Debian User Forums

You can't dictate what a remote system should do (if its not owned by you) All you can do is protect the perimeter and what's inside. If the remotes belong to you or the company, there are things you must do that include much of what was discussed using either Mac or Windows variations of the apps a...

That hypothetical story I threw together in a minute 30 seconds, is a constant daily affair actually, and doesn't have a simple solution such as "employee training" In part, the security incident didn't actually occur on the local system, apart from the overwhelming misinformation they ar...

Ah - in your example, it comes down to employee training. You can develop a plan yourself based on your own real-world experiences OR, you can search the interwebs for security training and scrape what you feel is important and build your own OR employ an entity to actually have online tutorials. Ma...

Yea no... I'm talking about developing real security solutions, not going over all the trivial nonsense that fails to achieve anything in the real world. Cmon guys, unique ideas do not involve sudo apt get or the debian wiki. Part of any practical security mitigation plan ought to include (but not ...

I don't recall it being mentioned, there are several packages you should install as part of the base. debsecan - Debian Security Analyzer debsums - tool for verification of installed package files against MD5 checksums checksecurity - Debian Security Analyzer Others to consider: chkrootkit - rootkit...

Keep in mind that while many things can be considered a standard practice, security is more of a subjective point of view. What may be considered secure by one may not be considered the same by another, which in turn is based on ones needs. A full fledged secure system is one that is off the wire, n...

Good advice however, even 5.2 (since I run Sid, still does the exact same thing. Just trying to track this down to see if anyone has experienced the same. I suppose going through dmenu 5.1 and above line by line seems to be what's needed. I just feel that I spent too much time over the past, now 4 d...

I have been after this issue for the better of 3 days now. I used dmenu 5.1 (without patches) and when activating dmenu_run with Win+d, the image below looks and works just fine. dmenu5.1.png However, after compiling dmenu 5.3 (again, no patches), when activating dmenu_run, I get the following. dmen...

The Arch wiki is a great read for using dm-crypt however, there does not seem to be an easy way of doing that. I wanted a true full disk crypting some time ago and in the end, Due to a shrinking time-table, I just opted for the normal crypting off the normal install process. I never really cared muc...

In the disaster scenario (e.g., drive failure), I probably would just reinstall. For that instance, I prefer a using Clonezilla either twice or at least once a month and nightly tarballs of select directories that are cycled at 7 days. Nearly perfect for my disaster rebuilds and all under an hour.

One simple command (the syntax may vary):

tar zcf /dev/destination/backup.tgz /home/directory

use the parms: tar -zxvf to decompress the file.
man tar for other bits.

Nothing complex, nothing more needed, very little overhead, no extra applications, zero bloat.

Why not clone the directory and compile it - the instructions and dependencies are listed - seems easy enough.

Hava a look at using dd (disk duplicator)

A very high-level show of what you can do with it is here.

Keep in mind, this is dangerous if used incorrectly - affectionately called Disk Destroyer if not careful.

I for one, appreciate books (if indeed it's going to be in print).
The more there are, the better the coverage. No two books are the same and present (more often than not) differing perspectives on the same material.
I commend the attempt and will consider how I can contribute.

Maybe the question should be, why would openssh need systemd support? I never did prior to systemd For reliable operation under systemd? I don't know. I'm not a developer. I am just a simple user asking simple questions. I don't profess to know the answers, but I can certainly ask what seems to be ...

lindi wrote: ↑2024-03-31 19:33 How would you approach this while still retaining systemd support? By patching openssh to support the systemd-notify interface without using an external library?

Maybe the question should be, why would openssh need systemd support? It never did prior to systemd

Bookmark this for those times when the argument is made that freezing software versions is a security risk. Nah, I think I'll file it under "Why gratuitously linking everything against systemd is a bad idea". As per the KISS principle, security-critical packages like openssh (or, ya know,...

amin11 wrote: ↑2024-03-30 09:14 Why some commands like startx and rmmod aren't executed in bashrc?

Reflect on this thread.

ksu wrote: ↑2024-03-26 13:04 I'd love to boot my box from a $RECYCLE.BIN

Now yer just talking trash

@qoozh - If you don't want to have any (or some) of the directories created, simply comment the ones you don't want to be created, out. For the others that are already created, simply delete them.