Friday, December 29, 2017

set readynas nfs rootsquash off


rootsquash is a feature in NFS that allows one to add a bit of security to nas systems.  Unfortunately if the user id's aren't managed closely across your systems that give a crap, the systems will have inadvertent portions that aren't available.

The readynas backup is a victim of this.  It faithfully copies across things from one system to another and adjusts times and all, and sets the user id.  Then it can no longer get to it after that.

Sad solution is to turn off rootsquash, so that the actual rsyncs from other systems can get to the files and do the job.

Will have to work on the mess sometime.  However there are not any conventions on user id's across all the distributions to make anything simple.

https://kb.netgear.com/000045496/ReadyNAS-OS-6-8-NFS-User-ID-Mapping

ReadyNAS OS 6.8 allows configuring NFS User ID mapping per NFS share. This functionality ensures NFS connections use a predefined UID/GID when necessary, which prevents permission based issues on certain applications.

Configuring User ID Mapping

  1. From the Admin Page, click Shares > Shares
  2. Click the share you would like to edit, then click Settings.
  3. Click Network Access > NFS > Advanced.
There are three UID/GID squashing settings:
  • No Root Squash: Allows NFS connection using root access to connect as root. (Anonymous UID/GID text boxes are disabled)
  • Root Squashing: Forces all NFS root users to use UID/GID configured in the Anonymous UID/GID text boxes.
  • All Squash: Forces all NFS users to use UID/GID configured in the Anonymous UID/GID text boxes.
  •  

Friday, December 15, 2017

Firefox studies, disabling along with reporting bug dumps.


Firefox has two options that should be off for full privacy.

One is to allow Firefox to send dumps to Mozilla.  I've no idea if anyone looks at this, but a dump may sweep up enough information to discern your browser history and other items, such as deciphered items which have used your private key to authenticate a site, etc.

The other one which blew up today, is to "allow Firefox to perform studies".  This was abused 12/15/2017 (though not sure what version) to load a useless extension during an update.  This is possibly harmless today (and useless crap to load if you don't use it), and potentially useful if your browser is being compromised to add something to spy on you or otherwise mess with your system.

The extension was able to be installed if you had the "Firefox Studies" checkbox selected. To prevent Firefox Studies from installing extensions on your behalf:
  • Navigate to: "about:preferences#privacy"
  • Scroll down to the "Firefox Data Collection and Use" section
  • Uncheck the "Allow Firefox to install and run studies" checkbox (and the others, if you wish)
 
This gets rid of the studies problem.  Also uncheck the other options there while you are at it.

Tuesday, December 12, 2017

Older version of 32 bit Firefox

Location of older firefox (version 53) which runs with the Foscam Cameras.

https://ftp.mozilla.org/pub/firefox/releases/53.0.3/win32/en-US/

One can open adobe flash type extensions, of which the foscam web assistant is one.

Wish they'd publish a pure javascript support replacement.