Linux 7.2 يضيف OPENAT2_REGULAR لحماية التطبيقات من فتح الملفات الخاصة عن طريق الخطأ
في الإصدار المرتقب 7.2 من نواة لينكس، سيُضاف علم (flag) جديد باسم OPENAT2_REGULAR إلى نظام الملفات الافتراضي VFS. الهدف منه منع التطبيقات من فتح الملفات الخاصة (مثل الأنابيب والأجهزة) عن طريق الخطأ، مما يحمي النظام من...
🔗 https://salehgnutux.github.io/GT-NEWSTECH/ar/gnulinux/linux-7-2-openat2-regular-security/
#Linux_Kernel #أمن #نظام_ملفات #VFS #ملفات_خاصة #برمجة #gnutux
Пишем движок для блога на Rust
Недавно я решил завести собственный блог. Сначала посмотрел в сторону SSG, но они показались мне не слишком удобными для того сценария, который я хотел получить. Затем попробовал несколько CMS, однако быстро упёрся в другую проблему: мой сервер оказался слишком слабым для большинства современных решений. В итоге ни одно из готовых решений так и не смогло закрыть все мои требования одновременно. Так и появилась идея сделать небольшую файловую CMS на Rust, которая не требует базы данных, не потребляет много памяти и при этом остаётся достаточно гибкой для повседневного использования. Со временем идея небольшого блогового движка разрослась в полноценную CMS с SSR, виртуальной файловой системой, поддержкой локализации, визуальным редактором статей и горячей перезагрузкой контента. В этой статье я постараюсь показать, как всё это устроено изнутри.
"[A]cross much of Africa, Asia and the Middle East, the visa outsourcing giant has become notorious. For people in these regions seeking to travel for work, study or to unite with family, VFS is often their first encounter with the border. And for many, this entails not only the stress and uncertainty of restrictive visa regimes, but also being compelled to hand over cash for what should be optional services — sales that have become central to the VFS Global’s growth.
Since its founding in 2001, VFS has grown into a multi-billion-dollar company whose owners include a major donor to Donald Trump and Dubai’s ruling family. It now holds visa outsourcing contracts with 71 governments worldwide. While applicants are charged a mandatory service fee, VFS has built an adjacent business around selling add-ons such as SMS updates, courier return services and access to premium lounges.
A year-long investigation by Lighthouse Reports, in collaboration with 14 media outlets, has found that VFS has created a system of aggressive – and at times dishonest – upselling. Staff are typically paid low base salaries and awarded bonuses contingent on meeting monthly sales targets for value added services, creating perverse incentives to sell.
Sales of these services have been key to the company’s growing profitability, which has increased fourfold in recent years, and have helped drive huge profits for its investors, our analysis shows.
We also found evidence that customers are exposed to bribery at the hands of both external agents and sometimes VFS staff, as well as repeated mishandling of personal data, amounting to what experts described as “manifestly serious violations of the GDPR”. Internal documents show that contracting governments know about these violations, but rarely take robust action."
https://www.lighthousereports.com/investigation/the-visa-empire-borders-as-a-business/
Turbolite – a SQLite VFS serving sub-250ms cold JOIN queries from S3
https://github.com/russellromney/turbolite
#HackerNews #Turbolite #SQLite #VFS #S3 #JOINqueries #DatabaseOptimization
Hey folks 
This isn't any of the posts we've been trying to write for ages, but haven't had sufficient spoons, executive function, emotional regulation, or uninterrupted time (particularly from unexpected daily life events) to write 😅🥺 
No: instead, this is just something adjacent to some of these things, which has been increasingly on our mind recently... particularly as it feels like we've been seening significantly more posts by other trans+ people we follow on fedi, as well as other places, discussing topics like:
In light of our own issues with the NHS, we did get to the point where we did a post asking folks to remember to use CWs for such posts, as even with lots of filters, we couldn't keep up 🥺😔 (In a later post, we advised that we had changed our filters back from hide completely to hide with a warning, but we're still having to filter out a lot.)
Anyway, we're getting off track again. (Today has been another of those kinds of days.)
We've been thinking a lot recently about how it would almost be easier for us if we were a binary trans+ woman with stereotypical transition goals that align with the binary expectation of the NHS and other medical systems 😔
If we had had noticeable, intense genital dysphoria in the way that they expect all trans+ folks to have, then maybe we'd've been willing to compromise over surgeon and techniques in order to get some form of genital reconfiguration surgery (GRS), and we'd've been able to progress there.
However, because we don't feel that way, could not mask our real feelings, and would not be comfortable with the limited options offered, we're now stuck in a limbo where we may basically get nothing through the NHS whatsoever.
Just to clarify, we're acutely aware just how completely cursed this line of thinking is, and how much dysphoria -- especially around genitalia -- can be debilitating for many 🥺😔
It isn't a matter of anybody having it easier or worse: everybody should be able to get their healthcare needs met. However, unless you "play the game" and "play along", you won't get anything.
But yeah... this is the dumb situation we're in.
Our dysphoria doesn't match the NHS's binary model, so we're now just waiting to hear back about how we go about complaining about pretty much everything and trying to get somewhere.
We won't though, sadly. It'd take a secular miracle for somebody to actually show a single iota of care for us as an actual person / entity.
We feel bad for the complaint handler, as given the way she's replied, we think she actually still cares 🥺😔
That job will break her if she doesn't leave it.
We've already had our request for voice feminisation surgery (VFS) declined, and we haven't even tried to get them to hear us out over facial feminisation surgery (FFS), as they'd laugh us out the door.
If you want to know how cruel the NHS system is, just read part of the below in relation to the first rejected VFS individual funding request (IFR):
GNUTUX
Habr
Miguel Afonso Caetano
Rkristuf
GripNews
N-gated Hacker News
Hacker News
SleepyCatten (Metastable, Skill Regression Arc)The following criteria were used when considering whether there were exceptional clinical circumstances relating to your patient to support the IFR:
* Are there any clinical features of the patient’s case which make them significantly different to the general population of patients with the condition in question at the same stage of progression of the condition?
AND
* Would the patient be likely to gain significantly more clinical benefit from the requested intervention than might be normally expected for the general population of patients with the condition at the same stage of the progression of the condition?
Your application was triaged by the Funding Team, and it was agreed that the information provided to support this IFR does not demonstrate clinical exceptionality.
Regrettably, we cannot approve your funding request as there is no evidence to show this patient is likely to gain significantly more clinical benefit from Glottoplasty surgery than might be normally expected for the general population of patients with the condition or circumstance i.e. gender dysphoria and neurodiversity. Unfortunately, we are not able to take purely psychological issues into consideration.
However, if there is any further information you have to demonstrate exceptionality, we would be happy to reconsider this request.
Yeah...
#GenderDysphoria #GenitalDysphoria #GenitalReconfigurationSurgery #GRS #GenderAffirmingSurgery #GenderAffirmingSurgeries #trans #transgender #enby #NonBinary #queer
#LGBTQ+ #LGBTQIA+ #NHS #EOEGS #NCTH #FuckTheNHS #VFS #FFS #IFR
Content warning: Polite request for any trans+ folks on fedi who post about planning for, getting, or recovering from any gender-affirming surgeries, or thoughts about getting them thereafter, in light of the effect it can have on those who cannot get them
Half of the support for the #initrd (not to be confused with #initramfs!) was removed from #Linux 7.0 through a #vfs merge from @brauner:
https://git.kernel.org/torvalds/c/996812c453cafa042f2e674738dbf8fa495661f3 and https://git.kernel.org/torvalds/c/ef12d0573a7f5e7a495e81d773ae5f3e98230cd4
""Remove the deprecated linuxrc-based initrd code path and related dead code. The linuxrc initrd path was deprecated in 2020 and this series completes its removal. If we see real-life regressions we'll revert. […]
The no-op load_ramdisk= and prompt_ramdisk= parameters are dropped, and noinitrd and ramdisk_start= gain deprecation warnings.
Initramfs is entirely unaffected. The non-linuxrc initrd path (root=/dev/ram0) is preserved but now carries a deprecation warning targeting January 2027 removal""
Thorsten Leemhuis (acct. 1/4)