Language Selection

English French German Italian Portuguese Spanish

May 2016

today's leftovers

Filed under
Misc

Red Hat News

Filed under
Red Hat

Linux Devices

Filed under
Linux

Leftovers: OSS

Filed under
OSS
  • Quantifying Benefits of Network Virtualization in the Data Center

    Modern data centers have increased significantly in scale and complexity as compute and storage resources become highly virtualized. The rise of the DevOps style of application deployment means that data center resources must be agile and respond rapidly to changing workload requirements. Data center network technologies have been challenged to keep up with these rapidly evolving application requirements.

  • Apache Zeppelin Joins Several Other Projects Gaining Top-Level Status

    As we've been reporting, The Apache Software Foundation, which incubates more than 350 open source projects and initiatives, has been elevating a lot of interesting new tools to Top-Level Status recently. The foundation has also made clear that you can expect more on this front, as graduating projects to Top-Level Status helps them get both advanced stewardship and certainly far more contributions.

    Only a few days ago, the foundation announced that a project called TinkerPop has graduated from the Apache Incubator to become a Top-Level Project (TLP). TinkerPop is a graph computing framework that provides developers the tools required to build modern graph applications in any application domain and at any scale. Now, it has announced that Apache Zeppelin has graduated as well. Zeppelin is a web-based notebook that enables interactive data analytics.

  • 6 Open Source Operating Systems for the Internet of Things (IoT)

    Whether you are small to large enterprises, IoT is one of the useful technology that can help you to be connected on-the-go.

  • 6 open source architecture projects to check out

    The world of architecture doesn't change as quickly as software, but architects are still finding new ways to share innovative designs and ideas.

    The open source architecture movement aims to make architectural designs, drawings, 3D renderings, and documentation freely available for integration into other projects under open source licenses. It owes much of its growth to the growing popularity of the maker movement, DIY culture, 3D printing, and CNC machines, as well as support from architects like Alejandro Aravana.

  • Yorubaname.com has gone opensource, codebase now on GitHub

    Online dictionary for yoruba names, YorubaName, has now made its backlog accessible to the public. In a post on their blog, the guys at YorubaName announced that the website codebase is now on GitHub.

  • A New Version of Rust Hits the Streets

    Version 1.9 of the Rust programming language has been released. Rust is a new language with a small but enthusiastic community of developers.

  • Here's how you can make a career in OpenStack

    OpenStack is one of the biggest open source movements. It is a free and open-source software platform for cloud computing, mostly deployed as an infrastructure-as-a-service (IaaS). The software platform consists of interrelated components that control hardware pools of processing, storage, and networking resources throughout a data centre.

    According to the official website, hundreds of the world's largest brands rely on OpenStack to run their businesses every day, reducing costs and helping them move faster. OpenStack has a strong ecosystem globally.

  • Compatibility before purity: Microsoft tweaks .NET Core again [Ed: Microsoft lied about .NET going Open Source; just forked it into Open Core version]

    Microsoft's open source fork of the .NET platform, called .NET Core, will be modified for better compatibility with existing applications, says Program Manager Immo Landwerth in a recent post.

  • EMC Ships Open Source Tool for Cloud and IoT Devices
  • Watch Benjamin Hindman Co-Creator of Apache Mesos Speak Live Tomorrow at MesosCon [Ed: Microsoft proxy in a sense]
  • MesosCon Preview: Q&A with Twitter’s Chris Pinkham
  • How to secure your open source code [Ed: more marketing nonsense of Black Duck]
  • Luxembourg launches open data portal

    The Grand Duchy of Luxembourg officially launched its national open data portal data.public.lu on April 8th. This portal, supported by Digital Luxembourg, the government agency in charge of digital affairs in the country, was presented during the Game of Code hackathon.

  • Denmark to accelerate government digitisation

    Open standards

    The existing shared solutions are to be adopted by all authorities and public sector institutions where relevant, according to a presentation in English. “Shared solutions need to be stable, secure and user-friendly, they will also be easy to implement because the infrastructure is based on open standards.”

    The strategy, an agreement involving the government, regions and municipalities, was announced on 12 May. It includes 33 initiatives, which among other things deal with ease of use, reuse of data, IT architecture, growth, security and digital skills, DIGST says.

Licensing and Coding

Filed under
Development
Legal
  • The Oracle v. Google Suit is Still an Anti-Open Move That Shouldn't Have Happened

    All the way back in 2010, when Oracle filed a complaint for patent and copyright infringement against Google regarding parts of the Java code found in Google's Android mobile OS, I wrote a post calling the move "the anti-open move of the year." Fast-forward to today, and in the Oracle v. Google trial that just concluded, a jury returned a verdict in Google's favor. It basically concluded that Oracle's suit against Google, claiming that the use of Java APIs in Android violated copyright law, was bunk.

    Now, in an op-ed piece for Ars Technica, Annette Hurst, an attorney who represented Oracle, equates the jury's decision with the death of open source.

    [...]

    Hurst makes a good point that dual licensing models are increasing, with many open source projects available for free, while commercial versions, often including support, come at a cost. But the Oracle suit originated because Oracle essentially perceived itself as owning a moat around Java that didn't really exist.

    [...]

    Indeed, one of the lasting images of this long running legal skirmish is going to be Oracle behaving in a decidedly anti-open fashion. It may have been wiser for Oracle to simply let this one go.

  • Here’s how to check if software license is open source

    The Open Source Initiative (OSI), the steward of the Open Source Definition (OSD), announced today it has created a machine readable publication of OSI approved licenses.

    According to the Initiative, the API will allow third parties to ‘become license-aware’, giving businesses everywhere means to determine if a license is Open Source or not.

  • 3 Things Infrastructure as Code is Not

    The role of the network engineer is changing. This is not a result of DevOps, although some would claim it is. As DevOps takes center stage in organizations, it can seem like network engineers are being asked to become developers.

    There have been a number of talks discussing this, some of which have surfaced at Interop Las Vegas. The shift has been Infrastructure as Code (IaC), which was fundamental to the start of the DevOps movement. So maybe you could say this is caused by DevOps.

  • Introducing Blue Ocean: a new user experience for Jenkins

    While this project is in the alpha stage of development, the intent is that Jenkins users can install Blue Ocean side-by-side with the Jenkins Classic UI via a plugin.

    Not all the features listed on this blog are complete but we will be hard at work over the next few months preparing Blue Ocean for general use. We intend to provide regular updates on this blog as progress is made.

    Blue Ocean is open source today and we invite you to give us feedback and to contribute to the project.

Security Leftovers

Filed under
Security
  • Security updates for Tuesday
  • Security challenges for the Qubes build process

    Ultimately, we would like to introduce a multiple-signature scheme, in which several developers (from different countries, social circles, etc.) can sign Qubes-produced binaries and ISOs. Then, an adversary would have to compromise all the build locations in order to get backdoored versions signed. For this to happen, we need to make the build process deterministic (i.e. reproducible). Yet, this task still seems to be years ahead of us. Ideally, we would also somehow combine this with Intel SGX, but this might be trickier than it sounds.

  • Katy Perry’s Twitter Account With 90 Million Followers Hacked

    Notably, with 90 million followers, Katy Perry is the most followed person on the platform.

FOSS Events (LibrePlanet, OSCON)

Filed under
GNU
OSS
  • LibrePlanet conference videos and slides online: Edward Snowden, Richard Stallman, Karen Sandler, and more

    Tuesday, May 31, 2016 – The Free Software Foundation (FSF) today announces that recordings and slides from its LibrePlanet 2016 free software conference are now available online.

    LibrePlanet 2016: Fork the System was held in the Massachusetts Institute of Technology's Stata Center on March 19 and 20, 2016. Video for the opening keynote with NSA whistleblower Edward Snowden and dozens more sessions from the conference – over 25 hours of free software ideas – are available on the FSF's instance of GNU MediaGoblin, a free software media publishing platform that is a decentralized replacement to sites like YouTube and Flickr.

  • Women Dominate 2016’s O’Reilly Open Source Awards

    In an illustration of the value of diversity, four out of five of the recipients presented with O’Reilly Open Source Awards at this year’s OSCON were women.

GNU Astronomy Debut

Filed under
GNU
  • GNU Astronomy Utilities is released

    The first public release of the GNU Astronomy Utilities (Gnuastro, version 0.1) tarball is now available for download, see below for more details. Gnuastro is an official GNU package consisting of a set of utilities, or executable programs (listed below), for astronomical data manipulation and analysis directly from the command-line (no mini-environment) and satisfying the GNU Coding Standards.

  • Gnuastro: GNU Gets Into Astronomy

    Gnuastro is the latest GNU Project.

    Gnuastro v0.1 was released today as the first public release of this package, which stands for the GNU Astronomy Utilities. Gnuastro contains utilities for astronomical data manipulation and analysis via the command-line.

Linux Lite 3.0 Final Released

Filed under
GNU
Linux

Linux Lite 3.0 Final is now available for download. A lot has changed since Series 2. We have a new Login Manager, new Boot Theme, Lite Software has had an overhaul, new System Theme (Arc), we've added Share Hardware Configuration (Lite Info), Folder access from the Menu and Upgrades are now automated and seamless in Series 3. In addition, there has been a lot of bug fixes and adjustments since the Beta release, thanks again for your feedback.

Read more

More in Tux Machines

GNOME and Fedora

  • RFC: Integrating rsvg-rs into librsvg
    I have started an RFC to integrate rsvg-rs into librsvg. rsvg-rs is the Rust binding to librsvg. Like the gtk-rs bindings, it gets generated from a pre-built GIR file.
  • 1+ year of Fedora and GNOME hardware enablement
    A year and a couple of months ago, Christian Schaller asked me to pivot a little bit from working full time on Fleet Commander to manage a new team we were building to work on client hardware enablement for Fedora and GNOME with an emphasis on upstream. The idea was to fill the gap in the organization where nobody really owned the problem of bringing up new client hardware features vertically across the stack (from shell down to the kernel), or rather, ensure Fedora and GNOME both work great on modern laptops. Part of that deal was to take over the bootloader and start working closer to customers and hardware manufacturing parnters.
  • Fedora Atomic Workstation: Works on the beach
    My trip is getting really close, so I decided to upgrade my system to rawhide. Wait, what ? That is usually what everybody would tell you not to do. Rawhide has this reputation for frequent breakage, and who knows if my apps will work any given day. Not something you want to deal with while traveling.
  • 4 cool new projects to try in COPR for February

Why You Shouldn’t Use Firefox Forks (and Proprietary Opera)

  • Why You Shouldn’t Use Firefox Forks Like Waterfox, Pale Moon, or Basilisk
    Mozilla Firefox is an open source project, so anyone can take its code, modify it, and release a new browser. That’s what Waterfox, Pale Moon, and Basilisk are—alternative browsers based on the Firefox code. But we recommend against using any of them.
  • Opera Says Its Next Opera Release Will Have the Fastest Ad Blocker on the Block
    Opera Software promoted today its upcoming Opera 52 web browser to the beta channel claiming that it has the faster ad blocker on the market compared to previous Opera release and Google Chrome. One of the key highlights of the Opera 52 release will be the improved performance of the built-in ad blocker as Opera claims to have enhanced the string matching algorithm of the ad blocker to make it open web pages that contain ads much faster than before, and, apparently than other web browsers, such as Chrome.

Graphics: Glxinfo, ANV, SPIR-V

  • Glxinfo Gets Updated With OpenGL 4.6 Support, More vRAM Reporting
    The glxinfo utility is handy for Linux users in checking on their OpenGL driver in use by their system and related information. But it's not often that glxinfo itself gets updated, except that changed today with the release of mesa-demos-8.4.0 as the package providing this information utility. Mesa-demos is the collection of glxinfo, eglinfo, glxgears, and utilities related to Mesa. With the Mesa-demos 8.4.0 it is predominantly glxinfo updates.
  • Intel ANV Getting VK_KHR_16bit_storage Support Wrapped Up
    Igalia's Jose Maria Casanova Crespo sent out a set of patches today for fixes that allow for the enabling of the VK_KHR_16bit_storage extension within Intel's ANV Vulkan driver. The patches are here for those interested in 16-bit storage support in Vulkan. This flips on the features for storageBuffer16BitAccess, uniformAndStorageBuffer16BitAccess, storagePushConstant16 and the VK_KHR_16bit_storage extension. This support is present for Intel "Gen 8" Broadwell graphics and newer. Hopefully the work will be landing in Mesa Git soon.
  • SPIR-V Support For Gallium3D's Clover Is Closer To Reality
    It's been a busy past week for open-source GPU compute with Intel opening up their new NEO OpenCL stack, Karol Herbst at Red Hat posting the latest on Nouveau NIR support for SPIR-V compute, and now longtime Nouveau contributor Pierre Moreau has presented his latest for SPIR-V Clover support. Pierre has been spending about the past year adding SPIR-V support to Gallium3D's "Clover" OpenCL state tracker. SPIR-V, of course, is the intermediate representation used now by OpenCL and Vulkan.

Security: Updates, Tinder, FUD and KPTI Meltdown Mitigation

  • Security updates for Friday
  • Tinder vulnerability let hackers [sic] take over accounts with just a phone number

    The attack worked by exploiting two separate vulnerabilities: one in Tinder and another in Facebook’s Account Kit system, which Tinder uses to manage logins. The Account Kit vulnerability exposed users’ access tokens (also called an “aks” token), making them accessible through a simple API request with an associated phone number.

  • PSA: Improperly Secured Linux Servers Targeted with Chaos Backdoor [Ed: Drama queen once again (second time in a week almost) compares compromised GNU/Linux boxes to "back doors"]
    Hackers are using SSH brute-force attacks to take over Linux systems secured with weak passwords and are deploying a backdoor named Chaos. Attacks with this malware have been spotted since June, last year. They have been recently documented and broken down in a GoSecure report.
  • Another Potential Performance Optimization For KPTI Meltdown Mitigation
    Now that the dust is beginning to settle around the Meltdown and Spectre mitigation techniques on the major operating systems, in the weeks and months ahead we are likely to see more performance optimizations come to help offset the performance penalties incurred by mitigations like kernel page table isolation (KPTI) and Retpolines. This week a new patch series was published that may help with KPTI performance.