Language Selection

English French German Italian Portuguese Spanish

GNOME: Security vulnerability in Epiphany, Nautilus File Operations and More

Filed under
GNOME
  • Security vulnerability in Epiphany Technology Preview

    If you use Epiphany Technology Preview, please update immediately and ensure you have revision 3.29.2-26 or newer. We discovered and resolved a vulnerability that allowed websites to access internal Epiphany features and thereby exfiltrate passwords from the password manager. We apologize for this oversight.

    The unstable Epiphany 3.29.2 release is the only affected release. Epiphany 3.29.1 is not affected. Stable releases, including Epiphany 3.28, are also not affected.

  • Nautilus File Operations

    While unit tests are meant to be fairly short and simple, tackling individual instances of a functionality or component, Nautilus would not really allow us to do that. Due to Nautilus’ nature and its tight relation to I/O operations, unit testing for us meant cherry-picking the simpler functions which we use and testing these. However, for the larger, more important components, we’d rely on integration tests, which represented one of the following items on our list.

  • 23rd of April

    Lo and behold (not as surprising as it was for me considering I am writing this) my project had been accepted and I was about to start my bonding period as an official member and contributor under the GNOME community!

    I doubt I’ll soon (if ever) forget the feelings I went through as I saw my name listed there. At first, I could not find myself. The GNOME projects list kept going and going, I even went past my fellow Nautilus GSOC’er project and would not see my name. Eventually, I saw it, “Tests, profiling and debug framework for Nautilus” with my name on top of it. It just felt both rewarding (as I had been contributing to Nautilus for a while up to that point) and relaxing, knowing I would get to contribute to something I use on my day-to-day work and alongside the people I got to learn so much from, all whilst being a part a of a huge project, whose name is familiar to millions of users.

More in Tux Machines

CPod – A Simple, Beautiful And Cross-platform Podcast App

Podcasts have become very popular in the last few years. Podcasts are what’s called “infotainment”, they are generally light-hearted, but they generally give you valuable information. Podcasts have blown up in the last few years, and if you like something, chances are there is a podcast about it. There are a lot of podcast players out there for the Linux desktop, but if you want something that is visually beautiful, has slick animations, and works on every platform, there aren’t a lot of alternatives to CPod. CPod (formerly known as Cumulonimbus) is an open source and slickest podcast app that works on Linux, MacOS and Windows. CPod runs on something called Electron – a tool that allows developers to build cross-platform (E.g Windows, MacOs and Linux) desktop GUI applications. In this brief guide, we will be discussing – how to install and use CPod podcast app in Linux. Read more

today's howtos

Security: Updates, Anonymity, EFF and Open Source Security Podcast

  • Security updates for Monday
  • For Hackers, Anonymity Was Once Critical. That’s Changing.

    “This is a profession for a lot of people now,” she added. “And you can’t fill out a W-9 with your hacker handle.”

    [...]

    “The thing I worry about today,” he added, taking a more serious tone, “is that people don’t get do-overs.” Young people now have to contend with the real-name policy on Facebook, he said, along with the ever-hovering threats of facial-recognition software and aggregated data. “How are you going to learn to navigate in this world if you never get to make a mistake — and if every mistake you do make follows you forever?”

  • EFF Leader: Security Decisions Are Different When Women Are In The Room
    Women will have their technical credentials doubted throughout their career, said the Electronic Frontier Foundation's Eva Galperin, but being able to participate in important privacy and security decisions makes it worthwhile.
  • Open Source Security Podcast: Episode 115 - Discussion with Brian Hajost from SteelCloud
    Josh and Kurt talk to Brian Hajost from SteelCloud about public sector compliance. The world of public sector compliance can be confusing and strange, but it's not that bad when it's explained by someone with experience.

Android Leftovers