Language Selection

English French German Italian Portuguese Spanish

Server and Security Leftovers

Filed under
  • Open Policy Agent 0.30 lands, irons out some kinks • DEVCLASS

    The team behind general-purpose policy engine Open Policy Agent (OPA) has pushed out version 0.30 (and 0.30.1 to make it run correctly) of the project, which should help provide a more secure setup and relax things for those using OPA in edge scenarios.

    The Open Policy Agent was originally developed by cloud native tooling vendor Styra in a bid to provide a unified way of enforcing policies in microservices, pipelines, Kubernetes and more. In February 2021, it was welcomed into the realms of CNCF graduated projects, a status shared with widely used tools like Prometheus and Kubernetes. Users are said to include Netflix and Chef.

  • Profile: Cloud-native storage speed and enterprise smarts key for StorageOS [Ed: A pool of buzzwords]

    Croome is a specialist in agile delivery of Unix infrastructure and DevOps concepts, and led global engineering teams at Fidelity and Nomura.

  • 10 Factors Behind the Popularity of Microservices: Part 1

    Andy Oram explores various computing trends that make microservices today’s architecture of choice.

    Microservices are the hottest design concept in programming today. The concept is not new: they basically carry out the principle of modularity taught to programmers over the past several decades. But microservices take modularity to a new height and thereby satisfy many needs of modern application developers.


  • Sophos secures deal to acquire Capsule8
  • Sophos acquires Capsule8 for Linux security
  • Sophos Acquires Capsule8 Security Platform for Linux Containers - Container Journal

    Sophos this week announced it has acquired Capsule8, a provider of tools for securing runtimes on Linux servers and container platforms, as part of an effort to expand its current focus beyond Windows security.


  • An unpleasant surprise for My Book Live owners

    Embedded devices need regular software updates in order to even be minimally safe on today's internet. Products that have reached their "end of life", thus are no longer being updated, are essentially ticking time bombs—it is only a matter of time before they are vulnerable to attack. That situation played out in June for owners of Western Digital (WD) My Book Live network-attached storage (NAS) devices; what was meant to be a disk for home users accessible via the internet turned into a black hole when a remote command-execution flaw was used to delete all of the data stored there. Or so it seemed at first.

More in Tux Machines

Software: Matrix, Ktube, and Monero P2Pool

  • Chat Bubbles on Element and Several Matrix Apps

    This simple comparison wants to help everyone adopt alternative messaging technology, Matrix, with suitable user interface to them. We call Matrix Apps to instant messengers like Element, Fluffy, Nheko, Schildi and Spectral as they are created based upon the said technology. We will start by setting up criteria first that includes chat bubbles, then going through these messengers one by one, and you will see their pictures here along with a little comments from me. I hope you can pick up the messenger with UI you love the most from here.

  • Ktube Media Downloader lets you download YouTube videos easily on Linux

    I always like to tell people about how I have been using Linux as my primary operating system for over ten years. I love Linux, I understand it, it’s free and above all, it fits my workflow in a way Microsoft’s Windows (with all its goodness) probably never will. That also means I love and am a command-line ninja but I also know one thing, a lot of people out there fear and hate the command line.

  • Monero P2Pool V1.0 Is Released

    The latest version of P2Pool, a decentralized Monero mining pool has released. This is the first official release, signaling an invitation for more users to try out the new software.

Better Support & Performance For OpenACC Kernels Is Coming To GCC

While the GNU Compiler Collection has supported OpenACC for a few years now as this parallel programming standard popular with GPUs/accelerators, the current implementation has been found to be inadequate for many real-world HPC workloads leveraging OpenACC. Fortunately, Siemens has been working to improve GCC's OpenACC kernels support. GCC's existing OpenACC kernels construct has been found to be "unable to cope with many language constructs found in real HPC codes which generally leads to very bad performance." Fortunately, improvements are on the way and could potentially be mainlined in time for next year's GCC 12 stable release. Read more

Security Leftovers

  • Database containing 106m Thailand travelers' details leaked • The Register

    A database containing personal information on 106 million international travelers to Thailand was exposed to the public internet this year, a Brit biz claimed this week. Bob Diachenko, head of cybersecurity research at product-comparison website Comparitech, said the Elasticsearch data store contained visitors' full names, passport numbers, arrival dates, visa types, residency status, and more. It was indexed by search engine Censys on August 20, and spotted by Diachenko two days later. There were no credentials in the database, which is said to have held records dating back a decade. “There are many people who would prefer their travel history and residency status not be publicized, so for them there are obvious privacy issues,” wrote Comparitech editor Paul Bischoff on the company’s blog.

  • Break out your emergency change process and patch this ransomware-friendly bug ASAP, says VMware

    VMware has disclosed a critical bug in its flagship vSphere and vCenter products and urged users to drop everything and patch it. The virtualization giant also offered a workaround.

  • Reproducible Builds (diffoscope): diffoscope 185 released

    The diffoscope maintainers are pleased to announce the release of diffoscope version 185. This version includes the following changes:

    [ Mattia Rizzolo ]
    * Fix the autopkgtest in order to fix testing migration: the androguard
      Python module is not in the python3-androguard Debian package
    * Ignore a warning in the tests from the h5py package that doesn't concern
    [ Chris Lamb ]
    * Bump Standards-Version to 4.6.0.

GNOME 41 Released. This is What's New.

GNOME team announced the release of GNOME 41 with some exceptional changes and updates. We wrap up the release in this post. Read more