- Oct 3, 2022
- 557
Ubuntu hardening. Not a script. Just follow along and paste in the commands.
Last edited:
No I didn't. Thanks for bringing that up.if you already mentioned that.
What is the source that says Ubuntu Livepatch provides live patches prior to updates becoming available?Ubuntu hardening. Not a script. Just follow along and paste in the commands.
[...]
### Enable Ubuntu One LivePatch, which provides live patches prior to updates becoming available
sudo pro attach
That is only my guess. I should have checked before posting. My bad. I guess the benefit of LivePatch is that you maintain up-time and can patch before your regular scheduled patching. Thanks for the explanation.I don't have any source that says Livepatch provides live patches prior to updates becoming available
Doing it without the token, it displays the token to you in the terminal. And it gives you a link. You navigate to the link using your browser, copy the token displayed, and paste it into the field in that web form. Then it replies that you have subscribed. I've always done it that way.sudo pro attach [YOUR_TOKEN]
Ah, I understand. No problem at all.That is only my guess. I should have checked before posting. My bad. Thanks for the explanation.
Hey, that's handy. I didn't know that. Thanks for the information.Doing it without the token, it displays the token to you in the terminal. And it gives you a link. You navigate to the link using your browser, copy the token displayed token from terminal, and paste it into the field in that web form. I've always done it that way.
I'm rusty with my Linux skills (to the extent I had any), running Zorin (a fork of Ubuntu IIRC) I installed Brave browser from Zorin's software package but it doesn't automagically add Brave to firejail profile. Is there a link that explains how to use firejail, set config / profiles etc...There is a typo in the line:
sudo nano /etc/firefox-common.profile
It should be:
sudo nano /etc/firejail/firefox-common.profile
short reason why -- I'm clueless...### Remove snap packages and replace it with flatpak.
Actually, you run Firejail and indirectly call Brave. As in "firejail brave" . You can try it at the terminal.but it doesn't automagically add Brave to firejail profile
well, I think that's how it is supposed to work BUT I did run firejail brave in terminal and it did not happen. Unfortunately I did not keep a copy of the exact error message and I'm not running Linux today. Will update next time I run Zorin.Actually, you run Firejail and indirectly call Brave. As in "firejail brave" . You can try it at the terminal.
All the icons are at /usr/share/applications/ in desktop files. And there would be something like 'brave.desktop' These .desktop files are text files. So you open it with nano. Then you find the line(s) inside which says "Exec=brave". And change them to "Exec=firejail brave".
A firejail profile is the compartmentalization settings for a particular program. Brave has a profile already made. All the firejail profiles are in /etc/firejail/ .
There are too many reasons, but in short, Flatpak is faster in startup time, have more packages, open source, doesn't get updates automatically, comes with sandboxing enabled by default, respect user themes, in general Flatpak is better for home users, while Snap is better for servers.short reason why -- I'm clueless...