| === vlm_ is now known as vlm | ||
| === riderjj is now known as juanjo | ||
| === juanjo is now known as riderjj | ||
| ahasenack | sarnold: just tested with snapped firefox in jammy, and indeed I cannot use my smart card there anymore | 20:39 |
|---|---|---|
| ahasenack | [ 7094.633975] audit: type=1400 audit(1648931527.002:103): apparmor="DENIED" operation="file_mmap" profile="snap.firefox.firefox" name="/run/user/1000/doc/e0bac853/libaetpkss.so.3.5.4112" pid=3680 comm="firefox" requested_mask="m" denied_mask="m" fsuid=1000 ouid=0 | 20:39 |
| ahasenack | that path is not what I typed in the firefox dialog box, obviously | 20:40 |
| ahasenack | maybe I should copy the lib to my home, or somewhere else firefox is allowed to read it | 20:40 |
| ahasenack | chrome works, so I guess that's it | 20:43 |
| * ahasenack tries the upstream tarball | 20:44 | |
| ahasenack | upstream firefox, tarball, loads the module just fine | 20:47 |
| shalocin[m] | Thanks @ccdm_94 and @amurray for another great episode of server hardening. Some really nice tips. I particularly like the suggestions for ways to check our configurations. I will definitely use the Mozilla config generator that you highlighted!... (full message at https://libera.ems.host/_matrix/media/r0/download/libera.chat/01a2c73ed4b3c83a2bcef08f1bca9d81fe68f8bb) | 22:37 |
| JanC | why does that matrix bridge think it's fine to split messages over IRC & HTTP? | 22:42 |
| Unit193 | "Premium members can see the full message without this disclaimer" :D | 22:48 |
| shalocin[m] | <JanC> "why does that matrix bridge..." <- What are you seeing? | 22:53 |
| JanC | <shalocin[m]> Thanks @ccdm_94 and @amurray for another great episode of server hardening. Some really nice tips. I particularly like the suggestions for ways to check our configurations. I will definitely use the Mozilla config generator that you highlighted!... (full message at https://libera.ems.host/_matrix/media/r0/download/libera.chat/01a2c73ed4b3c83a2bcef08f1bca9d81fe68f8bb) | 22:54 |
| shalocin[m] | 👎 that's not good | 22:55 |
| JanC | IRC netiquette says you split it over multiple IRC messages | 22:55 |
| JanC | or if it's really long you put it up on a blog/pastebin or such and point to it with a proper explanation | 22:55 |
| shalocin[m] | You mean messages should be limited in length | 22:55 |
| JanC | well, they are technically limited in length | 22:56 |
| JanC | sort of like Twitter :) | 22:56 |
| JanC | but a bit longer than Twitter messages really | 22:56 |
| JanC | if the Matrix people want to bridge to IRC, they should do it properly | 22:57 |
| shalocin[m] | Yes that makes sense. And split the messages accordingly. But this is provided by libera.chat.... I joined the matrix room #ubuntu-security:libera.chat | 23:00 |
| shalocin[m] | So libera.chat are hosting this matrix room. Presumably they are providing the bridge. | 23:01 |
| Guest33 | Simple solution. Everyone should ditch their IRC client and user Matrix instead. No http splitting them 🤔 | 23:04 |
| Unit193 | JanC: This is actually better than it was, you at least get some context and not just a link dropped. | 23:18 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!