As always your advices are acknowledged and will be followed under other threads. I will soon edit the first post under this thread to be even more clear of how to situate oneself with everything said under this thread my Maemish. I will probably add in every this kind of post a header stating for new readers to see the first post preface. Thank you again for your seriousness cause it always guides me to proper conduct in this forum and I really appreciate it. And I'm serious now. I will not sign this with Maemish which will be a mark of not to be taken seriously. I hope there is room for my presence of which one part I have tried to box here.

Edit: So far haven't happen again but I haven't yet surfed with chromium, only adjust some settings. But the 'rational 'causes' which I presented seem to be the reason for unnatural behaviour.

I can't really say I'm surprised you got hacked. Running stuff like "chmod -R 777" over system directories? Running non-admin tasks as root? If it's any consolation, you're not the only one. I see many people doing this sort of thing all the time.

Oh, and then there's also this little Chromium 0-day:

https://nakedsecurity.sophos.com/201...t-this-minute/

It's generally not a good idea to run unsupported software, but if you you've got to do it, at least try to avoid running things that would tell a hacker, "Hi, come and get me!"

I'm trying to use this browser only for two services, using chrome data saver (the two services are already a compromize of privacy so chrome servers do not take away but give a certain amount of security add) and now trying to find right settings for firejail sanedbox which I installed from the jessie-backports. So no intention of using this to anything else than visiting/using two sites. And yes, the privacy matters in linux are not my best area. I just to use subgraph to secure my self but it was too difficult to mess around cause everything was behind something I didn't understand so here I am. Learning. Chmoding and chowing are things I just now learning not yet knowing exactly what they do. Now I have though learned that they do open many places and that I do not want. Trial and error.

Edit: I don't know yet how to do it but hoping to learn to restrict chromium access only to .cache, .config and some folder where I can stash images for downloading to internet. No need to download from internet anything.

And most probably did not got hacked except by myself messing with the settings from backup.

I have to applaud you for experimenting, it's the best way to learn. I'm glad you found and are using Firejail, it's a great little tool that not many know about and will certainly help in securing your apps, but it may not help if you're making general usage mistakes. It's interesting to see that you're using Subgraph OS too, which uses a sandboxing system called Oz, somewhat similar to Firejail. It's fundamentally flawed as users must declare beforehand which apps/programs they want to be sandboxed, it's implemented entirely in userspace and relies on a daemon. Both of these tools actually inspired my Master's thesis. I wanted a something that sandboxes processes with namespaces and seccomp automatically and couldn't be circumvented by taking down a daemon. So I took a Linux kernel with grsecurity and I modified the execve system call to sandbox all spawned processes. I then modified grsecurity's RBAC tool to allow whitelist system call and namespace policies to be applied. It was pretty much a proof of concept but it mostly worked.

Now I understand better how bad it must feel to you to read of my learning curve.

There is somewhere on this forum possibly a thread where I discribed my most stupid endeavour which led me to start to learn about linux and security. About 10 years ago and look how far I have made it! I use N900!

I am not trying to be a buzzkill Maemish, nor insist you change your posts..
But saying around here "the n900 hacked me" ....casually...
is an alarming thing to say...
Like saying on a flight "I have a bomb"

For myself I can only speak...
(but I am guessing other n900 users as well ...)
but knowing exactly what you did ....
so as to avoid said issues.

Wicket is dead on the money concerning his post #32.
glad he showed and filled you in..
some things though fun to do aren't the safest...
We have some known weak spots to keep an eyeball on..
My concern was you found a big one.

Most important question is ...
"once your n900 was vulnerable...did they find your porn?"

They may only find pictures of me flashing to my N900. Have learned to flash with this device.

bad enough ...



if there is evidence on your n900 of flashing...

The guy even got the same coat I'm wearing! Wait a minute... Was it you who got access on my beloved one? I remember that pose.

Optimizing your device

I have been doing this for years 'cause I never like to be slowed down. If I have a task and something is slowing me down I like to get rid of it - not the task but what is slowing me down. I have had many possibilities. I have changed the swap parameters, optimized performance to current task instead of saving resources for the backround programs, disabled all smoothing animations to get more rapid responses, disabled indexing, disabled all the update checks for both hardware drivers and programs, disabled automatic defragmentation, as an admin stopped all the services I didn't need, prevented most startup programs, disabled healthchecks and sanity checks from the hard drive, and run the machine like crazy 20 hours a day long periods of time. I have also started overclocking to the limits. I know what is the maximum limit for cpu but still try once and a while if I could hold a hundred more.

What I have gained? Where I have got myself? Not finding anymore files 'cause they are not indexed, the machine has become unstable and not being able to run hard tasks like before. And at last got myself heart problems. I started to think of this and understood that this my machine which I have used like this is now 43 years old. If I overclock it all the time, run 20 hours a day, disable all backround programs which have a purpose of keeping the machine in good shape, disable indexing and sanity checks, no wonder I start to forget things, not being able to do big tasks, and get sudden reboots.

I think it is time for me to slow down the machine and start to use it inside the factory limits and with the parameters ment for it. Not to run fast 10km sprints, multitask all the time with wrong nutrition and too little sleep. 43 years old machine and can't change it. Each year one year older. Sigh. The reality is sometimes so unpleasent place to live in.