Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Friday, 24 May 19 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Graphics: Red Hat's Wayland Agenda and AMD Begins Queueing Graphics Driver Changes For The Linux 5.3 Kernel Roy Schestowitz 22/05/2019 - 7:46pm
Story today's howtos and programming Roy Schestowitz 22/05/2019 - 7:43pm
Story Fedora 30 Workstation review - Smarter, faster and buggier Roy Schestowitz 22/05/2019 - 7:41pm
Story Events: Automotive at LF, Linux Clusters Institute, Linux Plumbers Conference (LPC) Roy Schestowitz 22/05/2019 - 7:19pm
Story Security Leftovers Roy Schestowitz 22/05/2019 - 7:16pm
Story Android Leftovers Rianne Schestowitz 22/05/2019 - 7:12pm
Story Firefox 67.0 Released Roy Schestowitz 5 22/05/2019 - 7:03pm
Story Red Hat and the rise of RHEL Rianne Schestowitz 22/05/2019 - 6:57pm
Story Red Hat, Fedora and SUSE/OpenStack Roy Schestowitz 22/05/2019 - 6:55pm
Story Programming: KubeCon, PHP, Python, GitLab, and Rust Roy Schestowitz 22/05/2019 - 6:51pm

Audiocasts/Shows: Coder Radio, SMLR and This Week in Linux

Filed under
Interviews
  • Batteries are Leaking | Coder Radio 358

    A strong argument against Python’s batteries included model exposes some bigger problems the community is struggling with. We chat about all of it.

    Plus lessons learned six years after a project, a new tool, and some feedback.

  • SMLR 307 Night of The Living Daemon
  • This Week in Linux 67 | Zombieload, Nextcloud, Peppermint 10, KDE Plasma, IPFire, ArcoLinux, LuneOS

    On this episode of This Week in Linux, we’ll check out some Distro News from Peppermint OS, ArcoLinux, LuneOS & IPFire. We got a couple apps to talking about like Nextclou0…d and a new Wallpaper tool that has quite a bit of potential. We’ll take a look at what is to come with the next version of KDE Plasma. Intel users have gotten some more bad news regarding a new security vulnerability. Later in the show, we’ll cover some interesting information regarding a couple governments saving money by switching to Linux. Then finally we’ll check out some Linux Gaming News. All that and much more on your Weekly Source for Linux GNews!

Kernel: Btrfs vs Ext4, Xen, Management Engine and Purism (Which Disabled It)

Filed under
Linux
  • Some Btrfs vs Ext4 random-read/write performance observations

    I’ve been using XFS as a very conservative file system choice for the last four years or so after being burned by BtrFS file system corruptions a couple of times in a row. However, I’ve been working more with many small files lately to build this blog using a static website generator. Performance hasn’t been great and I’ve also found a need for recording file creation times, something which isn’t natively supported by XFS.

    My hardware setup have consisted of two old fashioned spinning software mirrored 4 terabyte hard drives for my home directory. I’ve used these drives as a backing drive with a Samsung 960 EVO NVMe solid state drive as a LVM cache drive for performance. I stopped using LVM cache disk a few months ago as I wanted to enable full-drive encryption and it also prevented my system from hibernating; a problem LVM caches share with BCache. I considered trying BCache anyway, but luckily decided against it just days before people started noticing drive corruptions with BCache on GCC 9 and Linux 5.

    After a careful review I decided to slim down my home directory and move over to the NVMe with an LUKS encrypted BtrFS file system. I’ve had bad experiences with this file system in the past, but surely something has happened in the last four years, right? I decided to give it a fourth chance in the interest of getting a more modern file system. I had to move a lot of files over to a separate drive, but cleaning up your home directory never hurt anyone (assuming you have proper backups).

  • Xen Developers Continue Work On CPU Core Scheduling Support

    Sent out earlier this month is the second version of the Xen core scheduling patches that allow for CPU core and socket-level scheduling by this virtualization hypervisor.

    The focus of this core/socket-level scheduling is to ensure the same VM(s) share the vCPU threads, which is more important these days in light of the various CPU speculative execution vulnerabilities that make Hyper Threading look particularly unsafe.

  • Do you know what IVBP, ROMB or UTOK are?

    First, thanks to everyone for the all the help with UEFI modules. There are a ton left, but also a lot done, so we’re getting there. If anyone is intimately familiar with ME firmware, I’d also really like some help with this Intel Management Engine document too. Thanks!

  • Purism and the Linux Kernel

    We’re especially proud of our kernel contributions – where 13 patches have made it into 5.1. Since this is our first installment, it also includes the changes that went into 5.0 and 4.20. Bellow is a list of our most recent contributions.

Games: Pixel Noir, Hell is Other Demons, Sipho, Regions Of Ruin, Afterlight and Tank Maniacs

Filed under
Gaming
  • Pixel Noir, a turn-based RPG set against a film noir backdrop is entering Early Access soon

    Here's another game successfully funded on Kickstarter, one we missed, which looks fantastic and it's coming to Linux. It's called Pixel Noir and it sure does look stylish.

    It was funded on Kickstarter back in 2015 with the help of nearly two thousand backers. Interestingly, the reason we didn't pick it up is that the campaign wasn't originally targetting Linux as a platform.

  • Hell is Other Demons is a frantic arcade shooter that's pure bliss to play, out now

    Not originally scheduled to release same-day with Linux support, Hell is Other Demons, developed by Cuddle Monster Games and publishing from Kongregate is out now and it's damn good.

    Hell is Other Demons is a ridiculously good retro-looking arcade shooter, one that I've pretty much fallen in love with. From the moment I got to test it, I was hooked right in thanks to the incredible styling. That's not all though, while the game is mechanically simple as it's basically a platform shooter with tiny arenas it's in no way easy. It manages to do a lot with the simplicity, while also giving you a lot of choice.

  • Creature-building survival-action game 'Sipho' has a new breed in the latest update

    The whole idea of the game is pretty sweet, giving a different kind of action and survival experience. It has a nice gameplay loop to it already with you picking a breed, constructing your creature and then attempting to survive while also possibly unlocking a new breed if you collect enough of their DNA. Once you manage to take down the Queen, you also get to play with the Aquarium feature, which is basically a sandbox area to do whatever you want.

  • Regions Of Ruin, a side-scrolling RPG with town-building is now on GOG

    Regions Of Ruin from Vox Games and Poysky Productions, a side-scrolling RPG with town-building is now available DRM-free on GOG. A nice reminder of it too, one we completely missed actually being properly released for Linux.

  • In the 2.5D puzzle-adventure Afterlight, you play as an isolated astronaut on Titan

    Afterlight really does look beautiful, with a "2.5D" style this puzzle-adventure is one to firmly keep an eye on.

    It's currently looking for funding on Kickstarter, with Linux as a planned platform for release "Our main platform is PC (Windows, Mac & Linux) via Steam" and their FAQ also makes it clear Linux is a target too. With 24 days to go, they're closing in on half of the $35K goal.

  • Tank Maniacs looks like some seriously good local multiplayer fun, coming to Linux soon

    Tank Maniacs, a local multiplayer party game about blowing up everyone with tanks looks really fun and it's coming to Linux. I managed to get confirmation from the developer on Twitter, who mentioned a Linux build is now up for those testing it.

    A game that doesn't exactly need a long description, you each pilot a strange tank and attempt to destroy everyone else. As the developer says "It's mostly about destroying your closest friends' hopes and dreams with weird tanks."—hah.

Events Roundup: Fedora, LSS, Kubecon, Linux Plumbers Conference, YottaDB at LFNW

Filed under
OSS
  • Fedora Mexico: Three months of activities

    The Fedora contributors and enthusiast in Mexico city has monthly meetings since February.

  • Linux Security Summit 2019 North America: CFP / OSS Early Bird Registration

    The LSS North America 2019 CFP is currently open, and you have until May 31st to submit your proposal. (That’s the end of next week!)

    If you’re planning on attending LSS NA in San Diego, note that the Early Bird registration for Open Source Summit (which we’re co-located with) ends today.

  • Kubeflow at KubeCon Europe 2019 in Barcelona

    Kubeflow, the Kubernetes native application for AI and Machine Learning, continues to accelerate feature additions and community growth. The community has released two new versions since the last Kubecon – 0.4 in January and 0.5 in April – and is currently working on the 0.6 release, to be released in July. The key features in each release are briefly discussed below.

  • Tracing Microconference Accepted into 2019 Linux Plumbers Conference

    We are pleased to announce that the Tracing Microconference has been accepted into the 2019 Linux Plumbers Conference! Its return to Linux Plumbers shows that tracing is not finished in Linux, and there continue to be challenging problems to solve.

    There’s a broad list of ways to perform Tracing in Linux. From the original mainline Linux tracer, Ftrace, to profiling tools like perf, more complex customized tracing like BPF and out-of-tree tracers like LTTng, systemtap, and Dtrace. Part of the trouble with tracing within Linux is that there is so much to choose from. Each of these have their own audience, but there is a lot of overlap. This year’s theme is to find those common areas and combine them into common utilities.

  • YottaDB

    At the core of YottaDB is a daemon-less hierarchical key-value database engine that executes within the address space of the application process, which makes in-memory calls to a YottaDB API. Processes cooperate with one another to manage the database, and the achievable throughput is limited by the underlying computing platform, rather than the potential single-point bottleneck of a daemon. Combining the database engine and application logic in a single process yields robustness, security, simplicity and performance.

  • YottaDB at LFNW 2019

    YottaDB was happy to sponsor and attend the 2019 Linux Fest North West in Bellingham, WA on April 26 -28, 2019.

Red Hat Family: Fedora, CloudLinux, CentOS and More

Filed under
Red Hat
  • Fedora Community Blog: GSOC 2019 – release-bot project

    On May 6, the selected students for Google summer of code 2019 were officially announced. We, as mentors of the release-bot project, would like to thank all applicants and provide insight into our decision process.

    Google summer of code is popular for the past several years which means that competition is really high. For our project, release-bot, this was definitely the case. We had several very promising candidates providing early contributions.

  • CloudLinux OS Feature Survey - CLOSING SOON

    We're closing this CloudLinux OS feature survey at the end of this month. We'll publish the results after the survey has closed.

    Thanks to everyone who participated. If you didn't, there's still time to share your views on the direction of CloudLinux OS. It only takes a few minutes.

  • May 30 virtual event explores digital leadership in financial services

    Today’s financial services businesses are faced with the need to drive new and better digital products, services, and efficiencies to improve customer loyalty and competitive advantage. Payments, authorizations, and risk and fraud assessments are embedded as part of everyday events rather than an event unto itself, with the need for speed—now often in fractions of a second—blurring the lines between front office and back office operational processing. Financial services companies need to balance the costs of renewing systems with the costs of adopting new, innovative technologies, while seeking advantages from automation, real time assessments, embedded intelligence, and more.

  • CentOS 8 Release Map And It’s Details

    We already know that Red Hat Enterprise Linux 8 was released on 2019-05-07, and everyone is waiting for CentOS 8 release.

    Most of us doesn’t have active subscription to download Red Hat Enterprise Linux 8 from the Red Hat Customer Portal.

    We have to wait till CentOS 8 release to test this out.

  • OpenShift 4: Red Hat's on ramp for the hybrid cloud

    In this next generation of Red Hat's Kubernetes platform, Red Hat explicitly stated OpenShift 4 is designed to deliver a cloud-like experience across the hybrid cloud by driving automated updates across Kubernetes deployments everywhere. Or, as Red Hat CEO Jim Whitehurst summed it up: "Make open hybrid cloud the default architecture."

    In more detail, Ashesh Badani, Red Hat senior vice president of Cloud Platforms, said: "Enterprise IT's future is driven by hybrid and multicloud computing, with Kubernetes acting as a bridge to seamlessly connect workloads between on-premise datacenters and public cloud footprints. Red Hat OpenShift 4 makes this vision of Kubernetes a reality, offering a consistent, self-managing enterprise Kubernetes platform that spans the hybrid cloud."

  • Sudo + syslog-ng: two software at two conferences

    Recently I visited two conferences: LOADays and Red Hat Summit. They both focus on open source software, but similarities end there. LOADays in Antwerp is small, free and focuses on Linux administrators. The Red Hat Summit in Boston is huge, expensive and covers a wide variety of topics, including administration among many others. No matter of the differences, both are among my favorite events.

    Why sudo? Last year Balabit, the company where I work, was acquired by One Identity. Todd Miller, developer of sudo became my colleague. I was happy to see another open source software around. I read sudo and learned that it has many more features than I knew about, even if I have been using it for decades. So, next to syslog-ng I started to evangelize sudo as well, demonstrating how much more it can be than a simple prefix to administrative commands.

  • Software Defined Storage: The Next Killer App for Cloud

    It’s never going to be possible to completely disconnect software from hardware. Indeed, hardware development is having a bit of a rebirth as young developers rediscover things like the 6502, homebrew computing, and 8-bit assembly languages. If this keeps going, in 20 years developers will reminisce fondly and build hobby projects in early IoT platforms, using 2007-era cloud APIs with old refrigerator-sized storage arrays.

    In my experience, storage hardware has remained something of a legacy boat anchor in many enterprises: you don’t mess around when it comes to storing your company’s long term data or selecting storage providers for your lights-on, business critical applications. Governments demand it be retained, and data scientists are increasingly building new algorithms based on giant old datasets. For a time after the cloud revolution began in the late 2000’s it seemed that storage hardware wouldn’t be moving to x86 cloud-based virtual machines–much less Linux containers–anytime soon.

DragonFlyBSD 5.4.3 Released With Various Fixes

Filed under
BSD

DragonFlyBSD 5.4.3 was released on Monday with just a hand full of changes over last month's 5.4.2 point release.

DragonFlyBSD 5.4.3 takes care of an SMP race condition within the PF code, fixes a FP bug in its kernel, restores the trim_enabled device sysctl, ensures the ca_root_nss certificate is installed, sets GID_TTY for non-root users by default, and stubs out pthread_equal() for its C library.

Read more

Comparing Search between Nautilus and Nemo File Managers

Filed under
GNU
Linux
GNOME

Personally, I like Nemo search better than Nautilus search as I need to sort everything I find and I cannot do that with Nautilus. I love sort by Date/Descending as I use it everyday.

Apparently, not only me saying this. I don't know why this once-existed feature removed in current versions of Nautilus, as normal interface provides sorting but search interface does not. I will not wonder if somebody ask "why not removing sort in the normal interface as well?" or such.

Read more

Set up a static network connection in Linux

Filed under
Linux
HowTos

Configuring a network connection from a Linux machine can be challenging. Fortunately, many new Linux distributions come with some type of network management tool that can help you automatically connect to a wireless network. But wouldn't it be nice to be able to set up a static network connection from a Linux machine? This guide will show you how to use different Linux tools to check for network connections from a CentOS/RHEL machine and explain how to add a static network using the nmcli tool.

Read more

Linux distros without systemd

Filed under
GNU
Linux

If you are reading this post you're very much likely not a fan of systemd already. So we won't preach on why systemd is bad, but today we'll focus more on what are the alternatives out there. Our approach is obviously not for settling for less but for changing things for the better. We have started the world after systemd project some time ago and the search isn't over.

Read more

Discussion: Linux Distros Without Systemd (2019)

Security Leftovers

Filed under
Security
  • Security updates for Monday
  • NetBSD 8.1 RC1 Released With MDS Mitigations, Option To Turn Off SMT/HT, Driver Updates

    The first and only anticipated release candidate for NetBSD 8.1 is now available for testing.

    The NetBSD 8.1 release candidate adds the necessary mitigations for the Microarchitectural Data Sampling / Zombieload vulnerabilities. With Hyper Threading looking increasingly insecure with these new CPU vulnerabilities, NetBSD has joined other operating systems in offering a new setting to disable HT/SMT support: the smtoff rc.conf option.

  • Outbound Traffic Filtering | Roadmap to Securing Your Infrastructure

    This week, we’re discussing outbound traffic filtering. This is filtering provided at the network edge by a firewall with rules (ACLs) restricting what internal users are allowed to access. Some firewalls have the ability to filter by an application (layer 7 firewalls), but we’re going to concentrate on standard packet-filtering firewalls and their capabilities. There are several reasons for wanting to restrict outbound communications, such as defeating malware, making data exfiltration harder, and the detection of infected hosts.

  • Bluetooth's Complexity Has Become a Security Risk

    Fundamentally, both Bluetooth and BLE open up a channel for two devices to communicate—an extremely useful arrangement, but one that also opens the door for dangerous interactions. Without strong cryptographic authentication checks, malicious third parties can use Bluetooth and BLE to connect to a device they shouldn't have access to, or trick targets into thinking their rogue device is a trusted one.

  • Huawei promises continued security updates and service to existing users post Google ban

    Google has shocked the world by banning Huawei from future OS versions and security updates, but existing Huawei handsets will continue getting Google Play app updates, while Huawei promises it will issue security updates instead.

  • Security Advisory: Kernel and Firmware Updates for Intel MDS Vulnerability
  • ICE Tops Its Old Record, Spends Another $820,000 On Cellphone-Cracking Tools

    As consecutive heads of the FBI have whined about the general public's increasing ability to keep their devices and personal data secure with encryption, a number of companies have offered tools that make this a moot point. Grayshift -- the manufacturer of phone-cracking tool GrayKey -- has been selling hundreds of thousands of dollars-worth of devices to other federal agencies not so insistent the only solution is backdoored encryption.

    ICE is one of these agencies. It led all federal agencies in phone-cracking expenditures in 2018. It spent $384,000 on these tools last year. It wasn't just ICE. Other agencies like the DEA and [checks notes] the Food and Drug Administration have also purchased these devices. But ICE led the pack, most likely because ICE -- along with DHS counterpart CBP -- are engaging in more suspicionless, warrantless device searches than ever.

Ubuntu Expands Its Kernel Uploader Team

Filed under
Ubuntu

As a sign of the times with the Linux kernel being affected by an increasing number of CVEs (and particularly high profile ones at that), there are now more Ubuntu developers with upload rights for sending down new kernel upgrades.

Ubuntu's Kernel Uploaders Team approved adding Tyler Hicks (a longtime Canonical developer working as an Ubuntu kernel engineer) to the kernel uploaders group as well as Juerg Haefliger (having worked on stable kernels and recent high profile CVE issues already) and Khalid Elmously (another Canonical employee and existing kernel team member).

Read more

Also: Design and Web team summary – 10 May 2019

Programming: Source-to-Image, Python and 2019 Rust Event Lineup

Filed under
Development

KDE: Summer with Kdenlive, Linux perf and KCachegrind, Qt at KDAB and Plasma 5.16 Beta

Filed under
KDE
  • This Summer with Kdenlive

    Hi! I’m Akhil K Gangadharan and I’ve been selected for GSoC this year with Kdenlive. My project is titled ‘Revamping the Titler Tool’ and my work for this summer aims to kickoff the complete revamp of one of the major tools used in video-editing in Kdenlive, called the Titler tool.

    [...]

    After the backend is done with, we begin integrating it with Kdenlive and evolve the titler to use the new backend.

    A great long challenge lies ahead, and I’m looking forward to this summer and beyond with the community to complete writing the tool - right from the backend to the new UI.

  • Linux perf and KCachegrind

    If you occassionally do performance profiling as I do, you probably know Valgrind's Callgrind and the related UI KCachegrind. While Callgrind is a pretty powerful tool, running it takes quite a while (not exactly fun to do with something as big as e.g. LibreOffice).

    Recently I finally gave Linux perf a try. Not quite sure why I didn't use it before, IIRC when I tried it somewhen long ago, it was probably difficult to set up or something. Using perf record has very little overhead, but I wasn't exactly thrilled by perf report. I mean, it's text UI, and it just gives a list of functions, so if I want to see anything close to a call graph, I have to manually expand one function, expand another function inside it, expand yet another function inside that, and so on. Not that it wouldn't work, but compared to just looking at what KCachegrind shows and seeing ...

    When figuring out how to use perf, while watching a talk from Milian Wolff, on one slide I noticed a mention of a Callgrind script. Of course I had to try it. It was a bit slow, but hey, I could finally look at perf results without feeling like that's an effort. Well, and then I improved the part of the script that was slow, so I guess I've just put the effort elsewhere Smile.

  • KDAB helps unu build Qt-based UI

    Those of you who’ve visited KDAB’s offices in Berlin, will know we have a fleet of electric scooters for our staff. You may have even tried one yourself!

    Today, unu, the Berlin-based mobility company that makes them, launches their latest electric scooter – the unu Scooter.

    The unu Scooter has been completely redeveloped, is more open to sharing and rental services and has the fastest acceleration you’ll find in any electric scooter, courtesy of its Bosch engine.

  • Help Test Plasma 5.16 Beta

    Plasma 5.16 beta was released last week and there?s now a further couple of weeks to test it to find and fix all the beasties. To help out download the Neon Testing image and install it in a virtual machine or on your raw hardware. You probably want to do a full-upgrade to make sure you have the latest builds. Then try out the new notifications system, or the new animated wallpaper settings or anything else mentioned in the release announcement. When you find a problem report it on bugs.kde.org and/or chat on the Plasma Matrix room. Thanks for your help!

Huawei and other mobile “tech giants”: you should (really) break free from Google/Android

Filed under
OS
Android
Google

Huawei has probably played a questionable game with user data and corporate data. This has led governments to discourage the usage of Huawei devices, which is a fair and understandable attitude.

However, what Huawei really didn’t understand is that their dependency on Google/Android technology and services would put them into this terrible situation. Discussions have moved out beyond regular commercial and trade arguments, and are now clearly out of control.

They should have learned from the past: USA has a significant track record when it comes to embargoes and export restrictions. They don’t even hesitate to force their allies to apply the same restrictions, by threatening them more or less directly, commercially and financially.

For Huawei, what we witness today is the result of 10 years of strategic blindness. They should have realized that when they sell a smartphone, most of the value is in the software, not in the hardware. Therefore, they shouldn’t have become so reliant on Google/Android for the software: this hard dependency is a major risk for any mobile business.

Read more

Google’s latest smart glasses power up with Snapdragon XR1

Filed under
Android

Google has launched a $999 “Glass Enterprise Edition 2” headset that runs Android Oreo on a faster, quad-core, 1.7GHz Snapdragon XR1 SoC with an 8MP camera, WiFi-ac, BT 5.x, a USB Type-C port, and longer battery life.

After backing away from its consumer Google Glass eyewear due in part to complaints about privacy, in 2017 Google parent company Alphabet announced a more business- and industrial focused Glass Enterprise Edition as a $1,500 developer platform. Now, Google has brought the Glass unit inhouse, and has returned with a Glass Enterprise Edition 2 designed for mass production. The new eyeware device has a faster processor, longer battery life, improved camera and wireless features, and a reduced $999 price.

Read more

Games: Super Powered Battle Friends, Geneshift, OBS Studio, DASH

Filed under
Gaming
  • 2D indie platform brawler 'Super Powered Battle Friends' is now up on Steam and itch.io

    Super Powered Battle Friends from Cache Grab Studios is a new platform fighter, with both local and online play and it's now in Early Access. As promised on the rather unsuccessful Kickstarter campaign, it was release with same-day Linux support.

  • Geneshift gets a GTA2-inspired update with civilians, an expanded demo, better maps for driving and more

    Geneshift continues to evolve into a very interesting top-down action game, mixing in a single-player/co-op campaign, various traditional multiple modes and a Battle Royale.

    The developer, Nik Nak Studios, said they're celebrating ten years since Geneshift first came online (originally under other names). This latest update pulls in some inspiration from GTA2, adding in roaming civilians you can take down which will eventually become aggressive towards you. The more you kill, the higher their aggression rating and loot dropping will be giving the various online modes like Deathmatch and Battle Royale a little mini-game.

  • Video recording and livestreaming software OBS Studio has a new 23.2 Release Candidate out

    For those who create videos and livestreams, OBS Studio is for the most part all you need. It continues advancing too, with a Release Candidate out for OBS 23.2.

    New features this time around include a hotkey to toggle the preview, the ability to preview scene transitions, the ability to estimate recording time available based on disk space (not that I've seen it, might be Windows only), a "luma" key video filter, the ability to copy and paste filter to/from scenes in addition to sources, the ability to centre items vertically or horizontally in the transform menus, a message when there's no sources included in a scene to help new users and numerous other enhancements.

  • DASH, the fast-paced platformer where you create the levels is launching in June with a new trailer

    Best get your running shoes, you're going to need them to compete in DASH: Danger Action Speed Heroes. This fast-paced competitive platformer from Baby Duka and Schubell IT will also let your creative juices flow since a lot of the levels are made by people like you and me.

Security Leftovers

Filed under
Security
  • Why Are Cryptographers Being Denied Entry into the US?

    Is there some cryptographer blacklist? Is something else going on? A lot of us would like to know.

  • Security Engineering: Third Edition

    Today I put online a chapter on Who is the Opponent, which draws together what we learned from Snowden and others about the capabilities of state actors, together with what we’ve learned about cybercrime actors as a result of running the Cambridge Cybercrime Centre. Isn’t it odd that almost six years after Snowden, nobody’s tried to pull together what we learned into a coherent summary?

    There’s also a chapter on Surveillance or Privacy which looks at policy. What’s the privacy landscape now, and what might we expect from the tussles over data retention, government backdoors and censorship more generally?

  • Google halts some business with China's Huawei: report

    Huawei will reportedly no longer be able to access Android updates, the Gmail app, the Google Play store and new versions of Google phones outside of China.

  • Google restricts Huawei's use of Android

    Existing Huawei smartphone users will be able to update apps and push through security fixes, as well as update Google Play services.

    But when Google launches the next version of Android later this year, it may not be available on Huawei devices.

    Future Huawei devices may no longer have apps such as YouTube and Maps.

  • Forget Huawei, The Internet Of Things Is The Real Security Threat

    We've noted for a while how a lot of the US protectionist security hysteria surrounding Huawei isn't supported by much in the way of hard data. And while it's certainly possible that Huawei helps the Chinese government spy, the reality is that Chinese (or any other) intelligence services don't really need to rely on Huawei to spy on the American public. Why? Because people around the world keep connecting millions of internet of broken things devices to their home and business networks that lack even the most rudimentary of security and privacy protections.

    Week after week we've documented how these devices are being built with both privacy and security as a distant afterthought, resulting in everything from your television to your refrigerator creating both new attack vectors and wonderful new surveillance opportunities for hackers and state actors.

Syndicate content

More in Tux Machines

Distros: Draco in Sparky, Fedora Issues and Optional Dependencies in Debian

  • Draco Desktop
    There is a new desktop available for Sparkers: Draco
  • Archiving 26 500 community Q&As from Ask Fedora
    Ask Fedora is the Fedora Linux community’s questions-and-answers portal, and it recently transitioned from a forum software called Askbot to Discourse. Changing the underlying forum software doesn’t have to be destructive but Ask Fedora decided to go with a nuke-and-pave migration strategy: They decided to start from scratch instead of copying user accounts and the user-contributed content to the new software. The first time I learned of the migration was a few days after it had happen. I’d run into an issue with my Fedora installation and went online looking for solutions. Every useful search result was from the old Ask Fedora site and every link returned an HTTP 404 Not Found error message as those answers hadn’t been migrated to the new Ask Fedora website.
  • Attention epel6 and epel7 ppc64 users
    If you are a epel6 or epel7 user on the ppc64 platform, I have some sad news for you. If you aren’t feel free to read on for a tale of eol architectures. ppc64 (the big endian version of power) was shipped with RHEL6 and RHEL7 and Fedora until Fedora 28. It’s been replaced by the ppc64le (little endian) version in Fedora and RHEL8.
  • Optional dependencies don’t work
    In the i3 projects, we have always tried hard to avoid optional dependencies. There are a number of reasons behind it, and as I have recently encountered some of the downsides of optional dependencies firsthand, I summarized my thoughts in this article. [...] Software is usually not built by end users, but by packagers, at least when we are talking about Open Source. Hence, end users don’t see the knob for the optional dependency, they are just presented with the fait accompli: their version of the software behaves differently than other versions of the same software. Depending on the kind of software, this situation can be made obvious to the user: for example, if the optional dependency is needed to print documents, the program can produce an appropriate error message when the user tries to print a document. Sometimes, this isn’t possible: when i3 introduced an optional dependency on cairo and pangocairo, the behavior itself (rendering window titles) worked in all configurations, but non-ASCII characters might break depending on whether i3 was compiled with cairo. For users, it is frustrating to only discover in conversation that a program has a feature that the user is interested in, but it’s not available on their computer. For support, this situation can be hard to detect, and even harder to resolve to the user’s satisfaction.

Servers: Kubernetes, Microservices, Containers and SUSE's Enterprise Storage 6

  • Is bare Kubernetes still too messy for enterprises?
    Kubernetes is touted as a computing cure-all, fixing up multicloud networking to data mobility. The open-source platform for orchestrating containers (a virtualized method for running distributed applications) may or may not be the panacea it’s hyped up to be. What is certain is that user-ready Kubernetes isn’t as easy as it sounds, so customers should shop carefully for a provider. Enterprise users of Kubernetes and containers may not guess just how many moving parts are under the covers. There are a ton of tiny pieces that have to line up just so in order for them to work, according to Mark Shuttleworth (pictured), founder and chief executive officer of Canonical Ltd. He likens these technologies to carefully constructed “fictions.”
  • Data as a microservice: Distributed data-focused integration
    Microservices is the architecture design favored in new software projects; however, getting the most from this type of approach requires overcoming several previous requirements. As the evolution from a monolithic to a distributed system takes place not only in the application space but also at the data store, managing your data becomes one of the hardest challenges. This article examines some of the considerations for implementing data as a service.
  • Container Adoption Shoots Up Among Enterprises In 2019: Survey
    Majority of IT professionals now run container technologies, with 90 percent of those running in production and 7 in 10 running at least 40 percent of their application portfolio in containers — an impressive increase from two years ago, when just 67 percent of teams were running container technologies in production. According to the joint 2019 Annual Container Adoption Survey released by Portworx and Aqua Security, enterprises have started making bigger investments in containers. In 2019, nearly one in five organizations is found to be spending over $1 million annually on containers (17%) as compared to just four percent in 2016.
  • SUSE Rolls Out Enterprise Storage 6
    SUSE has announced the latest version of its software-defined storage solution powered by Ceph technology. With SUSE Enterprise Storage 6, IT organizations can adapt to changing business demands. They may also reduce IT operational expense with new features focused on containerized and cloud workload support, improved integration with public cloud, and enhanced data protection capabilities, SUSE said.

OSS: 3scale, Wikipedia Edit-a-thon, LibreOffice Conference 2020, DataStax Openwashing and IGEL

  • Red Hat completes open sourcing of 3scale code
    At Red Hat we have always been proud of our open source heritage and commitment. We are delighted that more of the industry now shares our viewpoint, and more companies are looking to promote their open source bona fides of late. Open source software energizes developers and teams of committed developers working in parallel can outproduce the large development hierarchies of the last generation. We believe working upstream with open source communities is an important innovation strategy. Occasionally, however, innovation does originate in traditional commercial organizations under a proprietary development model. Three years ago, Red Hat discovered just such a company that was doing exciting things in the API economy.
  • Enbies and women in FOSS Wikipedia edit-a-thon
    To be brief, I’ll be hosting a Wikipedia edit-a-thon on enbies and women in free and open source software, on June 2nd, from 16:00 – 19:00 EDT. I’d love remote participants, but if you’re in the Boston area you are more than welcome over to my place for pancakes and collaboration times.
  • LibreOffice Conference 2020, it could be in your city
    LibreOffice Conference 2020 will be an event to remember, for a couple of reasons: it will be the 10th of a series of successful conferences, and it will celebrate the 10th anniversary of the LibreOffice project and the 20th of the FOSS office suite. In 2020, The Document Foundation will be on stage at many FOSS events around the world, and the LibreOffice Conference will be the most important of the year. Organizing this conference is a unique opportunity for FOSS communities, because the event will make the history of free open source software.
  • DataStax and the Modern Commercial Open Source Business
    One month ago, Google announced a set of partnerships with seven commercial open source providers. Among those announced was DataStax, which held its annual conference this year and, for the first time, an analyst day. While DataStax and the open source project it is based on, Cassandra, are differentiated on a technical basis, the company also represents an interesting contrast with its peers directionally both among the newly minted Google partners and more broadly. Of the seven commercial open source partners Google announced, for example, DataStax is one of two along with InfluxData that has not introduced a non-open source, hybrid license as a means of protecting itself from competition from the cloud providers. This is not, notably, because the company doesn’t seem them as a threat; asked about who the competition was in the analyst sessions, the CEO of DataStax candidly acknowledged that the company’s primary competitive focus was not on premise competition such as Oracle, but cloud-based managed services offerings.
  • IGEL Developing Linux Distro For Windows Virtual Desktop Users [Ed: IGEL used to support #GNU/Linux and now it's just helping Microsoft enslave GNU/Linux insider Windows with NSA back doors.]

Linux Mint Turns Cinnamon Experience Bittersweet

Linux Mint no longer may be an ideal choice for above-par performance out of the box, but it still can serve diehard users well with the right amount of post-installation tinkering. The Linux Mint distro clearly is the gold standard for measuring Cinnamon desktop integration. Linux Mint's developers turned the GNOME desktop alternative into one of the best Linux desktop choices. Linux Mint Cinnamon, however, may have lost some of its fresh minty flavor. The gold standard for version 19.1 Tessa seems to be a bit tarnished when compared to some other distros offering a Cinnamon environment. Given that the current Linux Mint version was released at the end of last December, it may be a bit odd for me to focus on a review some five months later. Linux Mint is my primary driver, though, so at long last I am getting around to sharing my lukewarm experiences. I have run Linux Mint Cinnamon on three primary work and testing computers since parting company with Ubuntu Linux Unity and several other Ubuntu flavors many years ago. I have recommended Linux Mint enthusiastically to associates and readers in my personal and professional roles. Read more