Language Selection

English French German Italian Portuguese Spanish

Ubuntu Poem

Filed under
Ubuntu




More in Tux Machines

Leftovers: Debian, Ubuntu and Derivatives

  • Debian contributions and World History
  • UbuCon Summit at SCALE 15x Call for Papers
  • UbuCon Summit at SCALE 15x to Take Place March 2-3 in Pasadena, California
    Ubuntu project member Nathan Haines is announcing that the next UbuCon Summit conference takes place this spring, between March 2 and March 3, in Pasadena, California, USA, during the SCALE 15x event. SCALE is a renowned annual Linux Expo held in southern California. It's also the biggest Linux and FOSS (Free and Open Source Software) showcase event run by various members of the Linux community in North America. SCALE 15x is the fifteenth installation of the conference.
  • Changes to Cinnamon Spices
    The Cinnamon desktop can be themed and its features can be extended by adding applets, desklets and extensions. In Cinnamon lingo, all these addons are referred to as “spices”. The goal is to let you spice up your Cinnamon experience so you can enjoy your desktop environment, feel even more at home with it and benefit from niche features and look and feel which go beyond what is developed by the Linux Mint and Cinnamon teams.
  • Vinux 5.1 released
    Vinux is distribution which mainly focus on blind and partially sighted people. Vinux is based on Ubuntu. Latest version of Vinux is 5.1 and it is based on Ubuntu 14.05.5 which is Long Term Support. Vinux uses Unity, Gnome or MATE as desktop environment. New release includes lots of updated packages and other fixes.

Android Leftovers

Leftovers: OSS and Sharing

Security Leftovers

  • The long road to getrandom() in glibc
    The GNU C library (glibc) 2.25 release is expected to be available at the beginning of February; among the new features in this release will be a wrapper for the Linux getrandom() system call. One might well wonder why getrandom() is only appearing in this release, given that kernel support arrived with the 3.17 release in 2014 and that the glibc project is supposed to be more receptive to new features these days. A look at the history of this particular change highlights some of the reasons why getting new features into glibc is still hard.
  • Maintainers for desktop "critical infrastructure"
    That work is great, but it is limited by a number of factors: funding and the interests of its members, primarily. Few of the companies involved have much, if any, interest in the Linux desktop. Some might argue that there aren't any companies with that particular interest, though that would be disingenuous. In any case, though, desktop Linux is a community-supported endeavor, at least more so than server or cloud Linux, which likely means some things are slipping through the cracks. Kaskinen left his job in 2015 to be able to spend more time on PulseAudio (and some audio packages that he maintains for OpenEmbedded). For the last four months or so, he has been soliciting funds on Patreon. Unlike Kickstarter and other similar systems, Patreon is set up to provide ongoing funding, rather than just a chunk of money for a particular feature or project. Donors pledge a monthly amount to try to support someone's work going forward.
  • Important CentOS 7 Linux Kernel Security Patch Released, 3 Vulnerabilities Fixed
    CentOS developer and maintainer Johnny Hughes is announcing the availability of a new, important Linux kernel security update for the CentOS 7 series of operating systems. CentOS 7 is derived from the freely distributed source code of the commercial Red Hat Enterprise Linux 7 operating system series, which means that it also benefits of its security patches. According to the recently published RHSA-2017:0086-1 security advisory, which was marked as important, three security vulnerabilities are patched.
  • Trump's New Cyber-Security Advisor Runs a Very, Very Insecure Website
    According to Phonos Group founder Dan Tentler, Giuliani's security company website runs a very, very old Joomla distribution, an open-source, free-to-use CMS. That's Joomla 3.1.1, released in April 2013. Since then, two major zero-days have plagued Joomla, so grave that they could allow attackers to take full control over a Joomla installation. Those are CVE-2016-9838 and CVE-2015-8562. But that's not the worse of it. The Joomla admin panel login page is also freely available, meaning anyone could access it and attempt to brute-force the admin password.
  • Reminder: Microsoft to no longer update original Windows 10 release after March 26 [Ed: Microsoft will leave even more Vista 10 back doors open, unless you install the latest doors]
    As Microsoft noted last year, the company plans to update only two Current Branch for Business versions of Windows 10 at any given time.
  • St. Louis' public library computers hacked for ransom [iophk: “Those who installed Windows on them have not been brought to justice”]
    Hackers have infected every public computer in the St. Louis Public Library system, stopping all book borrowing and cutting off internet access to those who rely on it for computers. The computer system was hit by ransomware, a particularly nasty type of computer virus that encrypts computer files. This form of attack renders computers unusable -- unless victims are willing to pay an extortion fee and obtain a key to unlock the machines.
  • Microsoft Targets Chrome Users With Windows 10 Pop-up Ad
    Microsoft really wants you to use its software products as well as running Windows 10, and that includes the Edge browser. But it can't stop you choosing to use an alternative web browser. However, if you opt to use Chrome, then expect to start seeing adverts right on your Windows desktop.
  • United Airlines Domestic Flights Grounded for 2 Hours by Computer Outage
    All of United Airlines' domestic flights were grounded for more than two hours Sunday night because of a computer outage, the Federal Aviation Administration said as scores of angry travelers sounded off on social media.
  • There’s no glory in patching
    Regular patching is essential but not without risks. Missing a critical patch is an easy way of getting your service compromised but insufficient testing is an even easier way of getting it to fall over. Here at drie we talk a lot about why trying to build your own infrastructure around AWS can be, to put it mildly, a bit of a pain. Today I’d like to go a little deeper on one issue most people encounter when going it alone in AWS and why you’re better off making it someone else’s problem. While it may seem like a mundane concern, keeping up to date with the latest patches and security fixes for your dependencies is a significant undertaking and neglecting server patches is a swift route to getting your infrastructure hacked.