Language Selection

English French German Italian Portuguese Spanish

Blogs

Running Tux Machines

Filed under
Site News

Roy Schestowitz

TUX Machines has become an integral part of our life right here in this humble home. It's a rewarding experience but also a demanding experience. I personally write my articles in the lounge (which is no 'press room') and it requires many hours of digging and researching news. In Tux Machines, unlike in Techrights for example, it's mostly about finding news of high relevance and importance, and finding them fast! Timing counts. We don't want readers to waste their time wading/going through irrelevant, unimportant and out-of-date reports.

24/7 coverage of news is easy for us. Rianne works mostly at daytime, whereas I usually work at nights (customers are mostly government/public sector and they require 24/7 coverage). When Rianne is working I take over the responsibilities at Tux Machines and vice versa. We swap responsibilities like this when it comes to housework as well; we work out together when we are out of the house (also separately in terms of gym sections, e.g. cardiovascular/weights). This week we go to yoga classes as much as 5 times, but we usually just to Town for other facilities like pool, table tennis, sauna (men and women separately), gym, etc. This is our main escape from Tux Machines; given Wi-Fi (scarce coverage but definitely existent in Manchester City Centre), we sometimes update Tux Machines while out of the house as well.

The site forums are now open for participation and every registered member can add blog posts and push them to the front page (now that we've got the spam epidemic under control). Please do consider participating. This week, as in previous weeks, we are seeing a ~10% growth in traffic (week-to-week), perhaps owing to the slight redesign, loading speeds (Varnish cache), and very frequent updates. We check for news once in a few hours in order to keep abreast of breaking events.

Running Tux Machines will hopefully become more of a community effort over time. Anyone who is logged in can now submit stories. Unless this gets abused by spammers, we will keep it that way.

Mollom Works

Filed under
Site News

Drupal's very own Mollom is a Free/Open Source (collaboratively-developed and freely-shared) software for battling script kiddies and fighting against SPAM. The past 2 weeks were difficult because spammers exploited the fact that we had opened up the site for registration/subscription (to leave comments). After exploring some options for dealing with the problem (spam making it to the front page even!) we found that Mollom was good enough to eliminate almost 100% of all of spam (so far). Hence, for the time being, it seems safe to say now that we beat the script kiddies. Thanks, Mollom!

Mollom

First Month on the New Server (Updated)

Filed under
Site News

Tux Machines behind Varnish cache proxy

Chart for Tux Machines

Summary: Tux Machines growth and a note regarding SPAM prevention after a week or so of experiments

Here are the first four weeks' log sizes, plotted with LibreOffice and demonstrating week-to-week growth since the site's nameservers changed and the server moved to CoPilotCo. After 4 weeks all logs get deleted (logrotate) to ensure privacy through lack of data retention (except short term in case of DDOS).

Nokia

Filed under
Just talk

It is now the talk of the town. Nokia will be making their own smartphone based on Android. It seems like they no longer want to be in the shadow, under Windows Phone. I would like to think this might be the comeback of Nokia phones after a decade or so. I liked Nokia as a gadget way before this so-called "smart phones" trend started. I remember when SMS became the most convenient tool for communication, like a telegraph type. Nokia phones were once a gadgets giant; only then, when Microsoft bought Nokia, the once cellphone giant was kept and never to be found. I mean, not literally, but I can hardly see Nokia out in the Market along with those cellphone giants like Mac/iOS , Blueberry and Samsung. Nokia's merging into Microsoft has never been good; their tandem strategy never created any new innovation that makes them different from the other competitors. In fact, there were no success stories for Nokia when it was based on Windows Phone.

I expect Nokia to have lots to offer in the next expo. Improvements in software using Android OS, distinct design in hardware which can compete in comparables among the others. The price might be a little less than the existing smartphones to attract potential costumers. Lastly, I wish Nokia well for bravely taking such a huge change. In this road it has many challenges, but it's worth taking.

Opening Up Communications (Updatedx5)

Filed under
Site News

Script kiddies can't get their way

Diversity

Summary: Script kiddies made it impractical to manage comments and forum posts; we are trying to tackle this issue today

IN ANOTHER attempt to restore user registrations, this time on the new server which has just been configured for mail, we are enabling anyone to quickly self-register (takes less than a minute and requires no verification), then immediately post comments, forum posts, etc.

Site Update (Updatedx2)

Filed under
Site News

Newspaper

Summary: Recent changes at Tux Machines, in just a nutshell

INSPIRED in part by Slashdot, we recently added topical icons to submissions, applying these changes retroactively to over 50,000 older pages. The idea was, this can improve orientation by helping to quickly associate text with topics. More minor modifications were made as well, some textual and some layout related. They are subtle but they can be seen. After receiving feedback regrading icons size we made further modifications. Regarding social media buttons, some of the ones we initially found were unbelievably privacy-infringing (allowing Google, Facebook, Twitter etc. to see visitors of this site), so we disabled them immediately and replaced them with static buttons. Right now we can assure that whenever loading pages in this Web site nothing except our security-aware network gets contacted. We share no data about visitors (with anyone) and Apache logs get shredded for good after a few weeks, leaving sufficient trail just in case of attacks on the site, which would merit investigation. Log rotation is similarly privacy-respecting at the cache level, which leads to the following point.

Today, after the above changes had been made and stability attained (there were some network disruptions yesterday), we also updated Drupal, ensuring it is secure and fully up to date (the latest minor bugfix release is a month old). There is still an issue with Varnish and until we tackle this issue users who are not logged in might be getting error pages. One way to overcome this is to append "?something" to the URL requested. This bypasses the Varnish cache until we finish our investigation of this issue and resolve it for good.

Update: The issue with Varnish turns out to be a conflict between two caching layers. It's fixed now. If you spot an issue, still, please let us know.

Update #2: Yesterday we identified another issue and soon thereafter fixed it. After Twitter syndication had failed we realised that RSS feeds were not standards-compliant, due to a blank line at the start of each generated page in Drupal. This is a common issue and it is a nightmare to debug (requires a complete code review with help of GNU utilities like grep). After 4 hours of investigation I found the culprit and fixed the coding error. RSS feeds are back.

My Valentine

Filed under
Just talk

Rianne Schestowitz

Yesterday was a rainy day. Our plans to go dining and bowling were more or less ruined by that. Manchester has had stormy weather as of late and there is not much one can do to avoid it.

Almost every couple went out to celebrate valentines. In my case, as I am working regular hours at day (and sometimes at night), I don't have much time for planning or thinking of ways to celebrate valentines day.

My dear husband, who had a day off yesterday (after he had worked at night), surprised me in many ways. He prepared a bubble bath for me with glasses of wine and candles lit. Pizza was inside the oven and table setting was quite ready, with many special beverages to mark the special day.

Everything was organised and prepared by him. While we were having our dinner we watched Tom and Jerry (a favourite from my childhood) and we were both enjoying it. Later he wanted to prepare the new mattress he bought to make sure we would have a good night's sleep.

Our own way of celebrating valentines -- so simple but passionately expressed with pure love and tenderness.

Justice

Filed under
Just talk

Justice

I was born in a quiet and beautiful town in the Far East together with my cousins. As far as I can remember, we enjoyed watching the sunrise and sunset, bathing and fishing in the river along with other children. My childhood years bring back good memories: Playing hide and seek, flying kites, throwing yo-yo, jumping on Chinese garter and so much more. Life was full of fun and so simple back then. There were times I ate meals in our neighbours' house, treated like family. Sometimes we exchanged food. This you will never experience in an highly urbanised city, as there is nothing like this in the Western world. It's a small town where you almost know every other person. Everybody is like your family. That is how I remember the place that I left 24 years ago. This year my husband and I were planning to visit my beloved town. But I have second thoughts. It's a bit scary to visit a place where people are killing other people like animals.

Mandrake Derived Distros

Filed under
Linux

Todays special is about Mandrake derived distributions, namely,
OpenMandriva Lx 2014 alpha vs Mageia 4 final vs ROSA 2012 R2 final vs PCLinuxOS 2013.12 final.

In (my limited) testing, I've used the X86_64 versions favoring the KDE desktop, and I've used the NVidia binary drivers provided with each distro.

Here's my experience with each one:

Statistics Not Compatible With Varnish

Filed under
News

Statistics

VARNISH is valuable for a number of reasons, including security, privacy, and performance. I first used it around 2009 when another site of mine had repeatedly come under DDOS attacks. Using Varnish means that requests for pages usually come from the same IP address (the cache proxy), if at all. Much of the time visitors get served static (cached) pages transparently and quickly. The downside is, this interferes with statistics (the Apache server does not even see all requests) and it is not compatible with modules like polls, where each IP addressed is allowed just one vote.

During the server/site migration we tried to preserve as many of the features as we could. There was a transition from old Debian to new CentOS and the new architecture is quite different (still 2 CPU cores but with more RAM, a virtual container, and resilience owing to proxies/redundancy). Thanks to those who suggested workarounds. We have looked at some of them, but without losing on performance there is no way to keep meaningful statistics. These statistics have been disabled. Not even we, with direct access to the server and the CMS, have access to meaningful statistics.

We are going to try to focus on high quality selection of news, not on numbers.

Over 8 Years of TuxMachines, by Nations

Site stats

Slight Site Changes

Filed under
News

Yesterday, following a mostly successful migration (there are still some impending fixes to .htaccess), slight changes were applied. For regular readers of the site, here they are summarised:

PCLinuxOS 2013--An Old Friend Revisited

Filed under
Linux

I first heard about Bill Reynolds (AKA "Texstar") when I was using Mandrake Linux 7 (later called "Mandriva") many years ago. Back then, Texstar was putting together updated KDE releases for Mandrake Linux, as Mandrake would only typically update their KDE release once or twice a year.

Windows 8.1 "The Worst Ever"

Filed under
Just talk

I've taught High School Computer Science for 25 years--Computer Programming, Web Page Design, Word Processing, Database Processing, and Spreadsheet processing. I have Linux on all my home computers with a dual boot into MS Windows 7 on my main computer. I don't use Windows 7 very often--but, I can find my way around in Windows 7. Since I have no experience with Win 8, I've thought all the recent hoopla about Microsoft's Windows 8 and 8.1 was just inexperienced grousing.

This is "See Ya Around"

Filed under
Site News

I started to say "this is goodbye," but just because I sold the site doesn't mean I won't be around Linuxville. I'm still writing at ostatic and I may turn up here now and again as well. I'll be looking around to expand my writing after the new year too, so you're not rid of me yet. But the sale on tuxmachines.org has been completed.

New HTPC the Lenovo Ideastation Q190 & Ubuntu

We cut the cord a couple of years ago, the need to get TV over traditional TV Ariel was no longer needed and services such as TV Catchup, iPlayer and the other UK Catchup TV Channels streamed over the net to my TV were all we needed.

Having had an Asrock 330 Ion be the trusty device for nearly 5 years the box finally gave up the shost last week.

The options available for using the internet to provide your TV are huge, from the giants of Apple with Apple TV, Google are dipping their toes in the water they have the ChromeCast, and there are a huge bagfull of Android Devices which all claim to plug into the HDMI port of your TV.. Then there is the Raspberry PI which has a custom build of OS's to provide different interfaces.

Read more

Sold! (tentatively)

Filed under
Site News

I guess tuxmachines.org has been sold for $1000. I know it's kinda low, but times have changed and the new owner plans to carry on the tuxmachines tradition.

going twice

Filed under
Site News

going twice

fair warning - going once....

Filed under
Site News

Well, I think I'm going to accept one of the two $1000 bids received, unless anyone else wants to bid...

Tuxmachines.org for sale (update)

Filed under
Site News

I've decided to try and see if anyone might be interested in buying and doing something with my domain and site. So, today, I'm posting this ad here: tuxmachines.org for sale.


Update: I've received some bids and will decide by Monday....

Syndicate content

More in Tux Machines

Security News

  • Tuesday's security updates
  • New Open Source Linux Ransomware Divides Infosec Community
    Following our investigation into this matter, and seeing the vitriol-filled reaction from some people in the infosec community, Zaitsev has told Softpedia that he decided to remove the project from GitHub, shortly after this article's publication. The original, unedited article is below.
  • Fax machines' custom Linux allows dial-up hack
    Party like it's 1999, phreakers: a bug in Epson multifunction printer firmware creates a vector to networks that don't have their own Internet connection. The exploit requirements are that an attacker can trick the victim into installing malicious firmware, and that the victim is using the device's fax line. The firmware is custom Linux, giving the printers a familiar networking environment for bad actors looking to exploit the fax line as an attack vector. Once they're in that ancient environment, it's possible to then move onto the network to which the the printer's connected. Yves-Noel Weweler, Ralf Spenneberg and Hendrik Schwartke of Open Source Training in Germany discovered the bug, which occurs because Epson WorkForce multifunction printers don't demand signed firmware images.
  • Google just saved the journalist who was hit by a 'record' cyberattack
    Google just stepped in with its massive server infrastructure to run interference for journalist Brian Krebs. Last week, Krebs' site, Krebs On Security, was hit by a massive distributed denial-of-service (DDoS) attack that took it offline, the likes of which was a "record" that was nearly double the traffic his host Akamai had previously seen in cyberattacks. Now just days later, Krebs is back online behind the protection of Google, which offers a little-known program called Project Shield to help protect independent journalists and activists' websites from censorship. And in the case of Krebs, the DDoS attack was certainly that: The attempt to take his site down was in response to his recent reporting on a website called vDOS, a service allegedly created by two Israeli men that would carry out cyberattacks on behalf of paying customers.
  • Krebs DDoS aftermath: industry in shock at size, depth and complexity of attack
    “This attack didn’t stop, it came in wave after wave, hundreds of millions of packets per second,” says Josh Shaul, Akamai’s vice president of product management, when Techworld spoke to him. “This was different from anything we’ve ever seen before in our history of DDoS attacks. They hit our systems pretty hard.” Clearly still a bit stunned, Shaul describes the Krebs DDoS as unprecedented. Unlike previous large DDoS attacks such as the infamous one carried out on cyber-campaign group Spamhaus in 2013, this one did not use fancy amplification or reflection to muster its traffic. It was straight packet assault from the old school.
  • iOS 10 makes it easier to crack iPhone back-ups, says security firm
    INSECURITY FIRM Elcomsoft has measured the security of iOS 10 and found that the software is easier to hack than ever before. Elcomsoft is not doing Apple any favours here. The fruity firm has just launched the iPhone 7, which has as many problems as it has good things. Of course, there are no circumstances when vulnerable software is a good thing, but when you have just launched that version of the software, it is really bad timing. Don't hate the player, though, as this is what Elcomsoft, and what Apple, are supposed to be doing right. "We discovered a major security flaw in the iOS 10 back-up protection mechanism. This security flaw allowed us to develop a new attack that is able to bypass certain security checks when enumerating passwords protecting local (iTunes) back-ups made by iOS 10 devices," said Elcomsoft's Oleg Afonin in a blog post.
  • After Tesla: why cybersecurity is central to the car industry's future
    The news that a Tesla car was hacked from 12 miles away tells us that the explosive growth in automotive connectivity may be rapidly outpacing automotive security. This story is illustrative of two persistent problems afflicting many connected industries: the continuing proliferation of vulnerabilities in new software, and the misguided view that cybersecurity is separate from concept, design, engineering and production. This leads to a ‘fire brigade approach’ to cybersecurity where security is not baked in at the design stage for either hardware or software but added in after vulnerabilities are discovered by cybersecurity specialists once the product is already on the market.

Ofcom blesses Linux-powered, open source DIY radio ‘revolution’

Small scale DAB radio was (quite literally) conceived in an Ofcom engineer’s garden shed in Brighton, on a Raspberry Pi, running a full open source stack, in his spare time. Four years later, Ofcom has given the thumbs up to small scale DAB after concluding that trials in 10 UK cities were judged to be a hit. We gave you an exclusive glimpse into the trials last year, where you could compare the specialised proprietary encoders with the Raspberry Pi-powered encoders. “We believe that there is a significant level of demand from smaller radio stations for small scale DAB, and that a wider roll-out of additional small scale services into more geographic areas would be both technically possible and commercially sustainable,” notes Ofcom. Read more

nginx

Case in point: I've been using the Apache HTTP server for many years now. Indeed, you could say that I've been using Apache since before it was even called "Apache"—what started as the original NCSA HTTP server, and then the patched server that some enterprising open-source developers distributed, and finally the Apache Foundation-backed open-source colossus that everyone recognizes, and even relies on, today—doing much more than just producing HTTP servers. Apache's genius was its modularity. You could, with minimal effort, configure Apache to use a custom configuration of modules. If you wanted to have a full-featured server with tons of debugging and diagnostics, you could do that. If you wanted to have high-level languages, such as Perl and Tcl, embedded inside your server for high-speed Web applications, you could do that. If you needed the ability to match, analyze and rewrite every part of an HTTP transaction, you could do that, with mod_rewrite. And of course, there were third-party modules as well. Read more

Linux and Open Source Hardware for IoT

Most of the new 21 open source software projects for IoT that we examined last week listed Linux hacker boards as their prime development platforms. This week, we’ll look at open source and developer-friendly Linux hardware for building Internet of Things devices, from simple microcontroller-based technology to Linux-based boards. In recent years, it’s become hard to find an embedded board that isn’t marketing with the IoT label. Yet, the overused term is best suited for boards with low prices, small footprints, low power consumption, and support for wireless communications and industrial interfaces. Camera support is useful for some IoT applications, but high-end multimedia is usually counterproductive to attributes like low cost and power consumption. Read more