Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Thursday, 28 Jul 16 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story 4MLinux 19.0 Distro to Ship with GCC 6.1.0 and Qt 5.7, Public Beta Out Now Roy Schestowitz 24/07/2016 - 11:05pm
Story Weekend in Techrights Roy Schestowitz 24/07/2016 - 10:42pm
Story Why Open Source is gaining momentum in Digital Transformation? Rianne Schestowitz 24/07/2016 - 8:56pm
Story Linux 4.7 Rianne Schestowitz 24/07/2016 - 8:51pm
Story today's leftovers Roy Schestowitz 24/07/2016 - 6:59pm
Story Leftovers: More Software Roy Schestowitz 24/07/2016 - 6:58pm
Story Games for GNU/Linux Roy Schestowitz 24/07/2016 - 6:54pm
Story Android Leftovers Roy Schestowitz 24/07/2016 - 6:50pm
Story Firefox vs. Flash Roy Schestowitz 24/07/2016 - 6:49pm
Story Security News Roy Schestowitz 24/07/2016 - 6:47pm

Mageia 6 Wallpaper, OpenMandriva 3 RC, Desktop Blunders

Filed under
-s

Today in Linux news the Mageia project announced the winner of their artwork contest for upcoming version 6 as well as some of the other being included. OpenMandriva 3.0 Release Candidate 1 is available for download although the project has yet to announce it and Korora 22 is nearing the end of support. Matt Hartley identified the top six Linux desktop blunders and several Linux reviews caught my eye today.

Read more

Lenovo G50 & CentOS 7.2 Xfce - As good as it gets

Filed under
Red Hat

CentOS 7.2 Xfce is the most satisfactory distribution on the market today, alongside Trusty. Not perfect, not plug-n-play, but it is supported, stable and quite friendly. I did need several hours to sort things out, and that's the price for converting a server distro into a home operating system.

In this guise, it works well, with a few small exceptions, one or two outstanding niggles that need fixing, and the knowledge that I needed some third-party gear to achieve the level of productivity that I normally seek. That precludes CentOS 7 from being perfect or a candidate for my production setup, but it might be just the thing for you. If you're not as bothered as I am around unofficial repos and adding some extra software on your own, then look no further. CentOS 7.2 Xfce is a slick, modern, good-looking choice with all the goodies for a healthy modern life. It is better than KDE and Gnome flavors, and comes with the unbeatable blend of simplicity and functionality.

If anyone out there is interested in making the perfect home distro, based on Red Hat, please consider my words as a template for what needs doing. Drivers (signed), third-party software, basic customization. And that's it. So simple. Then again, so difficult. But this is the most sensible formula for desktop use you will have seen in a long, long time. Enjoy.

Read more

Security News

Filed under
Security
  • Two Million Passwords Breached in Ubuntu Hack
  • VBulletin flaw exploited in breach of Ubuntu Forums

    A known SQL injection vulnerability affecting vBulletin software was exploited by an attacker to breach the Ubuntu Forums database.

  • Ubuntu Forums data breach exposes 2 million users

    Ubuntu aficionados beware, as a data breach of the Ubuntu Forum has resulted in the leak of information for two million users. It should be noted that the breach has not hit Canonical Ltd., which runs the Ubuntu operating system, but rather the forum, so other services are still safe.

    The notice from Canonical explains that the breach was made possible through an SQL injection vulnerability in the forum’s Forumrunner add-on, which had not been patched. By injecting certain formatted SQL into the forum database, the hacker could then reach any table, particularly the “user” table.

  • Ubuntu Forum Hack Exposes 2 Million Users

    Ubuntu Linux developer Canonical has confirmed that a data breach exposed personal information of two million users of its forum.

  • How to scam $750,000 out of Microsoft Office: Two-factor auth calls to premium-rate numbers

    Gaming two-factor authentication systems with premium rate phone numbers can be very profitable – or it was until the flaws got reported.

    Belgian security researcher Arne Swinnen noticed that the authentication systems used by Facebook-owned Instagram, Google and Microsoft allow access tokens to be received by a voice call as well as a text message. By linking accounts to a premium-rate phone number he controlled and could pocket money from, he was able to scam the three companies out of cash – in some cases potentially thousands of dollars a day.

  • How Do Hackers Easily Crack Your Strongest Passwords — Explained
  • Security Skills Give Open Source Professionals a Career Advantage

    In today’s market, open source professionals with security expertise are crucial players on an employer roster. The growing use of cloud and big data, as well as the overhaul and expansion of many companies’ tech infrastructures, are driving the demand and need for professionals with this skillset.

    According to the 2016 Open Source Jobs Report, 14 percent of hiring managers and recruiters surveyed believe security to be the most important open source skill to date, ranking third just behind cloud technologies (51 percent) and networking (21 percent). Employers aren’t the only ones that see the value in security; 16 percent of open source professionals surveyed cited security as the most important open source skill and the biggest driver for open source growth in 2016.

  • AT&T Unveils Powerful New Security Platform

    AT&T this week unveiled a new powerful security platform, using big data analysis based on a Hadoop architecture which allows the company to ingest and analyze 5 billion security events in less than ten minutes.

  • Software security: Does quality provide a blueprint for change?

    Software security has been in the news a lot lately, between various high profile social media hacks to massive data breaches it feels like people in the industry are always talking about security, or more appropriately, the lack thereof. While having a conversation with somebody from my company’s internal security team a few weeks ago I had a bit of an epiphany: security in 2016 is much like quality was in 1999.

    Let’s think back 17 years and remember what the quality process was like in 1999. Code was written in rather monolithic chunks with very little thought (if any) given to how that code was to be tested. Testers were on completely separate teams, often times denied access to early versions of the software and code. Testers would write massive sets of test cases from technical specifications and would accept large drops of code from developers only after a feature was considered completed. Automation was either a pipe dream or only existed for very stable features that had been around for a while. A manual testing blitz would then kick off, bugs would be filed, work thrown back over the wall, rinse and repeat. After several of these cycles it was the testers job to give a go/no-go on whether the product was good enough to ship, essentially acting as gatekeepers.

  • As a blockchain-based project teeters, questions about the technology’s security

    There’s no shortage of futurists, industry analysts, entrepreneurs and IT columnists who in the past year have churned out reports, articles and books touting blockchain-based ledgers as the next technology that will run the world.

    In the middle of all this hype is a small fire that threatens to put some of those words to ash: The hijacking last month of around US$40 million of dollars worth of a cryptocurrency called ether – named after its blockchain platform, Ethereum — from The DAO, a crowd-sourced investment vehicle that has so far raised over US$100 million in the digital currency. Instead, the DAO has become paralyzed and on the verge of collapse.

  • Sandia Labs Researchers Build DNA-Based Encrypted Storage

    Researchers at Sandia National Laboratories in New Mexico are experimenting with encrypted DNA storage for archival applications.

    Husband and wife team George and Marlene Bachand are biological engineers with a remarkable vision of the future.

    The researchers at the Sandia National Laboratories Center for Integrated Nanotechnologies foresee a time when a speck of DNA on a piece of paper the size of a millimeter could securely store the entire anthology of Shakespeare’s works.

Linux Kernel/Graphics

Filed under
Graphics/Benchmarks
Linux

Qt WebBrowser 1.0

Filed under
OSS
Web

We have recently open sourced Qt WebBrowser!

Read more

Also: Qt WebBrowser 1.0 Open-Sourced

Enter new tool for newbie: Handy Linux

Filed under
Debian

Handy Linux has come out with handy Linux its new weapon in its arsenal. It is quite a simplified version to use the Linux operating system on desktop. The Handy Linux surfaced at around three years ago, however in June the latest version was released.

The developers have made it easy to remove the layers of Handy Linux to reveal the more standard Linux environments which the users can learn. The users who do not need the IT installation tools included in the initial installation can delete them using Handy2Ddebian app from Handy’s main menu.

Handy Linux is a standard Debian based OS which is light and shows some mix of Xfce desktop ecosystem. The remixed desktop is the signature mark for the Handy Linux.

Read more

Also: Video: Systemd in Debian, a status update

OSS Leftovers

Filed under
OSS
  • Splice Machine Open Sources Dual-Engine Big Data Technology
  • Splice Machine's New Open-Source RDBMS Sandbox Goes Live on Amazon Web Services (AWS)
  • As Splice Machine's Database Goes Open Source, Apache Spark Could Spur it On

    Around the time that Splice Machine announced a milestone version of its RDBMS, which it bills as "the first hybrid in-memory RDBMS powered by Hadoop and Spark," its fortunes were starting to rise along with Hadoop's and Spark's. In the big data space, there is tremendous need to marry powerful data analytics tools with powerful database tools. If you're focusing on the Big Data and NoSQL arenas, along with relational databases, Splice Machine is worth a look.

    Now, Splice Machine is going open source, and it is also going live in a sandbox version on Amazon Web Services (AWS), so you can easily give it a try.

    Splice Machine aims to be a database solution that incorporates both the scalability of Hadoop, ANSI SQL, ACID transactions, and the in-memory performance of Spark.

  • How Open Source Guides Digital Transformation

    Almost everyone can agree the digital era is being fueled by five primary forces — mobile, social, sensor technologies, big data and the cloud. But doesn't open source play a role in digital transformation as well?

    That was one of the topics discussed last week during a roundtable discussion sponsored by MIT Technology Review Custom and EnterpriseDB (EDB). The explored how open source software is helping organizations transform their infrastructures to meet today's data-driven demands.

  • This Open Source Tool Can Map Out Bitcoin Payments

    Bitcoin is not anonymous. Anyone who has followed the dark web or the continuing regulation of the cryptocurrency should be familiar with that idea. If someone manages to link a real identity to a wallet—something that we’ve seen is possible—they can then follow other transactions around the public blockchain to see where else that person’s money has traveled.

  • CIR’s open-source Impact Tracker is live

    Almost two years ago, I began the process of building an Impact Tracker at The Center for Investigative Reporting to help us better understand the results of our work. Flash forward to today, and we have a custom-built platform that is being used by more than 20 organizations around the world.

    Today, we are releasing an open-source version, available to any organization.

  • OpenWest conference emphasizes importance of open-source technology

    Over 2,000 individuals wearing circuit board badges learned and talked about all things open source this past weekend at the South Towne Expo Center. The OpenWest conference is the largest regional tech conference promoting all things open— hardware, software, data, standards and more.

    The conference is put on by Utah Open Source and sponsored by V School, Electronic Frontier Foundation, Podium and Protocol, among others.

    Open source refers to software that anyone can see and edit. Open-source code is typically created in collaboration with both online and real-life communities. Liz Sands-Adams, OpenWest’s Director of the Privacy Education Track, said, “OpenWest survives because of a volunteer community that believes in empowering the open-source communities around them.”

  • Getting Exposure for Your Open Source Project

    With so many great open source projects spreading like wildfire, it is a great time to be a developer! I spend a considerable amount of time looking for great ideas across the open source community. For me, I'm always searching for modules we might include in our distributions, projects that could be enhanced and commercialized, or even crossovers into other areas for innovations. If something really resonates with our business we will apply resources to furthering that project.

    Generally, the first thing I do is hit the project description to see if it makes a connection with me. If it does, I’ll try it out or tag it for further research, perhaps even mention it on Twitter or discuss internally on a relevant Slack channel. Note, I did not look at your code, I looked at the idea. If you want your code to get out into the community, and actually ignite something bigger, you need to make sure your project is discoverable.

  • Prometheus unbound: Open source cloud monitoring

    Prometheus, an open source system for monitoring and alerting a wide spectrum of enterprise IT events, including containers, released its 1.0 revision this week.

    It's also the second product in what amounts to a portfolio assembled by the CNCF (Cloud Native Computing Foundation) for realizing the promise of a container-powered cloud built entirely on open source and open standards.

  • Simplify your OpenStack installation with open source tools

    To avoid any confusion, let's make this clear: OpenStack is a cloud-operating system. OpenStack is not a VM, but rather sits on top of VMs. Also, OpenStack is written in Python.

    As you install each component, OpenStack installs a command-line tool that works in tandem with it. The problem is that each component -- of which there are dozens -- has its own command-line tool, each with its own name and parameters. For example, you run Keystone to install users and roles in the Identity Service. Then you run Glance to load VM images. You would then use Nova to deploy those images. After a while, the sheer number of components and their respective command-line tools can get overwhelming.

    So, other than the command line, what options do we have to simplify the OpenStack installation process? Let's have a look.

Games for GNU/Linux

Filed under
Gaming
  • GDC Europe survey shows 17% of developers plan to release Linux titles

    GDC Europe ran a survey of 800 games industry professionals who attended a previous GDC event and about 17% stated they plan a game for Linux.

    It's a really weird survey, as it pulls Windows/Mac together, but has Linux by itself. It would make more sense to have all three separated. They also say PC when they mean Windows, which is always annoying to see. Still, it's a pretty healthy percentage considering only a few years ago it would have probably been 0-1%.

    It's also amusing to see them do the survey, have Linux as an option which beats out multiple other platforms, yet they don't mention anything about Linux in the text.

  • Tyranny, the new RPG from Paradox and Obsidian is looking great in this new video
  • Ballistic Overkill FPS updated, lots of changes and still works great

    Ballistic Overkill is the fast paced FPS game I have fallen in love with and it just gained a tasty update.

    The game has down away with a single health station on the map, to now have health packs spread throughout the map. An interesting and needed change, but I feel they respawn far too quickly.

    The map voting system is much better. Instead of always being on a single mode, you pick a single map and each map comes with a different game mode. That makes the game feel a lot fresher in my opinion and helps stop me getting bored in longer sessions.

  • Lost Sea action and adventure game released for Linux, some thoughts

    Lost Sea is a really nice idea, mixing up action, adventure, RPG and random generation together to create something interesting. You also lose almost all progress when you die, so there's the punishment factor here. You don't lost everything, you get a bit of gold and XP for each tablet you get on the previous run.

    You sail from island to island collecting treasures, killing monsters and collecting stone tablets that enable you to move further along in your journey. It all sounds pretty good, but I've found the game to be rather lacking in every aspect of its design.

    The combat just seems so basic and lifeless it really lets down what could have been a very exciting game. You can upgrade your skillset to have a few nice extras but even so, it still feels a bit empty. It's not terrible though, just not really all that challenging at all, no real excitement factor to the combat. It's literally mash X a few times, maybe use a skill if you need too and—done.

  • Kingdom Rush Frontiers coming to Linux after the initial Windows launch
  • Darkest Dungeon updated, has some needed Linux fixes
  • Undertale now available for Linux on GOG

    Undertale recently released on Steam, but this weird 2D RPG is now also available DRM free on GOG. I know a few of you were waiting for this!

    My friends at GOG sent over a key and I can confirm it seems to work fine, I didn't encounter any obvious issues in my testing of the GOG build.

Top 6 Desktop Linux Blunders

Filed under
Linux

Ever since I first tried Linux on my desktop years ago, I've found myself wincing at what I felt were avoidable blunders. This observation doesn't affect one distro more than another, rather it's ongoing issues I've watch in utter amazement happen time and time again.

No, I'm not giving a free pass to proprietary operating systems as they also have their share of epic blunder moments. But with Linux on the desktop, I guess you could say it just hits a bit closer to home. Remember, these are not merely bugs – I'm also talking about avoidable issues that affect folks even if they don't realize it.

Read more

Bryan Lunduke and Matt Hartley – The Boys Are Back

Filed under
News

After some “going back and forth”, Bryan and I have decided it was high time we did a proper show together. Here are the details you need to know. Yes, it’s actually happening!

New show, baby! New weekly show!

I’ve teamed up with the ever-adorable +Matt Hartley to create a video-only show we call “Lunduke & Whatnot (with Matt)”.

A few things worth noting:

Red Hat Shoots to Solve Container Storage with Gluster and OpenShift

Filed under
Red Hat

Red Hat is the newest organization to take a stab at the persistent storage challenge for containers. Last month, the open source giant announced a new Gluster-based storage option for OpenShift, the company's open source platform for running containerized apps.

Gluster and OpenShift are two key parts of the Red Hat technology stack. Gluster provides open source distributed storage, while OpenShift offers an integrated, one-stop platform for deploying and managing containers using Docker and Kubernetes.

Read more

Splice Machine 2.0 combines HBase, Spark, NoSQL, relational...and goes open source

Filed under
OSS

Splice Machine is a well-kept secret though; Zweben told me the company has about 10 customers. Although he hails from the world of commercial software, Zweben believes that open sourcing the Splice Machine product will help spread the word more widely. So version 2 of the product will be available in a free and open source Community Edition with the full database engine. A paid Enterprise Edition, that includes professional support and DevOps features like integration with LDAP and Kerberos as well as backup and restore, will provide the monetization model for the company.

Read more

Canonical and Proprietary Forums Software (Again Cracked)

Filed under
Security
Ubuntu

Prometheus unbound: Open source cloud monitoring

Filed under
OSS

Prometheus 1.0 is part of the Cloud Native Computing Foundation's effort to assemble a product portfolio for a container-based, open source cloud

Read more

A Linux Kernel Wizard’s Adventures in Embedded Hardware

Filed under
Linux

Sometimes the best tutorials come not from experts, but from proficient newcomers who are up to date on the latest entry-level technologies and can remember what it’s like to be a newbie. It also helps if, like Grant Likely, the teacher is a major figure in embedded Linux who understands how hardware is ignited by software.

Read more

today's leftovers

Filed under
Misc
  • Microsoft blocks Linux installations

    Microsoft has closed a backdoor left open in Windows RT even though the OS is pretty much dead in the water as Vole can’t be bothered with it any more.

    This vulnerability in ARM-powered locked down Windows devices was left by Redmond programmers during the development process. Exploiting this flaw, a hacker could boot operating systems of his/her choice, including Android or GNU/Linux.

  • “Windows 10 Is A Failure” — According To Microsoft’s Own Metric [Ed: in spite of very dirty if not illegal tricks]

    Microsoft has accepted that Windows 10 has failed to perform as expected. The software giant hoped that by mid-2018, Windows 10 will be running on 1 billion devices. Now, this number seems far-fetched due the constantly shrinking PC market and poor performance of Windows 10 Mobile.

  • KDEPIM ready to be more broadly tested

    As was posted a couple of weeks ago, the latest version of KDE has been uploaded to unstable.

    All packages are now uploaded and built and we believe this version is ready to be more broadly tested.

  • Builder Happenings

    Over the last couple of weeks I’ve started implementing Run support for Builder. This is somewhat tricky business since we care about complicated manners. Everything from autotools support to profiler/debugger integration to flatpak and jhbuild runtime support. Each of these complicates and contorts the problem in various directions.

    Discovering the “target binary” in your project via autotools is no easy task. We have a few clever tricks but more are needed. One thing we don’t support yet is discovering bin_SCRIPTS. So launching targets like python or gjs applications is not ready yet. Once we discover .desktop files that should start working. Pretty much any other build system would be easier to implement this.

Fedora News

Filed under
Red Hat
  • New guidelines for Fedora Ambassadors and Design

    This week, some Ambassadors, CommOps, and Design Team members collaborated on improving and redefining the guidelines for how to request artwork and other art assets. As the advocates and representatives of Fedora across the globe, the Ambassadors often need many tools and resources for demonstrating Fedora. Examples of this might be fliers, banners, tablecloths, stickers, badges, and more. Until recently, the process for requesting artwork assets was not well-defined and somewhat unclear. This can cause problems when Ambassadors need something designed for an event. Sometimes it can draw out the request or end up in an accident, such as purple DVD media covers!

  • GSoC 2016 Weekly Rundown: Documentation and upgrades

    This week and the last were busy, but I’ve made some more progress towards creating the last, idempotent product for managing WordPress installations in Fedora’s Infrastructure for GSoC 2016. The past two weeks had me mostly working on writing the standard operating procedure / documentation for my final product as well as diving more into handling upgrades with WordPress. My primary playbook for installing WordPress is mostly complete, pending one last annoyance.

Syndicate content

More in Tux Machines

Server Administration

  • How to Find the Best DevOps Tools
    Almost all VictorOps users are practitioners and heavy users of DevOps tools, said Jason Hand, DevOps Evangelist & Incident & Alerting specialist at VictorOps. He shared the following list of popular tools used by their customers: Icinga, Nagios, Jira, Trello, Hubot, Slack, Jenkins, Graphite, RayGun, Takipi, New Relic, Puppet, Chef, GitHub, Cassandra, Ansible, Grafana, ElasticSearch, Logstash, and Kibana.
  • Persistent vs. Non-Persistent Workloads: the Admin's Conundrum
    Virtualization isn't the answer to every problem in IT. There are plenty of workloads where neither containers nor hypervisors are the answer. The old problems of being able to easily provision, utilize and make highly available bare-metal workloads remain, so what options exist for the modern sysadmin? Solutions to this problem can be largely divided into two groups: persistent and non-persistent workloads. For all intents and purposes, these break down into OpEx and CapEx problems, respectively.
  • Agile 2016: How to measure your DevOps initiatives
  • Navigating the Data Center Networking Landscape
    It’s really no surprise that these new types of technologies will have major impacts around the entire enterprise networking layer. Most of all – these systems will change the way business create go-to-market strategies and where next-generation networking technologies can make an impact.

Facebook Open Sources 17-Camera Surround360 Rig with Ubuntu Stitching Software

The major benefit of the higher end cameras -- and the Surround360 in particular -- is not only quality and durability, but much shorter processing time stitching videos into a seamless whole. The open source Linux software “vastly reduces the typical 3D-360 processing time while maintaining the 8K-per-eye quality we think is optimal for the best VR viewing experience,” says Facebook. Read more

Linux Devices

Tanglu 4 "Dasyatis Kuhlii" Enters Beta, Ships with Linux Kernel 4.6 & GNOME 3.20

Matthias Klumpp informs the community about the availability of the first Beta build towards the Tanglu 4 "Dasyatis Kuhlii" GNU/Linux operating system, due for release later this year. Tanglu 4 "Dasyatis Kuhlii" Beta is distributed with the usual flavors, including with the KDE and GNOME desktop environments. A Core edition is available as well, designed for those who want to build their own Tanglu-based GNU/Linux distribution. Under the hood, all Tanglu 4 Beta editions are powered by a kernel from the Linux 4.6 series, along with the systemd 229 init system, but each one incorporates some of the latest open-source technologies that correspond to their user base. Read more