Language Selection

English French German Italian Portuguese Spanish

OSS

Leftovers: OSS and Sharing

Filed under
OSS
  • 7 tech advent calendars for the holiday season

    Technical advent calendars work in a similar way: Each day a new treat is revealed; sometimes it's an article explaining a new tip or technique, whereas other times the treat is an exercise to help you hone your skills. Tech advent calendars, although secular, run at the same time in the holiday season. This means they'll be kicking off on December first, giving the opportunity to learn all month long.

  • #LinuXatUNI

    This last Saturday 26th was celebrated the #LinuXatUNI event at National University of Engineering. There were more than 250 people registered, but we have only 84 attended, though. I was surprised about this! It might be the upcoming final exams at universities in Lima or the early time on weekend.

  • Keynote: Breaking Barriers: Creatively and Courageously
  • Amazon Web Services says open-source MXNet will be the ‘foundation’ of future AI services [Ed: This is openwashing of a surveillance operation]
  • How Microsoft Plans To “Mix” Ubuntu Linux And Windows 10 In Creators Update [Ed: Remember: Embrace. Extend. Extinguish. The "Microsoft loves Linux" lullaby is trying to lull and mislead us. Forgetting a 30-year pattern of Microsoft abuses.]
  • SiFive Launches Open-Source RISC-V SoC
  • IBM, Intel, Microsoft, Mozilla and NodeSource Join Forces on Node.js API; Node.js Build System will Start Producing Nightly node-chakracore Builds

    Part of Node.js Foundation’s mission is growing Node.js everywhere. The Node.js platform is already available on a variety of VMs, like Samsung’s JerryScript, a lightweight JavaScript engine for the Internet of Things. While many steps are needed to allow Node.js to work in VM environments outside of V8, the work the Node.js API working group and ChakraCore are doing are important steps to offer greater choice.

  • Open source dependency management is a balancing act

    When we started development of the Open Chemistry project we looked quite seriously at requiring C++11, and I was dissuaded at the time by several in our community. We ended up using some small parts of C++11 that could be made optional and falling back to Boost implementations/empty macro definitions. At the time I think it was perhaps a little too aggressive, but if I could go back I would have told my former self to go for it. The project was new, had few existing users, and was mainly targeting the desktop. Add to that the fact that adoption often takes a few years and there is the cost of supporting older compilers.

    [...]

    Hopefully we can maintain a good middle ground that best serves our users, and be cognizant of the cost of being too conservative or too aggressive. Most developers are eager to use the latest features, and it can be extremely frustrating to know there is a better way that cannot be employed. I think there is a significant cost to being too conservative, but I have seen other projects that update and change too aggressively lose mind share.

  • Emergency Bulletin: Firefox 0 day in the wild. What to do.

    We’re publishing this as an emergency bulletin for our customers and the larger web community. A few hours ago a zero day vulnerability emerged in the Tor browser bundle and the Firefox web browser. Currently it exploits Windows systems with a high success rate and affects Firefox versions 41 to 50 and the current version of the Tor Browser Bundle which contains Firefox 45 ESR.

    If you use Firefox, we recommend you temporarily switch browsers to Chrome, Safari or a non-firefox based browser that is secure until the Firefox dev team can release an update. The vulnerability allows an attacker to execute code on your Windows workstation. The exploit is in the wild, meaning it’s now public and every hacker on the planet has access to it. There is no fix at the time of this writing.

  • [Older] E-Voting Machines Need Paper Audits to be Trustworthy

    Election security experts concerned about voting machines are calling for an audit of ballots in the three states where the presidential election was very close: Michigan, Wisconsin and Pennsylvania. We agree. This is an important election safety measure and should happen in all elections, not just those that have a razor-thin margin.

    Voting machines, especially those that have digital components, are intrinsically susceptible to being hacked. The main protection against hacking is for voting machines to provide an auditable paper trail.

  • UK.gov was warned of smart meter debacle by Cabinet Office in 2012

    The government was warned of the risks surrounding its controversial smart meter programme four years ago, according to a leaked internal report seen by The Register, but appears to have largely ignored those concerns.

    A review of the programme from March 2012 highlights the vulnerability of smart meters to cyber-attacks, and flagged estimates that the scheme could leave the taxpayer out of pocket by £4.5bn rather than save consumers cash.

    Some 53 million smart meters are due to be installed in residences and small businesses by the end of 2020 at an estimated cost of £11bn.

    So far 3.5 million have been installed. The government has said it expects the scheme will save £17bn. However, a recent delayed report found that benefits to the consumer could be much smaller than originally thought.

GStreamer 1.10.2 Multimedia Framework Released to Patch Recent Security Flaws

Filed under
OSS

Today, November 29, 2016, the GStreamer development team released the second maintenance update to the stable GStreamer 1.10 series of the open-source and cross-platform pipeline-based multimedia framework used on almost all Linux-based systems.

Read more

HP5: A CMS plugin for creating HTML5 interactive content

Filed under
Interviews
OSS

Before working fulltime on H5P, many of us on the Core Team were deeply involved with open source projects. Over the years we have been consulted for Drupal based projects, and we’ve always tried to contribute back to the Drupal community as much as we can. H5P is installed on over 7,000 websites. It is used by hundreds of universities, including Ivy League universities. It is being used by huge companies, including Fortune 50 companies, and other big organizations like parts of the UN.

Read more

Leftovers: OSS and Sharing

Filed under
OSS
  • Even secretive hedge funds can open source their software

    Obviously data-driven investment managers are not going to divulge the secret signals that form the basis of their alpha strategies. But when something is not part of your main business it can help to open source the code, which can then be improved.

    These days open sourcing software is a trend that even large hedge funds such as AHL and AQR in the US taking part in.

  • Guest View: How to play by the eight (unwritten) rules of open source

    When it comes to formal-but-not-formal rules, baseball is king. Don’t talk about a no-hitter in progress, don’t steal a base in a blowout and so on, all getting into the minutiae of the game. But baseball isn’t alone in the world of invisible manuals; the technology industry has their own set of these hidden guidelines. Open source in particular—the transparent world of collaborative code that has birthed such IT miracles as Linux and GNU—follows a strong set of unwritten rules that allow communities to coexist, projects to evolve, and innovation to flourish.

  • OGP Action Plan in Spain: Civil society asks for more openness

    Fifteen civil society representatives in Spain have sent a letter to the Spanish government requesting more transparency and communication during the creation process of the country’s third National Action Plan.

    Earlier this month, the OGP Steering Committee sent a letter to the Spanish government, saying it had failed to meet its commitments to the OGP. “At this moment, the government is preparing the third Action Plan of Spain and we are concerned about the delay in the elaboration, as well as the lack of communication and information about it,” they wrote.

  • Corruption: European governments are still failing [Ed: Microsoft too fails them]
  • Dec. 13: Sacramento State Alumni Chapter to Host Event on Open Source Governance

    Sacramento State University’s Hornets Policy and Politics Alumni (HPPA) Chapter is hosting its "What's Possible: Open-Source Governance" event Dec. 13 to showcase how data and technology can improve government services and facilitate “new kinds” of civic engagement.

MuckRock goes open source

Filed under
OSS
  • MuckRock goes open source

    Since MuckRock’s founding, one of our goals has been to help as many people as possible take advantage of their right to public records. Today, we’re pleased to announce that MuckRock is going open source so that others can join us in that mission in new ways.

  • FOIA Machine joins MuckRock to make government more open for everyone

    With fake news seemingly everywhere and government secrecy becoming the norm, public records are more important than ever. To help, I’m pleased to share that FOIA Machine is joining MuckRock. The two sites will continue to operate independently to offer easy, accessible tools to help reporters, researchers, and the general public file, track, and share their public records requests.

  • FOIA Machine is joining MuckRock

    MuckRock, the nonprofit dedicated to transparency and open government, announced Tuesday that it's adding FOIA Machine to its organization. MuckRock, which helps reporters file freedom of information requests and other services for a fee, will maintain a FOIA Machine site separately and keep it free.

4 OpenStack guides to help you build your open source cloud

Filed under
OSS

In a fast-moving project like OpenStack, it seems like there's more to learn with every day that passed. There are plenty of tools out there to help you keep up, including hands-on training courses, books, and of course the official documentation. And to add to the mix, every month, Opensource.com takes a look back at recent OpenStack tips, tricks, guides, and tutorials created by the open source community that might help you in your journey.

Read more

Time is running out for NTP

Filed under
OSS

There are two types of open source projects: those with corporate sponsorship and those that fall under the “labor of love” category. Actually, there’s a third variety: projects that get some support but have to keep looking ahead for the next sponsor.

Some open source projects are so widely used that if anything goes wrong, everyone feels the ripple effects. OpenSSL is one such project; when the Heartbleed flaw was discovered in the open source cryptography library, organizations scrambled to identify and fix all their vulnerable networking devices and software. Network Time Protocol (NTP) arguably plays as critical a role in modern computing, if not more; the open source protocol is used to synchronize clocks on servers and devices to make sure they all have the same time. Yet, the fact remains that NTP is woefully underfunded and undersupported.

Read more

Leftovers: OSS and Sharing

Filed under
OSS
  • Nomulus: Google’s open-source TLD registry platform

    In mid-October, Google open-sourced the core software behind their TLD registry: Nomulus. This software allows creation and management of new top-level domains (TLDs) in the cloud, enabling current businesses in the Internet real-estate market to expand into the new, rapidly growing generic TLD (gTLD) space, as well as reducing the technological barrier for prospective newcomers.

    Nomulus provides a wealth of core features out of the box. Because it is designed to run on Google App Engine, Nomulus is cloud-based and can scale quickly and efficiently as domains leased increase in popularity and number of registrations or inquiries.

  • Contribute To Open Source On #OpenCyberMonday

    Today is Cyber Monday, the day when everyone in the US goes back to work after Thanksgiving. Cyber Monday is a celebration of consumerism, and the largest online shopping day of the year. Right now, hundreds of thousands of office workers are browsing Amazon for Christmas presents, while the black sheep of the office are on LiveLeak checking out this year’s Black Friday compartment syndrome compilations.

  • Pentaho’s Quentin Gallivan: Open-Source Framework, Analytics Tools Key to Agencies’ Data Integration Efforts

    Quentin Gallivan, CEO of Hitachi Data Systems’ Pentaho subsidiary, has said government agencies should develop a “centralized” plan that seeks to leverage the use of business analytics tools and an open-source framework like Hadoop in order to facilitate data integration and access.

    Gallivan wrote that agencies should adopt an open-source framework that includes governance practices on the use of data and works to support big data processing operations.

  • Bitcoin in 5 minutes

    Blockstream's Eric Martindale opened his five-minute All Things Open lightning talk with a bold claim: "Bitcoin is one on the most significant innovations of our time."

  • 3 alternative reasons why you should test Nextcloud 11 Beta

    On the Nextcloud blog I just published about the beta for Nextcloud 11. The release will deliver many improvements and is worth checking out in itself, plus I put a nice clickbait-style title and gave three reasons to test it.

  • The Glass Room: Looking into Your Online Life

    It’s that time of year! The excitement of Black Friday carries into today – CyberMonday – the juxtaposition of the analog age and the digital age. Both days are fueled by media and retailers alike and are about shopping. And both days are heavily reliant on the things that we want, that we need and what we think others want and need. And, all of it is powered by the data about us as consumers. So, today – the day of electronic shopping – is the perfect day to provoke some deep thinking on how our digital lives impact our privacy and online security. How do we do this?

  • phpMyAdmin security issues

    You might wonder why there is so high number of phpMyAdmin security announcements this year. This situations has two main reasons and I will comment a bit on those.

    First of all we've got quite a lot of attention of people doing security reviews this year. It has all started with Mozilla SOS Fund funded audit. It has discovered few minor issues which were fixed in the 4.6.2 release. However this was really just the beginning of the story and the announcement has attracted quite some attention to us. In upcoming weeks the security@phpmyadmin.net mailbox was full of reports and we really struggled to handle such amount. Handling that amount actually lead to creating more formalized approach to handling them as we clearly were no longer able to deal with them based on email only. Anyway most work here was done by Emanuel Bronshtein, who is really looking at every piece of our code and giving useful tips to harden our code base and infrastructure.

  • Time is running out for NTP

    Everyone benefits from Network Time Protocol, but the project struggles to pay its sole maintainer or fund its various initiatives

  • KDE End of Year Fundraising

    Have you ever felt that you wanted to give back to the KDE project? As the season of giving draws near there's never been a better time to support KDE and help the project continue to bring free software to millions of lives worldwide.

    By participating in the end of year fundraiser, you can help us in our mission. Your donations are used to pay for transport and accomodation for developers to attend sprints as well as to support the server infrastructure required to keep the project running.

  • The Latest On C++17, Early Work For C++20

    There was a C++ standards meeting recently in Issaquah, Washington and a report on it is now available with the latest on C++17 and early work around what will form C++20.

    This meeting resulted in the C++17 committee draft as the first feature-complete draft of the C++17 specification.Various tweaks to the language and library were accepted at this meeting. C++17 remains on track for seeing its official spec out in 2017.

  • From Concept to License: Stewarding Your Own Open Source Project

    Are you of a mind to launch an open source project or are you in the process of doing so? Doing it successfully and rallying community support can be more complicated than you think, but a little up-front footwork and howework can help things go smoothly. Beyond that, some planning can also keep you out of legal trouble. Issues pertaining to licensing, distribution, support options and even branding require thinking ahead if you want your project to flourish. In this post, you'll find our newly updated collection of good, free resources to pay attention to if you're doing an open source project.

  • Open source virtual reality, a new board for electronics testing, Fedora 25, and more news

    In this week's edition of our open source news roundup, we take a look at open source virtual reality, a new board for electronics testing, Fedora 25, and more.

  • Switzerland to create an open food data programme

    Opendata.ch, which represents the Open Knowledge Foundation in Switzerland, has launched the Business Innovation food.opendata.ch programme, with the goal of building an open and public database on food and nutrition data. The programme is also funded by the Swiss food industry, represented by Migros – via its funding arm Engagement Migros.

Yelp offers up Kafka tools to open source

Filed under
OSS

Yelp saved itself US$10 million by building out its Apache Kafka-based Data Pipeline, and now it wants to spread that love to other enterprises. Just before the holidays, Yelp open-sourced its Data Pipeline and assorted utilities used to maintain and build out this streaming data platform.

Data Pipeline is now available on GitHub under the Apache 2.0 license. Using Data Pipeline, developers can tie their applications into the constantly flowing stream of Kafka data. The company detailed this in a blog entry.

Read more

Syndicate content