Language Selection

English French German Italian Portuguese Spanish

today's leftovers

Filed under
Misc
  • Upcoming Gallery Block improvements

    An exciting update to the Gallery Block gives you more ways to show off images in your posts and pages. While this change won’t be available for most folks until WordPress 5.9’s launch in December, we wanted to share some of what’s to come to get you excited about the future.

  • Updates from OSI Affiliate members (Sept. 2021)

    Below are updates, news and event information from some of our Affiliate Members.

  • Rugged DAQ board expands with PCIe/104 OneBank

    Diamond’s “Saturn” PCIe/104 SBC for data acquisition runs Ubuntu or Win 10 on Apollo Lake with up to 8GB soldered RAM, 2x GbE, 2x HDMI, 4x USB, 3x COM, analog and digital I/Os, and M.2, mini-PCIe, and OneBank expansion.

    Diamond Systems has announced a rugged, PCIe/104 form factor SBC aimed at digital acquisition tasks. Like Diamond’s Zeta boardset, the Saturn SBC runs Linux or Windows on Intel’s Apollo Lake. Like its AMD G-Series or i.MX6 based Quantum SBC, it adopts the legacy PCIe/104 form factor, and more specifically uses the stackable PCIe/104 OneBank expansion interface.

  • Obsolete IdenTrust root certificate will lead to loss of trust in Let’s Encrypt on older devices

    On September 30, at 17:01 Moscow time , the lifetime of the IdenTrust root certificate (DST Root CA X3) expires , which was used to cross-sign the root certificate of the Let’s Encrypt certification authority ( ISRG Root X1 ), controlled by the community and providing certificates for free to everyone. Cross-signing has ensured the trust of Let’s Encrypt certificates on a wide range of devices, operating systems and browsers while integrating Let’s Encrypt’s own root certificate into root certificate stores.

    It was originally planned that after the DST Root CA X3 is out of date, the Let’s Encrypt project will switch to generating signatures using only its root certificate, but such a step would lead to a loss of compatibility with a large number of old systems that did not add the Let’s Encrypt root certificate to their repositories. In particular, approximately 30% of Android devices in use do not have data on the Let’s Encrypt root certificate, support for which appeared only starting from the Android 7.1.1 platform, released at the end of 2016.

  • Red Hat automation glossary

    Automation is an increasingly strategic necessity as organizations of all sizes strive to deliver value faster while solving IT and business workflow challenges.

    Here we offer a quick glossary of automation terms, including links where you can dive in deeper to learn more.

  • Configuring Red Hat Ansible Automation Platform with GitOps

    Red Hat Ansible Automation Platform comes in handy when organizations start to implement Infrastructure as Code and GitOps concepts. But what about the automation of the platform itself?

    Before we get started it’s good to clarify some product component naming. Ansible Tower is being renamed to Automation Controller in the upcoming Ansible Automation Platform 2 release. While things are being changed, you can see both words "tower" and "controller" used interchangeably in various contexts including roles and collections. For more information on Ansible Automation Platform please refer to this Knowledge Base Article.

    Almost all of the assets in Ansible Tower can be backed with SCM-based repositories. Yet, there's a little gap in how this content (Job Templates, Projects, Inventories, etc.) is initially created and subsequently managed. This becomes especially visible on large deployments. For example, a Project in Ansible Tower can be backed by a Git repository with the automation code.

  • MiTubo 0.3 brings basic RSS support | Mardy

    I just pushed MiTubo 0.3 to the Ubuntu Touch app store, added a link to the AppImage package in the Releases page and later during the night the Launchpad builders should import it and build it for Ubuntu 18.04 and 20.04.

    This release adds basic support for RSS feeds. One just needs to type the address of an RSS (or Atom) feed in the search bar and the "Search" button will transform itself into a "Subscribe" one. Unfortunately no discovery mechanism is implemented yet, so one cannot just enter the address of a webpage and expect MiTubo to find the feed URL(s); I plan to bring that in a future release, but for the time being you'll have to enter the exact address of the RSS feed.

  • Plasma 25th Anniversary Edition Beta Testing Day

    Friday 1 October is the testing day for Plasma 25th Anniversary Edition.

    Please show up on our Plasma Matrix room (accessible on Libera IRC as #plasma) and download one or more rolling distros with the beta on. Distros with Plasma beta.

More in Tux Machines

Videos: Getting Rid of Microsoft and Linux from Scratch

Kontron takes Raspberry Pi into Industry 4.0 with Codesys

“The integrated development environment Codesys for programmable logic controllers according to the IEC 61131-3 standards is hardware-independent software for application development in industrial automation,” according to Kontron. “Thanks to its open interfaces and security features, Codesys has distinguished itself as an industry 4.0 platform and facilitates data exchange between IIoT networks.” Prior to this, Codesys has been available for Kontron’s PiXtend – a similar product that takes a standard Pi rather than a Compute Module. Of this, the company said: Codesys V3 lets you memory-program controls. An integrated web visualisation tool is available for displaying your control elements, diagrams and graphics on your smartphone, tablet or PC.” Read more

Security: Windows, Microsoft Malware, GPS Bug, and Some Exaggeration/FUD

  • Sophisticated Spearphishing Campaign Targets Government Organizations, IGOs, and NGOs - blackMORE Ops

    The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are engaged in addressing a spearphishing campaign targeting government organizations, intergovernmental organizations (IGOs), and non-governmental organizations (NGOs). A sophisticated cyber threat actor leveraged a compromised end-user account from Constant Contact, a legitimate email marketing software company, to spoof a U.S.-based government organization and distribute links to malicious URLs.[1] CISA and FBI have not determined that any individual accounts have been specifically targeted by this campaign.

  • Malicious NPM Packages Caught Running Cryptominer On Windows, Linux, macOS Devices [Ed: Lousy anti-journalist sites try to blame the victims for having received malware from Microsoft itself]

    Three JavaScript libraries uploaded to the official NPM package repository have been unmasked as crypto-mining malware, once again demonstrating how open-source software package repositories are becoming a lucrative target for executing an array of attacks on Windows, macOS, and Linux systems.

  • GPS Daemon (GPSD) Rollover Bug

    Critical Infrastructure (CI) owners and operators, and other users who obtain Coordinated Universal Time (UTC) from Global Positioning System (GPS) devices, should be aware of a GPS Daemon (GPSD) bug in GPSD versions 3.20 (released December 31, 2019) through 3.22 (released January 8, 2021).

  • New Linux kernel memory corruption bug causes full system compromise [Ed: This is "local privilege escalation", i.e. vastly less severe than all those back doors in Windows, but so-called 'security' firms aren't meant to talk about state-mandated holes]

    Researchers dubbed it a “straightforward Linux kernel locking bug” that they exploited against Debian Buster’s 4.19.0.13-amd64 kernel.

today's howtos

  • Inspect the capabilities of ELF binaries with this open source tool

    Capa is an open source project from Mandiant (a cybersecurity company). In the project's own words, capa detects capabilities in executable files. Although the primary target of Capa is unknown and possibly malicious executables, the examples in this article run Capa on day-to-day Linux utilities to see how the tool works. Given that most malware is Windows-based, earlier Capa versions only supported the PE file format, a dominant Windows executable format. However, starting with v3.0.0, support for ELF files has been added (thanks to Intezer).

  • What you need to know about Kubernetes NetworkPolicy | Opensource.com

    With a growing number of cloud-native applications going to production through Kubernetes adoption, security is an important checkpoint that you must consider early in the process. When designing a cloud-native application, it is very important to embed a security strategy up front. Failure to do so leads to lingering security issues that can cause project delays and ultimately cost you unnecessary stress and money. For years, people left security at the end—until their deployment was about to go into production. That practice causes delays on deliverables because each organization has security standards to adhere to, which are either bypassed or not followed with a lot of accepted risks to make the deliverables. Understanding Kubernetes NetworkPolicy can be daunting for people just starting to learn the ins and outs of Kubernetes implementation. But this is one of the fundamental requirements that you must learn before deploying an application to your Kubernetes cluster. When learning Kubernetes and cloud-native application patterns, make your slogan "Don't leave security behind!"

  • 3 tips for printing with Linux

    I have a confession to make. This may be an unpopular opinion. I actually enjoy reading documents on a piece of paper as opposed to digitally. When I want to try a new recipe, I print it out to follow it so I don't have to continually swipe my mobile device to keep up with the steps. I store all my favorite recipes in sheet protectors in a binder. I also like to print out coloring pages or activity sheets for my kids. There are a ton of options online or we create our own! Though I have a fond appreciation for printed documents, I have also had my fair share of printing nightmares. Paper jams, low ink, printer not found, the list of frustrating errors goes on and on. Thankfully, it is possible to print frustration-free on Linux. Below are three tutorials you need to get started printing on Linux. The first article walks through how to connect your printer to your Linux computer. Then, learn how to print from anywhere in your house using your home network. The last article teaches you how to print from your Linux terminal so you can live out all your productivity dreams. If you are in the market for a new printer, check out this article about choosing a printer for Linux.

  • 3 basic Linux user management commands every sysadmin should know [Ed: But those have nothing to do with Linux… they’re part of shadow-utils.]

    I like logical commands; commands that are simple, straightforward, and just make sense. When I delivered Linux sysadmin training, I found Linux user management commands to be easy to explain.

  • Strange Apache Reload Issue « etbe - Russell Coker

    I recently had to renew the SSL certificate for my web server, nothing exciting about that but Certbot created a new directory for the key because I had removed some domains (moved to a different web server). This normally isn’t a big deal, change the Apache configuration to the new file names and run the “reload” command. My monitoring system initially said that the SSL certificate wasn’t going to expire in the near future so it looked fine. Then an hour later my monitoring system told me that the certificate was about to expire, apparently the old certificate came back! I viewed my site with my web browser and the new certificate was being used, it seemed strange. Then I did more tests with gnutls-cli which revealed that exactly half the connections got the new certificate and half got the old one. Because my web server isn’t doing anything particularly demanding the mpm_event configuration only starts 2 servers, and even that may be excessive for what it does. So it seems that the Apache reload command had reloaded the configuration on one mpm_event server but not the other!

  • Featured Unixcop Oracle Data Integrator (ODI) on CentOS 8 Oracle Data Integrator (ODI) on CentOS 8

    Data Integration ensures that information is timely, accurate, and consistent across complex systems. Although it is still frequently referred as Extract-Transform-Load (ETL), data integration was initially considered as the architecture used for loading Enterprise Data Warehouse systems. Data integration now includes data movement, data synchronization, data quality, data management, and data services. Oracle Data Integrator s built on several components all working together around a centralized metadata repository. Also these components – graphical modules, runtime agents and web based interfaces – in conjunction with other advanced features make ODI a lightweight, state of the art data integration platform. With its superior performance and flexible architecture, Oracle Data Integrator can_be used in various types of projects such as Data Warehousing, SOA, Business Intelligence or Application Integration.

  • Oracle Weblogic 14c on CentOS 8 - Unixcop

    Modern business environment demands Web and e-commerce applications that accelerate your entry into new markets like a boom ! help you find new ways to reach and retain customers, and allow you to introduce new products and services quickly. To build and deploy these new solutions, you need a proven, reliable e-commerce platform that can connect and empower all types of users while integrating your corporate data. Oracle WebLogic Server is a unified and extensible platform for developing, deploying and running enterprise applications, such as Java, for on-premises and in the cloud. Hi Guys ! Today, we will discuss about Oracle WebLogic server. We have got through some intro & now will have a glimpse of some architectural overview of this Oracle Middle ware product, Then we will go the how to’s. Don’t get bored till then ! WebLogic Server operates in the middle tier of a multi tier (or n-tier) architecture. A multi tier architecture determines where the software components that make up a computing system are executed in relation to each other and to the hardware, network, and users. Choosing the best location for each software component lets you develop applications faster; eases deployment and administration; and provides greater control over performance, utilization, security, scalability, and reliability.

  • Store Passwords Securely with Hashicorp Vault on Ubuntu 20.04 – VITUX

    It is always not possible to remember all the secret keys, passphrases, and tokens. Sometimes managing and maintaining secrets might be challenging tasks. We may need to store such secrets somewhere which we can use when needed. Hashicorp Vault is a solution that can be used to store secrets. It protects all the secrets stored on it and keeps secured. In this article, we will learn how to install Hashicorp vault on ubuntu 20.04.