Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Wednesday, 17 Oct 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Typesort icon Title Author Replies Last Post
Blog entry Distribution Release - pclinuxos enlightenment 2010.11 Texstar 05/11/2010 - 11:22pm
Blog entry Some site news srlinuxx 2 01/11/2010 - 5:24pm
Blog entry Malware Warning (resolved) srlinuxx 3 24/10/2010 - 10:51am
Blog entry Upgrade Ubuntu to latest version – using shell dhavalthakar 13/10/2010 - 3:06am
Blog entry How to install libreoffice in Ubuntu using PPA gg234 07/10/2010 - 6:27am
Blog entry Linux conundrums lately srlinuxx 30/09/2010 - 5:03pm
Blog entry under the weather srlinuxx 3 30/09/2010 - 5:20pm
Blog entry Texas Mint Tea, anyone? revdjenk 24/09/2010 - 8:56pm
Blog entry Debian-Main Locus(t) Error revdjenk 24/09/2010 - 8:27pm
Blog entry echo "Hello World" JULinux 20/09/2010 - 7:02pm

Mozilla: Pocket, Rust and MDN Updates

Filed under
Development
Moz/FF
  • Pocket’s Updated Listening Feature Effectively Turns Web Pages into Podcasts

    The read-it-later service has been focused on convenience and entertainment since Mozilla acquired it last year. Previous updates to the app introduced sponsored and recommended content based on a user’s interest. The new “listen” feature mimics the button layout and usability of podcast and music apps, encouraging users to treat Pocket like a source of entertainment, rather than a glorified bookmark app.

  • Announcing Rust 1.29.2

    The Rust team is happy to announce a new version of Rust, 1.29.2. Rust is a systems programming language focused on safety, speed, and concurrency.

  • Payments, accessibility, and dead macros: MDN Changelog for September 2018

    We’ve been thinking about the direction and growth of MDN. We’d like a more direct connection with developers, and to provide them with valuable features and benefits they need to be successful in their web projects. We’ve researched several promising ideas, and decided that direct payments would be the first experiment. Logged-in users and 1% of anonymous visitors see the banner that asks them to directly support MDN. See Ali Spivak’s and Kadir Topal’s post, A New Way to Support MDN, for more information.

Security: Chinese Crackers, Microsoft's Botched New Updates, Latest FOSS Updates

Filed under
Security
  • Hackers [sic] Are Using Stolen Apple IDs to Swipe Cash in China

    Ant Financial’s Alipay and Tencent Holdings Ltd. warned that cyber-attackers employed stolen Apple IDs to break into customers’ accounts and made off with an unknown amount of cash, in a rare security breach for China’s top digital payments providers.

  • Hackers [sic] loot digital wallets using stolen Apple IDs

    Two Chinese companies are warning customers that [crackers] used stolen Apple IDs to get into their digital payment accounts and steal money.

  • Microsoft October 2018 Patch Slightly Flawed and Unable To fully Rectify Jet Database Engine Vulnerability

    On the 20th of September, Trend Micro’s Zero Day Initiative (ZDI) went public with the information of a remove code execution vulnerability that would allow attackers to use the flawed Jet Database Engine to run macros through Microsoft Office programs and cause malicious activities in the targets computer. We covered this previously, you can read it here.

    Regarding this issue, ZDI released a micro-patch on the 21st September which fixed the vulnerability and urged Microsoft to correct this in the following patch. ZDI then did a review of the October 2018 update by Microsoft and found out that the security flaw while addressed has only limited the vulnerability rather than eliminating it.

  • Security updates for Friday

today's howtos

Filed under
HowTos

Community backed Kaby Lake SBC ships with downloadable Ubuntu image

Filed under
Hardware
Ubuntu

DFRobot has fulfilled KS orders for its Kaby Lake based LattePanda Alpha SBC, and is shipping a model with 8GB RAM and 64GB eMMC without OS that supports Windows 10 or Ubuntu 16.04 LTS.

DFRobot’s LattePanda project has fulfilled its Kickstarter orders for its community-backed, Intel 7th Gen Core based LattePanda Alpha after several months of delays, and public sales have switched from pre-order to in-stock fulfillment for at least one model. Like the earlier, Intel Cherry Trail based LattePanda, the LattePanda Alpha is notable for being a community backed (but not fully open source) hacker board loaded with Windows 10. Yet with the LattePanda Alpha, you can also choose a more affordable barebones version without a Windows 10 key that supports an optimized, downloadable Ubuntu 16.04 LTS image.

Read more

Stretchly – An Open-Source, Customizable Time Reminder App

Filed under
GNU
Linux
Software

We have covered several time apps including Chronobreak, Gnome P0modoro, and Thomas. Today’s featured timer app goes by the name of Stretchly and it is among the most customizable timer apps on the free market.

Stretchly is an open-source project that reminds its users to take breaks from working on the computer. It runs in the system tray and displays a prompt for you to take a 20-second break every 10 minutes by default.

Its app window uses a minimalist design UI with informative text, and tons of customization options including break duration, alert tones, and strict mode. Stretchly allows you to cut breaks short and return to work, enabling strict mode will disable that feature.

Read more

Sysget – A Front-end For Popular Package Managers

Filed under
GNU
Linux
Software

Are you a distro-hopper who likes to try new Linux OSs every few days? If so, I have something for you. Say hello to Sysget, a front-end for popular package managers in Unix-like operating systems. You don’t need to learn about every package managers to do basic stuffs like installing, updating, upgrading and removing packages. You just need to remember one syntax for every package manager on every Unix-like operating systems. Sysget is a wrapper script for package managers and it is written in C++.

Read more

10 Reasons to Use Manjaro Linux

Filed under
GNU
Linux

Manjaro Linux has been trending in Linux communities and even beyond for over a year now. One, for its beauty, and two, for its success at simplifying many of the overly-technical aspects in Arch Linux e.g. installation.

If you are among those on the fence and aren’t sure of why you should switch to using Manjaro Linux then here are 10 reasons to convince you.

Read more

Four Web Browsers for the Linux Command Line

Filed under
GNU
Linux
Web

Remember the days when the web was as simple as searchable text. The terminals and low powered personal computers were enough to access the text-based web over snail-paced internet connections. Of course, people then used the command-line web browsers to visit the web; these included the famous Lynx browser as well. Times have changed now, the browser technology has shifted to the graphical and more powerful web-browsers such as Chrome, Firefox and, Safari. Still, there are people who are more Terminal savvy and prefer accessing to-the-point information from the web through Terminal based browsing. Even Terminal based computers also exist and for them, command-line browsers are sometimes the only way to connect to the web. So how do we install and use these text-based browsers through our Linux command-line, the Terminal?

Read more

Kdenlive 18.08.2 released

Filed under
KDE

Kdenlive 18.08.2 is out bringing usability improvements and a crash fix. The Windows version is also becoming more stable with every release and this version brings fixes to the translation installation and the introduction of a crash report.

In other news, the Refactoring is moving steadily ahead and we will release a wider test beta version soon, stay tuned. Also the refactoring branch is now building automatically on KDE’s automated integration system (CI), and all the regressions tests pass. This means that after each change to the source code, the CI will run the tests to check that no regression happens. On the sysadmin front we are cleaning up our bug tracker in preparation for the 18.12 release.

Read more

GCC 6.5 Status Report

Filed under
Development
GNU
  • GCC 6.5 Status Report (2018-10-12)

    It is now time to release GCC 6.5 and close the 6.x branch. If you have regression bugfixes or documentation fixes that should be still backported to the branch, please test them and check them in before Friday, October 19th, when I'd like to create a Release Candidate of 6.5.

  • GCC 6.5 Is Being Prepared As The Last GCC6 Compiler Release

    Version 6.5 of the GNU Compiler Collection will soon be released to end out the GCC6 series.

    GCC8 remains the latest stable series and GCC9 is in development for release in early 2019. For those still relying upon the two-year-old GCC6 stable series, GCC 6.5 is being prepared with a last serving of bug/regression fixes before closing off that branch.

Games: Vintage Story, Steam Client, Helium Rain, Neverwinter Nights: Enhanced Edition, Farm Together, SEUM: Speedrunners from Hell, Sudden Strike 4

Filed under
Gaming
  • Vintage Story, a beautiful survival and building game on Linux

    Vintage Story is a beautiful survival game that started as an idea for a mod for Minecraft, based on the popular modpack, Terra Firma Craft. It is developed by Anego Studios.

    The game is currently still in early access. Development is happening rapidly, with a stable update coming out more or less every other week, with plenty of experimental builds available in between.

  • A new stable Steam Client update is out, with fixes for Steam Play and more

    Valve continue their usual polishing of the Steam Client, with the latest stable update including some fixes for Steam Play. That's not all of course, there's quite a bit to this update.

    They've adjusted the new Steam Chat system, so now you can test your microphone in the Friends Voice settings dialog, a mute on/off toggle hot-key support for when using open microphone mode, it shouldn't try to open the friends and chat system if you're in offline mode and some bug fixes.

    Steam Link gained the ability to do co-op by streaming to multiple devices and the ability to use an Android phone as a touch controller. There's also various Big Picture fixes and plenty of fixes for Steam Input too, Steam Input also had a Linux-specific fix when using Steam Input for generic gamepads.

  • Space sim 'Helium Rain' has left Early Access, code is open source

    Helium Rain, the space simulation and strategy game from Deimos Games has left Early Access as a rather impressive game.

    I really love what they did with it too, while you can purchase the game to support the developer, the source code is also available under an open source license on GitHub.

  • Neverwinter Nights: Enhanced Edition levels up and arrives on GOG

    Grab your sword, shield and helmet as Neverwinter Nights: Enhanced Edition has arrived on GOG for DRM free gaming goodness.

  • The peaceful casual farming game 'Farm Together' has left Early Access

    For those who're looking to run their very own farm, with a rather sweet visual style Farm Together has now left Early Access.

    Disclosure: Key provided by the developer to our Steam Curator.

  • Get your shoes and headphones ready for SEUM: Speedrunners from Hell, now on GOG

    SEUM: Speedrunners from Hell, a heavy metal first-person platformer that's all about speed is now on GOG.

    Like all good speedrunners, it's not just about being the absolutely quickest. You also need to be smart, there's a few ways to do some little fancy tricks in each level to give you that extra second of time.

  • Sudden Strike 4 heads to Africa in the new DLC out now, cross-platform multiplayer not coming

    Strategy game Sudden Strike 4 has another DLC today with the release of the Africa: Desert War expansion.

    This new expansion has two "mini-campaigns" with six new singleplayer missions from the North African campaign of World War 2. Africa – Desert War introduces over 30 new vehicles including an all-new medical truck, the Marder II Tank Destroyer, the British Bishop SPG, as well as the Italian Semovente da 105/25 Assault Gun.

MidnightBSD 1.0 Is Ready To Shine With ZFS Support, Ryzen Compatibility

Filed under
BSD

MidnightBSD 1.0 also brings improvements to its Mport package manager, Bhyve virtualization support is now available, ZFS file-system support (including for root file-system), OpenBSD's doas replacing sudo, and various other software updates and improvements.

The 1.0 release ISOs and more information on MidnightBSD is available from the project site at MidnightBSD.org.

Read more

La Frite: A Libre ARM SBC For $5, 10x Faster Than The Raspberry Pi Zero

Filed under
Linux
Hardware

The folks at the Libre Computer Project who have successfully released the Tritium, Le Potato, and other ARM SBCs while being as open-source friendly as possible have now announced La Frite.

La Frite is a low-end offering with their 512MB model shipping for just $5 USD or the 1GB version for $10... In other words, aimed squarely at the Raspberry Pi Zero and intended for IoT use-cases and other purposes.

The $5 ARM SBC is said to be 10x faster than the Raspberry Pi Zero plus having real HDMI, Ethernet, and USB ports.

Read more

Graphics: Mir, X.Org Foundation, and AMD

Filed under
Graphics/Benchmarks
  • Ubuntu's Bring-Up Of NVIDIA's Driver With Mir Continues

    The Ubuntu developers continuing to work on the Mir display server stack have made headway in their NVIDIA driver enablement effort.

    The code isn't yet merged nor even ready to be merged, but they at least have got the NVIDIA proprietary driver working with Mir to the extent that EGL clients are working, rendering is working without major issues, it doesn't regress the stack for the non-NVIDIA drivers, etc.

  • XDC2019 X.Org / Mesa / Wayland Conference To Be Hosted In Montreal

    The X.Org Foundation Board of Directors decided today that their next annual X.Org/Mesa/Wayland conference will be held in Montreal, Canada.

    X.Org decided to head up to Quebec, Canada for next year's X.Org conference after the successful XDC2018 held last month in Spain. Those bidding to be the XDC2019 host city were between Montreal and Hutchinson in Minnesota.

  • AMD Posts Latest Open-Source Linux Patches For FreeSync / Adaptive-Sync / VRR

    One of the few features not yet provided by the mainline open-source Radeon Linux graphics driver will soon be crossed off the list... FreeSync / Adaptive-Sync / HDMI Variable Refresh Rate support.

    It's been a heck of a long time coming to say the least, but last month AMD began posting new patches for VRR / Adaptive-Sync / FreeSync for their open-source Linux graphics driver. Part of the reason why it's taken so long getting to this point was reaching a consensus with the Intel Linux graphics driver developers and other Linux DRM stakeholders over the design/properties to use in exposing this functionality to user-space so eventually other Linux graphics drivers can choose to implement this support similarly.

A Look At The Windows 10 October 2018 Update Performance With WSL

Filed under
Graphics/Benchmarks

As the first of our Linux vs. Windows benchmarks coming around Microsoft's Windows 10 October 2018 Update, today we are exploring the Windows Subsystem for Linux (WSL) performance to see if they have finally managed to improve the I/O performance for this Linux binary compatibility layer and how the WSL performs compared to Ubuntu and Clear Linux.

For those that have missed my previous rounds of Windows Subsystem for Linux (WSL) benchmarking, this Linux binary compatibility layer for Windows is surprisingly performant for most workloads... Microsoft all around has done a surprisingly good job on WSL with its support and performance. The big exception to the strong WSL performance though has been for I/O workloads struggling a great deal due to WSL needing to track the various meta-data separately, backing the I/O by their long-standing NTFS file-system, and other complications between Linux/Windows I/O handling. But they continue to express they are working on improving the I/O performance and as such I was anxious to see if there are any improvements with this October 2018 Update.

Read more

Firefox ESR 60 Is Now Available on Ubuntu as a Snap, Here's How to Install It

Filed under
Moz/FF
Ubuntu

Every six weeks, a new major Firefox release hits the streets, and it's soon available in the Ubuntu repositories, but thanks to Canonical's Snappy technologies, users now have access to the latest ESR versions of Firefox too, which are mostly intended for the company's enterprise partners who want long-term supported Firefox release.

"The ESR version of Firefox is aimed at corporations who want to have more control over the version of Firefox their employees have installed," said Canonical in a blog post. "Mozilla recommends that users stay on the Rapid Release version if they wish the newest product features offered by Firefox."

Read more

GNOME 3.32 Desktop Environment Development Kicks Off, First Milestone Is Out Now

Filed under
GNOME

Work on the GNOME 3.32 desktop environment begun a few weeks ago after the launch of the GNOME 3.30 "Almeria" desktop environment last month, which is currently hitting the stable software repositories of some of the most popular GNU/Linux distributions. GNOME 3.32 will be developed under the GNOME 3.31.x umbrella for the next six months, until its March 13, 2019, launch.

GNOME 3.31.1 is now available as the first development milestone towards the final GNOME 3.32 desktop environment. Being the first development snapshot, GNOME 3.31.1 brings only a few updated core components and apps, without any notable changes, except for the removal of the application menus feature, as we reported earlier this week.

Read more

Also: GNOME 3.31.1 Released As The First Step Towards GNOME 3.32

4 Must-Have Tools for Monitoring Linux

Filed under
Linux

Linux. It’s powerful, flexible, stable, secure, user-friendly… the list goes on and on. There are so many reasons why people have adopted the open source operating system. One of those reasons which particularly stands out is its flexibility. Linux can be and do almost anything. In fact, it will (in most cases) go well above what most platforms can. Just ask any enterprise business why they use Linux and open source.

But once you’ve deployed those servers and desktops, you need to be able to keep track of them. What’s going on? How are they performing? Is something afoot? In other words, you need to be able to monitor your Linux machines. “How?” you ask. That’s a great question, and one with many answers. I want to introduce you to a few such tools—from command line, to GUI, to full-blown web interfaces (with plenty of bells and whistles). From this collection of tools, you can gather just about any kind of information you need. I will stick only with tools that are open source, which will exempt some high-quality, proprietary solutions. But it’s always best to start with open source, and, chances are, you’ll find everything you need to monitor your desktops and servers. So, let’s take a look at four such tools.

Read more

BSD: Michael W. Lucas Talks FreeBSD, Tor on OpenBSD, Call for Testing of OpenSSH 7.9

Filed under
BSD
  • Michael W. Lucas talks FreeBSD (and whatever else he wants)
  • Tor part 1: how-to use Tor

    Installing tor is really easy on OpenBSD. We need to install it, and start its daemon. The daemon will listen by default on localhost on port 9050. On others systems, it may be quite similar, install the tor package and enable the daemon if not enabled by default.

  • Tor part 2: hidden service

    In this second Tor article, I will present an interesting Tor feature named hidden service. The principle of this hidden service is to make available a network service from anywhere, with only prerequisites that the computer must be powered on, tor not blocked and it has network access.

  • Call for testing: OpenSSH 7.9

    OpenSSH 7.9p1 is almost ready for release, so we would appreciate testing on as many platforms and systems as possible. This is a bugfix release.

Syndicate content

More in Tux Machines

Browsing the web with Min, a minimalist open source web browser

Does the world need another web browser? Even though the days of having a multiplicity of browsers to choose from are long gone, there still are folks out there developing new applications that help us use the web. One of those new-fangled browsers is Min. As its name suggests (well, suggests to me, anyway), Min is a minimalist browser. That doesn't mean it's deficient in any significant way, and its open source, Apache 2.0 license piques my interest. Read more

Security: Patches, FUD and Voting Machines

  • libssh 0.8.4 and 0.7.6 security and bugfix release

    libssh versions 0.6 and above have an authentication bypass vulnerability in the server code. By presenting the server an SSH2_MSG_USERAUTH_SUCCESS message in place of the SSH2_MSG_USERAUTH_REQUEST message which the server would expect to initiate authentication, the attacker could successfully authentciate without any credentials.

  • A Cybersecurity Weak Link: Linux and IoT [Ed: Blaming "Linux" for companies that put default passwords on all their products? Windows has back doors.]
  • Undetectably bypass voting machines' anti-tamper mechanism with a bit of a soda-can

    But University of Michigan grad student Matt Bernhard has demonstrated that he can bypass the tamper-evident seals in seconds, using a shim made from a slice of a soda can. The bypass is undetectable and doesn't damage the seal, which can be resecured after an attacker gains access to the system.

  • Security Seals Used to Protect Voting Machines Can Be Easily Opened With Shim Crafted from a Soda Can

    Bernhard, who is an expert witness for election integrity activists in a lawsuit filed in Georgia to force officials to get rid of paperless voting machines used in that state, said the issue of security ties and seals came up in the lawsuit earlier this year when Fulton County Elections Director Richard Barron told the court that his Georgia county relies on tamper-evident metal and plastic ties to seal voting machines and prevent anyone with physical access to the machines from subverting them while they sit in polling places days before an election.

    [...]

    He noted that defeating ties and seals in non-tamper-evident ways isn’t the only method to wreak havoc on an election in Michigan. The state has a unique law that prohibits ballots from being used in a recount if the number of voters doesn't match the number of ballots cast at a precinct or if the seal on a ballot box is broken or has a different serial number than what it should have. Someone who wanted to wreak havoc on an election or alter an election outcome in Michigan could purposely tamper with ballot box seals in a way that is evident or simply replace them with a seal bearing a different serial number in order to get ballots excluded from a recount. The law came into sharp relief after the 2016 presidential election when Green Party candidate Jill Stein sought to get a statewide recount in Michigan and two other critical swing states and found that some precincts in Wayne County couldn't be recounted because the number of voters who signed the poll books—which get certified with a seal signed by officials—didn't match the number of ballots scanned on the voting machines.

OSS: Hedera Hashgraph, Service Providers, and Renaming the Bro Project

  • Hedera Hashgraph Distributed Ledger Technology Shares New Open-Source SDK [Ed: Hedera needs to delete GitHub, however, as the new head of GitHub killed Java projects like Hedera's]
    Hedera Hashgraph, one of the DApp facilitators within the blockchain industry recently announced that it has released its Software Development Kit (SDK) in Java.
  • Service Providers Should Adapt to Open Source World
    Finding differing opinions on open source with the telecom industry isn't hard to do, especially where orchestration is concerned. That's why a panel discussion on open source and MANO at the Light Reading NFV-Carrier SDN event in Denver seemed an odd place to find such outspoken agreement on that topic, but there it was. Four smart guys, none shy with their opinions, all seemed to agree on key points around open source, the need for standards, the role of vendors and the lack of internal software skills. But they also agreed that telecom service providers are struggling a bit to understand how to proceed in an open source world and still need some fundamental internal changes.
  • Renaming the Bro Project
    More than 20 years ago I chose the name "Bro" as "an Orwellian reminder that monitoring comes hand in hand with the potential for privacy violations", as the original Bro paper put it. Today that warning is needed more than ever ... but it's clear that now the name "Bro" is alas much more of a distraction than a reminder. On the Leadership Team of the Bro Project, we heard clear concerns from the Bro community that the name "Bro" has taken on strongly negative connotations, such as "Bro culture". These send a sharp, anti-inclusive - and wholly unintended and undesirable - message to those who might use Bro. The problems were significant enough that during BroCon community sessions, several people have mentioned substantial difficulties in getting their upper management to even consider using open-source software with such a seemingly ill-chosen, off-putting name.

Back End: Apache Kafka, 'Serverless'