“When he reached the New World, Cortezh burned hish ships. Ash a reshult hish men were well motivated.” —Capt. Ramius, played by Sean Connery in The Hunt for Red October

This is all I’ve run across on reverse engineering, so far but it is quite interesting.

https://bsky.app/profile/filippo.abyssdomain.expert/post/3kowjkx2njy2b

Some of the trust comes from eyes on the project thanks to it being open source. This thing got discovered, after all. Not right away, sure, but before it spread everywhere. Same question of trust applies to commercial software too.

Ideally, PR reviews help with this but smaller projects esp with few contributors may not do much of that. I doubt anyone has spent time understanding the software supply chain (SSC) attack surface of their product but that seems like a good next step. Someone needs to write a tool that scans the SSC repos and flags certain measures like the # of maintainers.

PS: I have the worst allergies I’ve had in ages today and my brain is in a histamine fog so maybe I shouldn’t be trying to think about this stuff right now lol cough uuugh blows nose

Well maybe they aren’t experienced info security professionals :)

I get where you’re coming from but is he managing his risk or not?

Does he understand the risk? If yes, good. No? Bad.

Is he ignoring the risk? If yes, bad. No? Good.

Is he weighing the risks against the benefits he receives of using these apps and taking appropriate steps to mitigate those risks? If yes, then good. No? Bad.

Cyber security isn’t “lock everything down at all costs”. Otherwise I would insist you throw your phone in an incinerator along with all your computers, live in a bunker reinforced against nuclear attack with a small army to guard you, never leave it, never talk to anyone… Etc.

It is enabling one to achieve their goals with a tolerable amount of risk. That level of tolerable risk is different for everyone.

What are you trying to achieve?

It’s kind of horrifying nobody thought that through. What else did they fail to think about?

Totally agree. Have been there and done that quite a few times too.

Very cool. Easily my favorite use for 3d printing.

Related, I think there are several sets of files for various RC cars I have run across. Would be kind of fun to download a whole (RC) car :)

hides

Load average of 400???

You could install systat (or similar) and use output from sar to watch for thresholds and reboot if exceeded.

The upside of doing this is you may also be able to narrow down what is going on, exactly, when this happens, since sar records stats for CPU, memory, disk etc. So you can go back after the fact and you might be able to see if it is just a CPU thing or more than that. (Unless the problem happens instantly rather than gradually increasing).

PS: rather than using cron, you could run a script as a daemon that runs sar at 1 sec intervals.

Another thought is some kind of external watchdog. Curl webpage on server, if delay too long power cycle with smart home outlet? Idk. Just throwing crazy ideas out there.

Good to hear all that, and thanks! I will give it a whirl and see what happens. Best of luck on your project.

It is, yeah. Nobara has been great for the most part. Though it isn’t as polished as I’ve found Mint to be (without more contributors I don’t see how it could be). But really the only reason I switched was for GPU support that the 6.x kernel provided.

That was my concern with Nobara as well. That and the wonky patching process (on the command line), a footgun I used on myself recently. I’ve been on Fedora for a few months. Maybe it is time to give Garuda a go.

Much appreciated!

If love to copy your conky setup. That looks slick.

My guess is conky. I use it too but mine doesn’t look anywhere near as nice as OP’s does.

I think it was sunspots.

How could Linux do this to you??

(Totally never happened to me /s)

Good to know. Well I have 16G now that should give me plenty to spare.