Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Tuesday, 22 May 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story today's howtos Roy Schestowitz 16/05/2018 - 9:05pm
Story Qt 3D Studio 2.0 Beta Available Roy Schestowitz 1 16/05/2018 - 9:00pm
Story GNOME: Endless OS 3.4, Flatpak 1.8 and Lots of Hackfesting Roy Schestowitz 16/05/2018 - 8:38pm
Story Security: Updates, Russia, RHEL, Thunderbird and More Roy Schestowitz 16/05/2018 - 8:33pm
Story Ubuntu Budgie 18.04 Review: The Perfect Blend of Ubuntu and Budgie Desktop Roy Schestowitz 16/05/2018 - 8:29pm
Story Benchmarks and Phoronix Test Suite Roy Schestowitz 16/05/2018 - 8:22pm
Story Xubuntu 18.04 Bionic Beaver - Middle ground Roy Schestowitz 16/05/2018 - 8:21pm
Story Creating Virtual Disks Using Linux Command Line Mohd Sohail 16/05/2018 - 7:59pm
Story Red Hat: 'Serverless' and Women Roy Schestowitz 16/05/2018 - 7:56pm
Story DOSBox Part 1: Introduction, Startup Scripts and The Keymapper Mohd Sohail 16/05/2018 - 7:56pm

Ubuntu: 32-bit Fate, Ubuntu 18.10 "Cosmic Cuttlefish" Slated for Release on October 18th, AFL in Ubuntu 18.04 is Broken

Filed under
Ubuntu
  • Ubuntu Developers Once Again Debate Dropping i386 Images, Then Discontinuing i386 Port

    While the Ubuntu desktop official images are no longer 32-bit/i386 and more Ubuntu derivatives are dropping their 32-bit x86 installers, not all 32-bit images/installers have been discontinued and the i386 package archive / port remains. That matter though is back to being debated.

    As has been common to see every once in a while over the past few years, Ubuntu developers are back to debating the i386 status following the latest Ubuntu 18.04 LTS cycle. Canonical's Bryan Quigley is proposing that i386 be dropped -- initially for images/installers but with an end goal of dropping the i386 port.

  • Firefox Quantum, Bcachefs, Ubuntu, Devuan 2.0

    It would seem that the main Ubuntu distribution may not be the only *buntu to drop support for 32-bit x86 (i386) architectures. A proposal has just been put forth by Bryan Quigley to drop support for Lubuntu, Xubuntu, Kylin and Kubuntu.

  • Ubuntu 18.10 "Cosmic Cuttlefish" Slated for Release on October 18, 2018

    Now that we know the codename of the next Ubuntu release, Ubuntu 18.10, it's time to take a closer look at the release schedule, which suffered some changes for this cycle, and the proposed release date.

    Development on Ubuntu 18.10 (Cosmic Cuttlefish) kicked off officially earlier this week with the latest GCC (GNU Compiler Collection) 8.1 release, though it's not yet the default system compiler. However, Canonical plans to migrate from GCC 7, which is currently used in the latest Ubuntu 18.04 LTS (Bionic Beaver) release to the GCC 8.x series.

  • AFL in Ubuntu 18.04 is broken

    At is has been reported on the discussion list for American Fuzzy Lop lately, unfortunately the fuzzer is broken in Ubuntu 18.04 “Bionic Beaver”. Ubuntu Bionic ships AFL 2.52b, which is the current version at the moment of writing this blog post. The particular problem comes from the accompanying gcc-7 package, which is pulled by afl via the build-essential package. It was noticed in the development branch for the next Debian release by continuous integration (#895618) that introducing a triplet-prefixed as in gcc-7 7.3.0-16 (like same was changed for gcc-8, see #895251) affected the -B option in way that afl-gcc (the gcc wrapper) can’t use the shipped assembler (/usr/lib/afl-as) anymore to install the instrumentation into the target binary (#896057, thanks to Jakub Wilk for spotting the problem).

Red Hat and Fedora: CentOS Linux 7.5, Red Hat Summit 2019 Date, Red Hat Summit 2018 Coverage, SELinux and More

Filed under
Red Hat
  • Release for CentOS Linux 7 (1804) on x86_64 aarch64 i386 ppc64 ppc64le
  • CentOS Linux 7.5 Officially Released, It's Based on Red Hat Enterprise Linux 7.5

    CentOS developers announced today the release and immediate availability for download of the CentOS Linux 7 (1804) operating system for all supported hardware architectures.

    Based on Red Hat Enterprise Linux 7.5, CentOS Linux 7.5 (1804) is the latest and most advanced snapshot of the open-source and enterprise-ready computer operating system, available now for 32-bit (i386), 64-bit (x86_64), ARM64 (AArch64), PowerPC 64-bit Little Endian (PPC64el), PowerPC 64-bit (PPC64), and ARMhf architectures.

    "I am pleased to announce the general availability of CentOS Linux 7 (1804) for across all architectures. Effectively immediately, this is the current release for CentOS Linux 7 and is tagged as 1804, derived from Red Hat Enterprise Linux 7.5," said project maintainer Karanbir Singh in the mailing list announcement.

  • Red Hat Certification Guide: Overview and Career Paths

    Red Hat, Inc. provides open source software solutions to more than 90 percent of the Fortune 500 companies, including Internet Service Providers, airlines, healthcare companies and commercial banks. The company has been around for more than two decades and is well known for its Red Hat Enterprise Linux (RHEL) distribution. Red Hat provides a fully open technology stack, which you can alter to suit your needs — you're not locked into the vendor's vision of the software or stack components. Red Hat's portfolio of products and services also include JBoss middleware, cross-platform virtualization, cloud computing (CloudForms and OpenStack) and much more.

  • The importance of diversity in tech – Red Hat Summit 2018

    Featuring Red Hat’s Women in Open Source Award winners – Dana Lewis and Zui Dighe – DeLisa Alexander, executive vice president and chief people officer at Red Hat and Justine Whitley from Macquarie Bank, the women in tech panel at Red Hat Summit discussed the positives and negatives of working in a male-dominated field, shared personal experiences, provided advice for the next generation and discussed what the industry can do to become more inclusive for women.

  • OpenShift Brings Full Cross-Platform Flexibility to Azure Cloud

    This release is the first fully managed, easy-to-use version of OpenShift in the cloud, the companies said. The fully managed integration of OpenShift on Azure means that Microsoft and Red Hat will join to engineer, operate and support the platform.

  • Save the date for Red Hat Summit 2019

    As we close out another amazing Red Hat Summit, we want you to mark your calendar for next year’s event. We’re heading back to Boston for Red Hat Summit 2019! Join us there at the Boston Convention and Exhibition Center, May 7-9, 2019, when we expect thousands of customers, partners, and technology industry leaders from around the world to come together for a high-energy week of innovation, education and collaboration.

  • Red Hat Summit: Clouds today, serverless tomorrow

    Have you ever thought to yourself, “Today’s world would be so much richer if we had 29 kinds of hummus?” Neither has Stephanos Bacon, Senior Director of Portfolio Strategy for Red Hat Application Platforms. His entertaining presentation moved from the options available to humans hungry for hummus to a discussion of the bewildering array of choices available to developers and architects. Although too many choices can be a bad thing1, it’s important to understand what choices are relevant today and that the relevance of those choices is always shifting.

  • Red Hat Summit 2018 Burr Sutter Demo

    One of the highlights of Red Hat Summit was a live, on-stage demo given by Burr Sutter (@burrsutter) and a team of developers. The demo was particularly engaging because the audience participated using a mobile game on their phones that communicated with a backend developed by Burr’s team. The objective of the demo was to show off the technologies, and also show how complex development and deployment challenges can be solved with a modern approach.

    [...]

    The main takeaway was that despite running in the cloud, it’s your app and your data, and you should be able to run it whereever is best for you. The right platform choice gives you flexibility while avoiding lock-in.

  • Video: Demystifying systemd
  • Newest SELinux policy every day!

    SELinux policy for Fedora Rawhide and Fedora 27 is changing very dynamically and new rules are appearing in SELinux policy repositories almost every day.

  • Fedora 28 : The Spin tool for 2D animation.

Mozilla and Firefox News

Filed under
Moz/FF
  • Linux sandboxing improvements in Firefox 60

    Continuing our past work, Firefox 60 brings further important improvements to security sandboxing on Linux, making it harder for attackers that find security bugs in the browser to escalate those into attacks against the rest of the system.

    The most important change is that content processes — which render Web pages and execute JavaScript — are no longer allowed to directly connect to the Internet, or connect to most local services accessed with Unix-domain sockets (for example, PulseAudio).

    This means that content processes have to follow any network access restrictions Firefox imposes — for example, if the browser has been set up to use a proxy server, connecting directly to the internet is no longer possible. But more important are the restrictions on connections to local services: they often assume that anything connecting to them has the full authority of the user running it, and either allow it to ask for arbitrary code to run, or aren't careful about preventing that. Normally that's not a security problem because the client could just run that code itself, but if it's a sandboxed Firefox process, that could have meant a sandbox escape.

    In case you encounter problems that turn out to be associated with this feature, the `security.sandbox.content.level` setting described previously can be used for troubleshooting; the network/socket isolation is controlled by level 4. Obviously we'd love to hear from you on Bugzilla too.

  • Switching to JSON for update manifests

    We plan on switching completely to JSON update manifests on Firefox and AMO. If you self-distribute your add-on please read ahead for details.

    AMO handles automatic updates for all add-ons listed on the site. For self-hosted add-ons, developers need to set an update URL and manage the update manifest file it returns. Today, AMO returns an RDF file, a common legacy add-on feature. A JSON equivalent of this file is now supported in Firefox. JSON files are smaller and easier to read. This also brings us closer to removing complex RDF parsing from Firefox code.

    Firefox 62, set to release September 5, 2018, will stop supporting the RDF variant of the update manifest. Firefox ESR users can continue using RDF manifests until the release of Firefox 68 in 2019. Nevertheless, all developers relying on RDF for their updates should read the documentation and switch soon. Firefox 45 introduced this feature, so all current versions of Firefox support it.

  • Visualizing Your Smart Home Data with the Web of Things

    Today we’re mashing up two very different applications to make a cool personal dashboard for investigating all our internet-connected things, and their behavior over time. We can use one of the Web Thing API’s superpowers: its flexibility. Like Elastigirl or Mr. Fantastic, it can bend and stretch to fit into any situation.

  • Tor Browser 7.5.4 is released

    Tor Browser 7.5.4 is now available from the Tor Browser Project page and also from our distribution directory.

    This release features important security updates to Firefox.

  • Announcing Rust 1.26

    The Rust team is happy to announce a new version of Rust, 1.26.0. Rust is a systems programming language focused on safety, speed, and concurrency.

Great News! You’ll be Able to Run Native Linux Apps on Chromebook Soon

Filed under
News

Google announced the support for Linux apps to Chromebooks in its Developer Keynote I/O event. People using Chromebooks will soon be able to run Linux apps on their systems.
Read more

Give Your Linux Desktop a Stunning Makeover With Xenlism Themes

Filed under
Software

Xenlism theme pack provides an aesthetically pleasing GTK theme, colorful icons, and minimalist wallpapers to transform your Linux desktop into an eye-catching setup.
Read more

GCC 8.1 vs. GCC 7.3 Compiler Benchmarks On Five AMD/Intel Linux Systems

Filed under
Graphics/Benchmarks

With GCC 8.1 having been officially released last week, I have spent the past number of days running a variety of compiler benchmarks comparing this initial GCC8 stable release to the previous GCC 7.3 stable compiler release. Tests were done on five different Ubuntu 18.04 LTS Linux systems running very different AMD and Intel processors.

Read more

Oracle Adds Initial Linux Kernel 4.17 Support to Its Latest VirtualBox Release

Filed under
Linux

Coming only three weeks after VirtualBox 5.2.10, the VirtualBox 5.2.12 release appears to be a minor bugfix update that only addresses a possible data corruption in the Serial component, which could occur when data was sent under specific circumstances, and fixes starting and stopping of video recording.

But there's also good news for Linux users, as VirtualBox 5.2.12 is the first stable release of the popular virtualization software to add initial support for the upcoming Linux 4.17 kernel, which is currently under development with an RC4 milestone out the door last week. Linux kernel 4.17 should be hitting the streets early next month.

Read more

GNOME 3.30 Desktop Environment to Offer New Lock and Login Screen Experiences

Filed under
GNOME

GNOME 3.30 will be the next major release of the open source desktop environment used by numerous GNU/Linux distributions, and now that Ubuntu is using it by default for the latest LTS release, all eyes are on GNOME these days to see what improvements and new features will bring with the next update.

The login and lock screens of GNOME haven't been changed for a while now, but it would appear the team had been working to revamp them. As you can see from the screenshot gallery attached below, the design looks marvelous, and we have to admit that we can't wait to try them out on our personal computers.

Read more

i.MX8 QuadMax module available in early access program

Filed under
Linux

Toradex has opened an early access program for sampling its Linux powered, wireless enabled Apalis iMX8 module, which offers NXP’s i.MX8 QuadMax SoC with 2x Cortex-A72, 4x -A53, 2x -M4F, and 2x GPU cores, supported with up to 4GB LPDDR4.

Toradex may have jumped the gun a bit when it announced the world’s first embedded board built on NXP’s i.MX8M QuadMax back in Mar. 2017. However, it may still end up being one of the first to reach market. The Swiss embedded technology firm just announced that it has “opened early access for selected customers” to the SODIMM-style Apalis iMX8 module. A sign-up form offers the potential for newcomers to get an early look. The only other announced module we’ve seen based on the hexacore SoC is iWave’s iW-RainboW-G27M 82 x 50mm SMARC module.

Read more

Read-Only Memory

Filed under
Linux

Igor Stoppa posted a patch to allow kernel memory pools to be made read-only. Memory pools are a standard way to group memory allocations in Linux so their time cost is more predictable. With Igor's patch, once a memory pool was made read-only, it could not be made read-write again. This would secure the data for good and against attackers. Of course, you could free the memory and destroy the pool. But short of that, the data would stay read-only.

There was not much controversy about this patch. Kees Cook felt that XFS would work well with the feature. And, having an actual user would help Igor clarify the usage and nail down the API.

This apparently had come up at a recent conference, and Dave Chinner was ready for Igor's patch. He remarked, "we have a fair amount of static data in XFS that we set up at mount time and it never gets modified after that. I'm not so worried about VFS level objects (that's a much more complex issue) but there is a lot of low hanging fruit in the XFS structures we could convert to write-once structures."

Read more

Krita 4.0.2 released

Filed under
KDE

Today the Krita team releases Krita 4.0.2, a bug fix release of Krita 4.0.0. We fixed more than fifty bugs since the Krita 4.0.0 release! See below for the full list of fixed isses. We’ve also got fixes submitted by two new contributors: Emmet O’Neil and Seoras Macdonald. Welcome!

Read more

CentOS 7 1804 Released As The Free Spin Of RHEL 7.5

Filed under
Red Hat

CentOS 7 1804 is now available as the latest release of this leading "community spin" of Red Hat Enterprise Linux. The 1804 update to CentOS 7 is based on last month's release of Red Hat Enterprise Linux 7.5.

CentOS 7 1804 is the latest stable installment to the EL7 series and built off the RHEL 7.5 sources.

Read more

Oracle VM VirtualBox 5.2.12 now available!

Filed under
Software

Oracle has released VirtualBox 5.2 Maintenance Release 12.

Oracle VM VirtualBox 5.2.12 release includes improvements and regression fixes for Oracle VM VirtualBox 5.2.

Read more

Also: Oracle Adds Initial Linux Kernel 4.17 Support to Its Latest VirtualBox Release

today's leftovers

Filed under
Misc
  • CNCF’s CloudEvents Spec Could Facilitate Interoperability across Serverless Platforms

    The Cloud Native Computing Foundation (CNCF) wants to foster greater interoperability between serverless platforms, through its release of the CloudEvents specification. The project is at version 0.1 iteration, and hopes that it will be approved as a CNCF sandbox project in June.

    The CloudEvents specification provides (formerly called OpenEvents) a path that would allow any two components to transfer an event, regardless of whether they are functions, apps, containers or services, said Doug Davis, an IBM senior technical staff member at IBM and a member of the CNCF serverless working group.

    “Much in the same way HTTP — in its most basic form — helped interoperability between any two components by standardizing how to represent well-defined metadata about the message being transferred, CloudEvents is doing the same thing,” said Davis. “Defining the common metadata will aid in the transferring of an event from any producer to any consumer.”

  • GNOME Announces New Internship Program For Complex Projects

    Complementing GNOME's involvement in Google Summer of Code and Outreachy, the GNOME Foundation has announced a new internship program aimed for more complex projects.

    This new internship program is higher-paying due to greater complexity: the foundation will pay interns $8,000 USD for three months of work.

    The first round of internship projects are open for USB protection via USBGuard for fending off USB-based attacks, improved credentials management via a new program, a new PipeWire portal system, private session support for the desktop, crypto hardware enablement like making TPMs easier to use, and location aware policies/security handling.

  • Microsoft Brings Ubuntu Linux To Windows 10 On ARM; More Distros To Follow
  • CodeWeavers has Released CrossOver 17.5.0 for Linux and MacOS

    I am delighted to announce that CodeWeavers has just released CrossOver 17.5.0 for both macOS and Linux. CrossOver 17.5.0 has many improvements to the core Windows compatibility layer and also specific enhancements for several popular applications.

Android Leftovers

Filed under
Android
  • Android Things exits beta with OTA goodies and licensing restrictions

    Google released Android Things 1.0 with new ARM-based production platforms and a surprise gift: three free years of OTA support. But commercial production over 100 units requires a licensing deal.

    A year and a half after Google announced that its stripped down, IoT-oriented Brillo version of Android was being recast as Android Things, the platform has emerged from Developer Preview as Android Things 1.0. The good news is that Google is offering customers free automated updates for three years, which should save money while improving security and reliability. The bad news is that Android Things is more proprietary than the mostly open source Android.

  • 22 Best Android P Features: What’s New In The Latest Version?

    Google I/O 2018 brought Android P Beta which unveiled several new features in its latest mobile OS, Android P.

    While the name of Android version 9.0 still remains a mystery, we got to see a bunch of cool and exciting features. This year Google is focused on making our digital lives more calm and organized through Android P.

  •  

  • Android P SELinux Rules to Finally Block Apps from Monitoring Network Activity

Events: KubeCon, PyCon, OpenStack, PostgreSQL at LSFMM, Legal and Licensing Workshop (LLW)

Filed under
OSS
  • KubeCon's Europe 2018 Event Highlights Kubernetes' Progress, Expansion
  • SecureDrop development sprint in PyCon 2018

    SecureDrop will take part in PyCon US development sprints (from 14th to 17th May). This will be first time for the SecureDrop project to present in the sprints.

    If you never heard of the project before, SecureDrop is an open source whistleblower submission system that media organizations can install to securely accept documents from anonymous sources. Currently, dozens of news organizations including The Washington Post, The New York Times, The Associated Press, USA Today, and more, use SecureDrop to preserve the anonymous tipline in an era of mass surveillance. SecureDrop is installed on-premises in the news organizations, and journalists and source both use a web application to interact with the system. It was originally coded by the late Aaron Swartz and is now managed by Freedom of the Press Foundation.

  • Highlights from the OpenStack project teams gathering

    A few weeks back in Dublin, Ireland, OpenStack engineers gathered from dozens of countries and companies to discuss the next release of OpenStack. This is always my favorite OpenStack event, because I get to do interviews with the various teams, to talk about what they did in the just-released version (Queens, in this case) and what they have planned for the next one (Rocky).

  • PostgreSQL visits LSFMM

    The recent fsync() woes experienced by PostgreSQL led to a session on the first day (April 23) of the 2018 Linux Storage, Filesystem, and Memory-Management Summit (LSFMM). Those problems also led to a second-day session with PostgreSQL developer Andres Freund who gave an overview of how PostgreSQL does I/O and where that ran aground on some assumptions that had been made. The session led to a fair amount of discussion with the filesystem-track developers; real solutions seem to be in the offing.

    PostgreSQL is process-based; there are no threads used, Freund said. It does write-ahead logging (WAL) for durability and replication. That means it logs data before it is marked dirty and the log is flushed before the dirty data is written. Checkpointing is done in the background with writes that are throttled as needed. In general, all data I/O is buffered, though the WAL can use direct I/O.

  • Containers and license compliance

    Containers are, of course, all the rage these days; in fact, during his 2018 Legal and Licensing Workshop (LLW) talk, Dirk Hohndel said with a grin that he hears "containers may take off". But, while containers are easy to set up and use, license compliance for containers is "incredibly hard". He has been spending "way too much time" thinking about container compliance recently and, beyond the standard "let's go shopping" solution to hard problems, has come up with some ideas. Hohndel is a longtime member of the FOSS community who is now the chief open source officer at VMware—a company that ships some container images.

    He said that he would be using Docker in his examples, but he is not picking on Docker, it is just a well-known container management system. His talk is targeting those that want to ship an actual container image, rather than simply a Dockerfile that a customer would build into an image. He has heard of some trying to avoid "distributing" free and open-source software that way, but is rather skeptical of that approach.

OSS Leftovers

Filed under
OSS
  • Looking for old game source Conquer (FOUND)

    Years later I met someone who had helped write a similar game called Dominion which is also very similar.  The game has been kept up and is under a GPL license which is probably why it is still findable.

  • Summer of Code: Small steps

    As a first step towards working encryption and decryption, I obviously needed to create some PGP keys for testing purposes. As a regular user of OpenPGP I knew how to create keys using the command line tool GnuPG, so I started up the key creation by typing “gpg –generate-key”. I chose the key type to be RSA with a length of 2048 bits, as those settings are also the defaults recommended by GnuPG itself. When it came to entering user id information though, things got a little more complicated. GnuPG asks for the name of the user, their email address and a comment. XEP-0373 states, that the user id packet of a PGP key MUST be of the format “xmpp:juliet@capulet.lit”. My first thing to figure out was, if I should enter that String as the name, email or as a comment. I first tried with the name, upon which GnuPG complained, that neither name, nor comment is allowed to contain an email address. Logically my next step was to enter the String as the users email address. Again, GnuPG complained, this time it stated, that “xmpp:juliet@capulet.lit” was not a valid Email address. So I got stuck.

  • At The Source, Exploring the Blockchain Realm of GitHub

    Blockchain/cryptocurrency projects & the ever-mysterious open-source. If you come from a nontechnical background, you’ve probably wondered just exactly what open-source means; if you’ve hung around developers, in particular, you might’ve even heard about the powerful GitHub & the world of repositories. If you aren’t familiar with a terminal console, you likely aren’t familiar with previous terms.

    Yet understanding how open-source repositories work, as well as exploring the very basics of the GitHub platform, is probably one of the most effective ways to understand cryptocurrencies & their respective communities at a deeper level.

    Code talks. And learning how to view the source code for cryptocurrencies projects by yourself, regardless of your programming proficiency (or lack of), is an indispensable tool.

  • QElectroTech: An Open Source Wiring Diagram Tool

    There’s a few open source options out there for creating electrical schematics. KiCad and Fritzing are two that will take you from schematic capture to PCB layout. However, there’s been limited options for creating wiring diagrams. Often these are created in Microsoft’s Visio, which is neither open source nor well suited for the task.

  • 3 Ways to Use ART – IBM’S Open Source AI Security Library

    IBM’s Adversarial Robustness Toolbox, an open AI library, was released in April. Since then, developers have found some interesting uses for the tool. 

    IBM launched an open library to help secure artificial intelligence systems in April.

    They call it the Adversarial Robustness Toolbox (ART) to help developers better protect AI systems and neural network. It contains benchmarks, defenses, and attacks in a framework-agnostic library.

  • Google Open Sources Seurat To Bring PC-Level VR To Mobile

    This year’s Google I/O developer conference might not have had much to share about VR, but one of the biggest reveals of last year’s event is now available to all.

  • Hade Pay B2C Platform to be Open Source and Combine Verifie [Ed: Just pure openwashing and riding the blockchain hype]

Accidental Back Doors and Intentional (Microsoft) Back Doors

Filed under
Security
  • Are you using Python module ‘SSH Decorator’? Newer versions include a backdoor

     

    Early this week, a developer noticed that multiple backdoored versions of the SSH Decorate module, the malicious code included in the library allowed to collect users’ SSH credentials and sent the data to a remote server controlled by the attackers.

  • Crypto backdoors are in the news again, and as bad for privacy as ever

     

    What is troubling, though, is that Ozzie’s reputation as one of the foremost engineers of recent years will allow some to claim that the backdoor puzzle has now been “solved” – because Ray Ozzie says it has. That’s definitely not the case, as the two critiques mentioned above, and others elsewhere, make plain. But politicians won’t worry about such technical niceties when it comes to calling for laws that mandate these “safe” backdoors in devices. That’s why it’s important that everyone who cares about their privacy and security should be ready to push back against attempts to turn a flawed idea into a flawed reality.

  • Ray Ozzie's Encryption Backdoor

     

    I have no idea why anyone is talking as if this were anything new. Several cryptographers have already explained explained why this key escrow scheme is no better than any other key escrow scheme. The short answer is (1) we won't be able to secure that database of backdoor keys, (2) we don't know how to build the secure coprocessor the scheme requires, and (3) it solves none of the policy problems around the whole system. This is the typical mistake non-cryptographers make when they approach this problem: they think that the hard part is the cryptography to create the backdoor. That's actually the easy part. The hard part is ensuring that it's only used by the good guys, and there's nothing in Ozzie's proposal that addresses any of that.

Syndicate content

More in Tux Machines

Here Is What's New In Fedora 28

For those who don't know about this Linux distro, Fedora is one of those Linux distributions that comes released with cutting-edge software rather than staying on the same boat with other distributions that prefers stability. Fedora comes in three flavors: Workstation, Server, and Atomic. I'll be reviewing Fedora Workstation; used by many developers and users as their general purpose computing platform. Read
more

Stable kernels 4.16.11, 4.14.43 and 4.9.102

today's leftovers

Software: Grafana, Heaptrack, Vim

  • Grafana – An Open Source Software for Analytics and Monitoring
    Grafana is an open source, feature rich, powerful, elegant and highly-extensible analytics and monitoring software that runs on Linux, Windows and MacOS. It is a de facto software for data analytics, being used at Stack Overflow, eBay, PayPal, Uber and Digital Ocean – just to mention but a few. It supports 30+ open source as well as commercial databases/data sources including MySQL, PostgreSQL, Graphite, Elasticsearch, OpenTSDB, Prometheus and InfluxDB. It allows you to dig deeply into large volumes of real-time, operational data; visualize, query, set alerts and get insights from your metrics from differen
  • Heaptrack v1.1.0 release
    Better memory profiling on Linux After more than a year of work, I’m pleased to release another version of heaptrack, the Linux memory profiler! The new version 1.1.0 comes with some new features, significant performance improvements and – most importantly – much improved stability and correctness. If you have tried version v1.0 in the past and encountered problems, update to the new v1.1 and try again!
  • Ten Years of Vim
     

    The philosophy behind Vim takes a while to sink in: While other editors focus on writing as the central part of working with text, Vim thinks it's editing.

     

    You see, most of the time I don't spend writing new text; instead, I edit existing text.

  •