one example of a program that did multiple things is sfdisk, it used to make the kernel reload the new partition table but that was not its main job, only changing them. the extra functionality moved to blockdev which is nearer to doing such as it also triggers flushing buffers and i think setting read/write status. i am fully ok with that change as it removes code from a program that doesn’t need it to another that already does similar things so that other partitioning programs like gdisk fdisk or parted could go the same way so that maintainers of the reread-partition-table things can concentrate on one solution at one place (in userspace) instead of opening issues at an unknown number of projects that also alter partitioning. the “do one thing” paradigma is good for developers who maintain the code and i pretty much appreciate their work. if you are up to only want one-day-flies that either die or take huge amounts of resources only for keeping them alive (image of a mayfly in an emergency room and a heart-lung machine attached while chirurgs rushing around trying to enlenghten its life a few seconds more) then you are good with monolithic tools that could hardly be maintained and suck allday as no one wants to fix any bugs or cannot without creating new ones due to the tightened dependency hell it has internally.

the point is not a lack of examples doing wrong but where one wants to be heading towards.

Lol what???

wouldn’t that be the definition of stable?

the computer on voyager 2 is running for 47 years now, they might have rebooted some parts meanwhile but overall its a long time now, and if the program is free of bugs the time that program can run only depends on the durability of the hardware, protection from cosmic rays (which were afaik the problems the voyager probes faced mostly, not bugs) which could be quite long if protected from hazardous environments and maybe using optoelectronics but the point is that a bug free software can run forever only depending on hardware durability and energy supply, in any other way no humans are needed for a veery long time ;-)

the civilisation of diego garcia people (or how the islands are named by them and how they name themselves) are forced away from their homeland ‘right now’, not only in the past.

hawaiian country is destroyed ‘right now’ by their invaders military, not only in the past.

not to mention how ‘law enforcement’ acts on people without that secure pale skin today in the us, which is happening ‘right now’, not only in the past and slavery is protected by us law ‘right now’, not only in the past.

Can sioux people walk their rightful land right now freely and follow their religion? ay, no they can’t, some invadors don’t allow that but keep captured their land ‘right now’, not only in the past.

it happens right now what you seem to want to see as some “history” things, so following your argumentation, the invasion of ukraine was in the past too (right? there are little changes nowadays and ukraine even got some land from russia, right?) so should we:?

• not talk about it as the initial invasion already is history?
• only talk about it cause its “the others” who do it?
• ignore all wars and genocides supported by the west but claim other invaders do be the evil ones but the west to be the goodies despite all the warcrimes committed?
• … (your ideas here to maxbe stop maybe ALL invaders) ?

after how many years some evil act becomes “legalized by history” in your opinion? is it 20 years, 50years or 100years? you already complained about 400years to be too much, so plz tell me what you think is the time a land must be forcefully captured to ‘rightfully’ change ownership to the brutish invader? whatever number “the west” would say would be enough to legalize such past crimes, that would be exactly the number of years the west would in the same sentence tell russia to have to keep ukraine captive so that the status quo would be as legalized as in those countries or cities captured by the west already beeing said to be “historically legitimised” as the west seems to accept that as “rightful ownership” then. since the west seems to never give back once invaded land, it tells russia and israel to actually do the same and capture as much as they can now to “legally own”(style of “the west”) it in a few decades, while israel already invaded and captured land in the (i think) northwest, they are driven by the wests real-world-definition of their so called “rightful ownership” to invade other countries now, and not only in some future.

maybe i didn’t write it for people like you (how could i know u?) but for others who might want to read whole thoughts instead of only cheap and short propaganda. The evil ones always want the masses to forget at least most of what they did and “short and incomplete” is the tool of propaganda.

Right, so we all better just let the Russian regime take whatever it wants,

so they can keep land taken by force like diego garcia, hawaii, sioux nation territory* or countless others were taken by force once and the new “owner” kept and exploited these lands since then? yes, that would be awful.

*(thats also where that “monument” stands that stands as an example to remind the the world which nation will never ever stick to laws, not even to its very own ones, but instead humilitate other peoples religions like it i.e. also does in hawaii)

no! i think we really should make such countries give the taken-by-force land back to their rightful owners immediately plus a compensation that is worth that name plus whatever it takes to undo any destruction or change or poisoning with whatever chemicals done to the land under such evil invaders (thinking of the enewetak atoll right now 😢)

And maybe we should concentrate on the cultures that were completely(!) deported long ago first, to at least give their children back the land that was taken from their parents or grandparents or grandgrandparents a.s.o. so diego garcia seems to be the easiest one, the current invaders there don’t need it for a living and don’t even call it their “home”, so just make them leave the captured land that is not theirs now. rescueing a whole civilisation and culture from evilish invaders was never easier! then of course those who’s ancestors had been deported and enslaved, those need to be compensated for but that cannot be aligned in money especially not since that money happens to be printed by those who’s ancestors did the deportation and enslavement and the money presses were at least indirectly build with slave labour, so other solutions need to be found that are not only accepted by those of the deported families who live today but really(!) compensate for centuries of abuse. also the debt of not yet abolishing slavery needs to be compensated for as it is at least a slap in their faces every day and this should be compensated like a slap in the face of an officer today, but for each single day per affected person living during that time since slavery was first introduced into those laws until it is completely abolished (this would only be the compennsation for not yet abolishing slavery). also those countries where those long ago enslaved had been deported from have to be compensated for all the losses including but not limited to all losses that resulted or may have resulted in development that did not happen due to that deporting and enslaving their families friends and firefighters ages ago. also all damages that happened after that deportation like robbing of resources underground their land that they could not defend any more due to that deporting like robbed diamonds, robbed gold and robbed oil and maybe lots of other robbed resources too. this compensatoon needs to be done throughoutly and complete, just to give the russians that example that the west actually “can” do something good and would stand to rightful living together and not only robbing the world until everything is gone like the west does now. if the west would stand to its so called values, a war against robbers would be a good one, but as it is right now, fighing another robber nation would just be a fight about who can rob more and stands last which is a bad thing or do you actually like that idea?

so on which robber nations side are you? you seemed to want to sound like being on the russian side, so tell me how many nations had been invaded and robbed and enslaved by russia in the last … lets say 400 years ? (next step would be to compare that with western nations to be at least complete when determining which robbers side would be the more civilised one to know which side to stand to - which seemed to me to be your real question here)

Or else they will use nuclear bombs.

i guess giving back sioux nations land, hawaii and diego garcia to their rightful owners and start compensating the damages done to other nations would put real moral pressure on the russians, but until then, the only thing that happens when “the west” keeps bubbling about the values they don’t even fight for within their own captive taken lands is that one evil side shouts at the other but using bombs instead of real actions of good.

have a nice day!

However, systemd makes the system much more secure and reliable as it is

less secure and less reliable day-by-day you meant? systemd introduces needless dependencies ever since as if that was it sole intention ever from its very beginning, which already were used for wide attacks, and exactly those attacks that the people working hard to remove unneeded dependencies for security reasons meant to prevent by things like “do one thing only” (but security was not the number 1 reason for this one i think), systemd instead: ‘lets add another level of that exponential dependency tree from the insecurity hell’ felt like they did this stupid thing intentionally every month for a decade or more.

and stability… if you don’t monitor what systemd does, you’ll never know how bad it actually is. i’ve made custom scripts to monitor systemd’s failures (failing in doing a very primitive of its job) and there are hundreds (actually varying around 200 to 300 sometimes more) of such per day on all our systems for one particular(!) measurement only that was breaking service stability and i wrote a measure-and-fix+monitor workaround. other fixes were not monitored however, only silently fixed by workarounds, thus just unnumbered systemd bugs/instabilities in the dark that stole a lot of work capacity…

if you run distros with systemd, unreliability is your daily experience unless you don’t really care or have never experienced stability before - like running a service (a single process) for 8 years without any interruption then it suddenly stops and you go like “was it maybe an attack? the process died, how could that be? were there any connects from outside at that moment?” not talking about not updating something that long, but “stability” itself CAN be like if you dont stop it, it’ll still run in 10000+ years maybe millions, more likely that humans extincted themselves way earlier than of a process “just dying” by a bug… while systemd even randomly stops things that were running well for no reason (varying) once a month more or less (also varying in what it actually randomly stops, sometimes (2 times) it even stopped ssh on my servers, me asking myself if i should create yet another workaround for systemds buggyness to not locking me out again from network or ratjer go for the real solution for most* of all systemd problems - *see below) on the few standard installs i personally have as i didn’t have the way to automatically replace provider installed distro on VMs in the DC. i want this replacing automatically for the same reason why i don’t like systemd, it causes manual work for a thing that should go automated. however due to systemd’s perpetuated instability i now managed to have this way, and every second working on getting rid of systemd is worth it 100k times. this however does not solve all systemd-introduced problems as the xz attack showed (a systemd-dependency on xz made the infected xz library beeing useful-for-the-atracker during compiletime of sshd binary with which then the attacker could infect the newly built sshd binary),one could still be attacked through systemd’s dependency hell even if one does not use systemd by oneself, but the build machines used for your distro could be affected/infected by systemd’s needless dependencies when “also” compiling for systemd-affected distributions thus there is the risk of becoming a victim of needless-systemd-dependencies while not using systemd at all. however the attack through systemd dependency (and that the public solution was not the removal of needless dependencies only included as source for superflous third party “needs”) made clear that systemd is an overall problem for security that will not be solved quickly but stay just like all windows insecurities will stay as long as they whish to push them to their “users”.

systemd reducing overall security and its unreliability combined with some builtin impediments (i.e. when debugging its defects) is what drove me away from systemd. there are solutions way more stable and way more secure (and way better documented btw) that do not call in for needless dependencies, reducing risks, attack vectors and increases overall debuggability i.e. by deterministic behaviour as an easy example. and none of its important (to me) promises have been fulfilled yet by systemd, drop-in-replacement? have heared that lie thousands of times, but in the last decade i have not experienced it a single time in a distro and it does not seem to be included/finished any more.

for windows users or windows admins a linux with systemd on it IS an improvement in stability, security and of course for updating, yes. but all of that does not come from systemd, rather the opposite is the case, systemd reduces it month by month, thats my experience and thats the most important experience for me, idc what lies whitdepapers tell or what broken promises are believed by anyone or the masses, i want secure and stable servers and services and systemd does not fit in for any of these goals and the time it was still “young” and early problems could be accepted in the hope they get fixed soon are gone, but without those fixes having ever appeared.

sometimes the cat chooses you, sometimes you get choosen by the cat?

maybe its the new standard: USB-Cat

You’re not a journalist

from reading, don’t believe you (oxjox) happen to even know who CriticalResist8 is let alone who he works for or anything else and that what you want to spread as truth about him (her?) really only is your weak personal shortthought quick-response-cause-i-can-insult-someone opinion. But of course i do not “know” if that is true about you even though i happen to believe that now. how could i know?

i didn’t think CR8 was a journalist either, but i wouldn’t state that i knew he wasn’t until i actually know that as a fact. Do you know that as a fact? Did you check his identity, papers or such?

There are appropriate places for your work. This is not the place.

please, oxjox, do not spread untrue informations or unproven guesses as truth about other people here, lemmy is not a place for such or any type of insults. thank you for not doing such again !!

… that phrase “formed on stolen land” … to who reminds me that again?

maybe:

• its a game and
• its meant to be played with your own mind. and
• only because (and only if) your mind happens to have impact on the future, playing in mind with random imaginations comparing them to your situation or projections to the future also happens to have some impact on the future.

maybe 🤷

the OS was not the comparison, but the hardware it runs on (just as @Freefall said) but also you seem to be wrong with your other assumption:

And both those devices are tied to a specific OS.

Which seems not to be the case as install instructions for another OS can be found here (i didn’t try it though) for the mentioned device:

https://wiki.lineageos.org/devices/pdx215/

lineage os still is an “android”, but another vendor with clearly different approach than the original firmware and what hinders you from writing bsd drivers and compiling a bsd kernel for it instead? So i count the Xperia 1 III as NOT bound to any OS or OS vendor.

But despite the way longer possible support/security, freedom of choice and endless other possibilities that often come along with free OS choice, this pure and great advantages weren’t even mentioned there, thus it wasnt an OS comparison as it also wasn’t a bound-to-an-OS vs. absentness of vendor-lock-in-limitation-jungle comparison.

ads with install buttons always are traps. and traps are always bad (except snmp traps, those are good but unreliable)

same way ads at download pages stating “proceed to download” are traps.

also ads at search result pages stating " 1 2 3 4 … next" are traps too.

for the “sponsored” note: there is no boundary here that makes it really clear for what that ‘sponsored’ is meant for. without any boundary it could be for something above it, below it, on the side or maybe even something that opens when you click on “sponsored” itself (seen it this way once). it could be for an ad that just failed to load (noticed the free space above that “sponsored” text? maybe the ad loads a bit later just to shift the real contents down so you “accidently” click on the ad that loads intentionally late for this very accident to be likely to happen?) if you use adblockers - which you should do for security reasons anyway - then you’ll see “sponsored” or “advertising” often even without the ad it was meant for after full load of the page. so a single “sponsored” without a clear boundary showing what would be that sponsored content, does not state anything to be an ad, it is purely meaningless and the lack of such boundary always is intentional to distract the user from what he wanted and trap him somehow.

a clear thumbs-down for ‘zoho assist’ from me here just for paying for (or trying out for free or such) such an advertising type.

And in most cases ads simply beeing ads are traps too. by the very concept of ads.

around 80 % of all things i actually still wanted after i bought them were recommendations by people i met in person. 15 % are things recommended by real persons i met on the internet. around 5% are things i bought without it beeing recommded by anyone (not even an ad) things i still wanted after i bought it due to an ad are nearly not existant. ok, i have stopped viewing television in 1997, have a sticker at my postbox that forbids to throw ads in (works where i live), use dns entries to remove most ads in my network, use browsers/extension that remove most crapjunkwastelitterrubbishads and skip webpages that still show too many ads or too offensive cookieterrorbanners. i use google search only sometimes for comparison of results, but near to zero for actual searching. i feel safe to say i am not that much distracted by ads. (however open source projects and authors do get money from me on a monthly basis, where i want to support them, either direct lly sent from my bank account or indirect).

for me personally an ad just saying “you might like this” drives me away from that product, if it needs or wants an ad, i don’t want it, even more so the more it states how difficult and horrible my life would be without the product or how easy it’ll be with it, go away ad-needing products, get recommended personally by those who actually use it, not by those who want to sell it. period. there is no better ad than true recommendation and its also free, no marketing monkey needs to get payed for bs, only an actually good product is needed… and there we go what types of products actually need ads…

once in my life i discovered a product that i first explicitly not bought for a decade because of the awful ad for it, but bought it another decade later by an absentminded accident and found it to be a good product despite its awful ad. then they increased packaging/reduced the product within to cover up a price increase in trade of more waste production, so i abandoned that product again and found something cheaper more eco friendly instead, yes, the cheaper one is really not as good, but i feel better with it and especially less betrayed by the vendor, so the eco one is the better one alltogether. and also i think its better to buy products where you don’t see ads for cause this behaviour could actually fix this advertising storm in the long run, so in this way its the better choice to buy products that don’t have ads for it.

again:

An ad with an install button is always a trap, even more so when the real install follows a single misclick on it. il’d say it would be quite fair to downvote/zerostars an app for how foulish-sneaky it was positioned in the search results if it is shown like an actual result with a f’ing install button. as its advertising type is always also part of the brand and the product itself. maybe make a sports out of that, klick the clickbait install buttons only to downvote the app for beeing intrusive and deinstall it again without even starting the app once, just to train advertisers to do it right instead of wrong next time. maybe. but for security reasons better don’t do that (at least not with a device with sensitive data on it)

please do not blame users to fall for ads. advertising industry now had centuries to learn to trap users and literally thousands or millions of marketing guys, designers, psycologists, neurologists or whatever only to learn and establish new abusive ways to distract and trap users. but a user only has his own lifespan to counteract that and learn to avoid those manipulations, and he also has to do other important stuff in his life too.

please don’t blame users for beeing humans. blame the industry where they are intentionally abusive, inhumane and/or counterproductive.

maybe there was a mixup of individual datapoints and individual persons.

lets see if that could fit.

as far as i read things in this thread, the whole security is based on exactly these datapoints: Full Name, Date of Birth and SSN (three datapoints) plus username and password for 3 sites (six datapoints) makes 3+6= 9 datapoints per person.

2.9 billion (us) should be 2.900.000.000 (correct me if i’m wrong, but where i live one “billion” is actually “1.000.000.000.000” thus a “bit” more)

divided by 9 those 2.9billion would be ~ 320 million.

on wikipedia they say the us had 331 million people in 2020…

that would fit like an ass on a bucket! lol just to mention that.

have a nice day!

you should definitely know what type of authentication you use (my opinion) !! the agent can hold the key forever, so if you are just not asked again when connecting once more, thats what the agent is for. however its only in ram, so stopping the process or rebooting ends that of course. if you didn’t reboot meanwhile maybe try unload all keys from it (ssh-add -D, ssh-add -L) and see what the next login is like.

btw: i use ControlMaster /ControlPath (with timeouts) to even reduce the number of passwordless logins and speed things up when running scripts or things like ansible, monitoring via ssh etc. then everything goes through the already open channel and no authentication is needed for the second thing any more, it gets really fast then.

no bad politics

😭

The whole point of ssh-agent is to remember your passphrase.

replace passphrase with private key and you’re very correct.

passphrases used to login to servers using PasswordAuthentication are not stored in the agent. i might be wrong with technical details on how the private key is actually stored in RAM by the agent, but in the context of ssh passphrases that could be directly used for login to servers, saying the agent stores passphrases is at least a bit misleading.

what you want is:

• use Key authentication, not passwords
• disable passwordauthentication on the server when you have setup and secured (some sort of backup) ssh access with keys instead of passwords.
• if you always want to provide a short password for login, then don’t use an agent, i.e. unset that environment variable and check ssh_config
• give your private key a password that fits your needs (average time it shoulf take attackers to guess that password vs your time you need overall to exchange the pubkey on all your servers)
• change the privatekey every time immediately after someone might have had access to the password protected privkey file
• do not give others access to your account on your pc to not have to change your private key too often.

also an idea:

• use a token that stores the private key AND is PIN protected as in it would lock itself upon a few tries with a wrong pin. this way the “password” needed to enter for logins can be minimal while at the same time protecting the private key from beeing copied. but even then one should not let others have access to the same machine (of course not as root) or account (as user, but better not at all) as an unlocked token could also possibly be used to place a second attacker provided key on the server you wanted to protect.

all depends on the level of security you want to achieve. additional TOTP could improve security too (but beware that some authenticator providers might have “sharing” features which could compromise the TOTP token even before its first use.

My theory is that you already have something providing ssh agent service

in the past some xserver environments started an ssh-agent for you just in case of, and for some reason i don’t remember that was annoying and i disabled it to start my agent in my shell environment as i wanted it.

also a possibility is tharlt there are other agents like the gpg-agent that afaik also handles ssh keys.

but i would also look into $HOME/.ssh/config if there was something configured that matches the hostname, ip, or with wildcards* parts of it, that could interfere with key selection as the .ssh/id_rsa key should IMHO always be tried if key auth is possible and no (matching) key is known to the ssh process, that is unless there already is something configured…

not sure if a system-wide /etc/ssh/ssh_config would interfere there too, maybe have a look there too. as this behaviour seems a bit unexpected if not configured specially to do so.

antarctica:

• no bad politics
• no wars so far
• people there are mainly interested in science
• no economic abuse or exploitation
• pinguins!
• no air conditioning needed to survive the summer.
• winter is offline time, visitors won’t arrive or leave then.
• last place to stay cool during boomers heritage “heat death of our planet”

well sure, it has downsides too. Next Rollercoaster park is -tbh- unreachable, internet connection is sloo.oo…oow (or did they already finish the submarine fibre cable?) and sunbathing basically only brings you frost bites (if you’re lucky).

However i am not planning to migrate there.

it would be weird if some bus organisations would increase the price (like always) then reduce the service (like always) but -if there accidently was no bus any more- give them shelter for the time the price of that ticket allows them to to wait there for that bus, as they are paying customers then…

it would also be weird if pple would report “empty” but abused floors in business buildings with high networth people too.