Tails

#1 Updated by intrigeri 2016-12-28 07:42:52

• blocks Feature #12055: Update test suite for Greeter revamp, phase 1 added

#4 Updated by intrigeri 2017-01-01 13:19:16

• Assignee changed from alant to intrigeri
• Type of work changed from Code to Communicate

Started discussion: https://mailman.boum.org/pipermail/tails-ux/2017-January/003320.html

#5 Updated by intrigeri 2017-01-30 11:01:33

• blocked by deleted (Feature #12055: Update test suite for Greeter revamp, phase 1)

#6 Updated by intrigeri 2017-01-30 11:01:42

• related to Feature #12055: Update test suite for Greeter revamp, phase 1 added

#8 Updated by intrigeri 2017-01-30 11:02:49

• Priority changed from High to Normal

#9 Updated by intrigeri 2017-03-17 12:17:36

• Priority changed from Normal to Elevated

#10 Updated by alant 2017-03-17 17:36:41

• Status changed from Confirmed to Rejected
• Assignee deleted (intrigeri)

sajolida wrote on tails-ux mailing list:
> My gut feeling was that we could remove it and focus on issues that are affecting better identified scenarios and more users.
>
> Still, I did some stats on the WhisperBack reports received in 2016:
>
> * 515 had persistence read-write (98%)
> * 11 had persistence read-only ( 2%)
> * 857 had no persistence
>
> 4 reports were from m…r...: > > * a0e7629b892236bfc0e07feafaa78211_-_2016-08-20_1756.asc > Explaining that she uses read-only persistence because some months ago she lost some text in Writer with a read-write persistence and is now scared about loosing text again. > Later on in the thread she reaches the conclusion that she probably had a faulty SD card or messed up with her setup. > > * 1518328556a7d2ae059327d7dc168c4c_-_2016-08-20_1823.asc > Asking for how to download files from the Unsafe Browser. > > * 8496e75d58d87aeb165c6da9607e5a42_-_2016-08-20_1830.asc > Reporting that Icedove does not work with accents in passwords. > I wouldn't be surprised if Icedove behaved in a weird way when it's file system is read-only. The user stopped answering the thread and didn't lead the ticket to resolution. > > * b25ef0f1966d689be776707676f1978b_-_2016-08-20_1807.asc > Reporting that the upgrade check files with read-only persistence. I couldn't find an answer from help desk. > > 2 reports were from l...y…:
>
> * 74c7c757a98619acb087fd1166cb6299_-_2016-01-13_1524.asc
> Reporting an error while upgrading to 2.0 RC1
>
> * bee48a231db757dd227fc65f235a8f61_-_2016-02-13_1555.asc
> Reporting about failed upgrade checks. Unclear if it was related to read-only persistence.
>
> And the 5 other reports:
>
> * 2627ef58e07c8eacbb72712169491ddd_-_2016-11-25_1238.asc
> Someone reporting a bug with the Places menu when in read-only.
>
> * 45198ebbf40252424053e17e52a867a7_-_2016-05-31_0847.asc
> Someone asking about how to save the timezone.
>
> * 6ccf89b9a2fedcce0f6395ccc6dfeda_-_2016-05-22_0113.asc
> Someone reporting that KeePassX is not read by Orca.
>
> * 9fdb35786b54572887b2698bc05801a5_-_2016-11-23_0304.asc
> Someone reporting about the absence of on-screen keyboard in Greeter.
>
> * f94fb83dd61f7f191b4d0b4995327c82_-_2016-03-25_0621.asc
> Reporting problems with super custom persistence: _/.config,/.cache.
>
> So from these 11 reports, 4 were from someone using read-only when she really shouldn’t (m…@r…), 3 were about stuff that otherwise work well with read-write persistence (74c7c75, bee48a2, 2627ef5), 1 was from someone who’s trying hard to shoot herself in the foot (f94fb83).
>
> We’re left with 3 reports that would otherwise come from people who might have a good reason to be in read-only and are not complaining about its malfunctioning. I didn’t take the time to sanitize as well the number of reports from people with read-write persistence, so we cannot compare this number of 3 with anything else to judge the portion of users relying on read-only for good reasons. But seeing that:
>
> * The most vocal user was actually using read-only while she actually shouldn’t have and ran into other problems as a consequence.
> * The absolute number of 3 is extremely small.
> * We don’t have solid user scenarios ourselves to defend this feature.
>
> I’m also in favor of removing it for the time being.

intrigeri, spencer and me seems to aggre with this. I’m thus rejecting this issue.

#11 Updated by alant 2017-03-17 17:47:59

• related to Feature #12361: Document the removal of read-only persistence added

#14 Updated by anonym 2017-04-25 09:41:01

• Status changed from Rejected to In Progress
• Type of work changed from Communicate to Discuss

intrigeri wrote:
> > People who still need very badly to have a read-only persistence could still use a SD to USB adapter and a miniSD card which still have hardware read-only toggle
>
> I don’t know how the software we ship behaves when it faces a filesystem mounted read-write, backed by storage that rejects writes. Some might work similarly to read-only persistence, some might just crash.

When I tested this in a VM (by adding <readonly/> to the USB disk’s section) the final mount points (e.g. ~/Persistent, ~/.gnupg) were read-only †. This will work for some applications, but it will work really poorly with applications that constantly writes e.g. Icedove. I guess it could be argued that users shouldn’t use such applications when read-only persistence is enabled, but we certainly don’t document this. So, IMHO, we cannot advertise sajolida’s workaround without trying to explain this problem, which is a bit complex. OTOH, we could quite easily improve the situation: if we detect that the read-only flag is set for the persistent medium, then we enable read-only persistence (note that this is something we could do now even if we never re-introduce the user-visible Greeter option for read-only persistence). In fact, one way to look at the read-only persistence feature is that it is needed to properly support read-only switches on the persistent media.

I’m reopening this ticket to check what you think about this solution. Thoughts?

† This is because the /sys/block/sda/ro flag is set to 1. If some real hardware has a read-only switch that doesn’t set that flag I’d expect major breakage, but I’m quite hopeful we won’t see that since this flag is something that storage manufacturers seem to get right (unlike the removable flag).

#15 Updated by sajolida 2017-04-26 15:31:37

• Assignee set to sajolida

#17 Updated by sajolida 2017-04-28 12:47:09

• Status changed from In Progress to Rejected
• Assignee deleted (sajolida)

I fully agree with intrigeri. Though, in general, I’m not sure that we should rely only on negative feedback from beta versions to check the value of a feature but here it was not our only indicator (we analyzed WhisperBack reports as well) and I’m not sure what we could do best with our current ressources.

I proposed the idea of documenting SD to USB adapters as a cheap workaround but I’m dropping the idea since it seems to be more complicated that I thought initially.

So: rejecting again :)

#18 Updated by intrigeri 2017-05-27 07:06:30

• % Done changed from 0 to 100

#19 Updated by intrigeri 2020-04-15 06:01:37

• Affected tool changed from Greeter to Welcome Screen