Language Selection

English French German Italian Portuguese Spanish


Syndicate content is a comprehensive source of news and opinions from and about the Linux community. This is the main feed, listing all articles which are posted to the site front page.
Updated: 4 hours 31 min ago

Library’s Tor relay now restored (Ars Technica)

Wednesday 16th of September 2015 07:09:27 PM
Last week we reported that the Kilton Public Library in Lebanon, New Hampshire suspended its Tor node deployment due to criticism by the local police department. Ars Technica now reports that the Tor relay has been restored. "As Ars reported earlier, the goal of the Library Freedom Project is to set up Tor exit relays in as many of these ubiquitous public institutions as possible. As of now, only about 1,000 exit relays exist worldwide. If this plan is successful, it could vastly increase the scope and speed of the famed anonymizing network. For now, Kilton has a middle relay but has plans to convert it to an exit relay. A middle relay passes traffic to another relay before departing the Tor network on the exit relay."

[$] Python and crypto-strength random numbers by default

Wednesday 16th of September 2015 05:26:07 PM
There are various types of random number generators (RNGs) that target different use cases, but a programming language can only have one default. For high-security random numbers (e.g. cryptographic keys and the like), it is a grievous error to use the wrong kind of RNG, while other use cases are typically more forgiving. The Python community is in the middle of a debate about how it should be handling random numbers within the language's standard library.

Click below (subscribers only) for the full report.

Security advisories for Wednesday

Wednesday 16th of September 2015 04:41:35 PM

CentOS has updated kernel (C7: multiple vulnerabilities).

Debian has updated icu (denial of service).

Fedora has updated moodle (F22; F21: multiple vulnerabilities).

Oracle has updated kernel (OL7: multiple vulnerabilities) and qemu-kvm (OL7: information leak).

Red Hat has updated kernel (RHEL7: multiple vulnerabilities), kernel-rt (RHEL7; RHEMRG: multiple vulnerabilities), and qemu-kvm (RHEL7: information leak).

Scientific Linux has updated kernel (SL7: multiple vulnerabilities) and qemu-kvm (SL7: information leak).

Presidential candidate Lawrence Lessig goes one on one with Ars Technica

Tuesday 15th of September 2015 07:56:36 PM
A bit far afield, perhaps, but Lawrence Lessig is the co-founder of Creative Commons and a proponent of reduced legal restrictions on copyright and trademark. Ars Technica talks with Lawrence about his bid for the US presidency. "Ars: Does your copyleft past help or hurt your presidential bid? Lessig: Whatever you call it, I have the right position on copyright—namely, that it is essential, but needs to be updated to the digital age. If people want to challenge that position, then I’d have to make fair use of the words of Harry Callahan: “Go ahead, make my day.”"

Tuesday's security advisories

Tuesday 15th of September 2015 04:23:42 PM

Debian-LTS has updated openldap (denial of service).

Fedora has updated php (F22; F21: multiple vulnerabilities), php-doctrine-annotations (F22; F21: privilege escalation), php-doctrine-cache (F22; F21: privilege escalation), and php-doctrine-doctrine-bundle (F22; F21: privilege escalation).

Mageia has updated ipython (MG4,5: cross-site scripting), openldap (MG4,5: denial of service), php-ZendFramework (MG5; MG4: XML external entity attack), qemu (MG5; MG4: multiple vulnerabilities), and spice (MG4,5: code execution).

[$] The LPC Android microconference, part 2

Monday 14th of September 2015 08:43:55 PM
The Linux Plumbers Android microconference was held in Seattle on August 20th. It included discussions of a variety of topics, many of which need to be coordinated within the Android ecosystem. The microconference was split up into two separate sessions; this summary covers the second session, which was held for three hours in the evening. Topics were toybox in Android, improving AOSP vendor trees, providing per-task quality of service, and improving big.LITTLE on Android.

Security updates for Monday

Monday 14th of September 2015 05:22:18 PM

Arch Linux has updated icedtea-web (applet execution), libvdpau lib32-libvdpau (multiple vulnerabilities), and openldap (denial of service).

Debian has updated openldap (denial of service), php5 (multiple vulnerabilities), virtualbox (unspecified vulnerability), and vzctl (insecure ploop-based containers).

Fedora has updated kernel (F22: privilege escalation), pcre (F22; F21: code execution), and phpMyAdmin (F22; F21: guessable user credentials).

Mageia has updated conntrack-tools (MG4,5: denial of service), freetype2 (MG4: denial of service), gnupg (MG4: two vulnerabilities), libgcrypt (MG4: information leak), libvdpau (MG4,5: multiple vulnerabilities), mariadb (MG4,5: unspecified vulnerabilities), php (MG4: multiple vulnerabilities), phpmyadmin (MG4,5: guessable user credentials), and xfsprogs (MG5: information disclosure).

Red Hat has updated qemu-kvm-rhev (RHEL OSP5,6,7: code execution).

Some stable kernel releases

Sunday 13th of September 2015 06:41:09 PM
The 4.1.7, 3.14.52, and 3.10.88 stable kernel updates have been released. Each contains the usual collection of important fixes.

Python 3.5.0 released

Sunday 13th of September 2015 05:29:23 PM
The Python 3.5.0 release is out. "Python 3.5.0 is the newest version of the Python language, and it contains many exciting new features and optimizations." See the what's new page and this LWN article for details on the new features in this release.

Kernel prepatch 4.3-rc1

Sunday 13th of September 2015 12:13:55 AM
Linus has released 4.3-rc1 and closed the 4.3 merge window one day ahead of the usual schedule. "I decided that I'm not interested in catering to anything that comes in tomorrow, and I might as well just close the merge window and do the -rc1 release." In the end, 10,756 non-merge changesets were pulled during this merge window.

More in Tux Machines

Learning The Linux File System

Before we get started, let’s avoid any confusion. There are two meanings to the term “File System” in the wonderful world of computing: First, there is the system of files and the directory structure that all of your data is stored in. Second, is the format scheme that is used to write data on mass storage devices like hard drives and SSD’s. We are going to be talking about the first kind of file system here because the average user will interact with his or her file system every time they use a computer, the format that data is written in on their storage devices is usually of little concern to them. The many different file systems that can be used on storage is really only interesting to hardware geeks and is best saved for another discussion. Now that that’s cleared up, we can press on. (Read the rest at Freedom Penguin)

today's howtos

Red Hat and Fedora

FreeNAS 10 Enters Alpha, Brings Lots of New Technologies, Based on FreeBSD 10.2

FreeNAS' Jordan Hubbard was proud to announce the other day, October 8, the release and immediate availability for download of the first Alpha build of the upcoming FreeNAS open source Network Attached Storage (NAS) solution. Read more