Language Selection

English French German Italian Portuguese Spanish

Site News

Mollom Issues

Filed under
Site News

TUX MACHINES has been having some issues with the spam filter, so people who regularly submit material, including comments, may have struggled to do so over the past fortnight of so. If that's the case, please re-attempt and report any issue you encounter to us (feedback button on the right).

Spring in Tux Machines

Filed under
Site News

Tux Machines traffic

Tux Machines traffic has been increasing during spring. The DDOS attacks are behind us thankfully, the latest problem is just a lot of spam, which we are deleting as soon as we can.

Blog posts

Filed under
Site News

D

UE TO a growing SPAM problem (dozens per day making the front page), we have disabled -- temporarily at least -- the ability of random visitors to create new blog posts after registering for an account. We apologise in advance to any legitimate users this restriction may affect.

Catchup Mode

Filed under
Site News

IN the coming days we will prioritise very recent news and of course important news, but at the same time we shall be catching up with some older but important news that we missed. This means that some older items (one or two weeks old) may occasionally appear. In lieu with requests from readers we will also stop abbreviating long summaries of news, such as today's leftovers and howto roundups.

On Break

Filed under
Site News

KDE laptops

THIS COMING WEEK, starting Tuesday in particular, will be a lot less busy than usual because Rianne and I are flying away and will be absent for a couple of weeks. Depending on availability of Wi-Fi, we ought to be able to still post some links, just not the usual volume of links.

We kindly ask anyone who is interested and willing to submit links highlighting relevant news, as every registered user can do that. It will greatly help us run the site while we are very far away in east Asia.

Holidays Calm

Filed under
Site News

Xmas
Our living room this past weekend

TOMORROW is my birthday, so we are going away to Liverpool for a while. Over the holidays we won't be too active in this site, at the very least because there is no major news, no announcements of substance, and we also wish to spend some time with our extended family.

As always, anyone in Tux Machines can create an account and submit stories to the front page (as of late only spammers have been doing that almost every morning). We encourage readers to submit any links which they find relevant and of interest to the community.

Tux Machines is under attack

Filed under
Site News

My husband has been spending many of his hours fighting blow by blow in the back end, saving Tux Machines from a cyber attacker who really spent his freaking time hammering the website in an attempt to cripple Tux Machines. At first I was bit astonished by how the website behaved while I was posting some articles, I thought of checking the load to make sure the server worked well and to see that every visitor's page request had been served well, only to know that slowness of the website was been masterminded by an attacker. Perhaps this person is so desperate to put the Tux Machines website down, perhaps an enemy of FOSS and Linux advocacy.

We want to reaffirm our visitors and readers and apologise for the slight inconvenience and weired behavior of the website for the previous hours. All we have done is to protect our readers and visitors from this an acceptable gesture even until now he/she has been trying to penetrate the website. My message to this attacker is, leave Tux Machines in peace and go find some games to play with.

Windows-Shocked

Filed under
Site News

There are rogue bots hammering on this site all day long. It has gone on for quite a few days and it is getting worse. The bots are getting harder to block. Strategies are changing. They are all acting like zombies/botnet and they all have a "Microsoft Windows" in their HTTP header.

The corporate media seems preoccupied with a bug in GNU Bash. It predicts gloom and doom, just as it did when there was a bug in OpenSSL that Microsoft partners dubbed "heartbleed" (although not so much actually happened in terms of damages).

Perhaps it is time to remind that media that Microsoft, with its back doors, is causing turbulence on the Web. Among the outcomes there are GNU/Linux Web sites that are brought down, with administrators who work around the clock trying to block Windows-running PCs from trying to take down their sites.

Rogue Bots

Filed under
Site News

Aggregators in Tux Machines have been universally disabled (temporarily we hope) after a week or so of heavy load that took the site down (well, over capacity and hence not accessible). The culprit seems to be mostly -- although not exclusively -- a bunch of bots that hammer on the aggregators with spammy requests. It's sad that so many hours need to be spent just keeping script kiddies out of the site, resulting in fewer bits of output, slower pageloads (performance degradation), and restlessness (monitoring alerts all day long), not to mention crafting of rules that merely keep the site running. Running Tux Machines is not quite as peaceful and trivial/simple as it may seem from the outside. It's like a full-time job, or at least it feels like it, especially whenever the site gets flooded by rogue bots, necessitating special attention 24/7.

Recent Changes in Tux Machines

Filed under
Site News

Work

TODAY we have taken a bit of a break. It's Sunday after all. But here is a bit of a site status update.

The site's design has evolved a bit and it hopefully makes navigation a little better. SPAM is still a problem, but we do our best to keep it out of the sight of visitors. It's the result of a permissive policy that lets everyone publish a story, blog post, etc.

In terms of server load, we are still coping most of the time, but sometimes there's a flood of SPAM/rogue traffic that renders the server virtually unreachable. We use some ad hoc filters for to address this nuisance, but if we are away, then the site can be paralysed for a long time. We still need to find better solutions to that.

Thanks in advance for any feedback you may have and thanks for reading Tux Machines.

Syndicate content

More in Tux Machines

Openwashing: Microsoft, Apple and Symphony Software Foundation

Linux Foundation: Real-Time Linux (RT Linux), LF Deep Learning Foundation, OpenTracing and More

  • Developers: Prepare Your Drivers for Real-Time Linux
    Although Real-Time Linux (RT Linux) has been a staple at Embedded Linux Conferences for years -- here’s a story on the RT presentations in 2007 -- many developers have viewed the technology to be peripheral to their own embedded projects. Yet as RT, enabled via the PREEMPT_RT patch, prepares to be fully integrated into the mainline kernel, a wider circle of developers should pay attention. In particular, Linux device driver authors will need to ensure that their drivers play nice with RT-enabled kernels. At the recent Embedded Linux Conference in Portland, National Instruments software engineer Julia Cartwright, an acting maintainer on a stable release of the RT patch, gave a well-attended presentation called “What Every Driver Developer Should Know about RT.” Cartwright started with an overview of RT, which helps provide guarantees for user task execution for embedded applications that require a high level of determinism. She then described the classes of driver-related problems that can have a detrimental impact to RT, as well as potential resolutions. One of the challenges of any real-time operating system is that most target applications have two types of tasks: those with real-time requirements and latency sensitivity, and those for non-time critical tasks such as disk monitoring, throughput, or I/O. “The two classes of tasks need to run together and maybe communicate with one another with mixed criticality,” explained Cartwright. “You must resolve two different degrees of time sensitivity.” One solution is to split the tasks by using two different hardware platforms. “You could have an Arm Cortex-R, FPGA, or PLD based board for super time-critical stuff, and then a Cortex-A series board with Linux,” said Cartwright. “This offers the best isolation, but it raises the per unit costs, and it’s hard to communicate between the domains.”
  • Clarifying the Linux Real Time Issue
    I recently posted an article about the increasing development and availability of Linux-powered automation devices. This is a clear industry trend that’s unavoidable for anyone following the automation technology industry. Shortly after posting the article, I heard from a reader who wrote: “I read your article and I am surprised that you would promote the idea that anyone would use Linux for anything critical. It isn’t even a real-time control system. It can be used for non-critical applications, but the article implies that industry is adopting it for everything.” This reader brings up a valid point. Linux is not a real-time OS in and of itself. As Vibhoosh Gupta of GE Automation & Controls noted in the original article, GE uses “Type 1 hypervisor technology to run a real-time OS, such as VxWorks, running traditional control loops alongside our PAC Edge technology operating on Linux.” [...] The Linux Foundation launched the RTL (Real Time Linux) Collaborative Project in October 2015. According to the Foundation, the project was “founded by industry experts to advance technologies for the robotics, telecom, manufacturing and medical industries. The aim of the RTL collaborative project is mainlining the PREEMPT_RT patch.” While there are plenty of mission critical applications running Linux OS with real-time extensions—as highlighted by GE, Opto and Wago—the Linux Foundation notes on its site that there remains “much work to be done.”
  • Linux Launches Deep Learning Foundation For Open Source Growth In AI
    The Linux Foundation has launched the LF Deep Learning Foundation, an umbrella organisation which will support and sustain open source innovation in artificial intelligence, machine learning, and deep learning. The organisation will strive to make these critical new technologies available to developers and data scientists everywhere, said a statement published by LF. Founding members of LF Deep Learning include Amdocs, AT&T, B.Yond, Baidu, Huawei, Nokia, Tech Mahindra, Tencent, Univa, and ZTE, among others. LF Deep Learning, members are working to create a neutral space where makers and sustainers of tools and infrastructure can interact and harmonise their efforts and accelerate the broad adoption of deep learning technologies.
  • OpenTracing: Distributed Tracing’s Emerging Industry Standard
    What was traditionally known as just Monitoring has clearly been going through a renaissance over the last few years. The industry as a whole is finally moving away from having Monitoring and Logging silos – something we’ve been doing and “preaching” for years – and the term Observability emerged as the new moniker for everything that encompasses any form of infrastructure and application monitoring. Microservices have been around for a over a decade under one name or another. Now often deployed in separate containers it became obvious we need a way to trace transactions through various microservice layers, from the client all the way down to queues, storage, calls to external services, etc. This created a new interest in Transaction Tracing that, although not new, has now re-emerged as the third pillar of observability.
  • There’s a Server in Every Serverless Platform [Ed: "Serverless" is a lie. It's a server. One that you do not control; one/s that control/s you. Even Swapnil finally or belatedly gets it. The LF really likes buzzwords.]
    Serverless computing or Function as a Service (FaaS) is a new buzzword created by an industry that loves to coin new terms as market dynamics change and technologies evolve. But what exactly does it mean? What is serverless computing?
  • Take the Open Source Job Survey from Dice and The Linux Foundation
    Interest in hiring open source professionals is on the rise, with more companies than ever looking for full-time hires with open source skills and experience. To gather more information about the changing landscape and opportunities for developers, administrators, managers, and other open source professionals, Dice and The Linux Foundation have partnered to produce two open source jobs surveys — designed specifically for hiring managers and industry professionals.
  • Automotive Linux Summit & OS Summit Japan Schedule Announced [Ed: "Brian Redmond, Microsoft" so you basically go to an event about Linux and must listen to a talk from a company which attacks Linux with patent blackmail, bribes etc.]

Security: Updates, GrayKey, Google and Cilium

  • Security updates for Wednesday
  • Hackers Leaked The Code Of iPhone Cracking Device “GrayKey”, Attempted Extortion
    The mysterious piece of hardware GrayKey might give a sense of happiness to cops because they can get inside most of the iPhone models currently active, including the iPhone X. The $30,000 device is known to crack a 4-digit iPhone passcode in a matter of a few hours, and a six-digit passcode in 3 days, or possibly 11 hours in ideal scenarios. That’s why security experts suggest that iOS users should keep an alphanumeric passcode instead of an all-number passcode.
  • Someone Is Trying to Extort iPhone Crackers GrayShift With Leaked Code
    Law enforcement agencies across the country are buying or have expressed interest in buying GrayKey, a device that can unlock up-to-date iPhones. But Grayshift, the company that makes the device, has attracted some other attention as well. Last week, an unknown party quietly leaked portions of GrayKey code onto the internet, and demanded over $15,000 from Grayshift—ironically, the price of an entry-level GrayKey—in order to stop publishing the material. The code itself does not appear to be particularly sensitive, but Grayshift confirmed to Motherboard the brief data leak that led to the extortion attempt.
  • It's not you, it's Big G: Sneaky spammers slip strangers spoofed spam, swamp Gmail sent files
    Google has confirmed spammers can not only send out spoofed emails that appear to have been sent by Gmail users, but said messages also appear in those users' sent mail folders. The Chocolate Factory on Monday told The Register that someone has indeed created and sent spam with forged email headers. These not only override the send address, so that it appears a legit Gmail user sent the message, but it also mysteriously shows up in that person's sent box as if they had typed it and emitted themselves. In turn, the messages would also appear in their inboxes as sent mail.
  • Cilium 1.0 Advances Container Networking With Improved Security
    For last two decades, the IPtables technology has been the cornerstone of Linux networking implementations, including new container models. On April 24, the open-source Cilium 1.0 release was launched, providing a new alternative to IPtables by using BPF (Berkeley Packet Filter), which improves both networking and security. The Cilium project's GitHub code repository defines the effort as Linux Native, HTTP Aware Network Security for Containers. Cilium development has been driven to date by stealth startup Covalent, which is led by CEO Dan Wendlandt, who well-known in the networking community for his work at VMware on software-defined networking, and CTO Thomas Graf, who is a core Linux kernel networking developer.

Applications: KStars, Kurly, Pamac, QEMU

  • KStars 2.9.5 is out!
    Autofocus module users would be happy to learn that the HFR value is now responsive to changing seeing conditions. Previously, the first successful autofocus operation would set the HFR Threshold value of which subsequent measurements are compared against during the in-sequence-focusing step.
  • Kurly – An Alternative to Most Widely Used Curl Program
    Kurly is a free open source, simple but effective, cross-platform alternative to the popular curl command-line tool. It is written in Go programming language and works in the same way as curl but only aims to offer common usage options and procedures, with emphasis on the HTTP(S) operations. In this tutorial we will learn how to install and use kurly program – an alternative to most widely used curl command in Linux.
  • Pamac – Easily Install and Manage Software on Arch Linux
    Arch Linux is one of the most popular Linux distribution available despite its apparent technicality. Its default package manager pacman is powerful but as time always tells, it is a lot easier to get certain things done using a mouse because GUI apps barely require any typing nor do they require you to remember any commands; and this is where Pamac comes in. Pamac is a Gtk3 frontend for libalpm and it is the GUI tool that Arch Linux users turn to the most when they aren’t in the mood to manage their software packages via the terminal; and who can blame them? It was specifically created to be used with Pacman.
  • QEMU 2.12 Released With RISC-V, Spectre/Meltdown & Intel vGPU Action
    QEMU 2.12 is now officially available as the latest stable feature update to this important component to the open-source Linux virtualization stack.