fosstodon.org is one of the many independent Mastodon servers you can use to participate in the fediverse.
Fosstodon is an invite only Mastodon instance that is open to those who are interested in technology; particularly free & open source software. If you wish to join, contact us for an invite.

Administered by:

Server stats:

8.8K
active users

#dropbear

0 posts0 participants0 posts today
Bebef 🦦🇪🇺🏴‍☠️🏳️‍🌈🏳️‍⚧️🚙🐼🥦🚩🏴<p><span class="h-card" translate="no"><a href="https://troet.cafe/@ralphruthe" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ralphruthe</span></a></span> Ja, der Löwe ist etwas missglückt. Der <a href="https://mastodon.social/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a> ist aber richtig gut geworden!</p>
Neustradamus :xmpp: :linux:<p><a href="https://mastodon.social/tags/DropbearSSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DropbearSSH</span></a> 2025.88 has been released (<a href="https://mastodon.social/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a> / <a href="https://mastodon.social/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> / <a href="https://mastodon.social/tags/SecureShell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureShell</span></a> / <a href="https://mastodon.social/tags/SecureShellProtocol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureShellProtocol</span></a> / <a href="https://mastodon.social/tags/SSHServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSHServer</span></a> / <a href="https://mastodon.social/tags/SSHClient" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSHClient</span></a>) <a href="https://matt.ucc.asn.au/dropbear/dropbear.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">matt.ucc.asn.au/dropbear/dropb</span><span class="invisible">ear.html</span></a></p>
fuxx<p>kennt sich hier wer mit network <a href="https://social.tchncs.de/tags/bonding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bonding</span></a> in Zusammenhang mit <a href="https://social.tchncs.de/tags/vlans" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vlans</span></a> und <a href="https://social.tchncs.de/tags/initramfs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>initramfs</span></a> aus? die <a href="https://social.tchncs.de/tags/network" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>network</span></a> config benötigt zur Fernentschlüsselung via <a href="https://social.tchncs.de/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ssh</span></a> (<a href="https://social.tchncs.de/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a>) mag mir nämlich leider einfach nicht gelingen :( <a href="https://social.tchncs.de/tags/debian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>debian</span></a> <a href="https://social.tchncs.de/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a></p>
Neustradamus :xmpp: :linux:<p><a href="https://mastodon.social/tags/DropbearSSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DropbearSSH</span></a> 2025.87 has been released (<a href="https://mastodon.social/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a> / <a href="https://mastodon.social/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> / <a href="https://mastodon.social/tags/SecureShell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureShell</span></a> / <a href="https://mastodon.social/tags/SecureShellProtocol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureShellProtocol</span></a> / <a href="https://mastodon.social/tags/SSHServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSHServer</span></a> / <a href="https://mastodon.social/tags/SSHClient" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSHClient</span></a>) <a href="https://matt.ucc.asn.au/dropbear/dropbear.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">matt.ucc.asn.au/dropbear/dropb</span><span class="invisible">ear.html</span></a></p>
ohmrun<p>Off in the weeds today looking at basing a docker image on busybox and dropbear.</p><p><a href="https://hachyderm.io/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a> <a href="https://hachyderm.io/tags/Busybox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Busybox</span></a> <a href="https://hachyderm.io/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://darmstadt.social/@claudius" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>claudius</span></a></span> <span class="h-card" translate="no"><a href="https://gruene.social/@max" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>max</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.world/@signalapp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>signalapp</span></a></span> </p><p>No problem:</p><ul><li><a href="https://infosec.space/tags/PGP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGP</span></a>/MIME [see <span class="h-card" translate="no"><a href="https://chaos.social/@delta" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>delta</span></a></span> / <a href="https://infosec.space/tags/deltaChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>deltaChat</span></a> &amp; <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird</span></a></span> / <a href="https://infosec.space/tags/Thunderbird" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Thunderbird</span></a>] </li><li><a href="https://infosec.space/tags/XMPP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XMPP</span></a>+<a href="https://infosec.space/tags/OMEMO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OMEMO</span></a> [see <span class="h-card" translate="no"><a href="https://monocles.social/@monocles" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>monocles</span></a></span> / <a href="https://infosec.space/tags/monoclesChat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>monoclesChat</span></a> &amp; <span class="h-card" translate="no"><a href="https://fosstodon.org/@gajim" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gajim</span></a></span> / <a href="https://infosec.space/tags/gajim" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>gajim</span></a>] </li><li><a href="https://infosec.space/tags/Monero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monero</span></a> [obviously, because there's a huge-ass bounty on it.</li><li><a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> </li><li><a href="https://infosec.space/tags/OpenBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenBSD</span></a> </li><li><a href="https://infosec.space/tags/OpenSSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSSH</span></a> </li><li><a href="https://infosec.space/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> SSH</li><li>...</li></ul><p><a href="https://infosec.space/@kkarhan/113872410016175384" rel="nofollow noopener" target="_blank">I could go on all night</a>, so please shove that <a href="https://infosec.space/tags/TechPopulism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechPopulism</span></a> somewhere the sun doesn't shine!</p><ul><li>Please go <a href="https://infosec.space/tags/TouchGrass" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TouchGrass</span></a> for the next 24 hours...</li></ul><p><a href="https://infosec.space/tags/EOD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EOD</span></a> <a href="https://infosec.space/tags/thxbye" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>thxbye</span></a> <a href="https://infosec.space/tags/next" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>next</span></a> <a href="https://infosec.space/tags/muted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>muted</span></a></p>
Connect Paranormal<p>The Australian drop bear is a fictional carnivorous creature tied to local folklore, blending humor with cultural storytelling. <a href="https://mastodon.social/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a> <a href="https://mastodon.social/tags/Australia" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Australia</span></a> <a href="https://connectparanormal.net/2025/01/15/unraveling-the-myth-of-the-australian-drop-bear/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">connectparanormal.net/2025/01/</span><span class="invisible">15/unraveling-the-myth-of-the-australian-drop-bear/</span></a></p>
Neustradamus :xmpp: :linux:<p><a href="https://mastodon.social/tags/DropbearSSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DropbearSSH</span></a> 2024.86 has been released (<a href="https://mastodon.social/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a> / <a href="https://mastodon.social/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> / <a href="https://mastodon.social/tags/SecureShell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureShell</span></a> / <a href="https://mastodon.social/tags/SecureShellProtocol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureShellProtocol</span></a> / <a href="https://mastodon.social/tags/SSHServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSHServer</span></a> / <a href="https://mastodon.social/tags/SSHClient" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSHClient</span></a>) <a href="https://matt.ucc.asn.au/dropbear/dropbear.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">matt.ucc.asn.au/dropbear/dropb</span><span class="invisible">ear.html</span></a></p>
Gea-Suan Lin<p>Dropbear SSH 不會讀 /etc/environment 的問題</p><p>在 Raspberry Pi 上追問題一路找原因發現的,起因是 Dropbear SSH 預設不支援 PAM,所以不會觸發 PAM 會在登入時讀 /etc/environment 的設計。</p><p>其中 PATH 變數比較特別,Dropbear SSH 預設會塞很基本的值進去:</p><p>/* The default path. This will often get replaced by th</p><p><a href="https://blog.gslin.org/archives/2024/10/25/12049/dropbear-ssh-%e4%b8%8d%e6%9c%83%e8%ae%80-etc-environment-%e7%9a%84%e5%95%8f%e9%a1%8c/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.gslin.org/archives/2024/1</span><span class="invisible">0/25/12049/dropbear-ssh-%e4%b8%8d%e6%9c%83%e8%ae%80-etc-environment-%e7%9a%84%e5%95%8f%e9%a1%8c/</span></a></p><p><a href="https://abpe.org/tags/Computer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Computer</span></a> <a href="https://abpe.org/tags/Murmuring" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Murmuring</span></a> <a href="https://abpe.org/tags/Network" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Network</span></a> <a href="https://abpe.org/tags/Programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Programming</span></a> <a href="https://abpe.org/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://abpe.org/tags/Software" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Software</span></a> <a href="https://abpe.org/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> <a href="https://abpe.org/tags/environment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>environment</span></a> <a href="https://abpe.org/tags/path" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>path</span></a> <a href="https://abpe.org/tags/shell" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>shell</span></a> <a href="https://abpe.org/tags/ssh" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ssh</span></a></p>
Kevin Karhan :verified:<p>At the very least I want <span class="h-card" translate="no"><a href="https://infosec.space/@OS1337" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>OS1337</span></a></span> to support <a href="https://infosec.space/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> as <a href="https://infosec.space/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> <a href="https://infosec.space/tags/client" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>client</span></a> so one can use it as a amnesiaic, anti-forensics <a href="https://infosec.space/tags/RAMdisk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAMdisk</span></a> - only SSH-<a href="https://infosec.space/tags/Terminal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Terminal</span></a> to connect to other machines.</p><p>Like a reinterpretation of <a href="https://www.youtube.com/watch?v=RuZUPpmXfT0" rel="nofollow noopener" target="_blank">classic terminals</a> like the <a href="https://infosec.space/tags/VT520" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VT520</span></a> <a href="https://en.wikipedia.org/wiki/VT520" rel="nofollow noopener" target="_blank">series</a> from <a href="https://en.wikipedia.org/wiki/Digital_Equipment_Corporation" rel="nofollow noopener" target="_blank">DEC</a>...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://troet.cafe/@xeniac" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>xeniac</span></a></span> I know that this is the case, but it's not a <em>technical unavoidance</em> despite the <a href="https://infosec.space/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RaspberryPi</span></a> being a non-<a href="https://infosec.space/tags/UEFI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UEFI</span></a> - <a href="https://infosec.space/tags/arm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>arm</span></a> device.</p><ul><li>Even on the old, <a href="https://infosec.space/tags/32bit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>32bit</span></a> boards.</li></ul><p>The solution in that regard would be to boot into a <em><a href="https://infosec.space/tags/live" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>live</span></a></em> / <em><a href="https://infosec.space/tags/setup" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>setup</span></a></em> mode like with <a href="https://infosec.space/tags/RaspberryPiOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RaspberryPiOS</span></a> for <a href="https://infosec.space/tags/i586" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>i586</span></a>-based <a href="https://infosec.space/tags/PCs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PCs</span></a> and extend it to a setup that allows creating a new custom image with <a href="https://infosec.space/tags/LUKS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LUKS</span></a> - <a href="https://infosec.space/tags/FDE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FDE</span></a> enabled and properly encrypted.</p><ul><li>OFC on a <a href="https://infosec.space/tags/Pi0W" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pi0W</span></a> that would mean one would've to plug in a 2nd MicroSD with a USB-Adapter but that's not the Point. </li></ul><p>I'm not even demanding much, just a simple <a href="https://infosec.space/tags/TUI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TUI</span></a> / <a href="https://infosec.space/tags/CLI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CLI</span></a> setup like <span class="h-card" translate="no"><a href="https://ubuntu.social/@ubuntu" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ubuntu</span></a></span> / <a href="https://infosec.space/tags/UbuntuServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UbuntuServer</span></a> has with basic customizations.</p><ul><li>I'm not even expecting it to go so far as to offer including <a href="https://infosec.space/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> - <a href="https://infosec.space/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> in the <a href="https://infosec.space/tags/initramfs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>initramfs</span></a> so one can boot into the encrypted install and unlock it remotely. Just gimme the blinking cursor at the boot asking me to enter the password for the encrypted partition...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://tacobelllabs.net/@arrjay" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>arrjay</span></a></span> <br><em>"What is the simplest <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> distro I could still work under?"</em></p><ul><li>Unsurprisingly, that would be just a <a href="https://infosec.space/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a>-<a href="https://infosec.space/tags/Terminal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Terminal</span></a> with like <code>dbclient</code> (the SSH Client-only parts of <a href="https://infosec.space/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a>, <a href="https://matt.ucc.asn.au/dropbear/dropbear.html" rel="nofollow noopener" target="_blank">which</a> I'm familiar with given it's adoption in <a href="https://infosec.space/tags/aftermarket" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>aftermarket</span></a> <a href="https://infosec.space/tags/firmware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>firmware</span></a> for <a href="https://infosec.space/tags/Routers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Routers</span></a> like <a href="https://infosec.space/tags/OpenWRT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenWRT</span></a> and use on <a href="https://infosec.space/tags/rooted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rooted</span></a> <a href="https://infosec.space/tags/Android" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Android</span></a> <a href="https://infosec.space/tags/smartphones" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>smartphones</span></a>...</li></ul>
Droppie [loma] 🐨♀🌈🐧​🦘<p><a href="https://www.youtube.com/watch?v=qeMUEQ5JzPc" rel="nofollow noopener" target="_blank">youtube.com/watch?v=qeMUEQ5JzP…</a></p><p>Vicious marauding <a href="https://loma.ml/search?tag=dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> goes on the prowl for Merkan tourists, aka, lunch.<br><a href="https://www.youtube.com/watch?v=qeMUEQ5JzPc" rel="nofollow noopener" target="_blank">- YouTube</a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.parastor.net/@eroc1990" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>eroc1990</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.green/@JohnDal" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>JohnDal</span></a></span> I disagree, as all such <a href="https://infosec.space/tags/SupplyChainAttacks" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SupplyChainAttacks</span></a> are merely based upon lack or <a href="https://infosec.space/tags/reviewers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>reviewers</span></a> and lack of <a href="https://infosec.space/tags/funding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>funding</span></a>.</p><ul><li>Whereas with <a href="https://infosec.space/tags/CCSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CCSS</span></a> you have no independent auditability as with <a href="https://infosec.space/tags/FLOSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FLOSS</span></a> and <em>everything</em> is a <em>"<a href="https://infosec.space/tags/TrustMeBro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrustMeBro</span></a>!"</em> approach, which <em>ALL</em> the <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GAFAMs</span></a>, <a href="https://infosec.space/tags/PRISM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PRISM</span></a>-Collaborators, <a href="https://infosec.space/tags/CloudAct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudAct</span></a> subjects and willingful <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> integrators have forfeilt by their actions!</li></ul><p>Not to mention it's easier and faster to fix <a href="https://infosec.space/tags/FOSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FOSS</span></a> as well as the <a href="https://infosec.space/tags/diversity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>diversity</span></a> of systems mitigate said issues (i.e. <a href="https://infosec.space/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> was affected by <em>neither</em> <a href="https://infosec.space/tags/RegreSSHion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RegreSSHion</span></a> <a href="https://infosec.space/tags/XZ" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XZ</span></a>'s <a href="https://infosec.space/tags/backdoor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>backdoor</span></a>, likely preventing another <a href="https://infosec.space/tags/Mirai" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mirai</span></a>-Style <a href="https://infosec.space/tags/Botnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Botnet</span></a> from being created...</p><ul><li>Instead of shoving money into buying <a href="https://infosec.space/tags/CSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CSS</span></a> Governments should instead provide proper fundibg to <a href="https://infosec.space/tags/OSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OSS</span></a>, instead of wasting it on <a href="https://infosec.space/tags/HypeBasedDevelopment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HypeBasedDevelopment</span></a> / <a href="https://infosec.space/tags/BuzzwordDrivenDevelopment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BuzzwordDrivenDevelopment</span></a> like <a href="https://infosec.space/tags/Zensursula" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Zensursula</span></a>'s <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>EUCommission</span></a></span> does with garbage like <em>"<a href="https://infosec.space/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a>"</em>...</li></ul><p>After all, these issues are systemic, and denying the root cause is turning a blind eye at the obvious fix!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://rukii.net/@tero" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tero</span></a></span> tho distros are quick to patch and this fix the issue... </p><p>Which is the strenght of most <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> distros.</p><ul><li>Plus it seems to only affect Distros that compile <a href="https://infosec.space/tags/OpenSSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSSH</span></a> against <a href="https://infosec.space/tags/glibc" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>glibc</span></a>, AFAIK <span class="h-card" translate="no"><a href="https://fosstodon.org/@musl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>musl</span></a></span> and other C standard libraries seem unaffected and OFC it doesn't apply to alternative <a href="https://infosec.space/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> implementations like <a href="https://infosec.space/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a>, so most low-end <a href="https://infosec.space/tags/embedded" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>embedded</span></a> &amp; <a href="https://infosec.space/tags/IoT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IoT</span></a> devices should be in the clear...</li></ul>
mirabilos<p>Say… what <em>is</em> there in <a href="https://toot.mirbsd.org/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> distributions that…</p><ul><li>don’t go in your way too much when you’ve been a veteran <a href="https://toot.mirbsd.org/tags/debian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Debian</span></a> user, admin, developer and project member</li><li>systemd-free (including no UsrMove)</li><li>not busybox-based (so Alpine Linux is out)</li><li><a href="https://toot.mirbsd.org/tags/musl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>musl</span></a>-based is actually a plus in my eyes</li><li>good availability of software (so I can justify using it at $dayjob) for server and dev work</li><li><a href="https://toot.mirbsd.org/tags/x11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>X11</span></a>, not (just) Wayland (this probably means <a href="https://toot.mirbsd.org/tags/xorg" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Xorg</span></a> these days)</li><li>security support (especially Firefox ESR)</li><li>either stable with security updates and good upgradability or a mild rolling one (that does not require daily updating, perhaps every couple of days; I did run Debian sid as main workstation at work for years)</li><li>allows me to package my own stuff and my own versions of already-included stuff as needed</li><li>has a good focus on quality and integration, not a "we package vanilla upstream code" philosophy</li><li>ofc privacy, no phoning-home by default, patching that out of software too</li><li>some QA wouldn’t go amiss but I’m aware that even reaching a fraction of what Debian’s does is all but impossible for any other <a href="https://toot.mirbsd.org/tags/distro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>distro</span></a> (and yes, that includes commercial Debian derivatives as well as unrelated enterprise distros)</li></ul><p>So far I’ve been eyeing Slackware (great ling-term commitment but software availability seems not good) and Void (bit wary about runit as init; while I’ve been using DJB dæmontools to manage individual services, I’d not use it as init) but I have no idea. Bit wary of different packaging tools as well but I’ll probably manage.</p><p><a href="https://toot.mirbsd.org/tags/devuan" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Devuan</span></a> is not an option: I have full faith in their incapability to deviate in anything from Debian in the long term. And at this point it’s clear that DEB-based distros would need to do a full hard fork from bullseye and never just import any packages from later Debian to thrive, which is unsurmountable.</p><p>It should be initramfs-based so I can do a remote FDE cryptsetup unlock with <a href="https://toot.mirbsd.org/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a> (or full OpenSSH of course) and iproute2 (or busybox ip, but not just klibc ipconfig) over <a href="https://toot.mirbsd.org/tags/ipv6" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPv6</span></a>. (I hacked that on top of Debian’s successfully.)</p><p>I’d need amd64 (on 2007-era Thinkpads, VMs, and server hardware) at first, but armel or armhf/ARMv6 for the occasional RPi I got gifted (I don’t buy from them, what with their surveillance cop and censorship thing) wouldn’t go amiss.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.treehouse.systems/@ariadne" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ariadne</span></a></span> makes sense given the specific case.</p><p>For <span class="h-card" translate="no"><a href="https://infosec.space/@OS1337" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>OS1337</span></a></span> and <a href="https://infosec.space/tags/spm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>spm</span></a> I do have to rely on the minimal <a href="https://infosec.space/tags/1440kB" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>1440kB</span></a> sized <em>"CORE" Edition</em> being the only dependency, so have the <a href="https://infosec.space/tags/toybox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>toybox</span></a>-<a href="https://infosec.space/tags/wget" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>wget</span></a> w/o <a href="https://infosec.space/tags/SSL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSL</span></a> and thus only <a href="https://infosec.space/tags/HTTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HTTP</span></a> &amp; <a href="https://infosec.space/tags/FTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FTP</span></a> support.</p><p>Granted this ain't safe nor final and I may just scrap spm if something better, simpler, easier to maintain and/or smaller comes along...</p><p>Cuz the Idea is that one boots the <em>"Core Edition"</em> and just download essential packages either on-the-fly or for installation.<br><a href="https://github.com/OS-1337/pkgs/blob/main/docs/WISHLIST.tsv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/OS-1337/pkgs/blob/m</span><span class="invisible">ain/docs/WISHLIST.tsv</span></a></p><p>Since I have <a href="https://infosec.space/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> as client aka. <code>dbclient</code> available I may consider <a href="https://infosec.space/tags/SFTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SFTP</span></a> if feasible...</p>
Captain Jack Sparrow<p><span class="h-card" translate="no"><a href="https://aus.social/@Brad_whitecross" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Brad_whitecross</span></a></span> </p><p><a href="https://mastodon.world/tags/DropBear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DropBear</span></a> Incidents are more likely to happen during the mating season</p>
Heliograph<p><span class="h-card" translate="no"><a href="https://dmv.community/@pixelpusher220" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>pixelpusher220</span></a></span> <a href="https://mastodon.au/tags/quokkas" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>quokkas</span></a> are definitely top of <a href="https://mastodon.au/tags/straya" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>straya</span></a>'s cute range :awesome: :blobcat_hearthug: but <a href="https://mastodon.au/tags/wombats" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>wombats</span></a> are actually cuddly, unlike <a href="https://mastodon.au/tags/koalas" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>koalas</span></a> and their close cousin the <a href="https://mastodon.au/tags/dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dropbear</span></a> 😁 <span class="h-card" translate="no"><a href="https://mastodon.social/@KingShawn" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>KingShawn</span></a></span></p>
qbi<p><a href="https://freie-re.de/tags/Festplattenverschl%C3%BCsselung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Festplattenverschlüsselung</span></a> auf einem <a href="https://freie-re.de/tags/Server" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Server</span></a> unter <a href="https://freie-re.de/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a>:</p><p>Ist <a href="https://freie-re.de/tags/Dropbear" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dropbear</span></a> in der <a href="https://freie-re.de/tags/initramfs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>initramfs</span></a> noch das Mittel der Wahl oder gibt es andere, bessere Ansätze?</p>