Libreware

Lennart Poettering intends to replace "sudo" with #systemd's run0. Here's a quick PoC to demonstrate root permission hijacking by exploiting the fact "systemd-run" (the basis of uid0/run0, the sudo replacer) creates a user owned pty for communication with the new "root" process. This isn't the only bug of course, it's not possible on Linux to read the environment of a root owned process but as systemd creates a service in the system slice, you can query D-BUS and learn sensitive information passed to the process env, such as API keys or other secrets. https://fixupx.com/hackerfantastic/status/1785495587514638559 Nitter mirror: https://xcancel.com/hackerfantastic/status/1785495587514638559

#systemd is a highly complex #Linux#backdoor https://skarnet.org/software/s6-rc/why.html

Net Switch: Isolate Apps from Internet Access Net Switch is a Magisk module to isolate apps from accessing the internet on your Android device. This tool gives you complete control over which apps can send or receive data, improving security, privacy, and saving bandwidth. Fully standalone, Operates fully on iptables. More info :https://github.com/Rem01Gaming/net-switch #magisk#firewall#privacy#afwallalterernative

IronFox Privacy and security-oriented Firefox-based web browser for Android. https://ironfoxoss.org/ releases new update. Updated to Firefox 135.0 Updated to Phoenix 2025.02.01.1 - (See changes from the last release of IronFox) uBlock Origin is now installed by default! Added a toggle that allow users to spoof their locale to en-US (located under Settings -> Language) for additional fingerprinting protection (using patches from Tor Browser). Users fluent in English are highly recommended to enable this setting. JavaScript & XFA are now disabled in Firefox's PDF Viewer (PDF.js) Enabled support for Firefox's tab strip feature on compatible devices - #27 Other minor tweaks & fixes. https://gitlab.com/ironfox-oss/IronFox/-/releases

Tiling Shell Advanced Window Management for #Linux#gnome desktops https://extensions.gnome.org/extension/7065/tiling-shell A GNOME extension for advanced window management. It's highly configurable and offers different ways of tiling and managing your windows. The focus is on delivering the best user experience, highest stability, and full customization. It also works with multiple monitors (even if they use different scaling), comes with a number of tiling layouts built-in but there is a layout editor to allow you to create and save customs layouts. Tiling Shell also features the Snap Assistant, borrowed from Windows 11: just move a window to the top with your mouse and the Snap Assistant slides in and you can place the window where you want and how you want. * Automatic tiling * Fully customizable keyboard shortcuts to tile, move windows, change focus and more * You can also move the window to the edge of the screen to tile it * Right click on the window title to place the window where you want and how you want it * Coming soon this week, Windows Suggestions: after tiling a window you get suggestions for other windows to fill the remaining tiles ... There are other features https://github.com/domferr/tilingshell Tiling Shell supports GNOME Shell 40 to 47 on X11 and Wayland.

DisableGoogleAnalytics https://gitlab.com/adrian.m.miller/disablegoogleanalytics Attempts To Disable Common Google Analytics And Ads Receivers In All Affected Packages What it does/How it works: On 1st run after rebooting after install the module is assuming you want it to disable the listed analytics and ad receivers, so it will: Wait till boot is completed Then sleep for 2 minutes Then test that cpu usage is under 30% before running It will then disable the analytics and ad receivers as listed below, and log its progress to /sdcard/fixgoogleanalytics.log Common Analytics And Ad Recievers: com.google.android.gms.analytics.AnalyticsJobServicecom.google.android.gms.analytics.CampaignTrackingServicecom.google.android.gms.measurement.AppMeasurementServicecom.google.android.gms.measurement.AppMeasurementJobServicecom.google.android.gms.analytics.AnalyticsReceivercom.google.android.gms.analytics.CampaignTrackingReceivercom.google.android.gms.measurement.AppMeasurementInstallReferrerReceivercom.google.android.gms.measurement.AppMeasurementReceivercom.google.android.gms.measurement.AppMeasurementContentProvidercom.crashlytics.android.CrashlyticsInitProvidercom.google.android.gms.ads.AdActivitycom.google.firebase.iid.FirebaseInstanceIdService Once complete the service.sh script will delete itself Once that happens any further interaction is purely via the included dga script as a binary in /system/(x)bin dga takes 2 arguments, disable or enable, though i doubt too many will be looking to enable analytics and ad receivers, unless the disabling has unwanted effects on their system, which is high time to include the usual disclaimer that you run this at your own risk and not even dga enable is garaunteed to undo the changes Module Installation: Download from Releases Install the module via #Magisk app/Fox Magisk Module Manager/MRepo Reboot Usage: After first run optmization has completed, any further interaction is purely via the included dga script as a binary in /system/(x)bin: dga takes 2 arguments, disable or enable, though i doubt too many will be looking to enable analytics and ad receivers, unless the disabling has unwanted effects on their system, which is high time to include the usual disclaimer that you run this at your own risk and not even dga enable is garaunteed to undo the changes Uninstall Note: Uninstalling the module will not reverse the changes, if your intention is to uninstall the module and re-enable the analytics and ad receivers, please run dga enable first

Cherry Studio Cherry Studio is a desktop client for Windows, Mac and Linux, which supports many LLM providers, including large cloud services and local models. Among its main functions is the ability to work with more than 300 pre -designed #AI assistants, the creation of custom assistants, as well as support for various formats of documents, including text, images and office files. The application offers tools for global search, top management and translating, which significantly improves interaction with the user thanks to the cross -platform and many settings options. https://github.com/cherryhq/cherry-studio

Run DeepSeek R1 #AI locally on #Linux with our guide. https://itsfoss.com/install-deepseek-r1-locally-linux/ the 1.5b model is not that useful, check the other variants here: https://ollama.com/library/deepseek-r1/tags Up to 14b is recommended for most home computers: https://ollama.com/library/deepseek-r1 @itsfoss_official

You’ll see that the command, when ran a minute or more apart, will produce new values now. me@virtbox-testing:~$ cat /etc/machine-id && cat /var/lib/dbus/machine-id b722903d87994e24b6378289262c3021 b722903d87994e24b6378289262c3021 me@virtbox-testing:~$ cat /etc/machine-id && cat /var/lib/dbus/machine-id 4352c41ad7fb4a05a54b0942c5c27cb0 4352c41ad7fb4a05a54b0942c5c27cb0 In closing Uniquely identifying ID’s are rarely a good thing when you take privacy into consideration, and although these items have their purpose in limited use cases it doesn’t appear that generating a new unique ID every minute has any downsides. What do you think? Is this a pointless privacy practice or a needed, but often overlooked part in maintaining privacy in the modern age? Let us know in the comments below. Additional Thoughts After publishing this article, we received some feedback that I’d like to touch base on here. Testing the high privacy, pro-anonymity Tails-OS shows that you receive a new machine-id after every reboot. Props to Tails-OS! Testing the privacy and anonymity promoting Whonix-OS shows that they do not issue a new machine-ID after every reboot. A commenter on a [RAMBLE] post mentions that MXLinux does not use systemd, and thus does not use a machine-id. Here is a list of Linux operating systems that do not use systemd. (And will not have a machine-id) Yes, there are other uniquely identifying aspects on all systems. From device serial numbers to MAC addresses. The purpose of this post was to discuss a lesser discussed unique identifer: machine-id.