-
-
java-keyring
Copy of Java Keyring library from bitbucket.org/bpsnervepoint -- with working CI in for osx/linux/windows keystore.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
The author may have the systemd-resolved privacy complaints in mind, where the systemd DNS daemon has Google's DNS servers hardbaked into the source code. It will fallback to Google DNS if the configured server is down.
A few concerned individuals raised their worries in a ticket and were shut down for 'tinfoil hat reasoning' or something like that.
It may be an extreme case, but many Linux users would rather not have any particular provider baked into core system services. Personally I'd rather know my DNS server is down or that I've misconfigured it, much more than I would have my system contact Google without my knowledge.
Src: https://github.com/systemd/systemd/blob/41c81c4a626fda0969fc...
https://github.com/javakeyring/java-keyring
People are complaining that the OS is not able to securely identify between two applications in the same user context. So they filed a bogus CVE, where the content of the CVE is basically "Linux is not an iPhone". It is a OS app sandboxing feature request, masquerading as a bug report to the keyring team.
Read the belated reply from the gnome keyring folks, pleading with people to understand what the linux security model is, and that linux doesn't have the sandboxing capabilities that have been rolled out to other (paid) operating systems:
https://wiki.gnome.org/Projects/GnomeKeyring/SecurityPhiloso...
Yet people don't understand. They are demanding that everything be turned into an iphone (in terms of app sandboxes) but they are also demanding that once the OS vendor has the power to install a chokepoint around all the apps, that they wont set up a little toll booth there as well.
But IMO asking vendors to not exploit that for commercial gain is only going to be safeguarded by regulation. It's not going to be safeguarded by consumer choice.
iSH[1,2] is an example of such a tool. It emulates an x86 Linux userspace on top of iOS.
[1] https://ish.app/
I note that even the Raspberry Pi is moving towards locked down devices, the RPi4 has an (easily cracked) HMAC blocking booting into the open source firmware and I hear more recent hardware editions have RSA signing support in the bootrom code.
https://github.com/librerpi/rpi-open-firmware/blob/master/do...
I agree that general purpose
If you are going to take a stand for open computing, you are going to have to make sacrifices. You will have to give up a lot of conveniences. As a technologist you will have to give both time and money. Apple and Google are not going to give up their billion dollar industries voluntarily. You will have to stop giving them money. And you will have to stop using their services.
My solution? I built myself a phone out of a Raspberry Pi 3 with a Touch Screen and a Logitech Headset. It does SMS/MMS and voice only. I've been using it for over a year now as my daily driver.
I'm going to open source the code. Check out https://github.com/another2020githubuser/thepyphone for more details. Right now there is just a README out there, the real code exists in a private git repo. I'm reviewing the code and stripping out private details so I don't end up doxxing myself :)
If you like the idea, please star the github project. I could use the encouragement. Thanks.
Interesting, the VC firmware is ThreadX based, indeed[1]! The number of platforms this runs on is absolutely mind-blowing (from an engineering perspective).
[1] https://github.com/hermanhermitage/videocoreiv