Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Wednesday, 18 Jul 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story OSS Leftovers Roy Schestowitz 15/07/2018 - 2:09am
Story Nintendo Found a Way to Patch an Unpatchable Coldboot Exploit in Nintendo Switch Roy Schestowitz 15/07/2018 - 1:47am
Story Winds – RSS and Podcast software created using React / Redux / Node Roy Schestowitz 15/07/2018 - 1:44am
Story GNOME: Pitivi, Gitlab CI, Flatpak and Mutter Roy Schestowitz 15/07/2018 - 1:34am
Story Release of KDE Frameworks 5.48.0 Roy Schestowitz 15/07/2018 - 1:31am
Story Debian GNU/Linux 9.5 "Stretch" Is Now Available with 100 Security Updates Rianne Schestowitz 1 15/07/2018 - 1:25am
Story Security Leftovers Roy Schestowitz 15/07/2018 - 1:18am
Story A Second Preview to the Next elementary OS 5.0 (July 2018) Roy Schestowitz 15/07/2018 - 1:14am
Story Android Leftovers Rianne Schestowitz 14/07/2018 - 10:09pm
Story Vulkan vs. OpenGL Performance For Linux Games Rianne Schestowitz 14/07/2018 - 9:58pm

GUADEC 2018 Report, GNOME Foundation Is Hiring

Filed under
GNOME
  • GUADEC 2018

    I’m feeling extremely grateful for the shot in the arm GUADEC provides by way of old friends, new friends, expert advice, enthusiasm, time-worn wisdom, and so many reminders of why we do this.

    I use FreeCAD for freelance work, and build the development version from git periodically. There is a copr nightly build for recent versions of Fedora, but not for Rawhide. The first person to whom I related this experience, David King, said the software would be ideal for the Flatpak treatment. Since then I’ve been getting a tutorial on building the YAML manifest, and after four days of hard work (thanks Dave!), it’s on the very brink of completion.

  • The GNOME Foundation Is Hiring

    Since its inception in 1997 by Miguel de Icaza and Federico Mena Quintero, who were university students at the time, GNOME has become one of the largest open source projects. It is best known for its desktop, which is a key part of the most popular GNU/Linux distributions, including Ubuntu, Debian, SuSE and Fedora. The project also has a long history of producing critical pieces of software infrastructure: common parts of countless open source systems and its software is found in televisions, e-book readers, in-vehicle infotainment systems, medical devices and much more.

    GNOME has also been a key player in the social evolution of the free software community. By founding the Outreach Program for Women (OPW), GNOME pioneered a program to help make its community more gender diverse. That program expanded its scope to encourage more types of diversity and has been adopted by many other open source projects and has evolved into the larger Outreachy program = run outside of GNOME.

Linux Foundation: Xen 4.11 and Hyperledger Global Forum

Filed under
Linux
  • Xen 4.11 Improves Server Virtualization with PVH

    The open source Xen Project, which is hosted as a Linux Foundation effort, issued its first major release of 2018 on July 10.

    The Xen Project Hypervisor 4.11 release comes after months of development, and follows the 4.10 update that became available at the end of 2017. Xen 4.10 included some initial support for PVH (Paravirtualization Hardware), which has been further extended in the 4.11 update.

  • ​Re-engineering Xen: The important open-source hypervisor gets remodeled

    Xen is open-source royalty. This hypervisor, which runs and manages virtual machines (VMs), powers some of the largest clouds. You know their names: Amazon Web Services (AWS), Tencent, Alibaba Cloud, Oracle Cloud, and IBM SoftLayer. It's also the foundation for VM products from Citrix, Huawei, Inspur, and Oracle. But, with the release of its latest edition, Xen Project Hypervisor 4.11, there are major changes under the hood.

  • Xen 4.11 debuts new ‘PVH’ guest type, for the sake of security

    The Xen Project has released version 4.11 of its hypervisor.

    As we reported last week, it’s more than a month late, but the projects leaders thinks it is worth the wait because this release delivers on an ambition to “create a cleaner architecture for core technology, less code and a smaller computing base for security and performance.”

    A big part of delivering on that is increased use of PVH – a type of virtualization that Xen reckons blends the best of paravirtualization (PV) and Hardware Virtual Machines (HVM). PV virtualizes hardware so a guest can offer kit not found on its host, but doesn’t use virtualization extensions in silicon. HVM can use those extensions and therefore offers each VM isolated emulated hardware.

  • Last Chance to Speak at Hyperledger Global Forum | Deadline is This Friday

    Hyperledger Global Forum is the premier event showcasing the real uses of distributed ledger technologies for businesses and how these innovative technologies run live in production networks today. Hyperledger Global Forum unites the industry’s most respected thought leaders, domain experts, and key maintainers behind popular frameworks and tools like Hyperledger Fabric, Sawtooth, Indy, Iroha, Composer, Explorer, and more.

Software: Topgrade, iWant, QEMU, WikiToLearn

Filed under
Software
  • Topgrade - Command Line Tool to Upgrade All Packages on Linux

    In this guide, we're going to explore an interesting tool that aims at making updates of everything installed on your system as easy as just running one command. This software is topgrade, it detects the tools you use on your system and run appropriate package manager to update packages.

    On RHEL family Linux distributions like CentOS, topgrade will execute the yum upgradecommand, this is dnf upgrade for Fedora. On Debian family, the equivalent command executed by topgrade to ensure everything is up to date is apt update && apt dist-upgrade. On Arch Linux, it will use run yay or fall back to pacman if yay is not installed.

  • iWant – The Decentralized Peer To Peer File Sharing Commandline Application

    A while ago, we have written a guide about two file sharing utilities named transfer.sh, a free web service that allows you to share files over Internet easily and quickly, and PSiTransfer ,  a simple open source self-hosted file sharing solution. Today, we will see yet another file sharing utility called “iWant”. It is a free and open source CLI-based decentralized peer to peer file sharing application.

  • QEMU 3.0 Is Being Prepared For Release In August

    The march to QEMU 3.0 is now underway following discussions at the end of last year for jumping to the v3.0 milestone after the long-running v2.x series. The first release candidate is now available and marks a hard feature freeze for the QEMU 3.0 milestone.

    QEMU 3.0-RC0 was just tagged, which marks the first release candidate and hard feature freeze -- the soft feature freeze had begun last week.

  • WikiToLearn web app course editor almost done

    Hi, it’s a bit of time that I didn’t write a blog post and many things on WikiToLearn ecosystem happened. Course editor mode is almost finished: now you can add, remove and edit chapter on a course, with new revamped Dialog and Modal components for confirming and editing views. You can see it below in action.

Red Hat News

Filed under
Red Hat
  • Red Hat targets regional system integrators through program launch

    Red Hat has launched an Asia Pacific (APAC) program targeted at helping system integrators (SIs) build and modernise applications for the cloud.

    The new initiative is designed to allow partners to deliver new services at a lower cost and accelerate development for faster return on investment.

    Specifically, the Red Hat OpenShift Practice Builder Program has been designed to do just that, using the vendor's container application platform, Openshift, and a portfolio of enterprise-class application and integration middleware software products, JBoss Middleware.

  • Virtualize your OpenStack control plane with Red Hat Virtualization and Red Hat OpenStack Platform 13

    With the release of Red Hat OpenStack Platform 13 (Queens) we’ve added support to Red Hat OpenStack Platform director to deploy the overcloud controllers as virtual machines in a Red Hat Virtualization cluster. This allows you to have your controllers, along with other supporting services such as Red Hat Satellite, Red Hat CloudForms, Red Hat Ansible Tower, DNS servers, monitoring servers, and of course, the undercloud node (which hosts director), all within a Red Hat Virtualization cluster. This can reduce the physical server footprint of your architecture and provide an extra layer of availability.

    Please note: this is not using Red Hat Virtualization as an OpenStack hypervisor (i.e. the compute service, which is already nicely done with nova via libvirt and KVM) nor is this about hosting the OpenStack control plane on OpenStack compute nodes.

  • ORock Technologies Achieves FedRAMP Moderate Authorization for ORockCloud

    As a Red Hat Premier Certified Cloud and Service Provider (CCSP), ORock Technologies architected ORockCloud as a "pure-play" Red Hat cloud that incorporates a suite of Red Hat's open source solutions for enhanced flexibility, security features and control. These include: Red Hat Enterprise Linux; Red Hat OpenStack Platform; Red Hat Virtualization; Red Hat Ceph Storage; Red Hat CloudForms; Red Hat Ansible Tower; Red Hat Satellite; and associated cloud APIs.

  • Will Investors Step Up in Red Hat, Inc. (RHT) and Chubb Limited (CB)?
  • Here’s What To Do With Red Hat, Inc. (RHT), EQT Corporation (EQT)

Debian, Ubuntu and Kubuntu: Development, Infographic and KDE Plasma 5.12.6

Filed under
KDE
Debian
Ubuntu
  • Debian LTS work, June 2018

    I was assigned 15 hours of work by Freexian's Debian LTS initiative and worked 12 hours, so I have carried 3 hours over to July. Since Debian 7 "wheezy" LTS ended at the end of May, I prepared for Debian 8 "jessie" to enter LTS status.

    I prepared a stable update of Linux 3.16, sent it out for review, and then released it. I rebased jessie's linux package on this, but didn't yet upload it.

  • Graphical environments in the world of IoT

    The IoT promises to bring about a revolution in the way we interact with devices around us. While many IoT devices will be hidden away, from sensors that measure manufacturing tolerances in a factory to hubs that control lighting around the home, there are a class of devices that need to provide some sort of graphical output or display to the user. Some examples include digital signage, interactive kiosks, automotive in-car entertainment gateways, smart meters, and the plethora of display screens seen on everything from washing machines to smart thermostats. All of these examples need some way to output graphics to a screen display but in an embedded environment that is not always easy.

    Linux is one of the most popular OS choices for manufacturers and solution providers to use in IoT devices and with it there are a few options available for graphical environments. From custom software to drive the display, through direct frame buffer access with toolkits such as QT, to a full X windowing server. All of these options have their pros and cons and often it is a trade-off between custom software and off-the-shelf components to speed up development. Custom software takes time and requires developers to continue to maintain a code base for the lifetime of the device, while using a graphical toolkit such as QT requires less code but comes with commercial licencing. The open source X windowing server is a popular choice but, being over 30 years old, has some shortcomings. It has been well documented that the design of X windows, although revolutionary at the time, has some security risks especially around application isolation and privilege escalation which has led to efforts to replace it by redesigning the graphical server from the ground up. One such effort is Mir.

  • Canonical releases new infographic to show how Ubuntu Linux 'connects everything'

    To highlight the ubiquitous nature of Ubuntu in particular, Canonical today releases an all-new infographic showing how this distribution "connects everything." I urge you to give it a look, as it will open your eyes to just how important Ubuntu -- and Linux overall -- really is. Apparently, this is an update to a previous infographic released in 2016, refreshed for 2018 following the release of Ubuntu 18.04 Bionic Beaver.

  • This Infographic Reveals the Sheer Scale of Ubuntu’s Success

    Ever wondered just how widely used Ubuntu is? Well, wonder no more! Canonical has put together a new infographic to highlight the scale and success Ubuntu has achieved across an enviable assortment of computing sectors. And it’s compelling stuff.

  • Infographic: Ubuntu Linux Is Used by Millions Worldwide and Connects Everything

    Canonical has shared with us today a new infographic that shows how their Ubuntu Linux operating system is being used all over the world by big-name companies the offer their services to millions of consumers.

    More than two years ago, when Ubuntu 16.04 LTS (Xenial Xerus) was released, Canonical put together an infographic to show the world how many people use Ubuntu and on which devices. With Ubuntu 18.04 LTS (Bionic Beaver) out the door this year, they did it again and published a brand-new infographic to show the world that Ubuntu and Linux are everywhere.

  • Kubuntu 18.04 LTS Users Can Now Update to the KDE Plasma 5.12.6 LTS Desktop

    The Kubuntu team announced today the immediate availability of the latest KDE Plasma 5.12.6 LTS desktop environment for the Kubuntu 18.04 LTS (Bionic Beaver) operating system series.

    Released on April 26, 2018, Kubuntu 18.04 LTS (Bionic Beaver) operating system is supported for three years with software and security updates, which means that is ships with the long-term supported version of the KDE Plasma desktop environment, KDE Plasma 5.12 LTS.

OSS Leftovers

Filed under
OSS

Mozilla and Chrome: Lockbox, New Site for Thunderbird and SeaMonkey Add-ons and More

Filed under
Google
Moz/FF
Web
  • Mozilla Announces Firefox Lockbox, a Face ID-Compatible Password Manager for iOS

    After it made sure Firefox is one of the most popular web browsers on the desktop, Mozilla continues their quest to conquer the mobile world with new and innovative apps.

    Today, Mozilla announced that it had developed two new apps for Apple's iOS and Google's Android mobile operating systems, Firefox Lockbox for iOS and Notes by Firefox for Android. The two apps are currently available for testing through the company's Mobile Test Pilot Experiments initiative.

    The Firefox Lockbox for iOS promises to be a password manager that you can take anywhere, so you won't have to reset your new passwords when you forget them. While the app can sync passwords across devices, it's only compatible with passwords save through the Firefox web browser via a Firefox Sync account.

  • New Site for Thunderbird and SeaMonkey Add-ons

    When Firefox Quantum (version 57) launched in November 2017, it exclusively supported add-ons built using WebExtensions APIs. addons.mozilla.org (AMO) has followed a parallel development path to Firefox and will soon only support WebExtensions-based add-ons.

    As Thunderbird and SeaMonkey do not plan to fully switch over to the WebExtensions API in the near future, the Thunderbird Council has agreed to host and manage a new site for Thunderbird and SeaMonkey add-ons. This new site, addons.thunderbird.net, will go live in July 2018.

    Starting on July 12th, all add-ons that support Thunderbird and SeaMonkey will be automatically ported to addons.thunderbird.net. The update URLs of these add-ons will be redirected from AMO to the new site and all users will continue to receive automatic updates. Developer accounts will also be ported and developers will be able to log in and manage their listings on the new site.

  • A Vision for Engineering Workflow at Mozilla (Part Three)

    This is the last post in a three-part series on A Vision for Engineering Workflow at Mozilla.

  • Why Isn't Debugging Treated As A First-Class Activity?

    One thing developers spend a lot of time on is completely absent from both of these lists: debugging! Gitlab doesn't even list anything debugging-related in its missing features. Why isn't debugging treated as worthy of attention? I genuinely don't know — I'd like to hear your theories!

    One of my theories is that debugging is ignored because people working on these systems aren't aware of anything they could do to improve it. "If there's no solution, there's no problem." With Pernosco we need to raise awareness that progress is possible and therefore debugging does demand investment. Not only is progress possible, but debugging solutions can deeply integrate into the increasingly cloud-based development workflows described above.

  • Bug futures: business models

    Recent question about futures markets on software bugs: what's the business model?

    As far as I can tell, there are several available models, just as there are multiple kinds of companies that can participate in any securities or commodities market.

  • Are You a Fan of Google Chrome’s New Look?

    Perhaps it’s just me, but I don’t think the look of Google Chrome has altered all that much since it blinked into life in 2009.

    But that will shortly change.

    Rumour has it that Google plans to debut a new-look Google Chrome ahead of the browser’s 10th birthday in September.

    And if you’re a spoiler fan, the new look is already available for testing.

    Now, we’re not talking a revamp based on the old ‘boxy’ Material Design here. Oh no. The visual rejig Is based on the rounder, softer and more tactile Material Design 2 (on full display in Android P and arriving piecemeal to the Chrome OS desktop).

Security: SELinux, Dirk Hohndel, Gentoo, Arch Linux AUR Package Repository

Filed under
Security
  • Lukas Vrabec: Why do you see DAC_OVERRIDE SELinux denials?
  • With So Many Eyeballs, Is Open Source Security Better? [Ed: Ask a FOSS company. Not VMware. VMware puts back doors in its proprietary software blobs.]

    Back in 1999, Eric Raymond coined the term "Linus' Law," which stipulates that given enough eyeballs, all bugs are shallow.

    Linus' Law, named in honor of Linux creator Linus Torvalds, has for nearly two decades been used by some as a doctrine to explain why open source software should have better security. In recent years, open source projects and code have experienced multiple security issues, but does that mean Linus' Law isn't valid?

    According to Dirk Hohndel, VP and Chief Open Source Officer at VMware, Linus' Law still works, but there are larger software development issues that impact both open source as well as closed source code that are of equal or greater importance.

  • The aftermath of the Gentoo GitHub hack [Ed: What a bad choice of password leads to.]

    Late last month (June 28), the Gentoo GitHub repository was attacked after someone gained control of an admin account. All access to the repositories was soon removed from Gentoo developers. Repository and page content were altered. But within 10 minutes of the attacker gaining access, someone noticed something was going on, 7 minutes later a report was sent, and within 70 minutes the attack was over. Legitimate Gentoo developers were shut out for 5 days while the dust settled and repairs and analysis were completed.

  • New Variant of Spectre Security Flaw Discovered: Speculative Buffer Overflows

    Security researchers Vladimir Kiriansky (MIT) and Carl Waldspurger (Carl Waldspurger Consulting) have published a paper to disclose a new variant of the infamous Spectre security vulnerability, which creates speculative buffer overflows.

    In their paper, the two security researchers explain the attacks and defenses for the new Spectre variant they discover, which they call Spectre1.1 (CVE-2018-3693), a new variant of the first Spectre security vulnerability unearthed earlier this year and later discovered to have multiple other variants.

    The new Spectre flaw leverages speculative stores to create speculative buffer overflows. Similar to the classic buffer overflow security flaws, the new Spectre vulnerability is also known as "Bounds Check Bypass Store" or BCBS to distinguish it from the original speculative execution attack.

  • AT&T acquires open-source threat intelligence firm

    As AT&T continues down its network virtualization efforts using the open-source Open Networking Automation Platform (ONAP), the operator has acquired cybersecurity firm AlienVault, which uses open-source software to provide what the companies call “threat intelligence.” Financial details of the transaction were not disclosed; AT&T expects the deal to close in Q3 this year.

  • Malware Found in Arch Linux AUR Package Repository

    Malware has been discovered in at least three Arch Linux packages available on AUR (Arch User Repository), the official Arch Linux repository of user-submitted packages.

    The malicious code has been removed thanks to the quick intervention of the AUR team.

  • Amateur bid to add code to Arch Linux packages found and squashed

Linux module and dev board showcase Arm/FPGA Stratix 10 SX

Filed under
Linux
Hardware

Reflex CES has launched a “COMXpressSX Stratix 10” Basic Type 7 module that runs Linux on Intel’s Stratix 10 SX SoC and offers 56GB DDR4, 32GB eMMC, and 32x PCIe. An optional PCIe carrier supplies 10GbE, GbE, SATA, and more.

Paris-based Reflex CES, which sells a variety on FPGA-based PCIe boards and development kits, last year released a Linux-driven, 95 x 86mm Arria 10 SoC SoM based on Intel PSG’s FPGA- and dual Cortex-A9 enabled Arria 10 SoC. Now it has returned with a COM Express Basic Type 7 module and development kit that runs Linux on Intel PSG’s more powerful, 14nm fabricated Stratix 10 SX SoC. The COMXpressSX Stratix 10 supports high performance computing & analytics, acceleration, intelligent vision, and video processing applications.

Read more

Also: Intel Core based EPIC SBC targets retail applications

Announcing Rust 1.27.1

Filed under
Development
Moz/FF

The Rust team is happy to announce a new version of Rust, 1.27.1. Rust is a systems programming language focused on safety, speed, and concurrency.

Read more

Also: 6 IDEs you need to know about

Wine-Staging 3.12 and More New Games

Filed under
Gaming
  • Wine-Staging 3.12 Released With 990 Patches Atop Upstream Wine

    One day past the release of upstream Wine 3.12, the downstream Wine-Staging 3.12 is now available that continues incorporating hundreds of experimental/testing patches atop these bi-weekly Wine releases.

  • The rather engrossing roguelike 'Caves of Qud' is now on GOG & itch

    For those who love your traditional roguelikes, you might want to check out Caves of Qud which is now available on GOG and itch.io.

    Along with the release on new stores, they just did a big update to the game too which includes generated villages spread throughout the game, each with its own faction, history and so on. A dynamic quest system to go along with that, giving you unique quests for each! Also, you have the option of choosing your starting location now which includes some of the new villages.

  • Albion Online 'Merlyn' update to release on July 31st with Faction Warfare

    Faction Warfare is coming to Albion Online on July 31st with the next major update named Merlyn and it does sound quite promising.

  • The GOG weekly sale has some rather nice Linux games for cheap
  • The beta of the new and improved itch app is out for testing

    Game store itch.io have a revamped desktop client coming and a beta is now available for users to test and report back.

    The open source itch app was already pretty damn slick, I'm quite a fan of how easy it is to use. However, the team at itch have been working away for quite some time to improve it.

  • Play It Now - Transistor

    Oddly enough, the game allows you to cut some of the exposition short, but I heartily recommend allowing the game to play out in full - there are some great scenes that I missed first time around in Transistor because I was in a hurry to get to the next fight!

Security: Updates, SELinux, Fobs, PoS, TimeHop, AUR

Filed under
Security
  • Security updates for Tuesday
  • Fun with DAC_OVERRIDE and SELinux
  • Why you might want to wrap your car key fob in foil

    Given that the best way to store your car keys at night is by putting them in a coffee can, what's an ex-FBI agent's advice to protect cars from theft during the day?

    Wrap car fobs in aluminum foil.

    [...]

    He held up his fob and said, “This should be something we don’t need to wrap with foil. It’s 2018. Car companies need to find a way so no one can replicate the messages and the communication between the key and the vehicle.”

    [...]

    While auto industry engineers know a lot about traditional safety, quality, compliance and reliability challenges, cyber is an “adaptive adversary,” said Faye Francy, executive director of the nonprofit Automotive Information Sharing and Analysis Center, which specializes in cybersecurity strategies. “Automakers are starting to implement security features in every stage of design and manufacturing. This includes the key fob.”

  • Crooks install skimmer on point-of-sale machine in 2 seconds
  • Facebook add-on TimeHop has been pwned by hackers [sic]

    The big problem doesn't affect UK users, but will be making our US cousins sweat - phone numbers were leaked. TimeHop recommends adding a PIN to your phone account because if abused, this could be used for identity theft - starting with, but not limited to, porting the number without permission.`

  • Arch Linux AUR Repository Found to Contain Malware

    The Arch Linux user-maintained software repository called AUR has been found to host malware. The discovery was made after a change in one of the package installation instructions was made. This is yet another incident that showcases that Linux users should not explicitly trust user-controlled repositories.

  • Malware found in the Arch Linux AUR repository

    Here's a report in Sensors Tech Forum on the discovery of a set of hostile packages in the Arch Linux AUR repository system. AUR contains user-contributed packages, of course; it's not a part of the Arch distribution itself.

A Look At The Windows 10 vs. Linux Power Consumption On A Dell XPS 13 Laptop

Filed under
GNU
Graphics/Benchmarks
Linux
Microsoft

With the current-generation Dell XPS 13 XPS9370-7002SLV currently being tested at Phoronix, one of the areas I was most anxious to benchmark was the power consumption... For years it has been a problem of Linux on laptops generally leading to less battery life than on Windows, but in the past ~2+ years there has been some nice improvements within the Linux kernel and a renewed effort by developers at Red Hat and elsewhere on improving the Linux laptop battery life. Here are some initial power consumption numbers for this Dell XPS 13 under Windows 10 and then various Linux distributions.

The Dell XPS 13.3-inch laptop for testing features the Intel Core i7 8550U (quad-core + HT) CPU with UHD Graphics 620, 2 x 4GB RAM, 256GB PM961 NVMe Samsung SSD, and its panel is a 1920 x 1080 resolution. For some initial basic tests I ran Windows 10 out-of-the-box and compared that to fresh installs of Ubuntu 18.04 LTS, Fedora Workstation 28, openSUSE Tumbleweed, and Clear Linux.

Read more

Ribbons and Tabs Give OnlyOffice Suite a Fresh Look

Filed under
Reviews

Ascensio System SIA recently released its free office suite upgrade -- OnlyOffice Desktop Editors -- with a ribbon and tab interface plus numerous updated features. The refresh makes version 5.1 a potential alternative to Web versions of the Microsoft Office suite and Google Docs for Linux users.

The three-module set of OnlyOffice Desktop Editors has an impressive collection of tools geared toward individual consumers and small offices. It provides many of the conveniences available when using MS Word or Google G-Suite apps.

However, the real workplace benefits of collaborating on files through cloud storage come at an add-on cost once the free-trial period ends. Still, the core functionality -- word processor, spreadsheet and slide presentations -- remains free and installs locally as standalone apps in Linux distributions that use .DEB, .RPM and Snap software packages.

Read more

Xen Project Hypervisor 4.11

Filed under
Linux
OSS
  • What’s New in the Xen Project Hypervisor 4.11

    I am pleased to announce the release of the Xen Project Hypervisor 4.11. One of our long-term development goals since the introduction of Xen Project Hypervisor 4.8 has been to create a cleaner architecture for core technology, less code and a smaller computing base for security and performance. The Xen 4.11 release has followed this approach by delivering more PVH related functionality: PVH Dom0 support is now available as experimental feature and support for running unmodified PV guests in a PVH Container has been added. In addition, significant chunks of the ARM port have been rewritten.

  • Xen Project Hypervisor: Virtualization and Power Management are Coalescing into an Energy-Aware Hypervisor

    Power management in the Xen Project Hypervisor historically targets server applications to improve power consumption and heat management in data centers reducing electricity and cooling costs. In the embedded space, the Xen Project Hypervisor faces very different applications, architectures and power-related requirements, which focus on battery life, heat, and size.

    Although the same fundamental principles of power management apply, the power management infrastructure in the Xen Project Hypervisor requires new interfaces, methods, and policies tailored to embedded architectures and applications. This post recaps Xen Project power management, how the requirements change in the embedded space, and how this change may unite the hypervisor and power manager functions.

  • Xen Hypervisor 4.11 Released With Many Core Improvements

    It's one month late but the Xen Project Hypervisor 4.11 release is available today with great scads of new features.

Browsh: A Modern, Text-Based Web Browser

Filed under
Software

If the Lynx open-source text-based browser isn't satisfying your needs with viewing modern web sites via the terminal, Browsh is a new entrant into the text-based web-browser space that seeks to support modern web standards.

Phoronix reader Julius reports in this morning on the availability of Browsh, a text-based web browser that supports HTML5, CSS3, JavaScript, and even video and WebGL content. Granted, due to terminal limitations, the multimedia content becomes rather pixelated due to the low resolution.

Read more

today's howtos

Filed under
HowTos

Mobile/Miniature Ubuntu and Tizen

Filed under
Linux
Ubuntu
  • Infographic: Ubuntu connects everything

    As highlighted in the Ubuntu is Everywhere infographic to coincide with the 16.04 LTS, Ubuntu is used by millions across every sector and technology imaginable. Two years on, and with 18.04 LTS now released, we take a new look at how Ubuntu has evolved and is at the heart of emerging technologies including AI, blockchain, robotics and more. We also share the growth of Ubuntu’s cloud presence and how Ubuntu continues to pervade multiple industries, devices and is used by millions globally.

  • Canonical launches Minimal Ubuntu for automated use at scale

    Canonical wants to optimize Ubuntu for scaled automated usage with the release of Minimal Ubuntu.

    According to the company, Minimal Ubuntu is the smallest base image of Ubuntu, with images less than half the size of the standard Ubuntu server image and a boot time that is 40 percent faster. Even with a small footprint, Canonical explained Minimal Ubuntu still preserves full compatibility with standard Ubuntu operations.

    It is designed for entirely automated operations and does not include the usual user-friendly utilities for interactive usage. The solution removes editors, documentation, locales, and other user-oriented features of Ubuntu Server, leaving only the vital parts of the boot sequence.

  • Canonical Releases Minimal Ubuntu, Mozilla Launches Two Mobile Test Pilot Experiments, Google Announces Jib for Java Developers, New Ubuntu Bug Discovered and Wine 3.12 Now Available

    Canonical released its new Minimal Ubuntu yesterday. According to the Ubuntu blog, Minimal Ubuntu is "optimized for automated use at scale, with a tiny package set and minimal security cross-section. Speed, performance and stability are primary concerns for cloud developers and ops." The images are 50% smaller than the standard Ubuntu server images and they boot up to 40% faster. Minimal Ubuntu also is fully compatible with standard Ubuntu operations. You can download it here.

  • Samsung Gear S4 may run Wear OS, and measure blood pressure

    Next in the pipeline for Samsung is the Galaxy Note 9, scheduled for 9 August in New York. However, it’s not the Note 9 that’s creating more buzz right now, but the company’s upcoming smartwatch, the Gear S4. Rumors about the Gear S4 has been doing the rounds for quite some time, and they don’t seem to fade anytime soon. The big question surrounding it is whether it’ll run on Samsung’s Tizen OS or Google’s Wear OS.

Red Hat News: Security, Celebrating Red Hat’s 25th Anniversary and More

Filed under
Red Hat
  • Red Hat Security: Red Hat’s disclosure process

    Last week, a vulnerability (CVE-2018-10892) that affected CRI-O, Buildah, Podman, and Docker was made public before some affected upstream projects were notified. We regret that this was not handled in a way that lives up to our own standards around responsible disclosure. It has caused us to look back to see what went wrong so as to prevent this from happening in the future.

    Because of how important our relationships with the community and industry partners are and how seriously we treat non-public information irrespective of where it originates, we are taking this event as an opportunity to look internally at improvements and challenge assumptions we have held.

    We conducted a review and are using this to develop training around the handling of non-public information relating to security vulnerabilities, and ensuring that our relevant associates have a full understanding of the importance of engaging with upstreams as per their, and our, responsible disclosure guidelines. We are also clarifying communication mechanisms so that our associates are aware of the importance of and methods for notifying upstream of a vulnerability prior to public disclosure.

  • Celebrating Red Hat’s 25th anniversary: Red Hat partners have played an important role in our company journey

    As Red Hat celebrates 25 years, I would be remiss not to mention the role Red Hat partners have played in our company’s story. Partners have been an important multiplier for Red Hat and building our customer success. They are important to our future.

  • DH2i signs strategic-alignment agreement with Red Hat

    DH2i Co., a Fort Collins-based company that provides disaster-recovery solutions for Windows, Linux and Oracle databases, has signed a strategic-alignment agreement with Red Hat.

    After testing and validation, DH2i will become a Red Hat Technology Partner and has been certified on Red Hat Enterprise Linux 7.

  • How Financially Strong Is Red Hat Inc (NYSE:RHT)?
  • What is the fate of Red Hat, Inc. (RHT) against Blue Apron Holdings, Inc. (APRN),
Syndicate content

More in Tux Machines

Krita 4.1.1 Released

When it is updated, you can also use the Krita Lime PPA to install Krita 4.1.1 on Ubuntu and derivatives. We are working on an updated snap. Read more

Qt Creator 4.7.0

  • Qt Creator 4.7.0 released
    We are happy to announce the release of Qt Creator 4.7.0!
  • Qt Creator 4.7 Released With Clang Code Model Turned On By Default
    The Qt Company has officially released Qt Creator 4.7 as the newest feature release to this open-source, cross-platform Qt/C++ focused integrated development environment. Today's Qt Creator 4.7 IDE release is quite significant in that it finally turns on the Clang code model by default. The Clang code model provides significantly better C++ support over what was offered by their in-house code model and will stay better up-to-date with newer C/C++ standards, etc. The Clang code model in Qt Creator 4.7 is based on LLVM/Clang 6.0.

Linux Security

  • Security updates for Wednesday
  • PTI Support To Address Meltdown Nearing The Finish Line For x86 32-bit Linux
    While Page Table Isolation (PTI/KPTI) has been available since the Meltdown CPU vulnerability was disclosed at the start of the year, that's been for x86_64 Linux while the x86 32-bit support has remained a work-in-progress and only relatively recently has come together. Joerg Roedel sent out the eighth version of the x86-32 PTI patches today, which address feedback following a good round of review. This latest page table isolation work for x86 32-bit address more developer feedback and tidies up some of the code.
  • Linux To Better Protect Entropy Sent In From User-Space
    Fedora has begun utilizing a user-space jitter entropy daemon for feeding entropy to the kernel at boot time in case not enough is available for the kernel's random needs. But with that approach not being from a true hardware random number generator, a patch worked out by veteran Linux kernel developer Ted Ts'o will mix in RdRand entropy. Fedora has resorted to a user-space jitter entropy daemon to workaround slow boot times on a sub-set of systems/VMs when using recent kernels. A change was made to the kernel earlier this year for addressing CVE-2018-1108, which is about a weakness in the kernel's random seed data whereby early processes in the boot sequence could not have random enough data. But the fix dramatically slows down systems booting by waiting until sufficient entropy is available. This is problematic particularly for VMs where virtio-rng is not present. For some users, they can't get the system(s) booted on affected kernels unless tapping on keyboard keys enough times for generating sufficient entropy.
  • Linux 4.17.8
    I'm announcing the release of the 4.17.8 kernel. This is to fix the i386 issue that was in the 4.17.7 release.  All should be fine now.
  • SPECTRE Variant 1 scanning tool
  • When your software is used way after you EOL it.
    One of my first jobs was working on a satellite project called ALEXIS at Los Alamos National Laboratory and had been part of a Congressional plan to explore making space missions faster and cheaper. This meant the project was a mix-mash of whatever computer systems were available at the time. Satellite tracking was planned on I think a Macintosh SE, the main uploads and capture were a combination of off the shelf hardware and a Sparc 10. Other analysis was done on spare Digital and SGI Irix systems. It was here I really learned a lot about system administration as each of those systems had their own 'quirks' and ways of doing things. I worked on this for about a year as a Graduate Research Assistant, and learned a lot about how many projects in science and industrial controls get 'frozen' in place way longer than anyone writing the software expects. This is because at a certain point the device becomes cheaper to keep running than replace or even updating. So when I was watching this USGS video this morning,

Raspberry Pi On Linux 4.19 Will Be Able To Report Under-Voltage Issues

The Linux 4.19 kernel will be introducing a new "raspberrypi-hwmon" driver capable of reporting under-voltage conditions for Raspberry Pi boards. This Raspberry Pi Hwmon driver makes it easy to find out if your ARM SBC is suffering from any under-voltage condition: the driver reports the under-voltage sensor state via a mailbox interface with the VC4 firmware. Undervoltage conditions are then written to the kernel log. Read more