Netflix treats security ills with Stethoscope: Open-source self-probing tool
Netflix has released the source code of a web application called Stethoscope for evaluating the security of mobile and desktop computing devices.
The software, covered by the Apache 2.0 license, intended for employees of organizations that use a device management service. Netflix hopes that employees using the toolkit will learn from it and apply the app's recommendations to personal devices that are not under active management.
ReactOS 0.5 Open Source Windows-Compatible OS to Offer Windows Vista-Like Style
ReactOS 0.4.4 arrived last week as the latest maintenance update to the stable 0.4 series of the open source Windows-compatible operating system, bringing better rendering for many applications and initial printing support.
6 open source tools I use on my Windows machine
In most of the places I have worked there has been a centralized computer and application standard that was more or less mandatory for all employees. There are benefits of such an environment, which I will not go into in this piece, but for me, as an open source and Linux enthusiast, I try to use the tools I'm used to and like.
So, I immediately install my favorite applications when I receive a new standardized Windows-based work computer, something I have been lucky enough to be allowed to do.
- IKEA Lab Releases Open-Source Plans for DIY Spherical Garden [Ed: There is nothing "Open Source" about it. This is a clear case of openwashing and greenwashing.]
- The Changing Face of Open Source Licensing [Ed: Another one of those articles that parrot the Microsoft-connected, anti-GPL firm; that was their goal (to suppress adoption of the GPL), by their very own admission]
- Kubernetes is now generally available on Azure Container Service [Ed: Now people can pay Microsoft when you don't need to, just so that it can continue divide and conquer tactics.]
- mandoc-1.14.1 released
Basic Rules to Streamline Open Source Compliance For Software Development
Companies will almost certainly face challenges establishing their open source compliance program. In this series of articles, based on The Linux Foundation’s e-book, Open Source Compliance in the Enterprise, we discuss some of the most common challenges, and offer recommendations on how to overcome them.
Building an Open Source Eco-Village
People involved in the maker movement are coming up with all sorts ideas to both help the planet and improves people’s lives — such as this idea for an open source village.
ZFS appliance hosts the share, primarily accessed by windows clients, but have one CentOS server that also needs access to it (and it's a god damned snowflake).
So generalized working setup is://zfsappliance/share/project /A /B /C
And /etc/fstab entry://zfsappliance/share/project /mnt/project cifs user=user,password=pass,rw,exec,file_mode=0777,dir_mode=0777 0 0
Where A, B, ..., are separate projects. This all works as it should. The issue is when we try to add an additional project folder 'D' to the root of the share. The linux server can see that 'D' is a folder in that share, but it cannot even list the contents of it. Even setting (via windows) the permissions of 'D' to exactly that of 'B', we get 'permission denied'.
getcifsacl on the existing folders returns the expected ACLs, on the new folder it returns getxattr error: 13 (permission denied).
Have tried mount -a and mount -o remount /mnt/project as well as manually mounting in in a different spot with mount -v -t cifs -o user=user,password=pass //zfsappliance/share/project /mnt/test and it all results in the same issue:
A, B, and C are all accessible as they should be from the linux box while D remains unaccessible.
No errors are given when manually mounting and there are no errors in /var/log/messages or /var/log/samba/log.smbd.
Adding the utility user whose credentials are used to mount the share directly to the folder's permissions (via windows) allows access as expected, but not when it's just the group (which also contains the utility user) added as it should be and as it works on existing project folders A, B, C, etc..
Here's the thing:
The established workaround for this issue with this server has been to restart it. This causes the share to be mounted with correct permissions on new folders added at the root of the mounted share. That worked back when this was a smaller company working on one project at a time. We can no longer restart this server without significant downtime for the entire company as there is constant read/writes from the linux server to the share.
Is there some way to... trigger the mount to ask for updated permissions? Clear a cache?submitted by /u/nixthrowaway123123
Based on recent market products and driver support etc. It might be beneficial to have a running post for ideas on which video cards, CPUs etc would work best for someone looking to build a machine themselves.
I suppose this would be most useful for basing ideas around groups such as gaming vs hosting server vs image processing/pattern recognition etc
Thoughts?submitted by /u/hydraloo
- How to Install a CentOS 7.3 Minimal Server
- How to Install and Configure FTP Server in Ubuntu
- How to access shell or run external commands from within Vim
- How setting the TZ environment variable avoids thousands of system calls
- How To Build Linux Packages For Multiple Platforms Easily
- Quick Guide: How to perform automated kickstart linux installation.
- GnuPG – An Easy Way To Encrypt/Decrypt Files From Command Line in Linux
- Do we really need swap on modern systems?
- 8-bit Y'CbCr ought to be enough for anyone?
- Install and configure DKIM with Postfix on RHEL7
- features are faults redux
- How to install and configure Varnish cache on Ubuntu Linux 16.04 LTS
- Create a Shared Directory on Samba AD DC and Map to Windows/Linux Clients – Part 7
- Basic management of an Ubuntu Core installation
A brief intro to building apps with React Native
- Apache Kafka: A Primer
- Evolution of Business Logic from Monoliths through Microservices, to Functions
Java and Python FTP attacks can punch holes through firewalls
The Java and Python runtimes fail to properly validate FTP URLs, which can potentially allow attackers to punch holes through firewalls to access local networks.
On Saturday, security researcher Alexander Klink disclosed an interesting attack where exploiting an XXE (XML External Entity) vulnerability in a Java application can be used to send emails.
Microsoft: no plans to patch known bugs before March [Ed: Microsoft is keeping open 'back doors' that are publicly known about, not just secret ones]
Microsoft has no plans to issue updates for two vulnerabilities, one a zero-day and the other being one publicised by Google, before the scheduled date for its next round of updates rolls around in March.
The company did not issue any updates in February, even though it had been scheduled to switch to a new system from this month onwards.
It gave no reason for this, apart from saying: "This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today.
"After considering all options, we made the decision to delay this month’s updates. We apologise for any inconvenience caused by this change to the existing plan."
The Google-disclosed bug was made public last week, and is said to be a flaw in the Windows graphic device interface library that can be exploited both locally and remotely to read the contents of a user's memory.
Microsoft issues critical security patches, but leaves zero-day flaws at risk
Microsoft has patched "critical" security vulnerabilities in its browsers, but has left at least two zero-day flaws with public exploit code.
The software giant released numerous patches late on Tuesday to fix flaws in Adobe Flash for customers using Internet Explorer on Windows 8.1 and later, as well as Edge for Windows 10.
eWEEK: The 15th release of the open-source OpenStack cloud platform is now available, with better container services integration, improved cloud federation and an enhanced dashboard.
[Wine Staging] Release 2.2
Since the last release, we tested various games with the CSMT (command stream multithreading) feature enabled to identify remaining bugs and possible ways to improve performance. As a result, this release includes various speed optimizations, especially for DX10/11 games. Some functions, for example updating subresources, which previously required synchronization with the command stream thread, can now be done asynchronously. There might still be differences compared to Wine Staging 2.0, since some of the speed improvements from the original CSMT patchset contained bugs and have not been fixed / added back yet.
Wine-Staging 2.2 released with CSMT speed optimizations
The Wine team has put out another Wine-Staging release based on Wine 2.2, this new development release has some CSMT speed optimizations.
For those that don't know what CSMT is, it stands for "Commandstream multithreading" which should give you better performance in Wine.
Wine-Staging 2.2 Offers CSMT Speed Optimizations
Wine-Staging 2.2 is now available as the latest version of Wine that carries various testing/experimental patches re-based atop the latest Wine bi-weekly development snapshot.
Destinations & Dota VR Hub are now available on Linux
Valve have already put up Linux versions of both Destinations and The Dota VR Hub now that SteamVR is supported on Linux in beta.
Valve debuts developer build of SteamVR for Linux
Heads up, Linux fans who are maybe also VR developers (or vice versa): The folks at Valve Software have today released a very much still-in-development version of SteamVR that runs on Linux.
Valve launches SteamVR support for Linux
Valve has been giving Steam users Linux love since 2012, and it's not stopping with VR. The company just launched SteamVR for Linux, letting developers create Linux content for the HTC Vive VR headset, trackers and other hardware. The program is in beta, meaning developers must use an NVIDIA developer beta driver that's built on "Vulkan," the successor to OpenGL. You're limited to "direct" mode, meaning you can only display images on the headset and not a desktop display at the same time.
Valve Finally Brings SteamVR To Linux As A Developer Release
It was over four months ago now that Valve showed SteamVR running in Linux for the first time. Today, it’s finally launching the platform on the operating system, albeit in a limited form.
SteamVR comes to Linux as a development release, meaning it’s intended for content creators to start working on apps for the open-source OS, and not for regular Linux users to access. To that end, users must have opted into the public Beta for Steam or SteamVR to access it along with obtaining pre-release drivers. On Nvidia cards that means the 375.27.10 “Developer Beta Driver”, while AMD users will need a pre-release version of the radv driver. You’ll also need Unity 5.6 to actually create content through Linux.
Booming Android ad revenue shows it’s no longer the poor cousin
Advertising revenue flowing back to app developers from Android apps has exceeded the amount returned to developers by Apple for the first time.
Despite its lowly market share, iOS has long boasted of good returns from its app ecosystem, in terms of both purchases and ad revenue. Owners of Apple bling spend more and are worth more to advertisers. Google had been unable to translate traffic to ad dollars, even in a world where over 80 per cent of new devices run Android.
Jide's Remix Singularity OS will turn your Android phone into a PC
Jide, the company behind the Android-based Remix OS for PCs, is developing another version made for Android smartphones, but with a twist. Remix Singularity will work like a stock version of Android when used on a smartphone, but if you connect it to a PC monitor or big-screen TV, it will turn into a version of the PC-based Remix OS.
- Use Tasker to Enable Immersive Mode on Android Whenever You Want
- Using an Android watch with multiple Google Accounts
The LG Watch Sport just looks and feels like a “gadget” and not a “watch.” It harkens back to the days of those old Microsoft Spot watches (remember those?). Instead of reaching as broad a market as possible with the first full-featured Android Wear 2.0 watch, LG and Google have given us something with almost impossibly narrow appeal. This watch is almost exclusively for large-wristed athletic types whose fashion sense leans toward calculator watches. I found myself wanting to put it on just before I left for the gym, and itching to take it off the moment I got home.
Android Wear 2.0 deserves a better showcase watch than this. With any luck, another manufacturer will step in with a more universally acceptable design that at least supports Android Pay and has a heart-rate monitor.