Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Friday, 25 May 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Debian and Derivatives Roy Schestowitz 24/05/2018 - 1:42pm
Story Openwashing and 'Open' Beer Roy Schestowitz 24/05/2018 - 1:39pm
Story Back End: Cask, Kubernetes, OpenStack Roy Schestowitz 24/05/2018 - 12:40pm
Story Linux Foundation: New Members, Certifications and Microsoft Entryism Roy Schestowitz 24/05/2018 - 12:39pm
Story ETSI/GNU/Linux-based MANO Roy Schestowitz 24/05/2018 - 12:37pm
Story today's howtos part 2 Roy Schestowitz 24/05/2018 - 12:28pm
Story Programming: GitLab, Security, Power and Jakarta EE Roy Schestowitz 24/05/2018 - 12:27pm
Story Finally: Historic Eudora email code goes open source Roy Schestowitz 1 24/05/2018 - 12:09pm
Story GDPR and Mozilla, Rust, Firefox Roy Schestowitz 24/05/2018 - 11:57am
Story TrueOS: A Simple BSD Distribution for the Desktop Users Roy Schestowitz 24/05/2018 - 11:55am

Security: Updates, Kernel Mitigation (CPU Flaws) and FBI

Filed under
Security
  • Security updates for Wednesday
  • ARM64 Mitigation Posted For Spectre 4 / SSBD

    Following the Intel/AMD Spectre Variant 4 mitigation landing yesterday with "Speculative Store Bypass Disable" (SSBD) and then the POWER CPU mitigation landing today, ARM developers have posted their set of patches for 64-bit ARM CPUs to mitigate against this latest Spectre vulnerability around speculative execution.

  • Linux 4.9, 4.14, 4.16 Point Releases Bring SSBD For Spectre V4

    Greg Kroah-Hartman has today released the Linux 4.9.102, 4.14.43, and 4.16.11 kernels. Most notable about these stable release updates is Spectre Variant Four mitigation.

    Today's 4.9/4.14/4.16 point releases carry the Intel/AMD mitigation for Spectre V4 albeit the Intel support is dependent upon to-be-released microcode updates and is vulnerable by default while for AMD processors there is SSB disabled via prctl and seccomp.

  • An Initial Look At Spectre V4 "Speculative Store Bypass" With AMD On Linux

    Yesterday the latest Spectre vulnerability was disclosed as Spectre Variant 4 also known as "Speculative Store Bypass" as well as the less talked about Spectre Variant 3A "Rogue System Register Read". Here are my initial tests of a patched Linux kernel on AMD hardware for Spectre V4.

    Landing yesterday into Linux 4.17 Git was Speculative Store Bypass Disable (SSBD) as the Linux-based mitigation on Intel/AMD x86 CPUs. Since then has also been the POWER CPU SSBD implementation and pending patches for ARM64 CPUs.

  • Exclusive: FBI Seizes Control of Russian Botnet

    FBI agents armed with a court order have seized control of a key server in the Kremlin’s global botnet of 500,000 hacked routers, The Daily Beast has learned. The move positions the bureau to build a comprehensive list of victims of the attack, and short-circuits Moscow’s ability to reinfect its targets.

    The FBI counter-operation goes after “VPN Filter,” a piece of sophisticated malware linked to the same Russian hacking group, known as Fancy Bear, that breached the Democratic National Committee and the Hillary Clinton campaign during the 2016 election. On Wednesday security researchers at Cisco and Symantec separately provided new details on the malware, which has turned up in 54 countries including the United States.

Containers & Events

Filed under
Server
  • Video: Containers Should Contain... Right?

    Here's a presentation video from the very recent OpenStack Summit Vancouver 2018. The topic repeats what Dan Walsh was saying a couple of years ago. Again, this is talking about application containers using traditional kernel features like namespaces and cgroups... because as we all know, in the Linux kernel, containers are NOT a REAL thing.

    Just to be clear, OpenVZ... which is a mature out-of-tree patch for system containers that has been around and maintained for well over 13 years... does contain... but the hype is all around application containers like Docker and its work-alikes.

  • Updates in container isolation

    At KubeCon + CloudNativeCon Europe 2018, several talks explored the topic of container isolation and security. The last year saw the release of Kata Containers which, combined with the CRI-O project, provided strong isolation guarantees for containers using a hypervisor. During the conference, Google released its own hypervisor called gVisor, adding yet another possible solution for this problem. Those new developments prompted the community to work on integrating the concept of "secure containers" (or "sandboxed containers") deeper into Kubernetes. This work is now coming to fruition; it prompts us to look again at how Kubernetes tries to keep the bad guys from wreaking havoc once they break into a container.

  • Autoscaling for Kubernetes workloads

    Technologies like containers, clusters, and Kubernetes offer the prospect of rapidly scaling the available computing resources to match variable demands placed on the system. Actually implementing that scaling can be a challenge, though. During KubeCon + CloudNativeCon Europe 2018, Frederic Branczyk from CoreOS (now part of Red Hat) held a packed session to introduce a standard and officially recommended way to scale workloads automatically in Kubernetes clusters.

    Kubernetes has had an autoscaler since the early days, but only recently did the community implement a more flexible and extensible mechanism to make decisions on when to add more resources to fulfill workload requirements. The new API integrates not only the Prometheus project, which is popular in Kubernetes deployments, but also any arbitrary monitoring system that implements the standardized APIs.

  • An introduction to MQTT

    A few years ago, I was asked to put temperature monitoring in a customer's server room and to integrate it with their existing monitoring and notification software. We ended up buying a rack-mountable temperature monitor, for nearly £200, that ran its own web server for propagating temperature data. Although the device ostensibly published data in XML, that turned out to be so painful to parse that we ended up screen-scraping the human-readable web pages to get the data. Temperature sensors are fairly cheap, but by the time you've wrapped them in a case with a power supply, an Ethernet port, a web server, enough of an OS to drive the above, and volatile and non-volatile storage for the same, they get expensive. I was sure that somewhere there must be physically-lightweight sensors with simple power, simple networking, and a lightweight protocol that allowed them to squirt their data down the network with a minimum of overhead. So my interest was piqued when Jan-Piet Mens spoke at FLOSS UK's Spring Conference on "Small Things for Monitoring". Once he started passing working demonstration systems around the room without interrupting the demonstration, it was clear that this was what I'd been looking for.

Ubuntu: Ubuntu Unleashed, Technical Board, 'Edge', Xubuntu and More

Filed under
Ubuntu
  • Ubuntu Unleashed 2019 and other books presale discount
  • Call for nominations for the Technical Board

    The current 2-year term of the Technical Board is over, and it’s time for electing a new one. For the next two weeks (until 6 June 2018) we are collecting nominations, then our SABDFL will shortlist the candidates and confirm their candidacy with them, and finally the shortlist will be put to a vote by ~ubuntu-dev.

    Anyone from the Ubuntu community can nominate someone.

  • Decreasing the complexity of IoT adoption with Edge as a Service model

    Last week, much of the IoT industry descended on Santa Clara, California, for the annual IoT World trade show. One of the exhibitors present were Rigado who Canonical partnered with earlier this year to deploy Ubuntu Core on their IoT gateways primarily targeted at commercial applications such as smart lighting and asset tracking. Rigado used IoT World as an opportunity to discuss the launch of Cascade, their new ‘Edge as a Service’ proposition, for commercial IoT.

    Cascade, which is offered as a simple monthly subscription, enables companies to focus on their business and what generates revenue rather than expending effort and resource dedicated to managing the infrastructure behind it. With many organisations looking at ways they can benefit from adopting IoT while removing perceived barriers, Cascade offers a low-risk, low-cost entry which in turn enables project teams to benefit from reduced development, support and no upfront hardware costs. The end result is a quicker path to IoT deployment and resulting ROI.

  • Xubuntu: New Wiki pages for Testers

    During the last few weeks of the 18.04 (Bionic Beaver) cycle, we had 2 people drop by in our development channel trying to respond to the call for testers from the Development and QA Teams.

    It quickly became apparent to me that I was having to repeat myself in order to make it “basic” enough for someone who had never tested for us, to understand what I was trying to put across.

    After pointing to the various resources we have, and other flavours use – it transpired that they both would have preferred something a bit easier to start with.

    So I asked them to write it for us all.

  • How to install Ubuntu Server 18.04
  • How To Install Firefox Beta in Ubuntu & Linux Mint

Kernel Coverage at LWN

Filed under
Linux
  • XFS online filesystem scrubbing and repair

    In a filesystem track session at the 2018 Linux Storage, Filesystem, and Memory-Management Summit (LSFMM), Darrick Wong talked about the online scrubbing and repair features he has been working on. His target has mostly been XFS, but he has concurrently been working on scrubbing for ext4. Part of what he wanted to discuss was the possibility of standardizing some of these interfaces across different filesystem types.

    Filesystem scrubbing is typically an ongoing activity to try to find corrupted data by periodically reading the data on the disk. Online repair attempts to fix the problems found by using redundant information (or metadata that can be calculated from other information) stored elsewhere in the filesystem. As described in Wong's patch series, both scrubbing and repair are largely concerned with filesystem metadata, though scrubbing data extents (and repairing them if possible) is also supported. Wong said that XFS now has online scrubbing support, but does not quite have the online repair piece yet.

  • Supporting multi-actuator drives

    In a combined filesystem and storage session at the 2018 Linux Storage, Filesystem, and Memory-Management Summit (LSFMM), Tim Walker asked for help in designing the interface to some new storage hardware. He wanted some feedback on how a multi-actuator drive should present itself to the system. These drives have two (or, eventually, more) sets of read/write heads and other hardware that can all operate in parallel.

    He noted that his employer, Seagate, had invested in a few different technologies, including host-aware shingled magnetic recording (SMR) devices, that did not pan out. Instead of repeating those missteps, Seagate wants to get early feedback before the interfaces are set in stone. He was not necessarily looking for immediate feedback in the session (though he got plenty), but wanted to introduce the topic before discussing it on the mailing lists. Basically, Seagate would like to ensure that what it does with these devices works well for its customers, who mostly use Linux.

  • Using user-space tracepoints with BPF

    Much has been written on LWN about dynamically instrumenting kernel code. These features are also available to user-space code with a special kind of probe known as a User Statically-Defined Tracing (USDT) probe. These probes provide a low-overhead way of instrumenting user-space code and provide a convenient way to debug applications running in production. In this final article of the BPF and BCC series we'll look at where USDT probes come from and how you can use them to understand the behavior of your own applications.

    The origins of USDT probes can be found in Sun's DTrace utility. While DTrace can't claim to have invented static tracepoints (various implementations are described in the "related work" section of the original DTrace paper), it certainly made them much more popular. With the emergence of DTrace, many applications began adding USDT probes to important functions to aid with tracing and diagnosing run-time behavior. Given that, it's perhaps not surprising that these probes are usually enabled (as part of configuring the build) with the --enable-dtrace switch.

Wine: VKD3D and DXVK

Filed under
Graphics/Benchmarks
Software
  • Wine's VKD3D 1.0 Released For Running Direct3D 12 Over Vulkan

    The Wine project has announced the release of VKD3D 1.0, the first official release of this Direct3D 12 over Vulkan layer primarily developed at CodeWeavers. VKD3D is the approach Wine is pursuing for getting Direct3D 12 games from Windows working on Wine under Linux or also under macOS when paired with MoltenVK.

    For the VKD3D 1.0 release there are D3D12 demos now working but features are known to be missing and bugs are expected. Geometry and tessellation shaders are among the big ticket items still left to be implemented in future releases.

  • DXVK 0.52 Brings More improvements For Direct3D 11 Over Vulkan

    While VKD3D 1.0 is out today for Direct3D 12 mapped over Vulkan, the DXVK project for running Direct3D 11 over Vulkan is also out with a new release today.

    Most prominent to the new DXVK 0.52 release is initial support for DXGI 1.2, the updated Microsoft DirectX Graphics Infrastructure that brings various updates for drivers. The initial DXGI 1.2 support in the process fixes at least Bioshock 2 Remastered as well as Frostpunk.

  • Vkd3d 1.0 Released

    This is the first release of vkd3d. A lot of Direct3D 12 features are still missing and bugs are expected. The current version was tested mainly with demo applications. A number of features that are being worked on have been deferred to the next development cycle. This includes in particular geometry and tessellation shaders support, various shader translation improvements, as well as various improvements for core Direct3D 12 methods.

  • vkd3d for Direct3D 12 to Vulkan in Wine has released the first stable version

    Today, the Wine developers officially announced that vkd3d for translating Direct3D 12 to Vulkan in Wine has reached 1.0.

Python Language Summit: Coverage by LWN

Filed under
Development
  • The 2018 Python Language Summit

    Over the past three years, LWN and its readers have gotten a yearly treat in the form of coverage of the Python Language Summit; this year is no exception. The summit is a yearly gathering of around 40 or 50 developers from CPython, other Python implementations, and related projects. It is held on the first day of PyCon, which is two days before the main PyCon talk tracks begin. This year, the summit was held on May 9 in Cleveland, Ohio.

  • A Gilectomy update

    In a rather short session at the 2018 Python Language Summit, Larry Hastings updated attendees on the status of his Gilectomy project. The aim of that effort is to remove the global interpreter lock (GIL) from CPython. Since his status report at last year's summit, little has happened, which is part of why the session was so short. He hasn't given up on the overall idea, but it needs a new approach.

    Gilectomy has been "untouched for a year", Hastings said. He worked on it at the PyCon sprints after last year's summit, but got tired of it at that point. He is "out of bullets" at least with that approach. With his complicated buffered-reference-count approach he was able to get his "gilectomized" interpreter to reach performance parity with CPython—except that his interpreter was running on around seven cores to keep up with CPython on one.

  • Modifying the Python object model

    At the 2018 Python Language Summit, Carl Shapiro described some of the experiments that he and others at Instagram did to look at ways to improve the performance of the CPython interpreter. The talk was somewhat academic in tone and built on what has been learned in other dynamic languages over the years. By modifying the Python object model fairly substantially, they were able to roughly double the performance of the "classic" Richards benchmark.

    Shapiro said that Instagram is a big user of Python and has been looking for ways to improve the performance of the CPython interpreter for its workloads. So the company started looking at the representation of data in the interpreter to see if there were gains to be made there. It wanted to stick with CPython in order to preserve the existing API, ecosystem, and developer experience

  • Subinterpreter support for Python

    Eric Snow kicked off the 2018 edition of the Python Language Summit with a look at getting a better story for multicore Python by way of subinterpreters. Back in 2015, we looked at his efforts at that point; things have been progressing since. There is more to do, of course, so he is hoping to attract more developers to work on the project.

    Snow has been a core developer since 2012 and has "seen some interesting stuff" over that time. He has been working on the subinterpreters scheme for four years or so.

Learn basic SED commands with these examples

Filed under
Linux

Learn to use one of the most powerful commands of the Unix toolbox: sed, the stream editor with practical examples of SED commands.
Read more

Best Websites For Programmers

Filed under
Reviews

As a programmer, you will often find yourself as a permanent visitor of some websites. These can be tutorial, reference or forums websites. So here in this article let us have a look at the best websites for programmers.

Read<br />
more

How To Install Kali Linux In Android Phone

Filed under
Linux

Thanks to the Linux deployment team now the great wall separating android users from kali has weakened and fallen. It has been a long journey integrating Linux system on advanced RISC machine devices. It started with Ubuntu and now we have a Kali version that can run on your android device. Isn't that great? Great indeed.

Read<br />
more

Zuul: Proven open-source continuous integration/continuous delivery

Filed under
OSS

If you think Zuul is the Gatekeeper, demigod, and minion of the ancient Hittite god Gozer, then you're a Ghostbusters fan, too. But, if you're interested in continuous integration/continuous delivery (CI/CD) and not "human sacrifice, dogs, and cats living together... mass hysteria," then you want Zuul, OpenStack's open-source CI/CD platform.

Zuul originally was developed for OpenStack CI testing. For years, OpenStack, the Infrastructure-as-a-Service (IaaS) cloud, got all the attention. Over time, people began to realize that as impressive as OpenStack was, the CI system behind it, which enabled contributors and users across many different organizations to work and develop quickly together across multiple projects, was impressive in its own right.

Read more

Smallest RK3399 hacker board yet ships at $129 with 4GB DDR4

Filed under
Android
Ubuntu

FriendlyElec has launched a 100 x 64mm, $129 “NanoPC-T4” SBC that runs Android or Linux on a Rockchip RK3399 with 4G DDR4, native GbE, WiFi-ac, DP, HDMI 2.0, 0 to 80℃ support, and M.2 and 40-pin expansion.

FriendlyElec has released its most powerful and priciest hacker board to date, which it promotes as being the smallest RK3399-based SBC on the market. The 100 x 64mm NanoPC-T4 opens with a $129 discount price with the default 4GB DDR4 and 16GB eMMC. Although that will likely rise in the coming months, it’s still priced in the middle range of open spec RK3399 SBCs.

Read more

today's leftovers

Filed under
Misc
  • How to dual-boot Linux and Windows

    Even though Linux is a great operating system with widespread hardware and software support, the reality is that sometimes you have to use Windows, perhaps due to key apps that won't run under Linux. Thankfully, dual-booting Windows and Linux is very straightforward—and I'll show you how to set it up, with Windows 10 and Ubuntu 18.04, in this article.

    Before you get started, make sure you've backed up your computer. Although the dual-boot setup process is not very involved, accidents can still happen. So take the time to back up your important files in case chaos theory comes into play. In addition to backing up your files, consider taking an image backup of the disk as well, though that's not required and can be a more advanced process.

  • Weather Forecasting Gets A Big Lift In Japan

    This is a lot more compute capacity than JMA has had available to do generic weather forecasting as well as do predictions for typhoons, tsunamis, earthquakes, and volcanic eruptions – the weather forecasting alone is predicted to run 10X faster, according to Cray.

  • Bitwarden Password Manager Adds Command Line Vault

    Bitwarden, the secure, open source password manager we talked about recently, added a command line tool to its list of apps you can use to access your passwords.

    Bitwarden CLI is currently in public beta testing, and according to its documentation, it includes all the features available in other Bitwarden client applications, like the desktop or browser extension.

  • GSoC’18 Week 1

    The first week of the coding period was great and I got to learn a lot of new things. My mentors help me on every stage and the work is going on as planne

    [...]

    Improvement in the overall UI is still in progress. Other than this, I have been working on refactoring the current code for this activity and breaking the whole code into various elements. For the next week, my main task is to complete the overall UI of this activity and add more geometries for drawing.

  • Time to Test Plasma 5.13 Beta

    The forthcoming new release of Plasma 5.13 will have some lovely new features such as rewritten System Settings pages and Plasma Browser Integration. But we need testers.

    Incase you missed it the Plasma 5.13 release announce has a rundown of the main features. If you are an auditory learner you can listen to the Late Night Linux Extra podcast where Jonathan “great communicator” Riddell talks about the recent sprint and the release.

  • GSoC students are already hacking!

    We always enjoy that new people join openSUSE community and help them in their first steps. Because of that, openSUSE participates again in GSoC, an international program in which stipends are awarded to students who hack on open source projects during the summer. We are really excited to announce that this year four students will learn about open source development while hacking on openSUSE projects. The coding period started last week, so our students are already busy hacking and they have written some nice articles about their projects. Wink

  • CryptoFest a openSUSE Conference již tento víkend v Praze
  • openSUSE Conference a CryptoFest 2018
  • Aaeon reveals two rugged, Linux-ready embedded PCs

    Aaeon unveiled two Linux-friendly embedded systems: an “AIOT-IP6801” gateway equipped with an Apollo Lake-based UP Squared SBC with WiFi and LoRa, and a “Boxer-8120AI” mini-PC with an Nvidia Jetson TX2 module and 4x GbE ports.

    Aaeon announced that three of its Linux-ready embedded systems have won Computex d&j awards, including two previously unannounced models: an Intel Apollo Lake based AIOT-IP6801 gateway based on Aaeon’s community-backed UP Squared board, as well as a Boxer-8120AI embedded computer built around an Arm-based Jetson TX2 module.

  • Last Call for Purism's Librem 5 Dev Kits, Git Protocol Version 2 Released, LXQt Version 0.13.0 Now Available and More

    Purism announces last call for its Librem 5 dev kits. If you're interested in the hardware that will be the platform for the Librem 5 privacy-focused phones, place your order by June 1, 2018. The dev kit is $399, and it includes "screen, touchscreen, development mainboard, cabling, power supply and various sensors (free worldwide shipping)".

Programming: GNU Parallel, Rust, Go

Filed under
Development

OSS Leftovers

Filed under
Misc
  • Openlab: what it is and why it matters

    Six months on from its announcement at Openstack Summit Sydney in late 2017, community testing project OpenLab is in full swing.

    OpenLab was initially formed by Intel, Huawei and the OpenStack foundation as a community-led project for improving SDK support and also introducing other platforms like Kubernetes and Cloud Foundry to the Openstack environment. Ultimately the idea is to improve usability in hybrid and multi-cloud environments.

    Melvin Hillsman sits on the governance board along with Dr Yih Leong Sun of Intel and Chris Hoge from the Foundation. Hillsman moved from Rackspace to Huawei to work specifically on the project.

    "The reason we think Openlab is important is, basically, Openstack for some time has been very specific about testing and integration for Openstack services, focusing only on the projects started at Openstack," Hillsman tellsComputerworld UK at the Openstack Vancouver Summit. "It's been working very well, it's a robust system. But for me as a person in the user community - my getting involved in Openstack was more on the operator-user side.

  • Open source innovation tips for the customer-driven economy

    New technologies, ranging from big data and blockchain to 3D printing, are giving rise to new opportunities and challenges for companies today. To stay competitive, organizations need to become more intelligent, customer-centric, and increasingly agile to cope with changing business demands.

    The worry for many companies which are trying to innovate is that while the speed and scope of applications are expanding rapidly, the variety and complexity of technology is increasing simultaneously, putting pressure on their IT infrastructure.

    Speaking at the SUSE Expert Days 2018 held in Singapore recently, Dr Gerald Pfeifer, VP of Products and Technology Program, SUSE, told attendees that these prevailing trends have come together to make Open Source the primary engine for business innovation.

  • Qualcomm is able to release the Snapdragon 845 source code in 6 weeks

    Qualcomm‘s latest high-end system-on-chip, the Qualcomm Snapdragon 845, was announced at the Snapdragon Tech Summit back in December. The chipset offers 4 Kryo 385 (A75 “performance”) and 4 Kryo 385 (A55 “efficiency”) CPU cores, the latest Adreno 630 GPU, the Spectra 280 ISP, the Hexagon 685 DSP, the Snapdragon X20 LTE modem, and a new Secure Processing Unit (SPU). The Snapdragon 845 SoC is a powerhouse in benchmarks and it is already available in devices like the Samsung Galaxy S9/S9+, Xiaomi Mi Mix 2S, and the OnePlus 6. Developers on our forums have been itching to get their hands on a device with Qualcomm’s latest and greatest, but there’s just one thing that has made some developers worry about the future of development on the platform: The lack of publicly available source code for the kernel, HALs, framework branches, and more on the CodeAurora Forums.

  • Kata Containers 1.0 Released, Formerly Intel Clear Containers

    Back in December was the announcement of Intel's Clear Containers being spun into a new project called Kata Containers in collaboration with other organizations. Kata Containers has now reached their version 1.0 milestone.

    Kata Containers 1.0 is now available for this container technology designed for offering a secure and scalable container experience built atop Intel VT technology.

  • What's new in OpenStack?

    As OpenStack Foundation Chief Operating Officer Mark Collier referenced in his opening keynote, the uses which OpenStack is seeing today expand far beyond what most who were involved in the early days of the project could have ever imagined. While OpenStack started out primarily in the traditional data center and found many large-scale users, particularly in the telecommunications industry, who were using it to manage huge installations of traditional x86 server hardware, the flexibility of OpenStack has today allowed it to thrive in many other environments and use cases.

    Today, we see OpenStack powering everything from academic and research projects to media and gaming services, from online retail and e-commerce to manufacturing and industrial applications, and from finance to healthcare. OpenStack is found in all of these different places not just because it is cheaper than using the public cloud, not just because it makes compliance with various regulations easier, but because its open source code makes it flexible to all sort of different situations.

  • Should Red Hat Buy or Build a Database?

    For a decade, at least, observers of the company have speculated about whether Red Hat would or should enter the database market. The primary argument, one made in this space eight years ago, has historically been that Red Hat is de facto leaving potential dollars on the table by limiting itself to operating platform and immediately adjacent markets. In a more recent piece, analyst Krishnan Subramanian adds that Red Hat is at risk because databases represent a control point, one that the company is effectively ceding to competitors such as AWS or Microsoft.

  • Tidelift Raises $15M Series A From General Catalyst, Foundry, & Others

    This morning Tidelift, a startup focused on helping developers work with open source technology, announced that it has closed a $15 million Series A round of funding co-led by General Catalyst, Foundry, and Matthew Szulik, the former CEO of Red Hat, a public open source-centered technology company.

    The subscription-powered startup has an interesting business model which we’ll dive into shortly, but it’s worth noting that the open source space as a whole is quite active. It’s something that Crunchbase News covered last year, describing how startups working with open source software have enjoyed a dramatic rise in investor interest.

    That puts Tidelift in the midst of a trend.

  • Tidelift lands $15M to deliver professional open-source support

    Tidelift Inc. is raising $15 million as it looks to boost its unique open-source software model that sees companies pay for professional support of their favorite projects, allowing those that maintain them to get compensated too.

    The Series A round was led by the investment firms General Catalyst and Foundry Group, as well as former Red Hat Inc. Chairman and Chief Executive Matthew Szulik. The company was able to attract the investment after coming up with a novel idea for maintaining the most popular open-source software projects in a way that benefits both the users and those who help to create them.

    It works like this: Companies pay a subscription fee that entitles them to professional-grade support, similar to the kind of commercial subscriptions offered by firms such as Red Hat, Cloudera Inc. and Docker Inc. A part of these fees are then used to pay the developers who maintain the software. The net result, at least in theory, is that everyone is happy, as companies enjoy the benefits of professional support at lower rates than they might expect from an established firm, and the developers of the software are finally rewarded for their efforts.

Ubuntu: Ubuntu 18.04 Install and First Look, Canonical and Trilio Deal, Ubuntu Server Development and Shuttleworth's Controversy

Filed under
Ubuntu
  • Ubuntu 18.04 Install and First Look

    The long anticipated Ubuntu 18.04 “Bionic Beaver” Long Term Support (LTS) release has arrived… Let’s install it and take a look around.

  • Canonical Managed Cloud adds data protection and recovery with Trilio

    Canonical and Trilio announced today a partnership agreement to deliver TrilioVault backup and recovery solutions as part of BootStack, Canonical’s fully managed OpenStack private cloud solution. TrilioVault will also be made available as an option to Ubuntu Advantage support customers. As a result, users already taking advantage of the Ubuntu platform for their OpenStack deployment now have seamless access to the only OpenStack-native data protection solution on the market.

    Together, the two companies are pushing the boundaries of enterprise OpenStack clouds to become increasingly easier to build, simpler to manage, and more reliable in the event of a disaster.

  • Ubuntu Server development summary – 22 May 2018
  • Ubuntu's Shuttleworth Creates Controversy with OpenStack Summit Vancouver Keynote

    The OpenStack Foundation is facing a bit of drama and controversy as it deals with issues related to a keynote delivered by Ubuntu Linux founder, Mark Shuttleworth at the OpenStack Summit here on May 21.

    Typically the OpenStack Foundation posts videos of all its session online within 24 hours, but with the Shuttleworth keynote, the video was apparently posted and then promptly removed. During his keynote, Shuttleworth took direct aim at his OpenStack competitor Red Hat, which apparently made some people in the OpenStack Summit community uncomfortable.

Offline Computing – 10 Apps for the Digital Nomad

Filed under
Software

In today’s always-connected, constantly-inturrupted world, it can often be rewarding to go offline. Disconnecting from the Internet doesn’t mean you have to buy a yurt, live on beans, and get no work done though!

While there’s a ton of great apps in the Snap store which rely on a connection to function, there’s also a lot you can do offline. So whether you’re taking a trip that doesn’t offer (reasonably priced) in-flight wifi, or want to live life the digital nomad style, we’ve got some apps for you!

These all work offline, so once installed you can work, study & play without a connection.

Read more

Also: Linux Release Roundup: GNOME Twitch, Shotwell & GIMP

Finally: Historic Eudora email code goes open source

Filed under
OSS

The source code to the Eudora email client is being released by the Computer History Museum, after five years of discussion with the IP owner, Qualcomm.

The Mac software was well loved by early internet adopters and power users, with versions appearing for Palm, Newton and Windows. At one time, the brand was so synonymous with email that Lycos used Eudora to brand its own webmail service. As the Mountain View, California museum has noted, "It’s hard to overstate Eudora’s popularity in the mid-1990s."

Read more

Also: The Computer History Museum Just Made Eudora Open Source

Syndicate content

More in Tux Machines

15 books for kids who (you want to) love Linux and open source

In my job I've heard professionals in tech, from C-level executives to everyone in between, say they want their own kids to learn more about Linux and open source. Some of them seem to have an easy time with their kids following closely in their footsteps. And some have a tough time getting their kids to see what makes Linux and open source so cool. Maybe their time will come, maybe it won't. There's a lot of interesting, valuable stuff out there in this big world. Read more

Security: VPNFilter, Encryption in GNU/Linux, Intel CPU Bug Affecting rr Watchpoints

  • [Crackers] infect 500,000 consumer routers all over the world with malware

    VPNFilter—as the modular, multi-stage malware has been dubbed—works on consumer-grade routers made by Linksys, MikroTik, Netgear, TP-Link, and on network-attached storage devices from QNAP, Cisco researchers said in an advisory. It’s one of the few pieces of Internet-of-things malware that can survive a reboot. Infections in at least 54 countries have been slowly building since at least 2016, and Cisco researchers have been monitoring them for several months. The attacks drastically ramped up during the past three weeks, including two major assaults on devices located in Ukraine. The spike, combined with the advanced capabilities of the malware, prompted Cisco to release Wednesday’s report before the research is completed.

  • Do Not Use sha256crypt / sha512crypt - They're Dangerous

    I'd like to demonstrate why I think using sha256crypt or sha512crypt on current GNU/Linux operating systems is dangerous, and why I think the developers of GLIBC should move to scrypt or Argon2, or at least bcrypt or PBKDF2.

  • Intel CPU Bug Affecting rr Watchpoints
    I investigated an rr bug report and discovered an annoying Intel CPU bug that affects rr replay using data watchpoints. It doesn't seem to be hit very often in practice, which is good because I don't know any way to work around it. It turns out that the bug is probably covered by an existing Intel erratum for Skylake and Kaby Lake (and probably later generations, but I'm not sure), which I even blogged about previously! However, the erratum does not mention watchpoints and the bug I've found definitely depends on data watchpoints being set. I was able to write a stand-alone testcase to characterize the bug. The issue seems to be that if a rep stos (and probably rep movs) instruction writes between 1 and 64 bytes (inclusive), and you have a read or write watchpoint in the range [64, 128) bytes from the start of the writes (i.e., not triggered by the instruction), then one spurious retired conditional branch is (usually) counted. The alignment of the writes does not matter, and it's not related to speculative execution.

In Memoriam: Robin "Roblimo" Miller, a Videographer and Free Software Champion

Videographer Robin Roblimo Miller

Robin "Roblimo" Miller was a clever, friendly, and very amicable individual who everyone I know has plenty of positive things to say about. I had the pleasure of speaking to him for several hours about anything from personal life and professional views. Miller was a very knowledgeable person whose trade as a journalist and video producer I often envied. I have seen him facing his critics in his capacity as a journalist over a decade ago when he arranged a debate about OOXML (on live radio). Miller, to me, will always be remembered as a strong-minded and investigative journalist who "did the right thing" as the cliché goes, irrespective of financial gain -- something which can sometimes be detrimental to one's longterm health. Miller sacrificed many of his later years to a cause worth fighting for. This is what we ought to remember him for. Miller was - and always will be - a FOSS hero.

May everything you fought for be fulfilled, Mr. Miller. I already miss you.

Today in Techrights