Not long ago I have posted the output of a CLI command to see how it looks on Intel architecture, The new uname -a linux output. Now had a chance to run exactly the same command on a AMD Ryzen architecture. This is running on a custom kernel, which has been configured especially for the hardware.

Linux scapegoat 5.6.3-gentoo #2 SMP Thu Apr 9 11:56:44 CEST 2020 x86_64 AMD Ryzen 5 PRO 3500U w/ Radeon Vega Mobile Gfx AuthenticAMD GNU/Linux

Here the output of a stock kernel that is shipped by the linux distribution, for cross reference:

Linux scapegoat 5.5.14 #1 SMP PREEMPT Thu Apr 2 07:41:59 -00 2020 x86_64 AMD Ryzen 5 PRO 3500U w/ Radeon Vega Mobile Gfx AuthenticAMD GNU/Linux

While using the password store software called pass and going through some default testing scenarios, like writing, storing, erasing, changing, and migrating to another host, I have come upon an interesting issue after migration of the store from one host to another. Decrypting the pass store worked fine. However adding new passwords on a new host spit following error:

This has happened after migration of the key pair from one node to another node. The solution is simple, it is to set the trust level of the keys on the new node:

Quitting the GPG application works by pressing the q key, or simply write out quit:

After adding the try to the trust, now adding a new password to pass should be successful:

Some obvious remark at the end of this blog post, for these people only reading this and doing copy/paste without re-thinking their decision:

Send telemetry by default

Firefox sends telemetry data by default, it behaves like the most famous windows operating system in its default setting. Mozilla can control the browser remotely via the telemetry, which came recently into action as Mozilla switched on TLS 1.0 and 1.1 off remotely because a group of users that possibly could not view corona information sites correctly. Mozilla did not shout about the normandy feature from the rooftops possibly not to upset its user base. Gentoo's Bugzilla – Bug 713782.

To disable this technology set in global firefox configuration about:config app.normandy.enabled to false.

To find out more about normandy and it features, check the Godzilla Wiki - Firefox/Shield.

Block .onion by default

Tor support is disabled by default. In its default setting users will not be able to access .onion sites using Firefox. This has been also described here: Protonmail's support site for firefox

To enable access to .onion sites set in the global firefox configuration about:config network.dns.blockDotOnion to false.

Disable IRC support channel

After a long evaluation period, Mozilla has switched to Matrix from IRC as its preferred open discussion platform. Mozilla sees Matrix as improvement in usability, accessibility and safety for the Mozilla community, therefore it has disabled its IRC servers for good.

Matrix describes itself as an open, lightweight protocol for decentralized, real-time communications.

Challenge: Try to find only one RFC describing the matrix protocol. Here is a URL to RFC searching engine making your search a no-brainer. If you find something, please let me know. Let me guess, everything works with HTTPS?

Remove the obsolete and unsafe FTP protocol

FTP is unsafe by design, but there is also FTPS. Works the same as BGP and TCP-MD5 hashing. Wait, did not someone yell recently BGP is unsafe and complex on top of it? Yes, it is unsafe by design. Honestly, this does not make a big difference if FTP is supported or not. One security flaw less to care.

Proceed with Caution

If Changing advanced configuration preferences can impact Firefox performance or security. Highly suggestive notification before changing any internals of firefox.

Postmortem

Mozilla foundation turned into Godzilla Foundation, while its famous browser Firefox mutated into unusable piece of shit, zombie crap load. A reason to stop using ZombieVixen. ZombieVixen itself is a data blackhole in its default setting.

There are numerous other arguments not to use the new Godzilla Foundation's ZombieVixen Browser. Find your own. Frankly, disabling predefined defaults in a application feels like back to 1995...

                                               ____
   ___                                      .-~. /_"-._
  `-._~-.                                  / /_ "~o\  :Y
      \  \                                / : \~x.  ` ')
       ]  Y                              /  |  Y< ~-.__j
      /   !                        _.--~T : l  l<  /.-~
     /   /                 ____.--~ .   ` l /~\ \<|Y
    /   /             .-~~"        /| .    ',-~\ \L|
   /   /             /     .^   \ Y~Y \.^>/l_   "--'
  /   Y           .-"(  .  l__  j_j l_/ /~_.-~    .
 Y    l          /    \  )    ~~~." / `/"~ / \.__/l_
 |     \     _.-"      ~-{__     l  :  l._Z~-.___.--~
 |      ~---~           /   ~~"---\_  ' __[>
 l  .                _.^   ___     _>-y~
  \  \     .      .-~   .-~   ~>--"  /
   \  ~---"            /     ./  _.-'
    "-.,_____.,_  _.--~\     _.-~
                ~~     (   _}
                        `. ~(
                          )  \
                         /,`--'~\--'

This ASCII pic can be found at asciiart.website

Why is logging a useful practice:

• Good idea to log network sessions output into a text file, from troubleshooting and technical point of view
• In case of troubleshooting a reliable source to review the sequence of commands and its outcome
• Task documentation at its source

A Z-shell zsh function to get logging session instantly by calling function with a mandatory parameter logfile :

function logfile(){
        # Give the session name parameter
        readonly sessionname=${1:?" Syntax: logfile sessionname"}
        # Set the datum variable, change the dir, print status.
        local datum=$(date '+%Y%m%d-%H%M%S')
        cd ~/netlog/
        echo "logging to $datum-$1.log file. Type exit to end the netlog session!"
        # Record the session
        script -c '/bin/sh --login' $datum-$1.log
}

Ending the logging session is notified. End by using the exit command:

Log files will look like in example below. This is also useful if greping for some a valuable piece of information:

The same result can be accomplished differently, f.e. by using the tee command or logging by using screen with a logging parameter. Find your own solution.