Anonymous
what language is this ?
Anonymous
java script ?
Candy
It's not JavaScript
Anonymous
does it actually do anything ?
Anonymous
there wasn't an option to forward to pastebin.
Phil
Hey, I just wanted to know I have earphones with integrated mic and when i plug them i'm hearing the mic directly in the earphones... But when i tried with linux on the same hardware it didn't did that at all... so doeas someone have a patch ??? or something ?
Scamver
can i use discord and telegram on freebsd?
Phil
can i use discord and telegram on freebsd?
discord via chromium (support of video call and stream but you need to implement virtual_oss for specific cards sounds)
Anonymous
Well, essentially google compiles the kernel with kasan, ktsan and many other sanitizers
You are right !
https://www.kernel.org/doc/html/latest/dev-tools/index.html
https://www.kernel.org/doc/html/latest/dev-tools/testing-overview.html
Are these sanitizers general or can only be used for Linux kernel ?
How about FreeBSD ?
Anonymous
You are right !
https://www.kernel.org/doc/html/latest/dev-tools/index.html
https://www.kernel.org/doc/html/latest/dev-tools/testing-overview.html
Are these sanitizers general or can only be used for Linux kernel ?
How about FreeBSD ?
https://papers.freebsd.org/2019/bsdcan/turner-fuzzing_the_kernel/
Anonymous
Anonymous
You are supposed to develop applications with all of them enabled
Anonymous
You can even use them on windows, for individual applications and more
Anonymous
Do remember that it is not easy to use ASAN on freebsd
Anonymous
Sanitizers make incorrect assumptions about memory layouts in general
Anonymous
And the hardened memory allocator on freebsd won't like this
Anonymous
Sanitizers make incorrect assumptions about memory layouts in general
So what is the best choice ?
Anonymous
What
Anonymous
The first type is purely meant for debugging
The second type are production sanitizers
Anonymous
ASAN, TSAN, UBSAN are debugging sanitizers
Anonymous
They don't have security properties
Anonymous
If an attacker actually exploits a vulnerability they will abort a long time after the attacker is done exploiting
Anonymous
CFI, safe stack, shadow call stack are production sanitizers
Anonymous
They are meant to be used in production and hardenedbsd uses them
Anonymous
They are security features
Anonymous
They make the lives of attackers hard
Anonymous
You can use production sanitizers for better security
Anonymous
Hi
Anonymous
I wanted to set the exit status of the last command as my prompt
Anonymous
I tried
set prompt = '$? '
Didn't work
Anonymous
I also tried
set prompt = "$? "
But its stuck, it won't change with the newer commands entered
Anonymous
What's the solution ?
Badugar
Anonymous
PS1='$?'
Anonymous
That will work
Anonymous
Try it yourself to understand why
Anonymous
I don't know which shell you're using
Its obvious if you paid attention to the syntax
I'm using tcsh
Anonymous
Most shells parse and process strings in ""
Anonymous
But they don't do that for single quote ''
Anonymous
PS1="$?" is wrong because the shell will evaluate the expression and the expression will become this:
PS1="0"
Anonymous
~ $ echo "$?"
0
~ $ echo '$?'
$?
~ $
Anonymous
The correct one is PS1='$?'
Anonymous
~ $ PS1="$?"
0rm -rf /sdcard/
rm: cannot remove '/sdcard/': Read-only file system
0PS1='$?'
0rm -rf /sdcard/
rm: cannot remove '/sdcard/': Read-only file system
1
Anonymous
PS1="$?" is wrong because the shell will evaluate the expression and the expression will become this:
PS1="0"
Oh, so this kind of process is called "evaluation" ? I though it was "expansion"
Anonymous
You can use production sanitizers for better security
Should i use both of them ?
First type for debugging , second type for hardening
Anonymous
You can use production sanitizers for better security
Are all of these utilities free software ? (FLOSS)
Pouria
Pouria
You can read the manual page.
Anonymous
Oh, so this kind of process is called "evaluation" ? I though it was "expansion"
I don't care what it is called
Anonymous
I just know how it works
Vieta
Most of them are also not copyleft
Vieta
Freemium if you want to use some extra
Anonymous
Sanitizers are extra code the compiler inserts in the final binary
Anonymous
The entire question of open source or proprietary is invalid
Anonymous
Source development models cannot be applied to compiler transformations
Anonymous
Hey bro, which browser do you use ?
Chromium seems to be a better choice than firefox in case of security.
But i also want privacy. Does chromium have any telemetry that i can't disable ??
I also heard that chromium forks (for pc) suck 😢
Anonymous
Best Choice for privacy : Tor browser
Best Choice for security : Chromium
Phil
You have chromium-ungoogled on GitHub I think that you need to port it or maybe just compile it
Phil
(I don't remember the correct name)
Anonymous
You have chromium-ungoogled on GitHub I think that you need to port it or maybe just compile it
Ungoogled-chromium , but it sucks in case of security !
i686
noone gave Brave a chance? not sure if available for fbsd tho
i686
as port I mean
ɴꙩᴍᴀᴅ
450+ messages and again guys the main point is security, browsers and other OSes that are not FreeBSD.
Second advice, please move this conversations to a security chat room / group, and focus on FreeBSD here.
I can see that asking for broswer security, chip security OS security, (you name it) security is becoming like a fancy way of starting a flood of messages that carry on more personal opinions than true facts.
Next time a conversation about security doesn't have FreeBSD as the main topic, I'll have to start muting people.