Odprtokodni pogled

Opensource view

Tuja odprtokodna scena

5 Cool New Projects to Try in Fedora Linux

tuxmachines.org - Pon, 04/01/2019 - 10:17

In this article, we will share five cool new projects to try in Fedora Linux distribution. Note that some of these projects may also be work on other mainstream Linux distributions such as Ubuntu and CentOS.

read more

Debian elections: field reduced to four after one withdrawal

tuxmachines.org - Pon, 04/01/2019 - 10:12

One of the five candidates in the running for the post of leader of the Debian/GNU Linux project has withdrawn from the race, leaving four to contest for the post.
Simon Richter, an embedded systems expert from Germany, said he was pulling out of the race for personal reasons which he did not specify.

"As you may have noticed, life happened to me shortly after sending that mail [the email announcing he was throwing his hat in the ring]," he wrote.

"I'm definitely not in a position to make a serious bid anymore, so I'd like to withdraw. I still have opinions, but I guess I'll just blog about them at some point."

Also: Paul Wise: FLOSS Activities March 2019

read more

Condres OS 19.04 KDE and GNOME News

tuxmachines.org - Pon, 04/01/2019 - 09:40
  • Condres OS 19.04 KDE Run Through

    In this video, we look at Condres OS 19.04 KDE.

  • Designing for Sandboxes

    One of the things I talked about in my talk at Scale 17x is that there are a number of platform features coming that are enevitable.

    One of those is application sandboxing.

    But not every component within an application is created equal or deserves equal access to user data and system configuration. Building the next big application is increasingly requiring thinking about how you segment applications into security domains.

    Given the constraints of our current operating systems, that generally means processes. Google’s Chrome was one of the first major applications to do this. The Chrome team had created a series of processes focused on different features. Each of those processes had capabilities removed (such as network, or GPU access) from the process space to reduce the damage of an attack.

  • Useful Extensions for GNOME 3.32

    Now, after you've got GNOME 3.32, its time to hunt Shell Extensions once again. Here I present you my choices of Extensions working for the 3.32 which are useful and productive. For example, you may notice that some extension such as NetSpeed didn't work yet on the 3.32, and you will find the replacement to be Simple Net Speed here. You can use Desktop Icons and Dash to Dock to have traditional working environment, use Drop Down Terminal if you often run command at any time, and a pair of Applications Menu and Places Status Indicator to make your screen behaves like GNOME2. It's still so many Extensions available out there but I hope this simplified list works for you. Enjoy GNOME 3.32!

read more

Mozilla/Firefox: TenFourFox and Listening Devices

tuxmachines.org - Pon, 04/01/2019 - 09:38
  • TenFourFox FPR14b1 available (now with H.264 video)

    I had originally plotted three main features for this release, but getting the urgent FPR13 SPR1 set me back a few days with confidence testing and rebuilds and I have business trips and some vacation time coming up, so I jettisoned the riskiest of the three features (a set of JavaScript updates and a ugly hack to get Github and other sites working fully again) and concentrated on the other two. I'll be looking at that again for FPR15, so more on that later.

    Before we get to the marquee features, though, there are two changes which you may not immediately notice. The first is a mitigation for a long-standing issue where some malicious sites keep popping up authentication modals using HTTP Auth. Essentially you can't do anything with the window until the modal is dealt with, so the site just asks for your credentials over and over, ultimately making the browser useless (as a means to make you call their "support line" where they can then social engineer their way into your computer). The ultimate solution is to make such things tab-modal rather than window-modal, but that's involved and sort of out of scope, so we now implement a similar change to what current Firefox does where there is a cap of three Cancels. If you cancel three times, the malicious site is not allowed to issue any more requests until you reload it. No actual data is leaked, assuming you don't type anything in, but it can be a nasty denial of service and it would have succeeded in ruining your day on TenFourFox just as easily as any other Firefox derivative. That said, just avoid iffy sites, yes?

    The second change is more fundamental. For Firefox 66 Mozilla briefly experimented with setting a frame rate cap on low-end devices. Surprise, surprise: all of our systems are low-end devices! In FPR13 and prior, TenFourFox would try to push as many frames to the compositor as possible, no matter what it was trying to do, to achieve a 60fps target or better. However, probably none of our computers with the possible exception of high-end G5s were probably achieving 60fps consistently on most modern websites, and the browser would flail trying to desperately keep up. Instead, by setting a cap and enforcing it with software v-sync, frames aren't pushed as often and the browser can do more layout and rendering work per frame. Mozilla selected a 30fps cap, so that's what I selected as an arbitrary first cut. Some sites are less smooth, but many sites now render faster to first paint, particularly pages that do a lot of DOM transforms because now the resulting visual changes are batched. This might seem like an obvious change to make but the numbers had never been proven until then.

  • Sustainable smart home with the TXT

    Mozilla started venturing into IoT recently. They are trying to advocate for better privacy and user freedom by promoting interoperability. These goals are unified in a proposal for a device API that is based on web protocols called “Web of Things”. It is developed in collaboration with smart home and “industry 4.0” manufacturers. This API isn’t necessarily implemented by each device directly, some devices are too low powered to provide a web server or are using other successful local mesh networks like Z-Wave or Zigbee. In these cases a gateway that is connected to the user’s local network would provide the web thing API.

    The web thing API breaks physical devices down into three attributes: properties, actions and events. Properties as stateful values that can both be changed by the device and the user (I’ll often refer to the user as the client). A device can however declare a property as read-only or add input value restrictions. Actions let the user execute an action on the device that either isn’t stateful or affects multiple properties. Lastly, events are fired by the device to indicate a momentary effect that is not reflected in the state. Above that is a capabilities system, with which devices can indicate the semantics of their features. For example a light bulb can advertise itself as being a “Lamp”, it’s brightness property will be a “BrightnessProperty” and the power toggle will be an “OnOffProperty”. These allow clients to expose appropriate UIs and behaviors for devices. The protocol is available over HTTP(S) and optionally WebSockets for real-time communication of changes.

    Mozilla is developing both a reference gateway to control devices using this protocol and reference implementations in multiple languages to build web things with. The “WebThing gateway” also has an adapter system to bridge other smart home protocols to the web of things data model.

read more

Programming and HowTos

tuxmachines.org - Pon, 04/01/2019 - 09:25

read more

Security Leftovers

tuxmachines.org - Pon, 04/01/2019 - 09:04
  • code integrity vs data security

    TPM can be used to implement DRM. There are plenty of people who will be more than happy to explain how evil this is, but that’s not today’s topic.

    TPM can be implemented poorly. If your secure enclave is really an insecure enclave, it’s not of much use. Keys can be extracted, misused, broken, etc. But let’s consider a good implementation, that does what we want and actually does it. What does it do for us?

  • Researchers Find Google Play Store Apps Were Actually Government Malware

    Security researchers have found a new kind of government malware that was hiding in plain sight within apps on Android’s Play Store. And they appear to have uncovered a case of lawful intercept gone wrong.

  • Linux Kernel inotify_update_existing_watch() Function Denial of Service Vulnerability [CVE-2019-9857]

    A vulnerability in the inotify_update_existing_watch() function of the Linux Kernel could allow a local attacker to cause a denial of service (DoS) condition on a targeted system.The vulnerability exists because the inotify_update_existing_watch() function, as defined in the fs/notify/inotify/inotify_user.c source code file of the affected software, does not call fsnotify_put_mark() with IN_MASK_CREATE after fsnotify_put_mark(). An attacker could exploit the vulnerability by accessing the system and submitting malicious system calls to the affected software. A successful exploit could cause the system to crash, resulting in a DoS condition.Proof-of-concept (PoC) code that demonstrates an exploit of this vulnerability is publicly available.Kernel.org has confirmed the vulnerability and released software updates.

read more

VIdeo/Audio: Open Source Security Podcast, Linux Action News, and SMLR

tuxmachines.org - Pon, 04/01/2019 - 09:02

read more

How to create a filesystem on a Linux partition or logical volume

tuxmachines.org - Pon, 04/01/2019 - 08:55

In computing, a filesystem controls how data is stored and retrieved and helps organize the files on the storage media. Without a filesystem, information in storage would be one large block of data, and you couldn't tell where one piece of information stopped and the next began. A filesystem helps manage all of this by providing names to files that store data and maintaining a table of files and directories—along with their start/end location, total size, etc.—on disks within the filesystem.

In Linux, when you create a hard disk partition or a logical volume, the next step is usually to create a filesystem by formatting the partition or logical volume. This how-to assumes you know how to create a partition or a logical volume, and you just want to format it to contain a filesystem and mount it.

read more

Sabayon 19.03 - New stable release

tuxmachines.org - Pon, 04/01/2019 - 07:33

The team behind Sabayon is excited to present you the latest stable release: Sabayon 19.03.

Sabayon is a modern and easy to use distribution based on Gentoo, which follows a reliable rolling release model.

Please read on or download your flavour

19.03 is a long awaited release, coming with a lot of new features and enhancements...

Also: Gentoo-Based Sabayon 19.03 - Finally Supports Full Disk Encryption, Python 3 Default

Gentoo-Based Sabayon 19.03 - Finally Supports Full Disk Encryption, Python 3 Default

read more

Stadia, Web Browsers, GNOME 3.32 & Jetson Nano Dominated Linux Interest In March

Phoronix - Pon, 04/01/2019 - 07:00
During March on Phoronix was 299 original news articles and 22 featured Linux hardware reviews / benchmark specials in quite an exciting month, though looking ahead to April and Q2'2019 should be quite exciting as well...

Gentoo-Based Sabayon 19.03 - Finally Supports Full Disk Encryption, Python 3 Default

Phoronix - Pon, 04/01/2019 - 05:00
It's been a while since last having any major news to report on Sabayon Linux, the once quite popular Gentoo-based Linux distribution, but they ended out March with a big update as version 19.03...

Review: Solus 4.0

tuxmachines.org - Pon, 04/01/2019 - 01:52

I very much enjoyed my time with Solus. The project offered an unusually polished experience and presents a breath of fresh air that is all the more impressive considering it is an independent distribution which cannot rely on a parent project to do the heavy lifting. Early on I ran into some minor issues. For instance, the installer cannot handling manual partitioning and will not launch GParted for us. When I tried using the automatic location check, I ended up with the wrong keyboard layout and measurement units.

After these initial hurdles though, and some minor frustration dealing with the inconsistent menus in GNOME applications, I rapidly grew to appreciate the care that has gone into both Budgie and Solus. The theme is unusually consistent, the desktop both well crafted and flexible enough for people like me who want to customize their environment. The default applications are generally some of the best in their categories and worked beautifully.

I really like the software centre and found it pleasantly easy to navigate and uncomplicated. I like that Solus has managed to make one streamlined package manager instead of shipping three different software managers to handle different situations.

Ideally I would have preferred one settings panel instead of two. The GNOME panel offers many more options and deals with operating system configuration while the Budgie panel deals specifically with the user interface. However, there is some overlap between the two and that sometimes meant it took longer for me to find settings I wanted to tweak. That being said, the Budgie settings panel is beautiful in its explanations and simplicity; other desktops could learn from Budgie's example.

In short, all the issues I ran into were minor, more inconveniences than problems. Meanwhile the polish, flexibility, default applications, stability and performance were all top notch. I was happy with my experiences with Solus 4.0 and think it will definitely appeal to new Linux users and more experienced users who want to install their system and just have it work.

read more

Linux 5.1-rc3 Kernel Released - Bigger Than Normal But Not Bad

tuxmachines.org - Pon, 04/01/2019 - 01:48

Linus Torvalds has just announced the third weekly release candidate of the upcoming Linux 5.1 kernel.

Linus wrote of 5.1-rc3, "The rc3 release is bigger than normal, which is obviously never anything I want to see, but at the same time it's early enough in the rc series that it's not something I really worry about. Yet. And while it's bigger, nothing really unusual stands out."

read more

Ubuntu MATE 18.04 for Raspberry Pi Enters Beta Testing, Here's What's New

tuxmachines.org - Pon, 04/01/2019 - 01:43

Ubuntu MATE leader Martin Wimpress announced the release of the beta version of the Ubuntu MATE 18.04 operating system for the tiny Raspberry Pi single-board computers.
Martin Wimpress and his team have been working on refreshing the Raspberry Pi edition of the Ubuntu MATE operating system for a few weeks now, finally rebasing it on a newer LTS (Long Term Support) release, namely Ubuntu MATE 18.04 LTS (Bionic Beaver).

After a few internal alpha images, the team is now ready to share the upcoming release with the Linux community, inviting them to try out the beta release of Ubuntu MATE 18.04 for Raspberry Pi, which brings lots of new features and improvements since the 16.04.2 release.

"With this Beta pre-release, you can see what we are trying out in preparation for our next (stable) version," said Martin Wimpress. "We have done what we can to optimize the builds for the Raspberry Pi without sacrificing the full desktop environment Ubuntu MATE provides on PC."

Also: Gentoo-Based Sabayon Linux Is Still Alive, New Release Adds Full Disk Encryption

read more

Debian and Sparky Reports for March

tuxmachines.org - Pon, 04/01/2019 - 01:34
  • Chris Lamb: Free software activities in March 2019

    My activities as the current Debian Project Leader are covered in my Bits from the DPL (March 2019) email to the debian-devel-announce mailing list. Attentive followers of the on-going Debian Project Leader Elections will have noted that I am not running for a consecutive third term, so this was therefore my last such update, at least for the time being…

  • Joerg Jaspert: Miscellaneous, DPL election, Archive changes, Crazyness

    As some may have noticed, I nominated myself for this years DPL election. Crazy times, indeed. Got four other candidates, one has withdrawn in the meantime, so we will have a ballot with 5 options (don’t forget famous NOTA).

    My company helpfully agreed on quite a bunch of time I can take, should I really get elected, which I think will also help the other areas I am active in.

    I won’t bore you with repeating what I said in my platform or on the Debian Vote List, if you are interested in the DPL election business, feel free to read through it all. It is certainly an interesting campaigning period until now.

    Whoever will win in the end, I am sure it will be a good DPL.

  • Jonathan Carter: Free Software Activities (2019-03)
  • Sparky news 2019/03

    The 3rd monthly report of 2019 of the Sparky project:
    • Sparky Tube received a few improvements
    • Advanced Installed has a new option which lets you choose autologin without password (suggested by Elton)
    • Sparky 5.7 released (LXQt, MinimalGUI/Openbox, MinimalCLI)
    • Sparky 5.7 Special Editions released (GameOver, Multimedia & Rescue)
    • Linux kernel updated up to version 5.0.5 & 4.20.17 (EOL) & 5.1-rc2
    • Added to repos: mkusb, qCalculator, qCamera, Sway, tbsm, mako, bemenu
    • Updated sddm-theme-sparky: replaced existing theme by a new one, which doesn’t need plasma as a dependency any more; added another sddm theme to a new ‘sddm-theme1-sparky’ package

read more

Red Hat on Desktop (LVFS) and Server

tuxmachines.org - Pon, 04/01/2019 - 01:32
  • The Linux Vendor Firmware Service Marks a Major Milestone

    Leveraging the LVFS (and the open-source fwupd tool), Linux distributions like Ubuntu allow users to install firmware updates alongside regular software and OS updates.

    The Software app is able to scan the service’s database to find firmware updates for compatible/attached hardware, then offer to download and install it — no manufacturer-specific flashing tools required.

  • LVFS Served Up 500k Firmware Files To Linux Users This Month

    Back in February the Linux Vendor Firmware Service (LVFS) was celebrating having served more than five million firmware files over the duration of this service for providing BIOS/firmware files to Linux users for different hardware components from different vendors ranging from mice/peripheral firmware to new system/motherboard BIOS from major hardware vendors. That count is quickly shooting up these days and they are now serving 500k files per month.

    Richard Hughes, the lead developer of LVFS/Fwupd at Red Hat, shared they hit a new record of serving 0.5 million firmware files over the past month.

  • The impact of the GDPR - privacy matters

    For anyone working in the privacy space, 2018 can be summed up with four letters: GDPR. The General Data Protection Regulation’s implementation date of May 25, 2018, will forever be etched in the minds of many as the date that the European Union adopted a comprehensive and far-reaching privacy law.

    On reflection, the GDPR was truly a watershed moment for global privacy law. Not only because of the rights and protections it provides to individuals in the European Union, but because — less than a year later — the GDPR has inspired other governments to consider similar legislation. New privacy laws are coming into effect in California, Brazil and possibly other U.S. states and countries, and these laws share many of the same principles of the GDPR.

  • Red Hat Summit 2019 Labs: Cloud-native app dev roadmap

    Red Hat Summit 2019 is rocking Boston, MA, May 7-9 in the Boston Convention and Exhibition Center. This event offers everything you need to know about the current state of open source, enterprise-ready software. You’ll find customers talking about leveraging open source in their solutions, and you’ll meet the creators of open source technologies and get to experience their hands-on labs.

    The following labs can be found in the session catalog online, by searching on the session title or filtering on “instructor-led lab” and “cloud-native app dev” content. You can also learn more about the Cloud-Native App Dev track sessions in this article.

read more

The Debian Project mourns the loss of Innocent de Marchi

tuxmachines.org - Pon, 04/01/2019 - 01:04

The Debian Project recently learned that it has lost a member of its community. Innocent de Marchi passed a few months ago.

Innocent was a math teacher and a free software developer. One of his passions was tangram puzzles, which led him to write a tangram-like game that he later packaged and maintained in Debian. Soon his contributions expanded to other areas, and he also worked as a tireless translator into Catalan.

The Debian Project honors his good work and strong dedication to Debian and Free Software. Innocent's contributions will not be forgotten, and the high standards of his work will continue to serve as an inspiration to others.

read more

Syndicate content