Define “sandboxed”
Application can only access a limited part of the system? = use flatpak or build a container/VM image using the nix pkgs.
Application can be uninstalled completely and has separate libraries? I prefer nix.
Define “sandboxed”
Application can only access a limited part of the system? = use flatpak or build a container/VM image using the nix pkgs.
Application can be uninstalled completely and has separate libraries? I prefer nix.
Would this even cause a kernel panic? I think this just causes a userland “panic”
You need a phone, tablet, or other device that’s been rooted.
Damit
Reading the comments under it is funny, they biased the testing environment extremely so I don’t expect much of any big improvements from this.
EOL
10 minutes to widespread organ failure is a bit short for the players to figure anything out.
How does a search engine being offline interrupt a device flashing?
Surely it can wait, right? How likely could it possibly be that it breaks when you least expect it?
But those only have a short life, they don’t get many updates iirc.
your staff play document format police.
Often the email filter will just convert everything not allowed to PDF.
Can’t Improve Upon Perfection
Last time I enabled secure boot it was with a unified kernel image, there was nothing on the EFI partition that was unsigned.
Idk about the default shim setup but using dracut with uki, rolled keys and luks it’d be secure.
After this you’re protected from offline attacks only though, unless you sign the UKI on a different device any program with root could still sign the modified images itself but no one could do an Evil Maid Attack or similar.
Well, it rules out an evil maid attack and maybe jumping over a dual boot setup.
replace a file on the EFI partition.
Doesn’t this mean that secure boot would save your ass? If you verify that the boot files are signed (secure boot) then you can’t boot these modified files or am I missing something?
Good to see people already training ai to kill.
Though “only” your personal files are at risk cause of permissions.
Every instance of lemmy and every server that speaks the same protocol knows who up/down voted any post. Your votes are public information.
Every instance of lemmy and every server that speaks the same protocol knows who up/down voted any post. Your votes are public information.
Hasn’t ended yet, as soon as we reach 75% the simulation will end.