Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Friday, 20 Jan 17 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Debian News (manpages and TeX Live)

Filed under
Debian
  • manpages.debian.org has been modernized (2017-01-18)

    https://manpages.debian.org has been modernized! We have just launched a major update to our manpage repository. What used to be served via a CGI script is now a statically generated website, and therefore blazingly fast.

    While we were at it, we have restructured the paths so that we can serve all manpages, even those whose name conflicts with other binary packages (e.g. crontab(5) from cron, bcron or systemd-cron). Don’t worry: the old URLs are redirected correctly.

  • Debian/TeX Live January 2017

    As the freeze of the next release is closing in, I have updated a bunch of packages around TeX: All of the TeX Live packages (binaries and arch independent ones) and tex-common. I might see whether I get some updates of ConTeXt out, too.

Security News

Filed under
Security
  • Wednesday's security updates
  • Secure your Elasticsearch cluster and avoid ransomware

    Last week, news came out that unprotected MongoDB databases are being actively compromised: content copied and replaced by a message asking for a ransom to get it back. As The Register reports: Elasticsearch is next.

    Protecting access to Elasticsearch by a firewall is not always possible. But even in environments where it is possible, many admins are not protecting their databases. Even if you cannot use a firewall, you can secure connection to Elasticsearch by using encryption. Elasticsearch by itself does not provide any authentication or encryption possibilities. Still, there are many third-party solutions available, each with its own drawbacks and advantages.

  • Resolve to Follow These 8 Steps for Better Data Security in 2017

    Getting physically fit is a typical New Year's resolution. Given that most of us spend more time online than in a gym, the start of the new year also might be a great time to improve your security “fitness.” As with physical fitness challenges, the biggest issue with digital security is always stagnation. That is, if you don't move and don't change, atrophy sets in. In physical fitness, atrophy is a function of muscles not being exercised. In digital fitness, security risks increase when you fail to change passwords, update network systems and adopt improved security technology. Before long, your IT systems literally become a “sitting duck.” Given the volume of data breaches that occurred in 2016, it is highly likely that everyone reading this has had at least one breach of their accounts compromised in some way, such as their Yahoo data account. Hackers somewhere may have one of the passwords you’ve used at one point to access a particular site or service. If you're still using that same password somewhere, in a way that can connect that account to you, that's a non-trivial risk. Changing passwords is the first of eight security resolutions that can help to improve your online security fitness in 2017. Click through this eWEEK slide show to discover the rest.

  • Pwn2Own 2017 Takes Aim at Linux, Servers and Web Browsers

    10th anniversary edition of Pwn2Own hacking contest offers over $1M in prize money to security researchers across a long list of targets including Virtual Machines, servers, enterprise applications and web browsers.

    Over the last decade, the Zero Day Initiative's (ZDI) annual Pwn2Own competition has emerged to become one of the premiere events on the information security calendar and the 2017 edition does not look to be any different. For the tenth anniversary of the Pwn2Own contest, ZDI, now owned and operated by Trend Micro, is going farther than ever before, with more targets and more prize money available for security researchers to claim by successfully executing zero-day exploits.

  • 'Factorio' is another game that was being hit by key scammers

    In another case of scammers trying to buy keys with often stolen credit cards to sell on websites like G2A, the developers of 'Factorio' have written about their experience with it (and other stuff too).

Red Hat News

Filed under
Red Hat

Development News: LLVM, New Releases, and GCC

Filed under
Development

PulseAudio 10 and Virtual GPU in Linux

Filed under
Linux
  • PulseAudio 10 Coming Soon, Using Memfd Shared Memory By Default

    It's been a half year since the debut of PulseAudio 9.0 while the release of PulseAudio 10 is coming soon.

    PulseAudio 9.99.1 development release was tagged earlier this month, then usually after x.99.2 marks the official release, so it won't be much longer now before seeing PulseAudio 10.0 begin to appear in Linux distributions.

  • Experimenting With Virtual GPU Support On Linux 4.10 + Libvirt

    With the Linux 4.10 kernel having initial but limited Intel Graphics Virtualization Tech support, you can begin playing with the experimental virtual GPU support using the upstream kernel and libvirt.

Licensing FUD and Licensing Advice

Filed under
Legal
  • On the Law and Your Open Source License [Ed: Black Duck is just a parasite selling proprietary software by bashing FOSS]

    "Looking back five or ten years, companies managing open source risk were squarely focused on license risk associated with complying with open source licenses," notes a report from Black Duck Software. Fast-forward to today, and the rules and processes surrounding open source licensing are more complex than ever.

  • Explaining the source code requirement in AGPLv3

    This condition was intended to apply mainly to what would now be considered SaaS deployments, although the reach of "interacting remotely through a computer network" should perhaps be read to cover situations going beyond conventional SaaS. The objective was to close a perceived loophole in the ordinary GPL in environments where users make use of functionality provided as a web service, but no distribution of the code providing the functionality occurs. Hence, Section 13 provides an additional source code disclosure requirement beyond the object code distribution triggered requirement contained in GPLv2 Section 3 and GPLv3 and AGPLv3 Section 6.

KDE Support For Flatpak Portals Progressing

Filed under
KDE

While GNOME / Red Hat developers have been leading the Flatpak app sandboxing initiative, KDE developers are making progress too with embracing Flatpak as a more convenient and secure way of securely packaging Linux desktop apps.

The latest on the KDE + Flatpak front is that Jan Grulich has been getting a KDE implementation of Flatpak's "Portals" working. Portals are the APIs offered to the sanboxed apps for essentially escaping the sandbox for certain operations.

Read more

Original: KDE Flatpak portals introduction

Games for GNU/Linux

Filed under
Gaming

Linux Graphics: Nouveau, NVIDIA and More

Filed under
Graphics/Benchmarks

Red Hat's OpenShift Container Platform openly shifts storage into the hands of devs

Filed under
Red Hat

Enterprise Linux biz Red Hat has revised its OpenShift Container Platform to include support for dynamic storage provisioning in local and remote applications.

The software is an on-premises platform-as-a-service product that allows organizations to run applications using Kubernetes orchestration and Docker containers.

Read more

Mozilla rebrands with clever new logo and open source design principles

Filed under
Moz/FF
OSS

Mozilla is a very important organization for the open web. While Firefox's share of usage has not been lighting the world on fire lately, Mozilla is much more than just a web browser developer. It often fights for the rights of web users. Since it is a not-for-profit organization, you can be fairly confident that its intentions are pure.

Read more

Open Source Serverless Computing Frameworks, and Why They Matter

Filed under
OSS

Serverless computing is fast becoming one of the hottest trends in the channel since the cloud. What is the open source ecosystem doing to keep pace with the serverless trend, and why does it matter? Here's a look.

Read more

Arch Linux on a Lenovo Yoga 900

Filed under
Linux

Dell charges $1650 for a similar XPS 13 albeit with the next generation of Intel chip. The current model of Yoga is the 910, and that laptop costs $1300. However, I didn’t even consider it because they screwed the pooch on the keyboard. Lots of reviews start with the color and feel of the materials on the outside, but I’m going to start on the keyboard layout.

Read more

5 of the Best Places to Find DEBs Packages for Debian-Based Linux Distros

Filed under
Linux
Debian

Debian-based Linux distributions have one thing going for them: superior software selection for users. When it comes to making software for Linux, all the big companies target this type of Linux distribution first. Often some developers don’t even bother to make packages for other types of Linux distributions and only make DEB packages.

However, just because many developers target these types of Linux distros doesn’t mean that its users never have problems finding software. Most Debian and Ubuntu users will find themselves hunting down DEB packages on the Internet.

Read more

Linux Foundation Certified System Administrator: Munzali Garba

Filed under
Linux
Interviews

I became interested in Linux when I started coding and learned of this entirely free, open source, and powerful system that a lot of computer tech pros used (and which also powered most of the servers on the Internet). Then I looked into it, found Ubuntu was the most popular distro …and so the glorious journey began.

Read more

Who Contributes to the Linux Kernel?

Filed under
Linux

The Linux kernel is an enormous open source project that has been in development for more than 25 years. While many people tend to think of open source projects as being developed by passionate volunteers, the Linux kernel is mostly developed by people who are paid by their employers to contribute. According to The Linux Foundation, since 2005, “some 14,000 individual developers from over 1,300 different companies have contributed to the kernel.”

Read more

“Unboxing” the Android Things Developer Preview

Filed under
Android

Android Things is Google’s answer to creating an environment for IoT devices. Take a slimmed down Android build, add some sensor-specific APIs, and provide it on a number of powerful pre-integrated micro-boards and you have a ready-made platform for building a host of upcoming IoT devices. Android Things can take advantage of many existing Android libraries, toolkits, and APIs, making it easier and quicker for developers to turn ideas into product. What’s not to like?

Read more

Syndicate content

More in Tux Machines

Leftovers: OSS

Development News

  • GCC 7 Moves Onto Only Regression/Doc Fixes, But Will Accept RISC-V & HSA's BRIG
    The GNU Compiler Collection (GCC) is entering its "stage four" development for GCC 7 with the stable GCC 7.1 release expected in March or April. Richard Biener announced today that GCC 7 is under stage four, meaning only regression and documentation fixes will be permitted until the GCC 7.1.0 stable release happens (yep, as per their peculiar versioning system, GCC 7.1 is the first stable release in the GCC 7 series).
  • 5 ways to expand your project's contributor base
    So many free and open source software projects were started to solve a problem, and people began to contribute to them because they too wanted a fix to what they encountered. End users of the project find it useful for their needs, and the project grows. And that shared purpose and focus attracts people to a project's community.
  • Weblate 2.10.1
    This is first security bugfix release for Weblate. This has to come at some point, fortunately the issue is not really severe. But Weblate got it's first CVE ID today, so it's time to address it in a bugfix release.

Intel Kabylake: Windows 10 vs. Linux OpenGL Performance

For those curious about the current Kabylake graphics performance between Windows 10 and Linux, here are some OpenGL benchmark results under each operating system. Windows 10 Pro x64 was tested and the Linux distributions for comparison were Ubuntu 16.10, Clear Linux, Antergos, Fedora 25 Xfce, and openSUSE Tumbleweed. Read more

Google's open-source Tilt Brush: Now you can create 3D movies in VR