Language Selection

English French German Italian Portuguese Spanish

LXer

Syndicate content
Linux and Open Source news headlines
Updated: 33 min 31 sec ago

Shippable's Software

Tuesday 10th of July 2018 11:04:08 PM
What's interesting is that Shippable isn't targeting developers for the Internet of Things or smartphones, ARM's typical base, but is betting that the reduced instruction set architecture is on its way to having a big impact in data centers.

The aftermath of the Gentoo GitHub hack

Tuesday 10th of July 2018 09:49:48 PM
A password guess and five days offline have left not only Gentoo's GitHub admins, but all of us, with some things to think about.

With Many Eyeballs, Is Open Source Security Better?

Tuesday 10th of July 2018 08:35:28 PM
Back in 1999, Eric Raymond coined the term "Linus' Law," which stipulates that given enough eyeballs, all bugs are shallow.Linus' Law, named in honor of Linux creator Linus Torvalds, has for nearly two decades been used by some as a doctrine to explain why open source software should have better security. In recent years, open source projects and code have experienced multiple security issues, but does that mean Linus' Law isn't valid?

Getting started with Perlbrew

Tuesday 10th of July 2018 07:21:08 PM
What's better than having Perl installed on your system? Having multiple Perls installed on your system! With Perlbrew you can do just that. But why—apart from surrounding yourself in Perl—would you want to do that?read more

How to install OpenCV on Ubuntu 18.04

Tuesday 10th of July 2018 06:06:48 PM
This tutorial explains how to install OpenCV on Ubuntu 18.04.

6 open source cryptocurrency wallets

Tuesday 10th of July 2018 04:52:28 PM
Without crypto wallets, cryptocurrencies like Bitcoin and Ethereum would just be another pie-in-the-sky idea. These wallets are essential for keeping, sending, and receiving cryptocurrencies.read more

How to Check for Open Ports in Linux

Tuesday 10th of July 2018 03:38:07 PM
When you are troubleshooting networking issues in Linux, you will need to know which ports are open.

Display Weather Forecast In Your Terminal With Wttr.in

Tuesday 10th of July 2018 02:23:47 PM
wttr.in is a feature-packed weather forecast service that supports displaying the weather from the command line. It can automatically detect your location (based on your IP address), supports specifying the location or searching for a geographical location (like a site in a city, a mountain and so on), and much more. Oh, and you don't have to install it - all you need to use it is cURL or Wget.

15 open source applications for MacOS

Tuesday 10th of July 2018 01:09:27 PM
I use open source tools whenever and wherever I can. I returned to college a while ago to earn a master's degree in educational leadership. Even though I switched from my favorite Linux laptop to a MacBook Pro (since I wasn't sure Linux would be accepted on campus), I decided I would keep using my favorite tools, even on MacOS, as much as I could.Fortunately, it was easy, and no professor ever questioned what software I used. Even so, I couldn't keep a secret.read more

Linux top Command Tutorial for Beginners (8 Examples)

Tuesday 10th of July 2018 11:55:07 AM
While working on the Linux command line, there may be times when you'd want to check process related details, like which process is consuming CPU or memory the most? Well, there exists a command - dubbed top - that lets you do this easily. In this tutorial, we will discuss this tool using some easy to understand examples.

How to make the case for blockchain: 5 steps

Tuesday 10th of July 2018 10:22:56 AM
How to push past the hype and win organizational support and resources for blockchain projects

Welcoming Sunil Abraham Mozilla Foundation's New VP, Leadership Programs

Tuesday 10th of July 2018 09:08:36 AM
I’m thrilled to welcome Sunil Abraham as Mozilla Foundation’s new VP, Leadership Programs. Sunil joins us from The Center for Internet and Society, the most recent chapter in a 20 [he]#8230[/he] Read moreThe post Welcoming Sunil Abraham [he]#8211[/he] Mozilla Foundation’s New VP, Leadership Programs appeared first on The Mozilla Blog.

Linux Mint 19, ElementaryOS Juno, GIMP 2.10.4, Redcore Linux, SUSE Acquired | This Week in Linux 31

Tuesday 10th of July 2018 07:54:15 AM
on TWinL31: Linux Mint 19, ElementaryOS Juno, GIMP 2.10.4, Redcore Linux, SUSE Acquired, Kdenlive's Request for Beta Testing, EU Copyright Reform, Ubuntu Studio's Audio Production Guide and much more

Minimal Ubuntu for containers and clouds

Tuesday 10th of July 2018 06:39:55 AM
VIDEO: Canonical has a new Ubuntu release just for servers, containers, and clouds.

Chakra GNU/Linux Users Get the KDE Plasma 5.13 Treatment, Lots of Other Updates

Tuesday 10th of July 2018 05:25:35 AM
If you're using the Chakra GNU/Linux operating system on your personal computer, you can now update it to the latest KDE Plasma 5.13 desktop environment and corresponding KDE software applications and technologies.

Introduction to database joins with mariadb and mysql join examples

Tuesday 10th of July 2018 04:11:14 AM
In a relational database system the data is organized in tables, composed by rows and columns. Each row is an instance of the entity represented by the table, with the columns used as its properties. Relationships between tables are established by the use of foreign keys, and the statement with which we can perform queries that span over multiple tables it's called a join. In this tutorial we will see the different type of joins available when using MySQL or MariaDB.

Integration of CFSSL with the Lemur Certificate Manager

Tuesday 10th of July 2018 02:56:54 AM
This tutorial shows the integration of CFSSL with the Lemur certificate Manager. In the previous article on Lemur certificate manager, we have not used any third party root Certification Authority (CA) for the client certificates. Therefore, in this tutorial, PKI will be set up using CFSSL (Cloudflare's SSL) and integrated with the Lemur project.

Malware Found On The Arch User Repository (AUR)

Tuesday 10th of July 2018 01:42:34 AM
On June 7, an AUR package was modified with some malicious code, reminding its users that all user-generated packages should be checked before installation.

Signage-oriented Mini-STX SBC taps Ryzen V1000

Tuesday 10th of July 2018 12:28:14 AM
Sapphire has launched a Linux-friendly “FS-FP5V” SBC starting at $325 that features an AMD Ryzen V1000 SoC, as well as SATA III, 2x M.2, 4x DP++, 2x GbE, and 4x USB ports including a USB 3.1 Type-C. Sapphire, which makes AMD-based graphics cards and motherboards, has launched a 147.3 x 139.7mm Mini-STX (5?5-inch) form factor […]

How to upgrade to Linux Mint 19

Monday 9th of July 2018 11:13:54 PM
VIDEO: It's now possible to upgrade directly from Linux Mint 18.3 to Linux Mint 19. But, it[he]#039[/he]s not easy. Here[he]#039[/he]s you do it.

More in Tux Machines

OSS Leftovers

  • Four top open source SIEM tools you should know
    With open source SIEM tools, organizations can test out certain capabilities and reduce cost barriers before expanding their product investments. Depending on what functions you're interested in, there is a variety of software to choose from. [...] Another choice for open source SIEM tools is Apache Metron. ELK Stack is a general purpose log and data parsing tool; Apache Metron focuses squarely on security. Apache Metron provides four main capabilities. First, it offers long-term, cost-effective storage of telemetry data through its security data lake feature. Second, it features an extensible framework that collects data from a variety of sources and supports any future endpoints. Third, Metron performs normal SIEM tasks, such as data ingest and threat alerts. The fourth capability is threat intelligence driven by machine learning-based anomaly detection.
  • Open Your Own Front Page Using Firefox New Tab
    Did you know Firefox has a unique page full of great links and ideas curated just for you? In one simple click, we’ve made it faster and easier for you to find things that are important to you whenever you open a new tab in Firefox.
  • pfSense Gold Free with 2.4.4-RELEASE
    Starting with the upcoming release of pfSense® 2.4.4, all of the services previously offered under “pfSense Gold” will continue, but will be free to all pfSense users. Read on for more detail.
  • Google Fined by EU for Antitrust Violations, Qt Creator 4.7.0 Now Available, New ownCloud Version 10.0.9, pfSense Gold to Be Free with the 2.4.4 Release, Kobol Relaunches Helios4
    Netgate announces that pfSense Gold will be free with the 2.4.4 release, including all services previously offered under the pfSense Gold subscription, such as the pfSense Book and monthly online Hangouts (video conferences). In addition, AutoConfigBackup (ACB) also will be free and will conform to GDPR best practices. The 2.4.4 release is planned for September 2018.
  • Emacs & TLS
    A recent query about the status of network security (TLS settings in particular) in Emacs led to a long thread in the emacs-devel mailing list. That thread touched on a number of different areas, including using OpenSSL (or other TLS libraries) rather than GnuTLS, what kinds of problems should lead to complaints out of the box, what settings should be the default, and when those settings could change for Emacs so as not to discombobulate users. The latter issue is one that lots of projects struggle with: what kinds of changes are appropriate for a bug-fix release versus a feature release. For Emacs, its lengthy development cycle, coupled with the perceived urgency of security changes, makes that question even more difficult.
  • nanotime 0.2.2
    A new maintenance release of the nanotime package for working with nanosecond timestamps just arrived on CRAN.

Openwashing Latest

Security: Spectre V1, Gentoo, Google’s Servers and Denuvo DRM

  • Spectre V1 defense in GCC
  • Signing and distributing Gentoo
    The compromise of the Gentoo's GitHub mirror was certainly embarrassing, but its overall impact on Gentoo users was likely fairly limited. Gentoo and GitHub responded quickly and forcefully to the breach, which greatly limited the damage that could be done; the fact that it was a mirror and not the master copy of Gentoo's repositories made it relatively straightforward to recover from. But the black eye that it gave the project has led some to consider ways to make it even harder for an attacker to add malicious content to Gentoo—even if the distribution's own infrastructure were to be compromised. Unlike other distributions, Gentoo is focused on each user building the software packages they want using the Portage software-management tool. This is done by using the emerge tool, which is the usual interface to Portage. Software "packages" are stored as ebuilds, which are sets of files that contain the information and code needed by Portage to build the software. The GitHub compromise altered the ebuilds for three packages to add malicious content so that users who pulled from those repositories would get it. Ebuilds are stored in the /usr/portage directory on each system. That local repository is updated using emerge --sync (which uses rsync under the hood), either from Gentoo's infrastructure or one of its mirrors. Alternatively, users can use emerge-webrsync to get snapshots of the Gentoo repository, which are updated daily. Snapshots are individually signed by the Gentoo infrastructure OpenPGP keys, while the /usr/portage tree is signed by way of Manifest files that list the hash of each file in a directory. The top-level Manifest is signed by the infrastructure team, so following and verifying the chain of hashes down to a particular file (while also making sure there are no unlisted files) ensures that the right files are present in the tree.
  • Here’s How Hackers Are Using Google’s Servers To Host Malware For Free
  • Pirates Punish Denuvo-Protected Games With Poor Ratings

    Denuvo's anti-piracy technology is a thorn in the side of game pirates. While it has been defeated on several occasions recently, the strict anti-piracy measures have not been without consequence. According to new research, Denuvo has frustrated pirates to a point where they sabotage reviews on Metacritic, leading to significantly lower ratings for protected games.

Games: EXAPUNKS, Minecraft, The Station, Chicken Assassin: Reloaded, Stack Gun Heroes