Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Wednesday, 18 Jul 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story today's leftovers Roy Schestowitz 13/07/2018 - 3:49pm
Story Games: Hacknet, Streets of Rogue, Scrunk, Fanatical Roy Schestowitz 13/07/2018 - 3:48pm
Story OSS Leftovers Roy Schestowitz 13/07/2018 - 3:36pm
Story Windows Server 2016 vs. FreeBSD 11.2 vs. 8 Linux Distributions Performance Benchmarks Rianne Schestowitz 13/07/2018 - 2:40pm
Story Security: Chip Defects and More Roy Schestowitz 13/07/2018 - 2:39pm
Story Mozilla: Addons, OverbiteNX and Remarks on Indian Telecom Commission Roy Schestowitz 13/07/2018 - 2:28pm
Story Clear Linux Makes a Strong Case for Your Next Cloud Platform Roy Schestowitz 13/07/2018 - 2:20pm
Story today's howtos Roy Schestowitz 13/07/2018 - 2:15pm
Story GCC 8.2 Compiler Will Be Releasing Soon Roy Schestowitz 13/07/2018 - 2:13pm
Story Linux Foundation on Jobs and Funding Roy Schestowitz 13/07/2018 - 2:10pm

Acquia CTO defines ‘decoupled’ Drupal

Filed under
Drupal

Many open source enthusiasts (practitioners, paragons, partisans, preachers and protagonists) will have heard of Drupal.

For those that haven’t, Drupal is an open source content management framework, as well as an extended community of developers, maintainers and business supporters.

Read more

Red Hat News

Filed under
Red Hat

Security: NotSoSecure, Security Keys, Reproducible Builds and Hyped Malware

Filed under
Security
  • Claranet Buys NotSoSecure

    Claranet, a managed service provider with services focused on western Europe and Brazil, has purchased NotSoSecure, a firm specializing in penetration testing and ethical hacker training.

    The purchase follows Claranet's 2017 acquisition of SEC-1, a security firm based in the United Kingdom. According to a Claranet statement announcing the purchase, the security acquisitions, together with the opening of a security operations center in Portugal, are part of the company's intention to increase their overall security services capabilities.

  • Firefox, Security Keys, U2F, and Google Advanced Protection

    Advanced Protection for Google Accounts uses a legacy web technology that is only partially supported in Firefox. Here is how you get started with physical security keys and extra protections for your Google Account in Firefox.

    [...]

    Before you can enroll in the Google Advanced Protection program, you must have at least two security keys at the ready. You can use the same keys for multiple Google Accounts, and even reuse the same keys with different U2F-enabled web services.

    You should keep a record of which of your keys are registered with which websites. If you loose a key or want to decommission one, you’ll need this record to know all the accounts you’ll need to update.

    You can use any FIDO U2F security keys as long as they’re compatible with your devices. Google recommend you get one regular key with USB as your backup token, and one mobile-capable with wireless Bluetooth and NFC as the primary key you carry around with you. Specifically, Google recommends the YubiKey U2F (USB) and either the Feitan Multipass (Bluetooth/NFC/USB) or YubiKey Neo (NFC/USB). Bluetooth is more compatible with a wider range of devices, but the Bluetooth capabilities requires you to charge the key. NFC is less compatible with cheaper smartphones and other devices. However, neither NFC nor USB modes require you to charge the keys for them to operate.

  • Reproducible Builds: Weekly report #167
  • WellMess: This Go-based Malware Attacks Both Linux And Windows Machines [Ed: If the user actually needs to install it, then the threat is the user, not the program]

6 open source cryptocurrency wallets

Filed under
OSS

Without crypto wallets, cryptocurrencies like Bitcoin and Ethereum would just be another pie-in-the-sky idea. These wallets are essential for keeping, sending, and receiving cryptocurrencies.

The revolutionary growth of cryptocurrencies is attributed to the idea of decentralization, where a central authority is absent from the network and everyone has a level playing field. Open source technology is at the heart of cryptocurrencies and blockchain networks. It has enabled the vibrant, nascent industry to reap the benefits of decentralization—such as immutability, transparency, and security.

Read more

Top 31 Best Linux Games You Can Play for FREE

Filed under
Gaming

You don’t have to spend money to play the best Linux games. Here is a list of awesome free Linux games so that you can enjoy gaming on your Linux system without worrying about your wallet.
Read more

Linux and Graphics: Gasket, MoltenVK, RADV and Vulkan

Filed under
Graphics/Benchmarks
Linux
  • Google's Gasket Driver Framework Landing For Linux 4.19

    Queued into the staging code for introduction with the Linux 4.19 kernel is the Gasket driver framework and the first driver based upon it, Apex.

    Gasket in this context is short for Google ASIC Software, Kernel Extensions, and Tools. The Gasket framework aims to make it easier to develop thin kernel drivers that provide the basic functionality in kernel-space but any extra functionality is to be achieved in user-space code.

  • MoltenVK Gets Patches To Workaround iOS API Issue, App Store Rejection

    A new pull request has been submitted to MoltenVK, the open-source project for mapping the Vulkan graphics/compute API over Apple's Metal to run on iOS/macOS. This pull request is working to address the issue that caused at least one MoltenVK-using iPhone/iPad game to be rejected from the Apple App Store.

  • RADV Vulkan Driver Gets Minor CPU Overhead Reductions, Conditional Rendering Patches

    Samuel Pitoiset of Valve's open-source Linux GPU driver team has been particularly busy in recent days with "RADV" Radeon Vulkan driver enhancements.

    Pitoiset this weekend sent out patches for enabling the new VK_KHR_create_renderpass2 extension, which was introduced in Saturday's release of Vulkan 1.1.80. RenderPass2 allows for render passes to be easily extended.

  • RADV Driver Gets Faster Shader LLVM Compilation

    It's an exciting day in RADV land as in addition to work on the new Vulkan 1.1.80 extensions, David Airlie landed a patch he's been baking for speeding up the shader compilation performance for this open-source Radeon Vulkan driver within Mesa.

OSS Leftovers

  • Why you really don't want just one vendor running an open source project

    When someone calls out Linux and Hadoop as two multi-vendor open source communities that have "made commercialization of the technology extremely competitive and difficult," it would be reasonable to wonder what planet they live on. After all, as MongoDB's Henrik Ingo challenged, "Surely those are the two biggest and most successful ecosystems???"

    Joseph Jacks, who made the first statement, is active with the Cloud Native Computing Foundation. He's not a newbie to open source. In arguing for single-vendor open source "communities" and their allegedly superior economics, he has perhaps unwittingly argued for (one) winner-takes-all when far more money is available in (many) winners-take-much markets.

    But first, here's what we're not talking about.

  • Privacy-Centric ‘Bob Wallet’ Adds Bitcoin Cash Support

    Privacy is important in the cryptocurrency ecosystem to a large number of individuals, and people believe private transactions are needed badly these days in a society watched by the ‘deep state.’ Because people find privacy to be extremely important, some developers have designed bitcoin mixers and tumblers that help obfuscate cryptocurrency transactions recorded on public blockchains. One specific project in the works called Bob Wallet offers a privacy-centric client that enables users to move BTC and BCH from a public wallet to a private wallet in a secretive fashion.

  • Private & Public Open Source Bob Wallet Adds Bitcoin Cash (BCH) Crypto Support

    Privacy-centric Bob Wallet recently added Bitcoin Cash (BCH) support so BCH users can use BCH Testnet coins and experiment with the mixing service. The Wallet was created to help preserve Bitcoins fungibility. Today it is easy to trace bitcoin transactions from address to address by simply using any public Block Explorer. Bob Wallet helps fix this.

    The open source project doesn’t allow you to make payments to others as its only purpose is to allow the movement of funds from your public wallet to a private wallet in an isolated manner. The project, which is currently in Beta should only be used in Testnet for now until the software is thoroughly tested. Users can visit the Bob Wallet website or drag and drop the ‘bobwallet.html’ into a browser to create a new Bob Wallet.

  • Rainmeter 4.2 Build 3111 [Ed: GPL, but Windows only]

    Rainmeter is a free, open-source platform that enables skins to run on the desktop. Rainmeter allows you to display customizable skins on your desktop, from hardware usage meters to fully functional audio visualizers. You are only limited by your imagination and creativity.

    Rainmeter is the best known and most popular desktop customization program for Windows. Enhance your Windows computer at home or work with skins; handy, compact applets that float freely on your desktop. Rainmeter skins provide you with useful information at a glance. It's easy to keep an eye on your system resources, like memory and battery power, or your online data streams, including email, RSS feeds, and weather forecasts.

  • Oasis Labs to Create Blockchain-Based Privacy-First Cloud Computing Platform, Elisa Music Player Version 0.2 Released, Unitary Fund Awarding Grants to Projects Developing Open-Source Quantum Software and More

    The Unitary Fund, which was created with "personal donations from founder of security firm Lookout, John Hering, and developer of quantum integrated circuits Rigetti Computing product manager Nima Alidoust", recently launched. The fund is offering $2000 grants to projects developing open-source quantum software. According to ComputerWorld, "Any project that 'will benefit humanity that leverages near-term quantum computing' qualifies to apply for the fund.

  • Quantum computing fund set up for open-source projects

    A new program to support the development of open source projects in quantum computing has been launched. The Unitary Fund will offer six grants of $2,000 to fund open source quantum computing projects.

    The fund was created by William Zeng, head of quantum cloud services for the quantum computing company Rigetti. According to Zeng, in order for quantum computing hardware and platforms to advance, they need smart software

  • GCC's Conversion To Git Is Being Held Up By RAM, a.k.a. Crazy DDR4 Prices

    After converting the GNU Emacs repository to Git a few years back, Eric S Raymond has been working on the massive undertaking of transferring the GCC (GNU Compiler Collection) repository in full over to Git. But the transition to GCC Git is being hampered since due to the massive size of the repository, Raymond's system is running under extreme memory pressure with 64GB of RAM.

    ESR provided an update on the GCC repository conversion process. He has managed to solve the only known remaining technical bug that's been blocking the repository, but now he can't get the process completed since he's over-running memory capacity. His primary workstation has 64GB of DDR4 memory and that's turned out to not be enough for the GNU Compiler Collection repository with more than a quarter million commits over the past three decades.

  • Why DOD Should Look Before Leaping into Open Source

    In February 2018, the Department of Defense (DOD) Defense Digital Service (DDS) relaunched Code.mil to expand the use of open source code. In short, Code.mil aims to enable the migration of some of the department’s custom-developed code into a central repository for other agency developers to reduce work redundancy and save costs in software development. This move to open source makes sense considering that much of the innovation and technological advancements we are seeing are happening in the open source space.

    Since its launch, Code.mil has, according to the DDS, helped spur many open source-enabled projects, including the creation of eMCM last March—an easily accessible web-based version of the Manual for Courts-Martial (MCM) that outlines the official conduct guide to the courts-martial in the U.S. military. Before the digital relaunch of MCM, the process for updating the Manual for Courts-Martial was tedious and involved approvals from a handful of government offices, resulting in delayed and outdated releases of guidance that occurred only once every several years. In its open version, the MCM is periodically updated allowing for a live version to be widely accessible across the U.S. military.

FreeNAS 11.2-BETA1

Filed under
BSD
  • FreeNAS 11.2-BETA1

    We are pleased to announce the general availability of FreeNAS 11.2-BETA1. This initial version of the 11.2 series is considered to be feature-complete and ready for testing. Users, especially those who use Plugins, Jails, or VMs, are encouraged to update to this release in order to take advantage of the many improvements and bug fixes to those subsystems. Please report any bugs to https://redmine.ixsystems.com/projects/freenas/.

    To update to this release, select the 11.2-STABLE train in System → Update. Should you need to return to the 11.1 series after updating, reboot and select that boot environment from the boot menu.

  • FreeNAS 11.2 Beta Rolls Out With FreeBSD Bootloader, Self-Encrypting Drives

    The folks at iX Systems have announced their first public beta of FreeNAS 11.2, their downstream of FreeBSD 11.2 focused on supporting network-attached storage (NAS) systems.

ARM Launches "Facts" Campaign Against RISC-V

Filed under
Hardware

It looks like Arm Limited is going on the offensive against the RISC-V open-source processor instruction set architecture.

ARM has launched RISCV-Basics.com as a site to "understanding the facts" about the RISC-V architecture.

Their five points they try to make before designing a SoC is that the ISA accounts for only a small portion of the total investment to creating a commercial processor, RISC-V doesn't yet have an a large developer ecosystem, there is the risk of fragmentation with this open-source ISA, RISC-V is new and thus not yet as mature in terms of being a proven architecture around security, and greater design costs with RISC-V due to potential re-validation if modifying the ISA.

Read more

Events: Open Source Summit, GUADEC and Debconf

Filed under
Linux
GNOME
Debian
  • Open Collaboration in Practice at Open Source Summit

    A key goal in my career is growing the understanding and best practice of how communities, and open source communities in particular, can work well together. There is a lot of nuance to this work, and the best way to build a corpus of best practice is to bring people together to share ideas and experience.

    In service of this, last year I reached out to The Linux Foundation about putting together an event focused on these "people" elements of Open Source such as community management, collaborative workflow, governance, managing conflict, and more. It was called the Open Community Conference, which took place at the Open Source Summit events in Los Angeles and Prague, and everything went swimmingly.

  • Bastian Ilsø Hougaard: GUADEC 2018 Day 3

    Surprisingly, the castle tour featured an exciting belly dance and a bonus theater show starring GNOME’s legendary actors.

  • Taiwan Travel Blog - Day 1

    I'm going to DebConf18 later this month, and since I had some free time and I speak a somewhat understandable mandarin, I decided to take a full month of vacation in Taiwan.

    I'm not sure if I'll keep blogging about this trip, but so far it's been very interesting and I felt the urge to share the beauty I've seen with the world.

    This was the first proper day I spent in Taiwan. I arrived on the 8th during the afternoon, but the time I had left was all spent traveling to Hualien County (花蓮縣) were I intent to spend the rest of my time before DebConf.

  • Still not going to Debconf....  (100%)

        

    I was looking forward to this year's Debconf in Taiwan, the first in Asia, and the perspective of attending it with no jet lag, but I happen to be moving to Okinawa and changing jobs on August 1st, right at the middle of it...

Games: Chasm, Emulators and WineConf

Filed under
Gaming
  • Long-awaited adventure platformer 'Chasm' to launch with same-day Linux support on July 31st

    The day after my birthday like a fashionably late present, Chasm is to launch with same-day Linux support on July 31st.

    You can't link directly to comments on Steam news posts, but the developer clearly replied to a user asking about Linux support with "Win/Mac/Linux on launch!". You can't get better than that!

  • Video game emulators for Linux

    Everything in this repo is 100% legal. Games, firmware, or BIOS dumps are NOT included and will never be (unless someone makes a legal reimplementation of those). Some emulators are still highly experimental (such as Decaf) and don’t even work for anything but simple homebrew stuff.

    It’s not always possible but I try to target the current and the last Fedora releases, the current and the last openSUSE Leap releases, as well as openSUSE Tumbleweed. I build for x86-64 only. Some of the packages would also build for CentOS, Mageia, and 32bit x86 but I decided not not enable these build targets to reduce strain on OBS servers – I’d be happy to accept tweaks and fixes, should anyone of you fork a package into your OBS home repo and build it there.

  • Notes From WineConf 2018: x86 On ARM Progress, Wine-Staging Needs More Help

    Taking place last week in The Hague, Netherlands, was the WineConf 2018 conference. This year's WineConf -- on top of the usual annual discussions about this open-source project for running Windows games/applications on Linux/macOS -- took the time to celebrate the project's 25th anniversary.

Google Releases Open Source Tool to Containerize Java App Deployments

Filed under
Google
OSS

Google wants to make it easier for Java developers to containerize their applications.

The company this week announced Jib, an open-source Java tool that it says will enable developers to build Java containers more easily using tools with which they are already familiar.

In a blog post July 9, Google software engineers Appu Goundan and Qingyang Chen described Jib as a container image builder designed to handle all the steps involved in packaging a Java application into a container.

"Containerizing a Java application is no simple task," Goundan and Chen wrote. "You have to write a Dockerfile, run a Docker daemon as root, wait for builds to complete, and finally push the image to a remote registry."

Read more

Also: How open source can transform the way a company's developers work together

Watch Desktop Linux Apps (like GIMP) Running on Chrome OS [Video]

Filed under
GNU
Linux
Google

Linux fans enthusiastic about Google’s effort to bring desktop Linux apps on Chrome OS owe to themselves to watch the following video.

In it, technology YouTuber Lon Seidman demos the current state of the Crostini project (‘Crostini’ is the codename for the “run desktop and CLI Linux apps on Chrome OS” feature we keep gushing about) on both an Intel Chromebox and an ARM-based Chromebook.

This latter demo, of ARM support, is of particular interest.

I had (wrongly, it turns out) assumed Google would restrict Crostini to running on its higher-end Chromebooks, like the pricey Google Pixelbook and the ‘spensive Samsung Chromebook Plus.

Read more

Ubuntu: Snapcraft, Bug, Newsletter Issue 535 and Minimal Ubuntu

Filed under
Ubuntu
  • New business models on their way for IoT hardware [Ed: by Jamie Bennett, VP of Engineering, IoT & Devices at Canonical]

    Snaps are containerised software packages easily managed through Snapcraft, a platform for building and publishing applications to an audience of millions of Linux users. Snapcraft enables authors to push software updates that install automatically and roll back in the event of failure. The likelihood of an errant update breaking a device or degrading the end user experience is, as a result, greatly reduced. If a security vulnerability is discovered in the libraries used by an application, the app publisher is notified so the app can be rebuilt quickly with the supplied fix and pushed out.

    As application packages bundle their runtime dependencies, they work without modification on all major Linux distributions as well as being tamper-proof and easily confined. A snap cannot modify or be modified by another app, and access to the system beyond its confinement must be explicitly granted. Precision definition, therefore, brings simpler documentation for installing and managing applications. Taking into account the automatic updates, which eliminate a long tail of releases, applications perform more intuitively for both the publisher and end-user.

    Snapcraft also gives managers the tools to organise releases into different release grades, or channels. One set of tools can be used to push app updates from automatic CI builds, to QA, beta testers, and finally all users. It visualises updates as they flow through these channels and helps developers track user base growth and retention. In short, they can simplify a developer’s route, and that of their company’s, to engaging with a vast number of Linux users. Streamlining a route to market not only maximises developer worth, it also opens up new revenue drivers in the process.

  • Ubuntu bug allows anyone with physical access to bypass your lock screen

    A bug filed on Ubuntu Launchpad in the middle of June has just been made public. The bug in question appears to allow anyone with physical access to the computer bypass the lock screen by just removing the hard drive. The bug was tested on Ubuntu 16.04.4 and it’s unclear whether it affects other versions of Ubuntu or other distributions but there’s an almost certain chance it affects other distributions based on Ubuntu 16.04, such as Linux Mint 18.

  • Ubuntu Weekly Newsletter Issue 535

    Welcome to the Ubuntu Weekly Newsletter, Issue 535 for the week of July 1 – 7, 2018. The full version of this issue is available here.

  • ​Minimal Ubuntu for containers and clouds

    By default, Linux comes with a lot of extras. Usually, that's a good thing. But, sometimes you want just the bare necessities of Linux life for your server, containers, and clouds. That's where Canonical's latest Ubuntu release, Minimal Ubuntu, comes in.

    When Canonical says "Minimal", they mean minimal. Weighing in at a mere 29MB for the Ubuntu 18.04 Docker image, Minimal Ubuntu could fit on a CD with hundreds of Megabytes to spare.

    This is far from the first time Canonical has offered a small-footprint Ubuntu. The minimal Ubuntu ISO image, about 40 MB, is meant for people who download packages from online archives at installation time.

  • Minimal Ubuntu, on public clouds and Docker Hub

    Today we are delighted to introduce the new Minimal Ubuntu, optimized for automated use at scale, with a tiny package set and minimal security cross-section. Speed, performance and stability are primary concerns for cloud developers and ops.

  • Minimal Ubuntu Can Boot Faster, But Still Not The Fastest Booting On Amazon EC2 Cloud

    Canonical today released new Ubuntu Minimal images for cloud computing. The new images are half the size of the traditional Ubuntu Server and are said to boot up to 40% faster, so I decided to run a quick Amazon EC2 Linux distribution boot time comparison today...

    Using a t2.micro instance type in the EC2 US-WEST2 region, I ran the systemd boot time benchmark on various Linux distributions... Ubuntu 16.04, Minimal Ubuntu 16.04, Ubuntu 18.04, Minimal Ubuntu 18.04, SUSE Linux Enterprise 12 SP3, Red Hat Enterprise Linux 7.5, Amazon Linux 2 AMI, and Clear Linux 23550.

Meet the Astronaut AI that Runs on Ubuntu

Filed under
Sci/Tech
Ubuntu

Meet CIMON (Crew Interactive Mobile CompanioN). This free-floating Ubuntu-based cyber colleague has been designed to “mitigate” the stresses of, and share the work during, long-term spaceflight.

And to do that he’s had to boldly go where no AI assistant has gone before: space.

Read more

Malware Found On The Arch User Repository (AUR)

Filed under
Security

On June 7, an AUR package was modified with some malicious code, reminding Arch Linux users (and Linux users in general) that all user-generated packages should be checked (when possible) before installation.

AUR, or the Arch (Linux) User Repository contains package descriptions, also known as PKGBUILDs, which make compiling packages from source easier. While these packages are very useful, they should never be treated as safe, and users should always check their contents before using them, when possible. After all, the AUR webpage states in bold that "AUR packages are user produced content. Any use of the provided files is at your own risk."

The discovery of an AUR package containing malicious code proves this. acrored was modified on June 7 (it appears it was previously "orphaned", meaning it had no maintainer) by an user named "xeactor" to include a curl command that downloaded a script from a pastebin. The script then downloaded another script and installed a systemd unit to run that script periodically.

Read more

Also: Security updates for Monday

Syndicate content

More in Tux Machines

Android Leftovers

IIoT platform extends from the cloud to the depths of a mine

Advantech announced an IoT platform initially targeting mine safety that combines BTI’s “MIOTY” LPWAN sensor solution running on an Ubuntu-powered Advantech ARK-2250L gateway connected to a Hitachi IoT Service Hub running on Microsoft Azure. Because Industrial Internet of Things (IIoT) projects tend to be complex, multi-product endeavors, Advantech has lately been entering into IoT collaborations, such as its Embedded Linux & Android Alliance (ELAA) consortium and recently announced Solution Ready Packages (SRPs) cocreation program. Today at the Microsoft Inspire conference in Las Vegas, the company announced a new collaboration with Behr Technologies, Inc. (BTI), Hitachi Solutions America, and Microsoft on an end-to-end IIoT platform that will initially target the mining industry. Read more

Today in Techrights

Pinguy OS Puts On a Happier GNOME 3 Face

Pinguy OS 18.04 is an Ubuntu-based distribution that offers a non-standard GNOME desktop environment intended to be friendlier for new Linux users. This distro is a solid Linux OS with a focus on simple and straightforward usability for the non-geek desktop user. If you do not like tinkering with settings or having numerous power-grabbing fancy screen animations, Pinguy OS could be a good choice. The GNOME desktop is the only user interface option, but Pinguy OS' developer, Antoni Norman, tweaked the desktop environment with some different software options not usually packaged with GNOME. Read more