| 27 Jun 2021 |
|  julm left the room. | 17:17:55 |
| julm joined the room. | 17:49:57 |
| julm left the room. | 19:28:16 |
| julm joined the room. | 19:39:59 |
 ajs124 | Thanks for your work hexa!
And sorry I couldn't get around to looking at the dovecot change ris_. I'll try to my best to keep dovecot in a better state from 21.05 on, but I'm obviously thankful for any help. | 21:04:22 |
 ris_ | not a problem at all | 21:04:46 |
| ris_ | i'm just happy whenever a package has nixos tests, makes me so much more confident working with unfamiliar packages | 21:06:05 |
| julm left the room. | 22:11:35 |
| julm joined the room. | 22:11:42 |
| julm left the room. | 23:49:48 |
| 28 Jun 2021 |
| julm joined the room. | 00:06:40 |
| julm left the room. | 19:28:18 |
| julm joined the room. | 19:28:21 |
| julm left the room. | 20:03:35 |
| julm joined the room. | 22:09:53 |
| 29 Jun 2021 |
| julm left the room. | 03:50:40 |
| julm joined the room. | 05:52:08 |
 hexa | https://github.com/NixOS/nixpkgs/pull/127172 | 21:09:38 |
| hexa | fixes a long-standing exiv2 security issue, but needs backporting. I tried adapting the patches once and failed, I don't want to try again, so I slapped the backport label on it. | 21:10:12 |
| hexa | 0.27.3 is also what we have in 20.09, so in theory we could bump it there as well | 21:10:33 |
| hexa | in other news: 25h support for 20.09 left on my clock (CEST) | 21:10:57 |
| 30 Jun 2021 |
|  mingovanburne joined the room. | 03:53:18 |
| 1 Jul 2021 |
 kunrooted | asked on FP Slack, will ask in here as well | 11:18:33 |
| kunrooted | okay so let's assume we have Situation like this:
we have two users, Adam and Eve, while Adam has root access/is root himself. Can Eve 'infect' his /nix/store with malicious Code? Also, how one can tell which packages in /nix/store belong to who? I think that replacing a binary is indeed possible, but it requires root access, so it would def. be a Post exploitation thing. What other security nightmares can we face except the atomic Upgrades and possibilities of supply chain attacks when it comes to /nix/store itself? Really, how one can tell which user can use which package? Is there a way to do so? Can Eve in given Situation 'inject' malicious Code into Adam's /nix/store? | 11:18:36 |
 Synthetica | If you have root you can basically do anything, so... | 11:19:23 |
| kunrooted | And how can I tell which user has an Access to certain packages? | 11:20:02 |
 balsoft | Nix store is a large cache | 11:20:11 |
 Roos | The nix store is world readable. | 11:20:20 |
| balsoft | Everybody has write access | 11:20:23 |
| balsoft | * Everybody has read access | 11:20:26 |
