ayushnix has quit [Remote host closed the connection]
ayushnix has joined #river
<plumeus>
Can I be a guest if I was never invited?
<NickH>
tiosgz: thanks for the hints. I added a fprintf(stderr, "output->name: %s\n", output->name); to match_profile_output() to reveal that it was using "Sharp Corporation 0x14B9 Unknown".
<NickH>
Sorry, it was "identifier". output->name is the name from the config file.
ayushnix has quit [Remote host closed the connection]
ayushnix has joined #river
fitrh has joined #river
leopoldek has quit [Ping timeout: 245 seconds]
ifreund has quit [Changing host]
ifreund has joined #river
fitrh has quit [Read error: Connection reset by peer]
fitrh has joined #river
fitrh has quit [Quit: fitrh]
kotto has joined #river
TheAnachron has joined #river
ayushnix has quit [Remote host closed the connection]
ayushnix has joined #river
kotto has quit [Quit: WeeChat 4.0.2]
kotto has joined #river
TheAnachron has quit [Quit: TheAnachron]
jao has joined #river
uncomfy has joined #river
jao has quit [Ping timeout: 246 seconds]
ayushnix has quit [Remote host closed the connection]
ayushnix has joined #river
ayushnix has quit [Remote host closed the connection]
ayushnix has joined #river
uncomfy has quit [Quit: uncomfy]
linkert has quit [Read error: Connection reset by peer]
linkert has joined #river
Guest63 has joined #river
linkert has quit [Ping timeout: 250 seconds]
<Guest63>
I'd like to install river. My distribution has it, but it is just the last release which was almost half a year ago. And there are apparently a bunch of changes since then. Are users expected to build the current code themself or is using the last version fine? Especially asking regarding security fixes. If the release version isn't out of date
<Guest63>
with security I'll try that first. If river is one of the "should be built by the user softwares" I will build it of course.
<ifreund>
Guest63: The latest release is still recommended, master branch has more features sure but also significantly more known bugs
<ifreund>
as for security, what is your threat model that makes river a security concern?
<Guest63>
ifreund ok thanks.
<Guest63>
Oh I don't really know that much about security. I just know it is generally good to use software that is updated so vulnerabilitys dont stay. So in this case I thought maybe I should ask. A window manager is a pretty central part of the PC system I think. Maybe I'm stupid and this isn't very important?
Guest63 has quit [Quit: Client closed]
Guest63 has joined #river
Guest63 has quit [Quit: Client closed]
<leon-p>
off the top of my head technically window title and app-ids are untrusted third-party strings, so it's not completely wrong to bring up security in this context, but there are bigger holes to plug first
<leon-p>
which reminds me to check string handling in lswt again
jao has joined #river
ayushnix has quit [Remote host closed the connection]
ayushnix has joined #river
notzmv has joined #river
linkert has joined #river
notzmv has quit [Ping timeout: 245 seconds]
ayushnix has quit [Ping timeout: 246 seconds]
angry_vincent has quit [Remote host closed the connection]
leopoldek has joined #river
Guest19 has joined #river
Guest19 has quit [Client Quit]
linkert has quit [Remote host closed the connection]
JustineSmithies has joined #river
ayushnix has joined #river
ayushnix has quit [Changing host]
ayushnix has joined #river
<ifreund>
giving untrusted programs access to wayland is frankly a terrible idea
<ifreund>
the only real use case that's realistic here is running proprietary programs in some kind of sandbox that limits their access to the filesystem, etc
<ifreund>
there the concern is more information leakage though, and we need the security-context protocol to be able to really do anying meaningful there
aryak has quit [Ping timeout: 245 seconds]
waleee has joined #river
JustineSmithies has quit [Quit: WeeChat 4.0.2]
ayushnix has quit [Remote host closed the connection]