• 3 Posts
  • 152 Comments
Joined 10 months ago
cake
Cake day: December 27th, 2023

help-circle

  • well for e2ee you obviously have to let one e encrypt the data for the other e. (good luck with newsletters then) for usual services kindly asking them to support either s/mime or gpg for outgoing emails, that would at least make them know the wish, but good luck there too.

    i think the already mentioned solution with encrypting incoming messages on your side just before mda to your inbox should be the closest possible to what op wants. one would need to check if the message is already encrypted and skip encryption for those.

    if you only want the admin of that email (imap) server to not be able to read all emails, maybe placing a separate encrypting server (smtp+encrypt+forward) inbetween outside world and your email imap server could be a solution.

    one should have a look into the logfiles too as some mailers might log message subjects and of course sender/recipients along with ip adresses of incoming/outgoing servers which the op might not want to be readable as well (i dont know protonmail that much)

    also gpg IMHO allows for sign-then-encrypt hiding the signature within the encrypted data which could be wanted. also one might want to look exactly what parts of the messages contents and its headers are encrypted or plaintext on the server before feeling safe from the threat one wants to be protected from.




  • you’re welcome.

    what i’ld suggest… a general rule that i like to always follow is to use a test system for everything new. but that does not need to be a full separate system every time.

    lets say you have your mailbox and want to try getting new mails from it using fetchmail. first you can use uidl mechanisms to only fefch every mail once and besides that leave them all on the server, but i like it a bit more secure: create a second email adress/account at your mail providers service only for testing. thus you can do whatever you like to to test the mechanisms only without even touching your real inbox (maybe even fill it up with large emails and look how the system reacts, i once had an email account with a cheap provider that deadlocked the inboxes when full…). then when everything is as you want it, switch the account and password (or create another config file for fetchmail) and your’re done. every change (not only fetchmail things) could go tested this way before going live with the changes. filtering could be done with procmail for example, but when the mda that is called by procmail somehow exits with success when the email really isn’t delivered, then the email might get lost forever depending on the settings of course. so fiddling with new stuff always carries the risk of not fiddling correctly ;-)

    have fun !


  • Its possible to tell your mta (like postfix) to use another mta for all mails, or only some domains etc, so using a third party to play the internet facing service then getting the mails by fetchmail, storing them in a dovecot server is easy. on the sending part you could use your standard email client (i.e. thunderbird on pc or k9-mail on smartphone) to send it to your postfix instance that also sits on the server hosting your dovecot service. the mta there takes the mail and delivers it by rules which could just be using the mta of your freemailer using username/password of your account for all outgoing emails. i am doing this but the “external” mail system are my servers as well, i just don’t want emails to stay too long on VMs in the datacenter where i have no access to the physical disks in case something goes wrong.

    a raspberry pi is sufficient for such a aetup (i am using a pi4 currently but for emails only i’ld say a 3 or older would do too), adding a disk via usb makes storage huge and cheap then, i use two usb ssd’s in a raid1 for storage… that server could be only accessible through vpn if you whish, depending on your skills and needs (i mainly use ssl client certificates that are supported by k9mail and thunderbird so it fits seamless to be connected through a haproxy that authenticates these before proxying the plain connection to the pi) clients like thunderbird can offline-store all emails (configure download-or-not per imap folder) making searches easy and quick while my k9 client can search locally or on the server if needed.

    maybe adjust maximum mail size of your own mta to exactly match (or slightly less) that of the freemailer you use to prevent surprises of big but later then unsent emails.

    its possible to have a nextcloud instance on that same pi that acts as an email web mailer just in case of (i really dont need it, but i’ve set this up anyway). nextcloud is also great for syncing/backup files pictures, contacts notes todo lists and calendar of your phone (where i use davx5 opentasks and foldersync for). there are other webmailers available but installing /using nextcloud is not a too bad idea either ;-)

    i suggest also setting up some automatic offsite backup with snapshots of that pi then to cover emails and the setup and its configs ;-)


  • you sound like you want to fight anti-civilisation with a non-civilised aproach, but thats not gonna do it. as you wrote “infested”, i strongly believe that becoming evil when fighting evil only helps evil. what comes next after you hung some of who you thought should acompany those oak trees for a while? you choosed to believe that would solve the problem for now, didn’t you? what would really happen (in case you dind’t just wanted to deathwish them only to experience that parasites are immune to deathwishing)? even when youre not going to jail for some reasons, you then have achieved what? wouldn’t there be another one to fill that position* who “thanks” you for helping him into it? but how would that “thank you” look like? well as you would have removed the previous one from his position and you were the “friend” of the new villain helping him into his new position, that beeing a friend immediately turns into a threat to him as soon as he ‘has’ that position and you’re not welcome any more but an enemy to take down unless you start to work with your new skills for that villain to do other dirty work for him and become another evil instead of helping against evil.

    *(where “position” is anything someone can hide behind by law)

    those hiding behind laws will always be there until those laws are adjusted, the persons might change, but the possibility of hiding behind laws would still be there and attract villains, the bigger the villain, the more attractive those laws are to him.

    try to control your anger first and become really good at it or you might end up beeing controlled by some villain using your anger for his own purposes (do you watch tv btw? do you get manipulated by it?)

    maybe step back and become a scientist instead who analyses the parasites how they do what and how they could be really be fought one day without beeing just evil but not achieving anything. and a scientist that helps others becoming parasite analysing scientists themselves.

    if you find another civilized aproach that works or at least should, plz tell me.





  • smb@lemmy.mltoLinux@lemmy.mlA word about systemd
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 month ago

    one example of a program that did multiple things is sfdisk, it used to make the kernel reload the new partition table but that was not its main job, only changing them. the extra functionality moved to blockdev which is nearer to doing such as it also triggers flushing buffers and i think setting read/write status. i am fully ok with that change as it removes code from a program that doesn’t need it to another that already does similar things so that other partitioning programs like gdisk fdisk or parted could go the same way so that maintainers of the reread-partition-table things can concentrate on one solution at one place (in userspace) instead of opening issues at an unknown number of projects that also alter partitioning. the “do one thing” paradigma is good for developers who maintain the code and i pretty much appreciate their work. if you are up to only want one-day-flies that either die or take huge amounts of resources only for keeping them alive (image of a mayfly in an emergency room and a heart-lung machine attached while chirurgs rushing around trying to enlenghten its life a few seconds more) then you are good with monolithic tools that could hardly be maintained and suck allday as no one wants to fix any bugs or cannot without creating new ones due to the tightened dependency hell it has internally.

    the point is not a lack of examples doing wrong but where one wants to be heading towards.


  • smb@lemmy.mltoLinux@lemmy.mlA word about systemd
    link
    fedilink
    English
    arrow-up
    4
    ·
    1 month ago

    Lol what???

    wouldn’t that be the definition of stable?

    the computer on voyager 2 is running for 47 years now, they might have rebooted some parts meanwhile but overall its a long time now, and if the program is free of bugs the time that program can run only depends on the durability of the hardware, protection from cosmic rays (which were afaik the problems the voyager probes faced mostly, not bugs) which could be quite long if protected from hazardous environments and maybe using optoelectronics but the point is that a bug free software can run forever only depending on hardware durability and energy supply, in any other way no humans are needed for a veery long time ;-)


  • the civilisation of diego garcia people (or how the islands are named by them and how they name themselves) are forced away from their homeland ‘right now’, not only in the past.

    hawaiian country is destroyed ‘right now’ by their invaders military, not only in the past.

    not to mention how ‘law enforcement’ acts on people without that secure pale skin today in the us, which is happening ‘right now’, not only in the past and slavery is protected by us law ‘right now’, not only in the past.

    Can sioux people walk their rightful land right now freely and follow their religion? ay, no they can’t, some invadors don’t allow that but keep captured their land ‘right now’, not only in the past.

    it happens right now what you seem to want to see as some “history” things, so following your argumentation, the invasion of ukraine was in the past too (right? there are little changes nowadays and ukraine even got some land from russia, right?) so should we:?

    • not talk about it as the initial invasion already is history?
    • only talk about it cause its “the others” who do it?
    • ignore all wars and genocides supported by the west but claim other invaders do be the evil ones but the west to be the goodies despite all the warcrimes committed?
    • … (your ideas here to maxbe stop maybe ALL invaders) ?

    after how many years some evil act becomes “legalized by history” in your opinion? is it 20 years, 50years or 100years? you already complained about 400years to be too much, so plz tell me what you think is the time a land must be forcefully captured to ‘rightfully’ change ownership to the brutish invader? whatever number “the west” would say would be enough to legalize such past crimes, that would be exactly the number of years the west would in the same sentence tell russia to have to keep ukraine captive so that the status quo would be as legalized as in those countries or cities captured by the west already beeing said to be “historically legitimised” as the west seems to accept that as “rightful ownership” then. since the west seems to never give back once invaded land, it tells russia and israel to actually do the same and capture as much as they can now to “legally own”(style of “the west”) it in a few decades, while israel already invaded and captured land in the (i think) northwest, they are driven by the wests real-world-definition of their so called “rightful ownership” to invade other countries now, and not only in some future.

    maybe i didn’t write it for people like you (how could i know u?) but for others who might want to read whole thoughts instead of only cheap and short propaganda. The evil ones always want the masses to forget at least most of what they did and “short and incomplete” is the tool of propaganda.


  • Right, so we all better just let the Russian regime take whatever it wants,

    so they can keep land taken by force like diego garcia, hawaii, sioux nation territory* or countless others were taken by force once and the new “owner” kept and exploited these lands since then? yes, that would be awful.

    *(thats also where that “monument” stands that stands as an example to remind the the world which nation will never ever stick to laws, not even to its very own ones, but instead humilitate other peoples religions like it i.e. also does in hawaii)

    no! i think we really should make such countries give the taken-by-force land back to their rightful owners immediately plus a compensation that is worth that name plus whatever it takes to undo any destruction or change or poisoning with whatever chemicals done to the land under such evil invaders (thinking of the enewetak atoll right now 😢)

    And maybe we should concentrate on the cultures that were completely(!) deported long ago first, to at least give their children back the land that was taken from their parents or grandparents or grandgrandparents a.s.o. so diego garcia seems to be the easiest one, the current invaders there don’t need it for a living and don’t even call it their “home”, so just make them leave the captured land that is not theirs now. rescueing a whole civilisation and culture from evilish invaders was never easier! then of course those who’s ancestors had been deported and enslaved, those need to be compensated for but that cannot be aligned in money especially not since that money happens to be printed by those who’s ancestors did the deportation and enslavement and the money presses were at least indirectly build with slave labour, so other solutions need to be found that are not only accepted by those of the deported families who live today but really(!) compensate for centuries of abuse. also the debt of not yet abolishing slavery needs to be compensated for as it is at least a slap in their faces every day and this should be compensated like a slap in the face of an officer today, but for each single day per affected person living during that time since slavery was first introduced into those laws until it is completely abolished (this would only be the compennsation for not yet abolishing slavery). also those countries where those long ago enslaved had been deported from have to be compensated for all the losses including but not limited to all losses that resulted or may have resulted in development that did not happen due to that deporting and enslaving their families friends and firefighters ages ago. also all damages that happened after that deportation like robbing of resources underground their land that they could not defend any more due to that deporting like robbed diamonds, robbed gold and robbed oil and maybe lots of other robbed resources too. this compensatoon needs to be done throughoutly and complete, just to give the russians that example that the west actually “can” do something good and would stand to rightful living together and not only robbing the world until everything is gone like the west does now. if the west would stand to its so called values, a war against robbers would be a good one, but as it is right now, fighing another robber nation would just be a fight about who can rob more and stands last which is a bad thing or do you actually like that idea?

    so on which robber nations side are you? you seemed to want to sound like being on the russian side, so tell me how many nations had been invaded and robbed and enslaved by russia in the last … lets say 400 years ? (next step would be to compare that with western nations to be at least complete when determining which robbers side would be the more civilised one to know which side to stand to - which seemed to me to be your real question here)

    Or else they will use nuclear bombs.

    i guess giving back sioux nations land, hawaii and diego garcia to their rightful owners and start compensating the damages done to other nations would put real moral pressure on the russians, but until then, the only thing that happens when “the west” keeps bubbling about the values they don’t even fight for within their own captive taken lands is that one evil side shouts at the other but using bombs instead of real actions of good.

    have a nice day!


  • smb@lemmy.mltoLinux@lemmy.mlA word about systemd
    link
    fedilink
    English
    arrow-up
    7
    arrow-down
    2
    ·
    1 month ago

    However, systemd makes the system much more secure and reliable as it is

    less secure and less reliable day-by-day you meant? systemd introduces needless dependencies ever since as if that was it sole intention ever from its very beginning, which already were used for wide attacks, and exactly those attacks that the people working hard to remove unneeded dependencies for security reasons meant to prevent by things like “do one thing only” (but security was not the number 1 reason for this one i think), systemd instead: ‘lets add another level of that exponential dependency tree from the insecurity hell’ felt like they did this stupid thing intentionally every month for a decade or more.

    and stability… if you don’t monitor what systemd does, you’ll never know how bad it actually is. i’ve made custom scripts to monitor systemd’s failures (failing in doing a very primitive of its job) and there are hundreds (actually varying around 200 to 300 sometimes more) of such per day on all our systems for one particular(!) measurement only that was breaking service stability and i wrote a measure-and-fix+monitor workaround. other fixes were not monitored however, only silently fixed by workarounds, thus just unnumbered systemd bugs/instabilities in the dark that stole a lot of work capacity…

    if you run distros with systemd, unreliability is your daily experience unless you don’t really care or have never experienced stability before - like running a service (a single process) for 8 years without any interruption then it suddenly stops and you go like “was it maybe an attack? the process died, how could that be? were there any connects from outside at that moment?” not talking about not updating something that long, but “stability” itself CAN be like if you dont stop it, it’ll still run in 10000+ years maybe millions, more likely that humans extincted themselves way earlier than of a process “just dying” by a bug… while systemd even randomly stops things that were running well for no reason (varying) once a month more or less (also varying in what it actually randomly stops, sometimes (2 times) it even stopped ssh on my servers, me asking myself if i should create yet another workaround for systemds buggyness to not locking me out again from network or ratjer go for the real solution for most* of all systemd problems - *see below) on the few standard installs i personally have as i didn’t have the way to automatically replace provider installed distro on VMs in the DC. i want this replacing automatically for the same reason why i don’t like systemd, it causes manual work for a thing that should go automated. however due to systemd’s perpetuated instability i now managed to have this way, and every second working on getting rid of systemd is worth it 100k times. this however does not solve all systemd-introduced problems as the xz attack showed (a systemd-dependency on xz made the infected xz library beeing useful-for-the-atracker during compiletime of sshd binary with which then the attacker could infect the newly built sshd binary),one could still be attacked through systemd’s dependency hell even if one does not use systemd by oneself, but the build machines used for your distro could be affected/infected by systemd’s needless dependencies when “also” compiling for systemd-affected distributions thus there is the risk of becoming a victim of needless-systemd-dependencies while not using systemd at all. however the attack through systemd dependency (and that the public solution was not the removal of needless dependencies only included as source for superflous third party “needs”) made clear that systemd is an overall problem for security that will not be solved quickly but stay just like all windows insecurities will stay as long as they whish to push them to their “users”.

    systemd reducing overall security and its unreliability combined with some builtin impediments (i.e. when debugging its defects) is what drove me away from systemd. there are solutions way more stable and way more secure (and way better documented btw) that do not call in for needless dependencies, reducing risks, attack vectors and increases overall debuggability i.e. by deterministic behaviour as an easy example. and none of its important (to me) promises have been fulfilled yet by systemd, drop-in-replacement? have heared that lie thousands of times, but in the last decade i have not experienced it a single time in a distro and it does not seem to be included/finished any more.

    for windows users or windows admins a linux with systemd on it IS an improvement in stability, security and of course for updating, yes. but all of that does not come from systemd, rather the opposite is the case, systemd reduces it month by month, thats my experience and thats the most important experience for me, idc what lies whitdepapers tell or what broken promises are believed by anyone or the masses, i want secure and stable servers and services and systemd does not fit in for any of these goals and the time it was still “young” and early problems could be accepted in the hope they get fixed soon are gone, but without those fixes having ever appeared.





  • You’re not a journalist

    from reading, don’t believe you (oxjox) happen to even know who CriticalResist8 is let alone who he works for or anything else and that what you want to spread as truth about him (her?) really only is your weak personal shortthought quick-response-cause-i-can-insult-someone opinion. But of course i do not “know” if that is true about you even though i happen to believe that now. how could i know?

    i didn’t think CR8 was a journalist either, but i wouldn’t state that i knew he wasn’t until i actually know that as a fact. Do you know that as a fact? Did you check his identity, papers or such?

    There are appropriate places for your work. This is not the place.

    please, oxjox, do not spread untrue informations or unproven guesses as truth about other people here, lemmy is not a place for such or any type of insults. thank you for not doing such again !!