Language Selection

English French German Italian Portuguese Spanish

Linux.com

Syndicate content
Updated: 1 hour 58 min ago

Tilling the Brownfield: Bumps on the Road to the Container Dream

Monday 14th of November 2016 03:00:16 PM

Greenfield buildouts are wonderful and we love them. We get to start from scratch and don't have to worry about compatibility with existing servers and applications, and don't have to struggle with preserving and migrating data. Greenfields are nice and clean and not messy. Greenfields are fun.

US Government Opens Access to Federal Source Code with Code.gov

Friday 11th of November 2016 03:00:43 PM

In March of this year, the Obama administration created a draft for Federal Source Code policy to support improved access to custom software code. After soliciting comments from public,  the administration announced the Federal Source Code policy in August.

One of the core features of the policy was the adoption of an open source development model:

KDE Neon Offers a Near-Perfect Desktop on a Solid Platform

Friday 11th of November 2016 02:50:28 PM
Title: KDE Neon Offers a Near-Perfect Desktop on a Solid Platform11 NovLearn more

This Week in Open Source News: Open Cloud Report, No Dirty Cow Patch for Android, & More

Friday 11th of November 2016 12:00:05 PM
Title: This Week in Open Source News: Open Cloud Report, No Dirty Cow Patch for Android, & More11 NovLearn more

The Future of IoT: Containers Aim to Solve Security Crisis

Thursday 10th of November 2016 03:30:43 PM

Despite growing security threats, the Internet of Things hype shows no sign of abating. Feeling the FoMo, companies are busily rearranging their roadmaps for IoT. The transition to IoT runs even deeper and broader than the mobile revolution. Everything gets swallowed in the IoT maw, including smartphones, which are often our windows on the IoT world, and sometimes our hubs or sensor endpoints.

Enterprise Linux Showdown: Ubuntu Linux

Thursday 10th of November 2016 03:00:38 PM
Title: Enterprise Linux Showdown: Ubuntu Linux10 NovLearn more

Re-Imagining the Container Stack to Optimize Space and Speed

Thursday 10th of November 2016 02:30:28 PM
Title: Re-Imagining the Container Stack to Optimize Space and Speed10 NovLearn more

Getting Started With Kubernetes Is Easy With Minikube

Wednesday 9th of November 2016 03:00:18 PM
Title: Getting Started With Kubernetes Is Easy With Minikube9 NovLearn more

Get Trained and Certified on Kubernetes with The Linux Foundation and CNCF

Tuesday 8th of November 2016 08:42:45 PM
Title: Get Trained and Certified on Kubernetes with The Linux Foundation and CNCF8 NovLearn more

OpenSDS for Industry-Wide Software Defined Storage Collaboration

Tuesday 8th of November 2016 05:00:52 PM
Title: OpenSDS for Industry-Wide Software Defined Storage Collaboration8 NovLearn more

Using Apache Hadoop to Turn Big Data Into Insights

Tuesday 8th of November 2016 03:00:09 PM
Title: Using Apache Hadoop to Turn Big Data Into Insights8 NovLearn more

Linux Foundation Certified Engineer: Alexandre Krispin

Tuesday 8th of November 2016 02:00:09 PM
Title: Linux Foundation Certified Engineer: Alexandre Krispin8 NovLearn more

Open Networking Summit

Monday 7th of November 2016 08:22:36 PM

ONS brings together the networking industry ecosystem of early adopters, service providers, enterprises, disruptive and incumbent vendors, open source projects, leading researchers, business executives and investors to discuss breaking SDN and NFV developments for immediate impact to shape the future of the networking industry.

Learn More

Event Title: Open Networking Summit7 NovLearn more

Vault

Monday 7th of November 2016 08:15:19 PM

Vault gathers the developers and users in file systems and storage community to forge a path to continued innovation and education.

Learn More

Event Title: Vault7 NovLearn more

Linux Storage, Filesystem & Memory Management Summit

Monday 7th of November 2016 08:09:26 PM

The Linux Storage, Filesystem & Memory Management Summit gathers the foremost development and research experts and kernel subsystem maintainers.

Learn More

Event Title: Linux Storage, Filesystem & Memory Management Summit7 NovLearn more

Open IoT Summit

Monday 7th of November 2016 07:59:03 PM

OpenIoT Summit is a technical event created to serve the unique needs of system architects, firmware developers, software developers and application developers in this emerging IoT ecosystem.

Learn More

Event Title: Open IoT Summit7 NovLearn more

Embedded Linux Conference

Monday 7th of November 2016 07:52:02 PM

ELC is the premier vendor-neutral technical conference for companies and developers using Linux in embedded products. Now in its 12th year, the conference gathers user-space developers, product vendors, kernel and systems developers to collaborate.

Learn More

Event Title: Embedded Linux Conference7 NovLearn more

Open Source Leadership Summit

Monday 7th of November 2016 07:43:03 PM

An exclusive, invitation-only gathering where the world’s thought leaders in open source software and collaborative development convene to share best practices and learn how to manage the largest shared technology investments of our time.

Learn More

Event Title: Open Source Leadership Summit7 NovLearn more

The Linux Foundation Issues 2016 Guide to Open Source Cloud Projects

Monday 7th of November 2016 03:00:00 PM
Title: The Linux Foundation Issues 2016 Guide to Open Source Cloud Projects7 NovLearn more

Twitter's Chargeback System Measures Resource Use and Sends Out a Bill

Monday 7th of November 2016 02:30:49 PM
Title: Twitter's Chargeback System Measures Resource Use and Sends Out a Bill7 NovLearn more

More in Tux Machines

Google and Mozilla

  • Google Rolls Out Continuous Fuzzing Service For Open Source Software
    Google has launched a new project for continuously testing open source software for security vulnerabilities. The company's new OSS-Fuzz service is available in beta starting this week, but at least initially it will only be available for open source projects that have a very large user base or are critical to global IT infrastructure.
  • Mozilla is doing well financially (2015)
    Mozilla announced a major change in November 2014 in regards to the company's main revenue stream. The organization had a contract with Google in 2014 and before that had Google pay Mozilla money for being the default search engine in the Firefox web browser. This deal was Mozilla's main source of revenue, about 329 million US Dollars in 2014. The change saw Mozilla broker deals with search providers instead for certain regions of the world.

Security Leftovers

  • Security updates for Friday
  • Understanding SELinux Roles
    I received a container bugzilla today for someone who was attempting to assign a container process to the object_r role. Hopefully this blog will help explain how roles work with SELinux. When we describe SELinux we often concentrate on Type Enforcement, which is the most important and most used feature of SELinux. This is what describe in the SELinux Coloring book as Dogs and Cats. We also describe MLS/MCS Separation in the coloring book.
  • The Internet Society is unhappy about security – pretty much all of it
    The Internet Society (ISOC) is the latest organisation saying, in essence, “security is rubbish – fix it”. Years of big data breaches are having their impact, it seems: in its report released last week, it quotes a 54-country, 24,000-respondent survey reporting a long-term end user trend to become more fearful in using the Internet (by Ipsos on behalf of the Centre for International Governance Innovation). Report author, economist and ISOC fellow Michael Kende, reckons companies aren't doing enough to control breaches. “According to the Online Trust Alliance, 93 per cent of breaches are preventable” he said, but “steps to mitigate the cost of breaches that do occur are not taken – attackers cannot steal data that is not stored, and cannot use data that is encrypted.”
  • UK's new Snoopers' Charter just passed an encryption backdoor law by the backdoor
    Among the many unpleasant things in the Investigatory Powers Act that was officially signed into law this week, one that has not gained as much attention is the apparent ability for the UK government to undermine encryption and demand surveillance backdoors. As the bill was passing through Parliament, several organizations noted their alarm at section 217 which obliged ISPs, telcos and other communications providers to let the government know in advance of any new products and services being deployed and allow the government to demand "technical" changes to software and systems.
  • EU budget creates bug bounty programme to improve cybersecurity
    Today the European Parliament approved the EU Budget for 2017. The budget sets aside 1.9 million euros in order to improve the EU's IT infrastructure by extending the free software audit programme (FOSSA) that MEPs Max Anderson and Julia Reda initiated two years ago, and by including a bug bounty approach in the programme that was proposed by MEP Marietje Schaake.
  • Qubes OS Begins Commercialization and Community Funding Efforts
    Since the initial launch of Qubes OS back in April 2010, work on Qubes has been funded in several different ways. Originally a pet project, it was first supported by Invisible Things Lab (ITL) out of the money we earned on various R&D and consulting contracts. Later, we decided that we should try to commercialize it. Our idea, back then, was to commercialize Windows AppVM support. Unlike the rest of Qubes OS, which is licensed under GPLv2, we thought we would offer Windows AppVM support under a proprietary license. Even though we made a lot of progress on both the business and technical sides of this endeavor, it ultimately failed. Luckily, we got a helping hand from the Open Technology Fund (OTF), which has supported the project for the past two years. While not a large sum of money in itself, it did help us a lot, especially with all the work necessary to improve Qubes’ user interface, documentation, and outreach to new communities. Indeed, the (estimated) Qubes user base has grown significantly over that period. Thank you, OTF!
  • Linux Security Basics: What System Administrators Need to Know
    Every new Linux system administrator needs to learn a few core concepts before delving into the operating system and its applications. This short guide gives a summary of some of the essential security measures that every root user must know. All advice given follows the best security practices that are mandated by the community and the industry.
  • BitUnmap: Attacking Android Ashmem
    The law of leaky abstractions states that “all non-trivial abstractions, to some degree, are leaky”. In this blog post we’ll explore the ashmem shared memory interface provided by Android and see how false assumptions about its internal operation can result in security vulnerabilities affecting core system code.

GNU/FSF

  • The Three Software Freedoms
    The government can help us by making software companies distribute the source code. They can say it's "in the interest of national security". And they can sort out the patent system (there are various problems with how the patent system handles software which are out of the scope of this article). So when you chat to your MP please mention this.
  • Leapfrog Honoring the GPL
  • A discussion on GPL compliance
    Among its many activities, the Software Freedom Conservancy (SFC) is one of the few organizations that does any work on enforcing the GPL when other compliance efforts have failed. A suggestion by SFC executive director Karen Sandler to have a Q&A session about compliance and enforcement at this year's Kernel Summit led to a prolonged discussion, but not to such a session being added to the agenda. However, the co-located Linux Plumbers Conference set up a "birds of a feather" (BoF) session so that interested developers could hear more about the SFC's efforts, get their questions answered, and provide feedback. Sandler and SFC director of strategic initiatives Brett Smith hosted the discussion, which was quite well-attended—roughly 70 people were there at a 6pm BoF on November 3.
  • Join us as a member to give back for the free software you use
    At the FSF, we run our own infrastructure using only free software, which makes us stand out from nearly every other nonprofit organization. Virtually all others rely on outside providers and use a significant amount of nonfree software. With your support, we set an example proving that a nonprofit can follow best practices while running only free software.
  • The Free Software Foundation is in need of members

today's howtos