Language Selection

English French German Italian Portuguese Spanish

Software

Need A Good Linux Hex Editor? 20 Linux Hex Viewers & Editors Reviewed

Filed under
GNU
Linux
Software

A hex editor is a computer program used for editing a binary file that contains machine-readable data. It paves the way of manipulating raw binary data for a particular application. “Hex” is the short form of hexadecimal, a numerical standard format that represents the binary program. A regular hex editor has three specific areas such as ‘character area’ on the right, ‘hexadecimal area’ in the middle and the ‘address area’ on the left. Additionally, some hex editors are designed to edit and parse sector data from the hard disk and floppy disk which are frequently called disk editor or sector editor. There are far ranges of Linux hex editor available in the market; that to a greater extent make a user squarely beneficial, and allow them to edit binary program.

Read more

Also: Announcing lymworkbook project

5 great alternatives to FL Studio to use on Linux

Filed under
GNU
Linux
Software

FL Studio is a robust digital audio workstation and musical creation tool for the Windows and Mac platforms. It’s commercial software and considered one of the best musical production programs available today. However, FL Studio does not work on Linux, and no support is planned in the future. So, if you’ve just switched to the Linux platform and want to create music, you’ll need a good alternative. Here are 5 great alternatives to FL Studio to use on Linux!

Read more

HowTos and Software

Filed under
Software
HowTos

Wine 4.15

Filed under
Software
  • Wine Announcement
    The Wine development release 4.15 is now available.
    
    What's new in this release (see below for details):
      - Initial implementation of the HTTP service.
      - Stack unwinding support on ARM64.
      - Better multi-monitor support on macOS.
      - RichEdit control optimizations.
      - Various bug fixes.
    
    
  • Wine 4.15 Brings Initial HTTP Service Implementation (HTTP.sys)

    Wine 4.15 is out for testing this US holiday weekend. With Wine 4.15 it brings an initial implementation of Windows' HTTP.sys as the HTTP protocol stack that is a kernel-mode driver that lists for HTTP requests and passes it onto Microsoft's IIS.

    An initial implementation of this HTTP.sys service is now in place as one of the major features to Wine 4.15. HTTP.sys has been the replacement to the Winsock API by IIS and is geared to provide better performance than the Windows Sockets API and other features. This big round of HTTP.sys work was led by Wine developer Zebediah Figura.

  • The Wine 4.15 development release is out now

    What's a Friday without a little Wine? Thankfully today we don't have to find out as the Wine 4.15 development release is now out.

Qmmp Music Player 1.3.4 Released with Stability Improvements

Filed under
Software

Qmmp, Qt based music player with winamp or xmms like user interface, released version 1.3.4 (and Qt4 version 0.12.4) a few days ago with stability improvements.

Read more

Software: Converseen, Hyperfine, NetFlow Software, and Pastel

Filed under
Software
  • Converseen – A Simple Graphical Batch Image Converter And Resizer

    Converseen is a free, cross-platform and opensource batch image processor written in C++ with Qt5 libraries. It allows us to convert, compress, resize, rotate and flip one or multiple images with a few mouse clicks! Converseen relies on ImageMagick for image processing. It supports 100s of image formats including popular formats such as DPX, EXR, GIF, JPEG, JPEG-2000, PDF, PhotoCD, PNG, Postscript, SVG, TIFF and more. Conversion is not just an image converter, it can also convert an entire PDF file into bunch of images.

  • Essential System Tools: hyperfine – command-line benchmarking tool

    This is the latest in our series of articles highlighting essential system tools. These are small, indispensable utilities, useful for system administrators as well as regular users of Linux based systems. The series examines both graphical and text based open source utilities. For details of all tools in this series, please visit Excellent Ways to Manage Your System – Essential System Tools.

    For this article, we look at hyperfine, a command-line benchmarking tool. It’s designed to measure the full execution time of a program. This open source tool is written in the Rust programming language.

    If you’re interesting in learning Rust, check out our recommended free Rust books.

  • 6 Best Open-Source NetFlow Software (FREE)

    There are several types of network monitoring available. One of them, possibly the most common, is SNMP monitoring. It can be used to give administrators a rather clear picture of how much data is carried over the networks they manage. But when they want a more detailed picture—such as learning WHAT the traffic is rather than just HOW MUCH there is—they have to turn to a different technology.

    NetFlow, a monitoring technology developed by Cisco and introduced a while back on the manufacturer’s devices has become the de facto standard when it comes to qualitative network monitoring. NetFlow monitoring tools can be expensive and out of the reach of many smaller businesses. Fortunately, several open-source NetFlow software packages are available and we’re about to review them.

  • Pastel Is A New Tool To Work With Colors From The Terminal

    Pastel is a new free and open source command line tool to work with colors / perform various color operations. It's written in Rust, and it can convert colors from one format to another, show and analyze colors on the terminal, generate a set of visually distinct colors, and there's even a color picker, along with much more.
    The tool has support for many different color formats and color spaces, including RGB, HSL, CIELAB, CIELCh as well as ANSI 8-bit and 24-bit representations.

Proprietary Software Leftovers

Filed under
Microsoft
Software
Mac
Security
  • BuyDRM launches Linux support for DRM

    BuyDRM has announced Linux support for its MultiKey Server, a multi-DRM software platform specifically designed for deployments in remote or limited connectivity environments.

  • Some airlines are banning Apple’s MacBook Pros even if they weren’t recalled

    In June, Apple recalled the 2015 MacBook Pro with Retina Display, sold between September 2015 and February 2017, because the battery “may pose a fire safety risk,” and the FAA soon reminded airlines not to carry those laptops with defective batteries on board. But some airlines are now banning Apple laptops whether they’ve got a bad battery or not, as reported by Bloomberg.

  • More Airlines Ban MacBook Pros in Checked Luggage

    All 15-inch versions of Apple Inc.’s MacBook Pro must be carried in the cabin and switched off, Qantas said in a statement Wednesday. The rule went into effect Tuesday morning. Rival Virgin Australia Holdings Ltd. went further on Aug. 26, banning all Apple laptops from checked-in luggage.

  • Popular PDF app was quietly plonking malware onto Android phones

    The security smart folks note that the app itself doesn't appear to be a malicious one, but rather it contains a trojan that gathers spyware and other malware from a malicious server and then runs in on a victim's phone. This trojan, dubbed Necro.n appears to have been sneaked into the app through the use of a legit-looking advertising library package.

    As such, the developers of the app, which has received some 100 million downloads, might not even realise their software is causing their users a malware headache.

  • [Cracker] Claims He Can ‘Turn Off 25,000 Cars’ At The Push Of A Button

    Your car’s immobilizer is supposed to be used for good. If a crook steals your car, it's possible for you to connect to the immobilizer, which tracks the vehicle and allows you to stop anyone from turning on the engine. But with one particular immobilizer - the U.K.-made SmarTrack tool from Global Telemetrics - an easy-to-hack vulnerability meant it was simple for researchers at Pen Test Partners to turn on the immobilizer permanently, without the customer knowing a thing.

    To prove it was possible, the researchers from British cybersecurity company Pen Test Partners hacked the vehicle of one of their own employees, disabling his car whilst they were in the U.K. and he was in Greece, not long before he was due to head to a wedding.

  • French cyberpolice, Avast and FBI neutralise global 'botnet' [iophk: Windows TCO]

    French police have neutralised a [cracking] operation that had taken control of more than 850,000 computers, mainly in Latin America, while also managing to remove the malware from the infected devices.

    The agents went into action last spring after the Czech antivirus firm Avast alerted them to the software worm, called Retadup, that was being controlled by a server in the Paris region.

  • Putting an end to Retadup: A malicious worm that infected hundreds of thousands [iophk: Windows TCO]

    Retadup is a malicious worm affecting Windows machines throughout Latin America. Its objective is to achieve persistence on its victims’ computers, to spread itself far and wide and to install additional malware payloads on infected machines. In the vast majority of cases, the installed payload is a piece of malware mining cryptocurrency on the malware authors’ behalf. However, in some cases, we have also observed Retadup distributing the Stop ransomware and the Arkei password stealer.

  • Authorities free 850,000 machines from grasp of Retadup worm [iophk: Windows TCO]

    After gaining persistence, Retadup goes on to distribute secondary malware on infected machines. It most commonly delivers a Monero cryptomining program, but also has been observed spreading over malware programs including Stop ransomware and the Arkei password stealer, Avast reports.

    The vast majority of Retadup victims whose infections were neutralized in last month’s crackdown are based in Latin American countries. However, the law enforcement operation itself specifically targeted C2 infrastructure based in France and the U.S.

  • Report finds majority of 2019 ransomware attacks have targeted state and local governments [iophk: Windows TCO]

    The majority of ransomware attacks in the U.S. in 2019 have targeted state and local governments, a report published Wednesday by cybersecurity group Barracuda Networks found.

    The report counted a total of 55 ransomware attacks on U.S. state and local government entities between January and July of 2019. These attacks involve a malicious actor or group encrypting a network and asking for money, often in the form of bitcoin, to allow the user access.

  • Threat Spotlight: Government Ransomware Attacks [iophk: this is disinformation which fails to steer potential victims away from Windows and towards GNU/Linux or one of the BSDs]

    Barracuda researchers have identified more than 50 cities and towns attacked so far this year. The team’s recent analysis of hundreds of attacks across a broad set of targets revealed that government organizations are the intended victims of nearly two-thirds of all ransomware attacks. Local, county, and state governments have all been targets, including schools, libraries, courts, and other entities.

    Here’s a closer look at state and local government ransomware attacks and solutions to help detect, block, and recover from them.

Nikola - Static Site Generator for your webz

Filed under
Software
Web

The modern web is all about dynamic content. But in most cases, this is a technological illusion. A large number of website uses dynamically generated pages, i.e. stuff gets read from a database and rendered on the screen when requested, even for things that don't necessarily require any interaction. This takes resources, and might even be considered less secure, because bad or malformed instructions could theoretically generate something undesired.

The old Web was all about static content - HTML pages with links and images and not much else. Not bad, very light on the resources, and as secure as the Web server what does it. But then, not much interaction happens, and updating content can be tedious. What if there was something midway between the two worlds? That would be Nikola, a static site generator.

Read more

7 Best SNMP Monitoring Tools For Linux

Filed under
GNU
Linux
Server
Software

SNMP monitoring is by far the most common type of network monitoring technology. It allows administrators of networks of any size to be kept informed of the status of the networks they manage as well as their utilization. Likewise, Linus is also a very common platform that many network administrators have turned to. Although it is not yet as common in the desktop world as the commercial offerings from some mega-vendors, it is very common in the server world. Even IBM has made it its OS of choice on many of its higher-range systems.

Read more

Software: Pitivi, Pngquant, Rufus and Proton

Filed under
Software
  • Google Summer of Code 2019 with Pitivi Final Report

    For GSoC 2019, I worked on improving the effects user experience in Pitivi.

  • [Pitivi] Millan Castro: GSoC: Final report

    Google Summer of Code 2019 has come to an end. This post is part of my final submission. It summarizes my contribution to Pitivi, providing links to my work.

    My proposal consisted on a interval time system with different applications for Pitivi video editor. Originally, one of the applications would be to be able to set up markers at selected positions in the timeline, to store user metada.

    [...]

    My work in GES is co-authored with my mentor, Mathieu Duponchelle. It includes the new classes GESMarkerList and GESMarker, and tests for them. It is already merged.

    GESMarkerList allows to have a list of GESMarker in every class that implements GESMetaContainer. Its API includes methods for create, serialize and deserialize a GESMarkerList, and for add, move, get and remove GESMarker. Also include signals to notify this operations.

    The class GESMarker implements GESMetacontainer. It has a position property.

    A set of new tests checks that everything works fine.

  • Pngquant – A Command-line Utility To Compress PNG Images On Linux

    Pngquant is a free, open source and cross-platform command-line lossy PNG compressor. It is based on a portable libimagequant library and is written in C99. It reduces the file size significantly by converting the PNG image to more efficient 8-bit PNG format and preserves full alpha transparency. As you may already know, 8-bit PNG files are often 60-80% smaller than 24/32-bit PNG files. The images compressed using Pngquant are fully-compatible with all web browsers and operating systems. Pngquant can compress one or multiple images at once.

  • Rufus: Creating A Persistent Storage Live USB With Ubuntu Or Debian From Windows

    Rufus 3.7 beta, released yesterday, has finalized the persistent partition support for Debian and Ubuntu, allowing users to create persistent storage live USBs of recent Debian Live ISOs, and Ubuntu Live ISOs created after 1st of August, 2019.

    Rufus is a popular free and open source graphical tool to create bootable USB drives from Windows. It can be used to create not only bootable Windows drives from ISO files or disk images, but also create bootable Linux USB drives from Windows.

    This application is able to create persistent live drives that work in both UEFI (MBR or GPT) and BIOS mode, with casper-rw being used for the persistent storage partition, so it can have a size of more than 4GB.

    Experimental persistent partitions support was first added to this Windows bootable Live USB creation tool with version 3.6, but it didn't seem to work properly, as in my test, any changes made to the Live USB did not persist between reboots. With the latest Rufus 3.7 beta though, the persistent partition feature works (I tested it with the latest daily build of Ubuntu 19.10 Eoan Ermine). But it doesn't support every Linux distribution out there.

    The Rufus 3.7 beta release notes mention that with this release, the persistent partition support is finalized (so it's not longer experimental) for Debian and Ubuntu. BUT as far as Ubuntu is concerned, the persistence feature only works with ISOs of Ubuntu 19.10 Eoan Ermine created later than August 1st, 2019 (e.g. the Ubuntu Eoan Ermine daily ISO from here should work). The reason for this is a bug that caused persistence on casper-rw partitions to break when the mount sequence order was changed, which was only recently fixed.

  • Proton 4.11-3 Pulls In D9VK 0.20, Taps Gamepads Directly, Fsync Fixes

    Valve's Wine-based Proton for powering Steam Play to run Windows games on Linux is seeing more exciting work in their 4.11 branch. 

Syndicate content

More in Tux Machines

Security Leftovers

  • Security updates for Monday

    Security updates have been issued by Debian (ansible, faad2, linux-4.9, and thunderbird), Fedora (jbig2dec, libextractor, sphinx, and thunderbird), Mageia (expat, kconfig, mediawiki, nodejs, openldap, poppler, thunderbird, webkit2, and wireguard), openSUSE (buildah, ghostscript, go1.12, libmirage, python-urllib3, rdesktop, and skopeo), SUSE (python-Django), and Ubuntu (exim4, ibus, and Wireshark).

  • Open Source Security Podcast: Episode 161 - Human nature and ad powered open source

    Josh and Kurt start out discussing human nature and how it affects how we view security. A lot of things that look easy are actually really hard. We also talk about the npm library Standard showing command line ads. Are ads part of the future of open source?

  • Skidmap malware drops LKMs on Linux machines to enable cryptojacking, backdoor access

    Researchers have discovered a sophisticated cryptomining program that uses loadable kernel modules (LKMs) to help infiltrate Linux machines, and hides its malicious activity by displaying fake network traffic stats. Dubbed Skidmap, the malware can also grant attackers backdoor access to affected systems by setting up a secret master password that offers access to any user account in the system, according to Trend Micro threat analysts Augusto Remillano II and Jakub Urbanec in a company blog post today. “Skidmap uses fairly advanced methods to ensure that it and its components remain undetected. For instance, its use of LKM rootkits – given their capability to overwrite or modify parts of the kernel – makes it harder to clean compared to other malware,” the blog post states. “In addition, Skidmap has multiple ways to access affected machines, which allow it to reinfect systems that have been restored or cleaned up.”

  • Skidmap Linux Malware Uses Rootkit Capabilities to Hide Cryptocurrency-Mining Payload

    Cryptocurrency-mining malware is still a prevalent threat, as illustrated by our detections of this threat in the first half of 2019. Cybercriminals, too, increasingly explored new platforms and ways to further cash in on their malware — from mobile devices and Unix and Unix-like systems to servers and cloud environments. They also constantly hone their malware’s resilience against detection. Some, for instance, bundle their malware with a watchdog component that ensures that the illicit cryptocurrency mining activities persist in the infected machine, while others, affecting Linux-based systems, utilize an LD_PRELOAD-based userland rootkit to make their components undetectable by system monitoring tools.

Oracle launches completely autonomous operating system

Together, these two solutions provide automated patching, updates, and tuning. This includes 100 percent automatic daily security updates to the Linux kernel and user space library. In addition, patching can be done while the system is running, instead of a sysadmin having to take systems down to patch them. This reduces downtime and helps to eliminate some of the friction between developers and IT, explained Coekaerts. Read more

Software: Zotero, PulseCaster and Qt Port of SFXR

  • Zotero and LibreOffice

    If you’re working with LibreOffice and need to create a bibliography, this software makes it simple to manage your citations. You can tell how few people use LibreOffice’s Bibliography Database by the fact that a bug that would take 10 minutes to fix has survived since 2002. Instead, those who need bibliographies or citations rely on other software such as Zotero, which can be integrated into LibreOffice with an extension. That robust bug is that the Citation Format in the database table is called the Short Name in the input fields. Even more confusing, the examples give an arbitrary name, when to work with the citation insertion tool in Insert | Table of Contents and Index | Insert Bibliography Entry, it should in a standard form, such as (Byfield: 2016) for the MLA format. Add the fact that a single database is used for all files – an absurdity in these memory-rich days – and the neglect of the Bibliography Database is completely understandable.

  • PulseCaster 0.9 released!

    For starters, PulseCaster is now ported to Python 3. I used Python 3.6 and Python 3.7 to do the porting. Nothing in the code should be particular to either version, though. But you’ll need to have Python 3 installed to use it, as most Linux bistros do these days. Another enhancement is that PulseCaster now relies on the excellent pulsectl library for Python, by George Filipkin and Mike Kazantsev. Hats off to them for doing a great job, which allowed me to remove many, many lines of code from this release. Also, due the use of PyGObject3 in this release, there are numerous improvements that make it easier for me to hack on. Silly issues with the GLib mainloop and other entrance/exit stupidity are hopefully a bit better now. Also, the code for dealing with temporary files is now a bit less ugly. I still want to do more work on the overall design and interface, and have ideas. I’ve gotten way better at time management since the last series of releases and hope to do some of this over the USA holiday season this late fall and winter (but no promises).

  • SFXR Qt 1.3.0

    I just released version 1.3.0 of SFXR Qt, my Qt port of the SFXR sound effect generator.

today's howtos