Language Selection

English French German Italian Portuguese Spanish

OSS

FOSS Databases

Filed under
OSS

WordPress 4.4.1 Updates for XSS (and 52 other issues)

Filed under
OSS
Security
Web

The first WordPress update of 2016 is out and like many other incremental updates, it is being triggered by a security vulnerability. The single security issue being patched in WordPress 4.4.1 is a cross site scripting vulnerability that could have potentially enabled a site compromised.wordpress

From a general usability and bug perspective there are 52 bugs that WordPress developers are addressing in the 4.4.1 update that spans multiple area of the popular open-source content management system including.

Read more

Social Justice Warriors Wreaking Havoc In Open Source Software

Filed under
OSS

Throughout 2015, social justice warriors were repelled on a number of fronts. Gaming. Sci-fi & fantasy writing. Reddit. One fight that hasn’t been covered yet — but which definitely should be — is the world of open source software development.

Read more

Hour of Code Volunteer: Kids See No Barriers to Open Source Coding

Filed under
OSS

In December, the Linux Foundation joined many organizations in support of Hour of Code (HoC). This program, which is sponsored by Code.org, provides children with a one-hour introduction to computer science using tutorials designed to explain code in a simple way and show that anyone can be involved. The program offers tools that both teachers and volunteers can use to present basic coding ideas to children. This year’s tutorials aimed to engage young coders using examples from Minecraft and Star Wars, and also featured Anna and Elsa from Frozen.

Read more

Also: Greenpeace makes 7 shifts toward open

Mycroft Releases Key AI Component as Open Source

Filed under
OSS

The Mycroft team has released the Adapt Intent Parser as open source, which is a piece of code that converts natural language into instructions that can be understood by a machine.

Why is this parser so important? There are at least a couple of reasons why Mycroft chose to release this important piece of code as open source. To make it clearer, the Adapt Intent Parser transforms what the user speaks into something that can be interpreted by an application on a device, like a phone or a desktop.

Read more

Does Open Source Have a Place in DevOps?

Filed under
OSS

Open source software (OSS) is generally considered to be an integral part of DevOps, and for a couple of good reasons. It has led to the rapid emergence of innovative tools to meet the requirements of those leading the automation charge, and has also made those tools freely available. DevOps practitioners can adopt solutions to try new ideas and approaches without going through the usual investment justification and procurement process, or even seeking management permission.

Read more

Also: From emergency fix to business backbone

2015 – Year of Open Source explosion

Filed under
OSS

Open source software – software freely shared with the world at large – is an old idea, dating back to the 1980s when Richard Stillman started preaching the gospel calling it free software. Then Linus Torvalds started working on Linux in the early 1990s. Today, Linux runs our lives. The Android operating system that runs so many Google phones is based on Linux. When you open a phone app like Twitter or Facebook and pull down all those tweets and status updates, you’re tapping into massive computer data centers filled with hundreds of Linux machines. Linux is the foundation of the Internet.

Read more

Fotoxx Open-Source Image Editor Gets Its First Release for 2016 with New Features

Filed under
GNU
Linux
OSS

Michael Cornelison or Kornelix, the developer of the Fotoxx open source image editor application for GNU/Linux operating systems proudly announced the release of the first Fotoxx version for 2016.

Read more

Leftovers: OSS

Filed under
OSS
  • FOSDEM and Devconf.cz trip

    As two years and year ago I plan to make conference combo: FOSDEM in Brussels and then Devconf.cz in Brno. Weekend after weekend. But this time I want to make it different.

    First I thought that will skip devconf.cz one. But this is quite important Fedora conference so checked how to make it cheaper that in previous years. And found out few deals and setup a trip which should be interesting.

  • Oracle fends off open source to stay top rated database

    Oracle is maintaining its place at the top of the database software rankings, according to new data that has been released by website DB-engines.

    The numbers show that the company is still successfully managing to hold off open source challengers, and ranks higher than MySQL and Microsoft SQL Server, despite its rating being slightly down from last month.

  • Android devs using Visual Studio now have an open source option [Ed: Windows only, proprietary SDK]

    Newly open-sourced Android++ tool is aimed at C/C++ developers looking to deploy speedy code on Android

  • Toyota, QNX And Others Adopt Ford’s SmartDeviceLink Platform For Connecting Mobile Apps And Cars
  • Christopher Allan Webber: Goodbye 2015, Hello 2016

    The reduced time spent coding on MediaGoblin proper has been deceptive, since most of the projects I've worked on have spun out of work I believe is essential for MediaGoblin's long-term success. I took a sabbatical from MediaGoblin proper mid-year to focus on two goals: advancing federation standards (and my own understanding of them), and advancing the state of free software deployment. (I'm aware of a whiff of yak fumes here, though for each I can't see how MediaGoblin can succeed in their present state.) I believe I have made a lot of progress in both areas. As for federation, I've worked hard in participating in the W3C Social Working Group, I have done some test implementations, and recently I became co-editor on ActivityPump. On deployment, much work has been done on the UserOps side, both in speaking and in actual work. After initially starting to try to use Salt/Ansible as a base and hitting limitations, then trying to build my own Salt/Ansible'esque system in Hy and then Guile and hitting limitations there too, I eventually came to look into (after much prodding) Guix. At the moment, I think it's the only foundation solid enough on which to build the tooling to get us out of this mess. I've made some contributions, albeit mostly minor, have begun promoting the project more heavily, and am trying to work towards getting more deployment tooling done for it (so little time though!). I'm also now dual booting between GuixSD and Debian, and that's nice.

  • Mayor Bowser Just Made DC's Economic Data Open-Source
  • How the Open Source Car Could Change the Auto Industry

    Show-stopping rims, subwoofers that make your license plate rattle, razor-sharp decals — custom car modifications that regular people can still do themselves are getting fewer and farther between, and even updates like these take considerable effort and skill and might be beyond the reach of most car owners. In the not-so-distant past, car owners who were so inclined could make all sorts of changes to their cars. Open an engine on a current model, though, and you have to practically be a technology expert to do anything. But what if all the technology, all the blueprints and patents, were readily available to everyone? What if, instead of purchasing a pre-made car manufactured by an industry veteran, you could set up a microfactory and actually build your own car? And, what if car manufacturers, rather than spending years and years and untold sums racing to be the first to discover and perfect the latest technologies, instead shared their findings, encouraging rapid development, the likes of which we can now only imagine?

  • How to build an open hardware amplifier in 5 steps

    ElectroSmash just released an open hardware guitar amplifier called the 1Wamp. Designed as a small and portable 1 watt amplifier loaded with all the features of big amps, the project was fully developed using only open source tools—like KiCAD, a design suite to create schematics and layouts in any platform.

OpenSSL’s teachable moment: Secure Shell key management in light of open source vulnerabilities

Filed under
OSS
Security

Imagine an Internet without encryption. Credit card numbers would flow in the clear from point to point. Social Security numbers and other personally identifiable information would be sitting ducks for any cyber criminal to make off with. And government secrets wouldn’t stay secret for long.

Read more

Syndicate content

More in Tux Machines

Today in Techrights

Android Leftovers

GNU/Linux on Desktop/Phone: System76, DeX, Librem

  • Pop!_OS Is Finally Here — System76’s Ubuntu-based Operating System For Developers
    The first ever stable release of Pop!_OS is finally here. You can go ahead and download it from this link. Don’t forget to share your feedback. Earlier this year in June, we reported that System76 is creating its own Linux distro called Pop!_OS.
  • Samsung DeX Promises to Bring the Linux PC Experience to Your Mobile Device
    After unveiling its next-generation Bixby 2.0 intelligent assistant, Samsung today announced that it plans to bring the Linux PC experience to the Samsung DeX ecosystem.
  • Steps toward a privacy-preserving phone
    What kind of cell phone would emerge from a concerted effort to design privacy in from the beginning, using free software as much as possible? Some answers are provided by a crowdfunding campaign launched in August by Purism SPC, which has used two such campaigns successfully in the past to build a business around secure laptops. The Librem 5, with a five-inch screen and radio chip for communicating with cell phone companies, represents Purism's hope to bring the same privacy-enhancing vision to the mobile space, which is much more demanding in its threats, technology components, and user experience. The abuse of mobile phone data has become a matter of worldwide concern. The capture and sale of personal data by apps is so notorious that it has been covered in USA Today; concerns over snooping contribute to the appeal of WhatsApp (which has topped 1.3 billion users) and other encrypted and privacy-conscious apps. But apps are only one attack vector. I got in touch with Todd Weaver, founder and CEO of Purism, to find out what the company is doing to plug the leaks in mobile devices.

Servers: DockerCon Coverage, MongoDB IPO

  • DockerCon EU 17 Panel Debates Docker Container Security
    There are many different security capabilities that are part of the Docker container platform, and there are a number of vendors providing container security offerings. At the DockerCon EU 17 conference in Copenhagen, Denmark, eWEEK moderated a panel of leading vendors—Docker, Hewlett Packard Enterprise, Aqua Security, Twistlock and StackRox—to discuss the state of the market. To date, there have been no publicly disclosed data breaches attributed to container usage or flaws. However, that doesn't mean that organizations using containers have not been attacked. In fact, Wei Lien Dang, product manager at StackRox, said one of his firm's financial services customers did have a container-related security incident.
  • DockerCon EU: Tips and Tools for Running Container Workloads on AWS
    Amazon Web Services wants to be a welcome home for developers and organizations looking to deploy containers. At the DockerCon EU conference here, a pair of AWS technical evangelists shared their wisdom on the best ways to benefit from container deployments. The terms microservices and containers are often used interchangeably by people. Abby Fuller, technical evangelist at AWS, provided the definition of microservices coined by Adrian Crockford, VP of Cloud Architecture at AWS and formerly the cloud architect at Netflix.
  • Docker CEO: Embracing Kubernetes Removes Conflict
    Steve Singh has ambitious plans for Docker Inc. that are nothing less than transforming the world of legacy applications into a modern cloud-native approach. Singh was named CEO of Docker on May 2 and hosted his first DockerCon event here Oct. 16-19. The highlight of DockerCon EU was the surprise announcement that Docker is going to support the rival open-source Kubernetes container orchestration system. In a video interview with eWEEK, Singh explained the rationale behind the Kubernetes support and provided insight into his vision for the company he now leads.
  • MongoDB's IPO Beats the Market Out of the Gate
    The folks at MongoDB raised a whole lot of money today in their debut on NASDAQ. Yesterday the open source company announced it was going to be asking $24 a share for the 8 million Class A shares it was letting loose in its IPO, which had some Wall Street investors scratching their heads and wondering if the brains at Mongo were suffering from some kind of undiagnosed damage. Analysts had been estimating an opening price of between $20-22 per share, and on October 6 the company had estimated an opening price in the range of $18-20.