soliwilos has quit [Remote host closed the connection]
soliwilos has joined #kisslinux
<niceguy5000[m]>
michaelforney is awesome.
<noocsharp>
velox doesn't use the framebuffer
<noocsharp>
it just uses wld, which a statically linkable drawing library that uses drm
<noocsharp>
mesa implements a lot of apis to do hardware accelerated drawing, whereas on most hardware wld is software based
<noocsharp>
which means its slower, but a lot simpler
<niceguy5000[m]>
Thanks noocsharp, you're the best.
soliwilos has quit [Remote host closed the connection]
soliwilos has joined #kisslinux
<wael_>
Hi
sad_plan has joined #kisslinux
<sad_plan>
o/
<sad_plan>
wael_: perp is a service manager. not an init. unless theres something Im unaware of here. I do however know that the dev of perp made an init, but I havent found its sourcees yet
<wael_>
oyea oops mistake of wording
<wael_>
ye its just a service manager
<sad_plan>
yeah, Ive used it on oasis, but not elsewhere
<wael_>
also oasis actually mounts most of the important directories like proc and dev and pts via fstab
<wael_>
not via init scripts
<wael_>
thats why the init scripts are so fucking short
<wael_>
sad_plan: well how was perp
<sad_plan>
I know. I had to wrap my head around that myself.
<wael_>
could it be a viable replacement for svc/runit
<sad_plan>
I suppose it can. its simple. the service scripts are somewhat similar to runits
<wael_>
hmm
<wael_>
it even has logging
<wael_>
it literally IS the replacement for me
<sad_plan>
b0llix.net, then go to perp
<sad_plan>
theres a README and everything if you havent alreadfy found it
<sad_plan>
manpages even
<sad_plan>
its supprisingly well documented on his site imo
<wael_>
only problem is that i dont really need an init like this
<wael_>
i can just ::respawn my services in inittab
<wael_>
oh yeah i cant kill them or stop them easily
<sad_plan>
Oasis doesnt use inittab. but each to their own. I like having it more simiar to oasis' setup.
<wael_>
well yeah
<sad_plan>
I find not using a inittab to be easier to use anyway
<wael_>
cuz they use sbase/ubase and the init used doesnt support it
<sad_plan>
correct
<wael_>
after reading the entire rc man page before i slept last night i really want to script in it now lol
<sad_plan>
do it. mid will be proud of you
<sad_plan>
rc is the shit. I wanna learn it too.
<wael_>
how was oasis's hotplugd btw
<wael_>
i dont think it sets permissions and groups on files like mdevd does in the mdev like a boss config
<sad_plan>
Ive actually not tried it iirc, so Im not sure.
<sad_plan>
but its just a simple rc script
<wael_>
it comes with oasis thou
<wael_>
> hotplugd reads kernel uevents via netlink and for each one spawns
<wael_>
the /etc/hotplug script with an environment consisting of the uevent
<wael_>
keys and values.
<wael_>
hotplugd is C
<wael_>
i guess hotplugd wont work
<wael_>
there's suckless's smdev
<sad_plan>
right. Ive not looked into it, as I havent needed it.
<wael_>
but it doesnt daemonize and im not sure how i can use it as a device manager
<sad_plan>
dilyn used that before, and so did I. it works just fine when properly configured
<wael_>
also, what is libudev-helper zero thing and what does it do?
<sad_plan>
I would suppose its libudev-zero, like we have. but Ive not checked tbh :p
<wael_>
it's used for 'hotplugging'
<wael_>
but i thought mdev does that
<wael_>
mdev just sets permissions? how about basically all the other things in mdev.conf, will they not get hotplugged
<wael_>
illiliti:
<wael_>
i dont see why device manager would be started and then killed by baseinit as well
<sad_plan>
I would recall the answer to that, but I forgot. it was asked a while ago actually
<sad_plan>
search the log
<wael_>
what log
<sad_plan>
irc log
<wael_>
no results
<sad_plan>
hm
<sad_plan>
couldve sworn it was asked recently
<wael_>
jesus man rc's syntax is just so beautiful
<wael_>
whats the init you use again? lol
<sad_plan>
rich felkers minimal init
<wael_>
link pls
<sad_plan>
its baseically sinit, but without the signaling
<sad_plan>
yes sir
<wael_>
well is sinit any better? sinit comes with a shutdown.c thing
<sad_plan>
kernel calls the init itself. sinit just needs to know where it is. its configured in config.h file. this covers the first 2 lines atleast. rc.shutdown is called separatly
<sad_plan>
service manager is called in rc.init
<wael_>
and service manager calls getty
<sad_plan>
gettys has to be started either in rc.init, or by service manager. I call them in rc.init, but oasis has perp starting it
<sad_plan>
that mostly covers all of it, doesnt it?
<wael_>
well i use busybox init
<sad_plan>
you may also wish to use a rc.local, which replaces kiss' inithooks
<wael_>
i do want to use toybox some time but it did give me incompatibilities due to some missing flags
<wael_>
i wont use sbase or ubase either because i don't want to grow up depressed
<sad_plan>
thats the issue with niche software
<wael_>
i love busybox
<sad_plan>
then just use busybox
<sad_plan>
busybox is great, but I find it a tad bit too big. I dont need everything it provides
<sad_plan>
I could however create a new config for it, to fix my other.. issues
<sad_plan>
that said, unless I just use oasis, which Ive initially intended
<wael_>
yeah idk about busybox
<wael_>
it's really huge but it's literally lacking features toybox has
<wael_>
i don't get it
<sad_plan>
I cant tell you what to use, but commiting to using something would make your life a bit easier, even if you choose to use s/ubase. if something is up, youll find a solution for it..
<wael_>
i want verbose flags and colors!!!!!!!!!!!!!!!!!
<sad_plan>
then us w/e has exacly that
<wael_>
wat
<sad_plan>
use what has exacly what you need
<wael_>
so toybox
<sad_plan>
then commit to toybox
<wael_>
it provides a tar implementation right
<sad_plan>
correct
<wael_>
but its in pending right
<wael_>
mostly all programs i care about are in pending honestly
<sad_plan>
I dont recall
<sad_plan>
things in pending are likely to still work, just lacks some flags that landley is planning to add
<wael_>
oh its in posix/
<sad_plan>
youll just have to check them first, to actually see whats lacking or not
<sad_plan>
alot of stuff in pending/ does work. just might not on par with busybox
<wael_>
toybox's ls literally looks better and has better padding
<wael_>
impossible
<wael_>
literally adjusts the output upon the length of the information
<wael_>
so good
<sad_plan>
youre right
<sad_plan>
more consistent
<wael_>
thats im
<wael_>
that it
<wael_>
im switching
<sad_plan>
lol
<wael_>
testuser: is there a way to do kiss a | grep pkg | xargs kiss a for each newline?
<wael_>
it will always do one alternative at a time
<sad_plan>
what wrong with changing one at a time?
<sad_plan>
what was the flag you mentioned on sbase ls which put an file indicator or w/e you called it? -F?
<sad_plan>
puts a / behind dirs, and @ behind symlinks
<sad_plan>
was that what you ment?
<testuser[m]>
-n1
<testuser[m]>
For xargs
<testuser[m]>
Or p1 idk
<testuser[m]>
Whatever the flag is for changing no. processes
<wael_>
error invalid argument
<wael_>
error alternative pkg null doesn't exist
<wael_>
yeah idk eitehr
<wael_>
i dont wanna do a for loop
<wael_>
-L is what i want
<wael_>
and is listed in POSIX
<wael_>
but not implemented in busybox or toybox
<wael_>
mfw
<wael_>
sad_plan: I know you don't use toybox anymore, but what's with this mount: /dev/nvme1n1p2>/: device or resource busy error
<sad_plan>
when I used toybox, mount gave a nonfatal error. can you bypass it with just || continue or something?
<wael_>
but it means it basically won't mount / as rw right
<sad_plan>
not neccessarly
<sad_plan>
do a || /bin/sh after it in the rc.init script. see if it throws you into a shell. then just do a touch /file
<wael_>
I'll ser
<sad_plan>
I had to do that on each one, as it kept erroring for me. its not a fatal one though, hence why you can just do a || continue, or || /bin/sh
<sad_plan>
aslong as you get a shell, you can always continue past that step
<wael_>
toybox mdev doesn't daemonize, I'll actually have to look into hotplugd/mdevd/smdev
<sad_plan>
toybox mdev might be broken. just use mdevd instead untill you get things up and running properly
<wael_>
okey
<wael_>
wtf did toybox do to make X break wth
<sad_plan>
thats a new one
<sad_plan>
any errors?
<sad_plan>
are you using sx or xinit?
<wael_>
its um
<wael_>
related to modprobe of toybox
<wael_>
i had a patch that fixes this
<wael_>
but it seemingly didnt apply
<wael_>
yeah the patch should work wth
<sad_plan>
hm. cant load the proper modules neccessary perhaps? xorg-server loads/unloads modules dynamically so
<wael_>
nvidia-modprobe does something that makes it fail
<sad_plan>
hm
<wael_>
doesn't seem to do anything that's related to toybox
<wael_>
not a single program is launched
<sad_plan>
idk
<wael_>
hmmm
<wael_>
WHAT
<wael_>
well
<wael_>
nvidia-modprobe just launches modprobe
<wael_>
and only works under root
<wael_>
but how tf did it load module as normal user
<sad_plan>
ask testuser[m]
<testuser[m]>
its suid
<wael_>
modprobe is linked to busybox tho
<wael_>
toybox is 4555
<wael_>
busybox is 0755 while busybox-suid is 4755
<wael_>
do I need to make a toybox-suid as well?
<sad_plan>
yes
<wael_>
gee
<wael_>
ok I'll see how
<wael_>
toybox is 4555 though i don ge it
<sad_plan>
shouldnt it be 4755? 555 is not executable
<wael_>
let me change it and see what happens
<sad_plan>
chmod +x /bin/toybox
<sad_plan>
yeh
<wael_>
its somehow executable though
<sad_plan>
that cant be right with 555 as perms
<wael_>
>nvidia-modprobe works
<wael_>
is this safe to do
<sad_plan>
what
<sad_plan>
wym?
<sad_plan>
having toybox as suid?
<wael_>
is it safe to make toybox 4755 without toybox-suid
<wael_>
Hes
<wael_>
Yes
<sad_plan>
sure. but is it optimal? perhaps not. you might wanna separate it like we do for busybox
<sad_plan>
dilyn just used it like that, and so did I
<wael_>
how did you guys do it
<wael_>
you still have the build right??!?!?!?!?!?!?;?!!?;(!+;(++?;(+?
<sad_plan>
just suid'd the whole thing and be merry on my way
<sad_plan>
only in static repo
<wael_>
oh so you didn't do toybox-suid
<sad_plan>
chmod gu+s "$1/usr/bin/toybox" is what Ive used. same as dilyn
<sad_plan>
nope
<wael_>
hi testuser: is this safe
<sad_plan>
except having su I dont think I used anything that would need it now that I think about it
<wael_>
wdym?
<wael_>
btw mdevd forgets to set root:input on SOME device files so
<wael_>
like literally the only important device files (keyboard and mouse)
<sad_plan>
su would need suid. I didnt use modprope i.e. I mightve not needed suid at all if I dropped su
<sad_plan>
you only need suid if said util needs it
<wael_>
nvidai-mdopagoerbe
<testuser[m]>
wael: no
<testuser[m]>
Don't ever do that
<wael_>
y
<testuser[m]>
Bruh
<testuser[m]>
Everything runs as root
<wael_>
OH
<wael_>
how am i supposed to make a .config and .config-suid like kiss build
<wael_>
i mean, not that i know what programs need suid anyway
<wael_>
yeah idk what programs to exclude and include for usid
<sad_plan>
just do it like busybox does it
<wael_>
what
<sad_plan>
su needs it iirc. modprobe might do? you just have to figure it out
<sad_plan>
create one config with things that does not need suid, then create a new one, which enabled things that do need setuid
<wael_>
the diff from config and config-uid is fucking 2000 lines long
<sad_plan>
this is how we do it with busybox
<wael_>
how do i know
<wael_>
ah
<wael_>
busybox-uid --list
<sad_plan>
yes
<sad_plan>
thats probably a good reference
<wael_>
ok
<wael_>
on it
<sad_plan>
then in the buildscript, build the regular one first, rename it to non-suid, build suid stuff, rename it to toybox-suid, then rename non-suid back to toybox. this is how we do it on the busybox buildscript
<illiliti>
i've checked bsd xargs and it does the right thing
<illiliti>
with 99% probability it is toybox bug
<illiliti>
you can report this bug to toybox. i won't cuz i don't have toybox installed to test fixes
<wael_>
i cant imagine that gnu coreutils has this same issue too
<wael_>
illiliti: what sort of fixes
<wael_>
you can just compile the literal toybox binary and just do toybox xargs
<illiliti>
i don't want to
<wael_>
alright ill just make an issue with a small description
<sad_plan>
I tried your toybox build, to see if the patch worked on my end, and I belive it does, but toybox doesnt build for me for some reason. it also uses unsupported sort flags it seems.
<sad_plan>
bunch of these undeclared functions that errors out for me http://0x0.st/o7Ir.txt
<sad_plan>
you dont get those wael_ ?
<wael_>
try using gnu patch
<sad_plan>
perhaps
<sad_plan>
its the same
<wael_>
well idk werks for me
<sad_plan>
probably s/ubase and pax
<wael_>
sad_plan: yes
<wael_>
i had this exact issue a long time ago
<wael_>
it is
<wael_>
its sbase sort not supporting flag
<wael_>
i had to change sort to busybox sort and that remained in a posix patch i made for 0.8.8
<sad_plan>
Im not supprised it sbase. its often mentioned how broken people think sbase/ubase is. and while I still use it, I cant really refute it tbh
<wael_>
i love sbase but its like the type of gf that is sooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo boring you finna cheat wit toybox
<sad_plan>
lmao
<wael_>
is there a good init like perp? I'm very surprised perp has service logging
<sad_plan>
I mentioned the dev has an init supposedly, but Ive yet to find its sources
<sad_plan>
its also partially my main I use for github, among couple other things
<wael_>
so why don't you use it irc
<sad_plan>
separation. the word I was going to use was just to difficult to write
<sad_plan>
compartmentalizing stuff is great
<wael_>
jrnwkxinmwuxanxiwnudsnxj
<wael_>
why compartmentalizing irc and github or etc
<sad_plan>
because putting all your eggs in one basket is bad. now, im not targeted or anything, but if you use same mail, same username, same password everywhere. youre ONE breach away from haing all your stuff breach.
<sad_plan>
if you separate things, have separate email addresses, passwords, usernames, its way more difficult to pinpoint if this is you or not
<wael_>
well thats interesting
<wael_>
but it wouldnt differ if people know if this is you or not ?
<sad_plan>
well you know both are the same, but not everyone else. though Im not going to make a fool of myself and think that people wont figure that out if they would look for it, but thats not really that important to me anyway
<sad_plan>
I just wanted to separate it. as a basis, and a bit of a habit
<sad_plan>
even if you know, and couple others do, it would still require some work to figure it out initially. which is part of the point
<sad_plan>
Im sure if nsa or any other of the alphabet boys would go after me, my opsec would shatter pretty quickly anyway, but I dont have that high threat model
<wael_>
I like to have the same name everywhere so people can identify me easily
<sad_plan>
I get that, but that also means if a bad actor wanted to do something malicous to you, it makes their job easier
<wael_>
what sort of something malicious would they do?
<wael_>
they would already get some info from others that I am this in this platform and that in that platform etc
<sad_plan>
all kinds of things. impersinating, ID theft. the list goes on
<sad_plan>
impersonating
<wael_>
Id theft?
<sad_plan>
sure, thats also an issue. if you choose not to give facebook access to your contacts, it doesnt matter most of the time, because everyone has already given them access to theirs, which gives them most of the info theyd get otherwise
<wael_>
I mean I already use my real name everywhere so
<sad_plan>
yes
<sad_plan>
yes, but not your whole name, not your social security number
<sad_plan>
Im not trying to make you paranoid or anything, but things can get out of hand very quickly when websites dont uphold decent security
<sad_plan>
if you give website A your home address, and they get a leak, someone now has access to your home address. lots of things can be done by that
<wael_>
any tips for using the same name everywhere
<sad_plan>
maybe they even get your phonenumber, name, date of birth
<sad_plan>
stop using the same name everywhere
<sad_plan>
I cant make you care for it, but if you feel that it might be worth protecting, then yeah.
<wael_>
I would if I had a cool username generator
<wael_>
but I do not
<wael_>
I only have one alias and its extremely long
<wael_>
one other*
<sad_plan>
you can use a passwordmanager to generate UUID numbers. lots of people do that on reddit. ive seen them on github aswell
<sad_plan>
or just a random string of text/numbers etc
<sad_plan>
reddit i.e. give you the option to choose a pregenrated username, like mine. those are good most of the time
<wael_>
a cool name not 10571038184 or djwp or cjak or xp96
<wael_>
but I can take a kickass name like 20h or uriel
<illiliti>
the most important thing is to avoid connecting your real life to internet
<sad_plan>
then figure something out then
<illiliti>
then same nick does not matter
<sad_plan>
^ what illiliti said
<sad_plan>
but separating them makes it even worse for a bad actor to correlate stuff about you
<illiliti>
yes
<illiliti>
if you're hiding from nsa, of course you must use different nicks
<wael_>
ive always wanted to seperate real life and internet
<wael_>
but to do that i want a cool name but ive tried and gave up
<wael_>
though, theres people here that dont do that
<wael_>
though they atleast do it better than me
<sad_plan>
anything is still better than nothing
<wael_>
the first thing I must do for this is to remove the VPS and the domain behind wael.cc
<sad_plan>
I would start with passwords really. password manager is way to go
<wael_>
im already using 128 length passwords everywhere lol
<sad_plan>
then youre fine. good on you wael_ :D
<wael_>
wait so im fine?
<sad_plan>
youre partially safe against breaches. the absolute worst I see is people using same password/username/mail everywhere
<sad_plan>
if youre above that, youre better than 99% of the population atleast
<wael_>
yay
<wael_>
personally i think id like to seperate emails
<sad_plan>
and if youre using strong passwords as you said you were, theyre not going to crack your password any time soon either
<wael_>
i really wanna give up wael.cc and just use some random services
<sad_plan>
separate emails is also great. its an additional layer of obscurity
<sad_plan>
email aliases is really a great option there
<sad_plan>
what do you use your site for anyway? or the VPS really
<sad_plan>
appart from hosting your git server
<wael_>
gimme a moment
<sad_plan>
I wanna create my own website, but I have no clue what to put on it. except perhaps a blog, but wth would I even blog about? I could have a selfhosted git server, but why would I pay for it when codeberg among others are free?
<sad_plan>
sure
<wael_>
reload wael.cc
<illiliti>
sad_plan: email aliases? you mean email service that forwards mails to your real email?
<sad_plan>
yes
<illiliti>
they're bad
<sad_plan>
its a 3rd party, I know
<sad_plan>
it works depending on your threatmodel
<illiliti>
they harvest your mails
<illiliti>
and sell to google
<sad_plan>
you can however selfhost some of them
<sad_plan>
maybe they do. Ive not heard bad things about those ive used in the past, but I dont really use them anymore
<sad_plan>
now your site works wael_
<wael_>
yeah i had it disabled for a while
<wael_>
see the links page? is that safe to keep?
<sad_plan>
why?
<wael_>
thats probably just doxxing myself lol
<sad_plan>
sure. the name wael doesnt really give them much
<wael_>
my city is given out btw
<sad_plan>
wait, are you 15?
<wael_>
what they can gain from my city and my name is that im of arabic heritage
<wael_>
thats for sure
<wael_>
um yes
<sad_plan>
I didnt see the city though
<sad_plan>
cool
<sad_plan>
nice to see these youngins use linux
<wael_>
im very good at privacy
<wael_>
100%
<wael_>
i know someone who installed gentoo at 12 lol
<wael_>
or 13 im not sure
<sad_plan>
even so, im sure among 4,7m finding a kid named wael might not be the easiest task
<sad_plan>
I wish I started with linux at that age. I would been a god at this point lol
<wael_>
I thought 4.7m was literally how big the city was in region
<sad_plan>
oh, no lol
<wael_>
however
<sad_plan>
says its 1600km
<wael_>
nvm giving out any other info is gonna be doxxing myself
<wael_>
Hi
<wael_>
I love my governments privacy
<sad_plan>
its already there though
<wael_>
Nono you can get even more if you just get one piece
<sad_plan>
maybe, if they attack your vps
<sad_plan>
I wouldnt concern myself with the alphabet boys though
<wael_>
about that, how can I secure my vps?
<wael_>
relevant people to ask are like ioraff and testuser
<sad_plan>
I suppose so.
<wael_>
I think I've done plenty already i hope
<sad_plan>
I dont have a vps, nor do I have much knowledge about running server or anything like that
<sad_plan>
if you have secured your ssh login, then your also above the rest
<sad_plan>
like disabling the root login, and password login. using only key authentication is initially the best iirc. but dont take my word for it
<sad_plan>
I like some of your links though. shellscripting links, aswell as you having oasis there
<wael_>
I really wanna try out oasis one day
<wael_>
I keep praising it despite never touching it
<sad_plan>
why dont you just do it today?
<illiliti>
i would also encrypt disk on vps
<sad_plan>
its not that hard really.
<sad_plan>
^
<sad_plan>
would that even matter if the data is never at rest though?
<sad_plan>
if its not at rest, it would remain unencrypted
<illiliti>
imagine your server has been seized
<illiliti>
disk, everything
<sad_plan>
point taken
<wael_>
well um its too late to encrypt now lil
<wael_>
lol
<wael_>
I have many services on there, one of which being matrix and git
<sad_plan>
should still be able to encrypt it. illilti might be the better person to tell you how. ive only encrypted with luks on fresh install of archbased distros
<wael_>
I'm using kiss on my server
<wael_>
great choice I know
<sad_plan>
yeah, others have also done so. you can still encrypt it though
<illiliti>
luks has in-place encryption, but i'd rather do reinstall
<wael_>
or alternatively, I can seize my own vps and just use vern.cc or some other community like sdf
<sad_plan>
lots of possibilites
<illiliti>
also
<illiliti>
enable fucking ipv6 already
<wael_>
I don't know a good email service other than pm and disroot that don't have 'wael' taken
<wael_>
illiliti: me or
<illiliti>
you yes
<wael_>
I have it enabled tho
<illiliti>
i don't see
<wael_>
how do you see
<wael_>
via https?
<illiliti>
git.wael.cc has no AAAA records
<wael_>
I don't have git port on ipv6 on my firewall do
<wael_>
so
<wael_>
I'll do that
<illiliti>
ok
<wael_>
is ipv6 really that important?
<testuser[m]>
I still haven't been able to figure out kernel ipv6 config for server. I enabled all ipv6 related stuff but dhdpcd just doesn't get an ipv6 address
<testuser[m]>
Works on arch
<illiliti>
it's 2023 men
<wael_>
wat
<testuser[m]>
wael: does ur dhcpcd get ipv6?
<sad_plan>
illiliti: I have ipv6 disabled on kernel and elsewhere, as sdhcp doesnt support it. do you scream on the inside when you read it?
<illiliti>
yes
<sad_plan>
I figured as much :p
<wael_>
testuser: you don't need dhcp
<wael_>
the ip is always static
<wael_>
so um
<testuser[m]>
Whatever
<testuser[m]>
Do you get an ipv6 address
<wael_>
>I'm using sdhcp
<wael_>
yes
<testuser[m]>
can you connect to stuff
<wael_>
yes
<wael_>
that's how matrix works
<wael_>
matrix needs ipv6
<testuser[m]>
Send kernel
<sad_plan>
wael_: do you use sdhcp too?
<wael_>
I'm unironically using sdhcp in server yes
<wael_>
testuser: omw
<wael_>
uh
<wael_>
uhhh
<illiliti>
i don't think you even need dhcp in server
<wael_>
did I seriously lose my server kernel config
<wael_>
fuck I did
<wael_>
I didn't enable config.gz either lol
<wael_>
I find it weird because I used to have a linux-server package but it dissapeared
<soliwilos>
If the package is installed somewhere, you can grab it from there (the server?).
<wael_>
wasn't even installed
<wael_>
it seems I copied the entire raw kernel binary over fucking ssh
<soliwilos>
If you have /proc/kallsyms you can sort of figure out enabled drivers, at least.