Odprtokodni pogled

Opensource view

Tuja odprtokodna scena

The New & Improved Features Of The Linux 4.19 Kernel

Phoronix - Ned, 08/26/2018 - 15:51
The Linux 4.19-rc1 kernel is expected to be released today and with that marks the end of feature development on this next kernel version. Here is a look at the new and improved features to be found in Linux 4.19.

How to Create a Running Total Column in LibreOffice Calc

tuxmachines.org - Ned, 08/26/2018 - 14:00

Running total is a concept of summing data items from the beginning to till current stage. Running total can provide you glimpse of total values as the data sets grows. It mostly useful for may use cases, e.g. to track the total sales value till date, to track current account balance considering withdrawal and deposits and so on. This short tutorial will explain how to create running total column in LibreOffice Calc.

read more

Security: OpenSSH, Sprint, Hacker Summer Camp 2018, Seagate, Apache Struts and Intel's Notorious RNG in Systemd

tuxmachines.org - Ned, 08/26/2018 - 13:17
  • About OpenSSH "user enumeration" / CVE-2018-15473

    Regarding CVE-2018-15473: a few people have asked why we just committed
    a fix for this without any secrecy or treating it as a security
    problem. The reason is that I and the other OpenSSH developers don't
    consider this class of bug a significant vulnerability - it's a partial
    disclosure of non-sensitive information.

    We have and will continue to fix bugs like this when we are made aware
    of them and when the costs of doing so aren't too high, but we aren't
    going to get excited about them enough to apply for CVEs or do security
    releases to fix them. The following explains our reasoning.

  • Weak passwords let a hacker [sic] access internal Sprint staff portal

    Using two sets of weak, easy-to-guess usernames and passwords, a security researcher accessed an internal Sprint staff portal. Because the portal’s log-in page didn’t use two-factor authentication, the researcher — who did not want to be named — navigated to pages that could have allowed access customer account data.

  • Hacker Summer Camp 2018: Wrap-Up

    I meant to write this post much closer to the end of Hacker Summer Camp, but to be honest, I’ve been completely swamped with getting back into the thick of things. However, I kept feeling like things were “unfinished”, so I thought I’d throw together at least a few thoughts from this year.

  • SQL Injection Vulnerabilities in Seagate Personal Cloud Media Server allow Retrieval of Private Data

    The Seagate Media Server is a UPnp / DLNA Network Attached Storage mechanism incorporated into the Seagate Personal Cloud for individual level use. In an advisory on the IoT security bug hunt website Summer of Pwnage, several SQL injection vulnerabilities in the Seagate Media Server were discovered and discussed, risking the retrieval and modification of personal data stored in the database used by the media server.

    The Seagate Personal Cloud is a cloud storage facility that is used to store photos, videos, and other kinds of multimedia in its media server. As personal data is uploaded into this cloud, it is protected with authorization checks and password security, but within its layout, a public folder exists to which unauthorized users have the right to upload data and files.

  • Remote Code Execution Vulnerability in Apache Struts 2.x Resolved in Update

    In an advisory published on the Confluence website maintained by the ASF community, a remote code execution vulnerability in the Apache Struts 2.x was discovered and elaborated upon by Yasser Zamani. The discovery was made by Man Yue Mo of the Semmle Security research team. The vulnerability has since been given the label CVE-2018-11776. It is found to affect the Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 with possible remote code execution exploit opportunities.

  • Systemd Will Now Use RdRand Directly If The Kernel Can't Deliver Entropy [Ed: So systemd will use Intel's notorious back door, the RNG which BSD developers continuously distrust and reject. First Speck in the kernel (4.17) thanks to Google and now this.]

    Systemd will now resort to using Intel's RdRand hardware random number generator directly if the Linux kernel is unable to provide the init system with sufficient entropy.

    This systemd change stems from the issue of the Linux boot process getting stuck if there's not enough entropy due to a kernel change to eliminate CVE-2018-1108 over early boot processes potentially having weak random seed data. With systemd's random-util change, systemd will now use RdRand directly if the kernel can't provide any randomness, rather than having to block/stall.

read more

KDE Picks Up New Screen Layout Switcher Plasmoid, Other Enhancements

Phoronix - Ned, 08/26/2018 - 13:11
KDE developers remain on their spree of various usability enhancements and polishing. KDE contributor Nate Graham also continues doing a great job summarizing these enhancements on a weekly basis...

FreeBSD DRM Is Causing A Load Of In-Fighting This Week

Phoronix - Ned, 08/26/2018 - 12:01
DRM is causing a lot of vibrant discussions this week on the FreeBSD mailing list... And no, it's not even Digital Rights Management but rather colorful commentary about their Direct Rendering Manager code and plans for FreeBSD 12...

QEMU Merges Initial Support For nanoMIPS

Phoronix - Ned, 08/26/2018 - 11:38
Earlier this year MIPS rolled out the I7200 processor core built on the new "nanoMIPS" architecture. The open-source enablement of this new CPU ISA continues to settle down while the latest accomplishment is support for this new architecture in QEMU...

Router7: A Home Internet Router Platform Written Entirely In Golang

Phoronix - Ned, 08/26/2018 - 11:22
Following Friday's release of Go 1.11, a Phoronix reader pointed out a new open-source Internet router software package written entirely in Go...

Systemd Will Now Use RdRand Directly If The Kernel Can't Deliver Entropy

Phoronix - Ned, 08/26/2018 - 10:58
Systemd will now resort to using Intel's RdRand hardware random number generator directly if the Linux kernel is unable to provide the init system with sufficient entropy...

7 emerging open source Big Data projects that will revolutionize your business

tuxmachines.org - Ned, 08/26/2018 - 08:49

Twenty years ago, the Open Source framework was published, delivering what would be the most significant trend in software development since that time. Whether you want to call it "free software" or "open source", ultimately, it’s all about making application and system source codes widely available and putting the software under a license that favors user autonomy.

According to Ovum, open source is already the default option across several big data categories ranging from storage, analytics and applications to machine learning. In the latest Black Duck Software and North Bridge's survey, 90% of respondents reported they rely on open source “for improved efficiency, innovation and interoperability,” most commonly because of “freedom from vendor lock-in; competitive features and technical capabilities; ability to customize; and overall quality.” There are now thousands of successful open source projects that companies must strategically choose from to stay competitive.

read more

12 Reasons Why To Use Gnome Desktop

tuxmachines.org - Ned, 08/26/2018 - 08:41

You must (occasionally) be wondering which Desktop Environment is the best for Linux. And while most long-time Linux users have found their preferred desktop based on experience and computing purposes, some of us and including newbies are still stuck with the same question. I have switched to various Linux distros many times and frankly, all the Desktop Environments have their own advantages and disadvantages. Sticking to one of them depends entirely on the perspectives of the user and his preferences.
However, if you've recently just bought a new computer priced at medium range (say an Intel i5 processor with 8GB RAM and equipped with Solid State Drive) and you're lurking around the Internet searching for a cool Linux distro, so you can get the best Linux experience on your new awesome hardware. Then I recommend trying Linux with GNOME desktop due to its innovative look and ease of use.

read more

Graphics: Jerome Glisse's Work and a Move to Gitlab

tuxmachines.org - Ned, 08/26/2018 - 02:11
  • Heterogeneous Memory Management Still Being Worked On For Nouveau / Radeon / Intel

    Longtime Red Hat developer Jerome Glisse has published his latest patches concerning the Heterogeneous Memory Management support, a.k.a. HMM.

    Heterogeneous Memory Management was merged in Linux 4.14 as one of the kernel pieces sought after by NVIDIA and other vendors. HMM allows a process address space to be mirrored and system memory to be transparently used by any device process.

  • The Linux DRM Projects Are Plotting Their Transition To Gitlab

    With many of the FreeDesktop.org projects having already transitioned from their CGit and hodgepodge of services over to Gitlab, the Direct Rendering Manager (DRM) trees appear to be up next.

    Having already made the move this year to the new FreeDesktop.org Gitlab deployment has been Mesa, the X.Org Server, and many of the smaller repositories. This FreeDesktop Gitlab instance running on Google Compute Engine has been a big improvement for the project compared to their aging bare metal servers, their administration resources stretched thin, and Gitlab offering a modern UI compared to CGit and friends. Longer term, Gitlab should yield them more capabilities too around continuous integration and other modern development features.

read more

Games: Game Offers, Chess, and Beta of Proton

tuxmachines.org - Ned, 08/26/2018 - 02:00
  • Need a new game for the weekend? Here's some Linux games on sale
  • 12 of the Best Free Linux Chess Apps (Updated 2018)

    Chess is a recreational and competitive board game played between two players. It is a very popular game, played by millions across the world, in clubs, online, by correspondence, and in tournaments.

    Chess has the virtue of being suitable for people of all ages. It has many positive attributes such as to help individuals develop their memory, improve and enhance their concentration, as well as logical thinking. It also promotes and improves imagination and creativity. Chess is one of those games that takes a few days to learn and the rest of your life to master, with the game being a never ending learning process, even for the top players.

  • Valve are already pushing ahead with updates to Steam Play's Proton with a beta channel

    Valve are now offering a chance to test a beta of the next version of Proton in their Steam Play system.

    As a reminder: Steam Play is the system built into the Linux version of the Steam client to allow you to play Windows games on Linux. Compatibility varies from game to game, you can see the current titles that Valve have whitelisted in their original announcement.

  • Valve’s Steam Play Beta uses Proton, a modified WINE, allowing Linux gamers to play Windows games

    To provide compatibility with a wide range of Windows-only games to all Linux users, a Beta version of the new and improved Steam Play is now available. It uses Proton, a modified distribution of Wine, to allow games which are exclusive to Windows to run on Linux and macOS operating systems.

    Proton is an open source tool, allowing advanced users to alter the code to make their own local builds. The included improvements to Wine have been designed and funded by Valve, in a joint development effort with CodeWeavers.

    In order to identify games that currently work great in this compatibility environment and solve the issues, if any, they are testing the entire Steam catalog. The list of games that they are enabling with this Beta release include: Beat Saber, Bejeweled 2 Deluxe, Doki Doki Literature Club!, DOOM, Fallout Shelter, FATE, FINAL FANTASY VI, and many more.

  • Steam Play Proton To Improve Game Support For Linux Users

    Valve announced this week that they are releasing a beta version of Steam Play Proton, an improved version of Steam Play that uses a modified version of Wine, that makes Windows games with no Linux compatibility now able to be installed and run via the Linux Steam Client.

    Valve’s goal for releasing Proton is to let Linux Steam users enjoy access to a larger back catalog, and also allow future developers to easily leverage their work from other platforms to target Linux.

read more

GeckoLinux 150 Static Plasma review - Not quite

tuxmachines.org - Ned, 08/26/2018 - 01:49

GeckoLinux 150 was supposed to be the cure to all openSUSE Leap 15 ailments. It is not. I was expecting flawless results on all fronts, but then there were big issues with multimedia playback and associated performance, visual glitches, imperfect smartphone support, and of course, the graphics driver bomb. This hardly warrants the effort. I also didn't mention various crashes - the kgreeter crash on logout, every time - but they were there, too. Samba issues, printing issues, and the list goes on. The good things are nice and commendable, but there must be a stable base.

However, the real dealbreaker is the Nvidia setup. This is supposed to just work. If it works in a dozen other distros on this same box, then it should continue working. And I'm certain this has nothing to do with Nvidia drivers but with how the repo contents were compiled and packaged. Then, no easy rescue, none of that SUSE enterprise-like resilience. Finally, you do gain some, but not enough to justify the experience. I will sample Gecko sometime in the future again, but the bad karma around openSUSE remains. So long.

read more

Heterogeneous Memory Management Still Being Worked On For Nouveau / Radeon / Intel

Phoronix - Sob, 08/25/2018 - 23:13
Longtime Red Hat developer Jerome Glisse has published his latest patches concerning the Heterogeneous Memory Management support, a.k.a. HMM...

Solus Deploys Flatpak 1.0, Prepares For X.Org Server 1.20, Better Intel GVT Support

Phoronix - Sob, 08/25/2018 - 18:40
The popular Solus Linux distribution has experienced a busy week of updates but more changes are on the way to this desktop-focused OS...

Raspberry Pi’s PoE HAT ships for $20, tosses in a free fan

tuxmachines.org - Sob, 08/25/2018 - 17:48

Raspberry Pi Trading has launched a $20 Power-over-Ethernet HAT board for the Raspberry Pi 3 Model B+ that delivers up to 15W and ships with a small fan.

The Power-over-Ethernet HAT that was promised with the release of the Raspberry Pi 3 Model B+ SBC has arrived. The $20, 802.3af-compliant “Raspberry Pi PoE HAT” allows delivery of up to 15W over the RPi 3 B+’s USB-based GbE port without reducing the port’s up to 300Mbps bandwidth.

read more

Fedora/Red Hat Leftovers

tuxmachines.org - Sob, 08/25/2018 - 17:13

read more

Debian: TeX Live and Debian Long Term Support (LTS) Reports for July 2018

tuxmachines.org - Sob, 08/25/2018 - 17:10

read more

Syndicate content