Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Wednesday, 18 Jul 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Security Leftovers Roy Schestowitz 15/07/2018 - 11:25pm
Story Containers or virtual machines: ​Which is more secure? The answer will surprise you Rianne Schestowitz 15/07/2018 - 11:24pm
Story Linux 4.18-rc5 Rianne Schestowitz 15/07/2018 - 10:16pm
Story Android Leftovers Rianne Schestowitz 15/07/2018 - 7:03pm
Story TxFS Linux File-System Supports ACID Transactions, Simple API Roy Schestowitz 15/07/2018 - 6:44am
Story Red Hat Enterprise Linux 6 & CentOS 6 Patched Against Spectre V4, Lazy FPU Flaws Roy Schestowitz 15/07/2018 - 6:38am
Story openSUSE Tumbleweed Users Get LibreOffice 6.1, Mozilla Firefox 61, and FFmpeg 4 Roy Schestowitz 15/07/2018 - 6:36am
Story Today in Techrights Roy Schestowitz 15/07/2018 - 6:23am
Story today's leftovers Roy Schestowitz 15/07/2018 - 2:16am
Story Linux Kernel/Foundation Roy Schestowitz 15/07/2018 - 2:15am

Stable kernels 4.17.6, 4.14.55, 4.9.112, 4.4.140 and 3.18.115

Filed under
Linux

CAN-based passive telematics software hitches ride on the Raspberry Pi

Filed under
Linux

On Indiegogo, Network Sorcery is pitching “UCAN” software for a CAN-equipped Raspberry Pi board that enables passive, real-time decoding of automotive telematics data over the CAN Bus. UCAN initially supports GM, Infiniti, and Nissan cars.

San Diego based Network Sorcery, which publishes information about network communication protocols, including the RFC Sourcebook, has gone to Indiegogo to launch a telematics program that runs on a Raspberry Pi 3 equipped with a CAN adapter board. The Linux-based UCAN software passively extracts and decodes telematics data in real time via the CAN Bus, offering “more detail and up to 50 times the volume of data than OBD2 (or OBD-II) based systems can provide,” says Network Sorcery.

Read more

Oracle wants to improve Linux load balancing and failover

Filed under
Linux

Oracle reckons Linux remote direct memory access (RDMA) implementations need features like high availability and load balancing, and hopes to sling code into the kernel to do exactly that.

The problem, as Oracle Linux kernel developer Sudhakar Dindukurti explained in this post, is that performance and security considerations mean RDMA adapters tie hardware to a “specific port and path”.

A standard network interface card, on the other hand, can choose which netdev (network device) to use to send a packet. Failover and load balancing is native.

Read more

Kernel Space, Linux Foundation, and NVIDIA

Filed under
Linux
  • Linux Kernel Port Revised To China's C-SKY CPU Architecture

    In addition to the AMD-licensed Chengdu Haiguang x86 server processors and Zhaoxin x86-compatible CPUs from VIA Centaur lineage, another CPU effort within China has been C-SKY.

    C-SKY is a 32-bit embedded CPU core out of Hangzhou, China. C-SKY is working on RISC-V designs too, but this current C-SKY embedded processor appears to be an original CPU design. Back in March they posted the original C-SKY Linux kernel patches while this past week they sent out a revised version.

  • Another Big Pull Of Intel DRM Updates Submitted For Linux 4.19

    One month ago Intel was quick following the Linux 4.18 merge material to begin sending in new feature work for Linux 4.19 by means of the DRM-Next repository. They've already done a few rounds of updates while now another serving of Direct Rendering Manager patches were served up.

    Sent out on Tuesday is likely their last "big pull" targeting the Linux 4.19 kernel, but Intel developer Rodrigo Vivi commented that another one or two smaller pulls are still expected in the days or week ahead to DRM-Next for 4.19.

  • Xen Hypervisor 4.11 Released, New Browsh Text-Based Browser, Finney Cryptocurrency Phone, GNOME Hiring and More

    The Xen Hypervisor 4.11 was released yesterday. In this release "PVH Dom0 support is now available as experimental feature and support for running unmodified PV guests in a PVH Container has been added. In addition, significant chunks of the ARM port have been rewritten." Xen 4.11 also contains mitigations for Meltdown and Spectre vulnerabilities. For detailed download and build instructions, go here.

  • Certification Plays Big Role in Open Source Hiring

    Employers increasingly want vendor neutrality in their training providers, with 77 percent of hiring managers rating this as important, up from 68 percent last year and 63 percent in 2016. Almost all types of training have increased this year, with online/virtual courses being the most popular. Sixty-six percent of employers report offering this benefit, compared to 63 percent in 2017 and 49 percent in 2016. Forty percent of hiring managers say they are providing onsite training, up from 39 percent last year and 31 percent in 2016; and 49 percent provide individual training courses, the same as last year.

  • NVIDIA Jetson Xavier Development Kit: Under 30 Watts, 8-Core ARMv8.2, 512 Core Volta

    The NVIDIA Jetson Xavier Development Kit is pretty darn exciting with having eight ARMv8.2 cores, a 512-core Volta GPU, 16GB of LPDDR4, and under 30 Watt power use.

    Last month NVIDIA announced the Jetson Xavier with plans to ship in August at a $1,299 USD price-tag. More details on this NVIDIA Jetson Xavier Development Kit have now been announced.

Games: Dead Cells, Chicken Assassin: Reloaded, Lust for Darkness, Poly Universe, Hero-U: Rogue to Redemption

Filed under
Gaming

Security: D-Link, DOD, and GNU/Linux

Filed under
Security

Mozilla: FTAPI SecuTransfer, European Union Policy and Notes by Firefox

Filed under
Moz/FF
  • FTAPI SecuTransfer - the secure alternative to emails? Not quite...

    Emails aren’t private, so much should be known by now. When you communicate via email, the contents are not only visible to yours and the other side’s email providers, but potentially also to numerous others like the NSA who intercepted your email on the network. Encrypting emails is possible via PGP or S/MIME, but neither is particularly easy to deploy and use. Worse yet, both standard were found to have security deficits recently. So it is not surprising that people and especially companies look for better alternatives.

    It appears that the German company FTAPI gained a good standing in this market, at least in Germany, Austria and Switzerland. Their website continues to stress how simple and secure their solution is. And the list of references is impressive, featuring a number of known names that should have a very high standard when it comes to data security: Bavarian tax authorities, a bank, lawyers etc. A few years ago they even developed a “Secure E-Mail” service for Vodafone customers.

  • Mozilla Open Policy & Advocacy Blog: Searching for sustainable and progressive policy solutions for illegal content in Europe

    As we’ve previously blogged, lawmakers in the European Union are reflecting intensively on the problem of illegal and harmful content on the internet, and whether the mechanisms that exist to tackle those phenomena are working well. In that context, we’ve just filed comment with the European Commission, where we address some of the key issues around how to efficiently tackle illegal content online within a rights and ecosystem-protective framework.

  • Notes by Firefox Now Lets You Sync Notes Between Desktop and Android

    Mozilla has released a note taking app for Android that syncs with the Firefox browser on the desktop. Called (rather simply) ‘Notes by Firefox‘, the feature offers basic, encrypted note taking in the browser and via a standalone app for Android phones and tablets.

'Cloud-Native'

Filed under
Linux
Server
  • What are cloud-native applications?

    As cloud computing was starting to hit its stride six or seven years ago, one of the important questions people were struggling with was: "What do my apps have to look like if I want to run them in a public, private, or hybrid cloud?"

    There were a number of takes at answering this question at the time.

    One popular metaphor came from a presentation by Bill Baker, then at Microsoft. He contrasted traditional application "pets" with cloud apps "cattle." In the first case, you name your pets and nurse them back to health if they get sick. In the latter case, you give them numbers and, if something happens to one of them, you eat hamburger and get a new one.

  • KubeCon + CloudNativeCon, Copenhagen

    I attended KubeCon + CloudNativeCon 2018, Europe that took place from 2nd to 4th of May. It was held in Copenhagen, Denmark. I know it’s quite late since I attended it, but still I wanted to share my motivating experiences at the conference, so here it is!

    I got scholarship from the Linux Foundation which gave me a wonderful opportunity to attend this conference. This was my first developer conference aboard and I was super-excited to attend it. I got the chance to learn more about containers, straight from the best people out there.

Software: Continuous Integration, Curl, Browsh and Statcode

Filed under
Software
  • Continuous integration and delivery tool basics

    The CircleCI tool is admired for its speed. That's because CircleCI caches builds and can run tests in parallel over multiple machines. The net result is quick test times. It’s also appreciated because it can be run in the cloud or as an on-premises version.

    You can use CircleCI on almost any operating system or cloud. CircleCI is a single-page web application that makes heavy use of AJAX and HTML5. What you can't do with it is build Windows applications. While you can build applications using .NET Core under Docker with CircleCI, that's far from full Windows building or test support.

  • curl 7.61.0

    Yet again we say hello to a new curl release that has been uploaded to the servers and sent off into the world. Version 7.61.0 (full changelog). It has been exactly eight weeks since 7.60.0 shipped.

  • Browsh is the Text-based Web Browser You’ve Been Dreaming Of

    I woke up today to find my Twitter feed chok full of praise for something called Browsh.

    It’s a brand new, modern text-based web browser built for the command line.

    Yes, I did just say a text browser.

    And yes, the year is still 2018.

    So what’s got the geeks I follow gushing over something so terrifically niche?

  • Statcode – Get A Quick Explanation Of Various HTTP Status Codes

    If you’re a web developer, I’ve got a good news for you today. You can now stop spending time on Internet to look for what a particular response code mean. Say hello to Statcode. It is like man pages, but only for HTTP status codes. You can easily get the quick explanation of a http code within minutes, without leaving your Terminal. As you may know already, Hypertext Transfer Protocol (HTTP) response status codes are issued by a server in response to a client’s request made to the server. Statcode is written using Python programming language and works on GNU/Linux, Mac OS and Windows.

Red Hat News, Mostly APAC

Filed under
Red Hat

Minimum GCC Version Likely to Jump from 3.2 to 4.8

Filed under
Development
GNU

The question of the earliest GCC compiler version to support for building the Linux kernel comes up periodically. The ideal would be for Linux to compile under all GCC versions, because you never know what kind of system someone is running. Maybe their company's security team has to approve all software upgrades for their highly sensitive devices, and GCC is low on that list. Maybe they need to save as much space as possible, and recent versions of GCC are too big. There are all sorts of reasons why someone might be stuck with old software. But, they may need the latest Linux kernel because it's the foundation of their entire product, so they're stuck trying to compile it with an old compiler.

However, Linux can't really support every single GCC version. Sometimes the GCC people and the kernel people have disagreed on the manner in which GCC should produce code. Sometimes this means that the kernel really doesn't compile well on a particular version of GCC. So, there are the occasional project wars emerging from those conflicts. The GCC people will say the compiler is doing the best thing possible, and the kernel people will say the compiler is messing up their code. Sometimes the GCC people change the behavior in a later release, but that still leaves a particular GCC version that makes bad Linux code.

Read more

Best Bug Bounty Programs On Internet

Filed under
Linux

​The software revolution brought many opportunities for programmers. The modern software industry is not just limited to development. The developed software or service might have backdoors or glitches. These can cause vulnerabilities that hackers use to their benefit by exploiting such services.

Read<br />
more

We shall call him Mini-U – Ubuntu reveals tiny cloudy server

Filed under
Ubuntu

Canonical has released a new cut of Ubuntu it recommends for use in the cloud and containers.

“Minimal Ubuntu” is based on either Ubuntu 16.04 LTS or 18.04 LTS. A Docker image of the latter weighs in at 29 megabytes. Images of the OS for the cloud are said to be “less than 50% the size of the standard Ubuntu server image, and boot up to 40% faster.” We think that makes them around 400MB.

Read more

Building hearing aids with a Linux-based open hardware board

Filed under
Linux

Since Opensource.com first published the story of the GNU/Linux hearing aid research platform in 2010, there has been an explosion in the availability of miniature system boards, including the original BeagleBone in 2011 and the Raspberry Pi in 2012. These ARM processor devices built from cellphone chips differ from the embedded system reference boards of the past—not only by being far less expensive and more widely available—but also because they are powerful enough to run familiar GNU/Linux distributions and desktop applications.

What took a laptop to accomplish in 2010 can now be achieved with a pocket-sized board costing a fraction as much. Because a hearing aid does not need a screen and a small ARM board's power consumption is far less than a typical laptop's, field trials can potentially run all day. Additionally, the system's lower weight is easier for the end user to wear.

Read more

5 open source racing and flying games for Linux

Filed under
Linux
OSS

Gaming has traditionally been one of Linux's weak points. That has changed somewhat in recent years thanks to Steam, GOG, and other efforts to bring commercial games to multiple operating systems, but those games often are not open source. Sure, the games can be played on an open source operating system, but that is not good enough for an open source purist.

So, can someone who uses only free and open source software find games that are polished enough to present a solid gaming experience without compromising their open source ideals? Absolutely. While open source games are unlikely to ever rival some of the AAA commercial games developed with massive budgets, there are plenty of open source games, in many genres, that are fun to play and can be installed from the repositories of most major Linux distributions. Even if a particular game is not packaged for a particular distribution, it is usually easy to download the game from the project's website to install and play it.

Read more

today's leftovers

Filed under
Misc
  • Shippable's Software

    What's interesting is that Shippable isn't targeting developers for the Internet of Things or smartphones, ARM's typical base, but is betting that the reduced instruction set architecture is on its way to having a big impact in data centers.

  • Cloud Computing in HPC Surges [Ed: No, it doesn't. They just came up with this buzzword. These are still just servers.]

    According to the two leading analyst firms covering the high performance computing market, the use of the cloud for HPC workloads is looking a lot more attractive to users these days.

  • Clear Linux Now Supports Kata Containers

    At the end of last year the Intel Clear Linux project's Clear Containers initiative morphed into OpenStack's Kata Containers. Clear Linux now supports the resulting Kata Containers.

    Clear Containers had been the Intel / Clear Linux project focused on providing performant Linux containers as well as greater security through Intel VT-d and other engineering improvements. Kata Containers took that foundation and has evolved it under the stewardship of OpenStack and participation from many different organizations.

  • Episode 31 | This Week in Linux

    Linux Mint 19 “Tara” was Released. Elementary releases a Developer Preview for their new version called “Juno”. Kdenlive issues a request to the community for beta testing of the next generation of Kdenlive. We do a follow up on the EU’s Copyright Reform Directive, this time it’s good news, at least for now. We discuss the SUSE acquisition by EQT. Ubuntu Studio created a cool guide to Audio Production on Linux. Later in the show we look at what is coming for Xubuntu 18.10 and also the latest release from Redcore Linux. All that and much more.

  • Arch Linux at FrOSCon

    Yet another shoutout for FrOSCon, which will be held 25th and 26th of August. Arch Linux will have a devroom with talks so far about Linux Pro Audio and our general Infrastructure / Reproducible build.

  • Dolphin-Emu under openSUSE Leap 42.3

    A day after I formally announced my game console emulator repository, the Dolphin Emulator guys decided to merge a patch that makes Qt 5.9 mandatory. That means Dolphin is no longer compatible with openSUSE Leap 42.3 which comes with Qt 5.6.

    I take pride in myself for having a high-quality product, even if it’s just free video game stuff. Therefore my plan is this instead of simply disabling 42.3 and calling it a day:

    I’ll pick the last commit before that patch and build that Dolphin revision. Then I’ll disable the 42.3 target and build the most recent version for the other distributions. That way the last 42.3-compatible binaries stay on the download server until I remove the 42.3 target entirely which will be either when Leap 15.1 gets released or maybe even earlier.

Syndicate content

More in Tux Machines

Krita 4.1.1 Released

When it is updated, you can also use the Krita Lime PPA to install Krita 4.1.1 on Ubuntu and derivatives. We are working on an updated snap. Read more

Qt Creator 4.7.0

  • Qt Creator 4.7.0 released
    We are happy to announce the release of Qt Creator 4.7.0!
  • Qt Creator 4.7 Released With Clang Code Model Turned On By Default
    The Qt Company has officially released Qt Creator 4.7 as the newest feature release to this open-source, cross-platform Qt/C++ focused integrated development environment. Today's Qt Creator 4.7 IDE release is quite significant in that it finally turns on the Clang code model by default. The Clang code model provides significantly better C++ support over what was offered by their in-house code model and will stay better up-to-date with newer C/C++ standards, etc. The Clang code model in Qt Creator 4.7 is based on LLVM/Clang 6.0.

Linux Security

  • Security updates for Wednesday
  • PTI Support To Address Meltdown Nearing The Finish Line For x86 32-bit Linux
    While Page Table Isolation (PTI/KPTI) has been available since the Meltdown CPU vulnerability was disclosed at the start of the year, that's been for x86_64 Linux while the x86 32-bit support has remained a work-in-progress and only relatively recently has come together. Joerg Roedel sent out the eighth version of the x86-32 PTI patches today, which address feedback following a good round of review. This latest page table isolation work for x86 32-bit address more developer feedback and tidies up some of the code.
  • Linux To Better Protect Entropy Sent In From User-Space
    Fedora has begun utilizing a user-space jitter entropy daemon for feeding entropy to the kernel at boot time in case not enough is available for the kernel's random needs. But with that approach not being from a true hardware random number generator, a patch worked out by veteran Linux kernel developer Ted Ts'o will mix in RdRand entropy. Fedora has resorted to a user-space jitter entropy daemon to workaround slow boot times on a sub-set of systems/VMs when using recent kernels. A change was made to the kernel earlier this year for addressing CVE-2018-1108, which is about a weakness in the kernel's random seed data whereby early processes in the boot sequence could not have random enough data. But the fix dramatically slows down systems booting by waiting until sufficient entropy is available. This is problematic particularly for VMs where virtio-rng is not present. For some users, they can't get the system(s) booted on affected kernels unless tapping on keyboard keys enough times for generating sufficient entropy.
  • Linux 4.17.8
    I'm announcing the release of the 4.17.8 kernel. This is to fix the i386 issue that was in the 4.17.7 release.  All should be fine now.
  • SPECTRE Variant 1 scanning tool
  • When your software is used way after you EOL it.
    One of my first jobs was working on a satellite project called ALEXIS at Los Alamos National Laboratory and had been part of a Congressional plan to explore making space missions faster and cheaper. This meant the project was a mix-mash of whatever computer systems were available at the time. Satellite tracking was planned on I think a Macintosh SE, the main uploads and capture were a combination of off the shelf hardware and a Sparc 10. Other analysis was done on spare Digital and SGI Irix systems. It was here I really learned a lot about system administration as each of those systems had their own 'quirks' and ways of doing things. I worked on this for about a year as a Graduate Research Assistant, and learned a lot about how many projects in science and industrial controls get 'frozen' in place way longer than anyone writing the software expects. This is because at a certain point the device becomes cheaper to keep running than replace or even updating. So when I was watching this USGS video this morning,

Raspberry Pi On Linux 4.19 Will Be Able To Report Under-Voltage Issues

The Linux 4.19 kernel will be introducing a new "raspberrypi-hwmon" driver capable of reporting under-voltage conditions for Raspberry Pi boards. This Raspberry Pi Hwmon driver makes it easy to find out if your ARM SBC is suffering from any under-voltage condition: the driver reports the under-voltage sensor state via a mailbox interface with the VC4 firmware. Undervoltage conditions are then written to the kernel log. Read more