gchristensen changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh
hmpffff_ has joined #nixos-security
hmpffff has quit [Ping timeout: 252 seconds]
JJJollyjim has joined #nixos-security
justanotheruser has quit [Ping timeout: 256 seconds]
justanotheruser has joined #nixos-security
zarel has quit [Ping timeout: 240 seconds]
prusnak has joined #nixos-security
<MichaelRaskin> gchristensen: I think «root writeable» should be «root writeable or /nix exists and writeable»
<MichaelRaskin> (and empty — or user confirms it can be taken over)
<MichaelRaskin> Do I understand correctly that FileVault volume creation is GUI-only and unscriptable?
<gchristensen> it is maybe scriptable but you have to set a decrption secret, and then the user has to type it in to mount it -or- write the secret somewhere on disk and unmount it that way somehow
<gchristensen> it is a real nightmare
<MichaelRaskin> So you cannot prepare everything and let the user type in just the secret to set it?
swapgs has quit [Ping timeout: 272 seconds]
swapgs has joined #nixos-security
swapgs has quit [Changing host]
swapgs has joined #nixos-security
KeiraT has quit [Ping timeout: 240 seconds]
KeiraT has joined #nixos-security
hmpffff_ has quit [Quit: nchrrrr…]
hmpffff has joined #nixos-security
hmpffff has quit [Client Quit]
hmpffff has joined #nixos-security
hmpffff has quit [Client Quit]
<prusnak> can someone review https://github.com/NixOS/nixpkgs/pull/86237 so i can backport it to stable? it contains secfixes for various CVEs
<{^_^}> #86237 (by prusnak, 1 week ago, open): Update Electron 6,7,8
hmpffff has joined #nixos-security
hmpffff has quit [Quit: nchrrrr…]
hmpffff has joined #nixos-security
Freneticks has quit [Quit: WeeChat 2.3]
Freneticks has joined #nixos-security
tilpner has quit [Remote host closed the connection]