Posted: Sat 30 Apr 2011, 02:38
Fido will save you
http://bkhome.org/blog/?viewDetailed=02240
http://bkhome.org/blog/?viewDetailed=02240
Lobster wrote:Fido will save you
http://bkhome.org/blog/?viewDetailed=02240
(old)Puppy Linux Discussion Forum
READ-ONLY Archive
https://oldforum.puppylinux.com/
Run puppy as spot
Page 2 of 5
Posted: Sat 30 Apr 2011, 12:02
Posted: Sat 30 Apr 2011, 14:56
Okay, to avoid letting Fido in the house we could try cleaning up spot.
Barry wants the "browser working perfectly in every respect. That would include GTK themes, SSL, font rendering, etc. Plus, a mechanism for downloading files outside of /root/spot is needed." He also wants "drag-and-drop browser to the desktop and other rox windows."
My spot browser system (that is a total of 26 bytes) works with drag-and-drop. I just copied it from /root/ to /usr/share and I can drag it to the desktop. My SeaMonkey fonts in spot look fine. How is font rendering tested? Mine is not using my GTK theme -- I'll look at that. SSL? How is this tested? SSL for what? Internet banking? Web hosting? Privacy? Security? Downloads outside of /root/spot? It looks like that might cancel browser-in-spot security.
^
Barry wants the "browser working perfectly in every respect. That would include GTK themes, SSL, font rendering, etc. Plus, a mechanism for downloading files outside of /root/spot is needed." He also wants "drag-and-drop browser to the desktop and other rox windows."
My spot browser system (that is a total of 26 bytes) works with drag-and-drop. I just copied it from /root/ to /usr/share and I can drag it to the desktop. My SeaMonkey fonts in spot look fine. How is font rendering tested? Mine is not using my GTK theme -- I'll look at that. SSL? How is this tested? SSL for what? Internet banking? Web hosting? Privacy? Security? Downloads outside of /root/spot? It looks like that might cancel browser-in-spot security.
^
Posted: Sat 30 Apr 2011, 15:45
I think gmail uses SSL; it will probably work in Spot. Fonts generally get installed to /usr/share/fonts, so will need permissions. I use msttcorefonts, so would have to place them somewhere else to work with SPOT.Bernie_by_the_Sea wrote:Okay, to avoid letting Fido in the house we could try cleaning up spot.
Barry wants the "browser working perfectly in every respect. That would include GTK themes, SSL, font rendering, etc. Plus, a mechanism for downloading files outside of /root/spot is needed." He also wants "drag-and-drop browser to the desktop and other rox windows."
My spot browser system (that is a total of 26 bytes) works with drag-and-drag. I just copied it from /root/ to /usr/share and I can drag it to the desktop. My SeaMonkey fonts in spot look fine. How is font rendering tested? Mine is not using my GTK theme -- I'll look at that. SSL? How is this tested? SSL for what? Internet banking? Web hosting? Privacy? Security? Downloads outside of /root/spot? It looks like that might cancel browser-in-spot security.
Posted: Sat 30 Apr 2011, 16:14
You shouldn't need write permission to use a font. Spot should still have read permission on places like /usr/share/fonts.jpeps wrote:Fonts generally get installed to /usr/share/fonts, so will need permissions. I use msttcorefonts, so would have to place them somewhere else to work with SPOT.
Posted: Sat 30 Apr 2011, 17:08
You're right, they're available. They didn't initially show up because my setting are in /rootrcrsn51 wrote:You shouldn't need write permission to use a font. Spot should still have read permission on places like /usr/share/fonts.jpeps wrote:Fonts generally get installed to /usr/share/fonts, so will need permissions. I use msttcorefonts, so would have to place them somewhere else to work with SPOT.
run puppy as spot
Posted: Sat 30 Apr 2011, 18:39
Browsing as root and spot will confuse everybody
Downloads
The only change in our behaviour is that installing directly from browser will not work for spot. It is just 1 click more if Downloads is opened in rox.
But the entire discussion is for safety of especially new users (and reviewers' opinions about puppy)
So
- browsing as root should become not possible anymore.
- /root/Downloads will be owned by spot
- changes in browser configuration: no open as petget
- offering only directories writeable by spot
HTTPS
no problem, I have already inspected my banking account as user spot
Drag and Drop no problem to drag text from browser to root's console or geany
So I am very confidont
Downloads
The only change in our behaviour is that installing directly from browser will not work for spot. It is just 1 click more if Downloads is opened in rox.
But the entire discussion is for safety of especially new users (and reviewers' opinions about puppy)
So
- browsing as root should become not possible anymore.
- /root/Downloads will be owned by spot
- changes in browser configuration: no open as petget
- offering only directories writeable by spot
HTTPS
no problem, I have already inspected my banking account as user spot
Drag and Drop no problem to drag text from browser to root's console or geany
So I am very confidont
Posted: Sat 30 Apr 2011, 20:30
In Quirky 1.3 and Wary 5.11, sound doesn't work in Spot. You can fix it by increasing permissions
Code: Select all
chmod -R o+rw /devSo what happens to a user with a frugal install inside a Windows partition whose savefile isn't big enough to hold a download?L18L wrote:browsing as root should become not possible anymore.
Posted: Sat 30 Apr 2011, 23:10
Does Windows understand Linux permissions?rcrsn51 wrote:So what happens to a user with a frugal install inside a Windows partition whose savefile isn't big enough to hold a download?
On a Linux partition, I made a download directory, outside pupsave, with spot as
the owner. Spot can read and write to this directory.
Then of course that directory is spot's default download directory. To keep
things more orderly, spot can make subdirectories within it, before committing the download.
~
Posted: Sat 30 Apr 2011, 23:33
That's the point. Forcing users to browse as Spot means that they can only download into a Linux partition.Does Windows understand Linux permissions?
Posted: Sun 01 May 2011, 05:30
Posted: Sun 01 May 2011, 05:33
Believe I'll stick with running as Root.
Posted: Sun 01 May 2011, 08:16
run puppy as spot
Posted: Sun 01 May 2011, 08:50
I admit, I had not been thinking about windows when making that statement. It has been influenced by Bruce's commentrcrsn51 wrote:...So what happens to a user with a frugal install inside a Windows partition whose savefile isn't big enough to hold a download?L18L wrote:browsing as root should become not possible anymore.
Now there is no root .mozilla. I changed things so if I accidentally try and start Firefox as root, it won't run. Basically, modifying start scripts to verify the user is spot.
I don't have a windows partition and can now only speculate about what would happen in that situation:
if the savefile is not big enough the system will request to increase the savefile. The savefile itself is .sfs, permissions in windows(none= all =777). Inside the savefile there are permissions set linux files.
Of course this needs to be confirmed by real tests, volunteers to the rescue please.
Until that I stay confidont.
Posted: Sun 01 May 2011, 09:34
As you all know I am not the sharpest knife in our collective drawer
So take this as a friendly teaser.
Would it be easier to do without a pupsave file? English user don't need it for changing the keyboard map to no or dk or de or fr or es or whatever.
Each time I try a non puppy linux distro I end uo going to Terminal and writing setxkbmap se to know where to find / or [ or something else needed.
What else does one need a pupsavefile for. Time. We all live in different time zones. Could that be handled in some other way?
Sure one want to retain the Firefox bookmarks and kind people tell me to use a free online sync but that makes me to rely on them getting enough ads that pay for it or they go pay or go broke.
so I have tried to solve this by exporting bookmarks as a html and then one click on these and add them as bookmarks maually each time at boot when one need them. Cumbersome but one need no pupsavefile.
What else is it needed for. oh yes all the other changes that people love. Switch the background image and change style and icons and how the menu list things and so on. Screen savers and what not.
So could one just load such as an sfs file instead using SFS-Exec that Seaside has a thread about? I don't know just trying to think
So take this as a friendly teaser.
Would it be easier to do without a pupsave file? English user don't need it for changing the keyboard map to no or dk or de or fr or es or whatever.
Each time I try a non puppy linux distro I end uo going to Terminal and writing setxkbmap se to know where to find / or [ or something else needed.
What else does one need a pupsavefile for. Time. We all live in different time zones. Could that be handled in some other way?
Sure one want to retain the Firefox bookmarks and kind people tell me to use a free online sync but that makes me to rely on them getting enough ads that pay for it or they go pay or go broke.
so I have tried to solve this by exporting bookmarks as a html and then one click on these and add them as bookmarks maually each time at boot when one need them. Cumbersome but one need no pupsavefile.
What else is it needed for. oh yes all the other changes that people love. Switch the background image and change style and icons and how the menu list things and so on. Screen savers and what not.
So could one just load such as an sfs file instead using SFS-Exec that Seaside has a thread about? I don't know just trying to think
DangerDog!
Posted: Sun 01 May 2011, 09:40
But that's not where you get the download that's in Lobster's link:nooby wrote:http://bkhome.org/blog/?viewDetailed=02240
That is the link to Fido on Barry's blog on my computer
http://distro.ibiblio.org/quirky/pet_pa ... 2-1-w5.pet
I’m working on DangerDog! creating the most dangerous Linux distro possible -- always root, no firewall allowed, javascript and flash always enabled, unlimited write and exec permissions given to the world, no encryption passwords, browser user agent announcing DangerDog! and inviting well-wishers to send fleas, advertisements, popups, bombs and dangerous toys.
However there’s a trick to DangerDog! that makes it the safest Linux distro possible. Guess what that trick is. I can’t tell you because that might discourage well-wishers from sending all those goodies. Puppies need bones to bury.
Getting back on topic maybe a warning sign when Puppy boots up might satisfy some critics and chase off some of the paranoids Puppy seems to attract.
Posted: Sun 01 May 2011, 09:51
I should use the second picture there as a background pic and send to my Ubuntu luvr old work mate
Posted: Sun 01 May 2011, 09:55
The reports of my birth are greatly exaggerated
fido
Re: DangerDog!
Posted: Sun 01 May 2011, 11:35
And I won't tell...Bernie_by_the_Sea wrote:..Guess what that trick is. I can’t tell you because that might discourage well-wishers from sending all those goodies. Puppies need bones to bury..
Bernie, please make sure that root won't be able to install any additional software and forget everything read in Linux for Dummies...
Anyhow in case of additional software the culprit won't be puppy but root himself.
DangerDog lets me think about bones serving as honeypot for puppies.
(forum software buggy? Cannot make correct URL )
Posted: Sun 01 May 2011, 11:55
http://en.wikipedia.org/wiki/Honeypot_%28computing%29
Test of manual entry of url one need % 2 8 and % 2 9 maybe
Sorry me feel dense but Honeypot Puppy then would be kind of totally open to the outside world and presenting a kind of Sandbox that made the impression that they have looked around and left a keylogger and back door and whatever behind while in actual life they only had access to a fake version and containted within some safe loopmounted file system that flash a warning to the real puppy that yet another break in had happend and don't save it to the pupsave this time either. Click here and all get aborted instantly something. ooh my headache comes back
Test of manual entry of url one need % 2 8 and % 2 9 maybe
Sorry me feel dense but Honeypot Puppy then would be kind of totally open to the outside world and presenting a kind of Sandbox that made the impression that they have looked around and left a keylogger and back door and whatever behind while in actual life they only had access to a fake version and containted within some safe loopmounted file system that flash a warning to the real puppy that yet another break in had happend and don't save it to the pupsave this time either. Click here and all get aborted instantly something. ooh my headache comes back