Language Selection

English French German Italian Portuguese Spanish

SUSE

Xfce 4.14 Lands in Tumbleweed

Filed under
GNU
Linux
SUSE

Ahoy! openSUSE Xfce team is pleased to announce that the long awaited Xfce 4.14 has been released for Tumbleweed.

After a long development cycle (4 years!), all of the core components and applications have been ported to GTK 3.

Among the main new features and improvements, the xfwm4 window manager has finally gained support for VSync, HiDPI, hardware GLX and various compositor improvements.

You can check out the neat new features in the official Xfce 4.14 tour and the official release announcement.

Read more

Richard Brown: Changing of the Guard

Filed under
SUSE

After six years on the openSUSE Board and five as its Chairperson, I have decided to step down as Chair of the openSUSE Board effective today, August 19.

This has been a very difficult decision for me to make, with reasons that are diverse, interlinked, and personal. Some of the key factors that led me to make this step include the time required to do the job properly, and the length of time I’ve served. Five years is more than twice as long as any of my predecessors. The time required to do the role properly has increased and I now find it impossible to balance the demands of the role with the requirements of my primary role as a developer in SUSE, and with what I wish to achieve outside of work and community. As difficult as it is to step back from something I’ve enjoyed doing for so long, I am looking forward to achieving a better balance between work, community, and life in general.

Serving as member and chair of the openSUSE Board has been an absolute pleasure and highly rewarding. Meeting and communicating with members of the project as well as championing the cause of openSUSE has been a joyous part of my life that I know I will miss going forward.

openSUSE won’t get rid of me entirely. While I do intend to step back from any governance topics, I will still be working at SUSE in the Future Technology Team. Following SUSE’s Open Source policy, we do a lot in openSUSE. I am especially looking forward to being able to focus on Kubic & MicroOS much more than I have been lately.

As I’m sure it’s likely to be a question, I wish to make it crystal clear that my decision has nothing to do with the Board’s ongoing efforts to form an independent openSUSE Foundation.

The Board’s decision to form a Foundation had my complete backing as Chairperson, and will continue to have as a regular openSUSE contributor. I have absolute confidence in the openSUSE Board; Indeed, I don’t think I would be able to make this decision at this time if I wasn’t certain that I was leaving openSUSE in good hands.

On that note, SUSE has appointed Gerald Pfeifer as my replacement as Chair. Gerald is SUSE’s EMEA-based CTO, with a long history as a Tumbleweed user, an active openSUSE Member, and upstream contributor/maintainer in projects like GCC and Wine.

Read more

Kata Containers Packages are Available officially in openSUSE Tumbleweed

Filed under
SUSE

Kata Containers is an open source container runtime that is crafted to seamlessly plug into the containers ecosystem.

We are now excited to announce that the Kata Containers packages are finally available in the official openSUSE Tumbleweed repository.

It is worthwhile to spend few words explaining why this is a great news, considering the role of Kata Containers (a.k.a. Kata) in fulfilling the need for security in the containers ecosystem, and given its importance for openSUSE and Kubic.

Read more

SUSE: Uyuni, openSUSE and Tumbleweed

Filed under
SUSE
  • openSUSE News: New 4.0.2 Version of Uyuni is Released

    Contributors of Uyuni Project have released a new version of Uyuni 4.0.2, which is an open-source infrastructure management solution tailored for software-defined infrastructure.

    Uyuni, a fork of the Spacewalk project, modernizing Spacewalk with SaltStack, provides more operating systems support and better scalability capabilities. Uyuni is now the upstream for SUSE Manager.

    With this release, Uyuni provides powerful new features such as monitoring, content lifecycle management and virtual machine management.

  • openSUSE Tumbleweed ? Review of the weeks 2019/31 & 32

    As you certainly know, there are more snapshots tested than we release in the end. In the last two weeks, for example, we tested 9 snapshots. Of those, only 4 made it to the mirrors and to you ? the users. During the last two weeks, these were snapshots 0726, 0730, 0805 and 0806.

  • Communities in the distrowatch.org top 20

    Only well-funded corporate sponsored Linux distributions (Fedora, Ubuntu, OpenSUSE) have all categories checked. That doesn’t mean that anyone is getting paid. I believe this means that employees are probably the chief contributors and that means there are more people putting in resources to help.

    Some distributions are “Pat’s distribution”. Pat’s group owns it and Pat doesn’t want a steering committee or any other say in how the distro works. Though contributions by means of bug reports may be accepted.

    A few distributions “outsource” resources to other distributions. Elementary allows Stack Exchange to provide their forum. Parrot Linux refers users to the Debian wiki. Mint suggests that you put in bug reports with the upstream provider unless it is a specific Mint create application.

    There are a few Linux distributions that leave me scratching my head. How is this in the top 20 distros on distrowatch? There’s nothing here and the forum, if there is one, is nearly empty. Who uses this?

  • Vagrant Boxes with openSUSE Tumbleweed – Check it Out!

    As part of the SUSE Developer Engagement, we recently kicked off the activity to automatically produce and validate Vagrant boxes for the openSUSE Tumbleweed distribution. The creation of Vagrant boxes for SUSE Linux Enterprise Server is currently work in progress. We will update you as soon as they are available for consumption.
    But for now, we are happy to announce that the infrastructure to automatically build, version and validate Vagrant box images is ready to use – and we are already producing Vagrant boxes for libvirt and Virtualbox – for openSUSE Tumbleweed.

Servers, SUSE, Red Hat and Fedora

Filed under
GNU
Linux
Red Hat
Server
SUSE
  • My Favorite Infrastructure

    PCI policy pays a lot of attention to systems that manage sensitive cardholder data. These systems are labeled as "in scope", which means they must comply with PCI-DSS standards. This scope extends to systems that interact with these sensitive systems, and there is a strong emphasis on compartmentation—separating and isolating the systems that are in scope from the rest of the systems, so you can put tight controls on their network access, including which administrators can access them and how.

    Our architecture started with a strict separation between development and production environments. In a traditional data center, you might accomplish this by using separate physical network and server equipment (or using abstractions to virtualize the separation). In the case of cloud providers, one of the easiest, safest and most portable ways to do it is by using completely separate accounts for each environment. In this way, there's no risk that a misconfiguration would expose production to development, and it has a side benefit of making it easy to calculate how much each environment is costing you per month.

    When it came to the actual server architecture, we divided servers into individual roles and gave them generic role-based names. We then took advantage of the Virtual Private Cloud feature in Amazon Web Services to isolate each of these roles into its own subnet, so we could isolate each type of server from others and tightly control access between them.

    By default, Virtual Private Cloud servers are either in the DMZ and have public IP addresses, or they have only internal addresses. We opted to put as few servers as possible in the DMZ, so most servers in the environment only had a private IP address. We intentionally did not set up a gateway server that routed all of these servers' traffic to the internet—their isolation from the internet was a feature!

    Of course, some internal servers did need some internet access. For those servers, it was only to talk to a small number of external web services. We set up a series of HTTP proxies in the DMZ that handled different use cases and had strict whitelists in place. That way we could restrict internet access from outside the host itself to just the sites it needed, while also not having to worry about collecting lists of IP blocks for a particular service (particularly challenging these days since everyone uses cloud servers).

    [...]

    Although I covered a lot of ground in this infrastructure write-up, I still covered only a lot of the higher-level details. For instance, deploying a fault-tolerant, scalable Postgres database could be an article all by itself. I also didn't talk much about the extensive documentation I wrote that, much like my articles in Linux Journal, walks the reader through how to use all of these tools we built.

    As I mentioned at the beginning of this article, this is only an example of an infrastructure design that I found worked well for me with my constraints. Your constraints might be different and might lead to a different design. The goal here is to provide you with one successful approach, so you might be inspired to adapt it to your own needs.

  • A Blunt Reminder About Security for Embedded Computing

    The ICS Advisory (ICSA-19-211-01) released on July 30th by the Cybersecurity and Infrastructure Security Agency (CISA) is chilling to read. According to the documentation, VxWorks is “exploitable remotely” and requires “low skill level to exploit.” Elaborating further, CISA risk assessment concludes, “Successful exploitation of these vulnerabilities could allow remote code execution.”
    The potential consequences of this security breech are astounding to measure, particularly when I look back on my own personal experiences in this space, and now as an Account Executive for Embedded Systems here at SUSE.

    [...]

    At the time, VxWorks was the standard go-to OS in the majority of the embedded production platforms I worked with. It was an ideal way to replace the legacy stove-piped platforms with an Open Architecture (OA) COTS solution. In light of the recent CISA warning, however, it is concerning to know that many of those affected systems processed highly-classified intelligence data at home and abroad.

  • Red Hat Recognized as a Leader by Independent Research Firm in Infrastructure Automation Platforms Evaluation [Ed: Forrester is not “Independent Research Firm”; It’s taking bribes to lie.]
  • Why Red Hat can take over the cloud sooner than you think
  • Red Hat Enterprise Linux 7.7: Final Full Support Update
  • Transport Layer Security version 1.3 in Red Hat Enterprise Linux 8

    TLS 1.3 is the sixth iteration of the Secure Sockets Layer (SSL) protocol. Originally designed by Netscape in the mid-1990’s to serve the purposes of online shopping, it quickly became the primary security protocol of the Internet. Now not limited just to web browsing, among other things, it secures email transfers, database accesses or business to business communication.

    Because it had its roots in the early days of public cryptography, when public knowledge about securely designing cryptographic protocols was limited, the first two iterations: SSLv2 and SSLv3 are now quite thoroughly broken. The next two iterations, TLS 1.0 and TLS 1.1 depend on the security of Message Digest 5 (MD5) and Secure Hash Algorithm 1 (SHA1).

  • Cute Qt applications in Fedora Workstation

    Fedora Workstation is all about Gnome and it has been since the beginning, but that doesn’t mean we don’t care about Qt applications, the opposite is true. Many users use Qt applications, even on Gnome, mainly because many KDE/Qt applications don’t have adequate replacement written in Gtk or they are just used to them and don’t really have reason to switch to another one.

    For Qt integration, there is some sort of Gnome support in Qt itself, which includes a platform theme reading Gnome configuration, like fonts and icons. This platform theme also provides native file dialogs, but don’t expect native look of Qt applications. There used to be a gtk2 style, which used gtk calls directly to render natively looking Qt widgets, but it was moved from qtbase to qt5-styleplugins, because it cannot be used today in combination with gtk3.

    For reasons mentioned above, we have been working on a Qt style to make Qt applications look natively in Gnome. This style is named adwaita-qt and from the name you can guess that it makes Qt applications look like Gtk applications with Adwaita style. Adwaita-qt is actually not a new project, it’s been there for years and it was developed by Martin Bříza. Unfortunately, Martin left Red Hat long time ago and since then a new version of Gnome’s Adwaita was released, completely changing colors and made the Adwaita theme look more modern. Being the one who takes care of these things nowadays, I started slowly updating adwaita-qt to make it look like the current Gnome Adwaita theme and voilà, a new version was released after 3 months of intermittent work.

  • Fedora Community Blog: Friday with Infra

    Friday with Infra is a new event done by CPE (Community Platform Engineering) Team, that will help potential contributors to start working on some of the applications we maintain. During this event members of the CPE team will help you to start working on those applications and help you with any issue you may encounter. At the end of this event you should be able to maintain the application by yourself.

SUSE and IBM/Red Hat Leftovers

Filed under
Red Hat
Server
SUSE
  • No More Sleepless Nights and Long Weekends Doing Maintenance

    Datacenter maintenance – you dread it, right? Staying up all night to make sure everything runs smoothly and nothing crashes, or possibly losing an entire weekend to maintenance if something goes wrong. Managing your datacenter can be a real drag. But it doesn’t have to be that way.

    At SUSECON 2019, Raine and Stephen discussed how SUSE can help ease your pain with SUSE Manager, a little Salt and a few best practices for datacenter management and automation.

  • Fedora Has Formed A Minimization Team To Work On Shrinking Packaged Software

    The newest initiative within the Fedora camp is a "Minimization Team" seeking to reduce the size of packaged applications, run-times, and other software available on Fedora Linux.

    The hope of the Fedora Minimization Team is that they can lead to smaller containers, eliminating package dependencies where not necessary, and reducing the patching foot-print.

  • DevNation Live: Easily secure your cloud-native microservices with Keycloak

    DevNation Live tech talks are hosted by the Red Hat technologists who create our products. These sessions include real solutions and code and sample projects to help you get started. In this talk, you’ll learn about Keycloak from Sébastien Blanc, Principal Software Engineer at Red Hat.

    This tutorial will demonstrate how Keycloak can help you secure your microservices. Regardless of whether it’s a Node.js REST Endpoint, a PHP app, or a Quarkus service, Keycloak is completely agnostic of the technology being used by your services. Learn how to obtain a JWT token and how to propagate this token between your different secured services. We will also explain how to add fine-grained authorizations to these services.

Mesa, ImageMagick, Plasma, Frameworks Update in Tumbleweed

Filed under
SUSE

There have been three openSUSE Tumbleweed snapshots released since last week.

The snapshots brought a single major version update and new versions of KDE’s Plasma and Frameworks.

ImageMagick’s 7.0.8.56 version arrived in snapshot 20190730 and added support for the TIM2 image format, which is commonly used in PlayStation 2 and sometimes in PlayStation Portable games. The snapshot also delivered an update for Mesa 3D Graphics Library with version 19.1.3 that mostly provided fixes for ANV and RADV drivers, as well as NIR backend fixes. File searching tool catfish 1.4.8 provided some fixes with directories and a fix running on Wayland. The GNU Compiler Collection 7 added a patch and fixed for a Link Time Optimization (LTO) linker plugin. The 9.0.1 glu, which is the OpenGL Utility library for Mesa, fixed a possible memory leak. The Linux Kernel was updated to 5.2.3; the new version made a few fixes for PowerPC and added Bluetooth for some new devices. Serval Python packages were updated in the snapshot. LLVM tools and libraries were updated in Tumbleweed with llvm8 8.0.1 but the changelog states not to run LLVM tests on PowerPC because of sporadic hangs. The 2.4.7 version of openvpn in the snapshot added support for tls-ciphersuites for TLS 1.3 and updated openvpn.keyring with public key downloaded from https://swupdate.openvpn.net/community/keys/security-key-2019.asc. A lengthy list of fixes were made to the VIM text editor in version 8.1.1741. Other packages updated in the snapshot were ucode-intel 20190618, xapps 1.4.8, ypbind 2.6.1 and zstd 1.4.1. The snapshot is trending as moderately stable with a rating of 79, according to the Tumbleweed snapshot reviewer.

Read more

SUSE displaces Red Hat @ Istanbul Technical University

Filed under
Red Hat
SUSE

Did you know the third-oldest engineering sciences university in the world is in Turkey? Founded in 1773, Istanbul Technical University (ITU) is one of the oldest universities in Turkey. It trains more than 40,000 students in a wide range of science, technology and engineering disciplines.

The third-oldest engineering sciences university selected the oldest Enterprise Linux company. Awesome match of experience! The university ditched the half-closed/half-open Red Hat products and went for truly open, open source solutions from SUSE.

Read more

GNOME Packages, More Updated in Tumbleweed This Week

Filed under
GNU
Linux
GNOME
SUSE

Two openSUSE Tumbleweed snapshots have been released since our last Tumbleweed update on Saturday.

The most recent snapshot, 20190723, updated Mozilla Firefox to version 68.0.1. The browser fixed the missing Full-Screen button when watching videos in full screen mode on HBO GO. The new 68 version enhanced the Dark Mode reader view to include darkening the controls, sidebars and toolbars. It also addressed several Common Vulnerabilities and Exposures (CVE). The snapshot provided an update to GNOME 3.32.4, which fixed an issue that led to some packages with multiple appdata files not correctly showing up on the updates page. The Guile programming language package update to 2.2.6 fixed regression introduced in the previous version that broke HTTP servers locale encoding. Hardware library hwinfo 21.67 fixed Direct Access Storage Devices (DASD) detection. A major 7.0 version of hylafax+ arrived in the snapshot. The Linux Kernel brought several new features with the 5.2.1 kernel and enhanced security for a hardware vulnerability affecting Intel processors. The open-source painting program Krita 4.2.3 version offered a variety of fixes including a copy and paste fix of the animation frames. A few libraries like libgphoto2, libuv and libva received update. There were also several Perl and Rubygem packages that were updated in the snapshot. The file manager for the Xfce Desktop Environment, thunar 1.8.8, fixed XML declaration in uca.xml and the 2.15 transactional-update package enable network during updates and allow updates of the bootloader on EFI systems. The snapshot is currently trending at a 93 rating, according to the Tumbleweed snapshot reviewer.

Read more

Nils Brauckmann, SUSE's CEO, Steps Down (The first of many goodbyes)

Filed under
SUSE

I have recently made the decision to retire as the SUSE CEO and subsequently to leave SUSE. I care very deeply for the SUSE business and its employees, and this difficult decision is based entirely on personal reasons. My step down from the SUSE CEO role will be effective August 5.
My decision comes at a positive point in time for SUSE, where the business has completed its journey to becoming standalone and has a solid foundation to continue to accelerate its success and growth as an independent company.
For me personally this means I will have more time to devote myself to other important things in my life.
In FY18, the SUSE business saw record-breaking revenues. This level of growth has only been realized through the whole SUSE Team showing huge commitment to working together to deliver great outcomes. I am extremely proud of what we have achieved collectively over the last eight years, and I have every confidence that SUSE will exceed all future expectations. I will naturally be following the SUSE journey closely during my retirement, and my positive wishes will always be with the company and all connected with it.
As we look to the future I am delighted and, of course, reassured to be passing the SUSE CEO baton to such a talented and accomplished leader as Melissa Di Donato. Melissa has an outstanding track record of growth, leadership and transformation in the tech sector, having enjoyed enormous success as the chief operating officer and chief revenue officer at SAP. Prior to SAP, she held senior executive positions at Salesforce and was recognized for her contribution to growing global organizations by winning the 2018 Digital Masters Award for Excellence in Commercial Management.

Read more

Syndicate content

More in Tux Machines

HP Linux Imaging & Printing Drivers Are Now Supported on Debian GNU/Linux 10.2

HP Linux Imaging and Printing (HPLIP) software, an open-source and free print, scan and fax driver solution for HP printers and scanners, has been updated today to version 3.19.12 for Linux-based operating systems. HPLIP 3.19.12 is here to add support for several new printers, including HP Color LaserJet Pro M256dn, HP Color LaserJet Pro M255dn, HP Color LaserJet Pro M256nw, HP Color LaserJet Pro M255nw, HP Color LaserJet Pro M256dw, HP Color LaserJet Pro M255dw, HP Color LaserJet Pro M155a, HP Color LaserJet Pro M156a, HP Color LaserJet Pro M155nw, HP Color LaserJet Pro M156nw, HP Color LaserJet Pro MFP M282nw, and HP Color LaserJet Pro MFP M284nw. Additionally, HP Color LaserJet Pro MFP M283fdn, HP Color LaserJet Pro MFP M285fdn, HP Color LaserJet Pro MFP M283fdw, HP Color LaserJet Pro MFP M285fdw, HP Color LaserJet Pro MFP M283cdw, HP Color LaserJet Pro MFP M285cdw, HP Color LaserJet Pro MFP M182n, HP Color LaserJet Pro MFP M184n, HP Color LaserJet Pro MFP M182nw, HP Color LaserJet Pro MFP M184nw, HP Color LaserJet Pro MFP M183fw, and HP Color LaserJet Pro MFP M185fw are also supported by the new version. Read more Also: HPLIP 3.19.12 Released with New Printers Support

AMD Radeon RX 5500 XT Linux Performance

AMD today is shipping the Radeon RX 5500 XT as the new sub-$200 Navi graphics card. This 7nm graphics card offers 22 compute units, 1408 stream processors, up to 5.6 TFLOPS of compute power, 4GB or 8GB GDDR6 video memory options, and built atop their modern RDNA architecture and supporting features in common with the RX 5700 series like PCIe 4.0 support. Here is a look at the initial Linux gaming performance of the AMD Radeon RX 5500 XT with various gaming benchmarks and Steam Play tests as well. The Radeon RX 5500 XT 4GB version is launching at $169 USD while the Radeon RX 5500 XT 8GB version will command $199 USD. These price points put them comparable to the current Radeon RX 580 / 590 retail cards. AMD markets the RX 5500 XT as offering 1.6x the performance-per-Watt of the original Polaris Radeon RX 480 and designed for 1080p gaming to go up against NVIDIA's GeForce GTX 1650 SUPER graphics card. Read more

KDE's December 2019 Apps Update

The release of new versions for KDE applications is part of KDE’s continued effort to bring you a complete and up-to-date catalog of fully-featured, beautiful and useful programs for your system. Available now are new versions of KDE’s file browser Dolphin; Kdenlive, one of the most complete open source video editors; the document viewer Okular; KDE’s image viewer, Gwenview; and all of your other favorite KDE apps and utilities. All of these applications have been improved, making them faster and more stable and they boast exciting new features. The new versions of KDE applications let you be productive and creative, while at the same time making use of KDE software easy and fun. We hope you enjoy all the novel features and improvements worked into all of KDE’s apps! Read more Also: KDE Applications 19.12 Open-Source Software Suite Released, Here's What's New KDE Applications 19.12 Released With Big Improvements To Kdenlive + Other KDE Programs

Games: Feral Interactive, Fantasy Strike, GNU/Linux as Gaming Platform

  • Seems like Feral Interactive may have a few surprises for Linux in 2020

    Porting studio Feral Interactive [Official Site] have already given Linux a lot of games and it sounds like more are coming. While this year they've already released Shadow of the Tomb Raider Definitive Edition, a Vulkan beta for Shadow of Mordor, Total War: THREE KINGDOMS and DiRT 4 plus plus big updates/expansions to Company of Heroes 2 and Total War: WARHAMMER II. Still to come is Life is Strange 2, which Feral previously teased to arrive sometime soon.

  • Fighting game Fantasy Strike adds full cross-platform online play with PC and Consoles

    The very pretty fighting game Fantasy Strike from Sirlin Games just got a great update, enabling cross-platform online play between Linux/macOS/Windows and the Nintendo Switch and Playstation 4 consoles. Apply to all online modes including Casual and Ranked, find a match should be a lot easier now. You can also challenge or spectate others from your in-game friends list, which also works across all platforms too as you can add people from any platform based on tags.

  • Looking towards other operating systems

    Learning a new operating system from scratch is a daunting experience for many people. Fortunately, there are a few Linux distributions that come with a Windows-like desktop environment such as a form of a star bar at the bottom. However, Windows and Linux operating on vastly different philosophies, to the way that they are organized to the way that the files are handled. Linux employs the traditional monolithic kernel and it provides a hierarchical view of the files. Because it is modular, most of the necessary drivers can be loaded and unloaded dynamically. One of the major appeals of Linux is that it is open-source, compared to Microsoft which is a closed and inaccessible environment. Windows is made for simple and out of the box use and directed toward inexperienced users, a reason why the OS has been adopted by so many people. Linux puts more emphasis on the user, who has the possibility of customizing the desktop environment to suit their needs. Windows also offer a few, but fairly limited customization options. The main reason why people avoid switching to Linux is their gaming habits. Linux is known for not playing well with most PC games. Most PC games are being developed with Windows as the main platforms with some companies providing Linux support sometime after the original release. Games that do not have a Linux release require third party compatibility applications to run Windows games. The major application that is used to play Windows games on Linux is Wine. The developers of Wine have specified that the software is not an emulator but more of a compatibility layer for Linux to run Windows programs, not just games. In the world of programming, Wine is considered a masterpiece and one of the greatest feats of open source development that allows most Windows binaries to run on Linux without relying on any of Microsoft’s dependencies. Most of the Wine resources are dedicated to running the complicated frameworks of various DirectX components. [...] Many people prefer to enjoy online gaming, especially casino games. The beauty of these games is that most are available and can be played directly in the browser. The default browser that Linux uses is Mozilla Firefox, which itself, is a powerful browser. Because online casinos are played directly in the browser, there is almost no difference between playing them on Linux and playing them in Windows. There are also casino games that can be downloaded with most of them being made to run only on Windows due to a large number of people using the OS. As mentioned before, to run most Windows software, players have the option to use WINE. However, since because playing the casinos using the browser, most people are better off sticking with that version. Many games from online roulette to poker, and other table games are available online. Almost all online casinos found online have the option to play instantly with no download required, which is why any OS that can run a browser is perfectly capable to run casino games. Linux has been around for a long time, but it was only in the last 10 years that people have started noticing the operating system becoming more friendlier and easy to learn. Besides the many desktop environments, customizability, community and growing compatibility of games, as well as more security, many have started the transition from Windows to Linux.