Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Saturday, 24 Mar 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Raspberry Pi 3 Model B+ Benchmarks Rianne Schestowitz 22/03/2018 - 5:08pm
Story Stable kernels 4.9.89, 4.4.123 and 3.18.101 Rianne Schestowitz 22/03/2018 - 5:05pm
Story Raspberry Pi 3B+ Speeds Up Three Ways Rianne Schestowitz 22/03/2018 - 5:00pm
Story GNOME: Memory Leak, Continues Integration in Librsvg, GNOME Builder and More Roy Schestowitz 22/03/2018 - 4:43pm
Story KDE/Qt: Importance of QA, Qt Champions, Akademy's Keynote Roy Schestowitz 22/03/2018 - 4:39pm
Story Server: Docker Turns 5, LFTP, Google Skaffold Roy Schestowitz 22/03/2018 - 4:09pm
Story Software: Lector, Yoda, Suplemon, Cockpit, QSoas and More Roy Schestowitz 22/03/2018 - 4:07pm
Story today's howtos Roy Schestowitz 22/03/2018 - 4:05pm
Story Which Linux Distribution to Use After Ubuntu? Roy Schestowitz 22/03/2018 - 3:50pm
Story Mobile Linux: Eelo and Sailfish/Jolla Support Roy Schestowitz 22/03/2018 - 3:46pm

Security: Updates, Synopsys/Black Duck FUD, and Software Security Over Convenience

Filed under
  • Security updates for Tuesday
  • With Much of the Data Center Stack Open Source, Security is a Special Challenge [Ed: Black attacking FOSS again in order to sell its proprietary products; does proprietary software have no security issues? Which cannot be fixed, either?]
  • Synopsys reveals its open-source rookies of the year [Ed: Anti-FOSS company Black Duck, which markets its proprietary software by attacking FOSS (it admitted being anti-GPL since inception, created by Microsoft employee), wants the public to think of it as a FOSS authority]
  • Software security over convenience

    Recently I got inspired (paranoid ?) by my boss who cares a lot about software security. Previously, I had almost the same password on all the websites I used, I had them synced to google servers (Chrome user previously), but once I started taking software security seriously, I knew the biggest mistake I was making was to have a single password everywhere, so I went one step forward and set randomly generated passwords on all online accounts and stored them in a keystore.

MIPI-CSI camera kit runs Linux on Apollo Lake

Filed under

Congatec’s rugged, Linux-driven “Conga-CAM-KIT/MIPI” camera kit combines its Intel Apollo Lake based Conga-PA5 SBC with a MIPI-CSI 2 camera from Leopard Imaging and other components.

Congatec announced a Conga-CAM-KIT/MIPI camera kit, also referred to as the MIPI-CSI 2 Smart Camera Kit. The kit runs a Yocto Project based Linux distribution on Congatec’s Conga-PA5, a Pico-ITX SBC with Intel’s Apollo Lake Atom, Pentium, and Celeron SoCs. Also included is a MIPI-CSI 2 camera (LI-AR023Z-YUV-MIP) from Leopard Imaging based on ON Semiconductor’s AR0237 HD sensor. Extended temperature ranges are supported.

Read more

Latest on webOS

Filed under

Red Hat Leftovers

Filed under
Red Hat

Ubuntu: Mir 0.31 Released, Server and LXD Status Reports

Filed under
  • Mir 0.31 Officially Released

    Mir 0.31 is now available as the latest version of the Canonical-developed display stack that continues implementing support for Wayland's protocols.

    Mir 0.31 has been in development for Ubuntu 18.04 LTS with several new features and today the release surfaced as v0.31.0.1, as an apparent brown paper bag release hours after v0.31.0 was tagged.

  • Server development summary – 20 March 2018

    If you have a server that you are using for Bionic testing, please look in /etc/netplan and give netplan a run through. Note that only new installs of Artful+ will be enabled for netplan.

  • LXD weekly status #39

    The focus for this week was on CEPH and LXD clustering, trying to get the last few remaining pieces to work together properly. We’ve tagged a couple more betas as we went through that.

A new era for Linux's low-level graphics - Part 1

Filed under

Over the past couple of years, Linux's low-level graphics infrastructure has undergone a quiet revolution. Since experimental core support for the atomic modesetting framework landed a couple of years ago, the DRM subsystem in the kernel has seen roughly 300,000 lines of code changed and 300,000 new lines added, when the new AMD driver (~2.5m lines) is excluded. Lately Weston has undergone the same revolution, albeit on a much smaller scale.

Daniel Vetter's excellent two-part series on LWN covers the details quite well, but in short atomic has two headline features. The first is better display control: by grouping all configuration changes together, it is possible to change display modes more quickly and more reliably, especially if you have multiple monitors. The second is that it allows userspace to finally use overlay planes in the display controller for composition, bypassing the GPU.

A third, less heralded, feature is that the atomic core standardises user-visible behaviour. Before atomic, drivers had very wide latitude to implement whatever user-facing behaviour they liked. As a result, each chipset had its own kernel driver and its own X11 driver as well. With the rewrite of the core, backed up by a comprehensive test suite, we no longer need hardware-specific drivers to take full advantage of hardware features. With the substantial rework of Weston's DRM backend, we can now take full advantage of these. Using atomic gives us a smoother user experience, with better performance and using less power, whilst still being completely hardware-agnostic.

Read more

MX Linux Review – Version 17 – An Excellent All Around Linux Distribution

Filed under

MX Linux is a popular and fast Linux distribution based on Debian stable that is currently in version 17.1. Today, I'm going to take you through my MX Linux Review to see why this distribution is so popular.

One of the best things about MX Linux is the variety of custom tools that have been built to make the life of the user easier. The team of devs at MX Linux have really outdone themselves making every single possible need as easy as possible with their MX apps.

Read more

Top 7 Remote Access Apps For Linux

Filed under

A common misconception among Linux users is that it is near impossible to remote into your Linux PC over the Internet. In truth, there are a number of remote apps available for Linux. In this article, I'll share my most recommended remote apps for Linux.

Read more

Raspberry Pi CM3 carrier has an Artik MCU for offline Bluetooth

Filed under
Linux’s fleet-oriented “Fin” carrier runs its Docker-friendly ResinOS and IoT framework on a Raspberry Pi Compute Module. It offers RPi 3 like ports, plus a mini-PCIe slot and an Artik 020 MCU for offline Bluetooth links., the company behind the Linux/Javascript-based IoT framework for deploying applications as Docker containers, as well as the related ResinOS 2.0 Linux distribution, has announced its first hardware product. Due to ship later this Spring for about $129, its Project Fin carrier board expands upon the Raspberry Pi Compute Module 3 Lite to support fleet operations.

Read more

today's leftovers

Filed under
  • Purchased a PlayStation 3 Between 2006 and 2010? You May Be Entitled to $65

    PS3 owners first qualified to receive compensation from Sony following the settlement of a lawsuit in 2016. That case dealt with the "OtherOS" feature that came with the console when it debuted. With OtherOS, Sony promised a new PlayStation that would operate like a computer, allowing users to partition their hard drive and install third-party operating systems like the open-source Linux software.

  • Moro – A Command Line Productivity Tool For Tracking Work Hours

    Keeping track of your work hours will give you an insight about the amount of work you get done in a specific time frame. There are plenty of GUI-based productivity tools available on the Internet for tracking work hours. However, I couldn’t find a good CLI-based tool. Today, I stumbled upon a a simple, yet useful tool named “Moro” for tracking work hours. Moro is a Finnish word which means “Hello”. Using Moro, you can find how much time you take to complete a specific task. It is free, open source and written using NodeJS.

  • Twenty years, 1998 – 2018

    curl 4.0 was just a little more than 2000 lines of C code. It featured 23 command line options. curl 4.0 introduced support for the FTP PORT command and now it could do ftp uploads that append to the remote file. The version number was bumped up from the 3.12 which was the last version number used by the tool under the old name, urlget.

  • What’s New in ArchLabs 2018.03

    ArchLabs 2018.03 is the latest release of Linux distribution based on Arch Linux featuring the Openbox window manager as the primary desktop interface. The project’s latest release ArchLabs 2018.03 brings a few fixes and improvements and improve the user.

    Powered by Linux kernel 4.15 series and based-on latest version of Arch Linux. LUKS and encryption is now working, for those security concious users out there you should be all go on the encryption side. There have been a few installer updates, base-devel is included at install time. Also the mirrorlist is optimised at the same time.

  • [Older] openSUSE.Asia Summit 2018: Call for Host

    The openSUSE.Asia organization committee is accepting proposals to host the openSUSE.Asia Summit during the second half of 2018. The openSUSE.Asia Summit is the largest annual openSUSE conference in Asia, attended by contributors and enthusiasts from all over Asia.

  • TidalScale Software-Defined Servers Now Support SUSE Linux Enterprise Server

    TidalScale, the leader in Software-Defined Servers, announced today that working in partnership with SUSE, the world’s first provider of Enterprise Linux, TidalScale has achieved SUSE Ready certification to ensure full compatibility with SUSE Linux Enterprise Server. TidalScale’s breakthrough scaling platform allows multiple industry standard servers to be combined into a single Software-Defined Server running a single instance of SUSE Linux Enterprise Server.

  • 8 Best Radio Apps For Android To Stream Online Music In 2018

Kernel and Graphics: Torvalds, Linux Foundation, Nouveau and libinput

Filed under
  • Which Linux Distribution Does Linus Torvalds Use in 2018?

    We know a sizeable amount of his views on Linux distros, thanks to an interview he took long ago in 2007, but who knows – could he have changed his mind?

    In a 2007 interview, Linus professed that he didn’t use Debian because he found it hard to install, a statement I find interesting because he’s the guy who wrote GIT in C.

    Anyway, he buttressed his reason for not using Debian in a later interview from 2014, when he explained that because he is responsible for maintaining his computer and all the computers used by his household, he likes to use an OS with virtually no installation hassle.


    As far as I know, he uses Fedora on most of his computers because of its fairly good support for PowerPC. He mentioned that he used OpenSuse at one point in time and complimented Ubuntu for making Debian accessible to the mass. So most of the flak on the internet about Linus disliking Ubuntu isn’t factual.

  • Linux Foundation, Intel launch open source IoT hypervisor

    The Linux Foundation has unveiled plans for a new open source project to provide streamlined embedded hypervisors for IoT devices.

    Called Acrn, the project has been assisted by Intel, which contributed code and engineering. The main thrust of the project is to create small, flexible virtual machines.

    ACRN comprises two main components: the hypervisor and its device model, complete with I/O mediators. The Linux-based hypervisor can run many ‘guest’ operating systems at the same time.

  • Nouveau NIR Support Appears Almost Baked, NV50 Support Added

    Karol Herbst at Red Hat started off this week by publishing his latest patches around Nouveau NIR support as part of the company's effort for getting SPIR-V/compute support up and running on this open-source NVIDIA driver.

    Red Hat's grand vision around open-source GPGPU compute still isn't entirely clear especially with Nouveau re-clocking not being suitable for delivering high performance at this point, but it must be grand given the number of developers they have working on improving the Linux GPU compute stack at the moment.

  • xf86-input-libinput 0.27.0 Released

    Aside from a few touchpad issues and other minor random issues with select hardware, libinput these days is mostly in great shape for being a generic input handling library that is working out well for both X.Org and Wayland users.

KDE: KDE Applications 18.04, KDE Connect, KMyMoney 5.0.1 and Qt Quick

Filed under
  • KDE Applications 18.04 branches created

    Make sure you commit anything you want to end up in the KDE Applications 18.04 release to them Smile

  • KDE Connect – State of the union

    We haven’t blogged about KDE Connect in a long time, but that doesn’t mean that we’ve been lazy. Some new people have joined the project and together we have implemented some exciting features. Our last post was about version 1.0, but recently we released version 1.8 of the Android app and 1.2.1 of the desktop component some time ago, which we did not blog about yet. Until now!

  • KMyMoney 5.0.1 released

    The KMyMoney development team is proud to present the first maintenance version 5.0.1 of its open source Personal Finance Manager. Although several members of the development team had been using the new version 5.0.0 in production for some time, a number of bugs and regressions slipped through testing, mainly in areas and features not used by them.

  • Qt Quick without a GPU: i.MX6 ULL

    With the introduction of the Qt Quick software renderer it became possible to use Qt Quick on devices without a GPU. We investigated how viable this option is on a lower end device, particularly the NXP i.MX6 ULL. It turns out that with some (partially not yet integrated) patches developed by KDAB and The Qt Company, the performance is very competitive. Even smooth video playback (with at least half-size VGA resolution) can be done by using the PXP engine on the i.MX6 ULL.

Red Hat Leftovers

Filed under
Red Hat

Debian Leftovers

Filed under
  • RcppSMC 0.2.1: A few new tricks

    A new release, now at 0.2.1, of the RcppSMC package arrived on CRAN earlier this afternoon (and once again as a very quick pretest-publish within minutes of submission).

  • sbuild-debian-developer-setup(1) (2018-03-19)

    I have heard a number of times that sbuild is too hard to get started with, and hence people don’t use it.

    To reduce hurdles from using/contributing to Debian, I wanted to make sbuild easier to set up.

    sbuild ≥ 0.74.0 provides a Debian package called sbuild-debian-developer-setup. Once installed, run the sbuild-debian-developer-setup(1) command to create a chroot suitable for building packages for Debian unstable.

  • control-archive 1.8.0

    This is the software that maintains the archive of control messages and the newsgroups and active files on I update things in place, but it's been a while since I made a formal release, and one seemed overdue (particularly since it needed some compatibility tweaks for GnuPG v1).

  • The problem with the Code of Conduct
  • Some problems with Code of Conducts

OSS Leftovers

Filed under
  • Can we build a social network that serves users rather than advertisers?

    Today, open source software is far-reaching and has played a key role driving innovation in our digital economy. The world is undergoing radical change at a rapid pace. People in all parts of the world need a purpose-built, neutral, and transparent online platform to meet the challenges of our time.

    And open principles might just be the way to get us there. What would happen if we married digital innovation with social innovation using open-focused thinking?

  • Digital asset management for an open movie project

    A DAMS will typically provide something like a search interface combined with automatically collected metadata and user-assisted tagging. So, instead of having to remember where you put the file you need, you can find it by remembering things about it, such as when you created it, what part of the project it connects to, what's included in it, and so forth.

    A good DAMS for 3D assets generally will also support associations between assets, including dependencies. For example, a 3D model asset may incorporate linked 3D models, textures, or other components. A really good system can discover these automatically by examining the links inside the asset file.

  • LG Releases ‘Open Source Edition’ Of webOS Operating System
  • Private Internet Access VPN opens code-y kimono, starting with Chrome extension

    VPN tunneller Private Internet Access (PIA) has begun open sourcing its software.

    Over the next six months, the service promises that all its client-side software will make its way into the hands of the Free and Open Source Software (FOSS) community, starting with PIA's Chrome extension.

    The extension turns off mics, cameras, Adobe's delightful Flash plug-in, and prevents IP discovery. It also blocks ads and tracking.

    Christel Dahlskjaer, director of outreach at PIA, warned that "our code may not be perfect, and we hope that the wider FOSS community will get involved."

  • Open sourcing FOSSA’s build analysis in fossa-cli

    Today, FOSSA is open sourcing our dependency analysis infrastructure on GitHub. Now, everyone can participate and have access to the best tools to get dependency data out of any codebase, no matter how complex it is.

  • syslog-ng at SCALE 2018

    It is the fourth year that syslog-ng has participated at Southern California Linux Expo or, as better known to many, SCALE ‒ the largest Linux event in the USA. In many ways, it is similar to FOSDEM in Europe, however, SCALE also focuses on users and administrators, not just developers. It was a pretty busy four days for me.

  • Cisco's 'Hybrid Information-Centric Networking' gets a workout at Verizon
  • Verizon and Cisco ICN Trial Finds Names More Efficient Than Numbers
  • LLVM-MCA Will Analyze Your Machine Code, Help Analyze Potential Performance Issues

    One of the tools merged to LLVM SVN/Git earlier this month for the LLVM 7.0 cycle is LLVM-MCA. The LLVM-MCA tool is a machine code analyzer that estimates how the given machine code would perform on a specific CPU and attempt to report possible bottlenecks.

    The LLVM-MCA analysis tool uses information already used within LLVM about a given CPU family's scheduler model and other information to try to statically measure how the machine code would carry out on a particular CPU, even going as far as estimating the instructions per cycle and possible resource pressure.

  • Taking Data Further with Standards

    Imagine reading a book, written by many different authors, each working apart from the others, without guidelines, and published without edits. That book is a difficult read — it's in 23 different languages, there's no consistency in character names, and the story gets lost. As a reader, you have an uphill battle to get the information to tell you one cohesive story. Data is a lot like that, and that's why data standards matter. By establishing common standards for the collection, storage, and control of data and information, data can go farther, be integrated with other data, and make "big data" research and development possible.

    For example, NOAA collects around 20 terabytes of data every day.Through the National Ocean Service, instruments are at work daily gathering physical data in the ocean, from current speed to the movement of schools of fish and much more. Hundreds of government agencies and programs generate this information to fulfill their missions and mandates, but without consistency from agency to agency, the benefits of that data are limited. In addition to federal agencies, there are hundreds more non-federal and academic researchers gathering data every day. Having open, available, comprehensive data standards that are widely implemented facilitates data sharing, and when data is shared, it maximizes the benefits of "big data"— integrated, multi-source data that yields a whole greater than its parts.

Security: Intel, Editors and Windows in Critical Systems

Filed under
  • diff -u: Intel Design Flaw Fallout

    Linux patches for these issues are in a state of ongoing development. Security is always the first priority, at the expense of any other feature. Next would probably be the general speed of a running system for the average user. After that, the developers might begin piecing together any features that had been pulled as part of the initial security fix.

    But while this effort goes on, the kernel developers seem fairly angry at Intel, especially when they feel that Intel is not doing enough to fix the problems in future processors.

    In response to one set of patches, for example, Linus Torvalds burst out with, "All of this is pure garbage. Is Intel really planning on making this shit architectural? Has anybody talked to them and told them they are f*cking insane?" He went on, "the IBRS garbage implies that Intel is _not_ planning on doing the right thing for the indirect branch speculation. Honestly, that's completely unacceptable."

  • Hackers Can Abuse Plugins for Popular Unix Text Editors to Escalate Privileges

    Advanced Unix Text Editors offers extensibility by allowing users to install third-party plugins for ease of use and to enhance the Text Editors functionalities.

    Server administrators often run text editors with elevated privileges “sudo gedit” to edit root-owned configuration files. If the text editor contains vulnerable third-party plugin it enlarges attack surface.

  • House approves legislation to authorize Homeland Security cyber teams

    House lawmakers on Monday passed legislation that would codify into law the Department of Homeland Security’s cyber incident response teams that help protect federal networks and critical infrastructure from cyberattacks.

Manjaro 17.1.6 Hakoila Plasma - A rollercoaster of Tux

Filed under

Wow, there could not be a more bi-polar distro than Manjaro Hakoila. On one hand, it's the state-of-art, bleeding-edge tech demonstrator with some rather brilliant and unique features, belying its Archy roots. On the other, it's rife with bugs and problems that are typical of small distros and badly integrated products. The network and smartphone side of things are particularly bad. You cannot excuse pale fonts or the menu error either, and then, if you've actually read a review, there were a dozen different issues through my test session.

That said, Manjaro 17.1.6 is pretty, inviting, elegant, largely robust and stable, fast enough on ancient hardware, it gives you Nvidia support out of the box, it gives you media goodies, it gives you the Microsoft Office access right there on your desktop, and it's got charm and character that goes beyond the bland copypasta you get elsewhere in the Linux world.

And then, I got meself thinking. I tried a few small but reasonably brilliant distros recently - Manjaro, MX Linux, Antergos. They all have unique, powerful features, all covering different angles. Imagine if they combined their efforts - MX Linux live session data import and its tools, Antergos software wizard, Manjaro office stuff. What a killer distro we could have then! But that's an article for a different time.

Back to Manjaro - I am actually liking this particular edition quite a lot. It's far from perfect, but then, with some hard work and attention to details, this could be an excellent choice for a desktop system. Perhaps more than any other distro did in recent times. Of course, there's still a huge amount of effort needed to make this a fully integrated, offline-online Windows competitor, but it's making steady progress, and I like that. A sure sign of greatness to come. Grade wise, about 7.5/10, just watch out for the buggy parts. And I will extend the testing onto my UEFI-powered Lenovo G50 laptop.

Read more

GStreamer 1.14

Filed under
  • GStreamer Rust bindings 0.11 / plugin writing infrastructure 0.2 release

    Following the GStreamer 1.14 release and the new round of gtk-rs releases, there are also new releases for the GStreamer Rust bindings (0.11) and the plugin writing infrastructure (0.2).

  • GStreamer 1.14.0 Released With WebRTC Support, AV1 Video & Better Rust Bindings

    GStreamer 1.14.0 is now available as the first big feature release of 2018 for this widely-used, open-source multimedia framework.

    GStreamer 1.14 packs in many new features including experimental AV1 video codec support for that royalty-free specification, IPC pipeline improvements, RTSP 2.0 client/server support (Real Time Streaming Protocol 2.0), LAME/mpg123/twolame being promoted to the "good" plugin repository now that the related patents have expired for MP3, improved OpenGL integration, initial WebRTC support for real-time communication, and many other improvements.

Syndicate content

More in Tux Machines

Super long-term kernel support

In the longer-term, CIP is looking toward IEC-62443 security certification. That is an ambitious goal and CIP can't get there by itself, but the project is working on documentation, test cases, and tools that will hopefully help with an eventual certification effort. Another issue that must be on the radar of any project like this is the year-2038 problem, which currently puts a hard limit on how long a Linux system can be supported. CIP is working with kernel and libc developers to push solutions forward in this area. Read more

LibreSSL 2.7.1 Released, OpenSSH 7.7 Being Tested

today's howtos

Programming: Python 2.*, Functional Computation, and Plagiarism in CS

  • 1.5 Year Warning: Python2 will be End of Lifed
    The end of upstream Python 2.7 support will be January 1, 2020 (2020-01-01) and the Fedora Project is working out what to do with it. As Fedora 29 would be released in 2019-11 and would get 1.5 years of support, the last release which would be considered supportable would be the upcoming release of Fedora 28. This is why the current Python maintainers are looking to orphan python2. They have made a list of the packages that would be affected by this and have started a discussion on the Fedora development lists, but people who only see notes of this from blogs or LWN posts may not have seen it yet.
  • Why is functional programming seen as the opposite of OOP rather than an addition to it?

    So: both OOP and functional computation can be completely compatible (and should be!). There is no reason to munge state in objects, and there is no reason to invent “monads” in FP. We just have to realize that “computers are simulators” and figure out what to simulate.

  • Why we still can’t stop plagiarism in undergraduate computer science

    The most important goal is to keep the course fair for students who do honest work. Instructors must assign grades that accurately reflect performance. A student who grapples with a problem — becoming a stronger programmer in the process — should never receive a lower grade than one who copies and pastes.


    University administrators should communicate their support. Instructors should know that, not only will they suffer no retaliation, but that the university encourages them to enforce university policies. This might require administrators to acknowledge the inconvenient truth of widespread plagiarism.