Lightweight Linux distribution 4MLinux 34.0 Released with WebP Support

The super lightweight Linux distribution 4MLinux released the latest stable version 34.0 with new features and latest app updates.

TenFourFox FPR27 available

TenFourFox Feature Parity Release 27 final is now available for testing (downloads, hashes, release notes). Unfortunately, I have thus far been unable to solve issue 621 regarding the crashes on LinkedIn, so to avoid drive-by crashes, scripts are now globally disabled on LinkedIn until I can (no loss since it doesn't work anyway). If you need them on for some reason, create a pref tenfourfox.troublesome-js.allow and set it to true. I will keep working on this for FPR28 to see if I can at least come up with a better wallpaper, though keep in mind that even if I repair the crash it may still not actually work anyway. There are otherwise no new changes since the beta except for outstanding security updates, and it will go live Monday evening Pacific assuming no new issues.

today's howtos

• A Practical Guide to Using Git

• How to Create User in Linux by Adduser in Ubuntu 20.04 Complete Guide

• How to install rpm on CentOS by rpm command in Linux a Beginner’s Guide

• How to Install Go on Ubuntu 20.04 Linux

• How To Make Bootable USB with Deepin Boot Maker

• How to install graphic applications on Termux?

• How to replace GNOME app launcher by Synapse?

• [Solved] “apt-get command not found” error in Easy Method

today's leftovers

• Doom Emacs For Noobs

  Doom Emacs is my preferred text editor, and I have made several videos about it. But some of those videos assumed that the viewer had some knowledge of Vim and/or Emacs. So I decided to make this Doom Emacs introductory video for the complete noob! This video covers how to install Doom Emacs, how to configure it, and some of the basic keybindings and commands.

• The Endless Stream Of Linux Video Topics To Sift Through

• Debian Janitor: Expanding Into Improving Multi-Arch

  The Debian Janitor is an automated system that commits fixes for (minor) issues in Debian packages that can be fixed by software. It gradually started proposing merges in early December. The first set of changes sent out ran lintian-brush on sid packages maintained in Git. This post is part of a series about the progress of the Janitor.

• New Debian Maintainers (July and August 2020)

  The following contributors were added as Debian Maintainers in the last two months: Chirayu Desai Shayan Doust Arnaud Ferraris Fritz Reichwald Kartik Kulkarni François Mazen Patrick Franz Francisco Vilmar Cardoso Ruviaro Octavio Alvarez Nick Black Congratulations!

• MYIR launches FZ5 EdgeBoard AI Box for AI on the Edge

  Back in July of this year (2020), MYRI technology announced the MYIR’s FZ3 deep learning accelerator card powered by the Xilinx Zynq UltraScale+ ZU3EG Arm FPGA MPSoC and it is capable of delivering up to 1.2TOPS computing power. With only a few months since that launch, MYRI technology is now announcing another two related sets of products – FZ5 EdgeBoard AI Box and the FZ5 Card.

• SYNCPLIFY.ME AFT! V3.0 SUPPORTS LINUX ON ARM

  But, arguably, the most relevant new feature is AFT!’s native support for ARM processors, when in combination with a Linux operating system. With giants like Apple, moving away from the x86 architecture to fully embrace ARM on their entire product line, it was a strategic choice for Syncplify to be ahead of the curve, and release an ARM-native version of their software.

• Where’s the Yelp for open-source tools?

  We’d like an easy way to judge open-source programs. It can be done. But easily? That’s another matter. When it comes to open source, you can’t rely on star power. The “wisdom of the crowd” has inspired all sorts of online services wherein people share their opinions and guide others in making choices. The Internet community has created many ways to do this, such as Amazon reviews, Glassdoor (where you can rate employers), and TripAdvisor and Yelp (for hotels, restaurants, and other service providers). You can rate or recommend commercial software, too, such as on mobile app stores or through sites like product hunt. But if you want advice to help you choose open-source applications, the results are disappointing. It isn’t for lack of trying. Plenty of people have created systems to collect, judge, and evaluate open-source projects, including information about a project’s popularity, reliability, and activity. But each of those review sites – and their methodologies – have flaws. Take that most archaic of programming metrics: Lines of code (LoC). Yes, it’s easy to measure. But it’s also profoundly misleading. As programming genius Edsger Dijkstra observed in 1988, LoC gives people “the reassuring illusion that programs are just devices like any others, the only difference admitted being that their manufacture might require a new type of craftsmen, viz. programmers. From there it is only a small step to measuring ‘programmer productivity’ in terms of ‘number of lines of code produced per month.’ This is a very costly measuring unit because it encourages the writing of insipid code.” We’ve gotten better since then, haven’t we? Perhaps not.

• These Weeks in Firefox: Issue 79

• Fun with Java Records

  Records, like lambdas and default methods on interfaces are tremendously useful language features because they enable many different patterns and uses beyond the obvious. Java 8 brought lambdas, with lots of compelling uses for streams. What I found exciting at the time was that for the first time lots of things that we’d previously have to have waited for as new language features could become library features. While waiting for lambdas we had a Java 7 release with try-with-resources. If we’d had lambdas we could have implemented something similar in a library without needing a language change.

• How to code a basic WordPress plugin

  With over 7 million downloads for WordPress 5.3 alone, WordPress has become one of the most influential CMS of all time.

• Laravel CSRF Protection

  The full form of CSRF is Cross-Site Request Forgery. It is one type of online attack in which the attacker sends requests as an authorized user to a system by gaining access information of a particular user of that system and performs different types of malicious activities by using the identity of that user. The impact of this attack depends on the victim’s privileges on the system. If the victim is a normal user then it will affect the personal data of the victim only. But if the victim is the administrator of the system then the attacker can damage the whole system. The users of any business website, social networking can be affected by this attack. This attack can be prevented easily by using Laravel CSRF protection to make the system more secure. Laravel generates CRSF token for each active user session automatically by which any request and approval are given to the authenticated user for the system. How Laravel CSRF Protection can be applied in the Laravel application is shown in this tutorial.

• Popular VPN closes critical vulnerability on Linux client

  The VPN service Private Internet Access (PIA) has released a new version of its Linux client which fixes a critical vulnerability that could have allowed remote attackers to bypass the software's kill switch. The vulnerability, tracked as CVE-2020-15590, was discovered by Sick Codes and it affects versions 1.5 through 2.3 of PIA's Linux client. The client's kill switch is configured to block all inbound and outbound network traffic when a VPN connection drops. However, privileged applications still have the ability to send and receive network traffic even when the kill switch is turned on if net.ipv4.ip_forward has been enabled in the system kernel parameters. [...] “For the issue raised, we have no legacy customer support requests relating to this use case. We welcome input from community sources in addressing their usage and with this in mind, we took the decision to support this use case with our next Linux client release.” PIA users running Docker on Linux should upgrade to version 2.4 of the company's client as soon as possible to avoid any potential attacks leveraging this vulnerability.

• 3 ways to protect yourself from imposter syndrome

  Poet and activist Maya Angelou published many books throughout her storied career, but each time, she feared people would figure out that she'd "run a game on everybody, and they're going to find me out." This seems an odd response from a well-honored writer. What she is describing is her own challenge with imposter syndrome. Think for a moment about your own accomplishments. Being hired into a new role. Having your first open source contribution merged into the project. Receiving an award or recognition. Being invited to participate in a project or event with people you respect and look up to. Did you question whether you belonged there? Did you fear people would "know that you didn't belong?" There is an extremely high likelihood that you have also experienced imposter syndrome. Please check the survey at the end of this article to see that you're not alone.