Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Tuesday, 17 Oct 17 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Type Title Author Replies Last Postsort icon
Story Today in Techrights Rianne Schestowitz 15/10/2017 - 5:05pm
Story Catching up with RawTherapee 5.x Roy Schestowitz 15/10/2017 - 3:16am
Story Kubuntu Artful Aardvark (17.10) final RC images now available Roy Schestowitz 15/10/2017 - 3:14am
Story Microsoft Breaks Privacy Law, Adds Back Doors, Then Blames North Korea Roy Schestowitz 15/10/2017 - 2:20am
Story LinuxAndUbuntu Review Of Linux Mint 18.2 "Sonya" Xfce Roy Schestowitz 15/10/2017 - 2:18am
Story KDE: KWave and Plasma in Slackware Roy Schestowitz 14/10/2017 - 11:56pm
Story Games: OpenRA, Hell Warders, Ubuntu, Fedora and Wine Roy Schestowitz 14/10/2017 - 11:54pm
Story Korora 26 Bloat - More is less or less is more? Roy Schestowitz 14/10/2017 - 11:52pm
Story Android Leftovers Rianne Schestowitz 14/10/2017 - 10:02pm
Story KDE Celebrates 21st Anniversary with New Updates of KDE Applications, Frameworks Rianne Schestowitz 14/10/2017 - 9:56pm

Servers: Containers, Buzzwords, and Debian

Filed under
Server
  • Using Containers? Look for the OCI Seal of Approval

    Some standards have been set for container technology. That's a good thing. Without standards, everybody working on developing a technology goes in separate directions, with no thought about how their implementation will work and play with the work being done by others. Without standards, vendor lock-in is practically unavoidable.

    Until July, when the Open Container Initiative (OCI) released version 1.0 of its specification, there were no standards when it came to containers. Products from one vendor didn't necessarily work with the offerings from another. Obviously, this was a problem for DevOps working in diverse environments.

  • 6 ways to work with database admins in the DevOps world

    DevOps is defined as "unifying the operations and engineering teams," in order to foster a culture of cross-team collaboration, codify how infrastructure is built, and become a more data-driven organization. But it seems databases and the teams that care for them are treated as an exception to this environment. In most companies, databases are still treated like walled gardens, with the database hosts tended to like delicate flowers and the database administrators (DBAs) guarding any and all access to them.

    This walled-garden attitude invariably affects the rest of the organization, from tech ops, to delivery engineering, all the way to product planning, as everyone tries to work around the datastore. Ultimately this reduces the benefits of an agile approach to software development, which is a problem for companies that have been running for a few years and have reached a solid financial footing with loyal paying customers, but are having a hard time shedding that startup skin (the one that flies by the seat of its pants), and are feeling the pressure to achieve a sense of stability in existing and future offerings.

  • Container Runtime Brings Greater Flexibility to Kubernetes and BOSH

    The Cloud Foundry Foundation on Wednesday launched Cloud Foundry Container Runtime, or CFCR, as the default deployment and management platform for containers using Kubernetes and BOSH.

  • Debian and the GDPR

    GDPR is a new EU regulation for privacy. The name is short for "General Data Protection Regulation" and it covers all organisations that handle personal data of EU citizens and EU residents. It will become enforceable May 25, 2018 (Towel Day). This will affect Debian. I think it's time for Debian to start working on compliance, mainly because the GDPR requires sensible things.

Software: XikiHub, qTox, Dash to Panel, Slack Alternatives

Filed under
Software
  • XikiHub: The Social Command Line

    Brief: A new Linux project named XikiHub has been spotted on Kickstarter. It aims to add a social community feature right into the Linux command line.

  • qTox – An Open Source P2P Instant Messaging and VoIP App

    As you probably already know, GNU/Linux has no shortage of VoIP apps. We’ve written on Wire and Discord. And we even compiled a list of The 10 Best Instant Messaging Apps for Linux.

    Today, we’ve got a new app to add to our list of instant messaging apps and it goes by the name of qTox.

    qTox is a free and open source p2p instant messaging, audio and video calls app and is (apparently) the most feature-rich Tox client. As a powerful Tox client, it follows Tox’s design guidelines while maintaining a uniform UI/UX across all the major platforms.

  • Dash to Panel Adds Support for Dynamic Transparency

    The popular Dash to Panel GNOME extension has been updated to support GNOME 3.26.

    The upcoming release will also include support for dynamic transparency, a bit of desktop eye candy that was introduced by GNOME developers in the recent GNOME 3.26 release.

    Dynamic Transparency in Ubuntu 17.10 works on both the top bar (the panel across the top of the screen) and the Ubuntu Dock. When an app window touches either element, or is maximised, the transparency of the dock and panel is reduced to help improve legibility.

  • The Slack Threat

    During a long era, electronic mail was the main communication tool for enterprises. Slack, which offer public or private group discussion boards and instant messaging between two people, challenge its position, especially in the IT industry.

    Not only Slack has features known and used since IRC launch in the late ’80s, but Slack also offers file sending and sharing, code quoting, and it indexing for ulterior searches everything that goes through the application. Slack is also modular with numerous plug-in to easily add new features.

    [...]

    Slack is a Web service which uses mainly Amazon Web services and most specially Cloudfront, as stated by the available information on Slack infrastructure.

    Even without a complete study of said infrastructure, it’s easy to state that all the data regarding many innovative global companies around the world (and some of them including for all their internal communication since their creation) are located in the United States, or at least in the hands of a US company, which must follow US laws, a country with a well-known history of large scale industrial espionage, as the whistleblower Edward Snowden demonstrated it in 2013 and where company data access has no restriction under the Patriot Act, as in the Microsoft case (2014) where data stored in Ireland by the Redmond software editor have been given to US authorities.

    [...]

    Officially, Slack stated that “No financial or payment information was accessed or compromised in this attack.” Which is, and by far, the least interesting of all data stored within Slack! With company internal communication indexed—sometimes from the very beginning of said company—and searchable, Slack may be a potential target for cybercriminal not looking for its users’ financial credentials but more their internal data already in a usable format. One can imagine Slack must give information on a massive data leak, which can’t be ignored. But what would happen if only one Slack user is the victim of said leak?

    [...]

    Because Slack service subscription in the long term put the company continuously at risk. Maybe it’s not the employees’ place to worry about it, they just have to do their job the more efficiently possible. On the other side, the company management, usually non-technical, may not be aware of what risks will threaten their company with this technical choice. The technical management may pretend to be omniscient, nobody is fooled.

Kernel and Graphics: LTS, NVIDIA, Mir 0.28, RADV

Filed under
Graphics/Benchmarks
Linux
  • Linux LTS Kernel Support Extended to 6 Years

    Despite being a free and open source OS, Linux has one of the quickest development cycles. Every 70 days, a major new version of the Linux kernel rolls out. This deprecates any older versions except for the few Long Term Support releases. In a sign of changing times, the Linux kernel lifetime is getting a major boost. From now on, the Linux LTS kernel will be supported for a whole 6 years. Jumping up to 6 years is a tripling of the current 2 year support period. This is especially goods news for Android.

  • A Reverse-Engineered Tegra Video Decode Driver Steps Closer To Mainline
  • NVIDIA Releases Linux Graphics Debugger 2.2

    NVIDIA has today released an updated version of their Linux Graphics Debugger to help game/application developers in analyzing issues and performance problems around OpenGL 4.x on GeForce/Quadro GPUs.

  • RADV Vulkan Driver Gets An On-Disk Shader Cache

    The RADV Radeon Vulkan driver in Mesa now supports an on-disk shader cache.

    Timothy Arceri working for Valve who previously spearheaded the RadeonSI OpenGL on-disk shader cache support has added a similar on-disk shader cache for the RADV Vulkan driver. Vulkan supports the concept of a pipeline cache for reusing cached objects between pipelines and runs of a game/application.

  • Another Minor Performance Optimization For RADV

    While Timothy Arceri working for Valve was busy wiring up an on-disk shader cache for RADV, Samuel Pitoiset working for this gaming giant has been tackling some additional optimizations.

  • Mir 0.28 Arrives As A Late Addition To Ubuntu 17.10

    Not that Mir is playing a pivotal role in Ubuntu 17.10 now that the transition has occurred to GNOME Shell and Wayland for this release, the new Mir release should make it into the archive. Mir 1.0 was expected up until yesterday when it was announced Mir 1.0 would be released as Mir 0.28.

  • The RADV Vulkan driver for AMD GPUs now has a shader cache in Mesa, plus more Mesa news

KDE/Qt: Cutelyst 1.9.0, Qt 5.10 Beta in KDE neon, Qt Creator 4.5 Beta

Filed under
KDE
  • Cutelyst 1.9.0 released!

    Cutelyst the Qt web framework got a new release. This is a rather small release but has some important fixes so I decided to roll sooner.

  • Qt 5.10 Beta available for testing with KDE neon

    Qt 5.10 Beta was released this week and the neon builder cloud elves have been compiling it away ready for testing.

    There’s no QtWebEngine or Qt3D so stuff which needs those will be broken.

  • Qt Creator 4.5 Beta released

    We are happy to announce the release of Qt Creator 4.5 Beta!

    There has been very little time between the 4.4 release and the 4.5 feature freeze, but 4.5 still comes with a bunch of very nice improvements.

    Locator now does fuzzy camel case matching in the same way as code completion does. Type “c andesu” in locator to open the “AndroidDebugSupport” class.

  • Qt Creator 4.5 Beta Arrives With Few Changes

    Just over one month since the release of Qt Creator 4.4, the 4.5 beta is now available as the latest feature testing release for this Qt/C++ focused integrated development environment.

GNOME/GTK: GNOME 3.28, GTK+ 3, GNOME Photos, GNOME.Asia 2017 and Fractional Scaling

Filed under
GNOME
  • GNOME 3.28 Expected To Ship On Pi Day

    The GNOME team has firmed up the release schedule for the in-development GNOME 3.28 desktop environment.

    GNOME 3.28.0 is expected to be released on 14 March 2018, which many in the tech/mathematics community celebrate each year as Pi day.

  • A scrolling primer

    A few years ago, I wrote a post about scrolling in GTK+ 3. Time for another look!

  • Stable GNOME Photos Flatpaks moved to Flathub
  • Going to GNOME.Asia 2017

    To be honest, I’m really exited about this trip. I’ve never been to ChongQing before.

  • How to Enable Fractional Scaling in Gnome

    Fractional scaling is practically necessary if you’re running a HiDPI display, and you want your desktop to scale uniformly to match your display. It’s always been an issue on Linux, but the latest version of the GNOME desktop has implemented a true fractional scaling feature to keep your desktop looking good.

    Even though GNOME 3.26 does have fractional scaling support, it wasn’t mature enough to make the release. As a result, it’s still a testing feature that you need to enable yourself.

Red Hat and Fedora News

Filed under
Red Hat

Devices: Steampunk, Axiomtek, Digi-Key, Nvidia, Tizen Studio

Filed under
Linux
Hardware
  • The Linux Steampunk Conference Badge

    I prototype, write, speak, and consult on physical computing gadgets and wanted a one-off attention-grabbing conference badge that would break the conversational ice when I walked around trade shows. That quest started a few years ago , with the first generation Arduino Pro-Mini and a 1.8” color TFT screen conference badge.

  • Networking appliance runs Linux on new quad- and octa-core Denverton CPUs

    Axiomtek’s “NA362” net appliance features Intel’s Atom C3538 and C3758 chips, and offers 6x GbE, 4x 10GbE SFP+, mini-PCIe, SATA, and up to 128GB DDR4 RAM.

    Axiomtek’s NA362 network appliance, which sits on the high end of our embedded coverage, gives you a choice of two new members of Intel’s Atom C3000 “Denverton” family: the quad-core C3538 and octa-core C3758. Earlier Linux-friendly Denverton products that we’ve covered were COM Express Basic Type 7 modules that tapped the original 16-core, 2.2GHz C3000. These include DFI’s DV970, Congatec’s Conga-B7AC, and Portwell’s PCOM-B701.

  • Digi-Key ready to ship the mangOH Red open source hardware platform

    Targeted at the industrial IoT and maker communities, mangOH Red is what Sierra Wireless claims to be the most feature-rich, lowest power open source enablement platform on the market.

  • Nvidia sets sights on the driverless revolution with Drive PX Pegasus

    On Tuesday, Nvidia announced a new version of its automotive-grade compute platforms, Drive PX Pegasus. It's recognition that the computational needs of fully autonomous (also known as level 5) vehicles are going to be demanding. Such vehicles will have to fuse inputs from multiple sensors and sensor-types, then make sense of it all with no fuss to get us from A to B. "The reality is we need more horsepower to get to level 5," said Danny Shapiro, Nvidia's senior director of automotive.

  • Tizen Studio gets updated to version 1.3 with Native UI builder and standalone RT IDE

OSS and Sharing

Filed under
OSS
  • How an open team can assess threats and opportunities

    You may be familiar with the "SWOT" decision-making tool. It's a methodology for helping teams clearly outline a set of conditions, compare options, and make transparent decisions based on an idea's Strengths, Weaknesses, Opportunities, and Threats ("SWOT"). SWOT is an efficient tool in my strategic planning toolkit.

  • Open-source in India: 3 of 4 coders come from product firms, Amazon leads
  • ONAP Collaborates with MEF on Open Source Efforts, Reaches ‘Tipping Point’ in Subscribers Participating

    Open source community leader ONAP is teaming up with standards body MEF to further harmonize open source efforts ahead of 5G.

    Arpit Joshipura, GM of Networking and Orchestration at the Linux Foundation, told Wireless Week the agreement will allow for “collaboration between open source and open standards.” 

    Both groups said they share the same objectives, including orchestrating services across multiple providers and multiple network technology domains and building a framework for real-time, policy-driven software automation of virtual and physical network functions.

  • Ford invests in Autonomic to make open-source mobility service platform
  • EuroBSDcon 2017: "travel notes" after the conference
  • Metsä Wood: From Desktop Designs to Actual Projects - Join Open Source Wood
  • Penn Libraries to End Partnership with bepress

    This fall, the Penn Libraries will begin exploring open source options for hosting Penn’s institutional repository, ScholarlyCommons, which provides free and open access to scholarly works created by Penn faculty, staff and students.

    For 13 years, Penn Libraries has hosted ScholarlyCommons on the platform Digital Commons, which we contract from the commercial company bepress. Through ScholarlyCommons and other initiatives, the Penn Libraries has enabled Penn authors to lower barriers to accessing scholarship, publish new research, and take advantage of library services that benefit not only our own community but those around the world. For 13 years, bepress was a partner in this endeavor.

    In August, bepress sold their company to Elsevier, a business with a history of aggressive confidentiality agreements, steep price increases, and opaque data mining practices. In their acquisition of bepress and other companies like SSRN and Mendeley, Elsevier demonstrates a move toward the consolidation and monopolization of products and services impacting all areas of the research lifecycle.

  • Equifax website hacked again, this time to redirect to fake Flash update

    In May credit reporting service Equifax's website was breached by attackers who eventually made off with Social Security numbers, names, and a dizzying amount of other details for some 145.5 million US consumers. For several hours on Wednesday the site was compromised again, this time to deliver fraudulent Adobe Flash updates, which when clicked, infected visitors' computers with adware that was detected by only three of 65 antivirus providers.

Programming: Distributed Software, RcppArmadillo, ConCom, HyperCard

Filed under
Development
  • Why Testing Is Important for Distributed Software

    As developers, we often hear that tests are important. Automated testing minimizes the number of bugs released to production, helps prevent regression, improves code quality, supplements documentation, and makes code reviews easier. In short, tests save businesses money by increasing system uptime and keeping developers working on new features instead of fighting fires. While software testing has been around for about as long as software has, I would argue that testing is especially important (and unfortunately more challenging) in modern distributed software systems.

  • RcppArmadillo 0.8.100.1.0
  • ConCom, and calls for programming, charity, and staff (oh my!)
  • HyperCard

    One of my favorite pastimes is imagining and planning to write new coding projects: researching technologies, checking out libraries I might use, making GUI mockups, downloading similar projects.

    I was thinking the other day that it might be fun to create a desktop-based editor that had an HTTP server embedded.  The HTTP server would serve up only one document, which is the document being currently edited, and it would show a live representation of the screen as being show the person editing the document.

    I was thinking it might be fun to re-implement the old HyperCard system.

Oracle and FOSS: Odd Couple

Filed under
OSS
  • Oracle Announced Plans to Open Source All Features of Their JDK and Address Shortcomings in Java EE

    During the opening keynote at JavaOne this year, Oracle announced plans to release Java SE under GPL and to open-source all the features in Oracle’s JDK. The vendor also admitted that Java EE wasn’t fit for the new world of microservices and serverless, and talked about plans to address the issue. Case studies on modern microservices architectures were provided by Alibaba and Spotify. The full keynote video is available on YouTube, but below we’re providing a summary of the key information.

  • Q. Why's Oracle so two-faced over open source? A. Moolah, wonga, dosh

    Oracle loves open source. Except when the database giant hates open source. Which, according to its recent lobbying of the US federal government, seems to be "most of the time".

    Yes, Oracle has recently joined the Cloud Native Computing Foundation (CNCF) to up its support for open-source Kubernetes and, yes, it has long supported (and contributed to) Linux. And, yes, Oracle has even gone so far as to (finally) open up Java development by putting it under a foundation's stewardship.

    Yet this same, seemingly open Oracle has actively hammered the US government to consider that "there is no math that can justify open source from a cost perspective as the cost of support plus the opportunity cost of forgoing features, functions, automation and security overwhelm any presumed cost savings."

Games: Sudden Strike, Riskers, Monsters and Medicine and More

Filed under
Gaming

ExTiX 17.8 – “The Ultimate Linux System” – with LXQt 0.11.1, Refracta tools, Nvidia 384.90 and kernel 4.13.0-15-exton – Build 171012

Filed under
GNU
Linux

I have made a new version of ExTiX – The Ultimate Linux System. I call it ExTiX 17.8 LXQt Live DVD. (The previous version was 17.4 from 170418).

ABOUT
ExTiX 17.8 LXQt DVD 64 bit is based on Debian 9 Stretch and Ubuntu 17.10 Artful Aardvark, to be released 171019. The original system includes the Desktop Environment Gnome. After removing Gnome I have installed LXQt 0.11.1. LXQt is the Qt port and the upcoming version of LXDE, the Lightweight Desktop Environment. It is the product of the merge between the LXDE-Qt and the Razor-qt projects: A lightweight, modular, blazing-fast and user-friendly desktop environment.

The system language is ENGLISH.

Read more

5 benefits of contributing to open source projects

Filed under
OSS

Open source was once seen as a risky bet for the enterprise. If open source software was used at all it was by small companies, or by larger firms in stealthy pockets by IT and development professionals who saw the value of the model but couldn't "sell" it upstream.

To be fair, it was a different time with a different pace of business, and the open source model was a little too loose for most companies. Today? Open source is wearing figurative pinstripes while enabling companies of all sizes and industries to innovate at the pace of digital. And savvy companies are not only using it, but also contributing to open source projects to drive innovation, growth, and revenue.

Read more

LinuxAndUbuntu Review Of Pantheon Desktop Environment

Filed under
Linux
Reviews
Ubuntu

Pantheon is beautiful, lightweight, fast, simple and brings something new to Linux desktops. For Linux newbies, Pantheon is pretty straightforward and easy to use. For advanced users who prefer to tinker with their desktop, Pantheon is a no go as there is little to do in terms of customizations. Changing wallpapers and switching workspace could surely do with some simplification Nonetheless, I believe everyone who used Pantheon is going to be impressed with how beautiful this desktop environment is.

​The Pantheon desktop is definitely among the very best desktop environments. Currently, there are efforts to bring the Pantheon desktop to some major distributions such as Fedora and Arch. There is even a community version of Manjaro that comes with Pantheon. But if you really want to use this desktop go with elementary OS.

Read more

GNU/Linux Works, Microsoft Windows Stops Working

Filed under
GNU
Linux
Microsoft
  • Why Linux Works

    The Linux community works, it turns out, because the Linux community isn’t too concerned about work, per se. As much as Linux has come to dominate many areas of corporate computing – from HPC to mobile to cloud – the engineers who write the Linux kernel tend to focus on the code itself, rather than their corporate interests therein.

  • Windows 10 mandatory October KB4041676 update is causing machines to BSOD

    Today when people started waking up from their machines automatically updating during the night, however, they have been faced with a BSOD (Blue Screen of Death) instead of the Windows 10 desktop, and unfortunately, no-one seems to know why the installations are failing, only that it relates to KB4041676, which is yesterday's update.

  • Global shipments of PCs slump for 12th successive quarter, research suggests [iophk: "PCs no longer have any Windows or Microsoft stickers, hiding the infection"]

    An assessment by research and analysis outfit Gartner found that shipments totalled 67 million units in the third quarter of 2017; a decline of 3.6% on an annualised basis compared to the same quarter last year.

    The latest decline marked the 12th consecutive quarter of PC shipments slump.

  • The PC still isn't dead and the market is 'stabilising', says IDC

    In its Worldwide Quarterly Personal Computing Device Tracker, IDC announced worldwide shipments of traditional PCs, which includes desktops, notebooks, workstations, totalled 67.2 million units in the third quarter of 2017.

    While this translates into a slight year-over-year decline of 0.5 percent, IDC said [...]

Security: Updates, Reproducible Builds, T-Mobile, ATMs, Microsoft Outlook "Fake Crypto" and Accenture

Filed under
Security
  • Security updates for Tuesday
  • Reproducible Builds: Weekly report #128
  • T-Mobile customer data plundered thanks to bad API

    A bug disclosed and patched last week by T-Mobile in a Web application interface allowed anyone to query account information by simply providing a phone number. That includes customer e-mail addresses, device identification data, and even the answers to account security questions. The bug, which was patched after T-Mobile was contacted by Motherboard's Lorenzo Franceschi-Bicchierai on behalf of an anonymous security researcher, was apparently also exploited by others, giving them access to information that could be used to hijack customers' accounts and move them to new phones. Attackers could potentially gain access to other accounts protected by SMS-based "two factor" authentication simply by acquiring a T-Mobile SIM card.

  • Criminals stole millions from E. Europe banks with ATM “overdraft” hack

    Banks in several former Soviet states were hit with a wave of debit card fraud earlier this year that netted millions of dollars worth of cash. These bank heists relied on a combination of fraudulent bank accounts and hacking to turn nearly empty bank accounts into cash-generating machines. In a report being released by TrustWave's SpiderLabs today, SpiderLabs researchers detailed the crime spree: hackers gained access to bank systems and manipulated the overdraft protection on accounts set up by proxies and then used automated teller machines in other countries to withdraw thousands of dollars via empty or nearly empty accounts.

    While SpiderLabs' investigation accounted for about $40 million in fraudulent withdrawals, the report's authors noted, "when taking into account the undiscovered or uninvestigated attacks along with investigations undertaken by internal groups or third parties, we estimate losses to be in the hundreds of millions in USD." This criminal enterprise was a hybrid of traditional credit fraud and hacking. It relied on an army of individuals with fake identity documents, as these folks were paid to set up accounts at the targeted institutions with the lowest possible deposit. From there, individuals requested debit cards for the accounts, which were forwarded to co-conspirators in other countries throughout Europe and in Russia.

  • Buggy Microsoft Outlook Sending Encrypted S/MIME Emails With Plaintext Copy For Months

    Beware, If you are using S/MIME protocol over Microsoft Outlook to encrypt your email communication, you need to watch out.

    From at least last 6 months, your messages were being sent in both encrypted and unencrypted forms, exposing all your secret and sensitive communications to potential eavesdroppers.

    S/MIME, or Secure/Multipurpose Internet Mail Extensions, is an end-to-end encryption protocol—based on public-key cryptography and works just like SSL connections—that enables users to send digitally signed and encrypted messages.

  • Fake Crypto: Microsoft Outlook S/MIME Cleartext Disclosure (CVE-2017-11776)

    Outlook version XXX (we are still waiting for Microsoft to release detailed information and update the blog accordingly) was the first affected version. So any S/MIME encrypted mail written since that date might be affected.

    Unfortunately there is no easy solution to remediate the impact of this vulnerability (we are still waiting for Microsoft to release detailed information and update the blog).

    In cases where mails have been send to third parties (recipient is outside of the sender’s organization) remediation is not possible by the sending party, since the sender has no authority over the recipient’s mail infrastructure.

  • Accenture data leak: 'Keys to the kingdom' left exposed via multiple unsecured cloud servers

    A massive trove of sensitive corporate and customer data was left freely exposed to the public by Accenture, one of the world's biggest management firms. The tech giant left at least four cloud storage servers, which contained highly sensitive decryption keys and passwords, exposed to the public, without any password protections.

Ubuntu: elementaryOS Snaps, Kernel, MAAS, and Ubuntu Server

Filed under
Ubuntu
  • elementary on why snaps are right for their Linux distro

    elementary is the company behind the elementary OS Linux distribution and the associated app store. Celebrating their tenth anniversary this year, elementary began in 2007 with their first release in 2011. They are currently on their 4th release (Loki) and are working towards their 5th (Juno) with Jupiter, Luna and Freya as previous releases. At the Ubuntu Rally in New York, we spoke to elementary’s founder Daniel Fore and Systems Architect, Cody Garver, to discover what made snaps the right Linux application packaging format for their distro.

  • Kernel Team Summary- October 11, 2017
  • MAAS 2.3.0 beta 2 released!
  • Ubuntu Server Development Summary – 10 Oct 2017

    The purpose of this communication is to provide a status update and highlights for any interesting subjects from the Ubuntu Server Team. If you would like to reach the server team, you can find us at the #ubuntu-server channel on Freenode. Alternatively, you can sign up and use the Ubuntu Server Team mailing list.

Syndicate content

More in Tux Machines

Security: WPA2, CVE-2017-15265, Fuzzing, Hyperledger

  • Fedora Dev Teaches Users How to Protect Their Wi-Fi Against WPA2 KRACK Bug
    Former Fedora Project leader Paul W. Frields talks today about how to protect your Fedora computers from the dangerous WPA2 KRACK security vulnerability that affects virtually any device using the security protocol to connect to the Internet.
  • WPA2 was kracked because it was based on a closed standard that you needed to pay to read
    How did a bug like krack fester in WPA2, the 13-year-old wifi standard whose flaws have rendered hundreds of millions of devices insecure, some of them permanently so? Thank the IEEE's business model. The IEEE is the standards body that developed WPA2, and they fund their operations by charging hundreds of dollars to review the WPA2 standard, and hundreds more for each of the standards it builds upon, so that would-be auditors of the protocol have to shell out thousands just to start looking. It's an issue that Carl Mamamud, Public Resource and the Electronic Frontier Foundation have been fighting hard on for years, ensuring that the standards that undergird public safety and vital infrastructure are available for anyone to review, audit and criticize.
  • Patch Available for Linux Kernel Privilege Escalation
    The issue — tracked as CVE-2017-15265 — is a use-after-free memory corruption issue that affects ALSA (Advanced Linux Sound Architecture), a software framework included in the Linux kernel that provides an API for sound card drivers.
  • ​Linus Torvalds says targeted fuzzing is improving Linux security
    Announcing the fifth release candidate for the Linux kernel version 4.14, Linus Torvalds has revealed that fuzzing is producing a steady stream of security fixes. Fuzzing involves stress testing a system by generating random code to induce errors, which in turn may help identify potential security flaws. Fuzzing is helping software developers catch bugs before shipping software to users.
  • Devsecops: Add security to complete your devops process [Ed: more silly buzzwords]
  • Companies overlook risks in open source software [Ed: marketing disguised as "news" (and which is actually FUD)]
  • Q&A: Does blockchain alleviate security concerns or create new challenges?
    According to some, blockchain is one of the hottest and most intriguing technologies currently in the market. Similar to the rising of the internet, blockchain could potentially disrupt multiple industries, including financial services. This Thursday, October 19 at Sibos in Toronto, Hyperledger’s Security Maven Dave Huseby will be moderating a panel “Does Blockchain technology alleviate security concerns or create new challenges?” During this session, experts will explore whether the shared nature of blockchain helps or hinders security.

Games: Nowhere Prophet, Ebony Spire: Heresy, The First Tree, Daggerfall, Talos Principle

  • Nowhere Prophet, a single-player tactical roguelike with card-based battles has Linux support
    Nowhere Prophet [Official Site, itch.io], a single-player tactical roguelike with card-based battles is currently going through 'First Access' (itch's version of Early Access) and it has Linux support.
  • Ebony Spire: Heresy, a first-person turn-based dungeon crawler will release next month
    For fans of the classic first-person dungeon crawlers, Ebony Spire: Heresy [Steam] looks like it might scratch the itch. One interesting thing to note, is that Linux is the primary platform for the development of the game. It's really great to hear about more games actually developed on Linux! Even better, is that the source code for the game is under the MIT license. You can find the source on GitHub. The source is currently a little outdated, but the developer has told me that it will be updated when the Beta becomes available.
  • The First Tree, a short and powerful exploration game is now available on Linux
    The developer of The First Tree [itch.io, Steam, Official Site] email in to let everyone know that their beautiful 3rd-person exploration game is now on Linux 'due to a ton of requests'. Linux support arrived as part of a major patch, which improves gamepad support, adds an option to invert the Y-axis and Camera Sensitivity options are in too. On top of that, a bunch of bugs were also squashed.
  • The open source recreation of Daggerfall hits an important milestone
    Another classic game is getting closer to being fully playable natively on Linux. The project to recreate The Elder Scrolls II: Daggerfall in the Unity engine has hit an important milestone and now the the main quest is completely playable. Daggerfall is the second entry in Bethesda’s long-running Elder Scrolls series of role-playing games and was originally released way back in 1996. It was an ambitious game, with thousands upon thousands of locations to explore in an virtual game area the size of a small real-world nation. It’s a game that I personally lost a lot of time to way back in the day and I’m happy to see that a project that allows me to play it natively on Linux is coming along swimmingly.
  • The Talos Principle VR Launches With Linux Support
    Croteam has just released The Talos Principle VR, the virtual reality edition of their award-winning The Talos Principle puzzle game. SteamOS/Linux with the HTC Vive is supported alongside Windows. This VR-enhanced version of The Talos Principle is retailing for $39.99 USD.

Android Leftovers

Review: Google Pixel 2

If I had to pick the moment I most appreciated the Google Pixel 2, it would be when our airboat driver-slash-tour guide put a hot dog and a piece of raw chicken in his pocket, dove into the New Orleans swamp, and began playing with a giant gator named Who Dat. I’m no social media whiz, but I knew there was Instagram gold unfolding in front of me. So I pulled out my Pixel 2 XL, the larger of Google’s two new models, double-clicked on the power button to open the camera, and started snapping. Read more