Skip to main content
Unix & Linux
marcelm's user avatar
marcelm's user avatar
marcelm's user avatar
marcelm
  • Member for 10 years, 7 months
  • Last seen this week
  • Netherlands
Profile Activity

351 Actions

All Accepts Posts Badges Comments Revisions Reviews Suggestions
comment
Chromium browser tries to read sensitive files: ~/.ssh ~/.gnupg ~/.dbus /boot
"I have reported this as debian bug, but nobody cares." - The developers responded and asked you to run chromium in strace so they can see what chromium is trying exactly ("access a folder" is a bit vague). You refuse to do that. The conclusion that "nobody cares" seems a little misplaced.
comment
Check if unallocated space contains data
@ChanganAuto Unallocated areas are still sectors of the disk. Disk sectors, by definition, contain data, 512 bytes of it each. The question is, is this data that OP cares about? Say, remnants of a previous filesystem? Or is it garbage data that has no relevance for OP?
comment
LUKS keyslot damaged?
"... brute-forcing possible typos ..." - Also try it with caps lock on, perhaps it was on when changing the passphrase. You never know. Also, if there's punctuation in the passphrase, like say ', check if the Gnome GUI didn't convert sequences like 'e to é. Extra spaces are also worth trying.
revised
LUKS keyslot damaged?
Improved code formatting
comment
How to see non system Debian packages?
Oh, the syntax is actually the same as aptitude's? Nice, I didn't know that!
comment
How to see non system Debian packages?
What apt version would you need for this? On a Debian 13 box with apt 3.0.3, both commands don't list any packages, while aptitude search '?narrow(?installed, ?not(?origin(Debian)))' correctly lists a locally installed package.
comment
Mosquitto unable to use certificates from letsencrypt
That will run mosquitto as root. One security vulnerability in mosquitto, and your server is thoroughly owned. Terrible advice. Instead, fix the permissions on the certificate files so that mosquitto can read them.
comment
get process id of a process running in remote machine
ssh -o StrictHostKeyChecking=no - Don't do this; it basically disables the check that you're connecting to the server you think you are, throwing away most security SSH offers.
comment
lightdm/xorg prevents remounting read only
Good catch! /root/ seems like a silly place to cache that for either Xorg or lightdm. Are you perhaps auto-logging in a session as root?
awarded
 Nice Answer
answered
How much disk space is occupied by a filesystem's metadata?
comment
How much disk space is occupied by a filesystem's metadata?
"The difference between available space and the partition sizes is mostly explained by different ways of interpreting what "MB" and "GB" means (1024 and 1000-based)" - All numbers in OPs question are 1024-based, so that's simply not the case here.
answered
Ubuntu 25.04 not using DHCP DNS server
comment
Can’t see partition device after creating GPT partition on 6TB disk
@MarcusMüller There's also gdisk, which is like fdisk but a bit better and GPT-oriented. Also has a reasonable chance to be present on a system by default.
answered
~/.local/share is set for what? And can I ignore it at backups?
revised
how to update my kernel to Linux 6.6.12 in LinuxMint to make MT7902 work?
winblows -> Windows
comment
How do you enable the secret-tool command (backed by gnome-keyring, libsecret and dbus) in a headless CentOS Docker container?
If the keyring is unprotected (by e.g. a password), then this seems kinda useless. An attacker who gets access could trivially extract the secret from the keyring.
comment
Divide physical ethernet port to two virtual
I actually used exactly this at my home. A raspberry Pi as router connected to a VLAN-capable gigabit switch. Uplink and local devices all go on the switch on separate VLANs. I still use that network setup, but I upgrade the Pi to a more powerful device.
comment
Recommended way for a Linux app to inform user of an exception
At the very least, always report the error to stderr, and exit with non-0 exit status. You may (or may not) be able to do more, but those two are crucial.
comment
Deleting a file before it has finished downloading
"wget creates the file, also creating an entry (an "inode") in the file's directory ..." - I think you are confusing inode and hard link. The inode is the file, and it is not "created in a directory". The inode lives in the filesystem's inode pool. The directory contains the name (formally: hard link) pointing to the inode. To summarize: the file/inode is created, and a name/hardlink pointing to it is created in the directory. It's also worth pointing out wget does not perform these steps; the kernel does both for wget when it calls open().
1
2 3 4 5
18