Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Friday, 15 Oct 21 - Tux Machines is a community-driven public service/news site which has been around for over a decade and a half and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Programming Leftovers Roy Schestowitz 15/10/2021 - 6:06pm
Story today's leftovers Roy Schestowitz 15/10/2021 - 6:04pm
Story IBM/Red Hat Leftovers Roy Schestowitz 15/10/2021 - 6:02pm
Story Security Leftovers Roy Schestowitz 15/10/2021 - 5:55pm
Story PinePhone Pro Linux Smartphone Unveiled with 4GB RAM, Custom Rockchip SoC Marius Nestor 2 15/10/2021 - 5:27pm
Story 3 ways to manage RPG character sheets with open source Rianne Schestowitz 15/10/2021 - 5:20pm
Story Kubuntu 21.10 Impish Indri Released Rianne Schestowitz 15/10/2021 - 5:17pm
Story PineNote is a $399 E-ink Tablet that Runs Linux Roy Schestowitz 12 15/10/2021 - 5:14pm
Story Android Leftovers Rianne Schestowitz 15/10/2021 - 5:09pm
Story LibreOffice 7.2.2 for Slackware-current is available Rianne Schestowitz 15/10/2021 - 5:01pm

Proprietary Web and Vista 11 Performance Catastrophe

Filed under
Microsoft
Web
  • Client-side content scanning as an unworkable, insecure disaster for democracy • The Register

    Fourteen of the world's leading computer security and cryptography experts have released a paper arguing against the use of client-side scanning because it creates security and privacy risks.

    Client-side scanning (CSS, not to be confused with Cascading Style Sheets) involves analyzing data on a mobile device or personal computer prior to the application of encryption for secure network transit or remote storage. CSS in theory provides a way to look for unlawful content while also allowing data to be protected off-device.

    Apple in August proposed a CSS system by which it would analyze photos destined for iCloud backup on customers' devices to look for child sexual abuse material (CSAM), only to backtrack in the face of objections from the security community and many advocacy organizations.

    The paper [PDF], "Bugs in our Pockets: The Risks of Client-Side Scanning," elaborates on the concerns raised immediately following Apple's CSAM scanning announcement with an extensive analysis of the technology.

  • Vivaldi Adblock is mostly Adblock Plus and ublock-origin.

    The Vivaldi browser has a built-in ad blocker.

    However, the company hasn’t been extremely forthcoming about how it works.

    However, it seems to accept any list in adblock plus format, and Vivaldi seems to have implemented Webkit Content Blockers as well.

    Vivaldi includes a list called “DuckDuckGo Tracker Radar”, which leads to what seems to be a Webkit Content Blocker format list mirrored by Vivaldi.

    In my testing, the DuckDuckGo Tracker Radar seems to largely duplicate what Fanboy’s Ultimate List already had in it.

    While Fanboy’s Ultimate List is not in Vivaldi by default, you can add it by going to Vivaldi Menu/Settings/Privacy, and then select “Block Trackers and Ads”, and then I would suggest de-selecting everything in both columns that Vivaldi defaults to having on, then clicking + under Ad Blocking Sources, then adding https://www.fanboy.co.nz/r/fanboy-ultimate.txt and then Import. It should tell you it brought in a bunch of ad blocking rules.

  • This week's Windows 11 patch didn't fix AMD performance woes • The Register

    Windows 11 received its first bundle of fixes this week, but AMD users hoping for respite from performance issues that have dogged their PCs were to be disappointed. In fact, for some, performance might have actually got a bit worse.

    It wasn't the news AMD fangirls and fanboys were hoping for. After AMD noted performance issues with Microsoft's latest operating system, a fix had been expected to drop during October. Alas, that fix didn't turn up in this week's first Cumulative Update for the GA code. In fact, according to hardware site TechPowerUp, things might have even deteriorated.

  • Microsoft’s first Windows “11” update addresses AMD CPU scheduling problems. Ends up making them worse. – BaronHK's Rants

    Microsoft released their first “Windows 11” update.

    It was deployed to try to correct the AMD CPU problems that Windows “11” created on Ryzen, which tripled L3 CPU cache latency and slowed the processor down by an average of 15%.

    The update ended up making the problem worse. Doubling the cache latency from where it already was at launch.

    “Early adopters” of Microsoft’s latest broken operating system are seeing much worse performance than they were on Windows 10, even on the Intel side, as Microsoft’s “virtualization based security” was already wreaking havoc on video game performance.

  • The "What If" Performance Cost To Kernel Page Table Isolation On AMD CPUs - Phoronix

    Made public this week by CPU security researchers at Graz University of Technology and CISPA Helmholtz Center for Information Security was the research paper published "AMD Prefetch Attacks through Power and Time". The paper points to AMD CPUs suffering from a side-channel leakage vulnerability through timing and power variations of the PREFETCH instruction. The paper argues that AMD CPUs should activate stronger page table isolation by default. AMD has now published their security response where they are not recommending any mitigation changes at this time. But what if Kernel Page Table Isolation (KPTI/PTI) proves necessary for AMD CPUs? Here are some initial benchmarks showing what that performance impact could look like.

Extreme Overclocker Takes Raspberry Pi to 3 GHz

Filed under
GNU
Linux
Hardware

Some people will do anything for a speed boost, prying the lids off expensive i9s and subjecting them to all manner of chilly chemical concoctions to drag every last megahertz out of the silicon. We’ve not seen anybody do such an extreme overclock with a Raspberry Pi before, but there's a first time for everything. Claude Schwarz has overclocked his Raspberry Pi Compute Module 4 to an extraordinary 3 GHz.

[...]

Schwarz's earlier efforts saw him overclock the Compute Module 4 to 2.89 GHz, still an extreme speed boost over the stock 1.5 GHz. As well as using liquid metal thermal paste, Schwarz used active cooling on the Compute Module 4 in the form of a heatsink and fan designed for the Raspberry Pi (which could be a 52Pi model cooler). Taking the steps to overclock even further Schwarz disabled power management features to unlock a higher overclock, resulting in much higher CPU speeds than we can achieve with a typical overclock. We should probably say at this point that anyone doing this is on their own, as these extreme actions will definitely void your warranty, and we take no responsibility for whatever happens if you try it.

A little more fumbling in the Pi’s firmware - what Schwarz refers to as “removing all safety nets” - and the CM4 is running at an impressive 2.4GHz at 26.2°C (79.16°F). Not bad for a board that started life at 1.5GHz and didn’t require cooling.

Read more

today's howtos

Filed under
HowTos
  • Access AlmaLinux 8 remote desktop using Windows RDP - Linux Shout

    Do you want to use Windows 7/8/10/11 RDP to connect and access Almalinux 8 GUI remote desktop? Then here is the way to do that by installing XRDP.

    RDP is the in-built feature of the Windows operating system, however, on Linux, we don’t have this feature. But we can get this with the help of XRDP, an open-source implementation of remote desktop protocols developed by Microsoft.

  • How to Install Zoom in Debian-Based Linux Distros

    Zoom is one of the most popular applications for online meetings. Seeing its most significant user spike in 2020 during the COVID-19 lockdown, the communication platform integrates cloud video conferencing, media sharing, and real-time messaging into a simple application.

    Zoom has become a go-to software for hosting webinars, creating conference rooms, and organizing online meetings on all platforms including Linux distros.

    In today’s article, we present you with the quickest guide on how to install the latest version of Zoom on your Ubuntu machine. Not to worry, the same instructions apply to all Debian-based operating systems.

  • How to Install MATE Desktop 1.26 on Fedora 35 - LinuxCapable

    For those not familiar with MATE Desktop Environment, it is the continuation of GNOME 2. It is famous for being lightweight, fast, and stable that runs on Linux and most BSD operating systems. MATE is also an excellent choice for a lower-end system or those looking to remain efficient on system resources. The newest version of MATE Desktop includes Wayland support for a swathe of desktop components and applications.

  • How to Upgrade From Ubuntu 21.04 to Ubuntu 21.10 Impish Indri | UbuntuHandbook

    Ubuntu 21.10 officially released! Here’s what’s new and how to upgrade from the previous Ubuntu 21.04.

    Ubuntu 21.10, codenamed “Impish Indri”, is the new short-term release with 9 months support. It features Linux Kernel 5.13 with new hardware support. And it ships GNOME Desktop 40 with a redesigned activities overview screen. Workspaces are now arranged horizontally. Three-finger touchpad gestures are supported out-of-the-box to toggle overview and switch workspaces.

    For Ubuntu Server 21.10, it integrates OpenStack Xena, QEMU 6.0, PHP8, libvirt 7.6, Kubernetes, and Ceph with advanced life-cycle management tools.

  • How to Upgrade Ubuntu 21.04 to Ubuntu 21.10 Impish Indri - LinuxCapable

    Ubuntu has officially released the Ubuntu 21.10 codenamed Impish Indri. This has seen the introduction of GNOME 40 as the default desktop, and sadly GNOME 41 did not make the final cut. The release also introduces Linux Kernel 5.13 among new applications and other back-end performance improvements.

  • How to create database migration in Laravel - Anto ./ Online
  • How to install the Vidiot video editor on Linux

    Are you in need of a simple non-linear video editor for Linux? Consider checking out Vidiot. It’s a straightforward editor tool targeted at new users. It does basic things like compositing, changing speed, transitions, titles, and other essential things a user would want when editing.

    The Vidiot video editor works on Linux, and the developer has ported the program to Ubuntu and Debian via a downloadable DEB package. Additionally, the users can install the application via a standalone TarGZ archive and a Snap package via the Snap store. Here’s how to get it working on your Linux system.

  • How to install and configure docker In Centos 8 – Citizix

    Docker is an open source containerization platform. It enables developers to package applications into containers—standardized executable components combining application source code with the operating system (OS) libraries and dependencies required to run that code in any environment.

    Docker is a set of platform as a service products that use OS-level virtualization to deliver software in packages called containers. Containers are isolated from one another and bundle their own software, libraries and configuration files; they can communicate with each other through well-defined channels.

    In this guide we are going to explore various options to install docker in Centos 8...

  • How to install RPG Paper Maker on a Chromebook

    Today we are looking at how to install RPG Paper Maker on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

GNOME 41 Desktop Lands in openSUSE Tumbleweed, KDE Plasma 5.23 Is Coming Soon

Filed under
Linux
News
GNOME
SUSE

The GNOME 41 desktop environment series was released at the end of September 2021, and is slowly making its way into the stable software repositories of various rolling-release distributions. It still didn’t arrive for Arch Linux users, but it landed in openSUSE Tumbleweed.

If you can’t wait any longer for GNOME 41 to arrive in the software repositories of your favorite distro and you want to use it right now, you can download and install the latest openSUSE Tumbleweed Live GNOME ISO snapshot from here.

Read more

Mozilla Leftovers

Filed under
Moz/FF
  • Jan-Erik Rediger: Fenix Physical Device Testing

    The Firefox for Android (Fenix) project runs extensive tests on every pull request and when merging code back into the main branch.

    While many tests run within an isolated Java environment, Fenix also contains a multitude of UI tests. They allow testing the full application, interaction with the UI and other events. Running these requires the Android emulator running or a physical Android device connected. To run these tests in the CI environment the Fenix team relies on the Firebase test lab, a cloud-based testing service offering access to a range of physical and virtual devices to run Android applications on.

    To speed up development, the automatically scheduled tests associated with a pull request are only run on virtual devices. These are quick to spin up, there is basically no upper limit of devices that can spawn on the cloud infrastructure and they usually produce the same result as running the test on a physical device.

  • CTCFT 2021-10-18 Agenda

    After the CTCFT this week, we are going to try an experimental social hour. The hour will be coordinated in the #ctcft stream of the rust-lang Zulip. The idea is to create breakout rooms where people can gather to talk, hack together, or just chill.

  • Hacked! Unravelling a data breach

    The bottom line: If you get snagged in a data breach, tie up any loose threads quickly to protect yourself, and stay on top of monitoring your accounts for suspicious activity.

  • Dyn async traits, part 5

    If you’re willing to use nightly, you can already model async functions in traits by using GATs and impl Trait — this is what the Embassy async runtime does, and it’s also what the real-async-trait crate does. One shortcoming, though, is that your trait doesn’t support dynamic dispatch. In the previous posts of this series, I have been exploring some of the reasons for that limitation, and what kind of primitive capabilities need to be exposed in the language to overcome it. My thought was that we could try to stabilize those primitive capabilities with the plan of enabling experimentation. I am still in favor of this plan, but I realized something yesterday: using procedural macros, you can ALMOST do this experimentation today! Unfortunately, it doesn’t quite work owing to some relatively obscure rules in the Rust type system (perhaps some clever readers will find a workaround; that said, these are rules I have wanted to change for a while).

A new conceptual model for Fedora

Filed under
Red Hat

It’s no news now that Fedora has a new logo, and what you may not realize is that we do not have a new website – when we began the new logo rollout process, we simply updated the logo in-place on our pre-existing website.

The thing is – and this is regardless of the underlying code or framework under-girding the website, which I have no issues with – the messaging and content on the current getfedora.org website has not kept pace with the developments, goals, and general narrative of the Fedora project. We have a lot of different initiatives, developments, and collaborations happening at what I find at times is a dizzying pace that is challenging to keep up with. The number of different fronts that Fedora development takes place on and the low, technical level they occur at makes it difficult to understand the big picture of what exactly Fedora is, and why and how would one want to use it.

Read more

My Fedora Linux home network part 1 – the data server

Filed under
Red Hat

The following article is the first of a series about how I’ve used the Fedora Linux operating system to create a home network. My goal is to demonstrate a few ways that Fedora Linux can be useful to a home user or a Small Office / Home Office (SOHO) user and to encourage more people to test, implement and use Fedora Linux. There is also demand in the workforce for Information Technology (IT) professionals who are ready to step into duties that require familiarity with Linux. With Linux, you can start without big investments. You can use what equipment you have and grow with your ideas.

Read more

today's leftovers

Filed under
Misc
  • Valve Reluctantly Shows How To Mod The Steam Deck | Hackaday

    As the narrator in this official instructional video from Valve reminds the viewer several times, the gaming company would really rather you not open up your brand new Steam Deck and start poking around. They can’t guarantee that their software will function should you start changing the hardware, and since there’s no source for replacement parts yet anyway, there’s not much you can do in the way of repairs.

    That said, Value does believe you have the right to take apart your own device, and has produced the video below as an aid to those who are willing risk damaging their new system by opening it up. Specifically, the video goes over how to replace the most likely wear items on the handheld, namely the thumb sticks and the SSD. It seems inevitable that the stock thumb sticks will wear down after a couple years of hard use, so we’re glad to see they are easily removable modules. As for the SSD, it stands to reason that users would want to swap it out for faster and higher capacity models as they become available in the coming years.

  • The New Radeon RX 6600: WILL IT LINUX? - Invidious

    AMD's Radeon RX 6000 Series doesn't have the best track record for out-of-box Linux support. Is the new RX 6600 any better? I test 5 distros to bring you that answer!

  • Weirdest File Manager You've Never Heard Of - Invidious

    While most people are familiar with command line interfaces and graphical user interfaces those aren't the only options out there and today we're looking at a weird program that users a zoomable user interface and one great example of this is EagleMode

  • The Jackbox Party Pack 8 is out now with improved Linux support | GamingOnLinux

    The Jackbox Party Pack 8 is the latest set of funny games from Jackbox Games, Inc. and they teamed up with porter / FNA developer Ethan Lee to deliver improved Linux support.

    Speaking on Twitter, Lee mentioned the Linux version includes fresh SDL2 with support for Vulkan and OpenGL, along with the latest Wayland work so it should run well there too.

  • Nations vow to combat ransomware at US-led summit [iophk: Windows TCO]

    The nations also resolved to work together in law enforcement operations -- which are challenging because they cross borders and require special skills -- and the use of diplomatic pressure.

  • Apple warns: Sideloading apps threatens an iCrime wave

    Apple is fighting back against growing pressure to support sideloading on its App Stores with an extensive 28-page white paper in which it offers stark security and privacy warnings.

  • New DevOps Bootcamp released by Linux and CD Foundations
  • TriggerMesh cloud-native automation goes open source

    You can call what TriggerMesh does a lot of things. It's cloud-native integration, event-driven cloud automation, Function-as-a-Service (FaaS), or, of course, serverless computing. No matter what name you use -- TriggerMesh's creators like "serviceful" -- the game is to enable you to easily hook, deploy and manage cloud functions into powerful programs. Personally, I find it handy to think that TriggerMesh takes the DevOps concepts of such programs as Ansible, Chef, and Puppet and moves them from the operating system level to the cloud layer. Now, TriggerMesh has taken a major step forward by becoming an open-source program.

  • KuberLogic open-source platform turns infrastructure into a managed PaaS

    In a rapid automated DevOps environment, organizations have dedicated teams that handle all the provisioning overhead for developers. Organizations without a dedicated team struggle to find the right solution that will automate the provisioning of managed database services. KuberLogic solves this problem by automatically provisioning and managing database clusters using the K8S operator.

Arch Linux vs Ubuntu: which to choose?

Filed under
Linux
Ubuntu

Arch Linux and Ubuntu are two major Linux distributions that both get a lot of attention, have dedicated fanbases, and are used base-distributions for other systems that are forked off of them… But, how they do things are quite different, and some users might find one more to their liking than the other.

It’s no secret to anyone who has followed previous articles I’ve written on Ghacks, that I love Arch Linux and its derivatives… But, that’s not to say that Ubuntu and Ubuntu-based systems are something I don’t use. Actually, I have multiple Ubuntu systems running as I write this, and zero Arch based systems. I use Ubuntu as a server distribution right now, on three different servers. I love the APT system for package management, and I find Ubuntu stable and secure, with a huge support community for any issues I may face.

Read more

Canonical/Ubuntu: Hackathon, Mir, and More

Filed under
Ubuntu
  • Top 6 projects from our Hackathon | Ubuntu

    On the 4th and the 5th of October 2021, the Web & Design team ran a remote Hackathon. The theme of it was to build tools that would make our life easier at Canonical.

    Creativity and collaboration are at the heart of any Hackathon. 26 visual and UX designers, developers and project managers split into 6 groups participated in this adventure. Here is a highlight of what was built over the course of those two days.

  • Mir 2.5, incorporating new features to improve the development of embedded graphic applications | Ubuntu

    With another release of Mir, we have prepared a new blog with the a roundup of the product’s newest features. Mir is our flexible display server that provides a set of libraries and a Wayland compositor for building Wayland-based shells with integrated window management. Today, Canonical is launching Mir 2.5, a new version of Mir that aims to help developers. Mir 2.5 brings new features to reduce development time and integration hassle.

  • Canonical Presence at KubeCon + CloudNativeCon NA: Keynote by Founder/CEO Mark Shuttleworth, Announcement of Ubuntu 21.10 Beta | Ubuntu

    Canonical, the makers of Ubuntu, will have a major presence at this year’s KubeCon + CloudNativeCon NA. The Cloud Native Computing Foundation’s flagship conference brings together adopters and technologists from leading open-source and cloud-native communities. It takes place Oct. 11-15 in Los Angeles and with a virtual option.

    Ubuntu is the foundation for the three public cloud providers’ managed Kubernetes services – Amazon Elastic Kubernetes Service (EKS), Microsoft Azure Kubernetes Service (AKS), and Google Kubernetes Engine (GKS) – which is why it is the only OS that can seamlessly support workloads on any of them.

  • Driving innovation in autonomous mobile robots – University of Hawaii hits Indy 500 | Ubuntu

    On October 23, the historic Indy 500 will experience a new type of race. Not just a race for all the fans and lovers of racecars, but a race that is now changing the future of driving. Autonomous mobile robots will be racing to see not only who is the fastest, but also the most technically advanced car on the track.

    The Indy Autonomous Challenge brings together universities and organizations from around the world to design and create a new generation of automated vehicle software. Competitors are working to achieve the goal of crossing the finish line in the 20-lap race in 25 minutes or fewer at speeds of more than 120 mph. The race is an excellent showcase of state-of-the-art autonomous mobile robot technology.

    Increasing awareness for autonomous mobile robots, and cutting edge technology in general, is a mission that closely aligns with Canonical’s values. That’s why we are a proud supporter of the competition and sponsor of the University of Hawaii.

Devices/Embedded With Android or Linux

Filed under
Hardware
  • i.MX8M Mini based mini-PC starts at $305

    ICOP’s “EBOX-IMX8MM” embedded computer runs Android 9 or Linux on an i.MX8M Mini with up to 4GB LPDDR4 and 64GB eMMC plus 2x GbE, 3x USB, 4x COM, WiFi/BT, and a 12-36V input.

    Taiwan-based ICOP is primarily known for its embedded boards and systems based on x86 based CPUs from its sister company DM&P Group (DMP), as in its Vortex86EX-based Ebox-3100. Yet the company recently launched a compact embedded PC based on NXP’s i.MX8M Mini. The company announced the product back in May, and it recently began shipping from WDL Systems for $305 with 2GB RAM, 16GB eMMC, and the optional -40 to 80°C instead of the standard 0 to 60°C operating range.

  • Signage player taps Ryzen V2000 for video wall displays [Ed: They make is sound like Ubuntu is supported but any other GNU/Linux distro is not]

    Ibase has launched an “SI-334” signage player that runs Ubuntu or Win 10 on AMD’s Ryzen Embedded V2000. There are 4x HDMI 2.0 ports with EDID and CEC plus 2x GbE, 3x USB 3.1 Gen2, and 3x M.2 with SIM.

    [...]

    The SI-334 runs Ubuntu or Win 10 IoT Enterprise on a choice of any of the four octa-core and hexa-core V2000 parts, ranging up to an octa-core, 2.9GHz/4.25GHz V2748. AMD’s Ryzen Embedded V2000 advances to 7nm-fabricated Zen 2 CPU cores and doubles the multi-threaded performance-per-watt compared to the V1000. It also offers up to 30 percent better single-thread CPU performance, claims AMD. With its Radeon graphics with 6x or 7x compute units, graphics performance is claimed to be 40 percent higher.

  • Beelink U59 Celeron N5095 Jasper Lake mini PC ships with up to 16GB RAM, 512GB SSD - CNX Software [Ed: This is not even competitive with ARM SBCs and "ships with Windows 10 Pro," so it's coming with malicious stuff]

    Beelink U59 is a Jasper Lake mini PC based on an Intel Celeron N5095 15W quad-core processor that ships with 8GB RAM and a 256 GB M.2 SSD for $279+ on Amazon or Banggood, or $349+ with 16GB RAM and a 512 GB SSD.

    The mini PC offers two 4K HDMI 2.0 ports, a Gigabit Ethernet port, WiFi 5, as well as four USB 3.0 ports, and supports one 2.5-inch SATA drive up to 7mm thick.

  • The Compute Module Comes Of Age: Say Hello To The Real Cutting Edge Of Raspberry Pi | Hackaday

    If we wanted to point to an epoch-making moment for our community, we’d take you back to February 29th, 2012. It was that day on which a small outfit in Cambridge put on the market the first batch of their new product. That outfit was what would become the Raspberry Pi Foundation, and the product was a run of 10,000 Chinese made versions of their very first single board computer, the Raspberry Pi Model B. With its BCM2835 SoC and 512 megabytes of memory it might not have been the first board that could run a Linux distribution from an SD card, but it was certainly the first that did so for pocket money prices. On that morning back in 2012 the unforseen demand for the new board brought down the websites of both the electronics distributors putting it on sale, and a now-legendary product was born. We’re now on version 4 of the Model B with specs upgraded in almost every sense, and something closer to the original can still be bought in the form of its svelte stablemate, the Pi Zero.

  • Should we teach AI and ML differently to other areas of computer science? A challenge
  • Connect your space heater to the Arduino Cloud and control it via Alexa | Arduino Blog

    Being able to design your own custom smart home device is a great way to both have fun experimenting with various hardware/software and to escape the walled IoT device ecosystems that so many users find themselves trapped within. One maker who goes by mrdesha came up with a smart heater solution that utilizes the new Arduino Oplà IoT Kit to provide voice functionality to their room heater.

    In terms of hardware, mrdesha’s project is quite simple as it just needs a few parts to function. The main component is the MKR IoT Carrier board from the Oplà Kit, along with the MKR WiFi 1010 that fits into it. Because the Oplà has two relays onboard, a pair of buttons on the heater’s remote were connected to the common (COM) and normally closed (NC) terminals, allowing for a single GPIO pin to digitally “press” each button.

Excellent System Utilities: Pingnoo – traceroute/ping analyser

Filed under
OSS
Reviews

Essential System Utilities is a series of articles highlighting essential system tools. These are small utilities, useful for system administrators as well as regular users of Linux based systems.

The series examines both graphical and text based open source utilities. For details of all tools in this series, please check the table at the bottom.

This article looks at Pingnoo, an open-source cross-platform application for analysing and measuring the round trip time (latency) between two hosts. It offers a graphical representation for traceroute and ping output.

Read more

Free Software Leftovers

Filed under
OSS
  • 5 Hackathons for Building Your FOSS Skills

    As previously mentioned, Hacktoberfest 2021 is going on right now, with the aim of encouraging increased participation in the open source community.

  • 9 ways to use open source every day | Opensource.com

    Recently I was invited to present on free and open resources that are available on the web. This presentation was part of a local effort to keep our community working—sponsored by the Foster Center at St. Bonaventure University near my home. Some of the resources I shared were not open source and merely cost $0, but many of the tools were also open source.

    It was interesting to see how many folks recognized the tools I mentioned. Many people are unaware that the tools they use every day are open source, and they can share them with others.

  • The French public administration is opening up public data, algorithms and source codes.

    On 27 September, the French Minister of Public Transformation and Service Amélie de Montchalin presented the 15 ministerial roadmaps on public data, algorithms and public source codes, which represents a milestone in the digital transformation strategy of the current French public administration. The same Ministry will monitor the implementation phase of all the roadmaps, and the Prime Minister will then evaluate the programme as a whole at the next inter-ministerial committee for public transformation.

    This initiative has been supported by DINUM (Direction Interministérielle du Numérique, or Interministerial Digital Directorate) and stems from the Circular 6264/SG sent in April by the Prime Minister Jean Castex, who mandated the Ministry of Public Transformation and Public Service to open up public data, algorithms and source codes “for the benefit of users, researchers, innovators and citizens”. Additionally, the circular called for the designation of departmental data, algorithm and source code (AMDAC) administrators in every department - all nominated in May - who will supervise the implementation of the roadmaps and build an inter-ministerial network for information sharing.

  • Raising Pressure on Biden, Dozens of Indigenous Activists Occupy Bureau of Indian Affairs and Climate Justice Advocates Decry Gulf ‘Sacrifice Zones’

    This week, environmental advocates addressed intensifying fossil fuel pollution, climate injustices, and the Biden administration’s failure to take the lead on climate change solutions during the People vs. Fossil Fuels protests in Washington, D.C. Their goal remains to increase the pressure on the President to declare a climate emergency. The Indigenous-led actions are supported by dozens of environmental and social justice groups from around the country and have resulted in 585 arrests so far. They began on Indigenous People’s Day, October 11, and will continue through October 15. 

    Thursday morning, October 14, 130 people were arrested in front of the White House. For four days, activists have marched each morning  from Freedom Plaza to the White House. Some protest on the sidewalk in front of the fence and are arrested after defying orders to  disperse,  while others cheer them on from across the street. They say they are doing this to bring their message to Biden’s doorstop ahead of the COP26 climate summit in Glasgow, Scotland next month.

  • Environmental and Labor Groups Urge Canada to Support Just Transition

    Canada has not provided a transition pathway for its fossil fuel workers to move into other industries, and as global demand for oil and gas wanes, tens of thousands of workers could lose their jobs, say the authors of a new report.

    Roughly 167,000 people are directly employed in Canada’s oil and gas industry, but increased automation combined with the energy transition and climate policy mean that half of those jobs are slated to disappear by the end of the decade, according to a report published on October 13 by the Climate Action Network Canada and Blue Green Canada, which is a coalition of labor and environmental groups.

Security FUD

Filed under
Security
  • New Python-based Ransomware Encrypts Virtual Machines Quickly [Ed: This make it sound like a Python issue, but it is a proprietary software issue completely irrelevant to the programming language]

    VMware ESXi datastores rarely have endpoint protection, the researchers noted, and they host virtual machines (VMs) that likely run critical services for the business, making them a very attractive target for hackers. In the threat landscape, it’s like winning the jackpot.

  • Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting Security Vulnerability

    On Wednesday, the St. Louis Post-Dispatch ran a story about how its staff discovered and reported a security vulnerability in a Missouri state education website that exposed the Social Security numbers of 100,000 elementary and secondary teachers. In a press conference this morning, Missouri Gov. Mike Parson (R) said fixing the flaw could cost the state $50 million, and vowed his administration would seek to prosecute and investigate the “hackers” and anyone who aided the publication in its “attempt to embarrass the state and sell headlines for their news outlet.”

  • Missouri governor threatens criminal prosecution of reporter who found security flaw in state site

    Hancock reports, "The Post-Dispatch discovered the vulnerability in a web application that allowed the public to search teacher certifications and credentials. The Department removed the affected pages from its website Tuesday after being notified of the problem by the Post-Dispatch. Based on state pay records and other data, more than 100,000 Social Security numbers were vulnerable. The newspaper delayed publishing this report to give the Department time to take steps to protect teachers' private information, and to allow the state to ensure no other agencies' web applications contained similar vulnerabilities."

  • Missouri goes after man who looked at source code on state site

    A newspaper in St Louis, Missouri, which discovered that the social security numbers of school teachers, administrators and counsellors across the state were publicly exposed and informed the authorities, has been threatened with unspecified action by the state's governor.

  • Missouri Governor Is Extremely Confused About What Constitutes ‘Hacking’

    Reporter Josh Renaud was browsing a Department of Elementary and Secondary Education web application that lets users search for teachers’ certifications and credentials when he looked at the site’s HTML source code (something that usually requires zero hacking skills, only the use of a right-click). In the source code, he found sensitive data belonging to the state’s teachers, including Social Security numbers and other private information.

  • No it isn’t: Missouri governor says viewing HTML source code containing private data the state published on every page, is a crime

    Republican Gov. Mike Parson on Thursday condemned one of Missouri’s largest newspapers for exposing a flaw in a state database that allowed public access to thousands of teachers’ Social Security numbers, even though the paper held off from reporting about the flaw until after the state could fix it.

  • Gov. Parson threatens legal action against reporter who exposed flaw on state education department’s website

    The reporter found hundreds of thousands of Missouri educators' social security numbers were accessible to the public in the HTML code for the Missouri Department of Elementary and Secondary Education's website.

    Parson said the Cole County prosecutor and the Missouri State Highway Patrol Digital Investigations Unit are now investigating the incident and it could cost taxpayers up to $50 million.

  • Missouri Governor Says HTML Source Code ‘Decoded’ by ‘Hacker’ Reporter

    Gov. Mike Parson of Missouri announced that an individual stole Social Security numbers after they “decoded the HTML source code.” However, a local media publication is disputing this claim and saying the individual was their own reporter who warned Parson’s administration about the security flaw and let them fix it before reporting about it. The word “SSNs” began trending on Twitter after Parson’s announcement, as people pointed out that if the Social Security numbers were in the source code, that meant they were easily viewable by just hitting F12.

How to Upgrade to Ubuntu 21.10 From 21.04

Filed under
Ubuntu

Here’s how you can upgrade from Ubuntu 21.04 to Ubuntu 21.10 “Impish Indri”.
Read more

today's howtos

Filed under
HowTos
  • Persistent Live USB vs. Full Linux install on a USB drive | FOSS Linux

    Live USB is a fascinating way of testing out any Linux distro without modifying or making changes to your computer. Unknown to many, there is data persistency mode in the Live session. So you can make some changes and save the file to your Universal Serial Bus (USB) drive. The data will remain still even after powering off the live session.

    You can run a test drive on installing the distro to your USB drive after testing out the live session instead of the internal hard drive. Accordingly, there are two more test-driving a Linux distro – Persistent Live USB drive and Full distro install USB drive.

    The two methods will still allow you to boot Linux from a USB drive and save your data. Some may be thinking about the differences between the two methods and which one you should opt for.

  • How To Install Franz Messaging on Ubuntu 20.04 LTS - idroot

    In this tutorial, we will show you how to install Franz Messaging on Ubuntu 20.04 LTS. For those of you who didn’t know, Franz is a third-party powerful application that allows users to access various social media accounts. This app supports 14 messaging apps such as WhatsApp, Slack, Facebook Messenger, WeChat, Telegram, Google Hangouts, Skype, Discord, and Skype are currently supported with more to follow soon. Franz is available for Linux, macOS, and Windows.

    This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of Franz Messaging on Ubuntu 20.04 (Focal Fossa). You can follow the same instructions for Ubuntu 18.04, 16.04, and any other Debian-based distribution like Linux Mint.

  • How to chat in Twitch streams on the Linux desktop with Chatterino

    Before we can go over how to use Chatterino to chat with your favorite Twitch streamers on the Linux desktop, you’ll need to install it on your computer. To start the installation, open up a terminal window on the Linux desktop.

    You can open up a terminal window on the Linux desktop by pressing Ctrl + Alt + T on the keyboard. Or, search for “Terminal” in the app menu. When the terminal window is open and ready to use, follow the installation instructions below that corresponds with the Linux OS you use to get Chatterino up and running.

  • How to Transfer Files Between Linux, Android, and iOS Using qrcp

    File-sharing apps make it easier to transfer files between mobile devices and computers. But while these apps generally work well, they tend to cause compatibility issues with certain platforms owing to their limitations.

    This is where qrcp comes in. Qrcp is a file transfer utility that works via the terminal and relies on Wi-Fi to carry out file transfer. As a result, you can use it to share files between any computer and mobile phone, irrespective of their operating systems.

    Here's a guide detailing qrcp and the steps to use it for transferring files between your Linux computer and a mobile device.

  • How to Set Date and Time on Rocky Linux 8 Desktop and Server

    Here are the two ways to set a date and time on Rocky Linux 8 or AlmaLinux using the command terminal and graphical user interface.

    There are many processes on the Linux operating system that requires the correct system date and time. Also, to update the system properly and other processes like cronjobs we must need the up-to-date time & date. However, Linux or any other OS automatically syncs the system time from the server, in case not or you want to change the timezone manually then let’s explore how to do that.

  • How to install Devuan - Unixcop

    Let’s see how to install Devuan, a Debian GNU/Linux fork free of systemd as is main feature. This is the first article of a series of two on installing Devuan

  • Configure Gitlab to use Gmail SMTP for Outbound Mails - kifarunix.com

    This tutorial will describe how to configure Gitlab to use Gmail SMTP for Outbound mails. In our previous tutorials, we learnt how to install and setup Gitlab CE.

  • Deploying and Running BCC in Your Kubernetes Cluster

    In 2021, extended Berkeley Packet Filter (eBPF) is becoming an increasingly popular tool for DevOps professionals and backend engineers alike—and rightly so. Using eBPF you can deliver features and experiences instantaneously by instrumenting directly from the kernel. And fortunately, kernel versions are at a great place making it easier for engineers to deliver these solutions to the masses.

xorg-server 21.0.99.902

Filed under
Graphics/Benchmarks

This is the second release candidate of Xorg 21.1.0 release.
We have a number of fixes since the first RC.

Alex Richardson (1):
       dix/privates.c: Avoid undefined behaviour after realloc()

Mario Kleiner (6):
       xfree86: Avoid crash in xf86RandR12CrtcSetGamma() memcpy path.
       xfree86: Let xf86RandR12CrtcComputeGamma() deal with non-power-of-2 sizes.
       Revert "modesetting: Only use GAMMA_LUT if its size is 1024"
       modesetting: Enable GAMMA_LUT for lut's with up to 4096 slots.
       modesetting: Handle mixed VRR and non-VRR display setups better.
       modesetting: Consider RandR primary output for selectioh of sync crtc.

Olivier Fourdan (1):
       glamor: Fix leak in glamor_build_program()

Povilas Kanapickas (1):
       xserver 21.1 RC 2

Ray Strode (1):
       xkb: Drop check for XkbSetMapResizeTypes

nerdopolis (1):
       xf86: Accept devices with the 'simpledrm' driver.

git tag: xorg-server-21.0.99.902

Read more

Also: X.Org Server 21.1 RC2 Brings Fix For Mixed VRR/Non-VRR Multi-Monitor Setups - Phoronix

Integrity and Security Issues

Filed under
Security
  • Windows error screen on display at UK A&E • The Register

    There may be no better place for Windows to seek comfort in desperate times than the UK's National Health Service (NHS) – and sure enough a good old fashioned blue screen of death has popped up an A&E waiting room.

    The borkage was spotted by a Register reader attending the Accident & Emergency department of a city hospital in the north of Britain.

    The screen would normally have info on COVID-19 rules, and display the wait times for the various ticket numbers (in order) dished out by the nurses who do triage when you enter A&E. Instead, it appears that Windows has simply given up the ghost.

  • Google's VirusTotal reports that 95% of ransomware spotted targets Windows [Ed: Even Microsoft Tim seems to grasp the concept that people should be fired or sued for deploying Microsoft Windows, more so when ransom strikes]

    Google's VirusTotal service showing that 95 per cent of ransomware malware identified by its systems targets Windows.

    VirusTotal, acquired by Google in 2012, operates a malware scanning service that can be used manually or via an API, to analyze suspicious files. The team collected data between January 2020 and August this year to investigate how ransomware is evolving. VirusTotal receives over two million suspicious files per day from 232 countries, it said, placing it in a strong position to analyse the problem.

  • Ongoing Cyber Threats to U.S. Water and Wastewater Systems Sector Facilities

    CISA, the Federal Bureau of Investigation (FBI), the Environmental Protection Agency (EPA), and the National Security Agency (NSA) have released a joint Cybersecurity Advisory (CSA) that details ongoing cyber threats to U.S. Water and Wastewater Systems (WWS) Sector. This activity—which includes cyber intrusions leading to ransomware attacks—threatens the ability of WWS facilities to provide clean, potable water to, and effectively manage the wastewater of, their communities. The joint CSA provides extensive mitigations and resources to assist WWS Sector facilities in strengthening operational resilience and cybersecurity practices.

  • Far-right Missouri Governor threatens criminal charges against reporter for telling the state about a security vulnerability.

    Far-right lunatic Missouri Governor Mike Parson threatens criminal charges against reporters who found that the state’s IT department was so incompetent that over 100,000 state employee Social Security numbers were embedded in the HTML source code of the state’s website.

  • Implementing form filling and accessibility in the Firefox PDF viewer

    Last year, during lockdown, many discovered the importance of PDF forms when having to deal remotely with administrations and large organizations like banks. Firefox supported displaying PDF forms, but it didn’t support filling them: users had to print them, fill them by hand, and scan them back to digital form. We decided it was time to reinvest in the PDF viewer (PDF.js) and support filling PDF forms within Firefox to make our users’ lives easier.

    While we invested more time in the PDF viewer, we also went through the backlog of work and prioritized improving the accessibility of our PDF reader for users of assistive technologies. Below we’ll describe how we implemented the form support, improved accessibility, and made sure we had no regressions along the way.

Respin of openSUSE Leap Images are Coming

Filed under
SUSE

In response to feedback from openSUSE users, Leap is expecting to have regular rebuilds of the distribution on a quarterly or as needed basis soon.

These respins, which rebuild the ISO image, will receive openQA testing and have a rhythmic release now that the setup process is complete.

These respins allow users to take advantage of the latest bug fixes and updates immediately, which reduces the bandwidth for online updates after an installation of the General Availability (GA) release. Amended ISO images can update packages like GRUB and shim to improve these bootloader and firmware packages for users.

The updated ISO images, which contain a number extension in the filename like 15.3-X to distinguish from the GA release, will have a different checksum than the previously released images. The old ISO image found on get.opensuse.org will be removed and replaced with an up-to-date respin image.

Read more

Also: openSUSE Leap ISOs To See Regular Respins For Integrating Latest Updates - Phoronix

Syndicate content

More in Tux Machines

LibreOffice Leftovers

  • Michael Meeks/2021-10-15 Friday

    After Italo's keynote announcement of the new LibreOffice Technology marketing plan at the LibreOffice conference, we lost no time integrating this great way to fairly present the goodness of LibreOffice that we depend on to build Collabora Online & Collabora Office mobile into the product. With new links that can take you to our LibreOffice Technology page where we can celebrate the community & credit all the hard work done under the hood here, and of course the logo. Still a work-in-progress, and will start to appear in our products over the next weeks as/when we refresh them, but so far it looks like this for desktop & mobile [...] up-coming COOL About dialog up-coming COOL About dialog Thanks to Italo & Mike at TDF for developing the concept, and also to Pedro & Elisa, for their work on the code & logos - we'll be iterating it with them over the next days & weeks.

  • Let's do awesome things! Get support for your projects and ideas from our budget - The Document Foundation Blog

    Want to organise a local (or online) LibreOffice event? Need some merchandise to boost your project or community? Then we can help you! The Document Foundation, the non-profit behind LibreOffice, is backed by contributions from ecosystem members and volunteers, as well as donations from end-users. This helps us to maintain TDF, but we can do a lot more too. And next year, we want to do a lot of projects again!

  • Next batch of videos from the LibreOffice Conference 2021 - The Document Foundation Blog

    Here are some more videos from the LibreOffice Conference 2021! Check out the playlist, using the button in the top-right – or scroll down for links to individual videos...

  • Automated bibisect to find source of a bug - LibreOffice Development Blog

    In programming, we usually face bugs that we should fix to maintain or improve our software. In order to fix a bug, first we should find the source of the problem, and there are tools like “Automated bibisect” are available to help, specially when the bug is a regression.

Xubuntu 21.10 released!

The Xubuntu team is happy to announce the immediate release of Xubuntu 21.10. Xubuntu 21.10, codenamed Impish Indri, is a regular release and will be supported for 9 months, until June 2022. If you need a stable environment with longer support time we recommend that you use Xubuntu 20.04 LTS instead. The final release images are available as torrents and direct downloads from xubuntu.org/download/. As the main server might be busy in the first few days after the release, we recommend using the torrents if possible. Xubuntu Core, our minimal ISO edition, is available to download from unit193.net/xubuntu/core/ [torrent]. Find out more about Xubuntu Core here. Read more

What Happens When You Run a Command in Linux?

Most Linux users are often unaware of the internal working of the operating system. You might be running Linux commands on the shell for a long time, but have you ever wondered what's happening behind the scenes when you hit Enter? By the end, you'll have a brief understanding of how the shell processes the typed command in Linux. Read more

today's howtos

  • How To Install SuiteCRM on CentOS 8 - Unixcop

    SuiteCRM is a free open source Customer Relationship Management application for servers. It is written in PHP. Open source CRM is often used as an alternative to proprietary CRM software from major corporations such as HubSpot, Salesforce and Microsoft Dynamics CRM applications. SuiteCRM is a software fork of the popular customer relationship management (CRM) system from SugarCRM. The SuiteCRM project started when SugarCRM decided to stop development of its open-source version. In this guide, we will show you how to install SuiteCRM in your CentOS 8 Linux.

  • How to Install & Configure VNC Server on CentOS 8, Rocky Linux 8, or AlmaLinux 8 - ByteXD

    Virtual Network Computing, commonly known as VNC, is a platform-independent protocol that uses the client-server architecture to access a remote computer over a network. It enables users to access the remote computer’s graphical desktop and send mouse clicks and keyboard strokes to the remote system. Alternatives to VNC for CentOS that we have covered are xRDP and X2Go. All these technologies have similar goals, but their methods for achieving them differ. This post will give you a step-by-step tutorial for installing and configuring a VNC server on your CentOS 8, Rocky Linux 8 or AlmaLinux 8, along with how to install and use multiple popular desktop environments. Over the course of this article we’ll refer to all 3 operating systems when mentioning only CentOS 8, to avoid repeating all 3 every time. Also, the screenshots provided in this tutorial are mostly from CentOS 8. I have provided a few from Rocky Linux 8 and AlmaLinux 8, to prove that I have also tested this tutorial on them.

  • How to Install Apache Spark on Debian 11

    Apache Spark is a free, open-source, general-purpose and distributed computational framework that is created to provide faster computational results. It supports several APIs for streaming, graph processing including, Java, Python, Scala, and R. Generally, Apache Spark can be used in Hadoop clusters, but you can also install it in standalone mode. In this tutorial, we will show you how to install Apache Spark framework on Debian 11.

  • How to Install Specific Version of Package using DNF

    As part of application requirements or testing, you might need to install specific version of a package. DNF is a package manager for RPM-based Linux distributions such Fedora, RHEL, Rocky Linux, AlmaLinux, and more. In this tutorial, we learn how to install specific version of package using DNF.

  • How to Install Unity Desktop on Ubuntu 21.10 Impish Indri - LinuxCapable

    Unity Desktop Environment is a graphical shell for the GNOME desktop environment created and maintained by Canonical for Ubuntu operating systems. As time has passed and Ubuntu is now officially using GNOME as the default desktop environment, it is maintained and developed by the Unity7 Maintainers and UBports. With Ubuntu 21.10 being released, another Unity Desktop environment has occupied it. This release still uses the Unity 7 interface as the UnityX 10 is still under development. However, in further Ubuntu distribution releases, this interface will undoubtedly appear. Overall, Unity is an excellent option for its speed, alternative looks to rival any other Desktop Environment. In the following tutorial, you will learn how to install Unity on Ubuntu 21.10 with various options.

  • How to install Craft CMS on Ubuntu 20.04 LTS Focal Fossa - Linux Shout

    Just like WordPress, we have another open-source Craft CMS that is a new and innovative content management system with a large community of developers and communities worldwide. Here we learn the steps to Install Craft CMS on Ubuntu 20.04 or 18.04. It is an open-source CMS based on PHP / MySQL with the TWIG template engine, flexible in nature, and has a user-friendly interface for creating digital current and administrative tasks. Craft CMS also offers a built-in plugin store with hundreds of free and paid plugins. Whereas is robust framework allows developers to develop modules and plugins.

  • Install Guacamole for Remote Linux/Windows Access in Ubuntu [Ed: Just updated]

    As a system administrator, you may find yourself (today or in the future) working in an environment where Windows and Linux coexist. It is no secret that some big companies prefer (or have to) run some of their production services in Windows boxes and others in Linux servers.