Language Selection

English French German Italian Portuguese Spanish

November 2014

Systemd 217 Updated In Debian & Soon Making Its Way To Ubuntu 15.04

Filed under
Debian

Users of Debian and its derivatives can soon expect to find systemd 217.

Systemd 217 brings many features and is currently the latest systemd stable release. Systemd 217 brought its experimental user console daemon, support for job timeouts, logind enhancements, udev updates, KDBUS handling improvements, and a plethora of other work.

Read more

Arch-Based Manjaro Users Express Concern Over Update Strategy

Filed under
OS

While I've ran benchmarks of the Arch-based Manjaro Linux distribution in the past and found it a convenient way to play with Arch and overall a nice distribution, it seems for users running it day in and day out aren't entirely satisfied with the update strategy of Manjaro.

Manjaro's stable repository isn't frequently updated but the developers strive to update it about bi-weekly and by default there's no continual flow of fresh packages from Manjaro. Right now though Manjaro's stable repository hasn't been updated in over one month -- since 25 October -- and that includes no security fixes.

Read more

Ubuntu Touch to Receive Offiline GPS Navigation App Soon

Filed under
Ubuntu

One of the things that Ubuntu Touch will definitely need once it's launched on mobile devices is a solid navigation app and modRana seems to be the first that will make it.

Read more

Changing Limerick’s government services boosts open source

Filed under
OSS

The overhaul of government service delivery in Limerick, Ireland's third-largest city, proceeds in concert with the introduction of free and and open source software, says Bilauca Mihai, part of the change management team for Limerick, both the city and the county.

Read more

Leftovers: Software

Filed under
Software

Leftovers: Gaming

Filed under
Gaming

today's howtos

Filed under
HowTos

Raspberry Pi and Coder by Google for beginners and kids

Filed under
Linux

Coder is an experiment for Raspberry Pi, built by a small team of Googlers in New York. It converts a Raspberry Pi into a friendly environment for learning web programming. It is ideal for beginners and requires absolutely no experience with coding.

Read more

CuBox-i4Pro: A whole lotta Linux or Android for not a whole lotta cash

Filed under
Android
Linux
Reviews

I recently reviewed the Hummingboard, an excellent, low-priced single board computer that competes in the same market as the the Raspberry Pi. Recently the manufacturer of the Hummingboard, SolidRun, sent me one of their new products to check out: The CuBox-i4Pro.

Read more

Open Cloud Alliance Rallies Open Source Community

Filed under
OSS

To assist with maintaining the interoperability of open source software, IBM and Univention have formed the Open Cloud Alliance (OCA), a consortium that is dedicated to reducing the cost of open source interoperability of open source software deployed in cloud computing environments.

Read more

More in Tux Machines

FOSS in Crypto Projects and Crypto-currencies

Security and FUD Leftovers

  • Fwupd 1.3.8 Brings More Improvements For Firmware Updating On Linux Systems

    Red Hat's Richard Hughes has released Fwupd 1.3.8 as the latest version of this Linux utility for performing firmware updates of various system components. With the meteoric rise of Fwupd and LVFS, more Fwupd releases are having to deal with quirks and other peculiarities of different hardware components seeing Fwupd support and v1.3.8 is no different. Fwupd 1.3.8 adds a plug-in to support updating the power delivery controllers by Fresco Logic, a fix for Synaptics multi-stream transport devices, various EFI fixes/improvements, more parent devices are detected for different Lenovo USB hubs, support for GNUEFI file locations, and other fixes.

  • Cyber-gangs using SSH identities to sell on the black market [Ed: How to associate secure shell, SSH, with "black market", skull and bones, just because of machines that are already cracked because of something totally unrelated]

    Malware campaigns equipped with the capability to exploit powerful, hidden backdoors are becoming commoditised, researchers from Venafi have warned. The research shows several high-profile hacker campaigns are integrating the misuse of SSH machine identities capabilities into their attacks. Now, any attacker with access to the dark web can gain access to the same techniques that took down the Ukrainian power grid against every business and government agency. Malware can target common SSH machine identities used to access and automate Windows, Linux and MacOS in the enterprise and out to the cloud.

  • SAMM v2 – OWASP releases revamped security assurance framework

    A revamped version of OWASP’s Software Assurance Maturity Model (SAMM) adds automation along with maturity measurements to the open source security-related framework. OWASP SAMM v2 – released on Tuesday after three years of refinement – is geared towards helping organizations that develop software to travel down the path towards becoming more secure. The approach is based on a community-led open source framework that “allows teams and developers to assess, formulate, and implement strategies for better security which can be easily integrated into an existing organizational software development lifecycle”. [...] The OWASP SAMM community includes security knowledgeable volunteers from both businesses and educational organizations. The global community works to create “freely-available articles, methodologies, documentation, tools, and technologies”.

  • Smack: Some more busy nights and 12 bytes of IV

    Anu brought up the fact that the OMEMO XEP is not totally clear on the length of initialization vectors used for message encryption. Historically most clients use 16 bytes length, while normally you would want to use 12. Apparently some AES-GCM libraries on iOS only support 12 bytes length, so using 12 bytes is definitely desirable. Most OMEMO implementations already support receiving 12 bytes as well as 16 bytes IV.

More Openwashing Leftovers

Screencasts and Shows: ArcoLinux 20.2, Linux Action News and Open Source Security Podcast

  • ArcoLinux 20.2 Run Through

    In this video, we are looking at ArcoLinux 20.2.

  • Linux Action News 145

    The week was packed with major project releases, we go through each of them and tell you what stands out. Plus an update from Essential, and NetBSD's first big ask in ten years.

  • Open Source Security Podcast: Episode 183 - The great working from home experiment

    Josh and Kurt talk about a huge working from home experiment because of the the Coronavirus. We also discuss some of the advice going on around the outbreak, as well as how humans are incredibly good at ignoring good advice, often to their own peril. Also an airplane wheel falls off.