Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Thursday, 23 Mar 17 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Titlesort icon Author Replies Last Post
Story 3 open source genealogy tools for mapping your family tree Roy Schestowitz 17/12/2015 - 1:15pm
Story 3 open source personal finance tools for Linux Roy Schestowitz 07/01/2016 - 10:45am
Story 3 tools that make scanning on the Linux desktop quick and easy Roy Schestowitz 23/09/2014 - 8:05pm
Story 4 open source alternatives to Dreamweaver Roy Schestowitz 24/03/2016 - 10:40am
Story 4 open source tools I used to write a Linux book Roy Schestowitz 06/07/2016 - 8:10am
Story 4 steps to creating a thriving open source project Roy Schestowitz 26/05/2015 - 3:48pm
Story 4 tips for how to migrate to Drupal Roy Schestowitz 20/02/2015 - 12:49pm
Story 4 versatile boards for fast, inexpensive IoT development Roy Schestowitz 10/10/2016 - 8:44am
Story 5 open access journals for open source enthusiasts Roy Schestowitz 21/10/2014 - 8:04am
Story 5 open source projects to join in 2015 Roy Schestowitz 05/01/2015 - 6:23pm

Security Leftovers

Filed under
Security
  • Security updates for Monday
  • Old Linux kernel security bug bites

    OK, hands up, who knows what High-Level Data Link Control (HDLC) is? It's an archaic networking data framing protocol that's used in modems, X.25, frame-relay, ISDN, and other now uncommon networking technologies. I know it because I used to work with them back in the day. You'll get to know it now because a researcher discovered a security hole hidden within the Linux kernel driver that implements it.

  • Seven year-old Linux vulnerability now patched

    An old vulnerability was just discovered in the Linux kernel, potentially allowing hackers to gain privilege escalation, or cause a denial of service. The vulnerability was quickly fixed and there have been no signs of it in the wild, although that does not necessarily mean it went unnoticed.

  • OpenSSH 7.5 released

    OpenSSH 7.5 has just been released. It will be available from the mirrors listed at http://www.openssh.com/ shortly.

  • OpenSSH 7.5 Has Security Fixes, Removes OpenSSL 1.0 Support for Portable OpenSSH

    OpenSSH, the cross-platform and open-source 100% complete SSH 2.0 protocol implementation offering both SFTP server and client support was updated today to version 7.5.

    OpenSSH 7.5 comes three months after the release of OpenSSH 7.4 in late December 2016, and promises to be a maintenance update that addresses two important security issues, implements support for the "=-" syntax to make removing of methods from algorithm lists a lot easier, and fix numerous reported bugs.

  • Is Linux Mint a secure distribution?

    Linux Mint has been lambasted by some in the media for security problems over the last few years. But how accurate are such perceptions? Does Linux Mint really suffer from security problems or is it all much ado about nothing?

    A writer at DistroWatch wades into the controversy and examines some of the myths and misunderstandings about Linux Mint and security.

  • Linux Mint's security record

    Some of the more common misunderstandings I have encountered recently have involved the Linux Mint distribution. Mint has been a popular project in recent years and, with many people using the distribution and talking about the project, there is bound to be some mis-communication. In particular, most of the rumours and misunderstandings I have encountered have revolved around Mint's security practises and history. I would like to clear up a few of the more common rumours.

  • Mozilla Firefox is the First Pwn2own 2017 Victim to be Patched

    Some vendors respond to security issues faster than others. Last week, the 10th annual Pwn2own hacking challenge was hosted by Trend Micro's Zero Day Initiative (ZDI), with multiple groups of researchers taking aim at web browsers, operating systems and virtualization technology.

    Mozilla's Firefox web browser was successfully exploited on March 16, the second day of the Pwn2own event. Researchers from Chaitin Security Research Lab were the only group to attack Mozilla Firefox, and earned $30,000 for demonstrating a new zero-day exploit. The day the exploit was demonstrated, the only thing publicly revealed about the exploit is that it made use of an integer overflow flaw in combination with an uninitialized memory buffer in the Windows kernel.

Leftovers: OSS

Filed under
OSS

Leftovers: Games

Filed under
Gaming
  • Dota 2 Receives Optimization For AMD Ryzen CPUs

    If you were an early buyer of AMD Ryzen hardware, Valve has pushed out a Dota 2 game update with some Ryzen optimizations.

    Today's Dota 2 update from Valve mentions, "Improved threading configuration for AMD Ryzen processors." Presumably this is with better dealing of Ryzen's new SMT capabilities for AMD processors.

  • Space sandbox game 'Avorion' has a whopper of an update, considering getting a server for it

    I am a massive fan of 'Avorion' [Steam] as this Early Access space sandbox has a lot going for it and it just got a major update. I am also considering setting up a GOL server for it!

    This new update will mean a re-design of your ships, so be warned. The flight model has been reworked and you now need to make use of three new blocks: Directional Thruster, Gyro Array, Inertia Dampeners.

Mesa and Radeon RX Vega

Filed under
Graphics/Benchmarks

ToaruOS 1.0.4

Filed under
Reviews

Most of the projects we talk about on DistroWatch are variants of Linux or, occasionally, one of the BSDs. However, there are other open source operating systems out there, smaller projects which rarely get attention because they have fewer developers or are not as rich in features. This week I would like to discuss a project that has been put together as a hobby, but which has a surprisingly rich feature set, especially when we consider the operating system appears to be mostly the work of one developer.

Read more

7 ways to discuss legal matters with an open community

Filed under
OSS

Having watched a fair number of people attempt to engage both the Open Source Initiative's licensing evaluation community and the Apache Software Foundation's legal affairs committee, I'd like to offer some hints and tips for succeeding when it's your turn to conduct a legal discussion with an open community.

Read more

antiX 17 Linux Alpha 2 ISO Images Are Based on Debian GNU/Linux 9 "Stretch"

Filed under
GNU
Linux
Debian

The developers of the Debian-based antiX Linux operating system released today new Alpha builds of the upcoming antiX 17 series, the first public images based of Debian Stretch.

Read more

Emmabuntus Debian Edition 1.02 Lands Based on Debian GNU/Linux 8.7, Xfce Desktop

Filed under
GNU
Linux
Debian

Patrick Emmabuntüs is informing Softpedia today about the immediate availability for download of the Debian-based Emmabuntus Debian Edition 1.02 operating system.

Read more

AMD GPU Linux driver patches is listing seven Vega 10 IDs

Filed under
Linux
Hardware

100 Linux patches amounting to over fourty thousand lines of code was sent out today for review in order to provide "Vega 10" support within the Linux AMDGPU DRM driver.

Adding Vega support to AMDGPU is a big task due to all of the changes over Polaris and other recent GPUs reports Phoronix.

Read more

ExTiX 17.2 "The Ultimate Linux System" Released with LXQt 0.10.0 and Kernel 4.10

Filed under
Linux

After informing us about the availability of a new build of his Arch Linux-based ArchEX GNU/Linux distribution, Arne Exton is today announcing the general availability of ExTiX 17.2.

Read more

Tails 3.0 Anonymous LiveCD Gets Third Beta Release with Important Security Fixes

Filed under
Security
Debian

The developers of the Tails amnesic incognito live system announced the availability of the third Beta release of the upcoming major Tails 3.0 operating system, which will be based on the soon-to-be-released Debian GNU/Linux 9 "Stretch" OS.

Read more

Plasma 5.9.3, Applications 16.12.3 and Frameworks 5.32.0 available in Chakra

Filed under
KDE

It's only been days since our latest release Goedel 2017.03 was announced, but KDE software updates fully roll in Chakra and we could not delay this any further. As always, simply upgrading your system after installation will provide you with the latest available software in our repositories.

The most recent updates for KDE's Plasma, Applications and Frameworks series are now available to all Chakra users. All of these have been built against an important update of Qt to version 5.8.0.

Read more

openSUSE Tumbleweed Users Get Linux Kernel 4.10.3, GNOME 3.24 Coming Soon

Filed under
SUSE

Dominique Leuenberger from the openSUSE Project is informing the Tumbleweed community about the latest updates brought by a total of five snapshots during the week that passed.

Read more

Koozali SME Server 9.2 Linux Distro to Be Based on CentOS 6.8, RC1 Out Now

Filed under
Red Hat
OSS

Terry Fage from the Koozali SME Server development team announced this past weekend the availability of the first Release Candidate (RC) of the upcoming Koozali SME Server 9.2 stable series of the server-oriented operating system.

Read more

Android Leftovers

Filed under
Android

today's leftovers

Filed under
Misc
  • Microsoft's latest Windows 10 ad annoys Chrome users with taskbar pop-ups

    Microsoft’s aggressive advertising push inside Windows 10 is going beyond pop-ups for Microsoft Edge.

    Myce recently spotted yet another pop-up ad on the taskbar in Windows 10. This time around Microsoft was advertising its extension for Chrome dubbed the Personal Shopping Assistant (Beta). The extension is a Microsoft Garage project that lets you compare prices across shopping sites.

    Prior to the Chrome extension pop-up, Microsoft was advertising its rewards program for Microsoft Edge, which we spotted in early November. The earlier ad appeared to be targeted at people who didn’t use Edge that frequently.

  • OpenStack Private Cloud is Doing Just Fine

    Sometimes you have to dig beneath the surface of headlines to understand what’s really going on. I guess that’s one thing most of us have learned in recent months. Sometimes you need some careful analysis to get to the real story. It seems like that’s as true in the IT world as it is with tabloid news.

  • [Tumbleweed] Review of the week 2017/11
  • Valve & Microsoft Are Among The Sponsors For Debian's DebConf 17

    Valve is returning as a gold sponsor to this year's Debian DebConf event.

    Last year Valve sponsored DebConf 16 and this year they are back to their golden sponsor tier for backing DebConf 17 in Montreal, Canada.

  • Secretive Billionaire Reveals How He Toppled Apple in China

    The duo together shipped more than 147 million smartphones in China in 2016, dwarfing Huawei Technologies Co.’s 76.6 million units, Apple’s 44.9 million and Xiaomi’s 41.5 million, IDC estimates. Oppo and Vivo both doubled their 2015 haul. In the fourth quarter, they were No. 1 and No. 3, respectively -- Huawei was second. Their approach worked particularly well in lower-tier cities, where mid-range phones became a mainstream hit, said Tay Xiaohan, an IDC analyst.

Docker Shares, Celebrates

Filed under
Server
Software
  • Docker to Donate its Container Runtime, containerd, to the Cloud Native Computing Foundation

    Docker plans to donate its containerd container runtime to the Cloud Native Computing Foundation, a nonprofit organization dedicated to organizing a set of open source container-based cloud-native technologies.

    In December, Docker released as open source the code for containerd, which provides a runtime environment for Docker containers. By open sourcing this component of the Docker stack, the company wanted to assure users, partners, and other actors in the container ecosystem that the core container component would remain stable, and that the community would have a say in its advancement.

  • Docker at 4: The Container Revolution Continues

    The open-source Docker container project held events around the globe last week as it celebrated its fourth birthday. Docker is more popular than ever as the standard bearer for the container microservices DevOps movement, though Docker Inc. as a company now faces more challenges than ever before as well.

    Three years ago, I wrote about the first anniversary of Docker, predicting significant growth in 2014. As it turned out, I was right about the growth, though I was wrong about Docker Inc. Back in 2014, I had predicted that Docker Inc. would likely be acquired, but to date that hasn't happened—though there has been no shortage of speculation over the last three years.

    Docker Inc. and the open-source container ecosystem that Docker helped create have evolved significantly since 2014, and over the course of the project's four-year existence. This past year has arguably been the most significant yet for Docker Inc., both as a business and an open-source project.

Graphics in Linux

Filed under
Graphics/Benchmarks
  • QEMU Is Interested In Vulkan Guest Support "Vulkan-ize Virgl"

    The QEMU project is hoping for some interested developers to enhance VirGL for better offering OpenGL guest support with QEMU guests and possibly extend it to include Vulkan support.

  • how close to conformant is radv? - airlied
  • AMD Sends Out 100 Patches, Enabling Vega Support In AMDGPU DRM

    100 patches amounting to over fourty thousand lines of code was sent out today for review in order to provide "Vega 10" support within the AMDGPU DRM driver.

    Adding Vega support to AMDGPU is a big task due to all of the changes over Polaris and other recent GPUs. Vega rolls out a new video BIOS interface, lots of new hardware intellectual property, support for video decode using UVD (UVD 7.0), support for video encode using VCE (VCE 4.0), support for 3D via RadeonSI, power management, full display support using DC, and support for SR-IOV virtualization.

  • How The RadeonSI OpenGL Performance Has Evolved From Mesa 11.1 To Mesa 17.1 Git

    For those curious how AMD's RadeonSI Gallium3D driver for GCN GPUs has evolved, here are benchmarks with two graphics cards showing how the RadeonSI Mesa performance has evolved since Mesa 11.1 going back to late 2015.

  • Mesa 17.0.2 Released Along With Mesa 13.0.6

    The second point release is now available to Mesa 17.0.

    Mesa 17.0.2 is shipping this Monday with a dozen fixes to the Intel ANV / Radeon RADV Vulkan drivers, various improvements to the Intel OpenGL driver, and fixes for Nouveau NVC0 and RadeonSI.

Kernel Space/Linux

Filed under
Linux
  • Linux 4.11-rc3 Released
  • Raspberry Pi VC4 HDMI Audio Support Coming To Linux 4.12

    The ongoing work for HDMI audio support with the VC4 DRM driver is being wrapped up and will be working in the Linux 4.12 kernel.

    HDMI audio will work in conjunction with the open-source VC4 driver when the Linux 4.12 kernel rolls out. This was among the changes queued today in drm-misc-next and in turn called for landing into DRM-Next, which will be merged next month into the Linux 4.12 mainline code-base.

today's howtos

Filed under
HowTos
Syndicate content

More in Tux Machines

Kernel Space/Linux

Red Hat News

openSUSE Tumbleweed: A Linux distribution on the leading edge

So, to summarize: openSUSE Tumbleweed is a good, solid, stable Linux distribution with a wide range of desktops available. It is not anything particularly exotic or unstable, and it does not require an unusual amount of Linux expertise to install and use on an everyday system. To make a very simple comparison, in my experience installing and using Tumbleweed is much less difficult and much less risky than using the Debian "testing" distribution, and it is kept much (much much) more up to date than openSUSE Leap, Debian "stable", Linux Mint or Ubuntu. I don't say that to demean any of those other distributions. As I said at the end of my recent post about point-release vs. rolling-release distributions, if your hardware is fully supported by one of those point-release distributions, and you are satisfied with the applications included in them, then they are certainly a good choice. But if you like staying on the leading edge, or if you have very new hardware which requires the latest Linux kernel and drivers, or you just want/need the latest version of some application (in my case this would be digiKam), then openSuSE could be just what you want. Read more Also: Google Summer of Code 2017

Graphics in Linux

  • 17 Fresh AMDGPU DC Patches Posted Today
    Seventeen more "DC" display code patches were published today for the AMDGPU DRM driver, but it's still not clear if it will be ready -- or accepted -- for Linux 4.12. AMD developers posted 17 new DC (formerly known as DAL) patches today to provide small fixes for Vega10/GFX9 hardware, various internal code changes, CP2520 DisplayPort compliance, and various small fixes.
  • libinput 1.7.0
  • Libinput 1.7 Released With Support For Lid Switches, Scroll Wheel Improvements
    Peter Hutterer has announced the new release of libinput 1.7.0 as the input handling library most commonly associated with Wayland systems but also with Ubuntu's Mir as well as the X.Org Server via the xf86-input-libinput driver.
  • Nouveau TGSI Shader Cache Enabled In Mesa 17.1 Git
    Building off the work laid by Timothy Arceri and others for enabling a TGSI (and hardware) shader cache in the RadeonSI Gallium3D driver as well as R600g TGSI shader cache due ot the common infrastructure work, the Nouveau driver is now leveraging it to enable the TGSI shader cache for Nouveau Gallium3D drivers.