[NFBCS] Keeping Linux Tidy

Jim Barbour jbar at barcore.com
Sat Apr 3 01:33:38 UTC 2021 

I have not done this.  From a quick scan of the firejail documentation, it looks like an implementation of Linux containers designed to reduce security vulnerabilities.

If you wanted to run your app inside of a container, I recommend having a look a the docker suite.

I'm still not clear on how this helps test accessibility though.

Jim

On Fri, Apr 02, 2021 at 09:22:34PM -0400, Jonesy Cee wrote:
> Do any of you make use of a sandbox to Test accessibility of
> applications or keep things clean?I am not sure if this would work with
> things that need to be installed, but I believe that in theory this
> would definitely work with things such as scripts or apps that don’t
> need a full install with, “make” and “make install”.An example of what
> I mean is by using something called fire jail. You can run things in
> firejail and have associated files put in a temporary folder that
> disappears at boot.
> 
> My thinking is that I could use this to create a bash alias such as,
> “sandbox app_name” and then I could create a designated folder for the
> application and move the files there if it is accessible and some thing
> I actually want to keep. If it is not accessible or something I don’t
> really want on my machine, then it will be gone after a restart anyway.
> If it is something I actually want to keep, I would just run it without
> fire jail.
> 
> Thoughts on doing this or any issues if I did it this way?
> 
> “ Never bend your head. Always hold ithigh. Look the world straight in
> the eye.”
> ~ Helen Keller
> 
>   On Apr 2, 2021, at 3:13 PM, Jim Barbour via NFBCS <nfbcs at nfbnet.org>
>   wrote:
> 
> Hey Tyler,
> Sounds like you and I manage things in a similar way.
> /usr/local/src is not for kernel stuff, its designated for your source
> code.
> One can Just use sudo to create /usr/local/src/<blah> and chown it.
> Alternatively, if no one else is managing the machine, just chown
> /usr/local/src and manage it that way.
> I also often manage source code out of my home directory.  However,
> Jonesy made it clear that wanted a highly organized machine.  Keeping
> everying in one designated spot, so /usr/local/src sounded like a good
> option to me.
> Take Care,
> Jim
> On Fri, Apr 02, 2021 at 04:53:38AM -0400, Littlefield, Tyler wrote:
> 
>   My only issue with putting things in /usr/local/src or /usr/src is
> 
>   that:
> 
>   1. sometimes kernel headers and/or kernel sources can go there.
> 
>   2. You have to make it as root, and thus it's harder to manage.
> 
>   Instead, if I have to install something from scratch I just have a
>   src
> 
>   directory in my home dir. I use that and only sudo to make install.
> 
>   There is also make deinstall/make uninstall sometimes.
> 
>   HTH,
> 
>   On 4/2/2021 12:41 AM, Jim Barbour via NFBCS wrote:
> 
>   Most of what you want to know comes down to manage your own process.
> 
>   For whatever reason, VeraCrypt is not available on the Ubuntu
>   package repository
> 
>   .
> 
>   I would create a source directory under /usr/local
> 
>   From a terminal...
> 
>   % sudo mkdir /usr/local/src
> 
>   % cd /usr/local/src
> 
>   % sudo mkdir VeraCrypt
> 
>   % sudo chown <me> VeraCrypt
> 
>   % cd VeraCrypt
> 
>   % mkdir .archive
> 
>   % mv /path/to/veracrypt-1.23-setup.tar.bz2 .archive/.
> 
>   % tar -xjf .archive/veracrypt-1.23-setup.tar.bz2
> 
>   Then run the install scripts as root.  Paying particular attention
>   to
> 
>   where it puts files.
> 
>   You *could* then remove /usr/local/src/VeraCrypt
> 
>   But I wouldn't Instead I was leave it there as documentation about
>   the
> 
>   version of VeraCrypt installed on the machine.
> 
>   In future, if you need to build from source, create a new directory
> 
>   off of /usr/local/src and put your tarball contents in there.
> 
>   Hope this gets you started,
> 
>   Jim
> 
>   On Thu, Apr 01, 2021 at 04:19:57PM -0400, Jonesy Cee via NFBCS
>   wrote:
> 
>   I am new to Linux and have a very simple question. I’m OCD and must
>   keep my new
> 
>   Ubuntu install clean and tidy in regard to the files in file system.
>   I understan
> 
>   d that everything can automatically be kept clean by using apt
>   autoclean after a
> 
>   pt installing something. How is it that I can do the same thing if I
>   manually do
> 
>   wnload and install some thing. Here is an example after installing
>   veracrypt wit
> 
>   h apt and having to manually download and run the installation
>   script.
> 
>   . Download the installer tarball by running the command below.
> 
>   wget
>   https://launchpad.net/veracrypt/trunk/1.23/+download/veracrypt-1.23-
>   setup.t
> 
>   ar.bz2
> 
>   Once the download is complete, extract the VeraCrypt tarball,
>   navigate to the so
> 
>   urce code extract directory and run the VeraCrypt installer.
> 
>   tar -xjf veracrypt-1.23-setup.tar.bz2
> 
>   This will extrct the VeraCrypt setup scripts in the current working
>   directory.
> 
>   —- I understand that the WGET command will grab and download the
>   installation an
> 
>   d then I unzip and run the script. This is just an example, but is
>   there an easi
> 
>   er way to clean up this or anything similar to this other than
>   having to manuall
> 
>   y run, “rm file” and also rm on the directory?
> 
>   Should I CD to the downloads folder before running wget or git clone
>   and then so
> 
>   mehow use a command to remove everything in the folder after it has
>   been used?
> 
>   Lastly, if I download an application or even just a script using
>   something like
> 
>   wget or git clone, is there a certain place I should move the
>   application for ex
> 
>   ecutable script to put it with my other applications? If I do so,
>   would Atkin be
> 
>   able to see it with other applications by typing Alt F1.
> 
>   I very much appreciate any help you can provide ahead of time. Sorry
>   for the noo
> 
>   b question.
> 
>   Never bend your head. Always hold it high. Look the world straight
>   in the eye.
> 
>> 
>   ~ Helen Keller
> 
>   _______________________________________________
> 
>   NFBCS mailing list
> 
>   NFBCS at nfbnet.org
> 
>   http://nfbnet.org/mailman/listinfo/nfbcs_nfbnet.org
> 
>   To unsubscribe, change your list options or get your account info
>   for NFBCS:
> 
>   http://nfbnet.org/mailman/options/nfbcs_nfbnet.org/jbar%40barcore.co
>   m
> 
>   _______________________________________________
> 
>   NFBCS mailing list
> 
>   NFBCS at nfbnet.org
> 
>   http://nfbnet.org/mailman/listinfo/nfbcs_nfbnet.org
> 
>   To unsubscribe, change your list options or get your account info
>   for NFBCS:
> 
>   http://nfbnet.org/mailman/options/nfbcs_nfbnet.org/tyler%40tysdomain
>   .com
> 
>   --
> 
>                                Take Care,
> 
>                      Tyler Littlefield (he/him/his)
> 
>   Tyler Littlefield Consulting: website development and business
> 
>   solutions. My personal site My Linkedin @Sorressean on Twitter
> 
> _______________________________________________
> NFBCS mailing list
> NFBCS at nfbnet.org
> http://nfbnet.org/mailman/listinfo/nfbcs_nfbnet.org
> To unsubscribe, change your list options or get your account info for
> NFBCS:
> http://nfbnet.org/mailman/options/nfbcs_nfbnet.org/jones.cee7%40yahoo.c
> om

More information about the NFBCS mailing list