Language Selection

English French German Italian Portuguese Spanish

Gentoo

Pentoo – A Security-Focused Linux Distro Based on Gentoo

Filed under
Gentoo
Security

Pentoo is an open-source Live CD and Live USB Gentoo Linux-based operating system designed for experts in the field of penetration testing and security assessment. It is available for both 32-bit and 64-bit architectures and is can be run as an overlay on an existing Gentoo installation.

If you’re not familiar with Gentoo Linux, it is an advanced Linux distro that enables users to compile their operating system from the source in other to enjoy advantages such as applications and optimal performance specific to the computer, to mention a couple.

It does not have an installer and users are to translate the software they want before continuing with the installation. In short, one shouldn’t go near it if they don’t have the perseverance for filing through Linux documentation.

Just like with Gentoo, Pentoo has an advanced Python-based package management system with cool features such as “fake” (OpenBSD-style) installs, system profiles, config file management, safe unmerging, and virtual packages, among others.

Read more

exGENT 2020 Linux Distro Makes Gentoo Fun to Use with the LXQt Desktop

Filed under
Linux
Gentoo

Arne Exton’s exGENT GNU/Linux distribution aims to continue the tradition of Gentoo-based live distros with a new release that puts the latest LXQt 0.14.1 desktop environment in the spotlight.

We all know by now that Gentoo is one of the hardest Linux-based operating systems to install due to packages needing to be compiled from sources locally. But the good thing about Gentoo is that it doesn’t uses a one-size fits all approach, which mens that it can be fully optimized for specific hardware.

Newcomers who want to try Gentoo Linux on their personal computer have a hard time due to the lack of Gentoo-based live distributions. Here’s where exGENT Linux comes into play, promising to offer users an up-to-date Gentoo-based live system that can be installed in a few minutes.

Read more

Meet Calculate Linux 20!

Filed under
Gentoo

For this new (year) release, Gentoo 17.1 was used as the base profile, all binary packages recompiled with GCC 9.2, and overlays managed with eselect. Calculate Linux will no longer come in 32 bits.

Are available for download: Calculate Linux Desktop featuring the KDE (CLD), Cinnamon (CLDC), LXQt (CLDL), Mate (CLDM) or else Xfce (CLDX and CLDXS) scientific, Calculate Directory Server (CDS), Calculate Linux Scratch (CLS) and Calculate Scratch Server (CSS).

Read more

Also: Gentoo-Based Calculate Linux 20 Released To Ring In The New Year, Free Of 32-Bit Support

Calculate Linux 20 Now Available For Download

Michał Górny: A distribution kernel for Gentoo

Filed under
Linux
Gentoo

The traditional Gentoo way of getting a kernel is to install the sources, and then configure and build one yourself. For those who didn’t want to go through the tedious process of configuring it manually, an alternative route of using genkernel was provided. However, neither of those variants was able to really provide the equivalent of kernels provided by binary distributions.

I have manually configured the kernels for my private systems long time ago. Today, I wouldn’t really have bothered. In fact, I realized that for some time I’m really hesitant to even upgrade them because of the effort needed to update configuration. The worst part is, whenever a new kernel does not boot, I have to ask myself: is it a real bug, or is it my fault for configuring it wrong?

I’m not alone in this. Recently Михаил Коляда has talked to me about providing binary kernels for Gentoo. While I have not strictly implemented what he had in mind, he inspired me to start working on a distribution kernel. The goal was to create a kernel package that users can install to get a working kernel with minimal effort, and that would be upgraded automatically as part of regular @world upgrades.

Read more

Also: Gentoo Developers Exploring The Possibility Of Shipping Distribution Binary Kernels

Chrome OS 79 Adds Media Controls in Lock Screen, Mouse Acceleration Control

Filed under
GNU
Linux
Gentoo
Google

Just a few days after the release of its Chrome 79 web browser, Google promoted the Chrome OS 79 Linux-based operating system for Chromebooks to the stable channel, rolling out now to all supported devices.

Based on the recently released Google Chrome 79 web browser, which landed for Linux, Android, macOS, and Windows platforms last week, Chrome OS 79 is here with a bunch of improvements and new features, starting with media controls in the lock screen to make it more convenient for users to control their media.

The new media controls in lock screen feature allows users to control their media right from the lock screen when they're listening to audio on their Chromebook. Users will be able to play, pause, and skip audio tracks Spotify, YouTube Music, and many other apps without unlocking their Chromebook.

Read more

Funtoo Linux 1.4 Released

Filed under
GNU
Linux
Gentoo

Drobbins has announced the new release of Funtoo Linux 1.4 on Sep 11, 2019.

This release is based on a 21 June 2019 snapshot of Gentoo Linux with significant updates to key parts of the system, such as compiler and OpenGL subsystem.

This is the fourth release of the Funtoo Linux 1.x series, which may be the last update of this release, as the developer said he would start developing 2.0 a month later.

Read more

A Look at Redcore Linux: Gentoo based Linux Distribution

Filed under
GNU
Linux
Gentoo
Reviews

Many people in the technology world have heard, at least in passing, of the Linux distribution Gentoo. Gentoo is one of the most famous distributions to the point of becoming a joke; with it’s complexity and depth, installing Gentoo has been a daunting task for many.

Redcore is one of the latest distributions to attempt to bring the power of Gentoo to the everyday user.

I previously wrote an article in 2017 about Sabayon Linux, another popular Gentoo based system; but Redcore Linux holds its own and pulls its own weight.

Read more

[Gentoo] AArch64 (arm64) profiles are now stable!

Filed under
Gentoo

The ARM64 project is pleased to announce that all ARM64 profiles are now stable.

While our developers and users have contributed significantly in this accomplishment, we must also thank our Packet sponsor for their contribution. Providing the Gentoo developer community with access to bare metal hardware has accelerated progress in acheiving the stabilization of the ARM64 profiles.

Read more

Verifying Gentoo election results via Votrify

Filed under
Gentoo

Gentoo elections are conducted using a custom software called votify. During the voting period, the developers place their votes in their respective home directories on one of the Gentoo servers. Afterwards, the election officials collect the votes, count them, compare their results and finally announce them.

The simplified description stated above suggests two weak points. Firstly, we rely on honesty of election officials. If they chose to conspire, they could fake the result. Secondly, we rely on honesty of all Infrastructure members, as they could use root access to manipulate the votes (or the collection process).

To protect against possible fraud, we make the elections transparent (but pseudonymous). This means that all votes cast are public, so everyone can count them and verify the result. Furthermore, developers can verify whether their personal vote has been included. Ideally, all developers would do that and therefore confirm that no votes were manipulated.

Currently, we are pretty much implicitly relying on developers doing that, and assuming that no protest implies successful verification. However, this is not really reliable, and given the unfriendly nature of our scripts I have reasons to doubt that the majority of developers actually verify the election results. In this post, I would like to shortly explain how Gentoo elections work, how they could be manipulated and introduce Votrify — a tool to explicitly verify election results.

Read more

Michał Górny (Gentoo) and Daniel Kahn Gillmor (Debian) on OpenPGP Security

Filed under
GNU
Linux
Gentoo
Security
Debian
  • Michał Górny: SKS poisoning, keys.openpgp.org / Hagrid and other non-solutions

    The recent key poisoning attack on SKS keyservers shook the world of OpenPGP. While this isn’t a new problem, it has not been exploited on this scale before. The attackers have proved how easy it is to poison commonly used keys on the keyservers and effectively render GnuPG unusably slow. A renewed discussion on improving keyservers has started as a result. It also forced Gentoo to employ countermeasures. You can read more on them in the ‘Impact of SKS keyserver poisoning on Gentoo’ news item.

    Coicidentally, the attack happened shortly after the launch of keys.openpgp.org, that advertises itself as both poisoning-resistant and GDPR-friendly keyserver. Naturally, many users see it as the ultimate solution to the issues with SKS. I’m afraid I have to disagree — in my opinion, this keyserver does not solve any problems, it merely cripples OpenPGP in order to avoid being affected by them, and harms its security in the process.

    In this article, I’d like to shortly explain what the problem is, and which of the different solutions proposed so far to it (e.g. on gnupg-users mailing list) make sense, and which make things even worse. Naturally, I will also cover the new Hagrid keyserver as one of the glorified non-solutions.

  • Daniel Kahn Gillmor: WKD for debian.org

    By default, this will show you any matching certificate that you already have in your GnuPG local keyring. But if you don't have a matching certificate already, it will fall back to using WKD.

    These certificates are extracted from the debian keyring and published at https://openpgpkey.debian.org/.well-known/debian.org/, as defined in the WKD spec. We intend to keep them up-to-date when ever the keyring-maint team publishes a new batch of certificates. Our tooling uses some repeated invocations of gpg to extract and build the published tree of files.

    Debian is current not implementing the Web Key Directory Update Protocol (and we have no plans to do so). If you are a Debian developer and you want your OpenPGP certificate updated in WKD, please follow the normal procedures for Debian keyring maintenance like you always have.

Syndicate content

More in Tux Machines

Type Title Author Replies Last Postsort icon
Story Security: Patches, Core Infrastructure Initiative (CII), Crypto AG, More Issues Roy Schestowitz 2 19/02/2020 - 10:14pm
Story Games: Total War: THREE KINGDOMS - Mandate of Heaven, Space Haven and Besiege Roy Schestowitz 1 19/02/2020 - 10:10pm
Story Unsigned Firmware Puts Windows, Linux Peripherals at Risk Rianne Schestowitz 19/02/2020 - 10:07pm
Story Android Leftovers Rianne Schestowitz 19/02/2020 - 10:03pm
Story Stable Kernels: 5.5.5, 5.4.21, and 4.19.105 Rianne Schestowitz 19/02/2020 - 9:54pm
Story A New Linux-Exclusive Gaming Platform Is Coming: Meet GamePad Rianne Schestowitz 19/02/2020 - 9:50pm
Story Learn the main Linux OS components Rianne Schestowitz 19/02/2020 - 9:48pm
Story Linux Gaming: Play Windows games on Linux with Proton Rianne Schestowitz 19/02/2020 - 9:46pm
Story Raspberry Pi Zero W based LoRaWAN gateway sells for $99 Rianne Schestowitz 19/02/2020 - 9:42pm
Story Proprietary Software and Security Roy Schestowitz 19/02/2020 - 6:47pm