Language Selection

English French German Italian Portuguese Spanish

September 2017

DragonFlyBSD 5.0 Branched As The Next Release

Filed under
BSD

We've known a new DragonFlyBSD release was being worked on for release soon. That release has now been branched, the first release candidate tagged, and it's being marked as version 5.0.

Succeeding DragonFlyBSD 4.8 will be DragonFlyBSD 5.0. 5.0.0-rc1 was tagged on Friday night while the code is branched for the 5.0 release undertaking. On Git master is now the DragonFly 5.1 development version.

Read more

Our Last Time Benchmarking Ubuntu 32-bit vs. 64-bit

Filed under
Graphics/Benchmarks

Over the years we have looked at the 32-bit vs. 64-bit x86 Linux performance for curiosity sake, showing how x86_64 can be much faster than i686, and just providing these values for a reference look and if for some reason are still running 32-bit Linux software including the OS while the hardware is 64-bit capable. For this final benchmarking look are fresh numbers when doing a clean install of Ubuntu 17.10 32-bit compared to Ubuntu 17.10 64-bit.

Read more

today's leftovers

Filed under
Misc
  • Linux To Get "Extended LTS" Releases, Kernel Support For Six Years

    Linux right now offers a "Long Term Support" release where support for the kernel branch is maintained for two years, which is nice compared to kernel releases usually dropping maintenance around N+1.1 after the release. But moving forward, Linux LTS releases will now be maintained for six years.

    The two-year Linux LTS cycle is suitable for many users, but one case where it's not long enough is the lifecycle of a smartphone and the status quo is many Android phones out there are still running on Linux kernels no longer receiving bug/security fixes. Via Google's Project Treble and cooperation with the upstream Linux community, that two year process is now being extended to six years.

  • Mesa 17.2.2 Set For Release Next Week

    For those not comfortable riding Mesa Git, Mesa 17.2.2 is set to be released early next week as the newest stable update for the open-source 3D graphics driver stack.

    Point release manager Juan Suarez Romero of Igalia is planning on releasing Mesa 17.2.2 next Monday, 2 October, if all goes well. So far there are 43 patches queued and a handful of more patches still possibly landing. Friday marked the release candidate for this newest point release.

  • SELinux (Security-Enhanced Linux)

    SELinux, or Security-Enhanced Linux, is a part of the Linux security kernel that acts as a protective agent on servers. In the Linux kernel, SELinux relies on mandatory access controls (MAC) that restrict users to rules and policies set by the system administrator. MAC is a higher level of access control than the standard discretionary access control (DAC), and prevents security breaches in the system by only processing necessary files that the administrator pre-approves.

  • Alpine Linux

    Alpine Linux is a small, security-oriented, lightweight Linux distribution based on the musl libc library and BusyBox utilities platform instead of GNU. It operates on bare-metal hardware, in a VM or even on a Raspberry Pi. The distribution is noncommercial and evolved for embedded and server-based workloads, although desktop OS use is possible.

  • Red Hat Inc. Is on a Roll
  • Attend a Fedora Women Day 2017 event

    Fedora Women Day (FWD) is a worldwide series of events initiated by the Fedora Diversity Team. The events are dedicated to female contributors of the Fedora Project. During this day of celebration, local communities gather to present the accomplishments of women in the Fedora Project and thank them. FWD is also a great chance to promote the participation of more women and raise awareness about the gender gap in tech communities. Furthermore, FWD and events like it show the importance of diversity in open source projects such as Fedora.

  • Keep the Trump administration out of your private life with Tails 3.2 Linux distribution

    As we learned from the great patriot Edward Snowden, the US government can and will spy on you. Not caring about that invasion of privacy, and dismissing it with the flawed statement of "I have nothing to hide," is flat out idiotic. Regardless of what you do on your computer, or on the internet, your privacy is sacred, and quite frankly, it was earned by our forefathers that fought for our freedoms.

    If you do care about your privacy, and you want to keep the heavy-handed Trump administration or other government agency out of your private business, please know you aren't powerless. There is a specific Linux-based operating system that aims to protect your privacy from corrupt governments and other evildoers, such as hackers and spies. Called "Tails," it always runs in a live environment from a DVD or flash drive. In other words, especially with an optical disk, it will help to hide your footprints. Today, version 3.2 sees release.

Servers: Kubernetes 1.8, Blockchain, Microservices, Clear Linux

Filed under
Server
  • Kubernetes 1.8 Improves Security With Role-Based Access Control

    Version 1.8 of the open-source Kubernetes container orchestration and management platform is now available, providing features that improve both scalability and security.

    Kubernetes 1.8, released on Sept. 28, is the third major milestone release for Kubernetes in 2017 and follows the 1.7 update that debuted in June. The Kubernetes project was originally started by Google and has been managed as a Cloud Native Computing Foundation (CNCF) effort since July 2015.

  • Blockchain skills: Don't Try to Block the Chain

    Blockchain technology is on the rise. Some might presume Bitcoin is the reason behind it. While it was developed for the digital currency, developers are finding other uses of blockchain technology. Most prominently is the open source project Ethereum. The use of Ethereum has brought about smart contracts, which have proven to be quite functional within the financial industry. With its decentralized structure, blockchain technology could be a paradigm shift with vast boundaries.

  • DevOps Jobs: 5 must-reads for job seekers, hiring managers
  • Tools and Practices for Documenting Microservices
  • Clear Linux Can Run On AMD's EPYC Platform With Competitive Performance

    As part of our ongoing AMD EPYC Linux benchmarking, I've been working this week on a cross-distribution GNU/Linux comparison followed by some BSD testing... Of course, I couldn't help but to see if Intel's performance-oriented Clear Linux distribution would run on the AMD EPYC server.

OSS: Code for NFV (OPNFV), Code for '3D Selfies', Code for Beeline and More

Filed under
OSS
  • Network Functions Virtualization: All Roads Lead to OPNFV

    Previously in our discussion of the Understanding OPNFV book, we provided an introduction to network functions virtualization (NFV) and explored the role of OPNFV in network transformation. We continue our series with a look at chapters 4 and 5, which provide a comprehensive description of the various open source NFV projects integrated by OPNFV and the carrier grade features contributed back to these upstream projects by the community. In this article, we cover these two topics briefly and provide some related excerpts from the Understanding OPNFV book.

  • 3D selfies? What could possibly go wrong?

    The good news, then, is that this particular work only works on faces.

    The bad news? The code's on GitHub under an MIT licence.

  • Code for Beeline crowdsourcing transport app to be made open source

    The code for crowdsourcing transport app Beeline will be made open source from October onwards, in a move that could benefit app developers looking to develop new mobility solutions.

    [...]

    Announcing GovTech's plans to make the code open source on Saturday (Sep 30), the director of the agency's data science division, Liu Feng-Yuan, likened the move to sharing the "recipe" as to how the Government built the Beeline technology.

  • Facebook re-licenses React.js, a new open source tool from Oath, and more news

    Recently, Facebook drew the ire of the open source community by licensing React.js (a widely-used JavaScript library) under a so-called BSD + Patents license. That license drew fears of patent litigation and React.js was rejected by the Apache Foundation and WordPress decided to ditch it. As a result of the backlash, the social media giant has backtracked and re-licensed the library.

  • Syracuse Unbound releases second open source publication: CNY books and authors

    This is the second publication from the imprint, which offers open-access to the text through a Creative Commons Attribution-Non Commercial-No Derivatives 4.0 International License, which means that the book is available for anyone to download and read for free. At last count the book has been downloaded 1,250 times  in 18 countries.

Security: Updates, EFI Mess, Clarence Birdseye

Filed under
Security
  • Security updates for Friday
  • An alarming number of patched Macs remain vulnerable to stealthy firmware hacks

    An alarming number of Macs remain vulnerable to known exploits that completely undermine their security and are almost impossible to detect or fix even after receiving all security updates available from Apple, a comprehensive study released Friday has concluded.

  • What Clarence Birdseye can teach us about container security

    Clarence Birdseye is generally considered to be the founder of the modern frozen food industry. In 1925, after a couple of false starts, he moved his General Seafood Corporation to Gloucester, Massachusetts. There, he used his newest invention, the double belt freezer, to freeze fish quickly using a pair of brine-cooled stainless steel belts. This and other Birdseye innovations centered on the idea that flash-freezing meant that only small ice crystals could form, and therefore cell membranes were not damaged. Over time, these techniques were applied to a wide range of food — including the ubiquitous frozen peas.

Graphics: Radeon, Intel, Mesa

Filed under
Graphics/Benchmarks

More in Tux Machines

Keeping patient data safe with open source tools

Healthcare is experiencing a revolution. In a tightly regulated and ancient industry, the use of free and open source software make it uniquely positioned to see a great deal of progress. I work at a scrappy healthcare startup where cost savings are a top priority. Our primary challenge is how to safely and efficiently manage personally identifying information (PII), like names, addresses, insurance information, etc., and personal health information (PHI), like the reason for a recent clinical visit, under the regulations of the Health Insurance Portability and Accountability Act of 1996, HIPAA, which became mandatory in the United States in 2003. Read more

Security Leftovers

  • Indian Bank Hit in $13.5M Cyberheist After FBI ATM Cashout Warning

    But according to Indian news outlet Dailypionneer.com, there was a second attack carried out on August 13, when the Cosmos Bank hackers transferred nearly $2 million to the account of ALM Trading Limited at Hang Seng Bank in Hong Kong.

  • How to Protect Yourself Against a SIM Swap Attack

    A sobering caveat: If a skilled SIM hijacker targets you, there’s realistically not much you can do to stop them, says Allison Nixon, threat research at security firm Flashpoint. “In most of the cases that we’ve seen, a sufficiently determined attacker can take over someone’s online footprint,” she says.

    That’s because ultimately, the machinations behind SIM swaps are largely out of your control. [...]

  • Open Source Security Podcast: Episode 110 - Review of Black Hat, Defcon, and the effect of security policies
    Josh and Kurt talk about Black Hat and Defcon and how unexciting they have become. What happened with hotels at Defcon, and more importantly how many security policies have 2nd and 3rd level effects we often can't foresee. We end with important information about pizza, bananas, and can openers.

YunoHost 3.0.0.1

At this point I have only set up YunoHost, created a few user accounts and installed a handful of applications. While I may play with it further, my main focus going into this trial was how well the framework of the distribution functions. That is: is it easy to install, how hard is it for new users to add services and accounts, and is it straight forward to keep the system up to date? Basically, I wanted to know whether I could give this distribution to someone who wanted to set up home-based network services for the first time and expect them to be able to use it. Based on my experiences so far with YunoHost, my answer is: probably. The distribution does make it pretty easy to create user accounts and install web-based services. In fact, YunoHost does this quite well. The admin panel is very streamlined, uncluttered and easy to navigate and getting something like a game of Hextris or a media streaming service installed is about as easy as a few mouse clicks. Managing the firewall, monitoring the system and creating backups are nearly as easy. The administrator still needs to figure out how to get backup archives off the disk to another location for safe keeping, but the bulk of the work in backing up and restoring the operating system is done for us. Where I feel the distribution runs into trouble is mostly little details, and a few general concepts. For example, asking the user to create an "admin" password but leaving the root password as the default is both likely to confuse people and leave a permanent security hole on the servers of most inexperienced hobbyist administrators. On the topic of accounts, it makes sense, from a security standpoint, to separate web accounts from system accounts. But, this means there may be some confusion as to why, once an account has been created, it cannot log into the system. Little concepts like this may throw new users and I don't feel these issues are well addressed by the documentation. The first time through, the system installer failed during the partitioning section. It worked the second time though with the same settings, so I'm not sure if this is a semi-persistent bug or a one-time error with my system. On the whole, YunoHost performs well. It's light on resources, it offers a lot of common network services home administrators will probably want and it is pretty easy to run and maintain. There are a few little wrinkles in the experience, but in general I found the distribution to be straight forward to use. For people looking to set up a home server, this is probably a good platform on which to build. Read more

Software: GIMP, Password Safe, and Podcasts

  • GIMP 2.10.6 Introduces Vertical Text, New Filters, and GIMP Extension Public Repo
    A brand-new point release for popular photo editing software GIMP has been released today, bringing GIMP to version 2.10.6 – this update doesn’t bring a whole load of significant features, but there are some great improvements and new functionalities. For starters, GIMP 2.10.6 finally introduces support for vertical text (top to bottom), which has been a highly requested feature particularly for East-Asian writing systems. Thus, users can now set text in mixed orientation (as is typical in East-Asian vertical writing) or upright orientation (more common for Western vertical writing), with right-to-left, as well as left-to-right columns.
  • Password Safe is a KeePass-Compatible Password Manager for Linux
    Password Safe is an open-source KeePass-compatible password manager for Linux, designed specifically for use on the GNOME desktop.
  • Linux users finally get a decent podcasts app called, well, ‘Podcasts’
    Podcasts are a hugely popular form of “infotainment” these days, with almost any and every niche you can think of catered for with a show or a segment. If you’re not enjoying the wealth of podcasts out there, you’re really missing out. Podcasts provide you with the experience of a radio show, covering a wide range of topics ranging from gospel to science fiction to music and every thing in between. There are so many ways to enjoy your podcst. On mobile, popular apps such as PocketCast offer users a one-stop-shop for all the podcasts you can listen to. Many music streaming services like Apple Music and Spotify offer dedicated sections on Podcasts.