Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Tuesday, 25 Apr 17 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Typesort icon Title Author Replies Last Post
linpc srlinuxx 03/09/2008 - 11:57am
ondiskgoblinx srlinuxx 04/09/2007 - 9:36pm
linuxextremedesktop srlinuxx 20/08/2007 - 2:13am
ondisk-mint srlinuxx 11/08/2007 - 3:58pm
adadheader srlinuxx 27/04/2007 - 1:18am
pclos srlinuxx 27/04/2007 - 4:39am
adadcontent srlinuxx 29/04/2007 - 8:54pm
salesad srlinuxx 01/05/2007 - 5:38pm
easyS srlinuxx 03/05/2007 - 7:03pm
ondisk-pclos-header srlinuxx 24/05/2007 - 3:25pm

KDE and GNOME

Filed under
KDE
GNOME

Debian Family

Filed under
Debian
  • Devuan GNU/Linux 1.0.0 "Jessie" Just Around the Corner, Release Candidate Out

    It's been five almost five months since the developers behind the Debian-based Devuan GNU/Linux operating system launched the second Beta version towards the first stable release of the OS, and they now announced the Release Candidate.

    The Devuan project continues its vision of providing a libre Debian fork without using the systemd init system, and the Release Candidate (RC) version brings the GNU/Linux distribution closer to a final release. The interesting fact is that this RC appears to be stable enough to be used for production work.

  • Budgie 10.3 Released, Here’s How to Install it on Ubuntu

    A new version of the Budgie desktop is available to install on Ubuntu. Budgie 10.3 adds a new Alt+Tab switcher, and brings a stack of bug fixes to the table.

  • Ubuntu 17.10 Codename Released "Artful Aardvark"
  • openHAB

    Partners Canonical, openHAB Foundation and Azul Systems have collaborated hard to drive development of the new openHAB 2.0 smart-home platform as a snap package. An alternative to Apple Homekit and Samsung SmartThings, openHAB from openHAB Foundation is completely free and open source, and acts as a control hub for home IoT setups.

Development News

Filed under
Development

Security Leftovers

Filed under
Security
  • More Windows PCs infected with NSA backdoor DoublePulsar [Ed: Look what Microsoft's back doors for the NSA are causing this month; recall Snowden's leaks about it.]

    Although the exact number varies among security researchers, the DoublePulsar infection rate is climbing

  • NSA-linked hacking tools released by Shadow Brokers have compromised almost 200,000 Windows PCs
  • 'Beautiful' NSA hacking tool DoublePulsar infects almost 200,000 Windows PCs

    Tools supposedly developed by the US National Security Agency (NSA) leaked early this month by the Shadow Brokers hacking group are being used in attacks on Windows PCs.

    The tools, released to the open-source developer website Github, have been gratefully scooped up by malware writers of varying levels of competency and pimped via phishing emails across the internet.

    And researchers at Swiss security company Binary Edge claim to have found 183,107 compromised PCs connected to the internet after conducting a scan for the DoublePulsar malware. Conducted every day over the past four days, the number of infected PCs has increased dramatically with each scan, according to Binary Edge.

  • Three months on, no Linksys router patches for remote holes

    More than three months after being informed about remotely exploitable vulnerabilities in 25 router models, Linksys is yet to issue patches to remedy them.

  • [Older] Tracing Spam: Diet Pills from Beltway Bandits

    Here’s the simple story of how a recent spam email advertising celebrity “diet pills” was traced back to a Washington, D.C.-area defense contractor that builds tactical communications systems for the U.S. military and intelligence communities.

  • Top-ranked programming Web tutorials introduce vulnerabilities into software

    “[Our findings] suggest that there is a pressing need for code audit of widely consumed tutorials, perhaps with as much rigor as for production code,” they pointed out.

  • [Old] PHP: a fractal of bad design

    PHP is an embarrassment, a blight upon my craft. It’s so broken, but so lauded by every empowered amateur who’s yet to learn anything else, as to be maddening. It has paltry few redeeming qualities and I would prefer to forget it exists at all.

  • The Cloud Foundry Approach to Container Storage and Security

    Recently, The New Stack published an article titled “Containers and Storage: Why We Aren’t There Yet” covering a talk from IBM’s James Bottomley at the Linux Foundation’s Vault conference in March. Both the talk and article focused on one of the central problems we’ve been working to address in the Cloud Foundry Foundation’s Diego Persistence project team, so we thought it would be a good idea to highlight the features we’ve added to mitigate it. Cloud Foundry does significantly better than what the article suggests is the current state of the art on the container security front, so we’ll cover that here as well.

Leftovers: Gaming

Filed under
Gaming

An Aerospace Coder Drags a Stodgy Industry Toward Open Source

Filed under
OSS

More than a decade ago, software engineer Ryan Melton spent his evenings, after workdays at Ball Aerospace, trying to learn to use a 3-D modeling program. After a few weeks, for all his effort, he could make … rectangles that moved. Still, it was a good start. Melton showed his spinning digital shapes to Ball, a company that makes spacecraft and spacecraft parts, and got the go-ahead he’d been looking for: He could try to use the software to model a gimbal—the piece on a satellite that lets the satellite point.

Melton wanted to build the program to save himself time, learn something new. “It was something I needed for me,” he says. But his work morphed into a software project called Cosmos—a “command and control” system that sends instructions to satellites and displays data from their parts and pieces. Ball used it for some 50 flight projects and on-the-ground test systems. And in 2014, Melton decided Cosmos should share its light with the world. Today, it’s been used with everything from college projects to the planet-seeking Kepler telescope.

Read more

Laptop Power, Boot Times With Ubuntu 17.04

Filed under
Ubuntu

I haven't posted any mobile/laptop Linux benchmarks recently since my newest laptop at the moment is still based on Broadwell with having no Kabylake laptop at the moment. But for those curious about any power/boot changes for mature Intel Broadwell hardware on Linux, hopefully you find these numbers today interesting.

Read more

Open-source EdgeX Foundry seeks to standardize Internet of Things

Filed under
OSS

Security is the Internet of Things' (IoT) Achilles heel. One reason that's so is there is a lack of common IoT development standards. The Linux Foundation, along with 50 companies, is addressing this by building a common open-framework for IoT edge computing and an ecosystem of interoperable components under a new open-source consortium: The EdgeX Foundry.

Read more

Samsung’s Tizen-based Breeze-Free Air Conditioners are just the thing for summer

Filed under
Linux

Samsung has got many products that are powered by the Linux based Tizen Operating System, with a particularly strong focus on the Smart Home and wearable tech. Their breeze-free air conditioners are popular, especially with summer fast approaching, and consists of the wall-hanging breeze-free air conditioners and also the stand-type breeze conditioners that joined the range last year.

Read more

Red Hat Rolls Out Version 4.1 of KVM Platform

Filed under
Red Hat

Red Hat has just launched Red Hat Virtualization 4.1. The company says that this product is "the latest release of the company's Kernel-based Virtual Machine (KVM)-powered enterprise virtualization platform." The goal, the company says is to provide "an open source infrastructure and centralized management solution for virtualized servers and workstations." Red Hat describes some of the platform's upgrades:

Read more

GNOME To Do 3.24 release, and it’s shining

Filed under
GNOME

GNOME To Do is a personal task manager for GNOME. It uses GNOME technologies and integrates very well with the desktop. And now, it’s finally being released!

The 3.24 version comes with a few nice features and, most importantly, whole load of bugfixes. Let’s get started!

Read more

TrueOS STABLE Update: 4/24/17

Filed under
OS
BSD

After testing the UNSTABLE push over the weekend, the devs are happy to release a new STABLE update and installation files today! This update consists of two parts: installer changes for those who install TrueOS fresh, and general updates for systems with TrueOS already installed.

Read more

Also:
TrueOS 20170424 Stable Update

How to track and secure open source in your enterprise

Filed under
OSS

Recently, SAS issued a rather plaintive call for enterprises to limit the number of open source projects they use to a somewhat arbitrary percentage. That seems a rather obvious attempt to protest the rise of the open source R programming language for data science and analysis in a market where SAS has been dominant. But there is a good point hidden in the bluster: Using open source responsibly means knowing what you’re using so you can track and maintain it.

Read more

How I became a webcomic artist in less than a month with open source tools

Filed under
OSS

If you are reading this, you probably care about, or are at least mildly interested in, open source. Like you, I care about and am interested in open source. Perhaps unlike you, I am also a webcomic artist. You can find my work at Herpaderp.party.

Read more

Linux 3.18.50

Filed under
Linux

I'm announcing the release of the 3.18.50 kernel.

All users of the 3.18 kernel series must upgrade.

The updated 3.18.y git tree can be found at:
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-3.18.y
and can be browsed at the normal kernel.org git web browser:
http://git.kernel.org/?p=linux/kernel/git/stable/linux-st...

Read more

openSUSE Leap's backward version jump

Filed under
SUSE

Hi all,

On behalf of the openSUSE Board and Leap Release Management I am
pleased to announce the next version of openSUSE Leap after 42.3 will
be:

openSUSE Leap 15

As with Leap 42.x, minor releases are expected annually for at least 3
years, so you can expect a Leap 15.1 to follow, then 15.2 and onwards.

Obviously this is quite a dramatic change from the current version
number of 42.x, so I will explain what justifies this change in some
detail below.

Read more

Switch to open source model turns costs into R&D

Filed under
OSS

Public administrations that switch to an open source software model and contracting for services, also transform the costs previously spent on acquisition and maintenance into budget for research, development and innovation, says Álvaro Anguix, general manager of the gvSIG association.

Read more

German states adopt open source-based security checks system

Filed under
OSS

The German federal state of Thuringia will join North RhineWestphalia, Baden-Württemberg, Hamburg and Hesse and start using OSiP, a system for performing security checks for staff access to sensitive areas. The system, built on open source components, is set to become the default security system for all 16 federal states.

Read more

Syndicate content

More in Tux Machines

Security Leftovers

  • Security updates for Monday
  • Recursive DNS Server Fingerprint Problem

    Our goal is to identify hijacked resolvers by analyzing their fingerprints, in order to increase safety of Internet users. To do that, we utilize data collected via RIPE Atlas (atlas.ripe.net).

  • Online developer tutorials are spreading XSS and SQL injection flaws

    The researchers, from across three universities in Germany and Trend Micro, checked the PHP code bases of more than 64,000 projects on Github and uncovered more than 100 vulnerabilities that they believe might have been introduced as a result of developers picking up the code that they used from online tutorials.

  • BrickerBot, the permanent denial-of-service botnet, is back with a vengeance

    BrickerBot, the botnet that permanently incapacitates poorly secured Internet of Things devices before they can be conscripted into Internet-crippling denial-of-service armies, is back with a new squadron of foot soldiers armed with a meaner arsenal of weapons.

  • Reproducible Builds: week 104 in Stretch cycle
  • Webroot antivirus goes bananas, starts trashing Windows system files
    Webroot's security tools went berserk today, mislabeling key Microsoft Windows system files as malicious and temporarily removing them – knackering PCs in the process. Not only were people's individual copies of the antivirus suite going haywire, but also business editions and installations run by managed service providers (MSPs), meaning companies and organizations relying on the software were hit by the cockup. Between 1200 and 1500 MST (1800 and 2100 UTC) today, Webroot's gear labeled Windows operating system data as W32.Trojan.Gen – generic-Trojan-infected files, in other words – and moved them into quarantine, rendering affected computers unstable. Files digitally signed by Microsoft were whisked away – but, luckily, not all of them, leaving enough of the OS behind to reboot and restore the quarantined resources.
  • How The Update Framework Improves Security of Software Updates
    Updating software is one of the most important ways to keep users and organizations secure. But how can software be updated securely? That's the challenge that The Update Framework (TUF) aims to solve. Justin Cappos, assistant professor at New York University, detailed how TUF works and what's coming to further improve the secure updating approach in a session at last week's DockerCon 17 conference in Austin, Texas. Simply using HTTPS and Transport Layer Security (TLS) to secure a download isn't enough as there have been many publicly reported instances of software repositories that have been tampered with, Cappos said.
  • Security Updates for Ubuntu Phone to End in June
    Security updates for Ubuntu phone and tablet will end this June, Canonical has confirmed. Current OTA updates are currently limited to critical fixes and security updates — a decision we were first to tell you back in January. But after June 2017 Canonical “will no longer deliver any further updates”.
  • Canonical to stop supporting Ubuntu Phone in June
    Canonical had already announced development of its Ubuntu Phone software was ending. Now we know when the final nail goes in the coffin: June.
  • Malware Hunts And Kills Poorly Secured Internet Of Things Devices Before They Can Be Integrated Into Botnets
    Researchers say they've discovered a new wave of malware with one purpose: to disable poorly secured routers and internet of things devices before they can be compromised and integrated into botnets. We've often noted how internet-of-broken-things devices ("smart" doorbells, fridges, video cameras, etc.) have such flimsy security that they're often hacked and integrated into botnets in just a matter of seconds after being connected to the internet. These devices are then quickly integrated into botnets that have been responsible for some of the worst DDoS attacks we've ever seen (including last October's attack on DYN).

GNOME/GTK News

  • The Way GNOME Handles Wallpapers Really Annoys Me
    I love GNOME Shell — and no, not just because I’ve little choice now that is Ubuntu’s default desktop! But the more I use GNOME the more I learn that the desktop environment, like every other, has its own share of quirks, bugs and inconsistencies. Like the following appreciably niche niggle in the the way GNOME handles desktop wallpapers.
  • Drag-and-drop in lists
    I’ve recently had an occasion to implement reordering of a GtkListBox via drag-and-drop (DND). It was not that complicated. Since I haven’t seen drag-and-drop used much with list boxes, here is a quick summary of what is needed to get the basics working.

Containers News

  • How Kubernetes is making contributing easy
    As the program manager of the Kubernetes community at Google, Sarah Novotny has years of experience in open source communities including MySQL and NGINX. Sarah sat down with me at CloudNativeCon in Berlin at the end of March to discuss both the Kubernetes community and open source communities more broadly. Among the topics we covered in the podcast were the challenges inherent in shifting from a company-led project to a community-led one, principles that can lead to more successful communities, and how to structure decision-making.
  • How Microsoft helped Docker with LinuxKit and Moby Project [Ed: Microsoft 'helped'... embrace, extend, coerce; haven't Docker employees learned from history?]
    Today, supporting Linux is as critical to Microsoft as it is to Red Hat and SUSE.
  • How to make branding decisions in an open community
    On April 18, Docker founder Solomon Hykes made a big announcement via a pull request in the main Docker repo: "Docker is transitioning all of its open source collaborations to the Moby project going forward." The docker/docker repo now redirects to moby/moby, and Solomon's pull request updates the README and logo for the project to match. Reaction from the Docker community has been overwhelmingly negative. As of this writing, the Moby pull request has garnered 7 upvotes and 110 downvotes on GitHub. The Docker community is understandably frustrated by this opaque announcement of a fait accompli, an important decision that a hidden inner circle made behind closed doors. It's a textbook case of "Why wasn't I consulted?"

Ubuntu 17.04: Unity's swan song?

For the most part, not much has changed on Ubuntu's Desktop edition in the past year. Unity 7 has more or less remained the same while work was progressing on the next version of the desktop, Unity 8. However, now that both desktops are being retired in favour of the GNOME desktop, running Ubuntu 17.04 feels a bit strange. This week I was running software that has probably reached the end of its life and this version of Ubuntu will only be supported for nine months. I could probably get the same desktop experience and most of the same hardware support running Ubuntu 16.04 and get security updates through to 2021 in the bargain. In short, I don't think Ubuntu 17.04 offers users anything significant over last year's 16.04 LTS release and it will be retired sooner. That being said, I could not help but be a little wistful about using Unity 7 again. Even though it has been about a year since I last used Unity, I quickly fell back into the routine and I was once more reminded how pleasant it can be to use Unity. The desktop is geared almost perfectly to my workflow and the controls are set up in a way that reduces my mouse usage to almost nothing. I find Unity a very comfortable desktop to use, especially when application menus have been moved from the top panel to inside their own windows. While there are some projects trying to carry on development of Unity, this release of Ubuntu feels like Unity's swan song and I have greatly enjoyed using the desktop this week. While there is not much new in Ubuntu 17.04, the release is pretty solid. Apart from the confusion that may arise from having three different package managers, I found Ubuntu to be capable, fairly newcomer friendly and stable. Everything worked well for me, at least on physical hardware. Unity is a bit slow to use in a virtual machine, but the distribution worked smoothly on my desktop computer. Read more