Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Friday, 23 Aug 19 - Tux Machines is a community-driven public service/news site which has been around for over a decade and a half and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Mandrake Thinking Name Change? srlinuxx 13 07/04/2005 - 5:48pm
Story Mandrakesoft Announces Name Change! srlinuxx 1 07/04/2005 - 8:04pm
Story ATI: Linux Driver 8.12.10 released srlinuxx 08/04/2005 - 8:48pm
Story New Linux initiative targets Germany's financial sector srlinuxx 08/04/2005 - 8:58pm
Story Torvalds looking for new Linux home srlinuxx 09/04/2005 - 12:20am
Story ICANN adds .jobs, .travel domains srlinuxx 09/04/2005 - 12:29am
Story New Linux Distro Expected To Be a "Solaris Killer" srlinuxx 09/04/2005 - 2:52pm
Story U.S. slips lower in coding contest srlinuxx 09/04/2005 - 3:10pm
Story News Publishers and Internet Industry Urge Reversal in Apple Case srlinuxx 09/04/2005 - 3:16pm
Story Female networks create opportunities srlinuxx 09/04/2005 - 3:33pm

Security: Open Source Security Podcast, Screwed Drivers, and Voting Machines

Filed under
Security
  • Open Source Security Podcast: Episode 157 - Backdoors and snake oil in our cryptography

    Josh and Kurt talk about snakeoil cryptography at Black Hat and the new backdoored cryptography fight. Both of these problems will be with us for a very long time. These are fights worth fighting because it's the right thing to do.

  • Screwed Drivers – Signed, Sealed, Delivered

    Our analysis found that the problem of insecure drivers is widespread, affecting more than 40 drivers from at least 20 different vendors – including every major BIOS vendor, as well as hardware vendors like ASUS, Toshiba, NVIDIA, and Huawei. However, the widespread nature of these vulnerabilities highlights a more fundamental issue – all the vulnerable drivers we discovered have been certified by Microsoft. Since the presence of a vulnerable driver on a device can provide a user (or attacker) with improperly elevated privileges, we have engaged Microsoft to support solutions to better protect against this class of vulnerabilities, such as blacklisting known bad drivers.

  • Most states still aren’t set to audit paper ballots in 2020

    Despite some progress on voting security since 2016, most states in the US aren’t set to require an audit of paper ballots in the November 2020 election, according to a new report out this week from the Brennan Center for Justice.

    The report notes that experts and government officials have spent years recommending states adopt verifiable paper ballots for elections, but a handful still use electronic methods potentially vulnerable to cyberattacks. In 2016, 14 states used paperless machines, although the number today is 11, and the report estimates that no more than eight will use them in the 2020 election.

Linux Candy: WallGen – image generator tool

Filed under
GNU
Linux
Software

Who loves eye candy? Don’t be shy — you can raise both hands!!

Linux Candy is a new series of articles covering interesting eye candy software. We’re only going to feature open-source software in this series.

I’m not going to harp on about the tired proverb “All work and no play makes Jack a dull boy”. But there’s a certain element of truth here. If you spend all day coding neural networks, mastering a new programming language, sit in meetings feeling bored witless, you’ll need some relief at the end of the day. And what better way by making your desktop environment a bit more memorable.

Let’s start our candy adventure with WallGen. It’s a small command-line utility that generates HQ poly wallpapers with only a few text arguments for inputs. Depending on these arguments, you can create shape-based patterns, randomly filled surfaces, and even image-based patterns.

Read more

Richard Brown: Changing of the Guard

Filed under
SUSE

After six years on the openSUSE Board and five as its Chairperson, I have decided to step down as Chair of the openSUSE Board effective today, August 19.

This has been a very difficult decision for me to make, with reasons that are diverse, interlinked, and personal. Some of the key factors that led me to make this step include the time required to do the job properly, and the length of time I’ve served. Five years is more than twice as long as any of my predecessors. The time required to do the role properly has increased and I now find it impossible to balance the demands of the role with the requirements of my primary role as a developer in SUSE, and with what I wish to achieve outside of work and community. As difficult as it is to step back from something I’ve enjoyed doing for so long, I am looking forward to achieving a better balance between work, community, and life in general.

Serving as member and chair of the openSUSE Board has been an absolute pleasure and highly rewarding. Meeting and communicating with members of the project as well as championing the cause of openSUSE has been a joyous part of my life that I know I will miss going forward.

openSUSE won’t get rid of me entirely. While I do intend to step back from any governance topics, I will still be working at SUSE in the Future Technology Team. Following SUSE’s Open Source policy, we do a lot in openSUSE. I am especially looking forward to being able to focus on Kubic & MicroOS much more than I have been lately.

As I’m sure it’s likely to be a question, I wish to make it crystal clear that my decision has nothing to do with the Board’s ongoing efforts to form an independent openSUSE Foundation.

The Board’s decision to form a Foundation had my complete backing as Chairperson, and will continue to have as a regular openSUSE contributor. I have absolute confidence in the openSUSE Board; Indeed, I don’t think I would be able to make this decision at this time if I wasn’t certain that I was leaving openSUSE in good hands.

On that note, SUSE has appointed Gerald Pfeifer as my replacement as Chair. Gerald is SUSE’s EMEA-based CTO, with a long history as a Tumbleweed user, an active openSUSE Member, and upstream contributor/maintainer in projects like GCC and Wine.

Read more

An introduction to bpftrace for Linux

Filed under
Linux

Bpftrace is a new open source tracer for Linux for analyzing production performance problems and troubleshooting software. Its users and contributors include Netflix, Facebook, Red Hat, Shopify, and others, and it was created by Alastair Robertson, a talented UK-based developer who has won various coding competitions.

Linux already has many performance tools, but they are often counter-based and have limited visibility. For example, iostat(1) or a monitoring agent may tell you your average disk latency, but not the distribution of this latency. Distributions can reveal multiple modes or outliers, either of which may be the real cause of your performance problems. Bpftrace is suited for this kind of analysis: decomposing metrics into distributions or per-event logs and creating new metrics for visibility into blind spots.

Read more

Fedora and Red Hat: New F30 Builds, Flock Report, Servers and Package Management Domain Model

Filed under
Red Hat
Server
  • Ben Williams: F30-20190818 updated isos released.

    The Fedora Respins SIG is pleased to announce the latest release of Updated F30-20190816 Live ISOs, carrying the 5.2.8-200 kernel.

    This set of updated isos will save considerable amounts of updates after install. ((for new installs.)(New installs of Workstation have 1.2GB of updates)).

    A huge thank you goes out to irc nicks dowdle, satellite,Southern-Gentlem for testing these iso.

  • Flock to Fedora 2019 Conference report

    Last week I attended “Flock to Fedora” conference in Budapest, Hungary. It was a Fedora contributors conference where I met some developers, project leaders, GSoC interns. Below is a brief report of my attendance.

  • What salary can a sysadmin expect to earn?

    The path to reliable salary data sometimes is sometimes paved with frustration. That’s because the honest answer to a reasonable question—what should I be paid for this job?—is usually: "It depends."

    Location, experience, skill set, industry, and other factors all impact someone’s actual compensation. For example, there’s rarely a single, agreed-upon salary for a particular job title or role.

    All of the above applies to system administrators. It’s a common, long-established IT job that spans many industries, company sizes, and other variables. While sysadmins may share some common fundamentals, it’s certainly not a one-size-fits-all position, and it’s all the truer as some sysadmin roles evolve to take on cloud, DevOps, and other responsibilities.

    What salary can you expect to earn as a sysadmin? Yeah, it depends. However, that doesn’t mean you can’t get a clear picture of what sysadmin compensation looks like, including specific numbers. This is information worth having handy if you’re a sysadmin on the job market or seeking a promotion.

    Let’s start with some good news from a compensation standpoint. Sysadmins—like other IT pros these days—are in demand.

    "In today’s business environment, companies are innovating and moving faster than ever before, and they need systems that can keep up with the pace of their projects and communications, as well as help everything run smoothly," says Robert Sutton, district president for the recruiting firm Robert Half Technology. "That’s why systems administrators are among the IT professionals who can expect to see a growing salary over the next year or so."

  • Run Mixed IT Efficiently, The Adient – SUSE Way.

    When you have multiple distributions, such as Red Hat and SUSE, you can reduce administration complexity and save administration time and resources with a common management tool. Adient had applications running on both SUSE Linux Enterprise Server and Red Hat Enterprise Linux. Adient deployed SUSE Manager to manage their Mixed IT environment involving both distributions.

  • Package Management Domain Model

    When I wrote this model, we were trying to unify a few different sorts of packages. Coming from SpaceWalk, part of the team was used to wokring on RPMS with the RPM Database for storage, and Yum as the mechanism for fetching them. The other part of the team was coming from the JBoss side, working with JAR, WAR, EAR and associated files, and the Ivy or Maven building and fetching the files.

    We were working within the context of the Red Hat Network (as it was then called) for delivering content to subscribers. Thus, we had the concept of Errata, Channels, and Entitlements which are somewhat different from what other organizations call these things, but the concepts should be general enough to cover a range of systems.

    There are many gaps in this diagram. It does not discuss the building of packages, nor the relationship between source and binary packages. It also does not provide a way to distinguish between the package storage system and the package fetch mechanism.

    But the bones are solid. I’ve used this diagram for a few years, and it is useful.

Review: AcademiX GNU/Linux 2.2

Filed under
GNU
Linux
Reviews

What sets AcademiX apart from other distributions is the EDU software manager. This package manager provides curated lists of educational software, which are grouped by subject and by age range. This package manager makes finding educational software really easy. There is software for astronomy, biology, geography, foreign languages, and many other subjects. While there are gaps in the availability of applications covering various subjects, that is a gap in the broader open source application ecosystem, not something specific to AcademiX. While some of the rough edges I noted with the installation process and the desktop customization make me a hesitant to recommend AcademiX to new Linux users, Educational Technology professionals should perhaps try out AcademiX just to use the EDU package manager to explore various open source applications.

While installing and updating software was easy and basically the same experience as any other modern, Debian-based distribution, the fact that some of the packages come from servers in Romania means that some package downloads can be much slower than downloading from the world-wide network of Debian mirrors. For individual packages and small collections of packages this is not too noticeable, but it is still an issue. The frustrating part is the fact that the speeds are not consistent. Sometimes I was downloading at only 40kbps, but other times it was much faster. I experienced the same issue when trying to download the ISO. One download took about 20 minutes for the 1.7GB image but some other attempts took 4 hours.

Final thoughts

AcademiX GNU/Linux is an interesting distribution, but it has some rough edges that need to be cleaned up. Honestly, I really, really wanted to like this distribution (good distributions aimed at the educational market are always needed), but found it to be merely okay. AcademiX has a lot of potential, but it is just not there yet. DebianEdu/Skolelinux is far more polished while serving almost the exact same niche. However, if the AcademiX team cleans up some of the issues I noted above, especially the installer issues, I think future versions of AcademiX might turn out to be worthwhile. The EDU software installer is well organized and aids in discovering educational software, so that is one solid advantage AcademiX offers, but overall the distribution needs more work and polish before I could move it from "this distribution is okay" to "you should give this distribution a try".

Read more

Security: ECB, Bluetooth and AppArmor Crash Course

Filed under
Security
  • ECB server hacked – Data disclosure of the European Central Bank – Bank hacks from Mexico to Bangladesh

    The Europeans probably do not even know about „what is going on“ and according to ex finance minister of Greece – finance ministers do not have a lot to say in the ECB – the IMF has – there are no recordings of the meetings of „The Eurogroup“ – so transparency over decision making processes is rather bad.

    After all just like the (more or less ideal) „big brother“ the FED it is not under direct democratic influence – does what it wants – every word the FED CEO says is analyzed and influences financial market decisions.

    „One of the sites of the European Central Bank (ECB) has been hacked. The attackers gained access to sensitive users ‚ information, however, the internal system of the Bank has not been compromised.

  • Specification vulnerability in devices that speak Bluetooth is addressed

    The discovery of a flaw in Bluetooth specification that could enable an attack to spy on your information made news this week; the attacker could be able to weaken the encryption of Bluetooth devices and snoop on communications or send falsified ones to take over a device, said The Verge.

  • FrOSCon 2019 - openSUSE booth & AppArmor Crash Course

    Last weekend, I was at FrOSCon - a great Open Source conference in Sankt Augustin, Germany. We (Sarah, Marcel and Sleepy ran the openSUSE booth, answered lots of questions about openSUSE and gave the visitors some goodies - serious and funny (hi OBS team!) stickers, openSUSE hats, backpacks and magazines featuring openSUSE Leap. We also had a big plush geeko, but instead of doing a boring raffle, we played openSUSE Jeopardy where the candidates had to ask the right questions about Linux and openSUSE for the answers I provided.

Manjaro 18.0.4 Illyria Xfce review - Nice but somewhat crude

Filed under
Reviews

Overall, Manjaro 18.0.4 Illyria Xfce is a decent distro. It has lots of good and unique points. Network, media and phone support is good. You get a colorful repertoire of high-quality programs, the performance and battery life are excellent, and the desktop is fairly pretty. The system was also quite robust and stable.

But then, there were issues - including inconsistent behavior compared to the Plasma crop. The installation can be a bit friendlier (as Plasma one does). The package management remains the Achilles' Heel of this distro. Having too many frontends is confusing, and none of them do a great job. The messages on dependencies, the need for AUR (if you want fancy stuff), and such all create unnecessary confusing. There were also tons of visual papercuts, and I struggled getting things in order. All in all, Manjaro is getting better all the time, but it is still too geeky for the common person, as it breaks the fourth wall of nerdiness too often. 7/10, and I hope it can sort itself out and continue to deliver the unique, fun stuff that gets sidelined by the rough edges.

Read more

Top 10 Best Open Source Speech Recognition Tools for Linux

Filed under
Software

Speech is a popular and smart method in modern time to make interaction with electronic devices. As we know, there are many open source speech recognition tools available on different platforms. From the beginning of this technology, it has been improved simultaneously in understanding the human voice. This is the reason; it has now engaged a lot of professionals than before. The technical advancement is strong enough to make it more clear to the common people.

Read more

Slackware, the Longest Active Linux Distro, Finally Has a Patreon Page

Filed under
Slack

"Slackware is the longest active Linux distribution project, founded in 1993," writes TheBAFH (Slashdot reader #68,624).

"Today there are many Linux distributions available, but I've remained dedicated to this project as I believe it still holds an important place in the Linux ecosystem," writes Patrick J. Volkerding on a new Patreon page. He adds that Slackware's users "know that Slackware can be trusted not to constantly change the way things work, so that your investment in learning Slackware lasts longer than it would with a system that's a moving target... Your support is greatly appreciated, and will make it possible for me to continue to maintain this project."

Read more

See Ubuntu Desktop Running on a Samsung Galaxy S10

Filed under
Ubuntu

I might have written about its availability a few times, but until today I had never actually seen Ubuntu 16.04 LTS running on a Samsung smartphone.

Don’t panic, you haven’t missed any major announcements and Samsung hasn’t started to sell phones with Ubuntu pre-loaded. I’m instead referring to the “Linux on DeX” development experience.

DeX is nifty bit of software tech that lets (select) Samsung devices running Android drive a more traditional “desktop” experience when connected to an external monitor, keyboard and mouse.

“Turn your Galaxy devices into a PC-like experience with a single cable,” Samsung say.

Additionally, ‘Linux on DeX’ is an Android app that’s only available as part of DeX. It lets users download and run a full desktop Linux experience using container technology on any supported Samsung Galaxy smartphone or tablet.

Read more

HarmonyOS Explained: A Viable Future Android Competitor or a Futile Attempt From Huawei?

Filed under
OS

During the annual Huawei developer conference, the company officially unveiled its custom HarmonyOS intended to create a unified ecosystem for potentially millions of users. Of course, this isn’t going to be as simple as churning out improved and feature-enriched versions of its Kirin chipsets for smartphones and tablets, so Huawei intends on taking its time with what could be a viable Android competitor, even though it hasn’t been marketed as such. Here we explain what is HarmonyOS, its unique feature set, and if it has the potential to somehow squirm its way in the duopoly iOS and Android have created for themselves.

Read more

Cool, but obscure X11 tools

Filed under
Graphics/Benchmarks
Software

A small collection of tools for the X Window System. For cool terminal tools, see Kristof Kovacs’ Cool, but obscure Unix tools. All applications have been tested on FreeBSD but should run on other Unix-like operating systems as well. This page is still work in progress …

Read more

Linux 5.3-rc5

Filed under
Linux

Another week, another -rc.

It's been calm, and nothing here stands out, except perhaps some of
the VM noise where we un-reverted some changes wrt node-local vs
hugepage allocations.

The rest is the usual driver fixes (usb, sound, nvme, habanalabs,
rdma..) some arch updates (arm64 and x86) along with some filesystem
fixes (afs and btrfs).

But all of it is really quite small.

Read more

Also: Linux 5.3-rc5 Released Following A Calm Week

AMD Ryzen 5 3600X Linux Performance

Filed under
Graphics/Benchmarks

Now that the new AMD Ryzen 3000 series are running great with the latest Linux distributions following prominent motherboard vendors issuing BIOS updates that correct the "RdRand" issue, we're moving on with looking at the performance of the rest of the Ryzen 3000 series line-up while having freshly re-tested the processors under Ubuntu 19.04. Up for exploration today is the AMD Ryzen 5 3600X, the six-core / 12-thread processor retailing for about $250 USD.

The AMD Ryzen 5 3600X has 6-cores / 12-threads while having a 3.8GHz base frequency and 4.4GHz maximum boost frequency. This CPU has a 95 Watt TDP, 32MB L3 cache, and other features in line with the rest of the Zen 2 family. AMD bundles the Ryzen 5 3600X retail CPU with their Wraith Spire cooler.

Read more

Intel Tries Again To Auto Enable GuC/HuC Functionality For Their Linux Graphics Driver

Filed under
Graphics/Benchmarks

Intel previously tried auto-enabling GuC and HuC functionality within their Linux kernel graphics driver but ended up reverting the support since the driver didn't gracefully handle the scenarios of missing/corrupt firmware files. The driver should now be more robust in such situations so they will try again for turning on the automatic behavior, possibly for the upcoming Linux 5.4 cycle.

Intel GuC and HuC have been around since Skylake and used for graphics workload scheduling, some power management bits, and for select media capabilities. For newer hardware is also being used as part of HEVC/H.265 handling.

Read more

Syndicate content

More in Tux Machines

today's howtos

The Linux kernel: Top 5 innovations

The word innovation gets bandied about in the tech industry almost as much as revolution, so it can be difficult to differentiate hyperbole from something that’s actually exciting. The Linux kernel has been called innovative, but then again it’s also been called the biggest hack in modern computing, a monolith in a micro world. Setting aside marketing and modeling, Linux is arguably the most popular kernel of the open source world, and it’s introduced some real game-changers over its nearly 30-year life span. Read more

Android Leftovers

Removing Qt 4 from Ubuntu before the 20.04 release

I would like to completely remove Qt 4 from the Ubuntu archive before the 20.04 release. This includes all of KDE 4 and dependencies. The Debian Qt/KDE Team (which I am a part of) is raising the status of the Qt 4 removal bugs to RC[1], and since the Qt 6 work is starting upstream in the dev branch in the coming months, now is the time for Qt 4 to go. My timeline for this is to change all of the bugs filed to ask people to port[2] to removal bugs, and go over the list of Qt 4 reverse dependencies one last time, so the removal can be done at the beginning of the 20.04 cycle before the archive opens. This would make 19.10 the last release with Qt 4. Read more Also: Ubuntu Planning To Drop Qt4 & Its Dependencies Ahead Of 20.04 LTS