| 1 Jul 2021 |
 Synthetica | D: | 11:35:53 |
 Linux Hackerman | In reply to @janne.hess:helsinki-systems.de
AppArmor works pretty well for this really, in spite of the files being created by nixbld$n? | 11:36:03 |
 das_j | main reason I don't use DAC for this kind of stuff is exactly inflexibilities like that ;) | 11:36:04 |
| das_j | In reply to @linus.heckemann:matrix.mayflower.de
really, in spite of the files being created by nixbld$n? You are probably mistaking this for SELinux | 11:36:17 |
| das_j | AppArmor works path-based, not label-based | 11:36:25 |
 kunrooted | based | 11:36:36 |
 balsoft | I can't even reboot | 11:36:47 |
| balsoft | REISUB it is then | 11:36:52 |
| Synthetica | oof | 11:36:55 |
| Synthetica | sorry | 11:36:57 |
| balsoft | Oh | 11:37:36 |
| balsoft | No liveusb needed | 11:37:39 |
| balsoft | NixOS is fairly self-repairing actually | 11:37:55 |
| Synthetica | wait, a reisub-reboot fixed it? | 11:38:35 |
| balsoft | What if I do it in the activation script? :P | 11:38:43 |
 ris_ | could i get some eyes on https://github.com/NixOS/nixpkgs/pull/126280 before permanent bitrot sets in? | 19:31:37 |
 hexa | thanks, lgtm | 19:43:36 |
| 2 Jul 2021 |
|  Irenes joined the room. | 09:22:13 |
| hexa | https://www.djangoproject.com/weblog/2021/jul/01/security-releases/ | 14:18:35 |
|  εΉΈη« (πππΎπ/πππΎπ) joined the room. | 16:07:01 |
|  julm left the room. | 18:11:39 |
| ris_ | CVE-2021-34552 seems to map to https://github.com/python-pillow/Pillow/pull/5567, which looks pretty hard to expose | 18:28:53 |
| hexa | otoh it looks pretty easy to backport | 18:29:57 |
| ris_ | you'd have to be passing in mode from untrusted input | 18:29:59 |
| ris_ | sure | 18:30:02 |
| hexa | uh, should post security advisories here and β
them when PR is up or so | 18:30:58 |
| hexa | just so that the state of these things becomes more visible | 18:31:15 |
 philipp | Maybe a separate room just for them? | 18:32:25 |
| hexa | maybe a separate room for the chit chat? π | 18:32:52 |
| balsoft | I would love a room with advisories | 18:32:54 |
