Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Wednesday, 17 Oct 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Programming/Development: uTidylib, From Python to Rust, Programming Experiences and Go Tips

Filed under
Development
  • uTidylib 0.4

    Two years ago, I've taken over uTidylib maintainership. Two years has passed without any bigger contribution, but today there is a new version with support for recent html-tidy and Python 3.

  • Rewrote summain from Python to Rust

    I've been learning Rust lately. As part of that, I rewrote my summain program from Python to Rust (see summainrs). It's not quite a 1:1 rewrite: the Python version outputs RFC822-style records, the Rust one uses YAML. The Rust version is my first attempt at using multithreading, something I never added to the Python version.

  • Which programming language for work? For the weekend?

    Our writer community grows each month as new, interesting folks write for us and join in on the fun of sharing their expertise and experiences in open source technology. So, it's no surprise that they are brimming with fascinating information. It's just asking the right question to release it.

    Recently, I asked: What programming languages do you use at work, and which ones do you use on the weekend?

  • Go command and packages cheat sheet

    Of the many things the go executable can do, most people know only go run and go build. And, of the many packages in the standard Go library, most people know only the fmt package. This cheat sheet will list many uses of the go executable and the most important packages in the Go standard library.

IPFire 2.21 - Core Update 124 released

Filed under
GNU
Linux
Security

This is the official release announcement for IPFire 2.21 – Core Update 124. It brings new features and immensely improves security and performance of the whole system.

Read more

Mozilla: Featured Extensions Advisory Board, Extended Mind, Firefox Deprecating TLS 1.0 and TLS 1.1 Support, Google's Lies, Mozilla Reps

Filed under
Moz/FF
  • Apply to Join the Featured Extensions Advisory Board

    Do you love extensions? Do you have a keen sense of what makes a great extension? Want to help users discover extensions that will improve how they experience the web? If so, please consider applying to join our Featured Extensions Community Board!

    Board members nominate and select new featured extensions each month to help millions of users find top-quality extensions to customize their Firefox browsers. Click here to learn more about the duties of the Featured Extension Advisory Board. The current board is currently wrapping up their six-month tour of duty and we are now assembling a new board of talented contributors for the months January – June, 2019.

    Extension developers, designers, advocates, and fans are all invited to apply to join the board. Priority will be given to applicants who have not served on the board before, followed by those from previous boards, and finally from the outgoing board.

  • Mozilla VR Blog: How XR Environments Shape User Behavior

    In previous research, The Extended Mind has documented how a 3D space automatically signals to people the rules of behavior. One of the key findings of that research is that when there is synchrony in the design of a space, it helps communicate behavioral norms to visitors. That means that when there is complementarity among content, affordances, and avatars, it helps people learn how to act. One example would be creating a gym environment (content), with weights (affordances), but only letting avatars dress in tuxedos and evening gowns. The contraction of people’s appearances could demotivate weight-lifting (the desired behavior).

    This article shares learnings from the Hubs by Mozilla user research on how the different locations that they visited impacted participant’s behavior. Briefly, the researchers observed five pairs of participants in multiple 3D environments and watched as they navigated new ways of interacting with one another. In this particular study, participants visited a medieval fantasy world, a meeting room, an atrium, and a rooftop bunker.

  • Removing Old Versions of TLS

    In March of 2020, Firefox will disable support for TLS 1.0 and TLS 1.1.

    On the Internet, 20 years is an eternity. TLS 1.0 will be 20 years old in January 2019. In that time, TLS has protected billions – and probably trillions – of connections from eavesdropping and attack.

    In that time, we have collectively learned a lot about what it takes to design and build a security protocol.

    Though we are not aware of specific problems with TLS 1.0 that require immediate action, several aspects of the design are neither as strong or as robust as we would like given the nature of the Internet today. Most importantly, TLS 1.0 does not support modern cryptographic algorithms.

  • Wladimir Palant: So Google is now claiming: "no one (including Google) can access your data"

    A few days ago Google announced ensuring privacy for your Android data backups. The essence is that your lockscreen PIN/pattern/passcode is used to encrypt your data and nobody should be able to decrypt it without knowing that passcode. Hey, that’s including Google themselves! Sounds good? Past experience indicates that such claims should not always be taken at face value. And in fact, this story raises some red flags for me.

    The trouble is, whatever you use on your phone’s lockscreen is likely not very secure. It doesn’t have to be, because the phone will lock up after a bunch of failed attempts. So everybody goes with a passcode that is easy to type but probably not too hard to guess. Can you derive an encryption key from that passcode? Sure! Will this encryption be unbreakable? Most definitely not. With passwords being that simple, anybody getting their hands on encrypted data will be able to guess the password and decrypt the data within a very short time. That will even be the case for a well-chosen key derivation algorithm (and we don’t know yet which algorithm Google chose to use here).

  • Rabimba: Voting impartially for fun and profit a.k.a Mozilla Reps Council Voting

    I am part of a program called Mozilla Reps. Though I am involved as a volunteer contributor with Mozilla for quite some time now, I am relatively new to the Mozilla Reps program and hardly know anything about the program apart from my scope of work in it.
    Apparently, this is the Election time for voting the nominated candidates for the Council who will spearhead the program for the next session. Since I am new to the program reading about everyone's election campaign and hearing about what they will do for the program was not giving me any clear motivation to vote for anyone specific. Though this wasn't anything super important, I still thought since I have a bit of time in my hand why not do something interesting about it.

Xfce Screensaver 0.1.0 Released

Filed under
GNU
Linux
  • Xfce Screensaver 0.1.0 Released

    I am pleased to announce the release of Xfce Screensaver (xfce4-screensaver) 0.1.0! This is an early release targeted to testers and translators. Bugs and patches welcome!

  • Xfce4-Screensaver Has Its First Release - Fork Of MATE Screensaver, Forked From GNOME

    As a new alternative over XScreenSaver or using other desktop environments' screensaver functionality, xfce4-screensaver has out its first release albeit of alpha quality.

    The xfce4-screensaver project made its preliminary (v0.1.0) release today that is described of alpha quality intended for testers and translators. This new screensaver option for Xfce users is forked from the MATE Screensaver code, which in turn was forked from the GNOME Screensaver.

Chrome OS Stable Channel Gets Linux Apps

Filed under
OS
Linux
Google

After months of user testing in developer and beta channels, the Crostini project at Google finally delivered the goods, Linux apps for most users of Chromebooks in the stable channel—definitely worth the wait. While this still is aimed primarily at developers using Chromebooks, I think there's a good chance these Linux apps will be used and enjoyed by the general public using Chromebooks as well. There's still a bit of a learning curve to overcome before that possibility is realized, but if you already are a user of any Linux distro, it will feel very familiar. Here's an overview of how to install it and what to expect afterward.

After getting the update to version 69, go to Settings and scroll down a bit, and you'll see the option to turn on Linux apps. Figure 1 shows this first step. Note that this isn't available on all Chromebooks; if you're using an older one, you'll have to wait a while before this function is available. If you don't see the option to turn on Linux apps, your Chromebook currently lacks that functionality. But, if you have a Chromebook produced in the past two years, you probably will see the option.

Read more

Games Leftovers

Filed under
Gaming
  • Mounting And Optimizing A Linux Gamer Computer

    We have had a lot of news about games in the Linux world coming out in recent weeks. We already have an interesting performance for games like Grand Theft Auto V, and the trend is for the compatibility level to improve every day, with Valve's recent announcement of Proton as announced here! This even was the head behind the development of DXVK which brought a new step in the compatibility of Windows games on Linux.

  • Stranded Deep adds a new experimental couch co-op mode to survive together

    To go along with this new feature, they also added a Player Ragdoll for when you're knocked out or dead. You partner can help you up with bandages before you bleed out and bodies can be dragged as well for maximum fun. It's good to see them add more from their roadmap, with plenty more still to come before it leaves Early Access.

    They also added a Raft Passenger Seat, fixed a bunch of bugs and updated Unity to "2017.4.13f1". Also the shark music won't play until you're actually attacked so no more early warnings for you.

  • .Age (dot Age) is a turn-based village builder showing off the harsh reality of the Dark Ages

    .Age (dot Age) seems like it could be a very interesting game. A harsh turn-based village builder that will throw events at you like candy, don't be fooled by the cute and colourful style as this is a menacing game.

    Developed by CKC Games, it's due out sometime next year. When spotted on Twitter, we spoke to the developer who confirmed "I've had a linux build for years" so it's coming to Linux at release.

  • inXile confirm the Linux version of The Bard's Tale IV is being worked on

    For those waiting on the native Linux version of The Bard's Tale IV, fear not, as inXile Entertainment have confirmed they're working on it.

  • AI combat arena 'Gladiabots' has enabled Linux support on Steam

    No longer hidden behind a beta of Steam, AI combat arena Gladiabots from GFX47 is now officially supported on Steam for Linux. Do note, the game is still in Early Access.

    If you love strategy games and feel like you want a little more control over unit AI, this might be the game for you. In Gladiabots you assemble a team of robots, design their AI with a handy drag and drop interface and attempt to beat another AI in battle. There's decent tutorials, a campaign, cross-platform online play that doesn't require you to be online at the same time and it's really quite clever.

  • Dungeon crawler 'The 7th Circle' adds Linux support, looks pretty good

    For those who love their first-person dungeon crawlers, The 7th Circle actually looks pretty good and they recently added Linux support.

    It's not going to win any awards for originality here, but 68k Studios seem to have created a reasonably good retro-inspired dungeon crawler. With traditional turn-based combat, more than 60 spells to wield, a crafting and upgrades system and so on it's pretty full on features.

  • Action-RPG 'Moonlighter' has a juicy free Adventure Update, now live on Linux

    It's time to close up shop and go on another run through the dungeons as Moonlighter has a free update now out. This update originally released last week, with the Linux version only seeing the update today.

Windows 10 October 2018 Update Performance Against Ubuntu 18.10, Fedora 29

Filed under
Graphics/Benchmarks

As the latest of our benchmarks using the newly re-released Microsoft Windows 10 October 2018 Update, here are benchmarks of this latest Windows 10 build against seven different Linux distributions on the same hardware for checking out the current performance of these operating systems.

For this latest Linux OS benchmarking comparison against Windows, the following platforms were tested:

- The Windows 10 April 2018 release as the previous major milestone of Windows 10.

- The newest Windows 10 October 2018 build as the latest Windows 10 build from Microsoft.

- OpenSUSE Tumbleweed as the openSUSE rolling-release distribution that as of testing was on the Linux 4.18.12 kernel, KDE Plasma 5.14, Mesa 18.1.7, and GCC 8.2.1 atop an XFS home file-system with Btrfs root file-system (the default partitioning scheme).

Read more

Release of KDE Frameworks 5.51.0

Filed under
KDE

KDE Frameworks are 70 addon libraries to Qt which provide a wide variety of commonly needed functionality in mature, peer reviewed and well tested libraries with friendly licensing terms. For an introduction see the Frameworks 5.0 release announcement.

This release is part of a series of planned monthly releases making improvements available to developers in a quick and predictable manner.

Read more

Also: KDE Frameworks 5.51 Released

Linux 4.19-rc8

Filed under
Linux

As mentioned last week, here's a -rc8 release as it seems needed.

There were a lot of "little" pull requests this week, semi-normal for
this late in the cycle, but a lot of them were "fix up the previous fix
I just sent" which implies that people are having a few issues still.

I also know of at least one "bad" bug that finally has a proposed fix,
so that should hopefully get merged this week. And there are some
outstanding USB fixes I know of that have not yet landed in the tree (I
blame me for that...)

Anyway, the full shortlog is below, lots of tiny things all over the
tree. Please go and test and ensure that all works well for you.
Hopefully this should be the last -rc release.

Read more

Also: Linux 4.19-rc8 Released With A Lot Of "Tiny Things"

Kali Linux for Vagrant: Hands-on

Filed under
Linux

I recently saw the announcement for Kali Linux on Vagrant. I have been a huge fan of Kali Linux for a very long time, and I am interested in virtualization (and currently using VirtualBox in an educational environment), so this was a very interesting combination to me. I have now installed it on a few of my systems, and so far I am quite impressed with it.

The logical place to start is with a brief overview of Vagrant itself. What is Vagrant? According to their web page:

Vagrant is a tool for building and managing virtual machine environments in a single workflow

What Vagrant actually does is provide a way of automating the building of virtualized development environments using a variety of the most popular providers, such as VirtualBox, VMware, AWS and others. It not only handles the initial setup of the virtual machine, it can also provision the virtual machine based on your specifications, so it provides a consistent environment which can be shared and distributed to others.

Read more

today's leftovers

Filed under
Misc
  • Vulkan Cracks 2,500 Projects On GitHub

    After cracking 2,000 projects referencing Vulkan on GitHub earlier this year, this week it passed the milestone of having more than 2,500 projects.

    Granted, some of these projects referencing Vulkan are still in their primitive stages, but of the 2,500+ projects are a lot of interesting Vulkan-using projects from RenderDoc to countless game engine initiatives, various code samples, the AMDVLK driver stack, and countless innovative efforts like GLOVE for OpenGL over Vulkan to Kazan for a Rust-written CPU-based Vulkan implementation and a heck of a lot more.

  • GNOME's Geoclue 2.5 Brings Vala Support, WiFi Geolocation For City-Level Accuracy

    GNOME's Geoclue library that provides a D-Bus service for location information based on GPS receivers, 3G modems, GeoIP, or even WiFi-based geolocation has been baking a lot of changes.

  • Geoclue 2.5.0

    Here is the first release in the 2.5 series.

  •  

  • Wine-Staging 3.18 Released With Some New Patches While Other Code Got Upstreamed

    It has been a very exciting weekend for Linux gamers relying upon Wine for running Windows titles under Linux... There was the routine bi-weekly Wine 3.18 development release on Friday but yesterday brought transform feedback to Vulkan and in turn Stream Output to DXVK to fix up a number of D3D11 games. Today is now the Wine-Staging 3.18 release.

    Wine-Staging 3.18 doesn't incorporate any changes around the Vulkan code (there is a Wine patch needed by DXVK for this new functionality), but does include a lot of other stuff. Wine-Staging 3.18 implements more functions in the user32 code, including cascade windows, GetPointerType, and others. On the Direct3D front are a few additions to WineD3D, including the ability for the Direct3D 10 support to work with the legacy NVIDIA Linux driver. There is also a kernel fix for allowing Steam log-ins to work again with Wine Staging.

Fedora: A Look at Fedora Workstation 29 and NeuroFedora Update

Filed under
Red Hat
  • Fedora Workstation 29 Is Looking Up To Be Another Impressive Release, Looking Great

    In addition to Ubuntu 18.10 releasing soon, Fedora 29 is set to be release by month's end if all goes well.

    I have been running the latest Fedora 29 packages on a number of test boxes and overall it's been running great. Yes, for the past few years I've been back to running Fedora on my main production system (after a few years of a falling out but besides that being a big user going back to the Fedora Core days), but Fedora 29 in particular is feeling really quite polished and great.

  • NeuroFedora update: week 41

    In week 41, we finally announced NeuroFedora to the community on the mailing list and on the Fedora Community Blog. So, it is officially a thing!

    There is a lot of software available in NeuroFedora already. You can see the list here. If you use software that is not on our list, please suggest it to us using the suggestion form.

OSS/Microsoft Openwashing Leftovers

Filed under
OSS

Brave and Firefox Latest

Filed under
Moz/FF
Web
  • Brave Browser Team Up With Tor

     

    TOR [sic] or The Onion Router uses technology that separates your computer from the website you’re viewing by routing the network traffic through 3 seperate servers before it reaches your computer. That being said Brave Core Beta hasn’t been fully tested yet so “users should not rely on it for serious use just yet,” Brave said.

  •  

  • Your RSS is grass: Mozilla euthanizes feed reader, Atom code in Firefox browser, claims it's old and unloved

    When Firefox 64 arrives in December, support for RSS, the once celebrated content syndication scheme, and its sibling, Atom, will be missing.

    "After considering the maintenance, performance and security costs of the feed preview and subscription features in Firefox, we’ve concluded that it is no longer sustainable to keep feed support in the core of the product," said Gijs Kruitbosch, a software engineer who works on Firefox at Mozilla, in a blog post on Thursday.

    RSS – which stands for Rich Site Summary, RDF Site Summary, or Really Simple Syndication, as you see fit – is an XML-based format for publishing and subscribing to web content feeds. It dates back to 1999 and for a time was rather popular, but been disappearing from a variety of applications and services since then.

    Mozilla appears to have gotten the wrecking ball rolling in 2011 when it removed the RSS button from Firefox. The explanation then was the same as it is now: It's just not very popular.

  • Cameron Kaiser: It's baaaaa-aaack: TenFourFox Intel

    It's back! It's undead! It's ugly! It's possibly functional! It's totally unsupported! It's ... TenFourFox for Intel Macs!

    Years ago as readers of this blog will recall, Claudio Leite built TenFourFox 17.0.2 for Intel, which the update check-in server shows some determined users are still running to this day on 10.5 and even 10.4 despite various problems such as issue 209. However, he didn't have time to maintain it, and a newer version was never built, though a few people since then have made various attempts and submitted some patches.

    One of these attempts is now far enough along to the point where I'm permitted to announce its existence. Riccardo Mottola has done substantial work on getting TenFourFox to build and run again on old Intel Macs with a focus on 32-bit compatibility, and his patches have been silently lurking in the source code repository for some time. Along with Ken Cunningham's additional work, who now also has a MacPorts portfile so you can build it yourself (PowerPC support in the portfile is coming, though you can still use the official instructions, of course), enough functions in the new Intel build that it can be used for basic tasks.

Security: 'Smart' Locks, Windows in Weapons

Filed under
Security

GNOME: GTK, Librem and Fractal

Filed under
GNOME
  • A Clean GTK Theme Specially Designed for Laptop and Desktop

    The search for cool and new themes never stops. While digging through the thousands of themes in websites, search results – I found this cool and simple GTK theme – Stylish. Stylish is designed for GTK 3, GTK 2 and GNOME Shell. It comes with 6 base types of combinations with 4 color variants.

  • Linux Smartphone Librem 5 Will Ship With GNOME 3.32

    Last month, Purism announced that its Librem 5 Linux smartphone will ship in April 2019; earlier, it was scheduled to arrive in January 2019.

    It seems that the developers will now get sufficient time to ship their phone with GNOME 3.32. In a blog post, the project urged the app developers to “use libhandy 0.0.4 and up, use GTK+ 3.24.1 and up and target GNOME 3.32!”

  • Redesign of the invite dialog in Fractal (part 1)

    This month, I’ve had some time to work on the redesign of the invite dialog in Fractal. There is a dialog used for inviting users in a room you are in or inviting a user to start a direct chat with them. In this dialog, you can search for users by usernames. The result of this search is shown in a list below the search entry and you can click on the GtkListBox‘s rows to select users (in the case of direct chat invitations, the latest selected user will be the only one selected) and you can then click on the button “Invite” to send invitations to all selected users.

Syndicate content

More in Tux Machines

Android Leftovers

Browsing the web with Min, a minimalist open source web browser

Does the world need another web browser? Even though the days of having a multiplicity of browsers to choose from are long gone, there still are folks out there developing new applications that help us use the web. One of those new-fangled browsers is Min. As its name suggests (well, suggests to me, anyway), Min is a minimalist browser. That doesn't mean it's deficient in any significant way, and its open source, Apache 2.0 license piques my interest. Read more

Security: Patches, FUD and Voting Machines

  • libssh 0.8.4 and 0.7.6 security and bugfix release

    libssh versions 0.6 and above have an authentication bypass vulnerability in the server code. By presenting the server an SSH2_MSG_USERAUTH_SUCCESS message in place of the SSH2_MSG_USERAUTH_REQUEST message which the server would expect to initiate authentication, the attacker could successfully authentciate without any credentials.

  • A Cybersecurity Weak Link: Linux and IoT [Ed: Blaming "Linux" for companies that put default passwords on all their products? Windows has back doors.]
  • Undetectably bypass voting machines' anti-tamper mechanism with a bit of a soda-can

    But University of Michigan grad student Matt Bernhard has demonstrated that he can bypass the tamper-evident seals in seconds, using a shim made from a slice of a soda can. The bypass is undetectable and doesn't damage the seal, which can be resecured after an attacker gains access to the system.

  • Security Seals Used to Protect Voting Machines Can Be Easily Opened With Shim Crafted from a Soda Can

    Bernhard, who is an expert witness for election integrity activists in a lawsuit filed in Georgia to force officials to get rid of paperless voting machines used in that state, said the issue of security ties and seals came up in the lawsuit earlier this year when Fulton County Elections Director Richard Barron told the court that his Georgia county relies on tamper-evident metal and plastic ties to seal voting machines and prevent anyone with physical access to the machines from subverting them while they sit in polling places days before an election.

    [...]

    He noted that defeating ties and seals in non-tamper-evident ways isn’t the only method to wreak havoc on an election in Michigan. The state has a unique law that prohibits ballots from being used in a recount if the number of voters doesn't match the number of ballots cast at a precinct or if the seal on a ballot box is broken or has a different serial number than what it should have. Someone who wanted to wreak havoc on an election or alter an election outcome in Michigan could purposely tamper with ballot box seals in a way that is evident or simply replace them with a seal bearing a different serial number in order to get ballots excluded from a recount. The law came into sharp relief after the 2016 presidential election when Green Party candidate Jill Stein sought to get a statewide recount in Michigan and two other critical swing states and found that some precincts in Wayne County couldn't be recounted because the number of voters who signed the poll books—which get certified with a seal signed by officials—didn't match the number of ballots scanned on the voting machines.

OSS: Hedera Hashgraph, Service Providers, and Renaming the Bro Project

  • Hedera Hashgraph Distributed Ledger Technology Shares New Open-Source SDK [Ed: Hedera needs to delete GitHub, however, as the new head of GitHub killed Java projects like Hedera's]
    Hedera Hashgraph, one of the DApp facilitators within the blockchain industry recently announced that it has released its Software Development Kit (SDK) in Java.
  • Service Providers Should Adapt to Open Source World
    Finding differing opinions on open source with the telecom industry isn't hard to do, especially where orchestration is concerned. That's why a panel discussion on open source and MANO at the Light Reading NFV-Carrier SDN event in Denver seemed an odd place to find such outspoken agreement on that topic, but there it was. Four smart guys, none shy with their opinions, all seemed to agree on key points around open source, the need for standards, the role of vendors and the lack of internal software skills. But they also agreed that telecom service providers are struggling a bit to understand how to proceed in an open source world and still need some fundamental internal changes.
  • Renaming the Bro Project
    More than 20 years ago I chose the name "Bro" as "an Orwellian reminder that monitoring comes hand in hand with the potential for privacy violations", as the original Bro paper put it. Today that warning is needed more than ever ... but it's clear that now the name "Bro" is alas much more of a distraction than a reminder. On the Leadership Team of the Bro Project, we heard clear concerns from the Bro community that the name "Bro" has taken on strongly negative connotations, such as "Bro culture". These send a sharp, anti-inclusive - and wholly unintended and undesirable - message to those who might use Bro. The problems were significant enough that during BroCon community sessions, several people have mentioned substantial difficulties in getting their upper management to even consider using open-source software with such a seemingly ill-chosen, off-putting name.