Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Tuesday, 17 Oct 17 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Security: Updates, Accenture, Microsoft and More

Filed under
Security
  • Security updates for Wednesday
  • Accenture left a huge trove of highly sensitive data on exposed servers

    Technology and cloud giant Accenture has confirmed it inadvertently left a massive store of private data across four unsecured cloud servers, exposing highly sensitive passwords and secret decryption keys that could have inflicted considerable damage on the company and its customers.

  • Crypto Anchors: Exfiltration Resistant Infrastructure

    The obvious way to implement a tokenization service is to generate a random token and store a mapping of that token and a one-way hash of the sensitive piece of data.

    Unfortunately, the maximum number of possible SSNs is just under 1 billion, making it trivial for an attacker that downloads the database to brute-force them offline.

  • Detecting DDE in MS Office documents

    Dynamic Data Exchange is an old Microsoft technology that can be (ab)used to execute code from within MS Office documents. Etienne Stalmans and Saif El-Sherei from Sensepost published a blog post in which they describe how to weaponize MS Office documents.

  • Stack Overflow Considered Harmful?

    What proportion of Android apps in the Play store include security-related code snippets copied directly from Stack Overflow? Does the copied code increase or decrease application security?

  • ‘UK teen almost hacking US officials a serious concern for American security’

    It should be very concerning for the US security services that a teenager almost got to access to private information of top officials, including that of the CIA chief, as other hackers might actually do some real harm, Mark Chapman of the UK Pirate Party believes.

    British teenager Kane Gamble pleaded guilty to trying to hack top US officials’ personal computers.

    Gamble is autistic and was only 15 years old when he attempted to hack the computers of former CIA chief John Brennan and the head of security of the Obama administration. He was released on bail and is due to be sentenced by a British regional court in December.

Canonical Outs Important Linux Kernel Updates for All Supported Ubuntu Releases

Filed under
Ubuntu

Canonical released new kernel updates for all supported Ubuntu Linux releases, including Ubuntu 14.04 LTS (Trusty Tahr), Ubuntu 16.04 LTS (Xenial Xerus), and Ubuntu 17.04 (Zesty Zapus), fixing a total of five security vulnerabilities.

Read more

Endless OS Is First Linux Distro to Support Flatpak Apps from Flathub by Default

Filed under
OS

Endless Computers announced today on their Twitter account that Endless OS has recently become the first GNU/Linux distribution to enable support for Flatpak apps from Flathub by default with the latest release.

Read more

Lakka 2.1 RC5 released with improved Dolphin support and experimental ASUS TinkerBoard support

Filed under
GNU
Linux
Movies

We are proud to announce the release of Lakka 2.1 RC5!

This version required a lot of team work. We merged LibreELEC 8.2 Bêta changes in Lakka. RetroArch also got updated, as well as all the emulators and other libretro cores.

Ntemis added support for some Rockchip boards, including the ASUS Tinkerboard. These new images are still experimental.

Read more

Games: Sid Meier's Civilization VI, Reflection of Mine, Parkitect, JYDGE, Talos Principle VR, Argentum Age, Vulkan

Filed under
Gaming

Microsoft’s Windows Phone platform is dead, here’s why Tizen won’t face the same fate

Filed under
Linux
Microsoft

On the contrary, Samsung are currently the only ones making Tizen smartphones despite Tizen being an Open source platform. And the Korean giant haven’t dedicated their full resources to Tizen smartphones as they still are going very strong with their Android based Galaxy smartphone business. But still, Samsung have been actively promoting the Tizen OS to bring developers onboard to make apps for Tizen phones. Samsung has also hosted partner programs and even incentive programs to help indie developers to make a living out of their Tizen apps.

That is not all Samsung has done to promote Tizen app development, the company has also partnered with Microsoft itself to let C# developers build Tizen apps using .NET and the development is not limited to just Tizen smartphones. Developers can make use of .NET and Visual Studio Tools to build applications for Tizen TVs, wearables, etc.

Read more

NVIDIA 387.12 Vulkan vs. OpenGL Performance Across Multiple CPUs

Filed under
Graphics/Benchmarks

Published earlier this week was the Intel Core i3, i5, i7 With NVIDIA vs. AMD Radeon For Linux Gaming results that are quite interesting while in this article is looking at the OpenGL vs. Vulkan Linux gaming performance using NVIDIA's first-rate binary driver while also doing this graphics API/renderer comparison across the Intel Coffeelake processors from low-end to high-end.

Read more

Servers: Docker Competition Grows, Microsoft Diminishing Except in Parked Domains

Filed under
GNU
Linux
Server
Microsoft
  • Docker Raising New Funding as Container Competition Grows

    Container vendor Docker Inc is in the process of raising a new $75 million round of funding, as the company aims to grow its business and effectively compete against a growing array of different container and micro-services vendors.

    On Oct. 6, Docker Inc filed a disclosure with the U.S. Securities and Exchange Commission (SEC), revealing a few details about the in-progress funding round. The total offering amount for the equity funding round is listed in the SEC filing as $75 million, of which approximately $62 million has been sold.

  • September 2017 Web Server Survey [Ed: Microsoft increases for parked domains, probably paying (bribing?) again to game the numbers]

    While more than half of the websites in the survey are using Microsoft web server software, relatively few of these are active sites. Discounting link farms, domain holding pages and other automatically generated content, Microsoft accounts for only 7.3% of all active sites, while Apache leads with 44.9%, and nginx follows with 20.7%. Microsoft's active sites share has never exceeded Apache's, and ever since it peaked at 38% in early 2009, it has experienced a general decline.

Perl turns 30 and its community continues to thrive

Filed under
Development

Larry Wall released Perl 1.0 to the comp.sources.misc Usenet newsgroup on December 18, 1987. In the nearly 30 years since then, both the language and the community of enthusiasts that sprung up around it have grown and thrived—and they continue to do so, despite suggestions to the contrary!

Wall's fundamental assertion—there is more than one way to do it—continues to resonate with developers. Perl allows programmers to embody the three chief virtues of a programmer: laziness, impatience, and hubris. Perl was originally designed for utility, not beauty. Perl is a programming language for fixing things, for quick hacks, and for making complicated things possible partly through the power of community. This was a conscious decision on Larry Wall's part: In an interview in 1999, he posed the question, "When's the last time you used duct tape on a duct?"

Read more

Best Modern Open Source Code Editors For Linux

Filed under
Linux

Here’s a list of best code editors for Linux made for the 21st century. The best part is that all of them are open source software.
Read more

OSS: Streamlio, RPCS3, IoT, Hyperledger, AT&T ECOMP, Open Liberty

Filed under
OSS
  • Streamlio and Industry Leaders Launch OpenMessaging

    Streamlio today announced that it has joined with industry leaders Alibaba, Di Di, and Yahoo! to launch OpenMessaging, a standards initiative for messaging software, within the Linux Foundation. As a founding contributor, Streamlio will help drive the creation and adoption of vendor-neutral, open standards and tools for distributed messaging and ensure that these standards are fully supported within the Streamlio real-time solution, empowering the robust ecosystem of developers and users developing modern data applications.

  • Open Source Sony PlayStation 3 Emulator Now Supports Up To 10K Rendering

    Emulator fans who want to play PlayStation 3 games on their computer may be familiar with the RPCS3 emulator that has been around for quite some time. The emulator has been updated and now supports high resolution rendering. The emulator can allow you to play favorite PS3 games at much higher resolutions than the PS3 could handle, all the way up to 10K resolution.

  • How to Choose Your IoT Platform – Should You Go Open-Source?
  • Hyperledger and Linux to Offer a Massive Open Online Blockchain Course

    Hyperledger, the international blockchain collaboration of corporate giants and young startups in partnership with the Linux Foundation, is launching a new free Massive Open Online Course (MOOC) to meet the rapidly accelerating worldwide demand for blockchain education.

  • AT&T ECOMP Helps Lay Foundation for MEF-Linux Foundation Agreement Targeting Service Orchestration

    AT&T’s open source ECOMP initiative, which aims to bring a higher level of standardization to the automation of communications service creation and turn-up, is having a broad industry impact, as news today of a MEF-Linux Foundation agreement illustrates. The Linux Foundation and the Metro Ethernet Forum (MEF) announced a memorandum of understanding aimed at coordinating their efforts on service orchestration – and according to Arpit Joshipura, general manager of networking and orchestration for the Linux Foundation, ECOMP plays a big role on the Linux Foundation’s side of the agreement.

  • IBM Introduces Open Liberty, an Open Source Runtime for Java Microservices

    IBM demonstrated their continued dedication to open source recently with the introduction of Open Liberty, an open source implementation of their WebSphere Liberty application server. This new release supports the latest versions of both Eclipse MicroProfile and Java EE APIs for building microservices and cloud-native applications.

KDE/Qt: Qt2. KDAB, MyScript and Qt Company

Filed under
KDE
  • Qt2 ported for modern systems with cmake

    So, to continue my archeology process to revive old software, again i´m preparing my next step to revive KDE 2, on the so indirect baptized KDE restoration project.

    Despite KDE 1 last year, KDE 2 is a complete different beast and will take me some time to made it ready.

    The very base foundation, though is Qt2, the this time i decided do a better treatment to Qt to easier my further work. I based my work on clang compiler.

    Result is far from perfect, i decided publish on the very first stage of usage, but some strategies on the port still not here yet. but is perfectly usable, all examples compiles and runs.

  • KDAB, MyScript and Qt Company to create new, non-distractive input method for the Automotive Industry

    KDAB will be partnering with MyScript and The Qt Company to incorporate MyScript’s handwriting input technology into the Qt Automotive Suite. This integration will enable multimodal input capabilities using either the existing Qt Virtual Keyboard or a new handwriting input panel powered by MyScript technology.

  • KDE Plasma 5.11 Desktop Released With “Vault” — First Look Is Here

    The much awaited KDE Plasma 5.11 desktop release is finally here. This autumn’s Plasma feature release follows Plasma 5.10 and brings lots of new features. The major changes in this release deal with improved notifications, redesigned settings app (it’s added as an option), better task manager, etc.

Security: Accenture, Australian Cyber Security Centre, Voting and North Korea

Filed under
Security
  • Accenture's crown jewels found exposed in unsecured AWS buckets

    Global corporate consulting and management firm Accenture left at least four cloud-based storage servers unsecured and open to the public, the security company UpGuard has found.

    Exposed to the world were secret API data, authentication credentials, certificates, decryption keys, customer information and other data that could have been used to attack both the company and its clients.

  • Cyber terror? Ain't seen it yet, says Australian Cyber Security Centre

    Despite all the hyper-ventilation by politicians who paint grim scenarios of cyber Armageddon always being around the corner, Australia is yet to face malicious activity that would constitute a cyber attack, according to the Australian Cyber Security Centre.

  • The Race to Secure Voting Tech Gets an Urgent Jumpstart

    On Tuesday, representatives from the hacking conference DefCon and partners at the Atlantic Council think tank shared findings from a report about DefCon's Voting Village, where hundreds of hackers got to physically interact with—and compromise—actual US voting machines for the first time ever at the conference in July. Work over three days at the Village underscored the fundamental vulnerability of the devices, and raised questions about important issues, like the trustworthiness of hardware parts manufactured in other countries, including China. But most importantly, the report highlights the dire urgency of securing US voting systems before the 2018 midterm elections.

  • North Korean Hack [sic] of U.S. War Plans Shows Off Cyber Skills

Discovering Linux opened a window to the open source world

Filed under
Linux
OSS

Life happened, and it was not until the fall of 2013—two full years later—that I took the plunge and wiped my wife’s old laptop to install Ubuntu 13.10. What a thrill of adventure! I discovered LibreOffice, GIMP, Inkscape, and Blender (my personal favorite). I continued to dabble in Linux on the spare laptop, as I was still required to run Windows 7 on my ThinkPad while I was attending grad school. In the spring of 2015, my grandfather gave me a monetary gift, for which I was grateful. At long last, I was able to purchase my first true Linux laptop. I immediately went to the System76 website, which I had almost memorized from repeated viewing, to configure and order my Bonobo Extreme.

Read more

GNOME 3.28 Desktop Environment to Land March 14, 2018, Development Starts Soon

Filed under
GNOME

Now that the GNOME 3.26 desktop environment received its first point release and it already started landing in the repositories of various popular GNU/Linux distributions, it's time for the GNOME devs to concentrate their efforts on the next major release.

Read more

rTorrent A CLI Based Torrent Client For Linux

Filed under
Linux

​Unlike familiar graphical torrent clients such as Deluge and uTorrent, rTorrent is a completely text-based torrent application, designed to be used in a terminal or terminal multiplexer such as tmux.

Read<br />
more

today's leftovers

Filed under
Misc
Syndicate content

More in Tux Machines

Ubuntu, Debian, Fedora and elementary OS All Patched Against WPA2 KRACK Bug

As you are aware, there's a major WPA2 (Wi-Fi Protected Access II) security vulnerability in the wild, affecting virtually any device or operating system that uses the security protocol, including all GNU/Linux distributions. Read more

Pixel 2 and 2 XL review—The best Android phone you can buy

Welcome to year two of Google Hardware. In 2016, Google jumped into the Android hardware space with its first self-branded device, the Google Pixel. Google's software prowess shined on the Pixel 1, offering up exclusive features like the Google Assistant, the best Android camera thanks to advanced software processing, fast day-one OS updates and betas, and the smoothest, best-performing overall build of Android. The killer software package made it the best Android phone of the previous generation. The Pixel still represented Google's first foray into smartphone hardware, though, and it didn't offer anything special in the hardware department. It was a bland-looking iPhone clone. It had the same specs and basic design as everything else. The Pixel even skipped water resistance, which had become an expected feature at that price point. Google said it wanted to make its own hardware, but it didn't actually build special hardware. Read more

6 Best Open Source Alternatives to Microsoft Office for Linux

Looking for Microsoft Office in Linux? Here are the best free and open source alternatives to Microsoft Office for Linux. Read more

Today in Techrights