I thought I’ll make this thread for all of you out there who have questions but are afraid to ask them. This is your chance!
I’ll try my best to answer any questions here, but I hope others in the community will contribute too!
Is there a way to remove having to enter my password for everything?
Wake computer from Screensaver? Password.
Install something? Password.
Updates (biggest one. Updates should in my opinion just work without, because being up to date is important for security reasons)? Password.I understand sudo needs a password,but all the other stuff I just want off. The frequency is rediculous. I don’t ever leave my house with my computer, and I don’t want to enter a password for my wife everytime she wants to use it.
I understand sudo needs a password,but all the other stuff I just want off.
Sudo doesn’t need a password, in fact I have it configured not to on the computers that don’t leave the house. To do this open
/etc/sudoers
file (or some file inside/etc/sudoers.d/
) and add a line like:nibodhika ALL=(ALL:ALL) NOPASSWD:ALL
You probably already have a similar one, either for your user or for a certain group (usually wheel), just need to add the
NOPASSWD
part.As for the other parts you can configure the computer to not lock the screen (just turn it off) and for updates it depends on distro/DE but having passwordless sudo allows you to update via the terminal without password (although it should be possible to configure the GUI to work passwordless too)
I understand sudo needs a password
You can configure sudo to not need a password for certain commands. Unfortunately the syntax and documentation for that is not easily readable. Doas which can be installed and used along side sudo is easier.
For software updates you can go for unattended-upgrades though if you turn off your computer when it is upgrading software you may have to fix the broken pieces.
I’ve tried unattended-upgrades once. And I couldn’t get it to work back then. It might be more user friendly now. Or it could just be me.
It’s not really user friendly, at least not how I know it. But useful for servers and when desktop computers are on for a long time. It would be a matter of enabling or disabling it with :
sudo dpkg-reconfigure unattended-upgrades
granted that you have the unattended-upgrades package installed. In that case I’m not sure when the background updates will start, though according to the Debian wiki the time for this can be configured.But with Ubuntu a desktop user should be able to configure software updated to be done automatically via a GUI. https://help.ubuntu.com/community/AutomaticSecurityUpdates#Using_GNOME_Update_Manager
These are all valid reasons to request a password 🤔
- Wake computer from Screensaver? Password.
Check your screen saver settings. Dunno which desktop environment you’re using. KDE should allow you to not enter a password for this.
- Install something? Password.
- Updates (biggest one. Updates should in my opinion just work without, because being up to date is important for security reasons)? Password.
Installing stuff runs
sudo
in the background hence the password prompt. Updates = installing stuff. Look up “passwordless sudo”. At this point, when do you even want a password to be shown? If you don’t need a password, get rid of it entirely.Anti Commercial AI thingy
You can configure this behavior for CLI, and by proxy could run GUI programs that require elevation through the CLI:
https://wiki.archlinux.org/title/Sudo#Using_visudo
Defaults passwd_timeout=0(avoids long running process/updates to timeout waiting for sudo password)
Defaults timestamp_type=global (This makes password typing and it’s expiry valid for ALL terminals, so you don’t need to type sudo’s password for everything you open after)
Defaults timestamp_timeout=10(change to any amount of minutes you wish)
The last one may be the difference between having to type the password every 5 minutes versus 1-2 times a day. Make sure you take security implications into account.
What you think about Declarative system management.Do u use it?
Not sure what that is. Plesse explain more.
I like it as a concept, but it gets bothersome to maintain on the long run, sometimes you just want to install something not write configs.
I think Gentoo has a nice middle ground, where you can install packages as a one-off without adding them to the world file, which makes it very meat to maintain both your regular packages and some random things you’re trying out before settling in on adding them permanently.
That being said I’m currently looking into writing some ansible for kick-starting machines, so I’m very much moving in that direction. Why not use nix then? Few reasons:
- Using Nix means I’m forced to use Nix, whereas with Ansible I can use whichever distro I want, more than one even.
- I don’t want to have to define EVERYTHING, I want to be able to bootstrap systems quickly, but after the initialization I want to be able to mold each system to what I need without worrying about making it reproducible.
- Nix uses a language that’s only usable in Nix, in short I would need to study and learn something that’s only usable on one specific distro.
I bought a cheap Intel i226-v nic to use 2.5gbe in Unraid and it tries to auto configure to 100mbps. I realize now that the Intel 2.5gbe nics have issues, so is there anything I could do to get it to play nice, or does anyone know of a solid low profile 2.5gbe nic I could use without breaking the bank?
Mods, perhaps a weekly post like this would be beneficial? Lowering the bar to entry with some available support and helping to keep converts.
NixOS. I don’t get what it really is or does? It’s a Linux distribution but with ceavets or something
What’s the difference between /bin and /usr/bin and /usr/local/bin from an architectural point of view? And how does sbin relate to this?
There’s a standard. /usr was often a different partition.
/bin - system binaries /sbin - system binaries that need superuser privileges /usr/bin - Normal binaries /usr/sbin - normal binaries that require superuser privileges /usr/local/bin - for executables that aren't 'packaged' - i.e., installed by you or some other program system-wide
I want to start with Btrfs and snapshots, is there a good, beginner friendly tutorial for those coming from a ext* filesystem?
How do people not using Debian/Ubuntu follow along with tutorials when their package manager doesn’t have a package that’s in Apt?
I typically search the package name + fedora, it will probably tell me the alternative package that is in fedora.
Nowadays, I have moved to an atomic fedora distro, so I would severely limit the amount of package I install on my system for stability and security.
I think I only have two packages installed on my machine: fish, because it is the only popular shell that follows xdg dir; and a latex input method to use in slack.
Back in my slackware days I’d just convert other distros packages to the tgz format or compile the package and its requirements.
If the dependencies were really complex I’d draw a picture to help me understand them better.
On Android, when an app needs something like camera or location or whatever, you have to give it permission. Why isn’t there something like this on Linux desktop? Or at least not by default when you install something through package manager.
Because it requires a very specific framework to be built from the ground up, and FDO doesn’t specify these. A lot of breakage would happen if were to shoehorn such changes into Linux suddenly. Android has many layers of security that they’re fundamentally different than that of the unix philosophy. That’s why Android, even if it’s based on Linux, it’s not really considered “a distro”.
Android apps are sandboxed by default while packages on Linux run with the users permission.
There is already something like this with Flatpak since it also sandboxes every installed program and only grants requested permissions.
It is technically doable, but that would require a unified method to call when an app needs camera, and that method will give show the prompt.
This would technically require developers to rewrite their apps on linux, which is not happening anytime soon.
Fortunately, pipwire is currently doing this work, like when you screen share on zoom using pipwire, a system prompt will pop up asking you for what app to share. Unlike on Windows, zoom cannot see your active windows when using this method, only the one that you choose to share.
There is a lot of work in improving security and usablity of linux sandbox, and it is already much better than Windows (maybe also better than macos?). I am confident, in 5 years, linux sandbox stack (flatpak, protal, pipewire) will be as secure and usable as on android and ios.
How do programs that measure available space like ‘lsblk’, ‘df’, ‘zfs list’ etc see hardlinks and estimate disk space.
If I am trying to manage disk space, does the file system correctly display disk space (for example a zfs list)? Or does it think that I have duplicate files/directories because it can’t tell what is a hardlink?
Also, during move operations, zfs dataset migrations, etc… does the hardlinked file continue tracking where the original is? I know it is almost impossible at a system level to discern which is the original.
Is there any performance difference between KDE and GNOME?
Why does it feel that Linux infighting is the main reason why it never takes off? It’s always “distro X sucks”, “installing from Y is stupid”, “any system running Z should burn”
Doesn’t feel like that to me. I’ll need to see evidence that that is the main reason. It could be but I just don’t see it.
I mean, Wayland is still a hot topic, as are snaps and flatpaks. Years ago it was how the GTK2 to GTK3 upgrade messed up Gnome (not unlike the python 2 to 3 upgrade), some hardcore people still want to fight against systemd. Maybe it’s just “the loud detractors”, dunno
Why would one be discouraged by the fact that people have options and opinions on them? That’s the part I’m not buying. I don’t disagree that people do in fact disagree and argue. I don’t know if I’d call it fighting. People being unreasonably aggressive about it are rare.
I for one am glad that people argue. It helps me explore different options without going through the effort of trying every single one myself.
I’m using wayland right now, but still use X11 sometimes. I love the discussion and different viewpoints. They are different protocols, with different strengths and weaknesses. People talking about it js a vitrue in my opinion
I can only use x11 myself. The drivers for Wayland on nvidia aren’t ready for prime time yet, my browser flickers and some games don’t render properly. I’m frankly surprised the KDE folks shipped it out
Linux users are often very passionate about the software they put on their computers, so they tend to argue about it. I think the customization and choices scares off a lot of beginners, I think the main reason is lack of compatibility with Windows software out of the box. People generally want to use software they are used to.
There’s no infighting. It just feels that way because you picked an inferior distribution.
Linux generally has a higher (perceived?) technical barrier to entry so people who opt to go that route often have strong opinions on exactly what they want from it. Not to mention that technical discussions in general are often centered around decided what the “right” way to do a thing is. That said regardless of how the opinions are stated, options aren’t a bad thing.
Because you don’t have an in person user group and only interact online where the same person calling all mandrake users fetal alcohol syndrome babies doesn’t turn around and help those exact people figure out their smb.conf or trade sopranos episodes with them at the lan party.
I want to turn a Microsoft surface go 2 into a kali linux machine. I would appreciate any guidance pulling this off. I want use it for learning it security stuff, partly for work but mostly for curiosity. Occasionally I run across malware, trojans, and I want to look under the hood to see how they work. I’m assuming Kali is the best tool for the job and that Lemmy is the place to go for tooling around with tools.
Question about moving from Ubuntu to Debian - Package updates and security updates…
On Ubuntu, I seem to get notifications almost every week about new package updates. (Through the apt UI)
On Debian, I don’t see this.
I can run
apt update
andapt upgrade
On Ubuntu, I see this pull a bunch of package data from various package repo URLs.
On Debian, I only see this pulling package data from two or three repo URLs at debian.org
Mainly I am concerned about security updates and bug fixes. Do I need to manually add other repo sources to the apt config files? Or does debian update those repos regularly?
what is the difference between Wayland and xorg, why would you choose one over the other?
I use xorg on my desktop, because nvidia card don’t have good support for my applications on wayland. Specifically, typing in electron app will jitter. I will be switching to wayland if this problem is solved.
I use wayland on my laptop because it is more secure and supports one-to-one gesture, which is crucial for trackpad.