Language Selection

English French German Italian Portuguese Spanish

January 2020

Audiocasts/Shows: GNU/Linux Predictions, Nathan Wolf's Noodlings and Happy New Year From Marcel Gagne & Evan Leibovitch

Filed under
GNU
Linux
  • Linux Predictions for 2020 - Will Linus retire?
  • Particularly Poor Predictions | LINUX Unplugged 334

    We review our predictions and own up to what we got wrong, and what we got right in 2019.

    Special Guests: Alex Kretzschmar and Brent Gervais.

  • Nathan Wolf: Noodlings | Christmastime, xLights, Exploring Media Servers and Computer History

    Post Christmas Day shopping yielded me a really nice find, specifically something pretty fantastic from Lowe’s that allows me to fix my AC light strands. A Holiday Living Light Tester. The directions could have been a bit more clear… maybe worth a video… but I was able to recover three of my LED bush nets. Since they retail for about $10 each, that has made the purchase worth it already. This device is supposed to work with LED as well as incandescent lights. I’ve only tested it on LED thus far and it works well.

    This is a device that I wish I had discovered long ago.

    [...]

    As we wrapped up the year in BDLL challenges, our task for this week was to make some predictions about the year 2020. They didn’t have to be Linux related so, exactly but since Linux and tech is the focus of the show, it would only make sense to keep it as such.

    What I am wishing for, in 2020, is commercial grade CAD / CAM, manufacturing technology software to come to Linux, not necessarily for home use but for use in business.

    Specifically, what I would like to see is Fusion 360 by Autodesk supported in some level on Linux. It already runs well in Linux through Lutris but having actual support for it would be fantastic. I would also like to see PTC’s Creo running on Linux. PTC once supported Linux with earlier offerings of their mechanical design package but no longer do so today. It would be great to see.

  • Happy New Year maybe, VR games, Jumanji, RISCV, The Witcher, the Overnet, and the Future!

    TIK TEK TOE, episode 009. In this final episode of the decade, or at least, this year, Marcel and Evan riff on Christmas gifts, VR games, Jumanji, Open Hardware vs closed borders, The Witcher, and several other diversions. Somewhere in there, they reminisce over the last decade of free software, a free and open Internet (the Overnet), and lots of other things you really don't want to miss. Oh, and Marcel learns about Gwen Stacy, or is it Gaven and Stacey?

    Once you're done listening, or right now for that matter, please (pretty please, even) make sure you share this podcast with your friends, family, neighbours, enemies . . . just share and recommend. Also, if you can spare a few extra keystrokes, be sure to leave us a comment and tell us how we're doing.

Monthly/Annual Debian Reports: Sparky, Jonathan McDowell and Chris Lamb

Filed under
Debian
  • Sparky news 2019/12

    Linux kernel updated up to version 5.4.6 & 5.5-rc4

  • Jonathan McDowell: Free Software Activities for 2019

    As a reader of Planet Debian I see a bunch of updates at the start of each month about what people are up to in terms of their Free Software activities. I’m not generally active enough in the Free Software world to justify a monthly report, and this year in particular I’ve had a bunch of other life stuff going on, but I figured it might be interesting to produce a list of stuff I did over the course of 2019. I’m pleased to note it’s longer than I expected.

  • Chris Lamb: Free software activities in December 2019

    Software Freedom Conservancy (the fiscal sponsor for the Reproducible Builds project) have announced their fundraising season with a huge pledge to match donations from a number of illustrious individuals. If you have ever considered joining as a supporter, now would be the time to do so.

    [...]

    Whilst anyone can inspect the source code of free software for malicious flaws almost all software is distributed pre-compiled to end users. The motivation behind the Reproducible Builds effort is to ensure no flaws have been introduced during this compilation process by promising identical results are always generated from a given source, thus allowing multiple third-parties to come to a consensus on whether a build was compromised.

Why we need a free desktop

Filed under
GNU
Linux

I am frequently asked if there’s any point in the desktop anymore. With the rise of cloud services, it’s easy to wonder whether there is a need. I believe that a free software desktop system is more important than ever.

GNOME creates an entire desktop environment that is beautifully designed and simple to use. We do this to ensure user freedoms. It is this empowerment of end users – acknowledging their right to control their own computing – that drives me forward.

The intention behind making free software is important, but irrelevant if the reality is that users cannot make use of those freedoms. When fewer than 0.5% of the world’s population can code, the chance of someone being able to modify their own desktop, or pay someone to do so, is vanishingly small. It is our responsibility, as technologists, a community, and a foundation, to provide to put the user first. Software must be built for everyone, and that’s what we are doing.

Read more

4 of the Best Operating Systems for Raspberry Pi to Develop IoT Projects

Filed under
GNU
Linux
Hardware

If you just got the latest Raspberry Pi 4, you might be wondering which operating system to run it from. You will need a reliable and versatile desktop environment where you can change themes, install programs, and multitask without any hassles.

Raspberry Pi lets you experiment with thousands of different DIY projects in IoT which can range from intelligent cameras, drones, smart garage doors, magic mirrors, and many more. To work on them, you need to download the NOOBS installer and use that to install the OS on your Raspberry Pi.

Before you do that, there are certain criteria you need to keep in mind. The latest Raspberry Pi 4 is having compatibility issues with many operating systems.

Therefore, the search for a reliable operating system is ongoing and is absolutely the first thing to keep in mind. The following list has been designed keeping in mind current compatibility and the needs of tomorrow.

Read more

Kali Default Non-Root User

Filed under
GNU
Linux
Security

For years now, Kali has inherited the default root user policy from BackTrack. As part of our evaluation of Kali tools and policies we have decided to change this and move Kali to a “traditional default non-root user” model. This change will be part of the 2020.1 release, currently scheduled for late January. However, you will notice this change in the weekly images starting now.

The History of Default Root User

In the beginning, there was BackTrack. In its original form, BackTrack (v1-4) was a Slackware live based distro intended to be ran from a CDROM. Yes, we do go back a ways (2006!).

In this model, there was no real update mechanism, just a bunch of pentesting tools living in the /pentest/ directory, that you could use as part of assessments. It was the early days, so things were not very sophisticated, we were just all happy things worked. A lot of those tools back then either required root access to run or ran better when ran as root. With this operating system that would be ran from a CD, never be updated, and had a lot of tools that needed root access to run it was a simple decision to have a “everything as root” security model. It made complete sense for the time.

As time went by however, there were a number of changes. All of us that were around back then sort of remember things a little differently but on the broad strokes we saw people were installing BackTrack on bare metal so we felt like there should be an update mechanism. Especially after walking around Defcon and noticing how many people were using a version of BackTrack that was vulnerable to a certain exploit which came out a few weeks prior. That moved us to basing BackTrack 5 off of Ubuntu instead of Slackware live (February 2011). Then as more time went by we were so busy fighting with Ubuntu that we felt like we needed to move onto something else.

That brought us to Kali, and being an official Debian derivative.

Modern Kali

Our move to be a Debian derivative brought with a whole host of advantages. So many in fact its not worth reviewing them here, just look at the early Kali blog posts shortly after the launch and you will see a ton of examples. But one advantage that we never really talked to much about is the fact that we are based on Debian-Testing.

Debian has a well earned reputation for being one of the most stable Linux distros out there. Debian-Testing is the development branch of the next version of Debian, and realistically is still more stable than many mainstream Linux distros.

While we don’t encourage people to run Kali as their day to day operating system over the last few years more and more users have started to do so (even if they are not using it todo penetration testing full time), including some members of the Kali development team. When people do so, they obviously don’t run as default root user. With this usage over time, there is the obvious conclusion that default root user is no longer necessary and Kali will be better off moving to a more traditional security model.

Read more

More in Tux Machines

Audiocasts/Shows: WordPress, Linux Action News, Scams, and Fake Security

  • WP Briefing: Episode 18: The Economics of WordPress

    In episode 18 of WP Briefing, Josepha Haden Chomphosy reflects on a recent lecture that she gave to students at Hendrix College in which she explored the economics of WordPress and the principles that sustain the project’s ecosystem.

  • Linux Action News 211

    We cover what's special about Plasma's 25th-anniversary edition, chat with CloudLinux's CEO, and detail why Apple supporting Blender is good for all of us.

  • These Open Source SCAMMERS are getting out of control! - Invidious

    No, Inkscape isn't a scam. In fact, it's the best vector illustration tool on the planet. But, much like Krita just a few weeks ago, scammers have registered official-looking domains that are meant to trick people into downloading and installing ransomware. It's sad to see and I can't think of many ways we can combat this besides raising awareness.

  • Josh Bressers: Episode 293 – Scoring OpenSSF Security Scoring

    Josh and Kurt talk about the release of OpenSSF Security Scorecards version 3. This is a great project that will probably make a huge difference. Most of the things the scorecards are measuring are no brainier activities. We go through the list of metrics being measured. There are only a few that we don’t think are fantastic.

IBM/Red Hat Leftovers

  • Use and contribute to a new Open Source Cloud Guide

    Today, at All Things Open, IBM is releasing the Open Source Cloud Guide, which highlights various use cases that are important in hybrid cloud environments, features the important open source projects in those areas, and discusses how various clouds are using open source in their offerings. By open sourcing the guide, developers are able to both use and contribute to the learnings and use cases

  • Announcing Cryostat 2.0: JDK Flight Recorder for containers

    Cryostat is a container-native JVM application that provides a secure API for profiling and monitoring containers with JDK Flight Recorder (JFR). JDK Flight Recorder collects profiling and diagnostic data from applications using JFR events stored in binary flight recordings. When requested, Cryostat can retrieve, store, and analyze flight recordings from containerized Java virtual machines (JVMs) to assess overall application health. Users can download recording files and upload them to JDK Mission Control (JMC) or Grafana for further analysis. This article introduces Cryostat and shares new features in the 2.0 release, including example use cases, tips for getting started, and additional release notes. For more information about Cryostat fundamentals, visit Introduction to Cryostat: JDK Flight Recorder for containers.

  • Kafka Monthly Digest: September 2021

    Welcome to the 44th edition of the Kafka Monthly Digest. In this edition, I'll cover what happened in the Apache Kafka community in September 2021. For last month’s digest, see Kafka Monthly Digest: August 2021 on IBM Developer.

  • Sensitive information detection using the NVIDIA Morpheus AI framework

    The growth of cloud-native applications has driven an explosion of east-west network traffic within a datacenter where applications can create hundreds of thousands of network connections among virtual machines and containers. As a consequence, the ability to track, monitor, and secure a datacenter in a timely manner has risen above that of any individual or team, thus requiring the help of AI and machine learning (AI/ML) to enable ITOps, infrastructure security, and DevSecOps teams to manage the complexity of modern cloud-native applications and the underlying platforms. Red Hat and NVIDIA have been working together to bring the security analytics capabilities of the NVIDIA Morpheus AI application framework to Red Hat infrastructure platforms for cybersecurity developers. This article provides a set of configuration instructions to Red Hat developers working on applications that use the NVIDIA Morpheus AI application framework and NVIDIA BlueField data processing units (DPUs) to secure interservice communication.

  • DevSecOps: 11 questions to ask about your security strategy now

    It’s the fourth and final quarter of 2021, believe it or not. That makes it time for IT leaders to review and evaluate how things are going – and plan for 2022. Security sometimes gets left out of those conversations. We’re here to make sure that doesn’t happen, with an extensive list of questions worth asking as you assess your security posture and look for ways to improve. We’ll start with a series of topics that are particularly relevant for teams that are considering or already implementing a DevSecOps strategy, then we’ll cover a series of fundamental questions worth asking in any organization – especially those currently struggling to modernize their security approach.

  • How Podman runs on Macs and other container FAQs | Enable Sysadmin

    As the Podman machine function becomes more used—particularly on Macs—there have been many questions about how this all works. Some of what is tossed around on the internet is pure speculation, so this article aims to eliminate any speculation. Many people do not realize that containers are really Linux. As such, Linux containers cannot run natively on macOS. Therefore, the containers must run in a Linux virtual machine (VM), and a Podman client interacts with that VM. This is in line with all solutions for running containers on macOS.

Gentoo-Based Porteus Kiosk 5.3 Released with Hardware Video Decoding, Virtual Keyboard

Porteus Kiosk 5.3 is here about six months after Porteus Kiosk 5.2 to add several new features, including experimental hardware video decoding support and virtual keyboard for both Mozilla Firefox ESR and Google Chrome web browsers. While the hardware decoding feature can be enabled in remote config with the hardware_video_decode parameter, the virtual keyboard feature comes as an extension and will pop-up automatically when clicking an input field on a web page. Users can control the virtual keyboard in remote config with the virtual_keyboard parameter. Read more

today's howtos

  • How To Install WordPress on Debian 11 - idroot

    In this tutorial, we will show you how to install WordPress on Debian 11. For those of you who didn’t know, WordPress is an open-source CMS (Content Management System) that allows you to create a website that is tailored to your specific requirements. With WordPress, you can create a blog, a company website, a portfolio, an online store, or anything else you can think of. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of WordPress cms on a Debian 11 (Bullseye).

  • How to Download & Install Ubuntu 21.10 Impish Indri - LinuxCapable

    Ubuntu has officially released the Ubuntu 21.10 codenamed Impish Indri. This has seen the introduction of GNOME 40 as the default desktop, and sadly GNOME 41 did not make the final cut. The release also introduces Linux Kernel 5.13 among new applications and other back-end performance improvements. Some of the other features.

  • How to Install Docker Engine on Debian 11 (Bullseye)

    Docker is an open platform tool which provides container run time environment. With the help of docker, developers can build, ship and run their code as a container anywhere like on-prem or public cloud. Docker makes use of OS-level virtualization to spin up the containers. The host on which docker is installed and containers are spun are called as ‘Docker Engine’. In this post, we will cover how to install Docker Engine (Community Edition) on Debian 11 (Bullseye) step by step.

  • How to Install GNOME 41 Desktop Unstable on Debian 11 Bullseye - LinuxCapable

    Many Debian 11 users know that Gnome 38 is the default version that ships with the codename Bullseye operating system. However, as much hype has been built around the new Gnome 41 desktop, many would be looking for an opportunity to install and test or permanently use the latest on offer from GNOME. GNOME 41 introduces many changes from visual changes, new apps, and overhaul back-end changes to improve performance. Overall, it is vastly different from what previous GNOME versions have looked before. In the following tutorial, you will learn how to install the new GNOME 41 desktop from the unstable (sid) repository on your Debian 11 Bullseye operating system.

  • How to Install Odoo 15 on Ubuntu 20.04 - SpeedySense

    In this article, we explain you how to install Odoo 15 on Ubuntu 20.04 LTS. Follow 8 easy steps for install Odoo 15 on Ubuntu. Odoo 15 was released on Oct 06, 2021. It is very easy to install Odoo in Ubuntu 20.04 Focal Fossa. Odoo is a most extensive open-source ERP that provides all business related application. Such as Accounting, CRM, Sales, Purchase, Project, Point of Sale, E-Commerce and many more. So Let’s start how to install and configure Odoo 14 in Ubuntu. Every year Odoo comes up with more new features and make platform more user-friendly.

  • How to Install Slack on Fedora 35 - LinuxCapable

    Slack is one of the most popular collaboration communication platforms in the world. From it was initial launch in 2013, it has grown. It is now favored amongst development teams and corporations to integrate many services, run groups, meetings, etc. The way Slack works is to create channels for your teams, topics, customers, or co-workers. Slack also features voice and video calls, file sharing. In the following tutorial, you will know how to install the Slack communication platform on Fedora 35.

  • How to Install and Configure Postgres 14 on Debian 11

    In this guide we are going to install Postgresql 14 in Debian 11. Postgresql is an open source object-relational database system with over 30 years of active development that has earned it a strong reputation for reliability, feature robustness, and performance. Postgres, is a free and open-source relational database management system emphasizing extensibility and SQL compliance. It was originally named POSTGRES, referring to its origins as a successor to the Ingres database developed at the University of California, Berkeley. PostgreSQL is used as the primary data store or data warehouse for many web, mobile, geospatial, and analytics applications. PostgreSQL can store structured and unstructured data in a single product.

  • How to Perform a Remote Linux Backup Using SSH

    Secure Shell or SSH is responsible for successful network communication between two remote computers. For a Linux system administrator, this networking tool is the perfect solution for remote server/machine access over unsecured networks.

  • How to manage wireless connections using iwd on Linux

    Iwd is the acronym of “iNet wireless daemon”. As the name suggests, it is a free and open source wireless management daemon written by Intel for Linux. It is designed to avoid the usage of external libraries it just relies on the functionalities integrated into the kernel. It can be used together with NetworkManager as a substitute for wpa_supplicant, or in standalone mode. In this tutorial we will explore the latter option.

  • Linux Uptime Command with Examples

    The uptime command displays how long the system has been up (running) along with the current time, number of logged-in users, and the system load averages for the past 1, 5, and 15 minutes. In this tutorial, we learn the Linux uptime command.