sysadmin issueshttps://gitlab.tails.boum.org/tails/sysadmin/-/issues2020-05-15T14:45:58Zhttps://gitlab.tails.boum.org/tails/sysadmin/-/issues/14979Remove DAVE from AMO2020-05-15T14:45:58Zsajolidasajolida@pimienta.orgRemove DAVE from AMO_Originally created by @sajolida on [#14979 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/14979)_
Parent Task: tails/tails#12328_Originally created by @sajolida on [#14979 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/14979)_
Parent Task: tails/tails#12328Tails_3.5https://gitlab.tails.boum.org/tails/sysadmin/-/issues/14980Migrate from "Download and Verification Extension" to "Verification Extension...2022-03-16T08:25:20Zsajolidasajolida@pimienta.orgMigrate from "Download and Verification Extension" to "Verification Extension" on Redmine_Originally created by @sajolida on [#14980 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/14980)_
Another option would be to have two different Affected tools.
intrigeri probably has an opinion on this so I’ll le..._Originally created by @sajolida on [#14980 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/14980)_
Another option would be to have two different Affected tools.
intrigeri probably has an opinion on this so I’ll let him do as he
pleases :)
Parent Task: tails/tails#12328Tails_3.5https://gitlab.tails.boum.org/tails/sysadmin/-/issues/16068Have a repo for the Etcher binary2020-05-15T13:40:24Zsajolidasajolida@pimienta.orgHave a repo for the Etcher binary_Originally created by @sajolida on [#16068 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/16068)_
Similary as we’re currently doing for UUI, I think we should have a repo
for the Etcher binary.
See <https://git.t..._Originally created by @sajolida on [#16068 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/16068)_
Similary as we’re currently doing for UUI, I think we should have a repo
for the Etcher binary.
See <https://git.tails.boum.org/uui-binary/>.
It would:
1. Provide us with a stable URL to download the binaries. Right now,
the URLs used by Etcher or their GitHub include the version number.
2. Give stability to the version used by our users and make sure that
their are running what is documented.
3. Help us spot whenever their interface change and we need to update
our documentation.
4. Possibly prevent Etcher or GitHub from distributing rogue downloads
to Tails users (that could be identified through the referrer). We
could check that the version of Etcher that we are distributing
produces the correct result (something that is not possible so far
with UUI).
Note that we could achieve #1 and #2 by pointing to a given release
version in GitHub. To have #3 we would have to test new versions by
hand, like I’ve been doing for UUI.
If we don’t want to have our own repo and always point to the latest
version, we could ask Etcher to provide a stable link or write some code
on our side.
Assigning to intrigeri as sysadmin/RM with more hours on the USB image
project: what do you think?
### Related issues
- **Related to** tails/sysadmin#9893
- **Blocks** tails/tails#16199
- **Blocks** tails/tails#16192Tails_3.12https://gitlab.tails.boum.org/tails/sysadmin/-/issues/12165Firefox is still dangerous - Bloatware2020-05-15T15:53:52ZGhost UserFirefox is still dangerous - Bloatware_Originally created by @Tails-Beta on [#12165 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/12165)_
Please discuss with non Mozilla paid people , if its not better
to install firefox with less standard config an..._Originally created by @Tails-Beta on [#12165 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/12165)_
Please discuss with non Mozilla paid people , if its not better
to install firefox with less standard config and better privacy
settings
or prepare other Builds with other browsers which use less RAM ,too.
Firefox has some good features, but when you look back to version 1
in 2003 (?) the code was 1 MB and was running fine.
And with nearly the same “options” , so in many years the options menue
was not really made better,
but it had only much bugs and made maximum confusion/desinformation for
97% of all users
who dont know all the configs and background features.\!
Because a goog software will bring the Help/Info on the desktop.
But Mozilla does all for maximal desinformation whats going on in the
background\!
and that very very bad and unfair\!
This has nothing to do with the idea of open source and transparancy.\!
Background:
Mozilla hates the EU “Opt-in” Law, because they want as much data as
they can get.
Therefore they work with many third parties who collect more and more
data.
Of course many knew the bad things from WOT App…And there are many other
apps which sniff data
and do not what they tell you\!
E.g Ad Block PLus .
Its very frustrating that Tails used this App and the discussion was
over one year\!
Its very bad, that the deinstallation of Ad Block does not work,and that
people write here , that
there is no time for support or a deinstall with root \!\!?
Its very bad , that settings of browser cannot be safed correctly and
some other app problems in Tails..
Mozilla will not change all the opt-in options ,until they are brought
to court.
And this will come soon , if they will not learn, that there are already
existing laws for better privacy.\!
The only solution is to make explicit software for EU / US Areas.
Mixed is not allowed anymore.
You all must read the LAW before you release software\!
So many times Tails is like a beginning of a Beta ,as Mozilla all three
months releases a new
beta (they say stable) with many new bugs…
And I promise you this will never end , if the community will not change
this\!
And of course the Sponsors must be cut off… Google and other data
collectors\!
And if Tails Delevopers will not opt-in then all work is for noting
good\!
So that you understand this, search for “firefox bloatware” or else…
A good info site is <https://wiki.kairaven.de/open/os/linux/mailsystem>
And that Tails Team does not check a NSA Partner a little bit better is
strange…
Because there are even things which Mozilla writes for better anonymous
settings in firefox.
Alls this is not done in Tails\!
The sync and all other services are “true” and make many connections
which are not necessary
or wanted.
And asking Mozilla is a big trouble too.They will not answer where the
data goes and what
is saved from each IP.
This shit must be stopped now.\!
I will not trust Mozilla anymore and what they do is just a playing
around\!\!
Even Debian maintainer of firefox are not very lucky to tell about
firefox
security and big data \! You can ask carsten schoenert from debian ,what
he knows and not\!
To Do :
\- build or buy a new browser in a store ( not play store\!) ;-) and fix
it to stable and secure.
\- dont use any app-net-pdf-tools in the browser , which people dont
need (user seperate builds for this )
\- make more builds even from tails , with less size ( eg. delete office
or other tools )
\- until this , fix the file handling (pdf open) on firefox ,it cant be
saved.
\- stop all http connection form any app in Tails at once from start .
Normally a NTP server is not needed.(still in 2.9?)
\- delete all http connection in about:config , reports , safebrowsing
,updates etc…
\- add more email clients in the relaese ,as icedove is not secure
anymore
and now built in cookie support\! really shit \!
(check if you not must use “thunderbird” name like in debian….?)
\- the -install “debian-keyring” does not work.
\- there are missing sha256sums for iso files,what is standard in every
linux
\- the changes of debian 8 can be better documented and other settings…
\- test suse linux for tails , as it has less bugs since years\!
\- test BSD as it has MUCH MORE LESS\!\!\! bugs since years\!
\- test a debian small system or a smaller faster linux perhaps for
later migration
to smartphones.
(As I can tell you Android will also never be safe in future \!\! just
forget ist \!
THis week comes a horrible bbug list ,that even MMS Messages can hack
your Android\!
You think this was a mistake ? Forget it \!)
For alle Bug-readers: Spend to Tails, as i Believe they will do good
things \!
cheers \!https://gitlab.tails.boum.org/tails/sysadmin/-/issues/12166Firefox is still dangerous - Bloatware2020-05-15T15:55:09ZGhost UserFirefox is still dangerous - Bloatware_Originally created by @Tails-Beta on [#12166 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/12166)_
Please discuss with non Mozilla paid people , if its not better
to install firefox with less standard config an..._Originally created by @Tails-Beta on [#12166 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/12166)_
Please discuss with non Mozilla paid people , if its not better
to install firefox with less standard config and better privacy
settings
or prepare other Builds with other browsers which use less RAM ,too.
Firefox has some good features, but when you look back to version 1
in 2003 (?) the code was 1 MB and was running fine.
And with nearly the same “options” , so in many years the options menue
was not really made better,
but it had only much bugs and made maximum confusion/desinformation for
97% of all users
who dont know all the configs and background features.\!
Because a goog software will bring the Help/Info on the desktop.
But Mozilla does all for maximal desinformation whats going on in the
background\!
and that very very bad and unfair\!
This has nothing to do with the idea of open source and transparancy.\!
Background:
Mozilla hates the EU “Opt-in” Law, because they want as much data as
they can get.
Therefore they work with many third parties who collect more and more
data.
Of course many knew the bad things from WOT App…And there are many other
apps which sniff data
and do not what they tell you\!
E.g Ad Block PLus .
Its very frustrating that Tails used this App and the discussion was
over one year\!
Its very bad, that the deinstallation of Ad Block does not work,and that
people write here , that
there is no time for support or a deinstall with root \!\!?
Its very bad , that settings of browser cannot be safed correctly and
some other app problems in Tails..
Mozilla will not change all the opt-in options ,until they are brought
to court.
And this will come soon , if they will not learn, that there are already
existing laws for better privacy.\!
The only solution is to make explicit software for EU / US Areas.
Mixed is not allowed anymore.
You all must read the LAW before you release software\!
So many times Tails is like a beginning of a Beta ,as Mozilla all three
months releases a new
beta (they say stable) with many new bugs…
And I promise you this will never end , if the community will not change
this\!
And of course the Sponsors must be cut off… Google and other data
collectors\!
And if Tails Delevopers will not opt-in then all work is for noting
good\!
So that you understand this, search for “firefox bloatware” or else…
A good info site is <https://wiki.kairaven.de/open/os/linux/mailsystem>
And that Tails Team does not check a NSA Partner a little bit better is
strange…
Because there are even things which Mozilla writes for better anonymous
settings in firefox.
Alls this is not done in Tails\!
The sync and all other services are “true” and make many connections
which are not necessary
or wanted.
And asking Mozilla is a big trouble too.They will not answer where the
data goes and what
is saved from each IP.
This shit must be stopped now.\!
I will not trust Mozilla anymore and what they do is just a playing
around\!\!
Even Debian maintainer of firefox are not very lucky to tell about
firefox
security and big data \! You can ask carsten schoenert from debian ,what
he knows and not\!
To Do :
\- build or buy a new browser in a store ( not play store\!) ;-) and fix
it to stable and secure.
\- dont use any app-net-pdf-tools in the browser , which people dont
need (user seperate builds for this )
\- make more builds even from tails , with less size ( eg. delete office
or other tools )
\- until this , fix the file handling (pdf open) on firefox ,it cant be
saved.
\- stop all http connection form any app in Tails at once from start .
Normally a NTP server is not needed.(still in 2.9?)
\- delete all http connection in about:config , reports , safebrowsing
,updates etc…
\- add more email clients in the relaese ,as icedove is not secure
anymore
and now built in cookie support\! really shit \!
(check if you not must use “thunderbird” name like in debian….?)
\- the -install “debian-keyring” does not work.
\- there are missing sha256sums for iso files,what is standard in every
linux
\- the changes of debian 8 can be better documented and other settings…
\- test suse linux for tails , as it has less bugs since years\!
\- test BSD as it has MUCH MORE LESS\!\!\! bugs since years\!
\- test a debian small system or a smaller faster linux perhaps for
later migration
to smartphones.
(As I can tell you Android will also never be safe in future \!\! just
forget ist \!
THis week comes a horrible bbug list ,that even MMS Messages can hack
your Android\!
You think this was a mistake ? Forget it \!)
For alle Bug-readers: Spend to Tails, as i Believe they will do good
things \!
cheers \!https://gitlab.tails.boum.org/tails/sysadmin/-/issues/17923Slow networking from misc.lizard for check_mirrors_cronjob.sh2022-06-20T14:21:39ZintrigeriSlow networking from misc.lizard for check_mirrors_cronjob.shSince 2022-05-13, every day, 1 run of this cronjob fails a little bit after 05:00 UTC with a timeout, after 300m. I see unusually slow transfer rates from 10+ mirrors for each of these runs (when the whole thing does not timeout even bef...Since 2022-05-13, every day, 1 run of this cronjob fails a little bit after 05:00 UTC with a timeout, after 300m. I see unusually slow transfer rates from 10+ mirrors for each of these runs (when the whole thing does not timeout even before having tried so many mirrors), which makes me suspect a problem on our side, or with the colo connectivity, rather than suddenly tons of our mirrors becoming slow.
This prevents the cronjob from checking the other mirrors, which may leave us unknowingly with broken mirrors, which can break initial installation and upgrade UX, hence ~"P:Elevated".
However, I don't think we should spend more than 1-2h on this before giving up: instead I think we should work on tails#18263.Zen FuZen Fuhttps://gitlab.tails.boum.org/tails/sysadmin/-/issues/17771Allow cross-origin requests on https://tails.boum.org/install/v2/Tails/amd64/...2022-03-16T08:25:27Zsajolidasajolida@pimienta.orgAllow cross-origin requests on https://tails.boum.org/install/v2/Tails/amd64/stable/latest.jsonSee https://gitlab.tails.boum.org/tails/tails/-/issues/16128#note_156929.
We're killing the verification extension and moving the verification to the page itself.
We want to ask you to change the same-origin policy for https://tails.bo...See https://gitlab.tails.boum.org/tails/tails/-/issues/16128#note_156929.
We're killing the verification extension and moving the verification to the page itself.
We want to ask you to change the same-origin policy for https://tails.boum.org/install/v2/Tails/amd64/stable/latest.json in Nginx. This would ease the development of this verification page from a local version of the website. It would also allow users to verify from the local version of our website included in Tails.
If I understand correctly, it means returning `Access-Control-Allow-Origin: *` as an extra header when fetching https://tails.boum.org/install/v2/Tails/amd64/stable/latest.json.
Note that using "file:///home/amnesia/Persistent/Tor%20Browser/master/install/v2/Tails/amd64/stable/latest.json" for development doesn't work either, so it seems like we anyway need to use a server that have a more relaxed same-origin policy for testing and development. That's why @meixler used his proxy for dev but I'd rather not depend on his personal development resources on the long term.Zen FuZen Fuhttps://gitlab.tails.boum.org/tails/sysadmin/-/issues/16127Website install/ broken2020-05-21T12:22:08ZAnonymousWebsite install/ broken_Originally created by @Anonymous on [#16127 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/16127)_
Today the website has been broken for me multiple times on /install.
I’m attaching a screenshot. I’m not quite su..._Originally created by @Anonymous on [#16127 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/16127)_
Today the website has been broken for me multiple times on /install.
I’m attaching a screenshot. I’m not quite sure what is happening as when
I fetch from tails.git:master, I don’t actually see any modifications
that could result in this issue.
\- there is a link that leads to a 404 /install/debian
\- the assistant.css file is not found resulting in this weird visual
behavior
### Attachments
* [broken_install.png](https://redmine.tails.boum.org/code/attachments/download/2172/broken_install.png)
### Related issues
- **Is duplicate of** tails/sysadmin#16124groentegroente