Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Saturday, 21 Apr 18 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Security: Open Source Security Podcast, Old JavaScript Crypto Flaw and New FUD-based Marketing

Filed under
Security

Apple Threats

Filed under
Mac
  • Apple threatens leakers with criminal action in leaked memo – report

     

    The memo about leaking, which was leaked to Bloomberg and published on Friday, threatened employees with criminal consequences and shines a harsh light on the Silicon Valley company’s aggressive surveillance of its own employees and intensive investigative efforts to catch and punish leakers.  

  • In a Leaked Memo, Apple Warns Employees to Stop Leaking Information

     

    The Cupertino, California-based company said in a lengthy memo posted to its internal blog that it "caught 29 leakers," last year and noted that 12 of those were arrested. "These people not only lose their jobs, they can face extreme difficulty finding employment elsewhere," Apple added. The company declined to comment on Friday.

  • Apple's memo warning employees about leaking information is predictably leaked

    An internal memo warning Apple employees that leaking information could result in legal action and criminal charges has, rather predictably, been leaked.

  • Apple Sued an Independent iPhone Repair Shop Owner and Lost

    Last year, Apple’s lawyers sent Henrik Huseby, the owner of a small electronics repair shop in Norway, a letter demanding that he immediately stop using aftermarket iPhone screens at his repair business and that he pay the company a settlement.

    Norway’s customs officials had seized a shipment of 63 iPhone 6 and 6S replacement screens on their way to Henrik’s shop from Asia and alerted Apple; the company said they were counterfeit.

    In order to avoid being sued, Apple asked Huseby for “copies of invoices, product lists, order forms, payment information, prints from the internet and other relevant material regarding the purchase [of screens], including copies of any correspondence with the supplier … we reserve the right to request further documentation at a later date.”

4 cool new projects to try in COPR for April

Filed under
Red Hat
Software

COPR is a collection of personal repositories for software that isn’t carried in Fedora. Some software doesn’t conform to standards that allow easy packaging. Or it may not meet other Fedora standards, despite being free and open source. COPR can offer these projects outside the Fedora set of packages. Software in COPR isn’t supported by Fedora infrastructure or signed by the project. However, it can be a neat way to try new or experimental software.

Here’s a set of new and interesting projects in COPR.

Read more

The Best Free Office Suites for Linux in 2018

Filed under
LibO
OSS
OOo

FossMint is particular about FOSS and related projects or partnerships. Sadly, though, not all the applications that are vital to certain needs fall under that category. Maybe someday they will but until then, potential users deserve the right to know about all their alternatives.

All the listed software are free to use with similar features to the ones in Microsoft’s Office Suite and even documents that are compatible with the same.

Some are desktop software while others are browser-based so you have the option to choose which one better suits your setup.

Read more

10 Best Media Server Software for Linux in 2018

Filed under
GNU
Linux
Movies

A media server is simply a specialized file server or computer system for storing media (digital videos/movies, audio/music, and images) which can be accessed over a network.

In order to setup a media server, you need computer hardware (or perhaps a cloud server) as well as a software that enables you to organize your media files, and makes it easier to stream and/or share them with friends and family.

In this article, we will share with you a list of 10 best media server software for Linux systems. By the time you complete this article, you will be able to choose the most appropriate software to setup your home/office/cloud media server powered by a Linux system.

Read more

Also: 5 Reasons Kodi Users Should Just Switch To Plex Already

Add ‘New Document’ Option in Right Click Context Menu in Ubuntu 18.04

Filed under
HowTos

New versions of Ubuntu like 17.10, 18.04 etc don’t include the option to create a new text document in right-click context menu anymore. Here is how to bring that useful option back.
Read more

For project safety backup your people, not just your data

Filed under
OSS

The FSF was founded in 1985, Perl in 1987 (happy 30th birthday, Perl!), and Linux in 1991. The term open source and the Open Source Initiative both came into being in 1998 (and turn 20 years old in 2018). Since then, free and open source software has grown to become the default choice for software development, enabling incredible innovation.

We, the greater open source community, have come of age. Millions of open source projects exist today, and each year the GitHub Octoverse reports millions of new public repositories. We rely on these projects every day, and many of us could not operate our services or our businesses without them.

So what happens when the leaders of these projects move on? How can we help ease those transitions while ensuring that the projects thrive? By teaching and encouraging succession planning.

Read more

Also:

  • Dear software manager, working in the open for the very first time? Challenges (Sleepy

    When moving from managing software projects/teams in classic corporate environments into Open Source (FOSS) projects, there are several new challenges any front line manager will need to face.

  • Dear software manager, working in the open for the very first time? Face the challenges (II)

    Working in the open involve new challenges that requires a different mindset to be successfully faced by front line managers moving from corporate to Open Source projects. They will need to develop new habits and the most effective way to do so, in my view, is understanding since day one that your focus will need to move towards alignment instead of insisting in autonomy, according to my mental model. With that in mind, my advice is to pay special attention to those habits that will lead you to become a servant for your managees, promoting transparency by example…

  • Android: postmarketOS Update, Android P Names, and Fuchsia Friday

    Filed under
    Android
    Google
    • Introducing #postmarketOS-lowlevel

      As a community project, and one that encourages contributors to work on what they like, we have attracted people with a broad range of interests and skill levels. Recently a small hacking group #postmarketOS-lowlevel has emerged, and its masterminds @McBitter and @unrznbl are eager to introduce you to the madness that awaits when digging deeper and deeper in the embedded hardware and software stack.

      But before we get started, please keep in mind that these are moon shots. So while there is some little progress, it's mostly about letting fellow hackers know what we've tried and what we're up to, in the hopes of attracting more interested talent to our cause. After all, our philosophy is to keep the community informed and engaged during the development phase!

      For those new to postmarketOS, we are a group of developers, hackers, and hobbyists who have come together with a common goal of giving a ten year life cycle to mobile phones. This is accomplished by using a simple and sustainable architecture borrowed from typical Linux distributions, instead of using Android's build system. The project is at an early stage and isn't useful for most people at this point. Check out the newly-updated front page for more information, the previous blog post for recent achievements, and the closed pull requests to be informed about what's going on up to the current minute.

    • What Are Some Android P Name Predictions? We Found 17 Desserts
    • Fuchsia Friday: The dream team behind Google’s new OS

      On the Fuchsia team there are approximately 160 Google employees who have contributed to one of the four layers of Fuchsia. This is not counting managers and team leads who haven’t directly contributed code. Comparing it to other OS teams, this is not a significant number, and is a sign of the stage of development Google likely considers Fuchsia to be in.

    Review: Neptune 5.0

    Filed under
    Reviews

    What I tended to find with Neptune was if I stuck with the default settings and used applications in the normal or most straight forward fashion, then things went smoothly. But when I stepped off the straight and narrow path, things tended to unravel. Trying Enlightenment or Wayland sessions, for example, did not work well, but things went smoothly while using Plasma's X session. Checking for updates as soon as I logged in resulted in no packages being found, but if I waited for things to settle in the background and gave the operating system a few minutes, I'd eventually be told updates were available and could install them with a few clicks.

    There are a few rough edges here and there, but on the whole Neptune worked well. The stable Debian base combined with the latest version of Plasma, Chromium and LibreOffice were a good mixture. It gives us a solid base with lots of new features and I think that's a good combination, especially for me. There are some edge cases where I ran into minor problems and I didn't like that the settings panel didn't warn me before discarding changes, but otherwise I had a good week with Neptune. I think it's a good fit for relative newcomers to Linux and people looking for a balance between reliability and fresh desktop software.

    Read more

    Linux 4.17 RC 1

    Filed under
    Linux
    • Kernel prepatch 4.17-rc1

      Linus has released 4.17-rc1 and closed the merge window for this release.

    • Linux 4.17-rc1
    • Linux 4.17-rc1

      So two weeks have passed, and the merge window was pretty normal and
      is now closed.

      This does not seem to be shaping up to be a particularly big release,
      and there seems to be nothing particularly special about it. The most
      special thing that happened is purely numerology: we've passed the six
      million git objects mark, and that is reason enough to call the next
      kernel 5.0. Except I probably won't, because I don't want to be too
      predictable. The version numbers are meaningless, which should mean
      that they don't even follow silly numerological rules - even if v3.0
      and v4.0 happened to be at the 2M and 4M mark respectively.

      But v5.0 will happen some day. And it should be meaningless. You have
      been warned.

      Anyway, we do have a *few* other things that happened, like Arnd
      getting rid of a number of architectures that seem to simply not
      matter any more. If it turns out that somebody wants to resurrect any
      of them, the code is all there in the git history, but you'll have to
      do the work and show that you'll maintain it and have a few users.

      And just to not make it *all* about removing old architectures,
      there's a new one in there too.

      The architectures that are gone are blackfin, cris, frv, m32r, metag,
      mn10300, score, and tile. And the new architecture is the nds32
      (Andes Technology 32-0bit RISC architecture).

      We actually have a fair amount of other removal and cleanups too. I
      was somewhat pleasantly surprised by the number of pull requests that
      actually ended up removing a lot of lines. Some of it was staging
      drivers that finally gave up the ghost (like irda), but we also got
      rid of some copyright language boiler-plate in favor of just the spdx
      lines. And some pre-shipped lexer/parser files are no more, we're
      better off just generating them.

      End result: we actually removed more lines than we added:

      13538 files changed, 627723 insertions(+), 818855 deletions(-)

      which is probably a first. Ever. In the history of the universe. Or at
      least kernel releases.

      I'd call it momentous, but I think the arch removal was most of it,
      and I'm sure people will quickly rectify that momentary glitch of
      actually shrinking the kernel source code.

      Go out and test,

      Linus

    • Linux 4.17-rc1 Kernel Released: A Ton Of New Functionality While Shedding Old Code

      Just like clockwork the Linux 4.17-rc1 kernel was released tonight following the two week long merge window.

      See the Linux 4.17 features article published this morning to learn all about what's new in this kernel release. There is a ton of work from prominent AMD and Intel graphics driver updates to new hardware support and much more. As covered just a short time ago, Linux 4.17 power measurements are looking surprisingly good for lowering the power use while idling and also the power efficiency under load.

      More Linux 4.17 kernel benchmarks are on the way.

    • Linux 4.17 Offers Some Promising Power-Savings Improvements

      Of the many improvements to be found in the in-development Linux 4.17 kernel -- nicely summarized in our Linux 4.17 feature overview -- one of the features I've been anxious the most to begin benchmarking has been the reported power management improvements. Here are my initial power/performance tests of Linux 4.17 that for some systems is seeing a measurable drop in power usage, even in some cases under load while without sacrificing the performance.

    • The Many Great Features & Changes Coming For The Linux 4.17 Kernel

      Linus Torvalds is expected by the end of the day to release Linux 4.17-rc1, thereby marking the end of the two-week merge window that saw a lot of changes and new features land for Linux 4.17. Here is our original feature overview of the changes to be found in this next major release of the Linux kernel, which should premiere as stable by the middle of June.

      While many of you have likely not even upgraded yet to the feature-packed Linux 4.16, there is a lot more coming to look forward to with the Linux 4.17 kernel this summer. There are many Intel/AMD graphics driver improvements, support for obsolete CPU architectures being dropped, some new CPU support added including initial bits for the NVIDIA Xavier SoC, a potentially very big improvement for dropping Linux idle power usage, various file-system improvements, new hardware support, and even improvements for the Macintosh PowerBook 100 series from more than 20 years ago.

    Black Lab Enterprise Linux 11.60 Mate Edition released

    Filed under
    GNU
    Linux

    Today we are very happy to announce the release of Black Lab Enterprise Linux Mate released. Our Mate desktop is based on Ubuntu MATE 16.04.3 with a lot of other enhancements and fixes.. Black Lab Mate is available for download today and you can get it from our ibiblio download servers.

    Read more

    Red Hat and Fedora News

    Filed under
    Red Hat
    • Into The Unknown - My Departure from RedHat

      In May 2006, a young starry eyed intern walked into the large corporate lobby of RedHat's Centential Campus in Raleigh, NC, beginning what would be a 12 years journey full of ups and downs, break-throughs and setbacks, and many many memories. Flash forward to April 2018, when the "intern-turned-hardend-software-enginner" filed his resignation and ended his tenure at RedHat to venture into the risky but exciting world of self-employment / entrepreneurship... Incase you were wondering that former-intern / Software Engineer is myself, and after nearly 12 years at RedHat, I finished my last day of employment on Friday April 13th, 2018.

      Overall RedHat has been a great experience, I was able to work on many ground-breaking products and technologies, with many very talented individuals from across the spectrum and globe, in a manner that facilitated maximum professional and personal growth. It wasn't all sunshine and lolipops though, there were many setbacks, including many cancelled projects and dead-ends. That being said, I felt I was always able to speak my mind without fear of reprocussion, and always strived to work on those items that mattered the most and had the furthest reaching impact.

    • Wedbush Securities Cut Its Abbvie (ABBV) Holding; Red Hat (RHT)’s Sentiment Is 1.12
    • Red Hat, Inc. (RHT) held by 74 SEC 13F Filers
    • Fedora Infrastructure hackfest 2018

      Last week I had the pleasure of attending the 2018 Infrastructure Hackfest in Fredricksberg, VA. It was a very productive week and very nice to meet up face to face with a lot of folks I work with mostly over IRC and email.

      Travel went pretty well for me (direct flights, 4-5 hours each way) and the hotel worked out nicely. I liked that the hotel had a big table (with power!) in the corner of the lobby for us to use in evenings for more hacking. Our day workspace was a classroom at a nearby grad college. Aside from some firewall issues monday morning (They were blocking everything but 80/443) it worked pretty well too. Lots of tables we could move around, and whiteboards/projector.

    • Fedora 28 Anaconda Test Day 2018-04-16
    • Fedora 28 : The VS Code on Fedora.

    Egmde in Ubuntu and Making It Look Like Vista 10

    Filed under
    Ubuntu
    • Egmde: keymap and wallpaper

      I recently (re)introduced a simple shell based on Mir: egmde. This shell is just the code needed to illustrate these articles and, maybe, inspire others to build on it but it is not intended to be a product.

      At the end of the last article we could run egmde as a desktop and run and use Wayland based applications.
      Those of us in Europe (or elsewhere outside the USA) will soon notice that the keyboard layout has defaulted to US, so I’ll show how to fix that. And the black background is rather depressing, so I’ll show how to implement a simple wallpaper; and, finally, how to allow the user to customize the wallpaper.

    • Hacking With Mir's EGMDE Desktop To Support Different Keymaps, Custom Wallpapers

      At the end of March longtime Mir developer Alan Griffiths of Canonical announced EGMDE, the Mir Desktop Environment as a desktop example implementing Mir/MirAL APIs and supporting Wayland clients. Griffiths has now put out his latest article in guiding interested developers in working with the code.

    • Want to make Ubuntu look like Windows 10?

      As a man with a keen eye for aesthetic details, I do like the concept of trying to make operating systems mimic their rivals, provided this can be done with elegance, style, quality and attention to detail. A great example would be the Macbuntu transformation pack. Including but not limited to.

      Now, Windows 10. Say what you will about it, it ain't ugly. It's actually a reasonably pretty distro, although the whole flatness deal is a bit overplayed. But since Linux can be made to look like anything, I set about testing, in Ubuntu, Kubuntu and even Linux Mint, to see whether this is something worth your time and decorative skills in the first place. Will this work? An open question. After me.

    Graphics: Mesa 18.0.1, AMD's GPUOpen and More

    Filed under
    Graphics/Benchmarks
    • Mesa 18.0.1 release candidate
    • Mesa 18.0.1 Being Released In A Few Days With About Four Dozen Fixes

      Mesa 18.0.1 is being planned for release on Wednesday as the first stable point release / maintenance update for this quarterly installment to Mesa 3D.

      Over Mesa 18.0 that premiered at the end of March there is so far 46 changes queued with today's Mesa 18.0.1 release candidate.

    • AMD's GPUOpen Has Opened The Window System Agent Library

      As part of the AMDVLK/XGL/PAL driver stack is now the WSA library.

      AMD's open-source developers maintaining their official Vulkan driver put out the source this week to WSA, the Window System Agent. WSA encapsulates windowing system details and basically serves as an abstraction layer so that e.g. AMDVLK can simply target WSA and doesn't need to deal with the underlying windowing system details itself.

    • Vulkan now fully functional on ASUS X550ZE

      Vulkan smoketest running on RADV
      Some minor issues need be to addressed like occasional glitches. Otherwise the performance is stable enough for dail use.

    • Testing RADV's Out-of-Order Rasterization Vulkan Performance

      With the RADV Vulkan driver recently landing improvements to its out-of-order rasterization support, I ran some performance benchmarks of this non-default feature to see if it made much of a deal for today's Vulkan Linux games.

    • Mesa's Gallium HUD Gets A Simple Option

      The Gallium3D Heads-Up Display (HUD) has matured into quite a useful option for Mesa users over the past several years. There is now a Gallium HUD "simple" option.

    Security: Cleartext Passwords, Windows Problems, and Meltdown Patches/Performance

    Filed under
    Security
    • cleartext passwords and transparency

      So let me just jump in with Lars blog post where he talks about cleartext passwords. While he has actually surmised and shared what a security problem they are, the pity is we come to know of this only because the people in question tacitly admitted to bad practises. How many more such bad actors are there, developers putting user credentials in cleartext god only knows. There was even an April Fool’s joke in 2014 which shared why putting passwords in cleartext is bad.

    • 911 operator suspended over teen’s death griped about working overtime.

      Plush called 911 again around 3:35 p.m., this time giving Smith a description of the vehicle, a gold Honda Odyssey in the parking lot at Seven Hills — information that never made it to the officers at the scene.

      “This is not a joke,” the teen told Smith. “I’m almost dead.”

      Smith tried to document the call when it came in but her computer screen had frozen, preventing her from entering information immediately, the review found.

    • Defense contractors face more aggressive ransomware attacks

      The rise of ransomware attacks against defense contractors coincides with a rise in the use of ransomware in general. Attacks can spread even after the original target has been hit, hurting unintended victims.

    • A Look At The Meltdown Performance Impact With DragonFlyBSD 5.2

      Besides looking at the HAMMER2 performance in DragonFlyBSD 5.2, another prominent change with this new BSD operating system release is the Spectre and Meltdown mitigations being shipped. In this article are some tests looking at the performance cost of DragonFlyBSD 5.2 for mitigating the Meltdown Intel CPU vulnerability.

      With DragonFlyBSD 5.2 there is the machdep.meltdown_mitigation sysctl for checking on the Meltdown mitigation presence and toggling it. Back in January we ran some tests of DragonFlyBSD's Meltdown mitigation using the page table isolation approach while now testing was done using the DragonFlyBSD 5.2 stable release.

    • A Last Minute Linux 4.17 Pull To Help Non-PCID Systems With KPTI Meltdown Performance

      While the Linux 4.17 kernel merge window is closing today and is already carrying a lot of interesting changes as covered by our Linux 4.17 feature overview, Thomas Gleixner today sent in a final round of x86 (K)PTI updates for Meltdown mitigation with this upcoming kernel release.

      This latest round of page-table isolation updates should help out systems lacking PCID, Process Context Identifiers. The KPTI code makes use of PCID for reducing the performance overhead of this Meltdown mitigation technique. PCID has been around since the Intel Westmere days, but now the latest kernel patches will help offset the KPTI performance impact for systems lacking PCID.

    BSD Leftovers

    Filed under
    BSD
    Syndicate content

    More in Tux Machines

    Mozilla: Virtual Reality in Mixed Reality, Taskcluster Development

    • Building Bold New Worlds With Virtual Reality
      From rich text to video to podcasts, the Internet era offers an array of new ways for creators to build worlds. Here at Mozilla, we are particularly excited about virtual reality. Imagine moving beyond watching or listening to a story; imagine also feeling that story. Imagine being inside it with your entire mind and body. Now imagine sharing and entering that experience with something as simple as a web URL. That’s the potential before us.
    • This Week in Mixed Reality: Issue 3
      This week we’re heads down focusing on adding features in the three broad areas of Browsers, Social and the Content Ecosystem.
    • New to me: the Taskcluster team
      At this time last year, I had just moved on from Release Engineering to start managing the Sheriffs and the Developer Workflow teams. Shortly after the release of Firefox Quantum, I also inherited the Taskcluster team. The next few months were *ridiculously* busy as I tried to juggle the management responsibilities of three largely disparate groups.
    • Taskcluster migration update: we're finished!
      Over the past few weeks we've hit a few major milestones in our project to migrate all of Firefox's CI and release automation to taskcluster. Firefox 60 and higher are now 100% on taskcluster!

    OSS Leftovers

    • After the First US Transaction, Propy Announces an Open Source Developer Program
      California-based blockchain startup Propy, is bringing the commercial use of blockchain technology to the US. After facilitating the first US Blockchain-based real estate deed in Vermont, Propy announced a new open source Developer Program. The idea behind Propy: it allows anyone to buy or sell real estate, anywhere, online. Propy provides an efficient crypto and fiat payment and an immutable record on the blockchain, ensuring that title deeds and property rights will be there forever.
    • Titus, the Netflix container management platform, is now open source
      Titus powers critical aspects of the Netflix business, from video streaming, recommendations and machine learning, big data, content encoding, studio technology, internal engineering tools, and other Netflix workloads. Titus offers a convenient model for managing compute resources, allows developers to maintain just their application artifacts, and provides a consistent developer experience from a developer’s laptop to production by leveraging Netflix container-focused engineering tools.
    • Netflix's Container Management System Is Now Open Source
      On Thursday Netflix announced it's made its home grown container management system, Titus, open source.
    • Lumina Networks on delivering open source SDN
      What kinds of companies should consider open source SDN, and what are the associated challenges in using such open source deployments? Lumina Networks has unrivalled expertise in working with customers and partners to deliver implementations, and explains its processes and outlines the benefits of using open source SDN.
    • Luxoft launches PELUX 1.0 open source platform for automotive
      Luxoft’s automotive division has launched PELUX 1.0, an open source platform available to developers. This has been developed from its PELUX software suite as used by carmakers and tier 1 suppliers to build converged infotainment, autonomous driving, communication, HMI and car body control systems.
    • Dev Preview: MongoDB Enterprise Running on OpenShift
      In order to compete and get products to market rapidly, enterprises today leverage cloud-ready and cloud-enabled technologies. Platforms as a Service (or PaaS) provide out-of-the-box capabilities which enable application developers to focus on their business logic and users instead of infrastructure and interoperability. This key ability separates successful projects from those which drown themselves in tangential work which never stops. In this blog post, we’ll cover MongoDB’s general PaaS and cloud enablement strategy as well as touch upon some new features of Red Hat’s OpenShift which enable you to run production-ready MongoDB clusters. We’re also excited to announce the developer preview of MongoDB Enterprise Server running on OpenShift. This preview allows you to test out how your applications will interact with MongoDB running on OpenShift.
    • Is Open Source The AI Nirvana for Intel? [Ed: openwashing a malicious company using buzzwords and urban myths]
    • Writing Chuck – Joke As A Service
      Recently I really got interested to learn Go, and to be honest I found it to be a beautiful language. I personally feel that it has that performance boost factor from a static language background and easy prototype and get things done philosophy from dynamic language background. The real inspiration to learn Go was these amazing number of tools written and the ease with which these tools perform although they seem to be quite heavy. One of the good examples is Docker. So I thought I would write some utility for fun, I have been using fortune, this is a Linux utility which gives random quotes from a database. I thought let me write something similar but let me do something with jokes, keeping this mind I was actually searching for what can I do and I landed up on jokes about Chuck Norris or as we say it facts about him. I landed up on chucknorris.io they have an API which can return different jokes about Chuck, and there it was my opportunity to put something up and I chose Go for it.

    today's howtos

    Security: Updates, IBM, Elytron and Container Vulnerability Scanning

    • Security updates for Friday
    • IBM Security launches open-source AI
      IBM Security unveiled an open-source toolkit at RSA 2018 that will allow the cyber community to test their AI-based security defenses against a strong and complex opponent in order to help build resilience and dependability into their systems.
    • Elytron: A New Security Framework in WildFly/JBoss EAP
      Elytron is a new security framework that ships with WildFly version 10 and Red Hat JBoss Enterprise Application Platform (EAP) 7.1. This project is a complete replacement of PicketBox and JAAS. Elytron is a single security framework that will be usable for securing management access to the server and for securing applications deployed in WildFly. You can still use the legacy security framework, which is PicketBox, but it is a deprecated module; hence, there is no guarantee that PicketBox will be included in future releases of WildFly. In this article, we will explore the components of Elytron and how to configure them in Wildfly.
    • PodCTL #32 – Container Vulnerability Scanning