Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Saturday, 22 Jul 17 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Today in Techrights Roy Schestowitz 22/07/2017 - 8:56am
Story A look at the nano text editor in GNU/Linux Rianne Schestowitz 22/07/2017 - 7:37am
Story Server: Virtualization Trends, GoDaddy Pulls out of OpenStack Roy Schestowitz 22/07/2017 - 6:58am
Story today's howtos Roy Schestowitz 22/07/2017 - 6:55am
Story Red Hat and Fedora: Red Hat Academy, Lynne Chamberlain, Flatpak Apps, and Video of Fedora 26 Roy Schestowitz 22/07/2017 - 6:53am
Story Security: Windows 10 Bypass, Slackware OpenJDK Update and More Roy Schestowitz 22/07/2017 - 6:50am
Story 5 open source tools for developing IoT applications Roy Schestowitz 22/07/2017 - 6:34am
Story Internet Bug Bounty Gets a Boost Roy Schestowitz 22/07/2017 - 6:29am
Story Linux 4.12.3, 4.11.12, 4.9.39, 4.4.78, and 3.18.62, Linux Foundation Blockchain Group Milestone Roy Schestowitz 22/07/2017 - 5:52am
Story Graphics: Vulkan, Nouveau, Mesa, and Xwayland Roy Schestowitz 22/07/2017 - 5:47am

A look at the nano text editor in GNU/Linux

Filed under
GNU
Linux

Given that I have been writing the odd article here and there about server work, hosting, VPS and the like, I thought that perhaps an article about editing configuration files / text documents in a command line scenario might be a good idea.

There are a few major text editors out there, some more user-friendly while some are more complex but bring extra power and configuration (I'm looking at you Vim.)

The editor that most users who are new to the world of working with text only will likely start with, is called Nano.

Read more

Server: Virtualization Trends, GoDaddy Pulls out of OpenStack

Filed under
Server
  • Top five virtualization trends of 2017

    July marks the second half of the year, making it an ideal time to reflect upon what the journey through 2017 has been like and where it is going. With respect to virtualization, developers have played an increasingly important role in how companies deal with network agility, flexibility and security. While the direction data centers will head over the next six months remains open, a handful of virtualization trends are shaping the path forward.

  •  
     

  • GoDaddy Terminates Its OpenStack Cloud Server Business

    Hosting vendor GoDaddy first debuted its own OpenStack-powered cloud service in March 2016, with high hopes of success. Those hopes have been dashed, as GoDaddy sent out notices to its customers this week advising them that the service will be shut down.

Red Hat and Fedora: Red Hat Academy, Lynne Chamberlain, Flatpak Apps, and Video of Fedora 26

Filed under
Red Hat

Security: Windows 10 Bypass, Slackware OpenJDK Update and More

Filed under
Security
  • [Older] GHOSTHOOK ATTACK BYPASSES WINDOWS 10 PATCHGUARD

    A bypass of PatchGuard kernel protection in Windows 10 has been developed that brings rootkits for the latest version of the OS within reach of attackers.

    Since the introduction of PatchGuard and DeviceGuard, very few 64-bit Windows rootkits have been observed; Windows 10’s security, in particular its mitigations against memory-based attacks, are well regarded. Researchers at CyberArk, however, found a way around PatchGuard through a relatively new feature in Intel processors called Processor Trace (Intel PT).

  • [Slackware] OpenJDK 8 security round-up for July ’17

    Sooner than I anticipated, there is an update for OpenJDK 8. Andrew Hughes (aka GNU/Andrew) announced the release of IcedTea 3.5.0. The new icedtea framework compiles OpenJDK 8 Update 141 Build 15 (8u141_b15). This release includes the official July 2017 security fixes.

  • ROI (Not Security) the Most Immediate IoT Challenge

    According to Defining IoT Business Models, a new report from Canonical, the software company behind the Ubuntu Linux distribution, device security and privacy (45 percent) falls behind quantifying the return of investment (ROI) of their IoT projects (53 percent) as an immediate challenge. Canonical drew its conclusions from a survey of 361 IoT professionals conducted by IoTNow on behalf of the company.

  • Apply the STIG to even more operating systems with ansible-hardening

    Tons of improvements made their way into the ansible-hardening role in preparation for the OpenStack Pike release next month. The role has a new name, new documentation and extra tests.

    The role uses the Security Technical Implementation Guide (STIG) produced by the Defense Information Systems Agency (DISA) and applies the guidelines to Linux hosts using Ansible. Every control is configurable via simple Ansible variables and each control is thoroughly documented.

  • Open Source Flaw 'Devil's Ivy' Puts Millions of IoT Devices at Risk

    Millions of IoT devices are vulnerable to cybersecurity attacks due to a vulnerability initially discovered in remote security cameras, Senrio reported this week.

  • Microsoft’s secret weapon in ongoing struggle against Fancy Bear? Trademark law [Ed: Microsoft should make a start by stopping the addition of back doors to all its software]
  • SECURITY FOR THE SECURITY GODS! SANDBOXING FOR THE SANDBOXING THRONE

    Last year, probably as a distraction from doing anything else, or maybe because I was asked, I started reviewing bugs filed as a result of automated flaw discovery tools (from Coverity to UBSan via fuzzers) being run on gdk-pixbuf.

    Apart from the security implications of a good number of those problems, there was also the annoyance of having a busted image file bring down your file manager, your desktop, or even an app that opened a file chooser either because it was broken, or because the image loader for that format didn't check for the sanity of memory allocations.

5 open source tools for developing IoT applications

Filed under
Development
OSS

The internet of things is growing at a staggeringly fast pace, and is quickly coming to revolutionize virtually every aspect of modern life. Aspiring developers hoping to hop on board and profit off the growing phenomenon are constantly looking for the right tools to use. So what are the open source tools best suited for working with the IoT, and where can developers find them?

A plethora of open source tools lay at the disposal of any would-be developer eager and wise enough to use them. By utilizing these five, you’ll find yourself tackling challenges and developing successful applications in no time.

Read more

Related:

Internet Bug Bounty Gets a Boost

Filed under
Security

Linux 4.12.3, 4.11.12, 4.9.39, 4.4.78, and 3.18.62, Linux Foundation Blockchain Group Milestone

Filed under
Linux

Graphics: Vulkan, Nouveau, Mesa, and Xwayland

Filed under
Graphics/Benchmarks
  • Vulkan 1.0.56 Brings One New Extension, Fixes

    Khronos' SIGGRAPH announcements are coming up in just over one week but today we have the Vulkan 1.0.56 release.

  • Nouveau Gets Thermal Throttling, One Step Closer For GTX 900 Re-Clocking

    Nouveau re-clocking/power expert Karol Herbst has published a set of patches today implementing thermal throttling support for this open-source NVIDIA DRM driver.

  • Mesa 17.2 Merge Window Extended To Sunday, RADV Shared Semaphores Lands

    The merging fun for Mesa 17.2 will continue through the weekend.

    Mesa release manager Emil Velikov has shared rather than going into feature freeze today, he's planning to extend it by a few days. In particular, he's planning to branch now by Sunday evening to allow for some remaining patches to be merged.

  • A small Update

    I planned on writing about the Present extension this week, but I’ll postpone this since I’m currently strongly absorbed into finding the last rough edges of a first patch I can show off. I then hope to get some feedback on this from other developers in the xorg-devel mailing list.

    Another reason is that I stalled my work on the Present extension for now and try to get first my Xwayland code working. My mentor Daniel recommended that to me since the approach I pursued in my work on Present might be more difficult than I first assessed. At least it is something similar to what other way more experienced developers than myself tried in the past and weren’t able to do according to Daniel. My idea was to make Present flip per CRTC only, but this would clash with Pixmaps being linked to the whole screen only. There are no Pixmaps only for CRTCs in X.

  • Revised DRI3 v1.1 Modifiers Support For Mesa

    Daniel Stone of Collabora has published a new set of 14 patches implementing DRI3 v1.1's modifiers support inside Mesa with support for EGL X11 and Vulkan X11/Wayland.

Linux Full Disk Encryption Performance With AMD Ryzen 5 + SATA 3.0 SSD

Filed under
Graphics/Benchmarks
Linux

Similar to our past disk encryption benchmarks, a clean install of Fedora Linux (26, with Linux 4.11) was done without any encryption and then again when opting for the full-disk encryption setup via the Anaconda installer. EXT4 was the file-system in use with its default mount options and no other changes were made between the installations or during the benchmarking process.

Read more

Wine 2.13

Filed under
Software
  • Wine Announcement

    The Wine development release 2.13 is now available.

  • Wine 2.13 Released: Unicode 10.0, Better Mouse Cursors

    If Wine 2.0.2 with 60+ bug fixes doesn't interest you, perhaps the Wine 2.13 development update will get you more excited.

    Wine 2.13 is now available as the latest bi-weekly development release leading up to the eventual release of Wine 3.0 around year's end. Changes with Wine 2.13 include updating Unicode data to Unicode 10.0, nicer looking default mouse cursors are now used, support for persistent connections in WinHTTP, WebServices message framing protocol support, improved metafile support in GDI Plus, debug register support in x86-64 exception handling, and DirectWrite anti-aliasing improvements.

  • Wine 2.13 has been released with a few noteworthy changes, including fixes for The Witcher 3

    Another Wine development release is now available! Just today Wine 2.13 has released and features a few noteworthy changes.

Canonical Wants You to Vote for the Default Apps of Ubuntu 18.04 LTS

Filed under
Ubuntu

Following on a discussion with the HackerNews community on the things that users want to see in the upcoming Ubuntu 17.10 (Artful Aardvark) operating system, Canonical's Dustin Kirkland is now asking the Ubuntu community to vote for the default apps of Ubuntu 18.04 LTS.

Read more

GNOME 3.25.4 RELEASED

Filed under
GNOME

The fourth snapshot of GNOME 3.25 is now available!

In this release several modules have continue the migration to meson
[1], which is great as its saving compilation time (thank you!)

BUT, at the same time some modules are still not including the meson
files in the tarball, so we are unable to build them; please be sure
you include them!

Read more

Also: GNOME 3.25.4 Released

deepin 15.4.1 Linux Distro Launches with a Focus on Details, Launcher Mini Mode

Filed under
Linux

The developers behind the deepin GNU/Linux distribution announced today the general availability of the first point release to the deepin 15.4 stable series, versioned 15.4.1.

Read more

Also: deepin 15.4.1 Debian-based Linux distribution now available for download

Canonical Outs New Kernel Security Updates for All Supported Ubuntu Releases

Filed under
Ubuntu

On July 20, 2017, Canonical released new kernel updates for all supported Ubuntu Linux releases, including Ubuntu 14.04 LTS, Ubuntu 16.10, and Ubuntu 17.04, fixing up to fifteen security vulnerabilities.

Read more

Also: Ubuntu 16.04 LTS Users Can Now Install the Linux 4.10 Kernel from Ubuntu 17.04

Leftovers: Ask the Linux Foundation and Review of Damn Small Linux

Filed under
GNU
Linux
Reviews
  • Questions about SysAdmin Training from The Linux Foundation? Join the Next #AskLF

    His #AskLF chat will take place the Monday after SysAdmin Day: a professional holiday the organization has recognized for years.

  • Damn Small Linux A Lightweight Linux Distro For Old Computers

    By the name yes it’s really small and lightweight (had to utter this word too “damn!”). Damn Small Linux is a distro that offers a GUI based OS for low resource systems and some applications for normal users task-alike. It’s designed with the intention to pack all the modern features under 50 MB.
    ​Well, that may sound crazy but you cannot rely on it as a primary OS if you have a recent modern hardware. Instead take a U-turn now and see what Ubuntu, Fedora or OpenSUSE has to offer.

    Damn Small Linux latest version is v4.11rc2 and development has been in a long pause since 2015. Don’t be put off by that because that’s how some people roll. Slow and steady until they sort things out.

Software: Emacs and Magit, KeePassXC, Weblate, Cockpit, Kate, AtCore, GNOME Builder, Undo, and WPS Office

Filed under
Software
  • Emacs and Magit

    The Git source-code management system is widely known for its flexibility and for the distributed development model that it supports. Its reputation for ease of use is ... less well established. There should, thus, be an opening for front-end systems that can make Git easier to use. One of the most comprehensive Git front ends, Magit, works within the Emacs editor and has a wide following. But Magit has run into some turbulence within the Emacs development community that is blocking its wider distribution.

  •  
     

  • KeePassXC: A Great Way to Manage Passwords In Linux

    Do you always forget your password or want to have strongest password which can be hard to remember? If yes, then here is an application for you which will keep your passwords safe, strongest and encrypted. KeePassXC is an open-source forked from KeePassX by community released under GNU GPL license, it is cross-platform and all features works perfectly on every platform (Linux, Mac and Windows), as it is mentioned on KeePassXC website they have thoroughly tested features on multiple systems to provide user with the same look and feel on every supported operating system. This includes the beloved Auto-Type feature. KeePassXC, on the other hand, is developed in C++ and runs natively on all platforms giving you the best-possible platform integration.

  • Making Weblate more secure and robust

    Having publicly running web application always brings challenges in terms of security and in generally in handling untrusted data. Security wise Weblate has been always quite good (mostly thanks to using Django which comes with built in protection against many vulnerabilities), but there were always things to improve in input validation or possible information leaks.

  • Cockpit 146

    The Available Updates and Restart recommended pages now show the packages from the previous update run. This makes it easier to see which services to check or to decide whether a restart is really necessary...

  • Kate is now translated also on Windows!
  • AtCore officially moved to KDE Extragear

    It’s with all the joy in my heart that I share with you this amazing notice: AtCore was officially moved today to KDE Extragear by my favorite sysadmin Ben Cooksley after more than a month on KDE Review.

    This is the first huge milestone that we achieve on this 11 months of team work made by me, Patrick, Chris and sometimes Tomaz.

    Particularly I thanks, Luigui Toscano and Albert Cid for all the attention and review on AtCore code, that allowed us to make this move to Extragear. =D

  • Builder 3.25.5

    Like every year, GUADEC has snuck up on me. I’ll be heading out to Manchester in a handful of days which means things are going to get hectic any moment now.

    We just reached another milestone in our development phase towards 3.26. I’ve landed two important components which will have important roles in Builder’s future. The new visual layout, and the new shortcut engine. Neither are complete yet, but they are good enough to land on master and allow us to iterate without giant branches.

  • What I do at Undo

    In October, I started working for Undo and, now that I understand our technology better, it’s time to explain what I do.

    Undo produces a (closed source) technology which allows to record, rewind and replay Linux programs (on x86 and ARM).
    One of our products using this technology is UndoDB, a debugger built on top of gdb which allows you to do everything you do with gdb, but also to go back in time.

  • WPS Office Is An Alternative To Microsoft Office for Linux

    WPS Office is a slang for Writer, Presentation ad Spreadsheets, formerly known as Kingsoft Office. It is free (basic version) Office suite available for all platforms Linux, Windows, Mac, Android and iOS. A fully featured professional-grade version is also available for a subscription fee.

Games: Sky Rogue, Albion Online, and Abandon Ship

Filed under
Gaming
Syndicate content

More in Tux Machines

today's howtos

Red Hat and Fedora: Red Hat Academy, Lynne Chamberlain, Flatpak Apps, and Video of Fedora 26

Security: Windows 10 Bypass, Slackware OpenJDK Update and More

  • [Older] GHOSTHOOK ATTACK BYPASSES WINDOWS 10 PATCHGUARD
    A bypass of PatchGuard kernel protection in Windows 10 has been developed that brings rootkits for the latest version of the OS within reach of attackers. Since the introduction of PatchGuard and DeviceGuard, very few 64-bit Windows rootkits have been observed; Windows 10’s security, in particular its mitigations against memory-based attacks, are well regarded. Researchers at CyberArk, however, found a way around PatchGuard through a relatively new feature in Intel processors called Processor Trace (Intel PT).
  • [Slackware] OpenJDK 8 security round-up for July ’17
    Sooner than I anticipated, there is an update for OpenJDK 8. Andrew Hughes (aka GNU/Andrew) announced the release of IcedTea 3.5.0. The new icedtea framework compiles OpenJDK 8 Update 141 Build 15 (8u141_b15). This release includes the official July 2017 security fixes.
  • ROI (Not Security) the Most Immediate IoT Challenge
    According to Defining IoT Business Models, a new report from Canonical, the software company behind the Ubuntu Linux distribution, device security and privacy (45 percent) falls behind quantifying the return of investment (ROI) of their IoT projects (53 percent) as an immediate challenge. Canonical drew its conclusions from a survey of 361 IoT professionals conducted by IoTNow on behalf of the company.
  • Apply the STIG to even more operating systems with ansible-hardening
    Tons of improvements made their way into the ansible-hardening role in preparation for the OpenStack Pike release next month. The role has a new name, new documentation and extra tests. The role uses the Security Technical Implementation Guide (STIG) produced by the Defense Information Systems Agency (DISA) and applies the guidelines to Linux hosts using Ansible. Every control is configurable via simple Ansible variables and each control is thoroughly documented.
  • Open Source Flaw 'Devil's Ivy' Puts Millions of IoT Devices at Risk
    Millions of IoT devices are vulnerable to cybersecurity attacks due to a vulnerability initially discovered in remote security cameras, Senrio reported this week.
  • Microsoft’s secret weapon in ongoing struggle against Fancy Bear? Trademark law [Ed: Microsoft should make a start by stopping the addition of back doors to all its software]
  • SECURITY FOR THE SECURITY GODS! SANDBOXING FOR THE SANDBOXING THRONE
    Last year, probably as a distraction from doing anything else, or maybe because I was asked, I started reviewing bugs filed as a result of automated flaw discovery tools (from Coverity to UBSan via fuzzers) being run on gdk-pixbuf. Apart from the security implications of a good number of those problems, there was also the annoyance of having a busted image file bring down your file manager, your desktop, or even an app that opened a file chooser either because it was broken, or because the image loader for that format didn't check for the sanity of memory allocations.

5 open source tools for developing IoT applications

The internet of things is growing at a staggeringly fast pace, and is quickly coming to revolutionize virtually every aspect of modern life. Aspiring developers hoping to hop on board and profit off the growing phenomenon are constantly looking for the right tools to use. So what are the open source tools best suited for working with the IoT, and where can developers find them? A plethora of open source tools lay at the disposal of any would-be developer eager and wise enough to use them. By utilizing these five, you’ll find yourself tackling challenges and developing successful applications in no time. Read more Related: