Language Selection

English French German Italian Portuguese Spanish

February 2021

PostgreSQL, GNOME, Rubygems Update in Tumbleweed

Filed under
SUSE

Slonik fans are excited for this week’s openSUSE Tumbleweed snapshots as PostgreSQL has a major release in the rolling release distribution.

Snapshot 20210224 brought in the new postgresql 13 version. The new major version brings in highly requested features like parallelized vacuuming and incremental sorting. PostgreSQL brought some security enhancements with its extension system that allows developers to expand its functionality. There are also improvements to its indexing and lookup system, which benefit large databases. PostgreSQL wasn’t the only major version updated in the snapshot; the utility library ndctl jumped two versions to 70.1, which added firmware activation support. Other major version updates were made to liberation-fonts 2.1.1 and perl-Mail-DKIM 1.20200907. The Advanced Linux Sound Architecture package updated to version 1.2.4, which provided some plugin updates and Link Time Optimization fixes. Among other packages to update in the snapshot were bind 9.16.7, libsolv 0.7.16 and debugging tool xfsprogs 5.9.0.

Read more

today's leftovers

Filed under
Misc
  • Panel: A New Era of Open? COVID-19 and the Pursuit for Equitable Solutions

    In this panel, we’ll examine the fields of Open Data, Open Science, and Open Source Medical Hardware with leading experts and practitioners, asking questions like: “What does “open” mean in the COVID-19 context?” “What role can open access and the open community play in ensuring there is timely and equitable access to medical and scientific research outputs and data, vaccines and treatments?” “Can open science and open data help prevent the next pandemic?” “What legal tools should be used to expedite the manufacturing of vaccines?” “How can we balance individual privacy with the need to share information about genome variation and patterns of infection?”

  • WordPress Boots Pirated Themes and Plugins [Ed: "Pirated" is technically and legally the wrong term]

    WordPress issued a statement that pirated themes and plugins are prohibited from being distributed from the official repositories

    [...]

    WordPress.org announced that plugins and themes that are pirated versions of paid plugins and themes will be removed from the official WordPress repositories. The WordPress community debated if that approach violated the WordPress Open Source GPL license that allows derivative works to be distributed.

    The announcement itself affirmed that premium plugins are developed under the GPL that allows the creation of derivative works. But it also reserved the right to remove the plugins from the official plugin repository.

  • New Release: OnionShare 2.3

    This post was originally published on Micah Lee's blog.

    After a ridiculously long sixteen months (or roughly ten years in pandemic time) I'm excited to announce that OnionShare 2.3 is out! Download it from onionshare.org.

  • What is virtualisation? The basics

    Virtualisation plays a huge role in almost all of today’s fastest-growing software-based industries. It is the foundation for most cloud computing, the go-to methodology for cross-platform development, and has made its way all the way to ‘the edge’; the eponymous IoT. This article is the first in a series where we explain what virtualisation is and how it works. Here, we start with the broad strokes. Anything that goes beyond the scope of a 101 article will be covered in subsequent blog posts. Let’s get into it.

    [...]

    Snaps are containerised software packages that focus on being singular application containers. Where LXC could be seen as a machine container, Docker as a process container, snaps can be seen as application containers. Snaps package code and dependencies in a similar way to containers to keep the application content isolated and immutable. They have a writable area that is separated from the rest of the system, but are visible to the host via user application-defined interfaces and behave more like traditional Debian apt packages.

    Snaps are designed for when you want to deploy to a single machine. Applications are built and packaged as snaps using a tool called snapcraft that incorporates different container technologies to create a secure and easy-to-update way to package applications for workstations or for fleets of IoT devices. There are a few ways to develop snaps. Developers can configure snap to even run unconfined while they put it together and containerise everything later when pushing to production. Read more about the different way snaps can be configured in another article.

  • Full Circle Magazine #166

    This month:
    * Command & Conquer : LMMS
    * How-To : Python, Podcast Production, and Make a Budget
    * Graphics : Inkscape

    [...]

  • resolvd(8) - daemon to handle nameserver configuration

    From manual page description (at the time of writing):

    resolvd handles the contents of /etc/resolv.conf, which contains details of the system's DNS nameservers, and is read by the resolver routines in the C library.

    resolvd checks whether unwind(8) is running and monitors the routing socket for proposals sent by dhclient(8), slaacd(8), or network devices which learn DNS information such as umb(4).

  • February 2021 Web Server Survey

    Apache also holds a more significant lead in terms of Netcraft’s active sites metric, which favours sites with unique content. Apache serves 25.5% of active sites, whereas nginx serves 19.8%. Google accounts for a reasonably large 9.9% share of active sites, owing to its popular Blogger service.

    Microsoft’s server software market share remains in decline. Microsoft’s figures took a significant drop in 2020 in favour of OpenResty, and Microsoft now only has 6.5% (-1.0pp) of the site market and 6.0% (-0.3pp) of domains as of February 2021. OpenResty also looks set to overtake Microsoft as the third largest vendor in terms of sites and active sites.

  • #MonthOfMaking is back in The MagPi 103!
  • The Rise & Rise Of Linux Foundation

    Open Source Development Labs and Free Standards Group merged to form the Linux Foundation at the turn of the millennium.

  • Bundling for the Web

    One set of touted advantages for bundling relate to performance and efficiency. Today, we have a better understanding of the ways in which performance is affected by resource composition, so this has been narrowed down to two primary features: compression efficiency and reduced overheads.

    Compression efficiency can be dramatically improved if similar resources are bundled together. This is because the larger shared context results in more repetition and gives a compressor more opportunities to find and exploit similarities.

    Bundling is not the only way to achieve this. Alternative methods of attaining compression gains have been explored, such as SDCH and cross-stream compression contexts for HTTP/2. Prototypes of the latter showed immense improvements in compression efficiency and corresponding performance gains. However, general solutions like these have not been successful in find ways to manage operational security concerns.

    Bundling could also reduce overheads. While HTTP/2 and HTTP/3 reduce the cost of making requests, those costs still compound when multiple resources are involved. The claim here is that internal handling of individual requests in browsers has inefficiencies that are hard to eliminate without some form of bundling.

    I find it curious that protocol-level inefficiencies are not blamed here, but rather inter-process communication between internal browser processes. Not having examined this closely, I can’t really speak to these claims, but they are quite credible.

    What I do know is that performance in this space is subtle. When we were building HTTP/2, we found that performance was highly sensitive to the number of requests that could be made by clients in the first few round trips of a connection. The way that networking protocols work means that there is very limited space for sending anything early in a connection[2]. The main motivation for HTTP header compression was that it allowed significantly more requests to be made early in a connection. By reducing request counts, bundling might do the same.

  • Digital Restrictions (DRM) Screws People Yet Again: Book DRM Data Breach Exposes Reporters' Emails And Passwords

    I have a few different services that report to me if my email is found in various data breaches, and recently I was notified that multiple email addresses of mine showed up in a leak of the service NetGalley. NetGalley, if you don't know, is a DRM service for books, that is regularly used by authors and publishers to send out "advance reader" copies (known around the publishing industry as "galleys.") The service has always been ridiculously pointless and silly. It's a complete overreaction to the "risk" of digital copies of a book getting loose -- especially from the people who are being sent advance reader copies (generally journalists or industry professionals). I can't recall ever actually creating an account on the service (and can't find any emails indicating that I had -- but apparently I must have). However, in searching through old emails, I do see that various publishers would send me advance copies via NetGalley -- though I don't think I ever read any through the service (the one time I can see that I wanted to read such a book, after getting sent a NetGalley link, I told the author that it was too much trouble and they sent me a PDF instead, telling me not to tell the publisher who insisted on using NetGalley).

Security and Proprietary Failures

Filed under
Security
  • Security updates for Friday

    Security updates have been issued by Debian (python-pysaml2 and redis), Fedora (buildah, containernetworking-plugins, containers-common, libmysofa, libpq, podman, postgresql, skopeo, xen, and xterm), openSUSE (nghttp2), Oracle (firefox and thunderbird), SUSE (glibc, ImageMagick, python-Jinja2, and salt), and Ubuntu (python2.7, python2.7, python3.4, python3.5, python3.6, python3.8, and tiff).

  • DHS Secretary Mayorkas announces new initiative to fight 'epidemic' of cyberattacks [iophk: Windows TCO]

    Homeland Security Secretary Alejandro Mayorkas on Thursday announced new funding and initiatives to prioritize the nation’s cybersecurity, particularly in order to confront what he described as an “epidemic” of ransomware attacks.

    Mayorkas announced during a virtual speech that current cybersecurity grants from the Federal Emergency Management Agency would be increased by $25 million across the nation and that the Department of Homeland Security (DHS) was evaluating further cyber grants to help the Cybersecurity and Infrastructure Security Agency (CISA) assist state and local governments.

  • Google Discloses Details of Remote Code Execution Vulnerability in Windows

    The flaw, tracked as CVE-2021-24093, was patched by Microsoft on February 9 with its Patch Tuesday updates. Dominik Röttsches of Google and Mateusz Jurczyk of Google Project Zero have been credited for reporting the issue to Microsoft.

    A CVSS score of 8.8 has been assigned to the vulnerability, but Microsoft has rated it critical for all affected operating systems. The list includes Windows 10, Windows Server 2016 and 2019, and Windows Server.

  • VMWare Patches Critical RCE Flaw in vCenter Server

    The vulnerability, one of three patched by the company this week, could allow threat actors to breach the external perimeter of a data center or leverage backdoors already installed to take over a system.

  • How $100M in Jobless Claims Went to Inmates

    The U.S. Labor Department’s inspector general said this week that roughly $100 million in fraudulent unemployment insurance claims were paid in 2020 to criminals who are already in jail. That’s a tiny share of the estimated tens of billions of dollars in jobless benefits states have given to identity thieves in the past year. To help reverse that trend, many states are now turning to a little-known private company called ID.me. This post examines some of what that company is seeing in its efforts to stymie unemployment fraud.

  • Microsoft Failed to Shore Up Defences That Could Have Limited SolarWinds Hack, US Senator Says

    Microsoft's failure to fix known problems with its cloud software facilitated the massive SolarWinds hack that compromised at least nine federal government agencies, according to security experts and the office of US Senator Ron Wyden.

    A vulnerability first publicly revealed by researchers in 2017 allows hackers to fake the identity of authorized employees to gain access to customers' cloud services. The technique was one of many used in the SolarWinds hack.

    Wyden, who has faulted tech companies on security and privacy issues as a member of the Senate Intelligence Committee, blasted Microsoft for not doing more to prevent forged identities or warn customers about it.

  • Apple Releases macOS Big Sur 11.2.2 to Prevent MacBooks From Being Damaged by Third-Party Non-Compliant Docks

    Many of the complaints were from M1 Mac users who had a MacBook Pro or a ‌MacBook Air‌, but Apple's release notes suggest other models were affected as well.

  • Apple releases macOS update to prevent damage from third-party docks and dongles

    Most of the issues seemed to come from using a third-party dock, and while some of them seem to be from pretty obscure brands, there are a few recognizable ones that are reported to have killed laptops. For its part, Apple calls them “non-compliant powered USB-C hubs and docks” in the new update’s notes.

Audiocasts/Shows: Self-Hosted, KVM, and XMonad Config

Filed under
GNU
Linux
  • We run Arch BTW | Self-Hosted 39

    Our favorite LastPass alternative, why more boxes might be better than one, and we confess to an undying love.

  • The TinyPilot KVM - An open-source network KVM

    I've been looking for a network-enabled KVM for a while now, and I think I found a really good one - the TinyPilot! In this video, I take a look at this KVM to see how easy it is to set up and use.

  • Explaining Everything In My XMonad Config

    In this lengthy video, I am going to go over my Xmonad configuration file. My config file is massive, including a lot of code that I don't even use myself, but I keep this massive config as a reference manual for others to look at.

Android Leftovers

Filed under
Android

Wayland KDE X11

Filed under
KDE

These days, I often hear a lot about Wayland. And how much of effort is being put into it; not just by the Embedded world but also the usual Desktop systems, namely KDE and GNOME.

In recent past, I switched back to KDE and have been (very) happy about the switch. Even though the KDE 4 (and initial KDE 5) debacle had burnt many, coming back to a usable KDE desktop is always a delight. It makes me feel home with the elegance, while at the same time the flexibility, it provides. It feels so nice to draft this blog article from Kwrite + VI Input Mode

Thanks to the great work of the Debian KDE Team, but Norbert Preining in particular, who has helped bring very up-to-date KDE packages into Debian. Right now, I’m on a Plamsa 5.21.1 desktop, which is recent by all standards.

Read more

Documentation Improvement in KDE

Filed under
KDE

There was many changes over the last few months in KDE developer documentation tooling. The hope is to make KDE development easier to both newcomers but also long-time KDE contributors to use KDE technologies to build cool stuff.

The tooling for our generated documentation tooling improved. First of all, KApiDox got a new theme with a cleaner appearance and a better dark theme. But the improvement goes beyond just theming.

Read more

Stable Kernels: 5.11.2, 5.10.19, and 5.4.101

Filed under
Linux

I'm announcing the release of the 5.11.2 kernel.

All users of the 5.11 kernel series must upgrade.

The updated 5.11.y git tree can be found at:
	git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.11.y
and can be browsed at the normal kernel.org git web browser:
	https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...

thanks,

greg k-h

Read more

Also: Linux 5.10.19

Linux 5.4.101

Debian, KDE, and Trisquel Developments are now using GitLab

Filed under
GNU
KDE
Linux
Debian

It is exciting that now big software projects are using GitLab for their own development. Debian, the universal operating system, and KDE, the best computer user interface plus applications compilation, and also Trisquel, the completely free software computer OS are among them. You can click those mentioned links to get involved in the software developments. It is certainly a good news as it is good example for the other projects in sovereignty of the infrastructure (borrowing Trisquel's terms). I made this article after the Rocky Linux's one as I just realized how important it is. However, as an addition it is also good if there is a project maintains their own Gitea (instead of GitLab) infrastructure as both are certainly libre software. I wish the best for them all!

Read more

Rocky Linux, The CentOS Alternative, is now Using Gitlab

Filed under
GNU
Linux
Red Hat

This is a good example, that, Rocky Linux is now using GitLab, not GitHub, for its public development (software packaging) that everyone can join. We see in February 2021 it proudly presents its own serve we can see it here https://git.rockylinux.org. Rocky is a continuation of CentOS GNU/Linux which is now in rapid development with its rapidly growing (despite new) community. This means Rocky is following Debian, Trisquel OS and the other big OS projects to use the Free Software code hosting GitLab (and alike). This is certainly a good news to see more libre software forge being used in real life by big projects. To contribute to Rocky, especially when you are sysadmins and in server businesses, you can click here to Get Involved. Finally, I wish the best for Rocky and its development.

Read more

More in Tux Machines

Free Software and More

  • The Apache News Round-up: week ending 15 October 2021

    Happy Friday, everyone. The Apache community has had another great week.

  • The Intelligent Edge – Coming Soon to Arm DevSummit 2021 [Ed: What a ridiculous coredump of mindless buzzwords by SUSE]

    For those of us not keeping score, we’re at the cusp of a technology shockwave that will fundamentally change the way we live, work, and interact with each other. Some call it the fourth industrial revolution (I4). While the third industrial revolution was all about process and product automation, the fourth industrial revolution (from an IT perspective) will center on the fusion of IT and OT.

  • Five of Monday's 'All Things Open' Presentations We Wouldn't Miss - FOSS Force

    If you couldn’t make it to Raleigh, North Carolina to attend this year’s All Things Open, you’re in luck. You can go to the conference’s web site and register for the free online version of the event, which will include live streaming of all presentations happening at the event (including all keynotes), as well as a large number of prerecorded presentations that were put together specifically for the online audience. That’s how we at FOSS Force are planning on attending this year, although downtown Raleigh is only a couple of hours away by car.

  • Community Member Monday: Hlompho Mota

    I am a native of Lesotho, and a dreamer and a person who aspires to make changes. Currently I’m working in a business that serves other businesses in Lesotho to get recognition in the market, and generally grow to become more self-reliant. Other than my business, I do try and dabble in technology and try to understand how it works – and get a sense on how it can be relevant in the area of life that I live in at this moment. But besides that, I consider myself as lifelong learner and I hope that the learning will continue for the rest of my life. Currently, I’m a self-taught developer trying to participate in as many open-source projects as possible, with the hope of bringing much-needed development to my part of the world.

Programming Leftovers

  • Use KPNG to Write Specialized kube-proxiers

    The post will show you how to create a specialized service kube-proxy style network proxier using Kubernetes Proxy NG kpng without interfering with the existing kube-proxy. The kpng project aims at renewing the the default Kubernetes Service implementation, the "kube-proxy". An important feature of kpng is that it can be used as a library to create proxiers outside K8s. While this is useful for CNI-plugins that replaces the kube-proxy it also opens the possibility for anyone to create a proxier for a special purpose.

  • Dirk Eddelbuettel: dang 0.0.14: Several Updates

    A new release of the dang package arrived at CRAN a couple of hours ago, exactly eight months after the previous release. The dang package regroups a few functions of mine that had no other home as for example lsos() from a StackOverflow question from 2009 (!!), the overbought/oversold price band plotter from an older blog post, the market monitor from the last release as well the checkCRANStatus() function recently tweeted about by Tim Taylor. This release regroups a few small edits to several functions, adds a sample function for character encoding reading and conversion using a library already used by R (hence “look Ma, no new depends”), adds a weekday helper, and a sample usage (computing rolling min/max values) of a new simple vector class added to tidyCpp (and the function and class need to get another blog post or study …), and an experimental git sha1sum and date marker (as I am not the fan of autogenerated binaries from repos as opposed to marked released meaning: we may see different binary release with the same version number).

  • Rakudo Weekly News: 2021.42 Learning With

    Daniel Sockwell was inspired by a blog post a few weeks ago about a bouncing balls demo. The result is a new framework for learning Raku, but this time with some nice graphics: Learn Raku With: HTML Balls. Apart from the technical points, it’s also a great way (for people without much programming experience) to get involved with Raku while creating graphics and animations, rather than textual output. Check it out!

  • Russ Allbery: rra-c-util 10.0

    It's been a while since I pushed out a release of my collection of utility libraries and test suite programs, so I've accumulated quite a lot of chanages. Here's a summary; for more, see the NEWS file.

  • 1.56.0 pre-release testing | Inside Rust Blog

    The 1.56.0 pre-release is ready for testing. The release is scheduled for this Thursday, October 21th. Release notes can be found here.

  • Apple Announces The M1 Pro / M1 Max, Asahi Linux Starts Eyeing Their Bring-Up

    Apple today announced the M1 Pro and M1 Max as their most powerful SoCs ever built by the company. The new chips feature up to a 10-core processor, 32-core GPU, and up to 64GB of unified memory. While the Apple M1 was already well regarded for its speed, the M1 Pro and M1 Max are said to deliver up to 70% faster CPU performance than last year's M1. Meanwhile the GPU within the M1 Pro is up to 2x faster than the M1 while the M1 Max's GPU is said to be 4x faster.

Mozilla Firefox: Spyware, Password Loggers, and Performance Monitoring

  • This Week in Glean: Designing a telemetry collection with Glean

    (“This Week in Glean” is a series of blog posts that the Glean Team at Mozilla is using to try to communicate better about our work. They could be release notes, documentation, hopes, dreams, or whatever: so long as it is inspired by Glean.) All “This Week in Glean” blog posts are listed in the TWiG index). Whenever I get a chance to write about Glean, I am usually writing about some aspects of working on Glean. This time around I’m going to turn that on its head by sharing my experience working with Glean as a consumer with metrics to collect, specifically in regards to designing a Nimbus health metrics collection. This post is about sharing what I learned from the experience and what I found to be the most important considerations when designing a telemetry collection. I’ve been helping develop Nimbus, Mozilla’s new experimentation platform, for a while now. It is one of many cross-platform tools written in Rust and it exists as part of the Mozilla Application Services collection of components. With Nimbus being used in more and more products we have a need to monitor its “health”, or how well it is performing in the wild. I took on this task of determining what we would need to measure and designing the telemetry and visualizations because I was interested in experiencing Glean from a consumer’s perspective.

  • Firefox Add-on Reviews: How to choose the right password manager browser extension

    All good password managers should, of course, effectively secure passwords; and they all basically do the same thing—you create a single, easy-to-remember master password to access your labyrinth of complex logins. Password managers not only spare you the hassle of remembering a maze of logins; they can also offer suggestions to help make your passwords even stronger. Fortunately there’s no shortage of capable password protectors out there. But with so many options, how to choose the one that’ll work best for you? Here are some of our favorite password managers. They all offer excellent password protection, but with distinct areas of strength.

  • Mozilla Performance Blog: Performance Sheriff Newsletter (September 2021)

    In September there were 174 alerts generated, resulting in 23 regression bugs being filed on average 6.4 days after the regressing change landed. Welcome to the September 2021 edition of the performance sheriffing newsletter. Here you’ll find the usual summary of our sheriffing efficiency metrics. If you’re interested (and if you have access) you can view the full dashboard.

Red Hat/Fedora Leftovers

  • The NeuroFedora Blog: Next Open NeuroFedora meeting: 25 October 1300 UTC

    Please join us at the next regular Open NeuroFedora team meeting on Monday 25 October at 1300UTC in #fedora-neuro on IRC (Libera.chat). The meeting is a public meeting, and open for everyone to attend.

  • Real-time Analytics News for Week Ending October 16 - RTInsights

    In this week’s real-time analytics news: Red Hat announced updates in its portfolio of tools and programs for building applications on Red Hat OpenShift, and more. Keeping pace with news and developments in the real-time analytics market can be a daunting task. We want to help by providing a summary of some of the items our staff came across each week. Here are some of the news items from this week: Red Hat announced a series of updates in its portfolio of developer tools and programs for developers building applications on Red Hat OpenShift. The updates were to Red Hat OpenShift Pipelines, Red Hat OpenShift GitOps, and the Red Hat build of Quarkus. Additionally, Red Hat expanded the roster of training resources available on Kube By Example.

  • What I learned about Kubernetes and Knative Serverless

    If you happened to miss this year’s Kubernetes Summer Camp, there’s some good news! The sessions were recorded and are available for on-demand viewing. Along with those, you’ll also get access to a variety of downloadable content, including a free O’Reilly e-book.

  • Awards roll call: August to October 2021 [Ed: Those accolades and fake rewards/awards can easily be bought; they let you game the system for money]

    From workplace accolades to product wins, we are proud to be able to highlight some aspects of our company and the recognition they’ve received in the past few months. We recently published our DEI Statement, which declares our commitment to diversity, equity and inclusion—not just for our associates, but for our partners, customers and open source contributors. Our culture is rooted in transparency, collaboration, and inclusion—open source principles that continue to drive our company forward. We see the following awards as a recognition of our open source-driven innovation, where the best ideas can come from anywhere and anyone.