Language Selection

English French German Italian Portuguese Spanish

Software

Software: Security Tools, cmus, Atom-IDE, Skimmer Scanner

Filed under
Software
  • Security Tools to Check for Viruses and Malware on Linux

    First and foremost, no operating system is 100 percent immune to attack. Whether a machine is online or offline, it can fall victim to malicious code. Although Linux is less prone to such attacks than, say, Windows, there is no absolute when it comes to security. I have witnessed, first hand, Linux servers hit by rootkits that were so nasty, the only solution was to reinstall and hope the data backup was current. I’ve been a victim of a (very brief) hacker getting onto my desktop, because I accidentally left desktop sharing running (that was certainly an eye opener). The lesson? Even Linux can be vulnerable.

    So why does Linux need tools to prevent viruses, malware, and rootkits? It should be obvious why every server needs protection from rootkits — because once you are hit with a rootkit, all bets are off as to whether you can recover without reinstalling the platform. It’s antivirus and anti-malware where admins start getting a bit confused.

    Let me put it simply — if your server (or desktop for that matter) makes use of Samba or sshfs (or any other sharing means), those files will be opened by users running operating systems that are vulnerable. Do you really want to take the chance that your Samba share directory could be dishing out files that contain malicious code? If that should happen, your job becomes exponentially more difficult. Similarly, if that Linux machine performs as a mail server, you would be remiss to not include AV scanning (lest your users be forwarding malicious mail).

  • cmus – A Small, Fast And Powerful Console Music Player For Linux

    You may ask a question yourself when you see this article. Is it possible to listen music in Linux terminal? Yes because nothing is impossible in Linux.

    We have covered many popular GUI-based media players in our previous articles but we didn’t cover any CLI based media players as of now, so today we are going to cover about cmus, is one of the famous console-based media players among others (For CLI, very few applications is available in Linux).

  • You Can Now Transform the Atom Hackable Text Editor into an IDE with Atom-IDE

    GitHub and Facebook recently launched a set of tools that promise to allow you to transform your Atom hackable text editor into a veritable IDE (Integrated Development Environment). They call the project Atom-IDE.

    With the release of Atom 1.21 Beta last week, GitHub introduced Language Server Protocol support to integrate its brand-new Atom-IDE project, which comes with built-in support for five popular language servers, including JavaScript, TypeScript, PHP, Java, C#, and Flow. But many others will come with future Atom updates.

  • This open-source Android app is designed to detect nearby credit card skimmers

    Protecting our data is a constant battle, especially as technology continues to advance. A recent trend that has popped up is the installation of credit card skimmers, especially at locations such as gas pumps. With a simple piece of hardware and 30 seconds to install it, a hacker can easily steal credit card numbers from a gas pump without anyone knowing. Now, an open-source app for Android is attempting to help users avoid these skimmers.

Pitivi 1.0 Release Candidate

Filed under
Software
  • Pitivi 1.0 Release Candidate — “Ocean Big Chair”

    We’re proud to release the first Pitivi 1.0 release candidate “Ocean Big Chair” (0.99). This release has many bug fixes and performance improvements, and is a release candidate for 1.0. Our test suite grew considerably, from 164 to 191 meaningful unit tests.

    You can install it right away using Flatpak.

  • Pitivi 1.0 Open-Source Linux Video Editor Is Up to RC State, Download as Flatpak

    Pitivi, the popular free and open-source video editor for GNU/Linux distributions, is about to hit the 1.0 milestone and become a stable software that's ready to use for some serious video editing tasks.

    More than nine months after the release of Pitivi 0.98 back in early December 2016, the development team has announced today that they've released the first RC (Release Candidate) milestone of the upcoming major Piviti 1.0 version, tagged as build 0.99 and dubbed "Ocean Big Chair."

  • Pitivi 1.0 Release Candidate Arrives

    The Pitivi open-source non-linear video editor has been in development for thirteen years while its v1.0 release is finally near.

    Coming out this morning as a surprise is the Pitivi 1.0 release candidate, marked as Pitivi v0.99. The Pitivi 1.0 RC is primarily comprised of many bug fixes and performance improvements, thanks in part to more unit testing.

4 must-have writing apps for Nextcloud

Filed under
Software

If writing is part of your job or your everyday routine, you might find the Nextcloud open source file sync and share application a very useful tool. First, it provides you with free, secure, and easily accessible cloud file storage.

Second, it's fully customizable, which means you can choose different writing tools, such as the four useful editorial apps described below, depending on the task you're trying to accomplish. You can find these and other useful add-ons on the Nextcloud app store.

Read more

Software: Temps, LabPlot, GNU Parallel, gnURL, Document Liberation Project

Filed under
Software
  • Temps – A Smart Beautiful Weather App for GNU/Linux

    I’ve written on a couple of weather applications before, including Cumulus and Simple Weather Indicator and today I bring you yet another free and beautiful Linux app with thanks to the open source community. It’s reminiscent of Cumulus weather application and it goes by the name of Temps.

    Temps is a beautiful cross-platform weather application that lives in the menu bar of any desktop. Being true to the open source spirit, it uses code from several open source projects like Menubar, OpenWeatherMap, Electron, and Chart.js, to mention a few.

  • [LabPlot] Short update on recent UX improvements

    One of the usual data visualization workflows supported by LabPlot involves the import of some external data into the application and the creation of plots.

  • GNU Parallel 20170922 ('Mexico City') released

    GNU Parallel - For people who live life in the parallel lane.

  • gnURL 7.55.1-4 released

    Today gnURL has been released in version 7.55.1-4 as a patch release.

  • Document Liberation Project: New releases

    LibreOffice’s native file format is the fully standardised OpenDocument Format. This is ideal for long-term storage of data, but many of us have to work with other file formats as well, including those generated by proprietary software.

Software: Samba, Cockpit, Termius, Remmina, Krita, Sublime Text, Slack Inside Emacs

Filed under
Software
  • Samba 4.7.0 (Samba AD for the Enterprise)

    Enterprise distributions like Red Hat or SUSE are required to ship with MIT Kerberos. The reason is that several institutions or governments have a hard requirement for a special Kerberos implementation. It is the reason why the distributions by these vendors (Fedora, RHEL, openSUSE, SLES) only package Samba FS and not the AD component.

    To get Samba AD into RHEL some day it was clear, that we need to port it to MIT Kerberos.

    In 2013 we started to think about this. The question which arise first was: How do we run the tests if we port to MIT Kerberos? We want to start the krb5kdc daemon. This was more or less the birth of the cwrap project! Think of cwrap like it is “The Matrix” where reality is simulated and everything is a lie. It allows us to create an artificial environment emulating a complete network to test Samba. It took nearly a year till we were able to integrate the first part of cwrap, socket_wrapper, into Samba.

  • Cockpit 151

    The User menu’s Authentication dialog now supports entering arbitrary paths to SSH keys for adding to the SSH authentication agent. Previously this only offered keys present in the standard ~/.ssh home directory.

  • Termius A Reliable SSH Client for Ubuntu/Linux Mint

    Termius is a client terminal which has built-in Telnet and SSH, it was formerly known as Serverauditor, and it is cross-platform available for Linux, Windows, Mac, iOS and Android, it offers full Terminal emulation on all your devices. You can run multiple concurrent terminal sessions with SSH, Telnet and Mosh. It has a robust emulation environment with full Emacs, Vim and MC support. Special characters, colors and command line tools work exactly how you’d expect them to.

    You don't have to worry about infrastructure and credentials, since they are organized very well and logically. It comes with powerful organization features. Combine a collection of hosts into a group with shared settings, easily configured at the top level. Effortlessly find what you’re looking for with tagging, search and rich previews.

  • Remmina Remote Desktop Application for Linux

    Remmina is a free and open-source remote desktop application, it is written in C and GTK+, released under GNU GPL license, and only available for Unix/Linux based systems. Basically it aims to be useful for system administrators and for those who need to access remote computers. It supports multiple network protocols in an integrated and consistent UI, at the moment RDP, VNC, NX, SPICE, XDMCP and SSH protocols are supported. You can install Remmina plugins: RDP, VNC, NX, XDMCP, SSH, Telepathy

  • Krita 3.3.0 – first release candidate

    Less than a month after Krita 3.2.1, we’re getting ready to release Krita 3.3.0. We’re bumping the version because there are some important changes for Windows users in this version!

  • Sublime Text 3.0 is Here! See, How to Install it on Linux

    The major changes to be seen in Sublime Text 3.0 are the Goto Definition, the new UI, syntax highlighting engine and an expanded API. Spell-check and word wrapping work better now.

  • Chap tames Slack by piping it into Emacs

    Emacs enthusiast Artur Malabarba has put the text editor to work taming Slack.

    Malabarba likes Slack and feels it's a fine tool for intra-office chat, but also feels that “it’s also a powerful source of distractions.”

    But he can't turn it off all day, so decided to “keep the spam in check.”

    Doing so proved quite simple. There's already a Slack client for Emacs here on GitHub and Malabarba put it to work alongside “Alerts”, a “Growl-like alerts notifier for Emacs.”

Wine Staging 2.17

Filed under
Software

Software: DNS Checkers, Alternatives to Adobe Software, Fake Hollywood Hacker Terminal and More

Filed under
Software

Launching Pipewire! (Fedora)

Filed under
Red Hat
Software

To give you all some background, Pipewire is the latest creation of GStreamer co-creator Wim Taymans. The original reason it was created was that we realized that as desktop applications would be moving towards primarly being shipped as containerized Flatpaks we would need something for video similar to what PulseAudio was doing for Audio. As part of his job here at Red Hat Wim had already been contributing to PulseAudio for a while, including implementing a new security model for PulseAudio to ensure we could securely have containerized applications output sound through PulseAudio. So he set out to write Pipewire, although initially the name he used was PulseVideo. As he was working on figuring out the core design of PipeWire he came to the conclusion that designing Pipewire to just be able to do video would be a mistake as a major challenge he was familiar with working on GStreamer was how to ensure perfect audio and video syncronisation. If both audio and video could be routed through the same media daemon then ensuring audio and video worked well together would be a lot simpler and frameworks such as GStreamer would need to do a lot less heavy lifting to make it work. So just before we starting sharing the code publicaly we renamed the project to Pinos, named after Pinos de Alhaurín, a small town close to where Wim is living in southern Spain. In retrospect Pinos was probably not the worlds best name

Read more

Also: Bodhi 2.11.0 released

Oracle: New VirtualBox 5.2 Beta, SPARC M8 Processors Launched

Filed under
Hardware
Software
  • VirtualBox 5.2 to Let Users Enable or Disable Audio Input and Output On-the-Fly

    Oracle announced new updates for its popular, cross-platform and open-source virtualization software, the third Beta of the upcoming VirtualBox 5.2 major release and VirtualBox 5.1.28 stable maintenance update.

    We'll start with the stable update, VirtualBox 5.1.28, as it's more important for our readers using Oracle VM VirtualBox for all of their virtualization needs. The VirtualBox 5.1 maintenance release 28 is here to improve audio support by fixing various issues with both the ALSA and OSS backends, as well as an accidental crash with AC'97.

  • SPARC M8 Processors Launched

    While Oracle recently let go of some of their SPARC team, today marks the launch of the SPARC M8.

    The initial SPARC M8 line-up includes the T8-1, T8-2, T8-4. M8-8, and SuperCluster M8-8 servers.

Software: Alternatives to Emacs and Vim, Alduin RSS Reader, SelekTOR

Filed under
Software
  • 3 text editor alternatives to Emacs and Vim

    Before you start reaching for those implements of mayhem, Emacs and Vim fans, understand that this article isn't about putting the boot to your favorite editor. I'm a professed Emacs guy, but one who also likes Vim. A lot.

    That said, I realize that Emacs and Vim aren't for everyone. It might be that the silliness of the so-called Editor war has turned some people off. Or maybe they just want an editor that is less demanding and has a more modern sheen.

  • Open-Source Alduin RSS Reader for Linux

    RSS readers are useful if you want to get latest updates from website(s). Alduin is a free and open-source RSS feed reader available for Linux and Windows, built using modern technologies like: Electron, React, TypeScript and Less, it has easy to use user-interface and suitable for all types of users. It has native system notification support, and additionally it supports podcast feeds too.
    Using the Alduin RSS interface is fairly simple, just click on the plus shaped button, and it will pull new articles from that given feed url, you can delete already added feed sources, lock the side menu in place.

  • SelekTOR: A Frontend GUI For Tor Browser (Bypass Country Restriction)

    Tor is a free software designed to make communication anonymous. Tor directs Internet traffic through a free, worldwide, volunteer overlay network consisting of more than seven thousand relays to conceal a user's location and usage from anyone conducting network surveillance or traffic analysis. Tor makes it more difficult for Internet activity to be traced back (Warning: still possible). Tor's use is intended to protect the personal privacy of users, as well as their freedom and ability to conduct confidential communication by keeping their Internet activities from being monitored.

    SelecTOR is a frontend GUI for the Tor application. It is free for Linux and open-source based on Java released under license GNU GPL-2, it acts as a Tor launcher and exit node chooser for browsers that support system proxying using PAC files. It can be used for security and anonymization purposes or to bypass some firewall. Simplifies the process of selecting Tor exit nodes and manages selective URL pattern based on routing via system proxying.

Syndicate content

More in Tux Machines

Security: OpenSSL, IoT, and LWN Coverage of 'Intelpocalypse'

  • Another Face to Face: Email Changes and Crypto Policy
    The OpenSSL OMC met last month for a two-day face-to-face meeting in London, and like previous F2F meetings, most of the team was present and we addressed a great many issues. This blog posts talks about some of them, and most of the others will get their own blog posts, or notices, later. Red Hat graciously hosted us for the two days, and both Red Hat and Cryptsoft covered the costs of their employees who attended. One of the overall threads of the meeting was about increasing the transparency of the project. By default, everything should be done in public. We decided to try some major changes to email and such.
  • Some Basic Rules for Securing Your IoT Stuff

    Throughout 2016 and 2017, attacks from massive botnets made up entirely of hacked [sic] IoT devices had many experts warning of a dire outlook for Internet security. But the future of IoT doesn’t have to be so bleak. Here’s a primer on minimizing the chances that your IoT things become a security liability for you or for the Internet at large.

  • A look at the handling of Meltdown and Spectre
    The Meltdown/Spectre debacle has, deservedly, reached the mainstream press and, likely, most of the public that has even a remote interest in computers and security. It only took a day or so from the accelerated disclosure date of January 3—it was originally scheduled for January 9—before the bugs were making big headlines. But Spectre has been known for at least six months and Meltdown for nearly as long—at least to some in the industry. Others that were affected were completely blindsided by the announcements and have joined the scramble to mitigate these hardware bugs before they bite users. Whatever else can be said about Meltdown and Spectre, the handling (or, in truth, mishandling) of this whole incident has been a horrific failure. For those just tuning in, Meltdown and Spectre are two types of hardware bugs that affect most modern CPUs. They allow attackers to cause the CPU to do speculative execution of code, while timing memory accesses to deduce what has or has not been cached, to disclose the contents of memory. These disclosures can span various security boundaries such as between user space and the kernel or between guest operating systems running in virtual machines. For more information, see the LWN article on the flaws and the blog post by Raspberry Pi founder Eben Upton that well describes modern CPU architectures and speculative execution to explain why the Raspberry Pi is not affected.
  • Addressing Meltdown and Spectre in the kernel
    When the Meltdown and Spectre vulnerabilities were disclosed on January 3, attention quickly turned to mitigations. There was already a clear defense against Meltdown in the form of kernel page-table isolation (KPTI), but the defenses against the two Spectre variants had not been developed in public and still do not exist in the mainline kernel. Initial versions of proposed defenses have now been disclosed. The resulting picture shows what has been done to fend off Spectre-based attacks in the near future, but the situation remains chaotic, to put it lightly. First, a couple of notes with regard to Meltdown. KPTI has been merged for the 4.15 release, followed by a steady trickle of fixes that is undoubtedly not yet finished. The X86_BUG_CPU_INSECURE processor bit is being renamed to X86_BUG_CPU_MELTDOWN now that the details are public; there will be bug flags for the other two variants added in the near future. 4.9.75 and 4.4.110 have been released with their own KPTI variants. The older kernels do not have mainline KPTI, though; instead, they have a backport of the older KAISER patches that more closely matches what distributors shipped. Those backports have not fully stabilized yet either. KPTI patches for ARM are circulating, but have not yet been merged.
  • Is it time for open processors?
    The disclosure of the Meltdown and Spectre vulnerabilities has brought a new level of attention to the security bugs that can lurk at the hardware level. Massive amounts of work have gone into improving the (still poor) security of our software, but all of that is in vain if the hardware gives away the game. The CPUs that we run in our systems are highly proprietary and have been shown to contain unpleasant surprises (the Intel management engine, for example). It is thus natural to wonder whether it is time to make a move to open-source hardware, much like we have done with our software. Such a move may well be possible, and it would certainly offer some benefits, but it would be no panacea. Given the complexity of modern CPUs and the fierceness of the market in which they are sold, it might be surprising to think that they could be developed in an open manner. But there are serious initiatives working in this area; the idea of an open CPU design is not pure fantasy. A quick look around turns up several efforts; the following list is necessarily incomplete.
  • Notes from the Intelpocalypse
    Rumors of an undisclosed CPU security issue have been circulating since before LWN first covered the kernel page-table isolation patch set in November 2017. Now, finally, the information is out — and the problem is even worse than had been expected. Read on for a summary of these issues and what has to be done to respond to them in the kernel. All three disclosed vulnerabilities take advantage of the CPU's speculative execution mechanism. In a simple view, a CPU is a deterministic machine executing a set of instructions in sequence in a predictable manner. Real-world CPUs are more complex, and that complexity has opened the door to some unpleasant attacks. A CPU is typically working on the execution of multiple instructions at once, for performance reasons. Executing instructions in parallel allows the processor to keep more of its subunits busy at once, which speeds things up. But parallel execution is also driven by the slowness of access to main memory. A cache miss requiring a fetch from RAM can stall the execution of an instruction for hundreds of processor cycles, with a clear impact on performance. To minimize the amount of time it spends waiting for data, the CPU will, to the extent it can, execute instructions after the stalled one, essentially reordering the code in the program. That reordering is often invisible, but it occasionally leads to the sort of fun that caused Documentation/memory-barriers.txt to be written.

US Sanctions Against Chinese Android Phones, LWN Report on Eelo

  • A new bill would ban the US government from using Huawei and ZTE phones
    US lawmakers have long worried about the security risks posed the alleged ties between Chinese companies Huawei and ZTE and the country’s government. To that end, Texas Representative Mike Conaway introduced a bill last week called Defending U.S. Government Communications Act, which aims to ban US government agencies from using phones and equipment from the companies. Conaway’s bill would prohibit the US government from purchasing and using “telecommunications equipment and/or services,” from Huawei and ZTE. In a statement on his site, he says that technology coming from the country poses a threat to national security, and that use of this equipment “would be inviting Chinese surveillance into all aspects of our lives,” and cites US Intelligence and counterintelligence officials who say that Huawei has shared information with state leaders, and that the its business in the US is growing, representing a further security risk.
  • U.S. lawmakers urge AT&T to cut commercial ties with Huawei - sources
    U.S. lawmakers are urging AT&T Inc, the No. 2 wireless carrier, to cut commercial ties to Chinese phone maker Huawei Technologies Co Ltd and oppose plans by telecom operator China Mobile Ltd to enter the U.S. market because of national security concerns, two congressional aides said. The warning comes after the administration of U.S. President Donald Trump took a harder line on policies initiated by his predecessor Barack Obama on issues ranging from Beijing’s role in restraining North Korea to Chinese efforts to acquire U.S. strategic industries. Earlier this month, AT&T was forced to scrap a plan to offer its customers Huawei [HWT.UL] handsets after some members of Congress lobbied against the idea with federal regulators, sources told Reuters.
  • Eelo seeks to make a privacy-focused phone
    A focus on privacy is a key feature being touted by a number of different projects these days—from KDE to Tails to Nextcloud. One of the biggest privacy leaks for most people is their phone, so it is no surprise that there are projects looking to address that as well. A new entrant in that category is eelo, which is a non-profit project aimed at producing not only a phone, but also a suite of web services. All of that could potentially replace the Google or Apple mothership, which tend to collect as much personal data as possible.

today's howtos

Mozilla: Resource Hogs, Privacy Month, Firefox Census, These Weeks in Firefox

  • Firefox Quantum Eats RAM Like Chrome
    For a long time, Mozilla’s Firefox has been my web browser of choice. I have always preferred it to using Google’s Chrome, because of its simplicity and reasonable system resource (especially RAM) usage. On many Linux distributions such as Ubuntu, Linux Mint and many others, Firefox even comes installed by default. Recently, Mozilla released a new, powerful and faster version of Firefox called Quantum. And according to the developers, it’s new with a “powerful engine that’s built for rapid-fire performance, better, faster page loading that uses less computer memory.”
  • Mozilla Communities Speaker Series #PrivacyMonth
    As a part of the Privacy Month initiative, Mozilla volunteers are hosting a couple of speaker series webinars on Privacy, Security and related topics. The webinars will see renowned speakers talking to us about their work around privacy, how to take control of your digital self, some privacy-security tips and much more.
  • “Ewoks or Porgs?” and Other Important Questions
    You ever go to a party where you decide to ask people REAL questions about themselves, rather than just boring chit chat? Us, too! That’s why we’ve included questions that really hone in on the important stuff in our 2nd Annual Firefox Census.
  • These Weeks in Firefox: Issue 30