Sunday, February 1, 2015

GnuCash: How Long Does It Take To Fix Bugs In Linux?

This is not a scientific case study. Nor is it an accurate depiction of projects in open source.

I wrote a post about a bug in GnuCash 2.6.4 which Fedora 20 updated to last October 2014. I knew it was going to take some amount of time before a patch can be made for this. So I marked time.

Today i updated Fedora 21 and saw that part of the upgrade is GnuCash 2.6.5 which I know to be carrying a patch for the bug I wrote about.  Between October last year and today that's 15 weeks.

I learned about the patch to Gnucash the first week of January 2015. That's 10 weeks after I wrote the post. Fedora tests upgrades before they make it to users.
--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.


January Income And Expense Report


January is tax and license month. The biggest component so far is the municipal taxes and it benefits the whole year.




A key component of income is the non-rentals and it isn't in the computations since December 2014. However if the December and January bars were interpreted in the context of a reduced total income, the remaining income components are able to carry operations.
--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.


Gone

Saying goodbye is hard.
It's easier to just say it and let words flow into tears.
Goodbye. Let it flow into many emotions.
You've come to drink from his well. I accept.
And waived my quiet protest. You smile.
Everyone agrees to keep it short. I pray
The choir keeps singing to your guitar
Until my cheeks are dry
and their voices thin out.
Sunsets are now worth talking about,
now that I see your long shadow. You
are not lost like a tree in the forest.
I can see your shining face.
I will come and visit that forest to find
You standing next to me when I'm gone.

Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.


Sunday, January 18, 2015

I Just Want To Show You This: r/blep

C'mon kitty stick your tonge out. There's a subredit just for that. c'mon.





--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.


Do We Really Need Layered Security For Single User Computers? #2


See "Do We Really Need Layered Security For Single User Computers?"

Here's Chris Murphy's contribution on this topic plus his views on packaging in linux.

From:  Chris Murphy <lists@colorremedies.com>
Here, maybe this is more your style for this subject:
https://people.redhat.com/duffy/selinux/selinux-coloring-book_A4-Stapled.pdf

Quite honestly I feel the same way about packaging on linux. I sorta understand that it's necessary, like concrete needs cement, but I don't want to interact with it at all. Every distribution reinvents this particular wheel and makes me understand it's peculiarities when it comes to packaging. It causes users, packagers, and upstream no end of grief. It enhances my notion that distros are really different operating systems that just so happen to share a kernel (and maybe some other stuff).
--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.




--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.

Saturday, January 17, 2015

Do We Really Need Layered Security For Single User Computers?


I have a subscription to user support in the fedora users mail list. I came across a thread about SElinux. Selinux is the mandatory access control security layer implemented in fedora and Red Hat Enterprise linux. In Ubuntu (also in OpenSuse) they implement MAC through Apparmor.

From:  Andrew R Paterson <andy.paterson@ntlworld.com>
File system permissions require at least basic knowledge and
> administration.  Most of the people I installed Linux for don't even
> know what they're good for.

> If your computer is single-user anyway, why does it need a security
> subsystem?


> *eyeroll*
Having watched this debate I find I must add my own 10c
I have spent over 30 years working on unix systems starting with xenix, bsd 
and ending up with linux .....
We survived quite happily using the well known DAC methods of standard UNIX.
(UGO - RWX - setuid etc).
Then I worked on some military systems (high security stuff) and started to use 
SOLARIS CMW (Compartentalised Mode Workstation) and DEC MLS (Multi-Level-
Security).
These both use the same (probably not as up to date) MAC security via 
labelling as (I guess) selinux.
I can truthfully say I loved UNIX in all its forms until coming across CMW & 
MLS and now SELINUX - then basically - I wanted OUT!.
They are horrendous; if you start to use labelling in earnest - absolutely 
suicidal!!! - unless you have a real motive - ie you work for the security 
services or a bank or something  and have a massive amount of time to devote.
Why do the selinux guys have to force MAC onto all linux users - even 
hobbyists?
Its getting like some kind of religion!

May I add that MAC is implemented differently in Ubuntu. Only *some* critical processes are protected. Layered security helps to protect our computer from zero-day attacks. It makes it less susceptible to system-wide malware attacks.
--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.




--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.

Friday, January 9, 2015

The First Week (so far)

I feared that the momentum of firecracker related injuries during the last days of 2014 would go up and be carried on to the new year. The Department of Health said there were 700+ injuries from firecrackers and gun discharge all in all. It was higher this time than last year by 10 percent.

This is stupidity.

This kind of stupidity is what fueled those who attacked the office of Charlie Hebdo in Paris. There were 14 deaths mostly journalists and cartoonists. They work for a french magazine specializing in satire and drawing political and religious figures. Charlie Hebdo's office was once fire bombed by islamic extremists responding to a nude drawing of the prophet Mohammed.

People will keep on doing something based on blind faith, myth, religious bias or just plain lack of critical thinking. Sure I don't subscribe to the no-holds-barred publishing of editorial cartoons but I respect their right to publish it. Irreverence and satirical pieces of art is important to freedom and liberty. The people who did this killing just made Islam the religion of stupid people.
--
Use my PGP key if you want to encrypt your replies/messages to me. You are invited to also send me your PGP keys so we can communicate in private.