Language Selection

English French German Italian Portuguese Spanish

Web

Put the internet back under your control with the FreedomBox

Filed under
OSS
Web

On today's internet, most of us find ourselves locked into one service provider or the other. We find ourselves tied down to Apple, Facebook, Google, or Microsoft for our e-mail, social networking, calendering -- you name it. It doesn't have to be that way. The FreedomBox Foundation has just released its first commercially available FreedomBox: The Pioneer Edition FreedomBox Home Server Kit. With it, you -- not some company -- control over your internet-based services.

The Olimex Pioneer FreedomBox costs less than $100 and is powered by a single-board computer (SBC), the open source hardware-based Olimex A20-OLinuXino-LIME2 board. This SBC is powered by a 1GHz A20/T2 dual core Cortex-A7 processor and dual-core Mali 400 GPU. It also comes with a Gigabyte of RAM, a high-speed 32GB micro SD card for storage with the FreedomBox software pre-installed, two USB ports, SATA-drive support, a Gigabit Ethernet port, and a backup battery.

Doesn't sounds like much does it? But, here's the thing: You don't need much to run a personal server.

Sure, some of us have been running our own servers at home, the office, or at a hosting site for ages. I'm one of those people. But, it's hard to do. What the FreedomBox brings to the table is the power to let almost anyone run their own server without being a Linux expert.

The supplied FreedomBox software is based on Debian Linux. It's designed from the ground-up to make it as hard as possible for anyone to exploit your data. It does this by putting you in control of your own corner of the internet at home. Its simple user interface lets you host your own internet services with little expertise.

Read more

WWW: Indie Web Server, Administrating Nextcloud and Project Spotlight on Drupal

Filed under
Web
  • Indie Web Server 8.1.1: Reverse proxy (local mode)
  • This site now runs on Indie Web Server

    In the interests of eating my own hamster food1, I just switched this site from nginx to Indie Web Server.

    The only complication in the process was that I had to update the hostname of the server to match the domain name.

  • Administrating Nextcloud as a Snap

    As I’ve described in both my Linux in Action book and Linux in Motion course, Nextcloud is a powerful way to build a file sharing and collaboration service using only open source software running on your own secure infrastructure. It’s DropBox, Skype, and Google Docs all rolled into one, but without the vendor lock-in, security, and privacy fears.
    While the platform is certainly well-designed and polished, the initial installation can be tricky. Looking for proof? Try manually installing Nextcloud on an Ubuntu 18.04 server using any one of the detailed instructions available around the internet. Sometimes everything goes smoothly, but not always. You might encounter packages no longer supported by the official upstream repositories or changed dependencies. Don’t blame the people who wrote those guides: blame the pace of change in official Linux software repositories.

  • FOSS Project Spotlight: Drupal

    Drupal is a content management framework, and it's used to make many of the websites and applications you use every day. Drupal has great standard features, easy content authoring, reliable performance and excellent security. What sets Drupal apart is its flexibility; modularity is one of its core principles. Its tools help you build the versatile, structured content that ambitious web experiences need. With Drupal, you can build almost any integrated experience you can imagine.

  • Carlos Soriano: DrupalCon

    Last week I went to DrupalCon in the lovely city of Seattle invited by Tim, the executive director of Drupal.

    Our plan was to have a panel discussion about the tooling we use in FOSS organization such as GNOME, Debian, Drupal, etc. Specially since we recently transitioned to GitLab. The panel discussion was between Tim himself, Alex Wirt from Debian, Eliran Mesika and Tina Sturgis from GitLab and me. We were 5 out of 9 featured speakers!

4 of the Best Web Browsers for Linux

Filed under
GNU
Linux
Web

There are plenty of web browsers for Linux these days, but not all of them support all distros. This makes it a little bit difficult to choose, but there are some viable options that still work with the ecosystem. The choice isn’t just dependent on your Linux distribution, but also on your preferred use cases.

While Linux desktops offer most of the web browsers you’d use on Windows and Mac, there are some lesser-known browsers that aren’t available for the latter two operating systems.

Our top four picks for the best browsers you can use on Linux support the majority of most top distros, but your distro’s performance may vary for each of these browsers.

Here are four of the best web browsers for Linux.

Read more

Android Browser Choice Screen in Europe

Filed under
Android
Google
Moz/FF
Web

Today, Google announced a new browser choice screen in Europe. We love an opportunity to show more people our products, like Firefox for Android. Independent browsers that put privacy and security first (like Firefox) are great for consumers and an important part of the Android ecosystem.

There are open questions, though, about how well this implementation of a choice screen will enable people to easily adopt options other than Chrome as their default browser. The details matter, and the true measure will be the impact on competition and ultimately consumers. As we assess the results of this launch on Mozilla’s Firefox for Android, we’ll share our impressions and the impact we see.

Read more

The Rapid Progress Of The AV1 Video Format Over The Past Year

Filed under
Movies
Moz/FF
Web

Mozilla presented at the NAB Streaming Summit last week over the state of the royalty-free AV1 video format aiming to compete with H.265/HEVC and succeeding VP9 for open-source use-cases.

In particular, a lot of AV1 progress was made over the past year compared to when the bitstream wasn't finalized, poor encoder performance, lack of AV1 support, and slow adoption. 2018 also brought the introduction of the Dav1d AV1 video decoder, more members joining the AOMedia Foundation, and other advancements.

Read more

Free Software in Web Multimedia

Filed under
OSS
Web
  • NAB 2019: Haivision Announces Peer-to-Peer Low-Latency Streaming for Its SRT Framework

    Prior to releasing SRT P2P to the open-source community, Haivision is seeking partners to collaborate and stress-test the technology at scale.

    [...]

    SRT P2P is the latest development for the SRT (Secure Reliable Transport) initiative that Haivision started in 2017 when the company open-sourced the SRT protocol and technology stack. SRT has been endorsed as a low-latency contribution and distribution streaming protocol by more than 200 companies across the broadcast and streaming industries. With a focus on video delivery, SRT P2P extends the SRT initiative to create a comprehensive framework for high-performance streaming from contribution through distribution and into delivery.

  • Netflix and Intel to Deploy AV1 CODEC For Content Streaming

    At The National Association of Broadcasters Show today, Intel and Netflix announced a new high-performance video codec that is available as open source and royalty-free to content creators, developers and service providers. Scalable Video Technology for AV1 (SVT-AV1) offers performance and scalability in video processing.

    AV1 is a royalty-free codec and offers improved compression compared to vp9 or hevc, the video bandwidth reduction can run upwards to 30 to 40 percent, without you seeing a difference. The best thing yet, this is a royalty-free model. 

  • NAB '19: Netflix and Intel Release SVT-AV1 Codec as Open Source

    This morning at NAB, Intel and Netflix together announced the SVT-AV1 codec which is capable of real-time 4K/60p 10-bit encoding when running on Intel Xeon Scalable processors and Intel Xeon D processors. To our knowledge, this is the first software-only AV1 implementation capable of real-time encoding and it represents an order of magnitude acceleration of AV1 encoding. The companies released SVT-AV1, or Scalable Video Technology for AV1, into the open source community for immediate availability.

Free Software Conquers the Web

Filed under
OSS
Web

Internet/WWW Software: Hugin 2019, Kiwi TCMS 6.7, Hugo Extended on CentOS 7, Curl Drops Pipelining

Filed under
Software
Web
  • Hugin 2019 Released! How to Install it in Ubuntu 18.04/16.04
  • Hugin-2019.0.0 Release Notes
  • Kiwi TCMS 6.7

    We're happy to announce Kiwi TCMS version 6.7! This is a small improvement and bug-fix update.

  • Hugo Extended on CentOS 7
  • curl says bye bye to pipelining

    HTTP/1.1 Pipelining is the protocol feature where the client sends off a second HTTP/1.1 request already before the answer to the previous request has arrived (completely) from the server. It is defined in the original HTTP/1.1 spec and is a way to avoid waiting times. To reduce latency.

    HTTP/1.1 Pipelining was badly supported by curl for a long time in the sense that we had a series of known bugs and it was a fragile feature without enough tests. Also, pipelining is fairly tricky to debug due to the timing sensitivity so very often enabling debug outputs or similar completely changes the nature of the behavior and things are not reproducing anymore!

    HTTP pipelining was never enabled by default by the large desktop browsers due to all the issues with it, like broken server implementations and the likes. Both Firefox and Chrome dropped pipelining support entirely since a long time back now. curl did in fact over time become more and more lonely in supporting pipelining.

Security: DNS, Google and Facebook

Filed under
Security
Web
  • Waves of DNS hijacking attempts target mostly D-Link routers

    Waves of DNS hijackings over the past three months, aimed at consumer-grade routers mostly from D-Link, have been diverting traffic from a number of well-known domains and directing them elsewhere.

  • Ongoing DNS hijackings target unpatched consumer routers

    A wave of DNS hijacking attacks that abuse Google's cloud computing service is causing consumer routers to connect to fraudulent and potentially malicious websites and addresses, a security researcher has warned.

  • Hiding in Plain Sight

    Cisco Talos is continually working to ensure that our threat intelligence not only accounts for the latest threats but also new versions of old threats, such as spam. This often means pursuing cybercriminals wherever they congregate. However, instead of wheeling-and-dealing using hidden servers on some mysterious dark web address, a surprisingly large number of cyber scofflaws prefer to operate right out in the open using social media. For example, Facebook is host to dozens of groups that serve as online marketplaces and exchanges for cybercriminals. Talos saw spam from services advertised in these Facebook groups show up in our own telemetry data, indicating a potential impact to Cisco customers from these groups.

    Over the past several months, Cisco Talos has tracked several groups on Facebook where shady (at best) and illegal (at worst) activities frequently take place. The majority of these groups use fairly obvious group names, including "Spam Professional," "Spammer & Hacker Professional," "Buy Cvv On THIS SHOP PAYMENT BY BTC," and "Facebook hack (Phishing)." Despite the fairly obvious names, some of these groups have managed to remain on Facebook for up to eight years, and in the process acquire tens of thousands of group members.

  • Cybercrime On Facebook Is Of Least Concern To Its Executives

    There is no better time for committing Cybercrime on Facebook than right now. At least that’s the intent the platform is displaying with its least bothered attitude.

    Cisco Talos — an online security research group, has released a report showcasing in detail the fearless existence of cybercrime on Facebook.

Events: HTTP Workshop, foss-north and SUSECON

Filed under
OSS
Web
SUSE
  • Daniel Stenberg: Workshop Season 4 Finale

    The 2019 HTTP Workshop ended today. In total over the years, we have now done 12 workshop days up to now. This day was not a full day and we spent it on only two major topics that both triggered long discussions involving large parts of the room.

    [...]

    Mike Bishop did an excellent presentation of HTTP/3 for HTTP people that possibly haven’t kept up fully with the developments in the QUIC working group. From a plain HTTP view, HTTP/3 is very similar feature-wise to HTTP/2 but of course sent over a completely different transport layer. (The HTTP/3 draft.)

    Most of the questions and discussions that followed were rather related to the transport, to QUIC. Its encryption, it being UDP, DOS prevention, it being “CPU hungry” etc. Deploying HTTP/3 might be a challenge for successful client side implementation, but that’s just nothing compared the totally new thing that will be necessary server-side. Web developers should largely not even have to care…

    One tidbit that was mentioned is that in current Firefox telemetry, it shows about 0.84% of all requests negotiates TLS 1.3 early data (with about 12.9% using TLS 1.3)

    Thought-worthy quote of the day comes from Willy: “everything is a buffer”

  • Daniel Stenberg: The HTTP Workshop 2019 begins

    35 persons from all over the world walked in the room and sat down around the O-shaped table setup. Lots of known faces and representatives from a large variety of HTTP implementations, client-side or server-side – but happily enough also a few new friends that attend their first HTTP Workshop here. The companies with the most employees present in the room include Apple, Facebook, Mozilla, Fastly, Cloudflare and Google – all with three each I believe.

    Patrick Mcmanus started off the morning with his presentation on HTTP conventional wisdoms trying to identify what have turned out as successes or not in HTTP land in recent times. It triggered a few discussions on the specific points and how to judge them. I believe the general consensus ended up mostly agreeing with the slides. The topic of unshipping HTTP/0.9 support came up but is said to not be possible due to its existing use. As a bonus, Anne van Kesteren posted a new bug on Firefox to remove it.

  • foss-north 2019 – it is happening

    This years experiments are the training day, and community day. Looking at the various RSVPs for the community day, it looks like we’ll be 130+ attendees. For the conference days we have only ten tickets left out of 240, beating last years record attendance with 90 people.

  • The Openness Continues: SUSECON Day 2 Recap

    Michael Miller then took the stage, provided an overview of the day and then welcomed Dr. Thomas Di Giacomo, President of Engineering, Product and Innovation to the stage.  But before diving into this discussion for the day, Thomas introduced a new SUSE video instructing everyone on the proper way to say “SUSE”.

Syndicate content

More in Tux Machines

Desktop GNU/Linux: Rick and Morty, Georges Basile Stavracas Neto on GNOME and Linux Format on Eoan Ermine

  • We know where Rick (from Rick and Morty) stands on Intel vs AMD debate

    For one, it appears Rick is running a version of Debian with a very old Linux kernel (3.2.0) — one dating back to 2012. He badly needs to install some frickin’ updates. “Also his partitions are real weird. It’s all Microsoft based partitions,” a Redditor says. “A Linux user would never do [this] unless they were insane since NTFS/Exfat drivers on Linux are not great.”

  • Georges Basile Stavracas Neto: Every shell has a story

    … a wise someone once muttered while walking on a beach, as they picked up a shell lying on the sand. Indeed, every shell began somewhere, crossed a unique path with different goals and driven by different motivations. Some shells were created to optimize for mobility; some, for lightness; some, for speed; some were created to just fit whoever is using it and do their jobs efficiently. It’s statistically close to impossible to not find a suitable shell, one could argue. So, is this a blog about muttered shell wisdom? In some way, it actually is. It is, indeed, about Shell, and about Mutter. And even though “wisdom” is perhaps a bit of an overstatement, it is expected that whoever reads this blog doesn’t leave it less wise, so the word applies to a certain degree. Evidently, the Shell in question is composed of bits and bytes; its protection is more about the complexities of a kernel and command lines than sea predators, and the Mutter is actually more about compositing the desktop than barely audible uttering.

  • Adieu, 32

    The tenth month of the year arrives and so does a new Ubuntu 19.10 (Eoan Ermine) update. Is it a portent that this is the 31st release of Ubuntu and with the 32nd release next year, 32-bit x86 Ubuntu builds will end?

Linux Kernel and Linux Foundation

  • Linux's Crypto API Is Adopting Some Aspects Of Zinc, Opening Door To Mainline WireGuard

    Mainlining of the WireGuard secure VPN tunnel was being held up by its use of the new "Zinc" crypto API developed in conjunction with this network tech. But with obstacles in getting Zinc merged, WireGuard was going to be resorting to targeting the existing kernel crypto interfaces. Instead, however, it turns out the upstream Linux crypto developers were interested and willing to incorporate some elements of Zinc into the existing kernel crypto implementation. Back in September is when Jason Donenfeld decided porting WireGuard to the existing Linux crypto API was the best path forward for getting this secure networking functionality into the mainline kernel in a timely manner. But since then other upstream kernel developers working on the crypto subsystem ended up with patches incorporating some elements of Zinc's design.

  • zswap: use B-tree for search
    The current zswap implementation uses red-black trees to store
    entries and to perform lookups. Although this algorithm obviously
    has complexity of O(log N) it still takes a while to complete
    lookup (or, even more for replacement) of an entry, when the amount
    of entries is huge (100K+).
    
    B-trees are known to handle such cases more efficiently (i. e. also
    with O(log N) complexity but with way lower coefficient) so trying
    zswap with B-trees was worth a shot.
    
    The implementation of B-trees that is currently present in Linux
    kernel isn't really doing things in the best possible way (i. e. it
    has recursion) but the testing I've run still shows a very
    significant performance increase.
    
    The usage pattern of B-tree here is not exactly following the
    guidelines but it is due to the fact that pgoff_t may be both 32
    and 64 bits long.
    
    
  • Zswap Could See Better Performance Thanks To A B-Tree Search Implementation

    For those using Zswap as a compressed RAM cache for swapping on Linux systems, the performance could soon see a measurable improvement. Developer Vitaly Wool has posted a patch that switches the Zswap code from using red-black trees to a B-tree for searching. Particularly for when having to search a large number of entries, the B-trees implementation should do so much more efficiently.

  • AT&T Finally Opens Up dNOS "DANOS" Network Operating System Code

    One and a half years late, the "DANOS" (known formerly as "dNOS") network operating system is now open-source under the Linux Foundation. AT&T and the Linux Foundation originally announced their plan in early 2018 wish pushing for this network operating system to be used on more mobile infrastructure. At the time they expected it to happen in H2'2018, but finally on 15 November 2019 the goal came to fruition.

Security Patches and FUD/Drama

Android Leftovers