Language Selection

English French German Italian Portuguese Spanish

Web

Kiwi TCMS 8.2 and WordPress Tales

Filed under
Web
  • Kiwi TCMS 8.2

    We're happy to announce Kiwi TCMS version 8.2!

  • Contact Form 7 Datepicker Taken down from WordPress Plugin Repository

    With great power comes great responsibility. Recently a WordPress plugin with as many as 100,000 installations was taken down from WordPress plugin repository due to a severe vulnerability.

    The Wordfence team found a severe vulnerability in Contact Form 7 Datepicker, a WordPress plugin allows to show datepicker in forms created with a very popular plugin Contact Form 7. Though the vulnerability does not affect Contact Form 7 but anyone with Contact Form 7 Datepicker on site, should immediately deactivate and uninstall the plugin from the site.

  • The Month in WordPress: March 2020

    The month of March was both a tough and exciting time for the WordPress open-source project. With COVID-19 declared a pandemic, in-person events have had to adapt quickly – a challenge for any community. March culminated with the release of WordPress 5.4, an exhilarating milestone only made possible by dedicated contributors. For all the latest, read on.

Better than Zoom: Try these free software tools for staying in touch

Filed under
Web

In times like these it becomes all the more important to remember that tools like Zoom, Slack, and Facebook Messenger are not benign public services, and while the sentiment they've expressed to the global community in responding to the crisis may be sincere, it hasn't addressed the fundamental ethical issues with any piece of proprietary software.

After taking the LibrePlanet 2020 conference online, we received a number of requests asking us to document our streaming setup. As the pandemic grew worse, this gave way to more curiosity about how the Free Software Foundation (FSF) uses free tools and free communication platforms to conduct our everyday business. And while the stereotype of hackers hunched over a white on black terminal session applies to us in some ways, many of the tools we use are available in any environment, even for people who do not have a lot of technical experience. We've started documenting ethical solutions on the LibrePlanet wiki, in addition to starting a remote communication mailing list to help each other advocate for their use.

In the suggestions that follow, a few of the tools we will recommend depend upon some "self-reliance," that is, steering clear of proprietary network services by hosting free software solutions yourself, or asking a technical friend to do it for you. It's a difficult step, and the benefits may not be immediately obvious, but it's a key part of preserving your autonomy in an age of ubiquitous digital control.

To those who have the technical expertise and available infrastructure, we urge you to consider hosting instances of free communication platforms for your friends, family, and your community at large. For example, with a modest server and some GNU/Linux knowledge, you could help local students learn in freedom by volunteering to administer an instance of one of the programs we'll be recommending below.

The need to self-host can be an uncomfortable reminder of our dependence on the "cloud" -- the network of someone else's computers -- but acknowledging our current reliance on these providers is the first step in making new, dependable systems for ourselves. During dangerous and stressful times, it's tempting to sideline our ethical commitments for easier or more convenient ways to get things done, and software freedom is no exception. We hope these suggestions will inspire you to inform others about the importance of their freedom, privacy, and security.

Read more

Jitsi Without Google and Videoconferencing as Malware

Filed under
Web
  • Videoconferencing with #privacy

    Videoconferencing is on the rise worldwide with the COVID-19 crisis. But did you know that most videoconferencing software is NOT offering any guarantee about your privacy?

    Even some nice open source software such as Jitsi is relying on some Google services.

  • Zoom Is Leaking Emails And Photos Of Users

    It has reported that the popular video-conferencing app Zoom is leaking email addresses and photos of its users to the unknown people and Zoom is giving strangers the ability to attempt to start a video call with those users.

    Zoom Is Leaking Emails And Photos Of Users

    Zoom meetings are not end-to-end (E2E) encrypted. Zoom’s spokesperson told The Intercept, “It is not possible to enable E2E encryption for Zoom video meetings.”

    In E2E encryption, no one can read your conversation, not even the company.

WordPress 5.4 “Adderley”

Filed under
OSS
Web

Here it is! Named “Adderley” in honor of Nat Adderley, the latest and greatest version of WordPress is available for download or update in your dashboard.

Read more

WordPress 5.4 RC5 and Load Balancing

Filed under
Server
OSS
Web
  • WordPress 5.4 RC5

    The fifth release candidate for WordPress 5.4 is live!

    WordPress 5.4 is currently scheduled to land on March 31 2020, and we need your help to get there—if you haven’t tried 5.4 yet, now is the time!

    You can test the WordPress 5.4 release candidate in two ways:

  • Best Performance WordPress with Google Cloud CDN and Load Balancing

    Best Performance WordPress with Google Cloud CDN and Load Balancing. Learn how to setup your WordPress application to handle high traffic with auto-scaling capabilities on Google Cloud Platform using HTTP(S) Layer 7 Load Balancing.

    In this guide you will install WordPress, configure your website to use Google Cloud Storage for media files, setup instance template, auto-scaling group to manage live traffic. You will also configure Google Cloud CDN for your website.

Tails Call for testing: 4.5~rc1

Filed under
Security
Web
Debian

Tails 4.5, scheduled for April 7, will be the first version of Tails to support Secure Boot.

You can help Tails by testing the release candidate for Tails 4.5 now.

Read more

qBittorrent v4.2.2 release

Filed under
Software
Web

There's a "qBittorrent" app on the Windows Store which costs money. It isn't an official release nor it is coming from us. The person publicizing it doesn't have permission to use the qBittorrent name/logo.

Read more

Also: qBittorrent 4.2.2 Released! How to Install it via PPA

Internet: Remote Work, Daniel Stenberg on Curl and QUIC/HTTP/3

Filed under
Software
Web
  • Our Essential List of Free Software for Remote Work

    Team chat has already become an essential tool for teams looking to be more collaborative and less reliant on email. At Purism we use Matrix for team chat, 1 to 1 calls, video conferencing via Jitsi (open source video conferencing), adhoc file sharing and all our community chat channels. Matrix is a distributed (federated) network, similar to email, which means you can communicate across Matrix servers and compatible services.

    You can self host Matrix or use a public instance like our own free Librem Chat service part of Librem One. All the goodness of Matrix conveniently hosted for you and accessible with one account that also gives you access to Librem Social, our hosted Mastodon instance, and our premium services: end-to-end encrypted email and VPN.

    [...]

    Most office-based teams already have email and things like a company newsletter but we thought we’d share how we manage ours. Our company email and Librem Mail are powered by Dovecot and we use GNU Mailman for our newsletter and mailing lists.

  • Daniel Stenberg: A curl dashboard

    When I wrote up my looong blog post for the curl’s 22nd anniversary, I vacuumed my home directories for all the leftover scripts and partial hacks I’d used in the past to produce graphs over all sorts of things in the curl project. Being slightly obsessed with graphs, that means I got a whole bunch of them.

    I made graphs with libreoffice

    I dusted them off and made sure they all created a decent CSV output that I could use. I imported that data into libreoffice’s calc spreadsheet program and created the graphs that way. That was fun and I was happy with the results – and I could also manually annotate them with additional info. I then created a new git repository for the purpose of hosting the statistics scripts and related tools and pushed my scripts to it. Well, at least all the ones that seemed to work and were the most fun.

    Having done the hard work once, it felt a little sad to just have that single moment snapshot of the project at the exact time I created the graphs, just before curl’s twenty-second birthday. Surely it would be cooler to have them updated automatically?

  • A QUIC look at HTTP/3

    Each HTTP session requires a TCP connection which, in turn, requires a three-way handshake to set up. Once that is done, "we can send data in a reliable data stream", Stenberg explained. TCP transmits data in the clear, so everyone can read what is transferred; the same thus holds true for the non-encrypted HTTP protocol. However, 80% of requests today are using the encrypted version, called Hypertext Transfer Protocol Secure (HTTPS), according to statistics of Mozilla (Firefox users) and Google (Chrome users). "The web is getting more and more encrypted", Stenberg explained. HTTPS uses Transport Layer Security (TLS); it adds security on the top of the stack of protocols, which are (in order): IP, TCP, TLS, and HTTP. The cost of TLS is another handshake that increases the latency. In return, we get privacy, security, and "you know you're talking to the right server".

    HTTP/1 required clients to establish one new TCP connection per object, meaning that for each request, the browser needed to create a connection, send the request, read the response, then close it. "TCP is very inefficient in the beginning", Stenberg explained; connections transmit data slowly just after being established, then increase the speed until they discover what the link can support. With only one object to fetch before closing the connection, TCP was never getting up to speed. In addition, a typical web page includes many elements, including JavaScript files, images, stylesheets, and so on. Fetching one object at a time is slow, so browser developers responded by creating multiple connections in parallel.

    That created too many connections to be handled by the servers, so typically the number of connections for each client was limited. The browser had to choose which of its few allowed connections to use for the next object; that led to the so-called "head-of-line blocking" problem. Think of a supermarket checkout line; you might choose the one that looks shortest, only to be stuck behind a customer with some sort of complicated problem. A big TCP efficiency improvement was added for HTTP/1.1 in 1997: open TCP connections can be reused for other requests. That improved the slow-start problem, but not the head-of-line blocking issue, which can be made even worse.

Nextcloud: The Swiss Army Knife of Remote Working Tools

Filed under
Software
OSS
Web

Remote working culture has been booming for past few years in coding, graphics and other IT related fields. But the recent Coronavirus pandemic has made it mandatory for the companies to work from home if it’s possible for them.

While there are tons of tools to help you and your organization in working from home, let me share one open source software that has the features of several such tools combined into one.

Read more

Comprehensive List of Web Browsers for Ubuntu

Filed under
Web
Ubuntu

In today’s modern age, there are a lot of web browsers to choose from, each offering something unique. To enjoy a great browsing experience, you must choose the right browser according to your needs. The following is a comprehensive list of web browsers for Ubuntu.

Firefox is and has always been the default web browser of Ubuntu. Founded in September of 2002, Firefox is a robust web browser. It is the main competitor of Chrome. In terms of privacy, it knocks Google out of the park. Firefox was declining, but it redeemed itself after it’s quantum update offering users a new beautiful UI and a lot of solid features. It also offers a lot of plugins.

Read more

Syndicate content

More in Tux Machines