Language Selection

English French German Italian Portuguese Spanish

Login

Enter your Tux Machines username.
Enter the password that accompanies your username.

More in Tux Machines

Android Leftovers

Security Leftovers

  • Security updates for Wednesday

    Security updates have been issued by Debian (firefox-esr, php-pear, wordpress, and zabbix), Oracle (java-1.8.0-openjdk and java-11-openjdk), Red Hat (java-1.8.0-openjdk, java-11-openjdk, kernel, and kpatch-patch), Scientific Linux (java-1.8.0-openjdk and java-11-openjdk), Slackware (seamonkey), SUSE (apache-commons-io, ImageMagick, kvm, ruby2.5, and sudo), and Ubuntu (edk2, libcaca, ntp, and ruby2.3, ruby2.5, ruby2.7).

  • Google Chrome Receives Security Fix Update for Windows, Mac, Linux Devices

    Google has released a update for its Chrome browser on Windows, Mac, and Linux that brings a total of seven security fixes. The list of fixes include one for a zero-day vulnerability that was exploited in the wild. The updated Chrome browser will be rolled out over the coming days, Google said in an advisory. Users are recommended to install the update as early as it reaches their devices. The search giant also credited and rewarded external security researchers who reported the vulnerabilities. The updated Chrome browser carries version 90.0.4430.85, according to the advisory released by Google through a blog post. The update is compatible with Windows, Mac, and Linux devices. In terms of security fixes, Google has detailed five of the seven highly critical vulnerabilities that are addressed by the update. The first is recorded as CVE-2021-21222 that is a heap buffer overflow in the V8 JavaScript engine, while the second one is noted under CVE-2021-21223 and is an integer overflow in Mojo interface.

  • antiX: New builds of 4.4 and 4.9 kernels

    New builds of 4.4 and 4.9 kernels should now be available in the repos. Newly named to 4.4.0-264 and 4.9.0-264 to avoid the libc6 message ‘Your kernel version indicates a revision number of 255 or greater’

Ubuntu 21.04 Server Performance Offering Nice Gains For AMD EPYC 7003 Series

Tomorrow's release of Ubuntu 21.04 is exciting on the desktop for Wayland by default in supported configurations and many other package updates and enhancements. But even for being a non-LTS release if you are interested in running Ubuntu Server there are some performance improvements to enjoy with newer platforms. Here is a look at the AMD EPYC 7003 "Milan" performance across Ubuntu 20.04 LTS, 20.10, and 21.04 with an AMD EPYC 7763 Supermicro server. With newer hardware, generally the newer the Linux distribution means better performance and support. It shouldn't come as much of a surprise although doesn't always hold true when sometimes there are regressions and other changes that end up lowering the performance in the name of security or other factors. But in any case with Ubuntu 21.04 on AMD EPYC 7003 series hardware we are seeing some nice performance gains to enjoy with this latest Linux distribution release. Read more

Kubernetes Leftovers

  • Graceful Node Shutdown Goes Beta

    Graceful node shutdown, beta in 1.21, enables kubelet to gracefully evict pods during a node shutdown. Kubernetes is a distributed system and as such we need to be prepared for inevitable failures — nodes will fail, containers might crash or be restarted, and - ideally - your workloads will be able to withstand these catastrophic events. One of the common classes of issues are workload failures on node shutdown or restart. The best practice prior to bringing your node down is to safely drain and cordon your node. This will ensure that all pods running on this node can safely be evicted. An eviction will ensure your pods can follow the expected pod termination lifecycle meaning receiving a SIGTERM in your container and/or running preStopHooks. Prior to Kubernetes 1.20 (when graceful node shutdown was introduced as an alpha feature), safe node draining was not easy: it required users to manually take action and drain the node beforehand. If someone or something shut down your node without draining it first, most likely your pods would not be safely evicted from your node and shutdown abruptly. Other services talking to those pods might see errors due to the pods exiting abruptly. Some examples of this situation may be caused by a reboot due to security patches or preemption of short lived cloud compute instances.

  • Kubernetes dockershim to live on

    When Kubernetes 1.23 is released towards the end of 2021, it will no longer include dockershim. This program enables you to use the Docker containerd container runtime within Kubernetes. Unfortunately, Docker was never designed to be embedded inside Kubernetes, and it's incompatible with Kubernetes' Container Runtime Interface (CRI). The fix was for dockershim to bridge the gap between Docker's containerd and CRI. Maintaining dockershim, however, was a pain so Kubernetes started depreciating it. Mirantis, which now owns the Docker program, will continue to support dockershim in Docker Engine and Mirantis Container Runtime with Kubernetes.

  • Hypergiant and SUSE RGS, taking Kubernetes to the final frontier

    Hypergiant Industries focuses on solving humanity’s most challenging problems by delivering best in class artificial intelligence solutions and products in a host of sectors, including space science and exploration. Hypergiant’s SUSE RGS (Rancher Government Solutions)-supported SatelliteONE mission is on track to achieve the impossible in the most hostile environment of all – putting K3s to work in orbit on military satellites, for the very first time.