Linux

45775 readers

865 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago

MODERATORS

nooter692@lemmy.ml

MarcellusDrum@lemmy.ml

cypherpunks@lemmy.ml

cyclohexane@lemmy.ml

d3Xt3r@lemmy.nz

138

[Bazzite] Important announcement regarding system updates [Action needed] - FYI (universal-blue.discourse.group)

submitted 1 week ago by Eric_Pollock@lemmy.dbzer0.com to c/linux@lemmy.ml

22 comments fedilink hide all child comments

Creating importer: Failed to invoke skopeo proxy method OpenImage: remote error: cryptographic signature verification failed: invalid signature when validating ASN.1 encoded signature ___

I was banging my head against my keyboard for an hour thinking that I broke my system until I saw this.

you are viewing a single comment's thread
view the rest of the comments

[–] Sina@beehaw.org 16 points 1 week ago* (last edited 1 week ago) (2 children)

I don't blame the guy for being human and it's free software etc, but this is reality bad optics for immutable distros. If my nephew and grandma are going to need manual interventions like this one, then might as well use a less restrictive system. The promise of seamless and easy updates are the main draw for me.

It would be much appreciated if UniBlue made the update process more robust and more resistant to such mistakes.

(also curl piped into sudo bash is way more common than it should be)

[–] boredsquirrel@slrpnk.net 18 points 1 week ago

They messed up the signing on the server side.

They are using all non-stable technology. The Github action and cosign may be normal, but Fedora doesnt release their container images (even though they are the ones that uBlue consumes).

The updating mechanism is fine, this is a security measurement. If the signing failed, it shouldnt update as this could mean malware.

[–] GregorGizeh@lemmy.zip 14 points 1 week ago

To be fair, the blog post details how they plan on avoiding such an issue in the future