Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Monday, 21 May 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

GNOME 3.30 Desktop to Introduce New App for Finding Free Internet Radio Stations

GNOME 3.30 is currently in heavy development, with a second snapshot expected to land this week, and the GNOME Project recently updated their future plans page for the upcoming releases with the inclusion of the Internet Radio Locator app, which could make its debut during this cycle. Internet Radio Locator is an open-source graphical application built with the latest GNOME/GTK+ technologies and designed to help users easily locate free Internet radio stations from various broadcasters around the globe. It currently supports text-based location search for a total of 86 stations from 76 world cities. Read more

Ryzen 7 2700 / Ryzen 7 2700X / Core i7 8700K Linux Gaming Performance With RX Vega 64, GTX 1080 Ti

With the Linux benchmarks of the Ryzen 7 2700 last week I included a few Linux gaming benchmarks, but for those evaluating CPU options for your next Intel/AMD Linux gaming system upgrade, here is a much more thorough set of benchmarks from a wide variety of OpenGL and Vulkan powered Linux games. The Ryzen 7 2700, Ryzen 7 2700X, and Core i7 8700K processors were tested for this Ubuntu gaming comparison while testing with both a Radeon RX Vega 64 and GeForce GTX 1080 Ti. Read more

Debian GNU/Linux 8 "Jessie" Will Reach End of Security Support on June 17, 2018

According to a security advisory posted by developer Moritz Muehlenhoff on the Debian-security-announce mailing list, the Debian GNU/Linux 8 "Jessie" operating system series will no longer receive regular security updates as of June 17, 2018. However, a limited number of packages will still be updated for a while. "This is an advance notice that regular security support for Debian GNU/Linux 8 (code name "jessie") will be terminated on the 17th of June," said Moritz Muehlenhoff. "As with previous releases additional LTS support will be provided for a reduced set of architectures and packages." Read more

Parrot 4.0 Ethical Hacking OS Debuts with MD Raid Support, Stable Sandboxed Apps

Powered by the latest Linux 4.16 kernel series, Parrot 4.0 is a major release of the GNU/Linux distribution designed for ethical hacking and penetration testing operations. It's the first to introduce stable, reliable support for sandboxed applications as an extra layer of security, and official Netinstall and Docker images. "Parrot on Docker gives you access to all the Parrot containers you need on top of Windows, Mac OS, or any other system supported by docker, no matter if it is just your laptop or a whole docker cluster running on an entire datacenter. You will always have access to all the parrot tools in all the isolated environments you need," said the devs. Read more

What Linux apps on Chrome OS means for open source

Filed under
OS
Linux
OSS

I own a Pixel 2 laptop. Right now, it's collecting dust, which is a shame, as it's some of the best hardware I've ever used. And don't get me wrong, for the longest time I used that Pixel proudly. But eventually I needed more like when edits came back for a book and Google Docs didn't handle MS Office Track Changes, which it can now do, or when I needed to work with an image editor and Pixlr simply wouldn't cut it. In all honesty, there were more moments like that than not.

But I don't consider myself an average user (for which the Chromebook is perfectly suited). So eventually I put the Pixel on a shelf, in favor of a MacBook Pro. Although that particular hardware isn't quite as nice as the Pixel (battery life, keyboard, and screen layout pale in comparison), it allowed me to get my work done without much of a struggle.

Read more

Tiny, Linux-driven i.MX7 module starts at $34 in volume

Filed under
OS
Linux

E-Con’s 55 x 30mm “eSOMiMX7” COM can simultaneously run Linux and FreeRTOS on the Cortex-A7 and MCU-driven i.MX7 SoC. It offers up to 2GB RAM and 64GB eMMC, with options including WiFi/BT, up to 2x GbE, extended temp support, and an “Acacia” carrier.

E-Con Systems’ eSOMiMX7 computer-on-module is the first NXP i.MX7 based model in its line of Linux-driven eSOM branded modules. These include its i.MX6-based 70 x 45mm “μQseven” form-factor eSOMiMX6 and 54 x 20mm eSOMiMX6-micro. Designed for IoT applications, industrial HMI, test and measurement, ebook readers, and wearables, the module supports 800MHz single- or 1GHz dual-core i.MX7 models and is available with an Acacia evaluation kit (see farther below).

Read more

Mozilla: Thunderbird Rebuts EFF, Debugging Modern Web Applications, Firefox Performance, Rust Turning 3

Filed under
Moz/FF
  • Mozilla Thunderbird: EFail and Thunderbird, What You Need To Know

    DO NOT DISABLE ENCRYPTION. We’ve seen recommendations from some outlets to stop using encrypted Email altogether. If you are sending sensitive data via Email, Thunderbird still recommends using encryption to keep those messages safe. You should, however, check the configuration of the applications you use to view encrypted EMail. For Thunderbird, follow our guidelines below to protect yourself.

  • Debugging Modern Web Applications

    Building and debugging modern JavaScript applications in Firefox DevTools just took a quantum leap forward. In collaboration with Logan Smyth, Tech Lead for Babel, we leveled up the debugger’s source map support to let you inspect the code that you actually wrote. Combined with the ongoing initiative to offer first-class JS framework support across all our devtools, this will boost productivity for modern web app developers.

    Modern JS frameworks and build tools play a critical role today. Frameworks like React, Angular, and Ember let developers build declarative user interfaces with JSX, directives, and templates. Tools like Webpack, Babel, and PostCSS let developers use new JS and CSS features before they are supported by browser vendors. These tools help developers write simpler code, but generate more complicated code to debug.

  • Firefox Performance Update #8

    Talos is a framework that we use to measure various aspects of Firefox performance as part of our continuous integration pipeline.

    There are a number of Talos “suites”, where each suite contains some number of tests. These tests, in turn, report some set of numbers that are then stored and graphable via our graph viewer here.

    Here’s a full list of the Talos tests, including their purpose, the sorts of measurements they take, and who’s currently a good person to ask about them if you have questions.

    A lot of work has been done to reduce the amount of noise in our Talos tests, but they’re still quite sensitive and noisy. This is why it’s often necessary to do 5-10 retriggers of Talos test runs in order to do meaningful comparisons.

    Sometimes Talos detects regressions that aren’t actually real regressions1, and that can be a pain. However, for the times where real regressions are caught, Talos usually lets us know much faster than Telemetry or user reports.

    Did you know that you can get profiles from Try for Talos runs? This makes it much simpler to diagnose Talos regressions. Also, we now have Talos profiles being generated on our Nightly builds for added convenience!

  • This Week in Rust 234
  • Thoughts on retiring from a team

    The Rust Community Team has recently been having a conversation about what a team member’s “retirement” can or should look like. I used to be quite active on the team but now find myself without the time to contribute much, so I’m helping pioneer the “retirement” process. I’ve been talking with our subteam lead extensively about how to best do this, in a way that sets the right expectations and keeps the team membership experience great for everyone.

  • Rust turns three

    Three years ago today, the Rust community released Rust 1.0 to the world, with our initial vision of fearless systems programming. As per tradition, we’ll celebrate Rust’s birthday by taking stock of the people and the product, and especially of what’s happened in the last year.

    [...]

    Finally, the Rust community continues to work on inclusivity, through outreach programs like Rust Reach and RustBridge, as well as structured mentoring and investments in documentation to ease contribution. For 2018, a major goal is to connect and empower Rust’s global community, which we’re doing both through conference launches in multiple new continents, as well as work toward internationalization throughout the project.

Games: Spartan Fist, Wizard of Legend, Myst 25th Anniversary Collection, Wine 3.0.1 and More

Filed under
Gaming

Security: DHCP, System Updates, and Ubuntu Blobs Store

Filed under
Security
  • Protect your Fedora system against this DHCP flaw

    A critical security vulnerability was discovered and disclosed earlier today in dhcp-client. This DHCP flaw carries a high risk to your system and data, especially if you use untrusted networks such as a WiFi access point you don’t own. Read more here for how to protect your Fedora system.

    Dynamic Host Control Protocol (DHCP) allows your system to get configuration from a network it joins. Your system will make a request for DHCP data, and typically a server such as a router answers. The server provides the necessary data for your system to configure itself. This is how, for instance, your system configures itself properly for networking when it joins a wireless network.

    However, an attacker on the local network may be able to exploit this vulnerability. Using a flaw in a dhcp-client script that runs under NetworkManager, the attacker may be able to run arbitrary commands with root privileges on your system. This DHCP flaw puts your system and your data at high risk. The flaw has been assigned CVE-2018-1111 and has a Bugzilla tracking bug.

  • Security updates for Tuesday
  • Potentially Malicious Bytecoin Miner Removed from the Ubuntu Snap Store
  • Canonical on trust and security in the Snap Store

    Here's a posting from Canonical concerning the cryptocurrency-mining app that was discovered in its Snap Store.

  • Canonical finds hidden crypto-miners in the Linux Snap app store

    Last Friday, Canonical, the developer of the popular Ubuntu operating system and owner of the Snapcraft app store, spotted one application surreptitiously mining cryptocurrencies in the background.

Microsoft 'Imprisons' GNU/Linux, Spreads FUD Against FOSS (via Former Staff)

Filed under
Microsoft

Red Hat News

Filed under
Red Hat

AsteroidOS, an open-source Wear OS alternative, now available as a stable release

Filed under
GNU
Linux

A few years ago, a French computer science student named Florent Revest undertook a project to keep Android Wear smartwatches from dying of obsolescence. That project is called AsteroidOS, built entirely on GNU/Linux libraries and technologies, and in its current state, it's fairly basic. Even so, for all fans of open source software out there, this is pretty damn great.

This is the stable release of v1.0 and it works on a few select watches: Asus ZenWatch, Asus ZenWatch 2, Asus ZenWatch 3, LG G Watch, LG Watch Urbane, LG G Watch R, and Sony Smartwatch 3. Each has a different level of support – e.g. the Urbane's sensors aren't working at time of writing – but AsteroidOS is a mostly fully-functioning smartwatch operating system.

Read more

GNOME Devs to Remove the Ability to Launch Apps from the Nautilus File Manager

Filed under
GNOME

Launched in mid-March 2018, GNOME 3.28 is the most advanced and also the first release of the widely-used desktop environment for Linux-based operating systems to drop support for desktop icons from the Nautilus file manager, which handled them for the past two decades, planning to move the functionality to GNOME Shell.

Last month, the GNOME Project kicked off the next six-month development cycle, for GNOME 3.30, which will see the light of day in September 2018 with a more sandboxed system where you won't be able to launch binaries/executables, nor programs directly from the Nautilus file manager.

Read more

Endless OS Picks Up Companion App for Android, Smarter Updates in Major Release

Filed under
OS
Android

Packed with dozens of stability and performance improvements, the Endless OS 3.4 release is one of those major ones that you'll have to install on your personal computer if you're running the Linux-based Endless OS. It features an enhanced GNOME 3.26 desktop environment with smarter updates to help you manage data consumption on limited data plans.

Additionally, Endless OS 3.4 marks the introduction of the Endless Companion App for Android smartphones, which will be available in the coming weeks and promises to let users view content from their Endless OS computers on their Android phones while enjoying the features of the native Endless OS apps.

Read more

Also: Endless OS 3.4 Released, Allows Scheduled Updates & Companion App For Android

Openwashing Tactics by Jadu (Proprietary)

Filed under
OSS
  • Councils back launch of open source library for digital services

    A new community driven repository of shared material where local authorities and partners can collaborate by uploading and downloading assets for building digital services has been launched.

    Local authorities already sharing and using resources on the Jadu Library include Swindon Borough Council, The Royal Borough of Windsor and Maidenhead, Norwich City Council, Canterbury City Council, London Borough of Hounslow and Birmingham City Council, with more pledging to follow.

    Dr Mark Thompson, a key architect of the UK government’s open IT strategy and senior lecturer at Cambridge Judge Business School who co-authored the recent Green Paper Better Public Services: A Manifesto commented: “In the UK there are 430 councils that at a business process and technology level are pretty much replicating versions of the same things. It makes no sense to be reinventing the wheel time and time again.

  • New open source library helps councils share digital assets

    The Jadu Library will enable the sharing and reusing of work and help councils become hubs for economic and social exchange. Rather than having to build online services themselves, the councils can capitalise on what is already available and use service specialists.

Canonical Says There's No Rules Against Mining Cryptocurrencies through Snaps

Filed under
Ubuntu

Last week, users discovered that two of the snap packages uploaded by user Nicolas Tomb in the Snap Store, namely 2048buntu and Hextris, mined cryptocurrency in the background while the applications were running without user's knowledge. Canonical immediately removed the apps from its Snap Store.

Now, the company behind the popular Ubuntu Linux operating system is addressing the issue saying it has no rules against mining cryptocurrencies through snap apps if the developer informs users about this. As Nicolas Tomb didn't inform users that his apps are mining for cryptocurrencies, the apps were removed.

Read more

Also: Canonical finally comments on Ubuntu Linux Snap Store security failure

today's leftovers

Filed under
Misc
  • New Technologies Lead to New Linux and Cloud Training Options
  • Everything You Need to Know about the Cloud and Cloud Computing, Part II: Using the Cloud [Ed: Latest cloudwashing by IBM/LJ; just call it what it is: servers being pushed back to a mainframe era -- companies controlling all the servers.]
  • Kakoune: A Better Code Editor Heavily Inspired by Vim

    It comes with numerous text editing/writing tools such as contextual help, syntax highlighting, auto-completion while typing, and supports many different programming languages. It also implements multiple selections as an essential procedure for interacting with your text.

    In addition, Kakoune’s client/server architecture allows for multiple clients to connect to the same editing session.

  •  

  • New in Qt 5.11: improvements to the model/view APIs (part 1)

    The Qt model/view APIs are used throughout Qt — in Qt Widgets, in Qt Quick, as well as in other non-GUI code. As I tell my students when I deliver Qt trainings: mastering the usage of model/view classes and functions is mandatory knowledge, any non-trivial Qt application is going to be data-driven, with the data coming from a model class.

  • Akademy 2019 Call for Hosts

    The organization of this year's Akademy is in full swing: the official conference program is out, we have had an insightful interview with one of the keynote speakers, another is coming soon, and attendees are already booking flights and accommodation. The #akademy IRC channel on Freenode and the Telegram group are buzzing with messages, advice and recommendations.

  • GNOME Is Removing the Ability to Launch Binary Apps from Nautilus

    Last year Nautilus lost the ability to show desktop icons — now GNOME developers plan to drop another familiar feature.

    According to a code commit on Gitlab the famous file manager is set to lose the ability to run binaries and launch apps directly.

    Or, to put it another way, you won’t be able to double-click on programs, scripts or apps to launch them using Nautilus.

  • Mageia Blog (English) : Issues with the Grand Update?

    This should not be needed, as 32-bit libraries should be able to co-exist on a 64 bit install, as they may be needed for third party applications.

    Bug 23016 has been reopened to study this a bit more. For now, we’re watching for reports, and giving you the workaround of uninstalling the 32 bit library.

    It’s not that 32-bit isn’t able to mix with 64-bit in all cases, just in some, where there are files in the lib package that should be in a different (non-arch specific) package. In these two cases, it’s the /usr/share/locale/ files are in both the 32 and 64 bit packages, with identical names and paths.

    The rpm package manager allows a file to be owned by more than one package, provided the attributes are identical, but it blocks updating with a new version, since it’s trying to update one of the packages, but until the other version is updated too, there is a conflict. We’re keeping a watch-out for these packaging errors.

    It’s possible that if you’ve used DNF to do the update, rather than urpmi, you won’t have this problem; as we gather more information, we’ll add it to roundups in the coming weeks.

    While all this Grand stuff has been happening, we’ve also been doing plenty of the usual things, including over 300 packages into Cauldron.

Proprietary Software on Linux

Filed under
Android
Linux
Gaming

Linux Graphics: AMDVLK and GEM

Filed under
Graphics/Benchmarks
  • AMDVLK Driver Adds VK_KHR_display Support

    The AMD developers working on their official Vulkan driver code updated the public source trees yesterday for XGL and PAL that form the AMDVLK open-source Linux driver.

  • GEM Improvements & Better Intel Icelake Support Coming To Linux 4.18

    Building off their first batch of DRM updates for Linux 4.18, the Intel open-source crew has submitted a second batch of new feature material to DRM-Next that in turn will land with this next kernel cycle.

    Changes with this pull request include NV12 pixel format support finally being firmed up, a number of Intel Icelake improvements, GVT virtualization updates, Panel Self Refresh (PSR) updates, execlist fixes and updates, "tons" of GEM memory management improvements, and a variety of other fixes and code improvements.

OSS Leftovers

Filed under
OSS
  • Open source connecting people and technology

    Candice Herotodou, formerly Mesk, will speak about agile. A collaborator by nature and involved in all things agile and DevOps, Herotodou will relay the story of her journey in a presentation titled DevOps Culture: Are you ready?

  • Fractal Hackfest 2018

    The last couple of days I was in Strasbourg for the Fractal Hackfest. We made some fundamental decisions for the future of Fractal, our Matrix client.  We also decided on some basic architectural changes we want to make.

    You probably already read about the split of Fractal into two separate apps, to cover two different use cases: Barbecue and Banquet. Barbecue will mostly cover “one to one” chats and Banquet high-traffic group chats and IRC-like rooms. We are certain that the split is the right direction for Fractal, but we didn’t define the exact split between the apps.

  • Fracturing Fractal  Fracturing Fractal

    Last week my employer Purism allowed me to attend the Fractal hackfest in Strasbourg. There we chatted about the future of Fractal and of the messaging applications Purism needs for the Librem 5.

  • The Ultimate Postgres vs MySQL Blog Post

    I should probably say up front that I love working with Postgres and could die happy without ever seeing a mysql> prompt again. This is not an unbiased comparison -- but those are no fun anyway.

  • Prisma raises $4.5M seed round led by Kleiner Perkins

    Silicon Valley’s Kleiner Perkins led the round, with participation from a number of angel investors, many of whom have deep roots in the developer and/or open source space, including Nick Schrock, one of the creators of GraphQL itself.

  • The fatal flaw of libertarianism, exemplified by BSD vs GPL

    I'll get right to the point: libertarianism's fatal flaw is that it commits a fallacy, the name of which I do not know, in assuming that the fewest up-front restrictions on personal freedoms necessarily and inevitably translates into the most freedom for the most people into the indefinite future.

    The BSD vs GPL licensing example is perhaps the single best illustration of this I've seen in the tech world to date. Debate, and I use the term charitably, rages on still about the merits of each license, with the BSD partisans making almost verbatim the exact same argument just laid out above: that the BSD license is morally, ethically, and pragmatically superior because it places fewer restrictions on who may do what with the code.

    By contrast, they say, the GPL is infectious, inserting itself like a retrovirus into the replication machinery of any code licensed with it and forcing certain behaviors (redistribution of source) the BSD types disagree with. As I understand it, the reason they give explicitly for disliking this is that it means fewer people will use the GPL compared to the BSD license, which theoretically therefore translates into BSD-licensed code both proliferating and persisting more than its GPL'd siblings.

    What this *actually* means, on the psychological and perhaps subconscious level, is "fuck you, I won't do what you tell me." Sorry guys, but it's the truth: dress it up however you like, but the underlying principle here is "I don't wanna share."

    It also betrays an almost stunning naivete about human nature, the very same one that small-L-libertarianism itself seems predicated on. There is a sort of ceteris paribus assumption at work here, one which assumes that the wide world of coding is meritocratic (it is not), equal-access (it is not), and measures worth solely on quality, correctness, usefulness, etc., of code (it does not). It is the Just World Fallacy writ small and in C, you might say.

    It *completely* fails to take into account human nature, and such wholly non-technical yet pervasive and powerful human engines of corruption as the corporation. Witness Theo de Raadt's anger, entirely justified morally but also entirely his own fault, over the lack of gratitude from corporations who took OpenSSH and OpenBSD itself for their own use and contributed back, perhaps, a single laptop, which took over a year to arrive.

    From the outside, this makes perfect sense. I mean, if you leave a plate of cookies out with a sign that says "free cookies," you don't have a right to complain when someone comes by and takes the entire plate for him/herself. But somehow this simple and obvious line of thought seems to elude the BSD-license partisans, or maybe they quash it for ideological reasons, such as faith (and it *is* a faith position...) in the idea that their code will conquer by virtue of spreading far and wide and continuing to evolve.

  • Friday Free Software Directory IRC meetup time: May 18th starting at 12:00 p.m. EDT/16:00 UTC
  • Generating Third-Party Attribution Documents

    In this post, I’ll show you how to use the qtattributionsscanner tool and Python to generate an attribution document for third-party code in Qt.

  • Edge computing and the importance of open infrastructure

    Open infrastructure is not as much about packaging and deployment as it is about creating a consistent paradigm and environment for running workloads in the form best used to address those applications. Many edge workloads today run on Linux or in VM's, they may evolve for simplified lifecycle management, or they may be superseded by a next generation of applications.

  • Metsä Wood Launches a Groundbreaking Platform for Open Source Wood
  • How citizen science and open-source tech can create change

    As a teenager, Jason Gomez never was the biggest fan of science, and among his peers, environmental work brought to mind planting trees. But he lived in Sunset Park, Brooklyn, where asthma and heart disease affected the lives and health of many residents. Uprose, a local environmental justice organization, recruits youth volunteers like Gomez to understand that these are not side effects of living in a working-class neighborhood that one should just accept–they are the result of planning and design decisions that de-prioritize the health and well-being of the residents of those neighborhoods. Specifically, in Sunset Park, they are the result of the Gowanus Expressway, a large elevated highway that runs directly through the neighborhood.

    [...]

    And with open-source software, their findings are becoming easier to verify and share. Red Hat, a leading open-source tech company, created a documentary called The Science of Collective Discovery featuring citizen scientists like Cooper and the Uprose team to highlight the practice for its annual Summit in San Francisco this week.

Microsoft-Connected Smears Against FOSS

Syndicate content

More in Tux Machines

GNOME 3.30 Desktop to Introduce New App for Finding Free Internet Radio Stations

GNOME 3.30 is currently in heavy development, with a second snapshot expected to land this week, and the GNOME Project recently updated their future plans page for the upcoming releases with the inclusion of the Internet Radio Locator app, which could make its debut during this cycle. Internet Radio Locator is an open-source graphical application built with the latest GNOME/GTK+ technologies and designed to help users easily locate free Internet radio stations from various broadcasters around the globe. It currently supports text-based location search for a total of 86 stations from 76 world cities. Read more

Ryzen 7 2700 / Ryzen 7 2700X / Core i7 8700K Linux Gaming Performance With RX Vega 64, GTX 1080 Ti

With the Linux benchmarks of the Ryzen 7 2700 last week I included a few Linux gaming benchmarks, but for those evaluating CPU options for your next Intel/AMD Linux gaming system upgrade, here is a much more thorough set of benchmarks from a wide variety of OpenGL and Vulkan powered Linux games. The Ryzen 7 2700, Ryzen 7 2700X, and Core i7 8700K processors were tested for this Ubuntu gaming comparison while testing with both a Radeon RX Vega 64 and GeForce GTX 1080 Ti. Read more

Debian GNU/Linux 8 "Jessie" Will Reach End of Security Support on June 17, 2018

According to a security advisory posted by developer Moritz Muehlenhoff on the Debian-security-announce mailing list, the Debian GNU/Linux 8 "Jessie" operating system series will no longer receive regular security updates as of June 17, 2018. However, a limited number of packages will still be updated for a while. "This is an advance notice that regular security support for Debian GNU/Linux 8 (code name "jessie") will be terminated on the 17th of June," said Moritz Muehlenhoff. "As with previous releases additional LTS support will be provided for a reduced set of architectures and packages." Read more

Parrot 4.0 Ethical Hacking OS Debuts with MD Raid Support, Stable Sandboxed Apps

Powered by the latest Linux 4.16 kernel series, Parrot 4.0 is a major release of the GNU/Linux distribution designed for ethical hacking and penetration testing operations. It's the first to introduce stable, reliable support for sandboxed applications as an extra layer of security, and official Netinstall and Docker images. "Parrot on Docker gives you access to all the Parrot containers you need on top of Windows, Mac OS, or any other system supported by docker, no matter if it is just your laptop or a whole docker cluster running on an entire datacenter. You will always have access to all the parrot tools in all the isolated environments you need," said the devs. Read more