Language Selection

English French German Italian Portuguese Spanish

Android Leftovers

More in Tux Machines

today's howtos

Programming: OpenXR, Fuchsia OS, Prolog and State of 'DevOps'

  • Open source XR runtime (VR/AR) 'Monado' sees a first release

    With the Khronos Group launching the OpenXR specification last year, their aim was to unify Augmented Reality (AR) and Virtual Reality (VR) development while Collabora worked on their open source implementation of Monado. Collabora have been hard at work on Monado, a currently Linux-focused open source XR runtime that will eventually also support other platforms. Today, they tagged the very first release. With this release they've worked in new drivers, there's now a set of scripts ready for people to try Monado rather than needing to setup a full development environment, udev rules sorted for USB permissions for XR hardware, distribution packaging and more. You can see the release announcement on the Collabora blog, where they note they also have some internships going. As for the code, it's all up on GitLab if you're interested in checking out in this early form. The future of XR on Linux sounds quite exciting, especially with efforts like this and Collabora do some great open source work.

  • Monado OpenXR runtime developer update

    We are very happy to tag version 0.1 of the Monado OpenXR runtime for Linux! Ever since announcing the project at GDC 2019, we have been working on improving the full open source XR stack to a usable state. Do keep in mind, this is a first tag, not a final release so it will contain some tinkering and is not feature complete! To echo the common phrase 'Be warned, here be dragons!'. Feel free to play around with Monado, and hit us up on our Discord to get help, report bugs or ask about contributing!

  • Google programming language scorecard: How C, C++, Dart, Rust, Go rate for Fuchsia

    Google has released a new programming language policy for Fuchsia, its under-development OS that some speculate could be its non-Linux successor to Android. Instead of a Linux kernel, the core of Google's Fuchsia OS is a Zircon microkernel to communicate with hardware and boot a system that runs Fuchsia. Google describes Fuchsia as specifically "not Linux" and a "modular, capability-based operating system".

  • Excellent Free Tutorials to Learn Prolog

    Prolog is a general purpose, declarative, logic programming language, often associated with artificial intelligence, computational linguistics, intelligent database retrieval, and problem solving. It’s widely used in research and education for natural language processing. Automatic backtracking is one of the most characteristic features of Prolog. It’s a form of searching, fundamental to all artificial intelligence techniques. Prolog also supports multi-directional reasoning; arguments to a procedure can freely be designated inputs and outputs in different ways in different procedure calls. This is a powerful theorem-proving technique. Another key feature of Prolog is that its syntax and semantics are closer to formal logic than say Lisp. Prolog is generally regarded as a difficult language to get to grips with. But learning the fundamentals of Prolog is definitely worthwhile.

  • State of DevOps Report Finds Maturity Varies Widely by Industry

    The scorecard gave the technology industry an "A" for DevOps adoption and an "A-" for security integration as part of the DevOps development pipeline. Brown noted that it was expected that companies in the technology industry would be leading the pack in terms of security integration because DevOps tends to be part of the DNA of those organizations.

Security, FUD, Openwashing and Threats

  • Security updates for Tuesday

    Security updates have been issued by Debian (curl and otrs2), Fedora (NetworkManager-ssh and python-psutil), Mageia (ipmitool, libgd, libxml2_2, nextcloud, radare2, and upx), openSUSE (inn and sudo), Oracle (kernel, ksh, python-pillow, and thunderbird), Red Hat (curl, kernel, nodejs:10, nodejs:12, procps-ng, rh-nodejs10-nodejs, ruby, and systemd), SUSE (dpdk, firefox, java-1_7_1-ibm, java-1_8_0-ibm, libexif, libvpx, nodejs10, nodejs8, openssl1, pdsh, slurm_18_08, python-azure-agent, python3, and webkit2gtk3), and Ubuntu (libapache2-mod-auth-mellon, libpam-radius-auth, and rsync).

  • New Critical RCE Bug in OpenBSD SMTP Server Threatens Linux Distros [Ed: Typical FUD associating "Linux" with a package that GNU/Linux distros do not come with]

    Security researchers have discovered a new critical vulnerability in the OpenSMTPD email server. An attacker could exploit it remotely to run shell commands as root on the underlying operating system.

  • New OpenSMTPD RCE Flaw Affects Linux and OpenBSD Email Servers [Ed: Again attributing to operating systems bugs in pertinent packages they may not even have]

    OpenSMTPD has been found vulnerable to yet another critical vulnerability that could allow remote attackers to take complete control over email servers running BSD or Linux operating systems. OpenSMTPD, also known as OpenBSD SMTP Server, is an open-source implementation of the Simple Mail Transfer Protocol (SMTP) to deliver messages on a local machine or to relay them to other SMTP servers. It was initially developed as part of the OpenBSD project but now comes pre-installed on many UNIX-based systems.

  • Y2K bug has a 2020 echo

    The New Scientist reports on problems with software caused by an echo of the Y2K bug that had every excited in the late 1990s. It turns out one of the fixes then was to kick various software cans down the road to 2020. In theory that gave people 20 years to find long term answers to the problems. In some cases they might have expected software refreshes to have solved the issue. [...] This happens because Unix time started on January 1 1970. Time since then is stored as a 32-bit integer. On January 19 2038, that integer will overflow. Most modern applications and operating systems have been patched to fix this although there are some compatibility problems. The real issue comes with embedded hardware, think of things like medical devices, which will need replacing some time in the next 18 years.

  • The “Cloud Snooper” malware that sneaks into your Linux servers [Ed: They don't want to mention that people actually need to install this malware on GNU/Linux for dangers to become viable. Typical Sophos FUD/sales.]
  • Cybersecurity alliance launches first open source messaging framework for security tools [Ed: Openwash of proprietary software firms]

    Launched by the Open Cybersecurity Alliance (OCA), a consortium of cybersecurity vendors including IBM, Crowdstrike, and McAfee, on Monday, the OCA said that OpenDXL Ontology is the "first open source language for connecting cybersecurity tools through a common messaging framework."

  • Microsoft uses its expertise in malware to help with fileless attack detection on Linux [Ed: Truly laughable stuff as Microsoft specialises in adding back doors, then abusing those who speak about it]
  • Azure Sphere, Microsoft's Linux-Powered IoT Security Service, Launches [Ed: Microsoft is Googlebombing "Linux" again; you search for Linux news, you get Microsoft Azure (surveillance) and proprietary malware, instead.]

KDE: Video Competition Winners, Atelier Plasmoid and Updates on Kube

  • KDE Video Competition Winners

    On the 20th of February, our first video contest finished and winners were decided by a panel of judges. This was the first time we run a video contest and we were really excited to see how much the community got involved, the quality of the videos and the onboarding effect that this contest would have. All the submitted videos show great effort on behalf of the creators and it was extremely difficult to select the winner -- at one point there was even a tie! But, at last, we were able to select a winner and finalists for each category. Without further ado, let's dive into the results:

  • Atelier Plasmoid – Update

    Yeah, I’m back! =D Now I have updated the Atelier plasmoid to use our beloved profiles setup. Profiles on Atelier are shared by any interface that uses AtCore Machine Info to lookup for each profile that you have saved of your machines. The quick print is now really quick: Select profile -> Connect -> Select File -> Print.

  • Last months in Kube

    The todo view’s goal is to have a small personal list of todos, acknowledging that you can only accomplish so much during a day, and there is no intention of turning this into a project management suite down the road. The idea is that you have a couple of lists as backlogs, and that you then pick a reasonable amount of items (<10 probably?) from those lists as currently in progress (that’s also how it’s stored in iCal). This then gives you a nice little list of things during the day/week/whatever suits you, that you can tick off. New items can quickly be entered using keyboard shortcuts (press “?”) and that’s about it for the time being. I think sub-todos might find their way eventually in there, but the rest should rather be quality of life improvements and eventually taking other sources of “things you need to act on” into account, such as emails that you should probably be answering or events that need to be prepared. The todo view was the last officially missing piece, so with that we are view-complete (feature complete may be a bit a stretch still).

  • Search in encrypted content and support for encrypted headers

    To fix this we’re going to start decrypting encrypted emails when syncing and indexing the encrypted content. That way we can make sure encrypted emails are just as usable as non-encrypted emails, at least as long as you’re using Kube. This means that in the future you will not only be able to search through all your email, it also means you get a more useful subject displayed than “…” or some other nonsense.