#FML 😭 The Qubes installer hangs during boot when IOMMU is enabled, and boots fine with it disabled but then the installer tells me that Qubes won't work right without IOMMU turned on (and understandably so).
Obviously I want it enabled, even if Qubes could work in a degraded state without it.
I feel like I got a raw deal here. I checked the HCL and picked out a motherboard specifically based on what was reported to work, and yet... In the past, I've bought motherboards which weren't on the HCL and they worked out better than this.
So next I get to see if there are any updates for my BIOS and try the Qubes 4.2 installer (I already had 4.1 on hand, do I tried that first). After that it'll be time to hit up the forums, I suppose.
#security #infosec #cybersec #GrowNostr #cybersecurity #qubes #QubesOS
#m=image%2Fgif&dim=360x360&blurhash=U7B%7By6JC00%7D%40MKIpPV-U%25N%24%23MxIo0Ls.%5EkI%40&x=7ca64596798d52d8d04e9a72fae20d32b7d94772c643af46a71cbdf5c551782fTwo Qs for ya about Monero
1. Are there any Monero wallets in FDroid? (i couldn't find any).
2. How do you suggest getting coins without going through a centralized exchange?
I looked into the protocol years ago and had to rely on cryptographers for the zero knowledge proofs because I don't grok that math (at least, not yet). I like the privacy claims, and would be happy to give it another go if it's usable.
nostr:npub1gcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqlfnj5z
persistent issue (since amethyst inception) on non-play version of amethyst using gos:
issue: when composing a post, when a user swipes up (on grapheneos) to go to another app, it's a crapshoot if the post edit will still be there when the user returns
happens ~ 30/ 40% of the time and seems completely random
expected behavior: user starts composing a post, swipes up to go to another app to grab a link or search for a photo to download and can return to the app and the post draft will still be there.
seriously, i have to save my posts to a notepad because this issue happens so often
looking forward to your reply and a resolution. this doesn't happen with other apps.
#cybersecgirl #privacytechpro #amethyst
Same here. I go to my browser to check to make sure a IRL I typed was the one I meant amd when I come back my drafted post is often gone.
I've also been copying and pasting into another app to cope.
Graphene, orbot, currently on v0.83-7-fdroid
It's nice to see that fees are down to something reasonable again.
Maybe I should prioritize setting up a lightning node 🤔
Sure. If you want to pick one up in person, I'll accept BTC or USD (in cash, ofc). Heck, I'd even accept 3 kg of PLA+ in trade for one. 😄
Sure. I am running low right now, so now's a good time to suggest another color.
For anyone else who wants to do the same
Here's one that's naked!
#m=image%2Fjpeg&dim=1920x1280&alt=A+USB+device+without+a+case.+The+purple+printed+circuit+board+says+Signet+v1.3.+There+is+a+small+push+button+in+the+center+of+the+board.&blurhash=rTJt%3B%23RQ%7EVozIVoJj%3FWBs%3B%25MxaRjIoofxaWBWVof%252jtM%7Cj%5Bt6ayWVj%5BWCf8WBfiofoLWVWBayj%40t6j%40WCaxWBayofofaxf5WBj%5Ds%3AayWCoLayWC&x=99f4018d751c1c0fe9f1f5d227480e44688fd82ba57274b7b9b1cb6cd336dbac
I guess I'll call that model signet-1.3-naked
This is awesome. Since most the people I know who have Pixels bought them specifically to run Graphene, I hadn't heard of this of the same thing that happened a few months back!
I'm going to make an extra donation to GrapheneOS right now. Normally I only donate when I buy a new phone, but avoiding this is something I'd like them to know we (the users) appreciate.
That's not the coop's fault, it's mine.
It's not that I want to deny people outside of America, but last time I shipped a small object to France, it got rejected by customs once and ended up costing me $60 USD. Even if everything goes perfectly, it'd be $30 in shipping (for a $55 device).
If anyone in Europe wants to be a distributor I'd be happy to work something out. Me sending one big shipment over there would be tolerable and it could reduce the total shipping costs to Europeans (since shipping things within the EU is much cheaper and easier).
Hardward password database. Encrypted, open source, and handmade by yours truly.
Learn more, donate, or buy one here:
This it to distinguish it from the signet-1.3-n, pictured below.
#m=image%2Fjpeg&dim=1920x1440&alt=A+blue+USB+device+with+a+matching+blue+button.+This+one+has+bolts+visible+in+the+corners+of+the+case+and+a+loop+has+been+attached+to+hold+it+to+a+keychain.&blurhash=%23fMZ1yax%5EbR.a%23WDR-ocjssmaeR%2BWEWXoJs%2Ca%7DWX%7E2Rn9%24t2Rko0ayWXoej%3Dj%5Dj%5Daxocj%5BWEazaeR.jsNHbIt5WEs.oJa%23NKayoej%40oJR-R%2Bj%3Fs.R-j%5Bs%2CWCayoeWXazWC&x=a06f24a4b48bb708de90f89feb01bef4da51deb655935e6a846573660fb9393d
#m=image%2Fjpeg&dim=1920x1440&alt=The+bottom+of+that+same+USB+device.+From+this+angle%2C+we+can+see+the+nuts+that+are+flush+mounted+with+the+bottom.&blurhash=%23bLD3aE9%3D%3B-iofs%2BjEa%7Dofs9WEWroIWBR.ofs%2Cax%7E1xBIuR.R-R-R-WDWCt3obWBflt6jZR*bHkCjYofR.NHWBt5oeoIoJWFR%2BjsbIa%7Es%2BWBR-oKWrbHWCj%3Fs-WCoea%23WD&x=0fe7d9575e0b2bccc48aae6107c5e9666dd13b87fb7be418492535a2161ee43a
This is the older model case which had bolts that were visible from the top and required four M2.5 nuts to hold it together.
I thought the nuts would be needed to avoid the screws from stripping out in the plastic case, but it turns out even the test signet-1.3 devices that I've taken apart and put together numerous times have held up just fine.
I am retroactively naming this model signet-1.3
#m=image%2Fjpeg&dim=1920x1440&alt=A+sparkly%2C+teal+USB+device+with+a+white+push+button+on+top.+No+screws+or+bolts+are+visably+holding+it+together.&blurhash=%23QKUNH4.%7EW-pWqozoJofWVWYjFs%3AkCaxoej%5BR*a%7D%7EX%25MD%25NGaeNGWBazj%5Bads%3AWVWBs%3ARkj%3FofayWANGNGoJoft7t7aeWVogoKWBWVoLs%3Aj%40j%40j%5BM%7Bs%3At7WBj%5Bs%3ARjWVWC&x=2afac7bfd468124fc3b91931d2092ff786997d3f879fb350cd8611d846ca364e
nostr:npub108pv4cg5ag52nq082kd5leu9ffrn2gdg6g4xdwatn73y36uzplmq9uyev6 nostr:npub16v82nr4xt62nlydtj0mtxr49r6enc5r0sl2f7cq2zwdw7q92j5gs8meqha I need a list of the Linux kernel modules that can do http that way I can uncheck them next time I compile my kernel.
You'll probably want to uncheck wireguard and the X.509 parsers in there too if you don't use them (they can be used to do things like verify signatures on an executable before running it, but very few people use that feature).
There are just SO MANY options in the kernel now, plan on taking a few hours to go through it. 🍵
I thought the *exact* *same* *thing* when I saw that code. I guess that's what people are doing these days instead of pxe boot?
It looks like that probably got started with UEFI, which makes sense since this all seems to be related to secure boot.
In other critical vulnerability news, the Linux bootloader had an out of bounds write (attacker controlled length and data) in the HTTP boot code. Vuln has been there a decade. https://github.com/rhboot/shim/commit/0226b56513b2b8bd5fd281bce77c40c9bf07c66d
#infosec #cyber #security #cybersec #CyberSecutity #vuln #vulnerability #SecureBoot
Attention #SelfHosters, if you run a GitLab server, it's time to patch it. The critical vulnerability is an arbitrary file write by an authenticated user.
https://about.gitlab.com/releases/2024/01/25/critical-security-release-gitlab-16-8-1-released/
If you never had open registration and only provision accounts to people you know and trust to not attempt to pwn you, this is much less urgent (as usual). You should still patch though.
And there's one that will go up at The Idea Store. I talked to one of the board members for the store and he was telling me about 18% mortgage rates in the late 70s and early 80s. At one point he paused and said, "but I'm preaching to the choir."
Yup. Pretty sure that one is going to get approved.
I also posted one at the Art Coop
#m=image%2Fjpeg&dim=1440x1920&blurhash=_BI56%3AO%40ZgD%25%7EBocvz00K0w%5Et%2CWAbvxv0Kn3yDx%5B9aW%3AEL4T-BtRZ%24%25NR5s%3AIAM%7CxvRPIokDt6%3Fa%25gIAW9xatRR6E1ocR*bExtaxtQtlR6R%25t8WnoLW-t8xGjFr%3FRijEoM&x=542cde15f96f54a2c91f15dcb9a512e5dc684915bd5d4054ed4d08a539b7c638