[Dillo-dev] Github et alia login/cookies issue

[mirosla...@zg.ht.hr]

"Something went wrong with that request. Please try again."

is what I get (in bottom of the login page).

The:

$ cat ~/.dillo/cookiesrc
DEFAULT DENY
.github.com ACCEPT
.devuan.org ACCEPT
.gentoo.org ACCEPT
.wikibooks.org ACCEPT
.grsecurity.net ACCEPT
$

contains them.

And the:

$ cat ~/.dillo/cookies.txt
# HTTP Cookie File
# This is a generated file! Do not edit.
# [domain subdomains path secure expiry_time name value]

$

is empty!

I saw no errors in /var/log/messages though!

But I'll try something. If it works for me, it might be useful for
others, if not, maybe I get some help on it.

I've always been able to login fine into forums.debian.net,
forums.gentoo,org, forums.grsecurity.net and forum.sleuthkit.org (after
Google stopped banning me, in the captcha that they use to register;
Google, the surveillor of the world, is my distasteful enemy... Nobody
should be afraid of them, lots of us Liliputians will always overcome
any ugly Gullivers like the Schmoog is).

---
All the above was prepared for sending yesterday, 2015-07-06.

LATER. I even got (and all the conf is the same, .gitbub,com is in
cookiesrc), just this morning 2015-07-07 09:35 right now, the:

"Cookies must be enabled to use GitHub."

when making another attemt to log into Github.

But that was when I rebooted into my old:

3.19.6-hardened

kernel maybe half hour ago (for unrelated reasons).

And take a look at the following:

This is the cookies.txt file, Only gentoo wrote in it, so far (and I
accessed all those since, and esp. I took care to try the github).

# HTTP Cookie File
# This is a generated file! Do not edit.
# [domain subdomains path secure expiry_time name value]

forums.gentoo.org TRUE / TRUE 1467787565 phpbb2mysql_data_s a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A0%3A%22%22%3Bs%3A6%3A%22userid%22%3Bs%3A6%3A%22334555%22%3B%7D

Don't know if there's any secrets detrimental for me, that I'd be
revealing, do modified some numbers in that forums.gentoo.org entry,
just in case.

I need to be on the fonts issue (but I think some of you, is it even
you, Jorge, who do the development in gentoo, not sure)...

I thought I'd still post this, as this might be a useful report for you,
devs.

OTOH, I'll post the emerge --info and more when I try the bug report on
the fonts.

Just:

$ uname -r
4.0.7-hardened-150705
$

Could it be an issue with hardened? What I did yesterday (I began
writing this message yesterday, which is all before the "LATER" mark
above), is I applied paxctl-ng -m on the binaries in
/usr/lib64/dillo/dpi/*/<the binary>, id est: I disabled the MPROTEXT on
them. I also have a text prepared on those, hopefully I send it next.

--
Miroslav Rovis
Zagreb, Croatia
http://www.CroatiaFidelis.hr

[mirosla...@zg.ht.hr]

On Tue, Jul 07, 2015 at 10:27:30AM +0200, mirosla...@zg.ht.hr wrote:
> "Something went wrong with that request. Please try again."

...

> $ cat ~/.dillo/cookiesrc
> DEFAULT DENY
> .github.com ACCEPT

...
> $
>
...

> LATER. I even got (and all the conf is the same, .gitbub,com is in
> cookiesrc), just this morning 2015-07-07 09:35 right now, the:
>
> "Cookies must be enabled to use GitHub."

...

> Could it be an issue with hardened? What I did yesterday (I began
> writing this message yesterday, which is all before the "LATER" mark
> above), is I applied paxctl-ng -m on the binaries in
> /usr/lib64/dillo/dpi/*/<the binary>, id est: I disabled the MPROTEXT on
> them. I also have a text prepared on those, hopefully I send it next.
>

It certainly is (also) an issue with the hardened. I fix somewhat my
/etc/grsec/policy (and some other errors are gone), but...

Let me see:

no, from the github I still get:

"Cookies must be enabled to use GitHub."

and stubbornly so...

I'll try and see if I can get any insight into this on
forums,grsecurity.net and will report back.

> --
> Miroslav Rovis
> Zagreb, Croatia
> http://www.CroatiaFidelis.hr

> _______________________________________________
> Dillo-dev mailing list
> Dill...@dillo.org
> http://lists.dillo.org/cgi-bin/mailman/listinfo/dillo-dev

[eocene]

miroslav.rovis1 wrote:
> On Tue, Jul 07, 2015 at 10:27:30AM +0200, mirosla...@zg.ht.hr wrote:
> > "Something went wrong with that request. Please try again."
> ...
> > $ cat ~/.dillo/cookiesrc
> > DEFAULT DENY
> > .github.com ACCEPT
> ...
> > $
> >
> ...
> > LATER. I even got (and all the conf is the same, .gitbub,com is in
> > cookiesrc), just this morning 2015-07-07 09:35 right now, the:
> >
> > "Cookies must be enabled to use GitHub."

I see what the problems are with github cookies.

1. In cookiesrc, ".github.com" is for subdomains of github, and "github.com"
is for that host itself, so you need a "github.com" rule.

2. I was reluctant to follow the full date parsing in RFC 6265 until I had a
compelling reason, but you have brought me a compelling reason. github's
cookies have expiration dates like "Sat, 07 Jul 2035 13:24:19 -0000", which
appears to be legal, but dillo doesn't recognize it. So I'll work on it.

(By the way, I wonder why they think their cookie should last for 20 years.
Makes me feel that I haven't been wasting my time with being careful with
Year 2038 overflow on 32-bit machines...)

[mirosla...@zg.ht.hr]

On Tue, Jul 07, 2015 at 01:53:22PM +0000, eocene wrote:
> miroslav.rovis1 wrote:
> > On Tue, Jul 07, 2015 at 10:27:30AM +0200, mirosla...@zg.ht.hr wrote:
> > > "Something went wrong with that request. Please try again."
> > ...
> > > $ cat ~/.dillo/cookiesrc
> > > DEFAULT DENY
> > > .github.com ACCEPT
> > ...
> > > $
> > >
> > ...
> > > LATER. I even got (and all the conf is the same, .gitbub,com is in
> > > cookiesrc), just this morning 2015-07-07 09:35 right now, the:
> > >
> > > "Cookies must be enabled to use GitHub."
>
> I see what the problems are with github cookies.
>
> 1. In cookiesrc, ".github.com" is for subdomains of github, and "github.com"
> is for that host itself, so you need a "github.com" rule.
>

Yeah. It did occur to me, and I had removed the leading '.'. So that
line in 'cookiesrc' now looks:

github.com ACCEPT

But I still can't log in, and it probably is the 2. below that you
write.

> 2. I was reluctant to follow the full date parsing in RFC 6265 until I had a
> compelling reason, but you have brought me a compelling reason. github's
> cookies have expiration dates like "Sat, 07 Jul 2035 13:24:19 -0000", which
> appears to be legal, but dillo doesn't recognize it. So I'll work on it.
>
> (By the way, I wonder why they think their cookie should last for 20 years.
> Makes me feel that I haven't been wasting my time with being careful with
> Year 2038 overflow on 32-bit machines...)
>

However, it's even worse than that.

I get maybe a thousand of lines per minute such as:

Jul 7 16:22:04 g0n kernel: grsec: (miro:U:/usr/lib64/dillo/dpi) exec of
/usr/lib64/dillo/dpi/cookies/cookies.dpi
(/usr/lib64/dillo/dpi/cookies/cookies.dpi ) by
/usr/lib64/dillo/dpi/cookies/cookies.dpi[dpid:1362] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/bin/dpid[dpid:6224] uid/euid:1000/1000
gid/egid:1000/1000

Now, the explanation is I use:

# cat /proc/sys/kernel/grsecurity/exec_logging
1
#

the exec_logging functionality of the grsecurity-patched kernel. Excessive logs, true, but often I get the clues from those logs...

I said it was worse, and it this sense. My:

~/.dillo/cookies.txt

had only that one line that I send in the message:

http://lists.dillo.org/pipermail/dillo-dev/2015-July/010582.html

but now it has a huge many more of them:

$ ls -l ~/.dillo/cookies.txt
-rw------- 1 miro miro 24868 2015-07-07 11:34
/home/miro/.dillo/cookies.txt
$

$ cat ~/.dillo/cookies.txt | wc -l
108
$

, and almost all those lines are from phpbb2mysql:

$ cat ~/.dillo/cookies.txt | grep -v phpbb2mysql

# HTTP Cookie File
# This is a generated file! Do not edit.
# [domain subdomains path secure expiry_time name value]

[cookies dpi]: Enabling cookies as per cookiesrc...
[cookies dpi]: Cookies loaded: 1.
[cookies dpi]: (v.1) accepting connections...
[cookies dpi]: denied SET for github.com
[cookies dpi]: denied SET for github.com
[cookies dpi]: denied SET for github.com

Equally, all those lines are from forums.gentoo.org:

$ cat ~/.dillo/cookies.txt | grep -v forums.gentoo.org

# HTTP Cookie File
# This is a generated file! Do not edit.
# [domain subdomains path secure expiry_time name value]

[cookies dpi]: Enabling cookies as per cookiesrc...
[cookies dpi]: Cookies loaded: 1.
[cookies dpi]: (v.1) accepting connections...
[cookies dpi]: denied SET for github.com
[cookies dpi]: denied SET for github.com
[cookies dpi]: denied SET for github.com

They look I can if I need to, look up all the variants, or encrypt then
to your key, or plaintext if someone convinces me there should be
nothing dangerous in revealing cookie content in this massive fashion; I
don't know, will be thankful for any advice)...

So those lines look like (a random one of those cca 100:

[cookies dpi]: forums.gentoo.org GETTING: Cookie:
phpbb2mysql_sid_s=a0cdf2e2eb297aa1127ff47385553234;
phpbb2mysql_data_s=a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A0%3A%22%22%3Bs%3A6%3A%22userid%34333s%3A6%3A%22182646%22%3B%7D;
phpbb2mysql_t=a%3A2%3A%7Bi%3A1016338%3Bi%3A1436261111%3Bi%3A1021456%3Bi%3A1436261138%3B%7D

(I changed just a few chars for my protection, really little knowledge
of cookies)

And I have done more work, and intend to do more, but I'll try and get,
I think I wrote that in some of the previous mails, the opinion from
forums.gresecurity.net on how to deply gradm, the grsecurity
administration utility, how to reconfofigure it on Dillo...

If I manage to open forums.gresecurity.net, because for some, probably
related reason, I can't currently. I tried, and it was just the Stop
icon with an 'x' in it going red, but wouldn't open.

Then I tried killing dillo (first I tried without '-9', not shown below):

# ps aux | grep dillo
root 1477 0.0 0.0 11584 2044 pts/10 S+ 16:36 0:00 grep
--colour=auto dillo
miro 4527 0.0 0.0 4284 1424 tty6 S 10:30 0:00
/usr/lib64/dillo/dpi/bookmarks/bookmarks.dpi
miro 4528 0.0 0.0 4408 1692 tty6 S 10:30 0:00
/usr/lib64/dillo/dpi/file/file.dpi
miro 4905 0.0 0.0 4288 1460 tty6 S 10:55 0:00
/usr/lib64/dillo/dpi/cookies/cookies.dpi
miro 6225 0.0 0.0 4284 1260 tty6 S 16:14 0:00
/usr/lib64/dillo/dpi/bookmarks/bookmarks.dpi
#

And:

# killall -9 4527 4528 4905 6225
4527: no process found
4528: no process found
4905: no process found
6225: no process found
#

But still:

# ps aux | grep dillo
root 1485 0.0 0.0 11584 2168 pts/10 S+ 16:37 0:00 grep
--colour=auto dillo
miro 4527 0.0 0.0 4284 1424 tty6 S 10:30 0:00
/usr/lib64/dillo/dpi/bookmarks/bookmarks.dpi
miro 4528 0.0 0.0 4408 1692 tty6 S 10:30 0:00
/usr/lib64/dillo/dpi/file/file.dpi
miro 4905 0.0 0.0 4288 1460 tty6 S 10:55 0:00
/usr/lib64/dillo/dpi/cookies/cookies.dpi
miro 6225 0.0 0.0 4284 1260 tty6 S 16:14 0:00
/usr/lib64/dillo/dpi/bookmarks/bookmarks.dpi
#

Anyway, all the dillo windows are close. Trying again:

forums.gresecurity.net
No.

Finding it in https://duckduckgo.com/html and opening it from there:
worked.

Now, let me explain how it went (and I hope some of the advanced users
--or maybe even spender or PaX Team-- if they are reading this, I hope
it helps diagnose the problems, btwn you, devs od Dillo, and them, the
grsec/PaX devs.

(I will, next, try and post my dillo related configuration in a new post
that I will try and open in forums.gresecurity.net and then it will be a
complete report, without that post to be it is not yet.)

So, let me explain how it went:

The link (be it from grsecurity.net or from debian net domain, which I
tried also, as I wanted to show you that I evangelize for you, in
digressiona:

http://forums.debian.net/viewtopic.php?f=16&t=108616&p=584160#p584160
where find:

because I really like Gentoo and (Debian/Devuan?), and Dillo and
Postfix, and a lot of other programs

)

So [the link] begins to open, and those maybe 1000 lines per minute
begin to flood my /var/log/messages, Another typical one, just like the
one that I already gave closer to the start of this message of mine:

Jul 7 16:47:16 g0n kernel: grsec: (miro:U:/usr/lib64/dillo/dpi) exec of
/usr/lib64/dillo/dpi/cookies/cookies.dpi
(/usr/lib64/dillo/dpi/cookies/cookies.dpi ) by
/usr/lib64/dillo/dpi/cookies/cookies.dpi[dpid:28919] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/bin/dpid[dpid:28798] uid/euid:1000/1000
gid/egid:1000/1000

Then I, in another terminal, as root, issue:

# killall dpid

which for grsecurity.net page opening need be done maybe once or rarely
twice if at all, but for debian.net page opening needs to be done a few
times, as it keeps restarting...

And, if I missed to explain something, I'll try and remember and explain
in the next message.

As I said, for this to be complete, I need to get a better understanding
of how to sort my /etc/grsec/policy for my Dillo.

So next is posting the relevant current configuration on:

https://forums.grsecurity.net

[mirosla...@zg.ht.hr]

On Tue, Jul 07, 2015 at 04:57:57PM +0200, mirosla...@zg.ht.hr wrote:
> On Tue, Jul 07, 2015 at 01:53:22PM +0000, eocene wrote:
> > miroslav.rovis1 wrote:
> > > On Tue, Jul 07, 2015 at 10:27:30AM +0200, mirosla...@zg.ht.hr wrote:

...

> So next is posting the relevant current configuration on:
>
> https://forums.grsecurity.net

Deply RBAC on Dillo browser
https://forums.grsecurity.net/viewtopic.php?f=5&t=4228

> _______________________________________________
> Dillo-dev mailing list
> Dill...@dillo.org
> http://lists.dillo.org/cgi-bin/mailman/listinfo/dillo-dev

[mirosla...@zg.ht.hr]

On Tue, Jul 07, 2015 at 05:25:32PM +0200, mirosla...@zg.ht.hr wrote:
> On Tue, Jul 07, 2015 at 04:57:57PM +0200, mirosla...@zg.ht.hr wrote:
> > On Tue, Jul 07, 2015 at 01:53:22PM +0000, eocene wrote:
> > > miroslav.rovis1 wrote:
> > https://forums.grsecurity.net
>
> Deply RBAC on Dillo browser
> https://forums.grsecurity.net/viewtopic.php?f=5&t=4228
>

And I've posted on Gentoo Forums, with a note about the paxctl-ng being
deployed yesterday, id est before the reports in this thread.

A sad note: The cookies.txt is not anymore being written to, and I
haven't made any changes in my Dillo configuration:

$ ls -l ~/.dillo/cookies.txt
-rw------- 1 miro miro 24868 2015-07-07 11:34
/home/miro/.dillo/cookies.txt
$

( It is now: 2014-10-12 16:36 )
and I have, obviously logged in to post on Gentoo Forums.

[mirosla...@zg.ht.hr]

Forgot to post the Gentoo Forums' my new post's address. Correcting that
below.

On Tue, Jul 07, 2015 at 05:25:32PM +0200, mirosla...@zg.ht.hr wrote:
> On Tue, Jul 07, 2015 at 04:57:57PM +0200, mirosla...@zg.ht.hr wrote:
> > On Tue, Jul 07, 2015 at 01:53:22PM +0000, eocene wrote:
> > > miroslav.rovis1 wrote:
> > https://forums.grsecurity.net
>
> Deply RBAC on Dillo browser
> https://forums.grsecurity.net/viewtopic.php?f=5&t=4228
>

And I've posted on Gentoo Forums, with a note about the paxctl-ng being
deployed yesterday, id est before the reports in this thread.

INCLUDED:
Deploy paxctl-ng XATTR markings on Dillo browser
https://forums.gentoo.org/viewtopic-t-1021518.html
INCLUDED NOW.

A sad note: The cookies.txt is not anymore being written to, and I
haven't made any changes in my Dillo configuration:

$ ls -l ~/.dillo/cookies.txt
-rw------- 1 miro miro 24868 2015-07-07 11:34
/home/miro/.dillo/cookies.txt
$

( It is now: 2014-10-12 16:36 )
and I have, obviously logged in to post on Gentoo Forums.

[mirosla...@zg.ht.hr]

Forgot to post the Gentoo Forums' my new post's address. Correcting that
below.

On Tue, Jul 07, 2015 at 05:25:32PM +0200, mirosla...@zg.ht.hr wrote:
> On Tue, Jul 07, 2015 at 04:57:57PM +0200, mirosla...@zg.ht.hr wrote:
> > On Tue, Jul 07, 2015 at 01:53:22PM +0000, eocene wrote:
> > > miroslav.rovis1 wrote:
> > https://forums.grsecurity.net
>
> Deply RBAC on Dillo browser
> https://forums.grsecurity.net/viewtopic.php?f=5&t=4228
>

And I've posted on Gentoo Forums, with a note about the paxctl-ng being
deployed yesterday, id est before the reports in this thread.

INCLUDED:
Deploy paxctl-ng XATTR markings on Dillo browser
https://forums.gentoo.org/viewtopic-t-1021518.html
INCLUDED NOW.

A sad note: The cookies.txt is not anymore being written to, and I
haven't made any changes in my Dillo configuration:

$ ls -l ~/.dillo/cookies.txt
-rw------- 1 miro miro 24868 2015-07-07 11:34
/home/miro/.dillo/cookies.txt
$

( It is now: 2014-10-12 16:36 )
and I have, obviously logged in to post on Gentoo Forums.

[eocene]

I wrote:
> 2. I was reluctant to follow the full date parsing in RFC 6265 until I had a
> compelling reason, but you have brought me a compelling reason. github's
> cookies have expiration dates like "Sat, 07 Jul 2035 13:24:19 -0000", which
> appears to be legal, but dillo doesn't recognize it. So I'll work on it.

Committed some code that's more similar to the RFC, and it recognizes
the github cookies. The code didn't turn out badly, so I don't know why
I was hesitant at the time.

[mirosla...@zg.ht.hr]

On Wed, Jul 08, 2015 at 04:35:22AM +0000, eocene wrote:
> I wrote:
> > 2. I was reluctant to follow the full date parsing in RFC 6265 until I had a
> > compelling reason, but you have brought me a compelling reason. github's
> > cookies have expiration dates like "Sat, 07 Jul 2035 13:24:19 -0000", which
> > appears to be legal, but dillo doesn't recognize it. So I'll work on it.
>
> Committed some code that's more similar to the RFC, and it recognizes
> the github cookies. The code didn't turn out badly, so I don't know why
> I was hesitant at the time.

Once I learn (maybe soon) to really do right my own overlay in Gentoo
(my own ebuilds, as it's just not good to compile and install outside of
the system, the LinuxFromScratch way, which I learned long ago), then I
hope I'll be a more useful tester.

I'll try and always keep an eye on Dillo development, from my
as-best-I-can user understanding, anyway.

I had decided to go for the fonts-not-found issue (
http://lists.dillo.org/pipermail/dillo-dev/2015-April/010499.html)
before I stumbled on this (Gitbub et alia) cookies issue. But, indeed
I should be able to solve both these issue together, because the install from source, and from new SCM source is needed for both.

For the:
http://lists.dillo.org/pipermail/dillo-dev/2015-April/010500.html
where eocene wrote:

If you go to dw/fltkplatform.cc and, in FltkFont::initSystemFonts(),
remove the leading underscore in
_MSG("Found font: %s%s%s\n", name, t & FL_BOLD ? " bold" : "",
to get
MSG("Found font: %s%s%s\n", name, t & FL_BOLD ? " bold" : "",
and recompile, what does dillo say when you run it?

And for the new changes regarding cookies that eocene writes in the
quote in the top of this message.

I did look at the code, by downloading with
'hg clone http://hg.dillo.org/dillo', I clearly see where to remove the
underscore (but there is also the: 'and recompile').

And on Gentoo, it's the local overlay way for me to go. Studying to be
able to accomplish that.

May take me time. But I'm now keen to do what I can to get, or to help
with my report to get, those (both fonts and cookies) sorted.

May take me an undefined time, for shorter of for longer (and I know it
could take the fixing of the source un undefined time, for shorter or
for longer).

--
Miroslav Rovis
Zagreb, Croatia
http://www.CroatiaFidelis.hr

[Walter Dnes]

> And on Gentoo, it's the local overlay way for me to go. Studying to be
> able to accomplish that.

I'm also a Gentoo user; not even a C programmer, let alone a
developer. I'd be interested in your ebuild. For the devel version, I
build it locally in my home directory. You need to include
"$HOME/.local/bin" in your PATH. You also have to have x11-libs/fltk on
your system. For fltk, the "xft" USE flag is strongly recommended. I
wonder if the "opengl" and "threads" USE flags would help fltk+dillo. I
have a script file ~/dillo/dbuild

#!/bin/bash
#hg clone http://hg.dillo.org/dillo dillo3
cd ${HOME}/dillo/dillo3
CFLAGS="-O2 -march=native -fomit-frame-pointer -pipe -fno-unwind-tables-fno-asynchronous-unwind-tables"
CXXFLAGS=${CFLAGS}
make clean
hg pull
hg update
./autogen.sh
./configure \
--prefix=${HOME}/.local \
--enable-ssl \
--disable-ipv6 \
--enable-cookies \
--enable-png \
--enable-jpeg \
--enable-gif \
--enable-threaded-dns \
--enable-dependency-tracking \
2> ../build_err.txt
make
make install-strip

The first time only, I uncoment the "hg clone" command.

--
Walter Dnes <walt...@waltdnes.org>

[mirosla...@zg.ht.hr]

Hi Walter!

On Wed, Jul 08, 2015 at 10:34:24AM -0400, Walter Dnes wrote:
>
> > And on Gentoo, it's the local overlay way for me to go. Studying to be
> > able to accomplish that.
>
> I'm also a Gentoo user; not even a C programmer, let alone a
> developer. I'd be interested in your ebuild.

See in bottom in regard to that.

> For the devel version, I
> build it locally in my home directory. You need to include
> "$HOME/.local/bin" in your PATH.

(Correct me if I misunderstand something here, pls.) No, I really want to go the ebuild way, I'm studying, go and download it, it's just:

wget -r https://devmanual.gentoo.org

and, I'm studying, haven't browsed all that I downloaded yet (this time
around, I was there online or offline a couple of times in some two
years without finalizing my learning of it)...
...and all is there, the entire devmanual, I believe, for hours upon
hours of study.

> You also have to have x11-libs/fltk on
> your system. For fltk, the "xft" USE flag is strongly recommended. I
> wonder if the "opengl" and "threads" USE flags would help fltk+dillo.

Wow! Noone told about that in no tips, and it's not the default. Could
in here below lie some of the reason why my fonts are not found? (just,
I have --ask in my /etc/portage/make.conf):
# emerge flt
These are the packages that would be merged, in order:

Calculating dependencies ... done!
[ebuild R ] x11-libs/fltk-1.3.3-r3:1::gentoo USE="opengl -cairo
-debug -doc -examples -games -pdf -static-libs -threads -xft -xinerama"
0 KiB

Total: 1 package (1 reinstall), Size of downloads: 0 KiB

Would you like to merge these packages? [Yes/No]

So you information is valuable to me!

I see. But, no, I really want to go the ebuild way this time around!
I'll give it a few dozen hours dedicated work if necessary, I hope I
make it.

And for the ebuild and all of what I may learn in the process, you don't
need to worry, I'm pretty talkative, and I often don't even hide what I
should, for the desire to spread the use of good programs like Dillo.

I hope I'll be figuring things about the overlay and the ebuild writing
(the:

/usr/portage/www-client/dillo/dillo-3.0.5.ebuild

is probably what I will start from, copy it in my overlay (already
created), and modify it to use the source (for which I'll ask your or
any other Gentooers' help if I stumble on how to use it; I think the
source has to be a snapshot, not a mercurial SCM source, and I know how
to get git archives with cgit on apache, but not yet mercurial... will
study that too)...

And... And whatever comes my way... till I get it done.

Surely I'll try and open a Gentoo Forums topic for this, to get help,
and so that we can provide for others what we will have hopefully
done...

And surely I'll inform about that new topic on Gentoo Forums in this
mailing list.

---
###
---

As far as the the issue of cookies and those 1000/min lines, described
in the Grsecurity Forums, linked already from this topic, there is also
more that I plan on that issue too:

Deploy RBAC on Dillo browser
http://forums.grsecurity.net/viewtopic.php?f=5&t=4228&p=15358#p15358

About which I was wondering: did, as I wrote, the Dillo devs read what
spender wrote:

( same Grsecurity Forums topic )
https://forums.grsecurity.net/viewtopic.php?f=5&t=4228#p15352

(and which I can't understand at this time, and maybe never will)

[mirosla...@zg.ht.hr]

On Wed, Jul 08, 2015 at 10:34:24AM -0400, Walter Dnes wrote:
>

> > And on Gentoo, it's the local overlay way for me to go. Studying to be
> > able to accomplish that.
>
> I'm also a Gentoo user; not even a C programmer, let alone a
> developer. I'd be interested in your ebuild.

A Tentative at dillo-3.1-dev ebuild
https://forums.gentoo.org/viewtopic-t-1021878.html

And, Walter, I hope you noticed I gave you credit for my figuring out the bug in
the current version at:

Dillo ebuild is missing xft flag for fltk, causes eye-sore
https://bugs.gentoo.org/show_bug.cgi?id=554588

Cheers!

[mirosla...@zg.ht.hr]

On Mon, Jul 13, 2015 at 02:26:55PM +0200, mirosla...@zg.ht.hr wrote:
> Dillo ebuild is missing xft flag for fltk, causes eye-sore
> https://bugs.gentoo.org/show_bug.cgi?id=554588
>

I hope you'll find it interesting that that bug is now marked:
RESOLVED WONTFIX
https://bugs.gentoo.org/show_bug.cgi?id=554588#c2
"What if you want dillo, but not libXft or everything else it pulls in?"
(Jeroen Roovers)

[miro....@croatiafidelis.hr]

On Sat, Jul 18, 2015 at 01:04:55PM +0200, mirosla...@zg.ht.hr wrote:
> > Dillo ebuild is missing xft flag for fltk, causes eye-sore

renamed:
www-client/dillo should depend on x11-libs/fltk[xft]
> > https://bugs.gentoo.org/show_bug.cgi?id=554588
There is more comments, by Walter Dnes, and by me. I saw the mail wasn't
reported sent to Walter Dnes, so I thought I'd inform here.

Thanks!

[miro....@croatiafidelis.hr]

On Sun, Jul 19, 2015 at 04:16:51PM +0200, miro....@croatiafidelis.hr wrote:
> On Sat, Jul 18, 2015 at 01:04:55PM +0200, mirosla...@zg.ht.hr wrote:
> > > Dillo ebuild is missing xft flag for fltk, causes eye-sore
> renamed:
> www-client/dillo should depend on x11-libs/fltk[xft]
> > > https://bugs.gentoo.org/show_bug.cgi?id=554588
> There is more comments, by Walter Dnes, and by me. I saw the mail wasn't
> reported sent to Walter Dnes, so I thought I'd inform here.
>

I recently posted a comment on the "www-client/dillo should depend on
x11-libs/fltk[xft]" WONTFIX but on Gentoo Bugzilla:
https://bugs.gentoo.org/show_bug.cgi?id=554588#c9

Note also the link there to the Forums topic:

A Tentative at dillo-3.1-dev ebuild

https://forums.gentoo.org/viewtopic-t-1021878.html#7806130
where also notice the video:

http://www.CroatiaFidelis.hr/foss/cap/cap-150824-Schm-capt/Screen_150824-Gen-Dillo.webm

in which I explain it so even newbies can understand something's likely
wrong with the treatment of us users of Dillo with the WONTFIX
attitude, in my opinion.

BTW, also notice the strange kind of pasting with the 3.1-dev Dillo, or
is it something else? (in the more or less entire bug in question it can
be seen... No, you can't notice it in the previous comments I posted,
they cleaned it, only this one last, before they clean it too...).

There is another issue, if I manage to write that separate topic about tonight, it's about:
Why, oh why the Schmoog captcha?
https://forums.gentoo.org/viewtopic-t-1027382.html
(but separately if I manage)

I did my best. Regards!

[miro....@croatiafidelis.hr]

On Sat, Aug 29, 2015 at 04:16:25AM +0200, miro....@croatiafidelis.hr wrote:
...

> BTW, also notice the strange kind of pasting with the 3.1-dev Dillo, or
> is it something else? (in the more or less entire bug in question it can
> be seen... No, you can't notice it in the previous comments I posted,
> they cleaned it, only this one last, before they clean it too...).

You can see it in the comment that I just posted:
https://bugs.gentoo.org/show_bug.cgi?id=554588#c12

The '&#013;' that you can see aplenty is what my newlines turned into.
I always screencast and dumpcap, so I could prove I really just normally
typed in my comment, with newlines.