Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Thursday, 23 Nov 17 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Wine and Games Roy Schestowitz 22/11/2017 - 1:35pm
Story Interview with FreeDOS Founder and Lead Dev Jim Hall itsfoss 22/11/2017 - 10:33am
Story Programming and howtos: Python, Swift and Recipes Roy Schestowitz 22/11/2017 - 10:17am
Story Security: Updates, Intel, Torvalds Roy Schestowitz 22/11/2017 - 9:47am
Story Benchmarks: Linux Power Use, Sabrent EC-SS31, Phoronix Test Suite 7.6 M3 Roy Schestowitz 22/11/2017 - 9:28am
Story LinuxAndUbuntu Review Of Ubuntu MATE 17.10 Rianne Schestowitz 22/11/2017 - 9:15am
Story Compact carrier turns Nvidia Jetson TX2 into an SBC Rianne Schestowitz 22/11/2017 - 9:10am
Story OpenMandriva Is Dropping 32-Bit Support, OpenMandriva Lx 3.03 Is the Last One Rianne Schestowitz 22/11/2017 - 9:06am
Story Kali Linux 2017.3 Ethical Hacking OS Brings InSpy, Sublist3r, and SMB3.0 Support Rianne Schestowitz 22/11/2017 - 9:03am
Story pfSense 2.4.2-RELEASE now available Roy Schestowitz 22/11/2017 - 8:26am

Canonical Releases Major Kernel Update for Ubuntu 16.04 to Fix 13 Security Flaws

Filed under
Ubuntu

The update is a major one patching a total of 13 security flaws, including race conditions in Linux kernel's ALSA subsystem, the packet fanout implementation, and the key management subsystem, as well as use-after-free vulnerabilities in both the USB serial console driver and the ALSA subsystem.

Various other issues were also patched for Linux kernel's key management subsystem, the Ultra Wide Band driver, the ALSA subsystem, the USB unattached storage driver, and the USB subsystem, which received the most attention in this update as several security flaws were recently disclosed.

Read more

Graphics: NVIDIA and AMD

Filed under
Graphics/Benchmarks

Ubuntu Boot Times From Linux 4.6 To 4.15 Kernels

Filed under
Graphics/Benchmarks
Linux
Ubuntu

It's been a while since last doing any Linux boot speed comparisons while this morning I have some numbers to share when looking at the boot performance from the Linux 4.6 kernel through Linux 4.15 Git to see how it's changed over time,

These tests were being done using a Lenovo ThinkPad X1 Carbon notebook using a mature Intel Broadwell CPU. Linux 4.6 through 4.15 Git was chosen since that's as far back as the mainline kernel would work with this Ubuntu 17.10 user-space. Linux 4.5 and older would fail to boot.

Read more

Games: Humble Store, LWJGL, Beamdog, GOG and Retro

Filed under
Gaming

Security: MuddyWater, DJI, Updates, Reproducible Builds and Excel

Filed under
Security

7 tools for analyzing performance in Linux with bcc/BPF

Filed under
Linux

A new technology has arrived in Linux that can provide sysadmins and developers with a large number of new tools and dashboards for performance analysis and troubleshooting. It's called the enhanced Berkeley Packet Filter (eBPF, or just BPF), although these enhancements weren't developed in Berkeley, they operate on much more than just packets, and they do much more than just filtering. I'll discuss one way to use BPF on the Fedora and Red Hat family of Linux distributions, demonstrating on Fedora 26.

BPF can run user-defined sandboxed programs in the kernel to add new custom capabilities instantly. It's like adding superpowers to Linux, on demand. Examples of what you can use it for include:

Read more

Why the open source community needs a diverse supply chain

Filed under
OSS

Diversity and inclusivity in the technology industry—and in open source communities more specifically—have received a lot of coverage, both on Opensource.com and elsewhere. One approach to the issue foregrounds arguments about concepts that are more abstract—like human decency, for example.

But the "supply chain" metaphor works, too. And it can be an effective argument for championing greater inclusivity in our open organizations, especially when people dismiss arguments based on appeals to abstract concepts. Open organizations require inclusivity, which is a necessary input to get the diversity that reduces the risk in our supply chain.

Read more

Red Hat: Kerala, Amazon and More

Filed under
Red Hat

Programming: Swift, Brilliant Jerks in Engineering, and Career Path for Software Developers

Filed under
Development
  • Swift code will run on Google's Fuchsia OS

    A few days ago, there was a flash-in-the-pan controversy over Google "forking" Apple's open-source programming language Swift. After a few minutes of speculation over whether Google was going to make its own special flavor of the language for its own purposes, Swift's creator Chris Lattner (who now works at Google) helpfully clarified the situation:

  • Brilliant Jerks in Engineering

    This are numerous articles and opinions on the topic, including Brilliant Jerks Cost More Than They Are Worth, and It's Better to Avoid a Toxic Employee than Hire a Superstar. My colleague Justin Becker is also giving a talk at QConSF 2017 on the topic: Am I a Brilliant Jerk?.

    It may help to clarify that "brilliant jerk" can mean different things to different people. To illustrate, I'll describe two types of brilliant jerks: the selfless and the selfish, and their behavior in detail. I'll then describe the damage caused by these jerks, and ways to deal with them.

    The following are fictional characters. These are not two actual engineers, but are collections of related traits to help examine this behavior beyond the simple "no asshole rule." These are engineers who by default act like jerks, not engineers who sometimes act that way.

  • [Older] The missing career path for software developers

    You started hacking on technology thrilled with every stroke of the key, making discoveries with every commit. You went about solving problems, finding new challenges. You were happy for a while, until you hit a plateau. There was a choice to be made. Continue solving the same problems or start managing others. You tried it out, and hated it. Longing to focus on technology, not people, you turned to your open source project. When it became successful, you became an open source maintainer but ended up overwhelmed and burned out. Hoping to get back to doing work that fascinates you, you went work for yourself. Lacking experience running a business, you're crushed with all the decisions you need to make. You’re nearing burnout — again. It feels like you’re on a hamster wheel.

Mastodon is Free Software, But It Does Not Respect Free Speech

Filed under
OSS
Web

Mastodon was always known to be tough on Nazis; it was known that they were strict on free speech only to a degree. After the treatment that I received yesterday, however, I can no longer recommend Mastodon. It may be Free software, but it’s very weak on free speech.

Read more

Mesa 17.3 RC5 and Early Stages of Linux 4.15

Filed under
Graphics/Benchmarks
Linux
  • mesa 17.3.0-rc5

    The fifth release candidate for Mesa 17.3.0 is now available. This is the last planned release candidate before the final release.

    We still have a couple of regressions in our tracker [1] although I'm anticipating for those to be resolved by EOW.

  • Mesa 17.3-RC5 Released, Official Mesa 3D Update Expected By Next Week

    The Mesa 17.3 release game is in overtime but it should be wrapping up in the days ahead.

    Emil Velikov of Collabora announced the Mesa 17.3-RC5 release candidate this morning. He anticipates it being the last release candidate, but there still are a few blocker bugs open. As of writing there still are 4 bugs open with one pertaining to Gallium3D Softpipe and the others being Intel driver issues.

  • Extra KVM Changes For Linux 4.15 Bring UMIP Support, AMD SEV Changes Delayed

    As some additional work past the KVM changes for Linux 4.15 submitted last week, a few more feature items have been queued.

    The second batch of Kernel-based Virtual Machine (KVM) updates sent in today for Linux 4.15 include ARM GICv4 support, x86 bug fixes, the AMD VFIO NFT performance fix, and x86 guest UMIP support. Landing already with Linux 4.15 is Intel UMIP capabilities for User-Mode Instruction Prevention to prevent certain instructions from being executed if the ring level is greater than zero. This latest KVM pull update adds this UMIP support to its space for both real and emulated guests.

  • AMD EPYC Is Running Well On Linux 4.15

    Of the many changes coming for Linux 4.15, as detailed this weekend Radeon GPU and AMD CPU customers have a lot to be thankful for with this new kernel update currently in development. Here are some initial benchmarks of the Linux 4.15 development kernel using an AMD EPYC 7601 32-core / 64-thread setup.

    When it comes to EPYC in Linux 4.15, the kernel side-bits have landed for Secure Encrypted Virtualization (SEV), CPU temperature monitoring support now working, and improved NUMA node balancing.

Videos: Akademy 2017 Talk, Upgrading Linux Mint, This Week in Linux

Filed under
Misc
  • Akademy 2017 talk

    The talk by Jean-Baptiste Mardelle’s at Akademy 2017 is released along with many other interesting talks.

    Akademy is the annual world summit of KDE, one of the largest Free Software communities in the world. It is a free, non-commercial event organized by the KDE Community.

  • How To In-place Upgrade Linux Mint

    This video shows how to upgrade Linux Mint from 17.3 to 18.3 while keeping all of your personal data intact.

    Please be sure to give EzeeLinux a ‘Like’ on Facebook! Thanks! Also check out http://www.ezeelinux.com for more about Linux.

  • Linux Kernel 4.14, Firefox Quantum, Fedora 27, Munich? Meh | This Week in Linux 14

    On this episode of This Week in Linux. The first 6 Year LTS Linux Kernel was released this week. Huge Update from Mozilla with Firefox Quantum. New distro releases from Fedora and Slax.

LibreELEC (Krypton) v8.2.1 MR

Filed under
GNU
Linux
Movies

LibreELEC 8.2.1 is a maintenance release that includes Kodi 17.6. It also resolves a minor time-zone issue after recent daylight saving changes, a resume from suspend issue with the Apple IR driver, and it provides two new SMB client configuration options in Kodi settings. You can now set a minimum SMB protocol version to prevent prevent SMB1 from ever being used, and a ‘legacy security’ option forces weak authentication to resolve issues seen with the USB sharing functions on some older router/NAS devices. If updating to LibreELEC 8.2 for the first time PLEASE READ THE RELEASE NOTES below here before posting issues in the forums as there are disruptive changes to Lirc, Samba, and Tvheadend.

Read more

Microsoft Worker Leaves for Google, Criticizes Post-Windows Vista Dev Strategy

Filed under
Google
Microsoft

Microsoft employee Tim Sneath, who spent no less than 17 years with the company, announced in a blog post that he’s leaving the software giant to work for Google on the new Flutter mobile framework.

Sneath started his post by emphasizing how great Microsoft is, explaining that he company has “incredibly diverse interests” and is “filled with talented people.”

Despite the good parts, however, the former Microsoft Program Manager who worked on a series of projects for developers, discussed what he described as the “missteps” that the Redmond-based software giant embraced beginning with the Windows Vista era.

Read more

Also: ‘Goodbye Microsoft, hello Linux’

LiFT Scholarship Recipients Advance Open Source Around the World

Filed under
Linux
OSS

Fifteen people from 13 different countries have received Linux Foundation Training Scholarships (LiFT) in the category of Linux Newbies. This year, 27 people received scholarships across all categories — the most ever awarded by the Foundation.

Now in its seventh year, the program awards training scholarships to current and aspiring IT professionals worldwide who may not otherwise have the means for specialized training. The Foundation has awarded 75 scholarships worth more than $168,000 since the program began.

Read more

Linux Containers vs Virtual Machines

Filed under
Linux
Server

Ever since containers on Linux became popular, determining the difference between Linux containers and virtual machines has become trickier. This article will provide you with the details to understand the differences between Linux containers and virtual machines.

Read more

Linux gizmo indexes photos and videos for visual recognition search

Filed under
Linux
Gadgets

Pimloc’s “Pholio” runs Linux on an Nvidia Tegra, and provides offline storage and search of images and video using visual and face recognition.

Digital imaging has lived up to its promise of making it easier to take more images more quickly, but the promise that it would make it easier to find those images has fallen short. Unless you spend time with an image management package and apply tags to each and every photo, it’s a pain to try to find specific images or groups of images. A new Kickstarter project called Pholio promises to skip the prep work and use visual recognition technology to quickly locate any image or video you seek.

Read more

Syndicate content

More in Tux Machines

Security: Uber, Replacing x86 Firmware, 'IoT' and Chromebook

  • Key Dem calls for FTC to investigate Uber data breach

    A key Democrat is calling on the Federal Trade Commission (FTC) to investigate a massive Uber breach that released data on 57 million people, as well as the company's delay in reporting the cyber incident.

  • Multiple states launch probes into massive Uber breach
  • Replacing x86 firmware with Linux and Go

    The problem, Minnich said, is that Linux has lost its control of the hardware. Back in the 1990s, when many of us started working with Linux, it controlled everything in the x86 platform. But today there are at least two and a half kernels between Linux and the hardware. Those kernels are proprietary and, not surprisingly, exploit friendly. They run at a higher privilege level than Linux and can manipulate both the hardware and the operating system in various ways. Worse yet, exploits can be written into the flash of the system so that they persist and are difficult or impossible to remove—shredding the motherboard is likely the only way out.

  • Connected sex-toy allows for code-injection attacks on a robot you wrap around your genitals

    However, the links included base-64 encoded versions of the entire blowjob file, making it vulnerable to code-injection attacks. As Lewis notes, "I will leave you to ponder the consequences of having an XSS vulnerability on a page with no framebusting and preauthed connection to a robot wrapped around or inside someones genitals..."

  • Chromebook exploit earns researcher second $100k bounty
    For Google’s bug bounty accountants, lightning just struck twice. In September 2016, an anonymous hacker called Gzob Qq earned $100,000 (£75,000) for reporting a critical “persistent compromise” exploit of Google’s Chrome OS, used by Chromebooks. Twelve months on and the same researcher was wired an identical pay out for reporting – yes! – a second critical persistent compromise of Google’s Chrome OS. By this point you might think Google was regretting its 2014 boast that it could confidently double its maximum payout for Chrome OS hacks to $100,000 because “since we introduced the $50,000 reward, we haven’t had a successful submission.” More likely, it wasn’t regretting it at all because isn’t being told about nasty vulnerabilities the whole point of bug bounties?
  • Why microservices are a security issue
    And why is that? Well, for those of us with a systems security bent, the world is an interesting place at the moment. We're seeing a growth in distributed systems, as bandwidth is cheap and latency low. Add to this the ease of deploying to the cloud, and more architects are beginning to realise that they can break up applications, not just into multiple layers, but also into multiple components within the layer. Load balancers, of course, help with this when the various components in a layer are performing the same job, but the ability to expose different services as small components has led to a growth in the design, implementation, and deployment of microservices.

Lumina 1.4 Desktop Environment Debuts with New Theme Engine and ZFS Integrations

Lumina 1.4.0 is a major release that introduces several new core components, such as the Lumina Theme Engine to provide enhanced theming capabilities for the desktop environment and apps written in the Qt 5 application framework. The Lumina Theme Engine comes with a configuration utility and makes the previous desktop theme system obsolete, though it's possible to migrate your current settings to the new engine. "The backend of this engine is a standardized theme plugin for the Qt5 toolkit, so that all Qt5 applications will now present a unified appearance (if the application does not enforce a specific appearance/theme of it’s own)," said the developer in today's announcement. "Users of the Lumina desktop will automatically have this plugin enabled: no special action is required." Read more

today's leftovers

  • qBittorrent 4.0 Is a Massive Update of the Open-Source BitTorrent Client
    qBittorrent, the open-source and cross-platform BitTorrent client written in Qt for GNU/Linux, macOS, and Windows systems, has been updated to version 4.0, a major release adding numerous new features and improvements. qBittorrent 4.0 is the first release of the application to drop OS/2 support, as well as support for the old Qt 4 framework as Qt 5.5.1 or later is now required to run it on all supported platforms. It also brings a new logo and a new SVG-based icon theme can be easily scaled. Lots of other cosmetic changes are present in this release, and the WebGUI received multiple enhancements.
  • FFmpeg Continues Working Its "NVDEC" NVIDIA Video Decoding Into Shape
    Earlier this month the FFmpeg project landed its initial NVDEC NVIDIA video decoding support after already supporting NVENC for video encoding. These new NVIDIA APIs for encode/decode are part of the company's Video Codec SDK with CUDA and is the successor to the long-used VDPAU video decoding on NVIDIA Linux boxes. That NVDEC support has continued getting into shape.
  • Kobo firmware 4.6.10075 mega update (KSM, nickel patch, ssh, fonts)
    A new firmware for the Kobo ebook reader came out and I adjusted the mega update pack to use it. According to the comments in the firmware thread it is working faster than previous releases. The most incredible change though is the update from wpa_supplicant 0.7.1 (around 2010) to 2.7-devel (current). Wow.
  • 3.5-inch Apollo Lake SBC has dual mini-PCIe slots and triple displays
    Avalue’s Linux-friendly, 3.5-inch “ECM-APL2” SBC features Apollo Lake SoCs, 2x GbE, 4x USB 3.0, 2x mini-PCIe, triple displays, and optional -40 to 85°C. Avalue’s 3.5-inch, Apollo Lake based ECM-APL single-board computer was announced a year ago, shortly after Intel unveiled its Apollo Lake generation. Now it has followed up with an ECM-APL2 3.5-incher with a slightly different, and reduced, feature set.
  • 7 Best Android Office Apps To Meet Your Productivity Needs
    Office application is an essential suite that allows you to create powerful spreadsheets, documents, presentations, etc., on a smartphone. Moreover, Android office apps come with cloud integration so that you can directly access the reports from the cloud, edit them, or save them online. To meet the productivity need of Android users, the Play Store offers an extensive collection of Android office apps. But, we have saved you the hassle of going through each one of them and provided you a list of the best office apps for Android. The apps that we have picked are all free, although some do have Pro version or extra features available for in-app purchases. You can also refer to this list if you’re looking for Microsoft Office alternatives for your PC.

Servers and Red Hat