Language Selection

English French German Italian Portuguese Spanish

Linuxinsight

Syndicate content
LinuxInsight - aggregated feeds
Updated: 10 min 22 sec ago

TuxMachines: Security News

Tuesday 31st of January 2017 04:27:54 PM

  • You're taking the p... Linux encryption app Cryptkeeper has universal password: 'p'

    Linux encryption app Cryptkeeper has a bug that causes it to use a single-letter universal decryption password: "p".

    The flawed version is in Debian 9 (Stretch), currently in testing, but not in Debian 8 (Jessie). The bug appears to be a result of a bad interaction with the encfs encrypted filesystem's command line interface: Cryptkeeper invokes encfs and attempts to enter paranoia mode with a simulated 'p' keypress – instead, it sets passwords for folders to just that letter.

  • Reproducible Builds: week 92 in Stretch cycle

    John Gilmore wrote an interesting mail about how Cygnus.com worked on reproducible builds in the early 1990s. (It's eye opening to see how the dealt with basically the very same problems we're dealing with today, how they solved them and then to realize that most of this has been forgotten and bit-rotted in the last 20 years. How will we prevent history repeating it)self here?)

  • MongoDB ransom attacks continue to plague administrators

    Earlier this month, Salted Hash reported on a surge in attacks against publicly accessible MongoDB installations.

    Since January 3, the day of that first report, the number of victims has climbed from about 200 databases to more than 40,000. In addition to MongoDB, those responsible for the attacks have started targeting Elasticsearch and CouchDB.

    No matter the platform being targeted, the message to the victim is the same; send a small Bitcoin payment to the listed address, or forever lose access to your files.

read more

TuxMachines: OSS Leftovers

Tuesday 31st of January 2017 04:27:05 PM
  • Be the open source supply chain

    I would bet that whoever is best at managing and influencing the open source supply chain will be best positioned to create the most innovative products. In this article, I’ll explain why you should be a supply chain influencer, and how your organization can be an active participant in your supply chain.

  • Leon Anavi’s Open Source News Vlog

    All of us at the FOSS Force office have become big fans of this new open source news blog from Leon Anavi and can’t wait until the next edition comes out in February. Don’t worry Leon, your English is fine. Keep ’em coming.

  • Announcing the Google Code-in 2016 Winners!

    Drum roll please! We are very proud to announce the 2016 Google Code-in (GCI) Grand Prize Winners and Finalists. Each year we see the number of student participants increase, and 2016 was no exception: 1,340 students from 62 countries completed an impressive 6,418 tasks. Winners and Finalists were chosen by the 17 open source organizations and are listed alphabetically below.

  • LinuxCon, CloudOpen, and ContainerCon Come to China for the First Time in 2017

    The Linux Foundation, a non-profit organization promoting the adoption of the latest Linux and Open Source technologies to the enterprise industry, is announcing the upcoming schedule for LinuxCon, CloudOpen, and ContainerCon conferences.

    Taking in place for the first time in China, between June 19-20, 2017, the LinuxCon, ContainerCon and CloudOpen events will be held at the China National Convention Center in Beijing, where it is expected that thousands of attendees will share their knowledge, collaborate on new technologies, and learn about the latest Open Source and GNU/Linux technologies, including cloud, containers, microservices, and networking.

  • 5 new guides for working with OpenStack

    OpenStack experience continues to be among the most in-demand skills in the tech world, with more and more organizations seeking to build and manage their own open source clouds. But OpenStack is a huge domain of knowledge, containing dozen of individual projects that are being actively developed at a rapid pace. Just keeping your skills up to date can be a challenge.

  • C++ Support Added To GCC's libcc1, Benefiting GDB

    Another late feature addition to GCC 7 is C++ support for libcc1.

    Libcc1 is the GCC cc1 plugin for the GDB debugger. With the latest GCC SVN/Git code tonight is now C++ support to complement the C interfaces.

read more

LXer: Non-Linux FOSS: Control Web-Based Music!

Tuesday 31st of January 2017 03:38:58 PM
I like Pandora. I like it because it doesn't require me to know anythingother than whether I like the current song. I'm sure other musicservices offer more features or a larger catalog, but Pandora issimple. So am I.

Phoronix: Intel Pentium G4600: A Surprising 3.6GHz Kabylake CPU For $90

Tuesday 31st of January 2017 03:21:59 PM
If you are looking to upgrade to a Kabylake processor but the Core i7 7700K at $350 and other higher-end models are too expensive, the Pentium G4600 is available at under $90 USD for a dual-core processor with Hyper Threading and clocks up to 3.6GHz.

Reddit: OpenSSL Security Advisory [26 Jan 2017]

Tuesday 31st of January 2017 02:39:23 PM

LXer: How to use Zarp for penetration testing

Tuesday 31st of January 2017 02:30:21 PM
Every network administrator knows that security is of the utmost importance. To that end, most admins understand that penetration testing is a necessity for the discovery of network issues. One very powerful pen testing tool is Zarp.

Reddit: looking for: software to convert audio file to text file.

Tuesday 31st of January 2017 02:19:20 PM

not sure if this exists

open an audio file. it plays it back or analyzes it and interprets what is said and converts it to text.

i have no problem paying for something that works. id prefer it to be open source but at the end of the day i just need the job done.

my google fu is just serving me to apps that have nice shortcuts to pause or slow it down while you type. this is not what i am after at all.

submitted by /u/asureyouknowyourself
[link] [comments]

Reddit: What are microservices

Tuesday 31st of January 2017 02:06:00 PM

Linux.com: IPv6 for Server Admins and Client Developers

Tuesday 31st of January 2017 02:00:09 PM
Title: IPv6 for Server Admins and Client Developers31 JanLearn more

Phoronix: KDE Plasma 5.9 Hits The Web With Global Menus, Better Wayland Support

Tuesday 31st of January 2017 12:34:46 PM
Ending out January, the KDE crew has announced the release of Plasma 5.9...

Phoronix: Nouveau Patches Begin Lining Up For Linux 4.11 Kernel

Tuesday 31st of January 2017 12:26:22 PM
Ben Skeggs at Red Hat has begun aligning the latest Nouveau DRM patches that in turn will be submitted to DRM-Next for the Linux 4.11 kernel merge window...

Reddit: Plasma 5.9 release video

Tuesday 31st of January 2017 12:21:50 PM

LXer: PacketFence v6.5 Released

Tuesday 31st of January 2017 12:13:06 PM
The Inverse team is pleased to announce the immediate availability of PacketFence 6.5. This major release brings many new features and enhancements such as Twilio integration for SMS-based registration, EAP-PEAP caching for up to 300% performance improvements, firewall SSO support for WatchGuard, improved default portal look and feel, Ubiquiti EdgeSwitch and Ruckus SmartZone equipment support and much more!

Reddit: Plasma 5.9 Kicks off 2017 in Style

Tuesday 31st of January 2017 12:12:53 PM

Reddit: teach yourself vim completion (autocomplete)

Tuesday 31st of January 2017 12:01:04 PM

TuxMachines: Top Ubuntu Mistakes, F26 Wallpaper Hunt, Linux GOTY

Tuesday 31st of January 2017 11:44:16 AM

It's that time of development again when the Fedora Design Team sends out their call for supplemental wallpapers. Artists and photographers are encouraged to participate. Matt Hartley discussed today some of the mistakes new users make with Ubuntu and offered up his best advice for avoiding them. TecMint compiled the top five reasons to install Linux and the second round of voting has begun in FOSS Force's Best Distro of 2016 contest. Some familiar names graced Google's Code-in winners and Gaming On Linux has identified the best games of 2016 through a user polling survey.

read more

Phoronix: RADV Gets Patches For Float64 Support

Tuesday 31st of January 2017 11:42:14 AM
Less than 24 hours after RADV geometry shaders landed in Mesa Git along with other improvements, patches have been published for wiring up Float64 support for this open-source Radeon Vulkan driver...

More in Tux Machines

Security Leftovers

  • Atom Installer
    One thing that I miss about using Ubuntu is PPA’s there are lot’s of PPA in Ubuntu and you can hack around and install all types of software which are required for your usage. In the Fedora side of the world there are copr repos but they don’t have as many repos as in Ubuntu and you can’t build non-free software (don’t get me wrong here, I love FREEdom software but couldn’t resist not using some beautiful non-free applications such as Sublime). I am creating a work around for this by using shell scripts which are open source (cc0) but when those scripts are executed they install non-free software on your system.
  • MKVToolNix 9.9.0 MKV Manipulation Tool Released with New GUI Improvements, More
    MKVToolNix developer Moritz Bunkus announced today, February 20, 2017, the release and general availability of MKVToolNix 9.9.0 "Pick Up" for all supported platforms, including GNU/Linux, macOS, and Microsoft Windows. MKVToolNix 9.9.0 represents a month of hard work, during which the developer managed to add a bunch of new and interesting features, fix as many bugs reported by users since last month's MKVToolNix 9.8.0 point release, as well as to improve the build system, especially in regards to the man pages of the software.
  • Chakra GNU/Linux Users Get KDE Plasma 5.9.2 and KDE Applications 16.12.2, More
    The developers behind the Chakra GNU/Linux operating system have announced today the immediate availability of all the latest KDE technologies released this month in the stable repositories of the distribution. Yes, we're talking about the KDE Plasma 5.9.2 desktop environment, KDE Applications 16.12.2 software suite, KDE Frameworks 5.31.0, and KDE Development Platform 4.14.29, all of which can be found in your Chakra GNU/Linux's repos if you want to run the newest KDE software.

today's howtos

Leftovers: Ubuntu

  • IOTA: IoT revolutionized with a Ledger
    Ever since the introduction of digital money, the world quickly came to realize how dire and expensive the consequences of centralized systems are. Not only are these systems incredibly expensive to maintain, they are also “single points of failures” which expose a large number of users to unexpected service interruptions, fraudulent activities and vulnerabilities that can be exploited by malicious hackers. Thanks to Blockchain, which was first introduced through Bitcoin in 2009, the clear benefits of a decentralized and “trustless” transactional settlement system became apparent. No longer should expensive trusted third parties be used for handling transactions, instead, the flow of money should be handled in a direct, Peer-to-Peer fashion. This concept of a Blockchain (or more broadly, a distributed ledger) has since then become a global phenomenon attracting billions of dollars in investments to further develop the concept.
  • Return Home and Unify: My Case for Unity 8
  • Can netbooks be cool again?
    Earlier this week, my colleague Chaim Gartenberg covered a laptop called the GPD Pocket, which is currently being funded on Indiegogo. As Chaim pointed out, the Pocket’s main advantage is its size — with a 7-inch screen, the thing is really, really small — and its price, a reasonable $399. But he didn’t mention that the Pocket is the resurrection of one of the most compelling, yet fatally flawed, computing trends of the ‘00s: the netbook. So after ten years, are netbooks finally cool again? That might be putting it too strongly, but I’m willing to hope.

Linux Devices

  • Compact, rugged module runs Linux or Android on Apollo Lake
    Ubiqcomm’s 95 x 95mm, Apollo Lake-based “COM-AL6C” COM offers 4K video along with multiple SATA, USB, GbE, and PCIe interfaces, plus -40 to 85°C operation. Ubiqconn Technology Inc. has announced a “COM-AL6C” COM Express Type 6 Compact form factor computer-on-module built around Intel’s Apollo Lake processors and designed to withstand the rigors of both fixed and mobile industrial applications. The module offers a choice among three Intel Apollo Lake processors: the quad-core Atom x5-E3930, quad-core x5-E3940, and dual-core x7-E3950, which are clocked at up to 2.0GHz burst and offer TDPs from 6.5 to 12 Watts.
  • Internet-enable your microcontroller projects for under $6 with ESP8266
    To get started with IoT (the Internet of Things), your device needs, well, an Internet connection. Base Arduino microcontrollers don't have Internet connectivity by default, so you either need to add Ethernet, Wi-Fi shields, or adapters to them, or buy an Arduino that has built-in Internet connectivity. In addition to complexity, both approaches add cost and consume the already-precious Arduino flash RAM for program space, which limits what you can do. Another approach is to use a Raspberry Pi or similar single-board computer that runs a full-blown operating system like Linux. The Raspberry Pi is a solid choice in many IoT use cases, but it is often overkill when all you really want to do is read a sensor and send the reading up to a server in the cloud. Not only does the Raspberry Pi potentially drive up the costs, complexity, and power consumption of your project, but it is running a full operating system that needs to be patched, and it has a much larger attack surface than a simple microcontroller. When it comes to IoT devices and security, simpler is better, so you can spend more time making and less time patching what you already made.
  • Blinkenlights!
  • Blinkenlights, part 2
  • Blinkenlights, part 3
  • [Older] Shmoocon 2017: The Ins And Outs Of Manufacturing And Selling Hardware
    Every day, we see people building things. Sometimes, useful things. Very rarely, this thing becomes a product, but even then we don’t hear much about the ins and outs of manufacturing a bunch of these things or the economics of actually selling them. This past weekend at Shmoocon, [Conor Patrick] gave the crowd the inside scoop on selling a few hundred two factor authentication tokens. What started as a hobby is now a legitimate business, thanks to good engineering and abusing Amazon’s distribution program.
  • 1.8 Billion Mobile Internet Users NEVER use a PC, 200 Million PC Internet Users never use a mobile phone. Understanding the 3.5 Billion Internet Total Audience
    As I am working to finish the 2017 Edition of the TomiAhonen Almanac (last days now) I always get into various updates of numbers, that remind me 'I gotta tell this story'.. For example the internet user numbers. We have the December count by the ITU for year 2016, that says the world has now 3.5 Billion internet users in total (up from 3.2 Billion at the end of year 2015). So its no 'drama' to know what is 'that' number. The number of current internet total users is yes, 3.5 Billion, almost half of the planet's total population (47%).