Language Selection

English French German Italian Portuguese Spanish

Programming Leftovers

Filed under
Development
  • Firmware Reverse-Engineering Using NSA Software Continues

    Earlier this month we reported on a new Google Summer of Code project making use of NSA software to help with firmware reverse engineering. So far that effort seems to be paying off of using Ghidra.

    Ghidra is the US National Security Agency's open-source project designed to assist in reverse engineering. Ghidra is similar to IDA Pro and other decompilers/disassemblers. The focus of the GSoC 2019 project has been integrating the support to make it suitable as a tool to help with firmware reverse-engineering.

  • Application lifecycle management for container-native development

    Ultimately, developers are expensive, but they are the domain experts in what they build. With development teams often being treated as product teams (who own the entire lifecycle and support of their applications), it becomes imperative that they control the end-to-end process on which they rely to deliver their applications into production. This means decentralizing both the ALM process and the tooling that supports that process. In this article, we’ll explore this approach and look at a couple of implementation scenarios.

  • Teaching algorithmic ethics requires an open approach

    his trend could have profoundly positive impacts on humanity. Consider, for example, the ways in which AI applications have already proven revolutionary in medical diagnosis. But with and alongside the benefits these systems promise are also serious risks, for the growing unchecked use of algorithms in this fashion risks dangerously amplifying inequality and concentrating power in the hands of the few. Other related problems may accompany this, such as the increased commodification of personal information absent consumer protections, or the buildout of digital surveillance infrastructures that are more often than not turned against already marginalized or oppressed populations.

    One of the most promising mechanisms for combating the dangerous encroachment of individual agency and power through algorithms is open education. Policymakers and advisors educated on these ethical technology issues can make informed regulatory decisions, technologists can increase their awareness of the impacts of their designs, and citizens and consumers can adequately understand how algorithmic systems are impacting their everyday lives. Where knowledge is power, education can provide that knowledge.

  • OOP Method Types in Python: @classmethod vs @staticmethod vs Instance Methods
  • Multiple Linear Regression with Python
  • Testing Complex Systems with Maintainable Test Suites
  • Kubernetes Operators Best Practices

    Kubernetes Operators are processes connecting to the master API and watching for events, typically on a limited number of resource types.

    When a relevant event occurs, the operator reacts and performs a specific action. This may be limited to interacting with the master API only, but will often involve performing some action on some other systems (this could be either in cluster or off cluster resources).

More in Tux Machines

Arc Menu Extension Now Lets You Pin Your Fave Apps to the Sidebar

If you’re a fan of the Arc menu extension for GNOME Shell you may be interested to hear that an update is on the way. A new version of the traditional-style app menu, which is particularly popular with Dash to Panel users, is currently pending approval over the GNOME Extensions website. What does it bring? Personalisation. Arc Menu replaces the full-screen app launcher in GNOME Shell with a more traditional ‘start menu’ design. It’s searchable, has bookmarks for important folders, shortcuts for key system actions, and lets you manage your session. It also lets you browse installed applications based one their category. The whole of the left-hand sidebar is dedicated to this purpose. Read more

Audiocasts/Shows: mintCast, Test and Code, LINUX Unplugged

Security: Mozilla Patch for Firefox and Getting Started with OpenSSL

  • Zero-Day Flaw In Firefox Is Getting Exploited By Hackers; Update Now!
    Mozilla has issued a warning of a zero-day flaw in Firefox browser that is currently being exploited in the wild. But the good news is that an emergency patch has been released for the same so you should update your browser now! The vulnerability was discovered by Google’s Project Zero security team...
  • Security vulnerabilities fixed in Firefox 67.0.3 and Firefox ESR 60.7.1
    A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw.
  • Getting started with OpenSSL: Cryptography basics
    This article is the first of two on cryptography basics using OpenSSL, a production-grade library and toolkit popular on Linux and other systems. (To install the most recent version of OpenSSL, see here.) OpenSSL utilities are available at the command line, and programs can call functions from the OpenSSL libraries. The sample program for this article is in C, the source language for the OpenSSL libraries. The two articles in this series cover—collectively—cryptographic hashes, digital signatures, encryption and decryption, and digital certificates. You can find the code and command-line examples in a ZIP file from my website. Let’s start with a review of the SSL in the OpenSSL name.

Python: Leading, Developing for Android and New RCs

  • Leading in the Python community
    Naomi began her career in the Classics; she earned a PhD in Latin and Ancient Greek with a minor in Indo-European Linguistics, as she says, "several decades ago." While teaching Latin at a private school, she began tinkering with computers, learning to code and to take machines apart to do upgrades and repairs. She started working with open source software in 1995 with Yggdrasil Linux and helped launch the Fort Wayne, Indiana, Linux User Group.
  • What’s the Best Language for Android App Developers: Java or Python?
    Few things can be so divisive among developers as their choice of programming languages. Developers will promote one over the other, often touting their chosen language’s purity, speed, elegance, efficiency, power, portability, compatibility or any number of other features. Android app developers are no exception, with many developers divided between using Java or Python to develop their applications. Let’s look at these two languages and see which is best for Android app developers.
  • Python 3.7.4rc1 and 3.6.9rc1 are now available
    Python 3.7.4rc1 and 3.6.9rc1 are now available. 3.7.4rc1 is the release preview of the next maintenance release of Python 3.7, the latest feature release of Python. 3.6.9rc1 is the release preview of the first security-fix release of Python 3.6. Assuming no critical problems are found prior to 2019-06-28, no code changes are planned between these release candidates and the final releases. These release candidates are intended to give you the opportunity to test the new security and bug fixes in 3.7.4 and security fixes in 3.6.9. We strongly encourage you to test your projects and report issues found to bugs.python.org as soon as possible. Please keep in mind that these are preview releases and, thus, their use is not recommended for production environments.