Are you installing needed libraries?
For example, the installer runs because it doesn’t need any, but then your app needs say VCRedist 2010, and so won’t until run until you add the vcrun2010 extra library with Winetricks or the menu in Bottles.
What happens next? A wave of even worse disregard for things.
After all, if we can bring back the mammoth, who cares if we off <insert species here>, they’ll just bring it back next rotation. /s
Since you mention setup instead of any manual install screwery, I’d say root(uid 0) is still very real, you just didn’t setup any login for it. Every time you sudo (substitute-user-do), you(probably uid 1000) are running that command as root instead of you. In fact, just sudo -i and you are now “logged in” as root.
Edit: Missed the context. Should still be useful info but you probably are not accidentally remoting into an account you never setup the login for.
Raspbian is sometimes a compromise between security and usability, because it is designed to go into the hands of new users. It also used to ship with a default “pi/rasberry” login hardcoded and IIRC permitted root password login over ssh. Things experience users change or turn off, but needs to start friendly for the rest, you know?
By doing this, they can take a step in the right direction by separating the root and login user, without becoming annoying asking for a password frequently as a newbie copies and pastes tutorial commands all week.
And as I said it’s unlikely, even very unlikely, but just not impossible. Everything comes with a risk, I just believe it’s up to you, not me, what risks mean in your environment. Might be you’d like to have the convenience on the home dev server, but rather have as much security as possible on a public facing one.
Or maybe you’d like to get really dialed in and only allow specific commands to be run without a password, so you can be quick and convenient about rebooting but lock down the rest. Up to you, really, that’s the power of Linux.
In Debian, you will want to modify your /etc/sudoers file to have the NOPASSWD directive.
So where you find something like this in that file:
%sudo ALL=(ALL:ALL) ALL
Make it like this:
%sudo ALL=(ALL:ALL) NOPASSWD:ALL
In this example, powers are given to the sudo %group, yours might just say pi or something else the user fits into.
Also, please note that while this is convenient, it does mean anyone with access to your shell has a quick escalation to root privileges. Some program you run has a shell escape vulnerability and gets a shell without a password, this means they also get root without one too. Unlikely to happen, sure, but I believe one should make informed decisions.
Now would be a good time to look for a .com you like, or one of the more common TLDs. And register it at Namecheap, Porkbun, or Cloudflare. (Cloudflare is cheapest but all-eggs-in-one-basket is a concern for some.)
Sadly, all the cheap or fun TLDs have a habit of being blocked wholesale, either because the cheap ones are overused by bad actors or because corporate IT just blacklists “abnormal” TLDs (or only whitelists the old ones?) because it’s “easy security”.
Notably, XYZ also does that 1.111B initiative, selling numbered domains for 99¢, further feeding the affordability for bad actors and justifying a flat out sinkhole of the entire TLD.
I got a three character XYZ to use as a personal link shortener. Half the people I used it with said it was blocked at school or work. My longer COM poses no issue.
Plug it into a monitor or TV and keep an eye on the console.
I have an older NUC that will not cooperate with certain brands of NVMe drive under PVE…the issue sounds like yours where it would work for an arbitrary amount of time before crashing the file system, attempting to remount read-only and rendering the system inert and unable to handle changes like plugging a monitor in later, yet it would still be “on”.
I recommend Dockge over Portainer if you want a web admin panel. https://github.com/louislam/dockge
It’s basically docker compose in a website, and you can just decide one day to turn it off and use the compose files directly. No proprietary databases or other weirdness.
Like a non-profit, with tax breaks and the ability to earn enough to operate, but little more than that or the taxes come back with a vengeance.
Everything needs money to run but when there’s the option to shovel out whatever bait it takes to chase the dragon of uncapped earnings, they’re not in it to keep us informed, just to keep us spending.
Between Lemmy and Reddit, I’m a long time lurker, rarely a poster, especially as toxic as Reddit was I just found what I was looking for and moved along. Don’t mind me, I’m just:
PassingThrough.
I use Minio https://github.com/minio/minio, though there are others. As someone who never worked with s3 before but wanted to try it and use it with some apps that supported s3 as a storage target, it’s been working fine for me though I’m certainly not using it to its potential. Has web access and all.
Others might be:
I often compare Natural Selection to Survivorship Bias, because as far as I can tell that is what it is.
There is no “drive” or mythical force to be better. A mutation occurs and the result works or doesn’t.
Those that work have survived until today, and those that don’t failed to reproduce sufficiently to reach today.
That said, today we actually have what I call “Un-natural Selection”, and that is when we humans take something that would have failed naturally and ensure its success through our intervention. Think seedless plants or humans/animals with chronic disabilities. Natural selection would likely have eliminated them for failure to function or reproduce, but through our will they endure. For now.
I wouldn’t say it’s only Critical, LTSC still gets average security fixes. They don’t get Feature updates, but they still get Security updates, is how it’s normally put. And it’s not as bad as it sounds. Even as a gamer stability is a good thing, and there are plenty of third party softwares for any desirable “features” that get delayed or skipped. If LTSC gets any fewer security updates it’s because it has less built in crap to need updating.
I’ve never needed funny graphics in my taskbar search bar or Bing in my start menu or the Edge bar or whatever it was that now clutters my friend’s task bars as of the last Feature update. But I still get my security fixes and Defender definitions every Patch Tuesday.
But the trick is getting a copy, true.
I won’t claim to know for sure, but I’ll place my bet on it still being about motivated by profit and growth. Supposedly Windows 10 was supposed to be the last Windows ever, and move to an eternal patching process, but I guess that didn’t stick. So obviously just keeping you on Windows isn’t enough, they found a need to create a refresh.
I did notice that refresh has new hardware requirements, like TPM modules and such. Deals with the OEMs to get people to buy/build new PCs?
There’s talk of advertisements and sponsored links in the very Start Menu, so partnerships with advertisers to get closer to your daily activities?
I won’t say I know for sure, because I only use Windows for video games. So, I too will be running Windows 10 until the games don’t work anymore. Might I recommend, if you can get a copy, Windows 10 LTSC? It is a bared bones version of Windows made (by Microsoft) for enterprises and governments who would never buy into consumer features like advertising and analytics, so it’s very clean, fast, and not full of spying junk or ads like the Home versions. And it hasn’t bugged me once about upgrading. All my games run fine after some one-time minor command prompt foolery to get the Store and XBOX game pass apps back.
EDIT: Also, LTSC is Long-Term Support Channel, so additionally it will be supported longer than the regular editions, and be safer longer. Unless they change their minds this time around of course, but I doubt it. You don’t rush the government through a PC upgrade if you want them to fund you.
deleted by creator
One thing I can think of is an overzealous corporate security solution blocking or holding back your email purely for having an attachment, or because it misunderstands/presumes the cipher-looking text file to be an attempt to bypass filtering.
Other than that might be curious questions from curious receivers of the key/file they may not understand, and will not be expecting. (“What’s this for? Is this part of the contract documents? Oh well, I’ll forward it to the client anyway”)
Other than that it’s a public key, go for it. Hard (for me anyway) to decide to post them to public keychains when the bot-nets read them for spam, so this might be the next best thing?