Developers are leaking access tokens for Slack widely on GitHub, in public repositories, support tickets and public gists. They are extremely easy to find due to their structure. It is clear that the knowledge about what these tokens can be used for with malicious intent is not on top of people’s minds…yet. The Detectify team shows the impact, with examples, and explains how this could be prevented.
When Samsung started releasing Edge devices last year, people were pretty excited as to what the dual curved displays can add to the user experience, However, some were pretty disappointed as you couldn’t do that much with them except to see color-coded notifications and other minor things. But with the release of the Samsung Galaxy S7 Edge this year, plus the Android 6.0 Marshmallow update, users were able to get a bit more out of the display. An open-source project now lets you control your music player from the edge display.
The Edge panel created by XDA developer hymxdev will work for Samsung devices that of course have the Edge display, including the Galaxy S6 Edge, S6 Edge Plus, S7 Edge, and even the Galaxy Note 5, if the Edge screen feature is enabled in the phablet. It will let you control your music player without having to open the app itself. All you have to do is install the app and then use the Edge display to Play/Pause, Next track, Previous track, etc. What you can do also depends on the music player you’re using.
The entire essay continues on a similar note. Although the title implies this is a rant about Ubuntu and Debian, he seems to paint the entirety of Linux Land with the same broad brush. And that would be factually wrong.
"Factually wrong" doesn't mean he hasn't pointed out some serious problems. He has. I and many other Linux users see the same problems he identifies. What's "factually wrong" is that these problems are built into the combination of kernel, system software, and applications generally called either "Linux" or "GNU/Linux". And his implication that there's no reasonable way for a user to avoid these problems is also factually wrong.
The bottom line of my objection to his essay is this: Nobody should use software they don't like, especially if there's a reasonable alternative. And by extension, why is Linas still using Debian and Ubuntu and systemd and Firefox and Chrome and Gnome? There are reasonable alternatives to every single one of them.
I was at LinuxFest NorthWest 2016 last weekend. I’ve been going to LFNW for several years now, and I look forward to it every year – it’s just a great conference, which has managed to grow to nearly 2000 registrations this year while keeping its community/grassroots feel. The talks are always widely varied and interesting, and there’s a great feeling that you could run into anyone doing anything – I spent an hour or two at the social event talking to a group of college students who run a college radio station entirely on F/OSS, which was awesome.
Just a short update on foss-north – the schedule is up. We have a whole list of speakers that I’m super excited about and tickets are selling well. I still don’t know what to expect, but more than 1/3 of the tickets are gone and the sales numbers are actually even better for the full priced tickets than the early birds.
With the release of Ubuntu 16.04 ZFS became officially supported by Canonical. However, this raised issues over licensing — see this article and the links it contains. Here are my thoughts on the issue as a software engineer and Linux user. Unfortunately, I do not have much legal expertise, so my discussion will lack legal precision, but I will do my best to address the legal issues highlighted by other articles.e
As of right-this-cherry-picking-second Cinnamon 3.0 is not available to install on Ubuntu through its official PPA.
So, to install Cinnamon 3.0 on Ubuntu 16.04 LTS, you’ll need to add a community PPA.
The one we’re featuring below is the only one to currently build Cinnamon 3.0 for Xenial users (it also has 3.0 packages for 15.10, too).
Having trouble installing third-party .debs on Ubuntu 16.04?
You, my friend, are far from alone.
A huge number of you have pinged us about a big ol’ bug in the Xenial Xerus’ new Software app. A bug that leaves you unable to install popular apps like Steam, Google Chrome, and Nylas N1, using .deb files.
It's been a while since last having any major news to report out of the Mir camp for Ubuntu's alternative to Wayland.
If you've been wondering what the Mir crew has been up to, their change-log was recently updated. Mostly it's been a lot of bug-fixing. Some of the recent enhancements outside of fixes has been supporting Android HWC 1.5 and screencast API changes.
Ubuntu developer and Canonical employee Daniel Holbach reminds the Ubuntu community that the next UOS (Ubuntu Online Summit) event starts first thing next week, on May 3-5, 2016.
The forthcoming Ubuntu Online Summit conference is for Ubuntu 16.10, which has been dubbed by Canonical founder Mark Shuttleworth as "Yakkety Yak," and whose development cycle already started with daily build ISOs seeded to testers last week. Ubuntu 16.10 will be launched later this year, on October 20, 2016.
Ubuntu 16.04 has brought some interesting features that you must give try if you’ve upgraded.
In this article we’ll show you 10 things to do after installing or upgrading to Ubuntu 16.04. It’ll save your time tweaking the system and also will provide you the taste of new features of Ubuntu 16.04.
A day after Mozilla released the Firefox 47 Beta, Google has released their beta of the Chrome/Chromium 51 web-browser.
Chrome 51 Beta brings a Credential Management API, lower overhead for offscreen rendering, ServiceWorker improvements, HTML5 canvas improvements, Chrome on Android now uses the same media pipeline as desktop Chrome, and various other enhancements.
To the first point, many people seem unaware that POSIX is an actual set of standards - IEEE 1003.1 in several variations, plus descendants. These standards cover a lot more than just operations on files, and technically "POSIX" only refers to systems that have passed a set of conformance tests covering all of those. Nonetheless, people often use "POSIX" to mean only the section dealing with file operations, and only in a loose sense of things that implement something like the standard without having been tested against it. Many systems, notably including Linux, pretty explicitly do not claim to comply with the actual standard.
A few days ago, Ned Batchelder's post on deleting code made the rounds on HN, even though it was originally written in 2002. Here I want to echo a few of Ned's points, and take a stronger stance than he did: delete code as soon as you know you don't need it any more, no questions asked. I'll also offer some tips from the trenches for how to identify candidate dead code.
This is the first in a series on eating your vegetables in software engineering, on good, healthy practices for a happy and successful codebase. I don't (yet) know how long the series will be, so please stay tuned!