitimate software so that it makes it reasnable to loosen confinement so that the malicious software can do what it wants / needs to.14:47
ograsure14:47
ograthat doesnt even need malicious intend ...14:48
ograwe had one case wheer a game dev actually shipped a cryptominer along with his game ...14:48
ogranot because he was evil, bt simply to generate income for himself when people play his game14:48
ogra(which is a legit use case ... prob was that he did nowhere mention that a miner runs while you play)14:49
tomreynand that this dual purpose was not detected before the snap was published, yes14:49
ograwell, sigle purpose snaps are really rare šŸ™‚14:50
tomreynlet's say "dual use" as in weapons then14:50
tomreynor weapon parts, which can also be used for mining, or for agriculture14:51
ograwell, his snap didnt actualy do anything evil beyond stealing some cpu cycles while you were gaming14:51
ograand yes, other snaps can do thsi too ... using memory and cpu (within confinement boundaries) is indeed allowed to every snap14:52
tomreynthat's what you consider evil. to me the existence of reachable crypto miner code in a game is always malicious. different users have different opinions on what is evial and what is tolerable. they should be able to make a choice.14:53
ograas well as writing to ~/snap/<snapname>/current (and /common)14:53
ograbut thats about it ...14:53
ograthey have the choice to uninstall the game ...14:53
ograit isnt like that miner does anything to your system apart from occupying some resources while you play14:54
ograit doesnt encrypt your homedir, doesnt do any harm to your OS or anything (and cant do either)14:54
ograit is a legit way for developers to make money of their software ... as long as they let the user know about it14:55
ogra(i.e. with a popup that tells you "this game will mine BTC for the creator while you play it")14:56
tomreyni consider user tracking to be problematic. with snapos, i cannot tell whether it is taking place, and have no means to prevent it from happening (other than firewalling or disconnecting internet, but this will likely break the application).14:56
ograif you do it secretly, then it is definitely evil and your snap will be removed if someone complains about it14:57
tomreynyes, the "if someone complains about it" approach is not good enough for me.14:57
tomreyni know that other app stores work the same way, which is why i don't use them for anything relevant.14:58
tomreyn(i do assume that google and itunes automated verification systems will be more advanced than snap's, though.)14:59
ograthats a moot point given you can not verify that šŸ˜‰14:59
ogra(i'D think it is the other way around šŸ˜‰ )14:59
ogra(given that the snap side of things is completel opensource)15:00
tomreynmy main point there is that i've chosen not to trust them, much. and unfortunately that's also why i cannot use snaps, the way the ecosystem is designed now.15:01
tomreynother users, were they aware of the implacations, which is not happening, might have a similar view on it.15:02
ograwell, snap wont go away ...15:02
tomreyni very much like the snap technology, just dislike parts of its ecosystem.15:03
lotuspsychjethey should have divided it from the start15:03
tomreynit certainly has its uses (and could be much more useful).15:03
lotuspsychjeleave the user the choice15:03
ogradivided ?15:03
lotuspsychjeyeah divide apt packages vs snap in the store(s)15:04
lotuspsychjeso if a user wants to not use snaps, he can15:04
ograi dont think so ... that wouldnt be very ubuntu15:04
ogra(one of my main targets in nearly 16y of working on ubuntu is that my nearly 90y old mom does *not* need to know what a snap is šŸ˜‰ whe opens the sftware store and installs what she needs ...)15:06
* tomreyn stepping away, thanks for the discussion, ogra15:06
ograenjoy your weekend15:06
lotuspsychjeim not against snaps, some are very handy15:06
lotuspsychjebut not leaving the user the choice was a bad idea in my opinion15:07
ograwell, what choice exactly ...15:07
ograyou can always sudo apt purge snapd15:07
ograi dont see where anyone remves choice15:08
lotuspsychjebut some snaps are now base of the system right?15:08
ograin fact i see the exact opposite15:08
lotuspsychjewont you bork the gnome parts after purging snapd?15:09
ducassei don't use snaps, and i have a perfectly functioning system15:09
ducasseseveral, actually15:09
ograi dont think any snaps are mandatory15:09
ogracertain services are only provided as snaps though ... lxd ... or livepatch15:09
ograbut neither of them is mandatory for a default install15:10
ducassei kind of wish they hadn't made lxd snap only, but i can make do with lxc15:10
lotuspsychjeogra: df -h on a clean ubuntu shows some default snaps15:10
ograwhich ones15:11
lotuspsychjethemes, core, gnome, snap-store?15:11
ogracore is the snap runtime env ... the gnome snap ships the libs for the store snap15:12
ograand you can replace the store snap easily with gnome-software15:12
ogra(and alongside remove snapd)15:12
ograso effectively we added choice šŸ˜‰15:12
lotuspsychjeso removing snapd wouldnt give issues?15:12
ograit would remove the store ... so you still need to apt install gnome-software ... but nothing beyond that15:13
lotuspsychjemaybe i should test that out on a clean soon15:13
ograducasse, well, it saves the lxd team tons of money to not having to maintain 20 distro packages ... and it enables you to have shiny features like being able to run a bunch of different lxd versions in parallel and such šŸ˜‰15:14
ducassetrue15:15
ducassei love things like winbox being distributed as a snap, so i don't have to pollute my system with wine etc15:15
ograyep15:16
ducassei'll probably add that soon15:16
lotuspsychjeyeah some snaps are very handy15:16
ograsnaps shine the most in ubuntu core though ... that we have desktop snaps is a nice side thing, but the real power of snaps lies beyond the desktop15:19
lotuspsychjecore is a big octopus right?15:19
ducassesadly i mainly use desktops these days, since i no longer work15:20
ogranah, its a shiny little OS to do awesome stuff with šŸ˜‰15:20
ograhere is a toy project of mine https://people.canonical.com/~ogra/UC20/pi-mediacenter-appliance/15:20
lotuspsychjeogra: i mean, its the base of so many other things15:20
ograyeah15:20
lotuspsychjeMaik: maybe something for you^15:21
ograit is running big machines in factories, self driving cars ... network switches, APs, digital ADs ec15:21
ducassethat looks like a cool toy for me :)15:21
ograstill not done (i'm waiting for a new interface in snapd to land to finish it)15:22
lotuspsychjeogra: running smooth a bit on the pi?15:22
ograas fast as libreelec on ym other pi15:23
ogra*my15:23
lotuspsychjeneat15:23
ogra(which it will eventually replace)15:23
lotuspsychjei still use my mede8er for years now15:23
lotuspsychjethe only thing it doesnt do is x26515:24
ograwell, there is always ffmpeg šŸ˜‰15:25
lotuspsychjeill settle with the regular mkvs15:26
Maiklotuspsychje: not my thing :)15:53
clarkktomreyn, thanks for expressing a lot of the concerns I had about snaps, not having really had to deal with them before. I am happy about their advantages, and like that they're contained, but still would like to be able to follow the trail back to a snap's long-running OSS project and devs, to satisfy myself that it's legitimate. I get the impression that people familiar with them don't think this is necessary, but I don't really understand17:31
clarkkwhy it's been made impossible for those who wish to do so. I guess there's no planned solution to this, so I'll just have to accept it17:31
tomreynclarkk: at this time, it's perfectly possible to run ubuntu desktop or server without having snapd installed. (and that's what i do on the systems i have not yet migrated back to debian, for this and other reasons related to the culture that ubuntu has sadly developed to - in my opinion.) this said, it does not seem certain that snap(d) will continue to be optional or removable in future releases.17:49
oerheksno livepatch without snapd17:51
tomreynyes, but there are alternatives, and it's not mandatory anyways.17:52
ograclarkk, most opensource snaps actually ship their snapcraft.yaml (the receipe used to build them) inside the snap package (all snaps that use the auto-build service do this by default unless the developer opted out) ... so you have a full paper trail18:08
ograi.e.:18:10
clarkkogra, I'm pretty tech savvy, and I definitely haven't found the "full paper trail18:10
ogra$ find /snap/htop/ -name '*snapcraft.yaml*'18:10
ogra/snap/htop/2069/snap/snapcraft.yaml18:10
ogra/snap/htop/2185/snap/snapcraft.yaml18:10
clarkkI'm still none the wiser18:10
clarkkI'd like to go to a snap in the Ubuntu Software app, click on a link to the repo, and have a look for myself18:11
ograwell, if you open it and rea it thats the full paper trail ... it has the soure tree used to build, shows any patches applied etc18:11
clarkkbut there are no links18:11
ograif the packager added that info you can ... but this is optional18:11
clarkkI think ubuntu need to start setting some standards18:12
ograsnaps have originally been created for IoT,cloud,embedded, robotics, self driving cars etc ...18:12
ograa lot of that SW is proprietary18:12
ograonly about 2y after they started to exist (and a few weeks before flatpak was actually announced) snapd started to support to run desktop apps18:13
ograso there is some legacy to support also proprietary stuff18:14
clarkkok, then they need time to mature. That's fine. But I think it was too early to make it an integral part of Ubuntu18:14
clarkkthey definitely have potential, but until that potential is met, it shouldn't be in the release18:15
ograyou mean 6 years is not enough for SW to mature ?18:15
clarkkI'm saying, that it hasn't been thought through from a user perspective18:15
ograthey dont *have a potential* they are used widely in commercial setups, there are whole facroies running ubuntu core to control the machines out there18:16
ogra*factories18:16
clarkkthere is no paper trail, unless I physically type in the name on the dev, and try to find their repo18:16
clarkkthe dev shouldn't have to use the description of the snap to state the repo18:16
ograwell, the repo likely just has a snapcraft.yaml file anyway ...18:16
clarkkthere should be afield for that18:16
ograpointing to the actual source trees used to build the snap18:16
clarkkthat's not trivial18:16
clarkkthat repo will have people following, and will have issues18:17
clarkkpeople can look at the code, and raise issues that can't be deleted18:17
clarkkit all adds to the integrity18:17
ograwell, take a look at https://github.com/ogra1/rkdeveloptool ...18:18
clarkkI agree with tomreyn - a bad actor doesn't need full access to do serious damage. They escalate privileges, or get around the limitations in ways you cannot perceive yet18:19
ograhow exactly do they escalate privileges ?18:19
clarkkjust because it hasn't been done so far, doesn't mean it cannot be done18:19
clarkkall I'm asking is for a way to easily check up on the developer and the project. The way that users have been prevented from doing this seems to go against the principles of OSS18:21
ograwell ... snap confinement hooks deeply into the kernel (there are only very few userspace bits) ... if you could actually break out of this you have a far more serious problem already (i.e. a completely broken kernel)18:21
ograthis isnt docker containers18:21
clarkkessentially, what I want is transparency. It's just a shame that ubuntu has decided that this is not important18:22
clarkk*canonical18:22
ograi just gave you the trail to transparency18:22
ograthis is not at all different from a source deb18:23
tomreynjust to clarify, i wasn't discussing privilege escalation, rather potential social engineering vectors involved in running untrusted / untrustable software18:23
clarkktomreyn, true, but I'm arguing about both18:23
ograyeah, cant do much about social engineering vectors ... except giving the user the ability to revoke access to certain parts of the system (which we do)18:24
tomreynyes it's different, UIs matter. exposing information to less technical users matters. end user transparency matters.18:24
clarkkI want to check the developer and the project. atm, it's not at all easy18:24
ograbut you can perfectly fine look at how a snap was created and from what source18:24
clarkkogra, from the software centre?18:25
ogranp from looking at the package as i described18:25
ogras/np/nšŸ‘‹18:25
ograbah ... emoji plugin ... sorry18:25
clarkksorry, I missed it. Where did you say that?18:25
clarkkplease explain the steps from the Ubuntu Software app to the source code18:26
ograthe snapcraft.yaml prcisely describes each bit inside your package and how it was built18:26
ograi said from cli18:26
clarkkok, so I'm unnecessarily forced to use the CLI18:26
clarkkwhich I'm happy to do, now I know18:27
ograif yu want to do forensics, yeah18:27
clarkka simple html link in the software app would solve the whole problem18:27
ograwell, tell the gnome devs šŸ˜›18:27
clarkkogra, could you tell me how I could become more familiar with managing snaps via the cli?  I have no idea where to start18:29
ograafter all the software app is a gnome app to which ubuntu just adds a backend plugin to support a different devlivery mechanism for SW18:29
ograclarkk, "snap help" is probably a good start18:29
ogra"snap info --verbose <snap name>" is usually also very helpful (and there is usually a "contact:" field to reach the developer)18:30
clarkkthank you, ogra. Really appreciate the info, and thanks for your patience in explaining it all18:32
ograno prob šŸ™‚18:32
ograbtw, regarding your html link ... i persoanlly find https://snapcraft.io/<snapname> way more convenient than the software app (and it has typiclly more details and links to upstreams)18:37
ograi.e. https://snapcraft.io/htop as an example (note the "contact" link)18:39
oerhekstomreyn, to keep track i hit f5 on https://launchpad.net/ubuntu/+source/firefox/+bugs?orderby=-datecreated&start=021:01
oerheksmaybe it is moderated21:01
tomreynoerheks: thanks, i was looking at this, too, as well as #ubuntu-bugs-announce21:02
tomreynsecurity would explain it, right21:02
oerheksyes.21:03
oerheksbut i think also spam control ..21:03
leftyfbgah, love linux and open source21:58
leftyfbbought a new laptop a while back. Slowly creating an ansible playbook to rebuild said laptop from scratch comparing my existing laptop running 18.04 to the new one running 20.04....21:59
leftyfbapparently the latest hexchat has an issue with it's font renduring which annoys the hell out of me https://github.com/hexchat/hexchat/pull/2500/21:59
daftykinsthings change so often, surely that type of effort will be redundant quickly?22:00
leftyfbmeh, not much. Even so. Updating some roles is and hitting go is a lot easier than doing it all from scratch manually22:00
leftyfbanyway, I downloaded the deb source for hexchat, updated the files in the patch above and recompiled. Now all is well22:01
leftyfbcept for not being able to upload to the ppa I created for it for some reason :/22:01
leftyfbah wait ... maybe just an issue of being impatient. Just got the "accepted" email22:02
tomreynmaybe your system's encryption libraries are too new to be compatible with launchpad22:02
leftyfbno, that was a whole thing as well. I really need to nail down the proper way to re-import my gpg keys. I THINK I got it, at least enough to make debuild happy22:03
leftyfbbut seriously, being able to just fix the code and be on my way ... so nice22:03
leftyfbhere's the annoying bit: https://i.imgur.com/kSm19BP.png22:04
tomreynfont size?22:04
leftyfbtop is 18.04, bottom is 20.04 that isn't quite right. The difference doesn't jump out, but man does it mess with the eyes after being used to it a certain way all these years22:04
leftyfbtomreyn: yes/no22:05
leftyfbhas to do with the font rendering the height properly22:05
tomreyni see. but just decreasing the font size by 2px wont help?22:05
tomreyni assuem you mean the vertical line spacing is an issue22:06
leftyfbah, see, that's the bigger issue which the bug was ACTUALLY meant to resolve: https://github.com/hexchat/hexchat/issues/244922:06
leftyfbif you lower the size beyond 13px, you don't get to see underscores and the g is cutoff22:06
tomreynoh, i remember running into that before, too22:06
daftykinsheh22:07
leftyfbyeah, REAL annoying bug22:07
leftyfbnothing showstopping, but boy does it tick me off trying to use hexchat22:07
tomreynmaybe it was fixed before, then, since i still use 18.04. might be worth a search.22:07
leftyfb18.04 is fine. 20.04 is broken with no fix in place ... other than my soon to be PPA :)22:08
leftyfbhexchat has merged the changes but not released it yet22:08
leftyfbso there's no existing fix anywhere22:08
leftyfbsweet, ppa finished. BRB. Gotta purge and try to install from PPA22:09
leftyfbbah, I missed something22:09
leftyfb"he repository 'http://ppa.launchpad.net/leftyfb/hexchat/ubuntu focal Release' does not have a Release file"22:09
oerheks hexchat - 2.14.3-5 pending...22:15
oerhekshttps://launchpad.net/~leftyfb/+archive/ubuntu/hexchat/+packages22:16
leftyfboh right ... hm22:16
leftyfbI saw "1 successful"22:16
leftyfbtomreyn: when you update to 20.04 and find the same issue with hexchat, you are more than welcome to use my PPA. Assuming it finishes properly22:17
tomreynleftyfb: thank you. i don't currently plan to move to ubuntu 20.04 or later.22:19
leftyfboh?22:19
tomreynback to the roots. ;-)22:19
leftyfbroots?22:20
tomreyni'll wade through the pain that debian is instead.22:20
leftyfboh, really? You moved to Debian?22:20
leftyfbor are planning to?22:20
tomreynpartially so far, not this desktop, yet22:21
leftyfbany particular reason?22:21
tomreyna couple. we had a lengthy snap discussion here earlier, that's one of them.22:22
tomreynbut mostly it's the changed culture i no longer seem to be compatible with22:22
leftyfbthe culture as fallen by the waitside over the years. I do miss the old days22:23
leftyfbwaistside*22:23
leftyfbcan someone highlight me? Need to test something22:24
tomreynleftyfb: you got highlighted22:25
leftyfbbah, fail22:25
leftyfbthanks22:25
leftyfbhexchat jumps to focus on notifications. Just as annoying as the font issue22:26
tomreynlooks like you found another bug that needs fixing22:28
tomreynhere's another one, if you like: in case you'll choose to log any channel, it will write to disk every few seconds.22:28
tomreyngreat for disco flashlights triggered by hdd controllers, not as great for your ssds.22:29
leftyfbtomreyn: what do you mean? I prefer my logging.22:30
leftyfbI have IRC logs going back over 10 years. All quickly searchable with some functions I made up22:30
tomreynhexchat has a log feature, you can log select or all channels. if you enable it, logs will be written to disk a lot more often than they should be.22:31
leftyfbah22:31
leftyfbanother annoying issue with hexchat I've found.... not a bug but a lack of a feature. You can't specify $HOSTNAME as a variable for log location/name22:32
leftyfbIF I wanted several machines to log to the same location, there's no way to distinguish them. They would write to the same file(s)22:32
tomreynthat's what directories are good for, isnt it?22:34
tomreynbut i can see how you'd want multiple loggin into one, yes22:35
tomreynotal DISK READ :       0.00 B/s | Total DISK WRITE :       7.54 K/s22:39
tomreynActual DISK READ:       0.00 B/s | Actual DISK WRITE:       0.00 B/s22:39
tomreyn  TID  PRIO  USER     DISK READ  DISK WRITE  SWAPIN     IO>    COMMAND22:39
tomreyn 1234 be/4 tomreyn     0.00 B/s    7.54 K/s  0.00 %  0.00 % hexchat --existing22:39
tomreynthat's iotop, constantly listing hexchat on top22:40
=== himcesjf_ is now known as himcesjf
tomreynthis may be of interest for nivdia driver users with a optimus / prime setup https://wiki.debian.org/NVIDIA%20Optimus#PRIMEOffload23:30
daftykinslaptops turning into cars :O23:37

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!