Language Selection

English French German Italian Portuguese Spanish

February 2019

Best 15 Linux Painting Tools for Professionals and Digital Artists

Filed under
Software

Painting tools have been a must and an essential part of our daily life. From personal to professional purposes, it has an immense area to employ. Whether you wish to retouch your family photos or finalize the product photos for your business, painting software has been turned into an extraordinary source in all the platforms. Today I am going to discuss some vital Linux painting tools for professionals and digital artists.

Like the other operating systems, Linux has all the facilities with a great working environment. It is a stable and secure platform where you can use some excellent painting tools for your professional and personal purposes. You can get natural paint on a digital canvas with the help of different artistic tools.

Read more

Indie Makers Using Single-Board Computers

Filed under
Linux
Interviews

Two such projects have really caught my attention lately: the Noodle Pi and the TinyPi.

The Noodle Pi is a simple, handheld computer (about the size of a deck of playing cards). And, when I say simple, I mean simple. It's got a micro-USB charging port, another for plugging in USB devices, a touch screen and a battery. Think of it like an old-school PDA without any buttons (other than a small power toggle) and the ability to run a full Linux-based desktop.

Read more

MiyoLinux: A Lightweight Distro with an Old-School Approach

Filed under
Linux

If you’re itching to throw it back to a time when Linux offered you a bit of challenge to your daily grind, MiyoLinux might be just the operating system for you. It’s a lightweight operating system that makes good use of a minimal set of tools. Anyone who likes their distributions to be less modern and more streamlined will love this take on the Linux desktop. However, if you prefer your desktop with the standard bells and whistles, found on modern distributions, you’ll probably find MiyoLinux nothing more than a fun distraction from the standard fare.

Read more

KDE Chat on Matrix

Filed under
KDE
OSS

KDE and open source in general has used IRC since the 90s but times change and these days people expect more than text with lots of internals exposed to the user. So KDE has set up a Matrix server which talks to other Matrix server and importantly also talks to IRC servers and their channels because some people will never change. The bridging to IRC isn’t perfect but it works much neater than on e.g. Telegram where the IRC user is one bot, here the IRC user is an individual user and you can set it up to use the same nickname you’ve been using since 1995. Unless you use square brackets in your nickname in which case I’ve no sympathy.

But it still requires a bit of understanding and setup. For one thing you need an app to talk to it, and the more common apps seem to be Riot web and Riot Android. KDE has its own setup of Riot web called webchat.kde.org and you can get the Android client from F-Droid or Google Play. Once you make an account you also need to tick some boxes (including one saying you are over 16 which vexes somewhat but it doesn’t be beyond the ability of most 15 year old to work out how to work around it).

Read more

today's leftovers

Filed under
Misc
  • Sparky news 2019/02

    The 2nd monthly report of 2019 of the Sparky project

  • MX Linux and SystemRescueCD
  • Scaling PostgreSQL with Kubernetes Operators

    Crunchy Data's open source Crunchy PostgreSQL Operator is an Operator for PostgreSQL that is used in many production environments. It provides a simple yet powerful command-line interface that lets users deploy their own database-as-a-service system on any Kubernetes-enabled platform.

    For example, with the pgo create command, which is used to provision a database, you can set up a distributed, high-availability PostgreSQL cluster with full disaster recovery support along with a database monitoring sidecar powered by pgMonitor. In other words, in lieu of a complicated multi-step process or having to write your own scripts, you can create the type of PostgreSQL system required for production from a single command.

    While this may seem to be overkill if you are managing a handful of database clusters, the value of an Operator scales significantly if you need to support hundreds or thousands of different clusters. Having a standardized set of commands with the ability to flexibly deploy clusters for different workloads both eases the administration burden and provides more options for how a team can develop and deploy workloads into production.

  • Today's Context Demands Use of OER

    This movement is the most exciting thing to happen to higher ed in my lifetime. It brings together the humanity, respect for students (and instructors!) and impetus to make a positive change in students’ lives from thinkers like bell hooks, Paulo Freire and John Dewey with the technological know-how and thirst for openness, access and justice of Seymour Papert, Richard M. Stallman and Aaron Swartz.

    There is no point in my parodying the eloquence of the expositors of open pedagogy cited above -- please go read them right now, if you haven’t yet. But one thing I can do is add a small point I haven’t see those authors emphasize, in the spirit (following Green) of exploring what motivates faculty. One thing that faculty members love (perhaps particularly at primarily research institutions, where they may be worried about something with enormous impact on pedagogy but which will require a large investment of their time) is their academic freedom.

  • AMDGPU LLVM Backend Seeing A Number Of Fixes In Recent Days

    If you habitually use the latest open-source graphics drivers, you may want to pull down the latest LLVM code from SVN/Git as there has been a number of fixes to the AMDGPU back-end in recent days.

    For those that haven't upgraded in a while or perhaps still on the LLVM 8 code-base, the latest LLVM 9 development code has been seeing a number of AMDGPU commits during the second half of February. There's been enabling of function calls by default that fixes some crashes, other crash fixes, implementing various features, enabling the DPP combiner pass by default, and other bits.

  • PyCharm 2019.1 EAP 6

    A variable viewer for our native Jupyter Notebook support, an interpreter indicator in the status bar, and more. Try the PyCharm 2019.1 EAP now, you can download the latest version on our website.

  • Include the currency name into the forex application

    Hello and welcome back to this new python forex application project. In the previous chapter, we have successfully retrieved the name and the id pair for all the conbase supported currencies, and in this chapter, we will use that information to add the currency name beside each currency id when we are comparing that currency to the USD. Below is the modify version of this program.

  • IRC vs IRL: How to run a good IRC meeting

    There's an art to running a meeting in any format. Many people have learned to run in-person or telephone meetings, but Internet Relay Chat (IRC) meetings have unique characteristics that differ from "in real life" (IRL) meetings. This article will share the advantages and disadvantages of the IRC format as well as tips that will help you lead IRC meetings more effectively.

    Why IRC? Despite the wealth of real-time chat options available today, IRC remains a cornerstone of open source projects. If your project uses another communication method, don't worry. Most of this advice works for any synchronous text chat mechanism, perhaps with a few tweaks here and there.

AV1 Image File Format (AVIF), Awful Intel Standards, and Linux Kernel at LWN

Filed under
Graphics/Benchmarks
Linux
  • AV1 Image File Format v1.0 Finalized

    The AV1 Image File Format (AVIF) appears solid now with it having been promoted to version 1.0.0. 

    The AV1 Image File Format (AVIF) is the specification for storing images and image sequences (animated images) compressed via AV1 in the HEIF High-Efficiency Image File Format. AV1, of course, being the promising royalty-free video coding format competing with the likes of HEVC/H.265. This is to AV1 as the WebP image format is to VP9/WebM. 

    The AV1 Image File Format continues making inroads and being worked on by the likes of Netflix and Microsoft, among other tech companies. Back in December, Netflix began publishing sample AVIF sample images here.

  • USB 3.2 Is Here To Make Things More Confusing For Everyone

    But with the introduction of USB 3.2, things have become even more confusing.

    The USB standards body has now rebranded 5Gb/s devices as “USB 3.2 Gen 1,” 10Gb/s devices as “USB 3.2 Gen 2” and the latest standard offering 20Gb/s speed has been dubbed “USB 3.2 Gen 2×2” because two 10Gb/s connections run parallelly in the wire.

  • The Intel-Developed Vulkan Overlay Layer Picks Up New Features, Dump FPS To File

    It was just one week ago that developers from the Intel Open-Source Technology Center contributed their new Vulkan Overlay later to Mesa 19.1 for providing various performance metrics/statistics of use to application/driver developers. This Vulkan overlay continues being improved upon as well as making it more applicable to gamers/enthusiasts.

  • The case of the supersized shebang

    Regressions are an unavoidable side effect of software development; the kernel is no different in that regard. The 5.0 kernel introduced a change in the handling of the "#!" (or "shebang") lines used to indicate which interpreter should handle an executable text file. The problem has been duly fixed, but the incident shows how easy it can be to introduce unexpected problems and highlights some areas where the kernel's development process does not work as well as we might like.
    By longstanding Unix convention, an attempt to execute a file that does not have a recognized binary format will result in that file being passed to an interpreter. By default, the interpreter is a shell, which will interpret the file as a shell script. If, however, the file starts with the characters "#!", the remainder of the first line will be treated as the name of the interpreter to use (and possibly arguments to be passed to that interpreter). This mechanism allows programs written in almost any interpreted language to be executed directly; the user need never know which interpreter is actually doing the work behind the scenes.

  • Per-vector software-interrupt masking

    Software interrupts (or "softirqs") are one of the oldest deferred-execution mechanisms in the kernel, and that age shows at times. Some developers have been occasionally heard to mutter about removing them, but softirqs are too deeply embedded into how the kernel works to be easily ripped out; most developers just leave them alone. So the recent per-vector softirq masking patch set from Frederic Weisbecker is noteworthy as an exception to that rule. Weisbecker is not getting rid of softirqs, but he is trying to reduce their impact and improve their latency.
    Hardware interrupts are the means by which the hardware can gain a CPU's attention to signal the completion of an I/O operation or some other situation of interest. When an interrupt is raised, the currently running code is (usually) preempted and an interrupt handler within the kernel is executed. A cardinal rule for interrupt handlers is that they must execute quickly, since they interfere with the other work the CPU is meant to be doing. That usually implies that an interrupt handler will do little more than acknowledge the interrupt to the hardware and set aside enough information to allow the real processing work to be done in a lower-priority mode.

    The kernel offers a number of deferred-execution mechanisms through which that work can eventually be done. In current kernels, the most commonly used of those is workqueues, which can be used to queue a function call to be run in kernel-thread context at some later time. Another is tasklets, which execute at a higher priority than workqueues; adding new tasklet users tends to be mildly discouraged for reasons we'll get to. Other kernel subsystems might use timers or dedicated kernel threads to get their deferred work done.

Security: GNOME Security Internship, Supply Chain Security Talk, SHAREit is 'Cracked'

Filed under
Security
  • GNOME Security Internship - The end?

    The first part regarding protecting the system from potentially unwanted new USB devices can be considered completed. Probably now it will requires just bug fixing and minor changes, if necessary. The required merge requests are up.

    The second part regarding limiting the number of usable keys for untrusted keyboards reached a working stage. However it’s still under evaluation which is the best way to achieve it, because even if with the current solution works it doesn’t mean that this is the desirable way to do it.

  • Supply Chain Security Talk [iophk: "warning for Microsoft event; maybe don't want to [attend] despite Bunnie presenting"]

    In the talk, I relay some of my personal trials authenticating my supply chains, then I go into the why of the supply chain attacks to establish some scenarios for evaluating different approaches. The talk attempts to broadly categorize the space of possible attacks, ranging from attacks that cost a penny and a few seconds to pull off to hundreds of thousands of dollars and months. Finally, I try to outline the depth of the supply chain attack surface, highlighting the overall TOCTOU (time of check, time of use) problem that is the supply chain.

  • Critical SHAREit Flaw Gives Attackers Full Access To Device Files

    Data sharing apps like SHAREit and Xender have transformed the way files are shared, since their release a few years ago. The apps transfer files over wifi which is much faster compared to sending files using Bluetooth.

  • High-Severity SHAREit App Flaws Open Files for the Taking

    SHAREit has fixed two flaws in its app that allow bad actors to authenticate their devices and steal files from a victim’s device.

    Two high-severity flaws in the SHAREit Android app allow an attacker to bypass the file transfer application’s device authentication mechanism – and ultimately download content and arbitrary files from the victim’s device, along with a raft of data such as Facebook tokens and cookies.

Forget Windows Use Linux – A Distro Designed to Work with Android

Filed under
OS
GNU
Linux
Microsoft

Over a year ago, we published a list of the Top 10 Open Source Distros You Haven’t Heard About, and while we also had good suggestions in the comments but the subject of our article today was nowhere in our radar. It goes by the name of FWUL which, interestingly, stands for Forget Windows, Use Linux.

FWUL (Forget Windows Use Linux) is a lightweight open-source Operating System based on Arch Linux that started as an initiative to create a smooth Android-like User Experience for desktop users who had issues with Microsoft Windows.

The same FWUL has an interesting name for an Operating System is the same way it has an interesting back story. The developer always pointed users to Linux whenever the complained about their issues with Windows because he believed that most of them were fixable in Linux.

However, popular distros like Ubuntu and Linux Mint didn’t include everything Android users need. For example, Ubuntu users still need to enter commands to install some apps, flashing Android phones requires the installation of certain drivers, etc.

Read more

Mozilla and Mycroft: WebRender and Voice Recognition

Filed under
Moz/FF
  • Mozilla GFX: WebRender newsletter #41

    Welcome to episode 41 of WebRender’s newsletter.

    WebRender is a GPU based 2D rendering engine for web written in Rust, currently powering Mozilla’s research web browser Servo and on its way to becoming Firefox‘s rendering engine.

    Today’s highlights are two big performance improvements by Kvark and Sotaro. I’ll let you follow the links below if you are interested in the technical details.
    I think that Sotaro’s fix illustrates well the importance of progressively rolling out this type of project a hardware/OS configuration at a time, giving us the time and opportunity to observe and address each configuration’s strengths and quirks.

  • Sharing our Common Voices – Mozilla releases the largest to-date public domain transcribed voice dataset

    Mozilla crowdsources the largest dataset of human voices available for use, including 18 different languages, adding up to almost 1,400 hours of recorded voice data from more than 42,000 contributors.

    From the onset, our vision for Common Voice has been to build the world’s most diverse voice dataset, optimized for building voice technologies. We also made a promise of openness: we would make the high quality, transcribed voice data that was collected publicly available to startups, researchers, and anyone interested in voice-enabled technologies.

    Today, we’re excited to share our first multi-language dataset with 18 languages represented, including English, French, German and Mandarin Chinese (Traditional), but also for example Welsh and Kabyle. Altogether, the new dataset includes approximately 1,400 hours of voice clips from more than 42,000 people.

  • Securing privacy with Mycroft, an Open AI voice assistant

    Voice-assisted technologies are extremely popular; already there are 2.5 billion such devices in use and that's expected to triple to 8 billion by 2023. This growth appears to be unstoppable—despite the privacy and security vulnerabilities in mainstream voice-assisted technology.

    One of these is the "open-window" vulnerability where, for example, a malicious person walks by an open window and shouts, "Hey, unlock the door!" and gains access to the house. Researchers have also identified thousands of false-positive wake words for Alexa and Google, potential attack vectors to inject malicious commands. Some people bring up the risk of subsonic commands injected over TV. Amazon may already be using frequency manipulations to keep Alexa from activating during its commercials. And, as with any web-connected computer device, there's the potential for backdoors and other common vulnerabilities.

Development: LibreOffice Asia Conference 2019, Fedora Development Docs, GNOME Online Accounts (GOA) and Another Developer Gathering for Devuan

Filed under
OS
LibO
  • LibreOffice Asia Conference 2019, Tokyo: Call for Papers is open

    Call for Papers for LibreOffice Asia Conference 2019, held at the Nihonbashi Tokyo Tower (at Cyboze, Inc., Tokyo Office) on May 25th (Sat) and 26th (Sun), is now open.

    LibreOffice Asia Conference will be the first event gathering LibreOffice users, advocates and contributors (not only development, but also localization, PR/marketing, documentation, quality assurance, … etc.) from different countries in Asia, to exchange and share experiences and knowledge.

    During the conference, we will discuss LibreOffice related business such as supporting and training, migrating to LibreOffice and the ODF true standard format, developing, and any other community activity in Asia. In addition, we will have guests from the core team at The Document Foundation, which is a charitable foundation and the home of LibreOffice.

  • Fedora IoT Docs are Live

    Design ideas: My focus was on technical content. The basic layout is dictated by the Fedora Docs project but a bit of design work on the welcome page and the addition of any IoT specific logos would be nice. Also, there are a few screenshots that could use a pointer or box to highlight the area described in the text.

    Verify links for downloads and upgrades: The working group now has regular updated images available in a CDN and the next downloadable image is in progress along with the final version of the landing page for downloads. Once the update and release schedule process is smoothed out, the documentation needs to be verified.

    Get ready for F30: When Fedora 30 is ready, the site will need some Release Notes and the User Guide will need some updates to cover new features. You can submit suggestions as iot-docs issues in pagure.

  • Some challenges for GNOME online accounts

    The cynical among us might be tempted to think that an announcement from the GNOME project about the removal of a feature — a relatively unused feature at that — would be an unremarkable event. In practice, though, Debarshi Ray's announcement that the GNOME Online Accounts (GOA) subsystem would no longer support the "documents" access point touched off a lengthy discussion within the project itself. The resulting discussion revealed a few significant problems with GOA and, indeed, with the concept of online-account management in any sort of open-source umbrella project like GNOME.

    GOA is meant to provide a single sign on system integrating GNOME applications with web-based services. Any application that, for example, wants to access files stored in Google Drive would ordinarily have to ask the user for credentials and log into Drive separately, which gets tiresome for users running a lot of applications. By routing this access through GOA, the GNOME developers hope to simplify the process of using those services. GOA includes a number of different "integration points" for different types of services, including files, email, calendars, contacts, and more.

    The "documents" point was used by the Documents application, which is meant to help users manage their documents. It has suffered, though, from a lack of both users and developers and lacks basic features; Michael Catanzaro described it as "basically just 'bad evince'". That certainly restricts its prospects for success; as Ray put it: "it doesn't stand any chance of adoption unless it can open files like /usr/bin/evince". Documents has duly been removed from the core set of GNOME applications. Since it was the only core application using the "documents" integration point, that point is now being removed.

  • Systemd-Free Debian "Devuan" Planning Their First Developer Gathering This Spring

    For fans of Devuan, the downstream of Debian focused on "init system independence" or just "Debian without systemd", their first-ever conference is happening in just over one month.

More in Tux Machines

today's howtos

  • How To Install Ubuntu 20.10 Groovy Gorilla

    This tutorial explains Ubuntu 20.10 Groovy Gorilla computer installation. You will prepare at least two disk partitions, finishing it all in about twenty minutes, and enjoy! Let's start right now.

  • How to install Ubuntu 20.10 - YouTube

    In this video, I am going to show how to install Ubuntu 20.10.

  • How To Install Webmin on Ubuntu 20.04 LTS - idroot

    In this tutorial we will show you how to install Webmin on Ubuntu 20.04 LTS, as well as some extra required packages by Webmin control panel

  • Running Ironic Standalone on RHEL | Adam Young’s Web Log

    This is only going to work if you have access to the OpenStack code. If you are not an OpenStack customer, you are going to need an evaluation entitlement. That is beyond the scope of this article.

  • Introduction to Ironic

    The sheer number of projects and problem domains covered by OpenStack was overwhelming. I never learned several of the other projects under the big tent. One project that is getting relevant to my day job is Ironic, the bare metal provisioning service. Here are my notes from spelunking the code.

  • Adding Nodes to Ironic

    TheJulia was kind enough to update the docs for Ironic to show me how to include IPMI information when creating nodes.

  • Secure NTP with NTS

    Many computers use the Network Time Protocol (NTP) to synchronize their system clocks over the internet. NTP is one of the few unsecured internet protocols still in common use. An attacker that can observe network traffic between a client and server can feed the client with bogus data and, depending on the client’s implementation and configuration, force it to set its system clock to any time and date. Some programs and services might not work if the client’s system clock is not accurate. For example, a web browser will not work correctly if the web servers’ certificates appear to be expired according to the client’s system clock. Use Network Time Security (NTS) to secure NTP. Fedora 331 is the first Fedora release to support NTS. NTS is a new authentication mechanism for NTP. It enables clients to verify that the packets they receive from the server have not been modified while in transit. The only thing an attacker can do when NTS is enabled is drop or delay packets. See RFC8915 for further details about NTS. NTP can be secured well with symmetric keys. Unfortunately, the server has to have a different key for each client and the keys have to be securely distributed. That might be practical with a private server on a local network, but it does not scale to a public server with millions of clients. NTS includes a Key Establishment (NTS-KE) protocol that automatically creates the encryption keys used between the server and its clients. It uses Transport Layer Security (TLS) on TCP port 4460. It is designed to scale to very large numbers of clients with a minimal impact on accuracy. The server does not need to keep any client-specific state. It provides clients with cookies, which are encrypted and contain the keys needed to authenticate the NTP packets. Privacy is one of the goals of NTS. The client gets a new cookie with each server response, so it doesn’t have to reuse cookies. This prevents passive observers from tracking clients migrating between networks.

  • Comfortable Motion: Absolutely Cursed Vim Scrolling - YouTube

    Have you ever felt like Vim was too useful and thought hey let's change that, well that's what this dev thought and now we have a plugin called comfortable motion that's adds physics based scrolling into vim, what's physics based scrolling you ask. Well it's scrolling that occurs based on how long you hold down the scroll key.

  • Running Cassandra on Fedora 32 | Adam Young’s Web Log

    This is not a tutorial. These are my running notes from getting Cassandra to run on Fedora 32. The debugging steps are interesting in their own right. I’ll provide a summary at the end for any sane enough not to read through the rest.

  • Recovering Audio off an Old Tape Using Audacity | Adam Young’s Web Log

    One of my fiorends wrote a bunch of music back in high school. The only remainig recordings are on a casette tape that he produced. Time has not been kind to the recordings, but they are audible…barely. He has a device that produces MP3s from the tape. My job has been to try and get them so that we can understand them well enough to recover the original songs. I have the combined recording on a single MP3. I’ve gone through and noted the times where each song starts and stops. I am going to go through the steps I’ve been using to go from that single long MP3 to an individual recording.

  • Role of Training and Certification at the Linux Foundation

    Open source allows anyone to dip their toes in the code, read up on the documentation, and learn everything on their own. That’s how most of us did it, but that’s just the first step. Those who want to have successful careers in building, maintaining, and managing IT infrastructures of companies need more structured hands-on learning with real-life experience. That’s where Linux Foundation’s Training and Certification unit enters the picture. It helps not only greenhorn developers but also members of the ecosystem who seek highly trained and certified engineers to manage their infrastructure. Swapnil Bhartiya sat down with Clyde Seepersad, SVP and GM of Training and Certification at the Linux Foundation, to learn more about the Foundation’s efforts to create a generation of qualified professionals.

  • Hetzner build machine

    This is part of a series of posts on compiling a custom version of Qt5 in order to develop for both amd64 and a Raspberry Pi. Building Qt5 takes a long time. The build server I was using had CPUs and RAM, but was very slow on I/O. I was very frustrated by that, and I started evaluating alternatives. I ended up setting up scripts to automatically provision a throwaway cloud server at Hetzner.

Leftovers: Debian, Graphics and Audiocasts

  • Integer Scaling To Come With Linux 5.11 For Intel Graphics Driver - Phoronix

    Going back more than a year there have been Intel "i915" kernel graphics driver patches implementing integer mode scaling support while finally for Linux 5.11 in early 2021 the support will have landed. Intel added integer mode scaling to their Windows graphics driver back in 2019 to provide better clarity when upscaling games (particularly pixel art type content) and other software. The Linux patches materialized in September 2019 for nearest-neighbor integer mode scaling and then seemingly forgotten about. The capability works with Gen11 / Ice Lake and newer.

  • Linux Support for Variable Refresh Rates On Gen12+ Intel GPUs Is On The Way - LinuxReviews

    Intel developer Manasi Navare has submitted a series of patches for the Linux kernel that brings support for variable refresh rates on Intel's latest graphics chips to the Linux kernels i915 driver. The feature is only enabled on Tiger Lake, Sapphire Rapids and newer Intel graphics chips. [...] You do not need a special "Freesync" monitor to use adaptive vertical synchronization, Freesync is just a marketing term used by AMD. The DisplayPort specification has included variable refresh rate (VRR) as an option feature since DP 1.4 and there are many monitors with support for it that are not marketed as "Freesync" or "gaming" monitors. Monitors that are marketed as "Freesync" support the standard DisplayPort VRR protocol so you don't need to use a AMD graphics card to get the benefits of a Freesync monitor. You will soon be able to use one of the very latest Intel CPU's with integrated graphics or one of Intel's upcoming dedicated graphics cards with Freesync monitors on Linux.

  • Salsa updated to GitLab 13.5

    Today, GitLab released the version 13.5 with several new features. Also Salsa got some changes applied to it. [...] It's been way over two years since we started to use Google Compute Engine (GCE) for Salsa. Since then, all the jobs running on the shared runners run within a n1-standard-1 instance, providing a fresh set of one vCPU and 3.75GB of RAM for each and every build. GCE supports several new instance types, featuring better and faster CPUs, including current AMD EPICs. However, as it turns out, GCE does not support any single vCPU instances for any of those types. So jobs in the future will use n2d-standard-2 for the time being, provinding two vCPUs and 8GB of RAM..

  • Social Media Regulation and Journalism

    Doc Searls, Katherine Druckman, and Petros Koutoupis talk social media regulation and its relationship to journalism and the threat to Section 230.

  • Automation Entropy Factor | Self-Hosted 30

    Chris gets left out in the cold after a Home Assistant glitch, and Alex puts a big batch of USB hard drives to the test Plus a great pick for you pack rats, feedback, and more.

  • Tribalism and Toxicity in the Linux Community - YouTube

    Gatekeeping, tribalism and toxicity in the Linux community. We're tired of it and it's time to silence it. But WHY does it happen, and HOW do we DEAL with it?

Oracle/Red Hat/Fedora Leftovers

Free Software and OSS, Security Leftovers

  • Justin W. Flory: Hacktoberfest 2020 with TeleIRC

    October is here! If you contribute to Open Source projects, you might know that October is the month of Hacktoberfest. DigitalOcean teams up with different partners each year to send a t-shirt (or plant a tree on your behalf) for anyone who makes four GitHub Pull Requests in October. And guess what? TeleIRC is a participating project for you to get your Hacktoberfest t-shirt or tree! This post identifies specific tasks the TeleIRC team identified as “good first issues” for Hacktoberfest hackers. They are in order of least difficult to most difficult. Golang developers especially are encouraged to participate!

  • Open Source Summit Europe & ELCE 2020

    Following a great virtual ELC & Open Source Summit North America last June/July, Collabora will be attending their European counterparts, Open Source Summit Europe & Embedded Linux Conference Europe, which take place next week, from October 26 to October 29. "The 4-day event is dedicated to everything open source and will showcase a program of 250+ talks (conference session, tutorials, BoFs and keynotes) across tracks covering Linux Systems, IoT, AI, Cloud & Cloud Native, OS Dependability, OS Databases, Diversity & Inclusion, OS Leadership, Open Source Program Office Management (TODO) and the Embedded Linux Conference." Collaborans will once again be actively participating in the week's activities with no less than 8 presentations on topics including fuzzing Linux drivers with syzkaller, efficient syscall emulation on Linux, demystifying Linux kernel initcalls, creating Debian-based embedded systems in the Cloud using debos, simplifying and reusing your driver's code with regmaps, the new Futux2() system call, and the state of Linux gaming. You can find the details for all of these presentations below.

  • [Old] Mozilla WebThings To Become An Independent Open Source Project

    Mozilla has announced that Mozilla WebThings is being “spun out” as an independent open source project. It means that WebThings is no longer going to be a direct project from Mozilla. The company says that it’s winding down its direct investment in WebThings. This transition will happen to stabilize the WebThings gateways around the world. Now, WebThings is getting an independent domain and will work on the web of things, independent of Mozilla.

  • Firefox on Fedora with OpenH264 – Martin Stransky's Blog

    Firefox on Fedora which sits in the updates [F32][F31] right now comes with enabled OpenH264 Cisco decoder for video playback and fdk-aac-free used for audio decoding. It’s implemented by GMP (Gecko Media Plugin) API so the OpenH264 is not used through ffmpeg library but Firefox sandboxed interface, the same as Firefox uses for Widevine CDM plugin. The OpenH264 GMP video playback is a fallback solution when system ffmpeg is missing and internal ffvpx library can’t decode the stream, so ffmpeg from RPM Fusion is always a better alternative if you can install it. The video streams are decoded by system wide OpenH264 2.1.1 which is shipped by Fedora as mozilla-openh264 rpm package. Even if Mozilla OpenH264 (1.8.1) plugin is installed in your profile and claimed at about:plugins page, the Fedora system one is used.

  • GNU Parallel - News: GNU Parallel 20201022 ('Samuel Paty') [Savannah]

    GNU Parallel 20201022 ('Samuel Paty') has been released. It is available for download at: http://ftpmirror.gnu.org/parallel/ Please help spreading GNU Parallel by making a testimonial video like Juan Sierra Pons: http://www.elsotanillo.net/wp-content/uploads/GnuParallel_JuanSierraPons.mp4 It does not have to be as detailed as Juan's. It is perfectly fine if you just say your name, and what field you are using GNU Parallel for.

  •  
  •  
    Psychotherapy centre's database [cracked], patient info held ransom
                     
                       

    The Helsinki-based company said that the [crackers] who [copied] the data made attempts to extort money in exchange for its return.

  • EU imposes sanctions on GRU officers over ‘Fancy Bear’ cyberattacks

    The Council of the European Union has imposed sanctions on two Russian citizens and a military intelligence center due to cyberattacks targeting Germany’s parliament in 2015 and the Organization for the Prohibition of Chemical Weapons (OPCW) in 2018. This was announced in the latest volume of the Official Journal of the European Union. The United Kingdom announced plans to enforce these sanctions, as well. 

  • Open Education and Artificial Scarcity in Hard Times

    The sudden move to remote education by universities this year has forced the inevitable: the move to an online education. While most universities won’t be fully remote, having course materials online was already becoming the norm before the COVID-19 pandemic, and this year it has become mandatory for millions of educators and students. As academia recovers from this crisis, and hopefully prepares for the next one, the choices we make will send us down one of two paths. We can move towards a future of online education which replicates the artificial scarcity of traditional publishing, or take a path which fosters an abundance of free materials by embracing the principles of open access and open education.

    The well-worn, hefty, out-of-date textbook you may have bought some years ago was likely obsolete the moment you had a reliable computer and an Internet connection. Traditional textbook publishers already know this, and tout that they have embraced the digital era and have ebooks and e-rentals available—sometimes even at a discount. Despite some state laws discouraging the practice, publishers try to bundle their digital textbooks into “online learning systems,” often at the expense of the student. However, the costs and time needed to copy and send thousands of the digital textbooks themselves is trivial compared to their physical equivalent. 

  • Hybrid open access risks limiting researchers’ publishing options

    In the case of the 34 Nature-branded journals, the first step is a “read and publish” deal with Germany’s Max Planck institutes, allowing affiliated researchers to both access the journals and to publish in them open access. The OA fee that Max Planck will pay is based on a cost of €9,500 (£8,600) per article. The publisher, Springer Nature, says that it is in discussions to allow authors worldwide to publish open access in Nature journals from next year.

    The UK alone spends more than £25 million on OA journal publishing annually, but the proportion that goes to large commercial publishers for OA in hybrid journals has increased year-on-year. The average cost for publishing in hybrid journals also continues to increase steadily.

    This trend has been evident since Springer Nature launched its leading OA journals, Nature Communications and Scientific Reports. In 2018 alone, these journals received more than £1.6 million from 30 UK research-intensive institutions. In 2019, Elsevier launched 100 new OA journals and the humanities publisher IEEE launched 13.

  • Cloud Foundry Is A Developer Experience For Kubernetes | Chip Childers
  • OpenStack Foundation Rebrands as Open Infrastructure Foundation

    Also announced at the Open Infrastructure Summit was the OpenStack Victoria open source cloud platform, with improved integration with Kubernetes and enhanced IPv6 support. / In a keynote at the event, Thierry Carrez, vice president of engineering at the Open Infrastructure Foundation, said his personal definition for cloud native is applications designed to run on programmable infrastructure. "Cloud native requires programmable infrastructure, and open infrastructure provides an open source solution for that," Carrez said. "So cloud native and open infrastructure really go together like bread and butter."

  • OpenStack Foundation transforms into the Open Infrastructure Foundation

    The writing was on the wall two years ago. The OpenStack Foundation was going to cover more than just the OpenStack Infrastructure-as-a-Service (IaaS) cloud. Today, that metamorphosis is complete. The Foundation now covers a wide variety of open-source cloud and container technologies as the Open Infrastructure Foundation.