Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Sunday, 18 Mar 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

A plan for rebooting an open source project

Filed under

Once in a while, you will have an open source project that needs care and feeding. Maybe you're just stepping into an existing project, and you need to figure out where the project is and where it needs to go. It needs a reboot. What do you do? How do you begin?

When I was in this situation, I was thrown into the deep end with a security issue. I spent a good eight months getting to know the community as we resolved that issue and other legacy infrastructure issues. After about a year, I finally felt like I had a good outline of the community and its challenges and strengths. I realized afterward that it would've been smarter if I had first invested time to review the project's status and create a strategy for how we tackled its needs.

Read more

Security: Slingshot, Symantec Certification Authorities, and DDoS Defense

Filed under
  • Potent malware that hid for six years spread through routers

    Slingshot—which gets its name from text found inside some of the recovered malware samples—is among the most advanced attack platforms ever discovered, which means it was likely developed on behalf of a well-resourced country, researchers with Moscow-based Kaspersky Lab reported Friday. The sophistication of the malware rivals that of Regin—the advanced backdoor that infected Belgian telecom Belgacom and other high-profile targets for years—and Project Sauron, a separate piece of malware suspected of being developed by a nation-state that also remained hidden for years.

  • Distrust of Symantec TLS Certificates

    A Certification Authority (CA) is an organization that browser vendors (like Mozilla) trust to issue certificates to websites. Last year, Mozilla published and discussed a set of issues with one of the oldest and largest CAs run by Symantec. The discussion resulted in the adoption of a consensus proposal to gradually remove trust in all Symantec TLS/SSL certificates from Firefox. The proposal includes a number of phases designed to minimize the impact of the change to Firefox users:

  • How Creative DDOS Attacks Still Slip Past Defenses

    Distributed denial of service attacks, in which hackers use a targeted hose of junk traffic to overwhelm a service or take a server offline, have been a digital menace for decades. But in just the last 18 months, the public picture of DDoS defense has evolved rapidly. In fall 2016, a rash of then-unprecedented attacks caused internet outages and other service disruptions at a series of internet infrastructure and telecom companies around the world. Those attacks walloped their victims with floods of malicious data measured up to 1.2 Tbps. And they gave the impression that massive, "volumetric" DDOS attacks can be nearly impossible to defend against.

Open Sourcing the Hunt for Exoplanets

Filed under

A Quick Look to Ubuntu 18.04 Beta 1

Filed under

Ubuntu 18.04 LTS "Bionic Beaver" Beta 1 released few days ago. This Beta 1 is the first pre-release version designed for testing to prepare the final release next April. I have installed Beta 1 and this short review covers where to download Bionic Beta 1, what applications available, how the desktop looks, how much RAM it takes, and more links and information about it. In short, Bionic Beta 1 brings GNOME 3.27 and Linux Kernel 4.15, with LibreOffice 6.0 and bunch of GNOME Applications, and with Firefox Quantum beside the improved Ubuntu Software. Finally, this article is for all of you wanting to know Bionic in brief without installing it. I hope you enjoy it!

Read more

Windows vs Linux in 2018

Filed under

Over the years, we've seen countless articles state that we're entering the fabled Year of the Linux Desktop. They cite the advantages of Linux. Other articles, still, have expressed that specific advantages don't matter – those who switch to Linux need to be motivated by a specific reason.

In any case, many of those switching will be migrating from Windows. So it's important to understand the core differences between Windows and Linux, now in 2018.

Read more

Also: Chromebooks with Touchscreen Will Soon Get a Brand-New, Android-Like Power Menu

Fedora 28 Release Date and New Features

Filed under

Here is Fedora 28 release date, features and everything important associated with it in one single article.
Read more

today's leftovers

Filed under

Linux, Microsoft, and Polls

Filed under
  • Linux 4.17 Will Be Another Exciting Kernel Cycle

    While the Linux 4.16 kernel release is still three weeks or so away, the Linux 4.17 kernel is already shaping up to be another exciting cycle.

  • Microsoft Helps Get A Computer Recycler Sentenced To 15 Months In Prison For Offering Unapproved Recovery Disks

    To ensure no good deed goes unpunished, Microsoft is trying to get a computer recycler tossed in prison because he almost provided Windows recovery disks to users who needed them. Eric Lundgren, who's made heroic efforts to prevent dangerous computer parts from filling landfills, is facing a 15-month sentence and a $50,000 fine for manufacturing 28,000 recovery disks. His sentence is based on two charges: conspiracy and copyright infringement.

    Tom Jackman has the whole story at the Washington Post and it's half-tragedy, half-farce. Lundgren runs a company that prevents tens of millions of pounds of harmful chemicals and metals from ending up in landfills. In return for doing more than his part to save the planet, he'll gets a chance to spend a year in jail and hand Microsoft $50,000 in compensation for sales it never "lost" from recovery discs he never got a chance to distribute.

  • Best Laptop

    The ThinkPad began life at IBM, but in 2005, it was purchased by Lenovo along with the rest of IBM's PC business. Lenovo evolved the line, and today the company is well known as a geek favorite. Lenovo's ThinkPads are quiet, fast and arguably have one of the best keyboards (fighting words!). Linux Journal readers say Lenovo's Linux support is excellent, leaving many to ponder why the company doesn't ship laptops with Linux installed.

  • Best Linux Desktop Environment

Software: IG:dm, GRV, Home Assistant, KEXI, Karton, GNOME 3.28 Imminent

Filed under
  • IG:dm – A Desktop Client for Sending Instagram Direct Messages

    Not too long ago we released an article on an unofficial Instagram desktop app for Linux, Ramme. Awesome app; except that you are still limited to sending direct messages with your phone’s Instagramm app. Today, we bring good news to you in the form of IG:dm.

    IG:dm is a free, unofficial Instagram desktop client with which you can send direct Instagram messages from your desktop.

  • GRV – A Tool for Viewing Git Repositories in Linux Terminal

    GRV (Git Repository Viewer) is a free open-source and simple terminal-based interface for viewing git repositories. It provides a way to view and search refs, commits, branches and diffs using Vi/Vim like key bindings. It’s behavior and style can be easily customized through a configuration file.

  • Home Assistant 0.65: Rename entities, new filter sensor, UpCloud and Channels

    Release 0.65 has arrived and oh boy, is it awesome. First off, in case you have missed the previous release notes and announcements: Starting with this release, Home Assistant has dropped support for Python 3.4. The minimum supported version is now Python 3.5.3. If you are on or Docker, you’ll automatically be running the latest and greatest. If you’re on an older Hassbian installation or did your own Linux setup you’ll need to upgrade to at least Python 3.5.3.


  • KEXI 3.1 Released As Open-Source/Free Alternative To Microsoft Access

    ...over 200 bug fixes and more comprising this new KDE software package release.

  • Karton 1.0 Released For Running Linux Programs on macOS & Other Distros/Architectures

    Karton is a Docker-based solution for running Linux programs on macOS or other Linux distributions as well as different architectures.

    Karton makes use of Docker in making it easy to deploy a Linux distribution and then what package(s) to install and then what directories to make available to the host operating system. Karton makes the containers semi-persistent and easy to handle for a smooth experience short of configuring Docker yourself.

  • Karton 1.0

    By using Docker, Karton manages semi-persistent containers with easy to use automatic folder sharing and lots of small details which make the experience smooth. You shouldn’t notice you are using command line programs from a different OS or distro.

  • GNOME 3.28 Is Being Released This Next Week With Many Features & Improvements

    Assuming no last minute snafu, the GNOME 3.28 desktop environment will see its official release happen on 14 March, incorporating the past six months worth of improvements to this open-source desktop stack.

    There have been many improvements to GNOME 3.28, many of the changes we find most exciting have been outlined below.

    - Improvements to the Wayland support have continued with the Mutter compositor becoming quite solid with its Wayland support with additions this cycle like the GTK text input protocol and XWayland keyboard grabbing. When Mutter is acting as a Wayland compositor, among other changes, it now supports GBM with modifiers to support tiling and compression of scanout surfaces.

Red Hat and Fedora: OpenShift, FIPS 140-2, Fedora 28 and More

Filed under
Red Hat

Debian and Ubuntu: Debian LTS, Debian 9.4, Zstd and More

Filed under
  • Debian LTS work, February 2018

    I was assigned 15 hours of work by Freexian's Debian LTS initiative and worked 13 hours. I will carry over 2 hours to March.

    I made another release on the Linux 3.2 longterm stable branch (3.2.99) and started the review cycle for the next update (3.2.100). I rebased the Debian package onto 3.2.99 but didn't upload an update to Debian this month.

  • Debian 9.4 Stretch GNU/Linux Released With 150+ Fixes: Update Now

    One of the great things about using a popular Linux distro is that you keep getting timely upgrades, which ensure that you’re running a secure operating system. The same holds true for Debian GNU/Linux, whose development team keeps offering regular updates. Just a couple of days ago, the team pushed the fourth point release of Debian 9 “stretch.”

    For those who don’t know, Debian 9.0 series is an LTS edition, and it’ll remain supported for the next five years.

  • Debian GNU/Linux 9.4 "Stretch" Point Release Brings More Than 70 Security Fixes

    The Debian Project announced over the weekend the release of the fourth maintenance update to the stable Debian GNU/Linux 9 "Stretch" operating system series.

    Debian GNU/Linux 9.4 "Stretch" comes three months after the 9.3 point release and brings more than 70 security fixes and 89 miscellaneous bugfixes for various core components or other packages available in the main software repositories of the Linux-based operating system. However, the Debian Project warns that this point release doesn't represent a new version of Debian Stretch.

    "This point release mainly adds corrections for security issues, along with a few adjustments for serious problems. Security advisories have already been published separately and are referenced where available. Please note that the point release does not constitute a new version of Debian 9 but only updates some of the packages included," reads the release announcement.

  • Debian 9.4 released
  • Ubuntu Installs Made 10% Faster Using Facebook Tech

    If you long to install Ubuntu a little bit faster help it at hand thanks to some nifty open-source tech developed by Facebook.

    Using Zstandard (zstd), a ‘lossless data compression algorithm’ developed by Facebook, Ubuntu developers have been able to speed up Ubuntu installs by 10%.

    While Zstd is primarily designed for use in “real-time compression scenarios” it is able to unpack packages during an Ubuntu install faster than current compression tools Xz and Gzip do.

  • Canonical Working On Zstd-Compressed Debian Packages For Ubuntu

    Support for Zstd-compressed Debian packages was worked on last week by some Canonical/Ubuntu developers and already by the end of the year they are looking at potentially using it by default.

    Zstd is the compression algorithm out of Facebook that has been attracting a fair amount of interest in the Linux/open-source space due to its higher decompression speeds that can trump XZ or Gzip.

  • Keeping Governance Simple and Uncomplicated

    We did this in Ubuntu. We started with some core governance boards (the Community Council, focused on community policy and the Technical Council focused on technical policy). The rest of the extensive governance structure came as Ubuntu grew significantly. Our goal was always to keep things as lightweight as possible.

  • Ubuntu 18.04 LTS Beta 1 Released for Participating Flavors

    Ahoy, Beavers! The first beta builds of the Ubuntu 18.04 release cycle have been released and are available to download.


OSS Leftovers

Filed under

Programming/Development: GSoC 2018, LLVM, GitLab and More

Filed under
  • Student Applications For GSoC 2018 Now Open

    If you are a university student and would like to pursue a career in Linux/open-source software development, a great way to get a jump-start on that is through Google's annual Summer of Code program. Student applications for GSoC 2018 are now being accepted.

  • What’s new in LLVM

    The LLVM compiler framework has gone from being a technological curiosity to a vital piece of the modern software landscape. It is the engine behind the Clang compiler, as well as the compilers for the Rust and Swift languages, and provides a powerful toolkit for creating new languages.

    It is also a fairly fast-moving project, with major point revisions announced every six months or so. Version 6.0, released earlier this month, continues LLVM’s ongoing mission to deepen and broaden support for a variety of compilation targets. The update also adds many timely fixes to guard against recently discovered processor-level system attacks.

  • GitLab: 2018 is the year for open source and DevOps

    DevOps and open source aren’t slowing down anytime soon, a newly released report revealed. GitLab released its 2018 Global Developer Survey on developers’ perception of their workplace, workflow, and tooling within IT organizations.

    The demand for DevOps continues to grow, even though there are still challenges created by outdated tools and company resistance to change. According to the report, only 23 percent identify DevOps as their development methodology. However, IT management has named DevOps as one of the top three areas of investment in 2018, indicating that the number of DevOps adopters is sure to grow this year.

  • 11 considerations for picking the right technology

    There are myriad open source projects available for just about every component of a modern software stack—the array of choices can be dizzying, especially when starting from scratch or making many choices at once. With the above criteria in mind, however, you should be better equipped to think rationally about your needs and how each of your options might or might not suit them. Happy hunting!

Mozilla: Rust's 2018 Roadmap, This Week In Servo 107, TenFourFox FPR6 available

Filed under
  • Rust Gets A 2018 Roadmap, Big "Productivity" Edition Planned This Year

    The developers behind the Rust programming language have put out a road-map for the year as well as details on the forthcoming "Rust 2018" Edition that succeeds the 1.x release series.

  • Rust's 2018 roadmap

    Each year the Rust community comes together to set out a roadmap. This year, in addition to the survey, we put out a call for blog posts in December, which resulted in 100 blog posts written over the span of a few weeks. The end result is the recently-merged 2018 roadmap RFC.

  • This Week In Servo 107

    In the last week, we merged 85 PRs in the Servo organization’s repositories.

    Congratulations to waywardmonkeys for their new mandate to review and maintain the low-level harfbuzz bindings, and their work to create safe higher-level bindings!

  • Cameron Kaiser: TenFourFox FPR6 available

    TenFourFox Feature Parity Release 6 is now available for testing (downloads, hashes, release notes). Other than finishing the security patches and adding a couple more entries to the basic adblock, there are no other changes in this release. Assuming no issues, it will become live Monday evening Pacific time as usual.

    The backend for the main download page at Floodgap has been altered such that the Downloader is now only offered to browsers that do not support TLS 1.2 (this is detected by checking for a particular JavaScript math function Math.hypot, the presence of which I discovered roughly correlates with TLS 1.2 support in Google Chrome, Microsoft Edge, Safari and Firefox/TenFourFox). This is to save bandwidth on our main server since those browsers are perfectly capable of downloading directly from SourceForge and don't need the Downloader to help them. This is also true of Leopard WebKit, assuming the Security framework update is also installed.

Eric S Raymond's UPS Rant and Solution

Filed under
  • [Older] UPSes suck and need to be disrupted


    I use a UPS (Uninterruptible Power Supply) to protect the Great Beast of Malvern from power outages and lightning strikes. Every once in a while I have to buy a replacement UPS and am reminded of how horribly this entire product category sucks. Consumer-grade UPSes suck, SOHO UPSs suck, and I am reliably informed by my friends who run datacenters that no, you cannot ascend into a blissful upland of winnitude by shelling out for expensive “enterprise-grade” UPSes – they all suck too.

  • Eric S Raymond Taking To Working On An Open Hardware / Open-Source UPS

    ESR is very unhappy with the state of UPS power supplies and he is hoping for an open-source, easily buildable design could change the landscape. At the moment the focus is on just pushing out the PCB schematics and design for such a unit with users left to build the UPS yourself, but he has said he wouldn't mind if some startup or other company ends up making use of these open-source plans to bring a better UPS to market.

  • Eric Raymond's New UPS Project, Ubuntu's Bionic Beaver 18.04 Beta Released, Kernel Prepatch 4.16-rc5 and More

    The Upside project is hosted on GitLab and "is currently defining requirements and developing a specification for a 'high quality UPS that can be built from off-the-shelf parts in any reasonably well-equipped makerspace or home electronics shop'."

Servers/Containers: Kubernetes, Former Docker CEO, and Linux Foundation Boosting Microsoft

Filed under

Lego-based hacker kit offers choice of Arduino or Raspberry Pi

A “Leguino” educational hacker kit launching on Kickstarter lets you extend Lego projects with Lego form-factor gears, motors, displays, sensors, and breadboards, controlled by a “Visuino” GUI dev environment running on an Arduino or RPi Zero W.

A Belfast based startup called Leguino has launched a Kickstarter project for a Leguino robotics and hacking kit designed to integrate with existing Lego parts. The kit provides a variety of add-on sensors, motors, and other gizmos as Lego-style bricks for easy integration with Lego designs. Most of the lower cost designs are sold in kits with Arduino Uno or Nano bricks, but one higher-end kit is powered by a Raspberry Pi Zero W. Both the Arduino and RPi-based kits can be programmed with a visual, drag-and-drop development kit called Visuino, which is based on the Rockbotic coding education software.

Read more

Syndicate content

More in Tux Machines

2018 Affiliate and Individual Member Election Results

The OSI would like to thank all of those who ran for the Board. Volunteering to serve the OSI and support the Open Source community is a tremendous commitment in time and energy--we truly appreciate their willingness to contribute to our continued success and participate in our ongoing work to promote and protect open source software, communities, and development as well as the ideals and ethos inherent to the open source movement. The winners of the 2018 Board of Directors elections are, VM Brasseur (elected by the Individual Membership) Chris Lamb (elected by the Affiliate Membership) Faidon Liambotis (elected by the Affiliate Membership) Josh Simmons (elected by the Individual Membership) Read more

Today in Techrights

Security Leftovers

Games and Wine: Dark Old Sun, Surviving Mars, Wine-Staging 3.4, Wine 3.4

  • Varied shoot 'em up Dark Old Sun adds Linux support, lots of different enemies and upgrades to try
    For those who can't get enough shoot 'em up action, Dark Old Sun [Steam] recently added Linux support and it looks pretty varied. It originally released on March 8th, with Linux support arriving only a few days later on the 16th.  It has three different game modes: An Arcade/Story mode with 6 different stages, a Challenge mode and a Survival mode where you face off against waves of enemies and random events.
  • Surviving Mars already has a fix out for the Linux text problem, plus more thoughts
  • Looking for a Battle Royale game that works on Linux? 2D browser-based is one
    I know, a bunch of you are probably already running away due to it being browser-based, but I find that really quite interesting. is actually not bad at all. Basic of course, since it's a top-down 2D game that runs directly in the browser, but that's also what makes it so interesting. You can play it on basically anything and if you want to team up with someone, it generates a link for you to send them and away you go. You can also play with strangers on a team as well, which also works surprisingly well with the simple emotes system to give them a thumbs up, or a sad face.
  • Wine-Staging 3.4 Released With MS Office Anti-Aliased Fonts, BattlEye Fixes
    Fresh off the release of Wine 3.4 on Friday, the maintainers corralling the Wine-Staging releases have now put out their second modern release. Wine-Staging 3.4 was released minutes ago since Alistair Leslie-Hughes managed to take-over the Wine-Staging maintenance and get out the recent v3.3 release. They have continued re-basing their patches against Wine upstream, more than 1000 in total. They are also working to upstream those patches where appropriate.
  • Wine 3.4 released with more Vulkan support
    Another Wine development release with Wine 3.4 that continues to add in more Vulkan support making another exciting release.