Language Selection

English French German Italian Portuguese Spanish

Recent comments

  • Sparky 5.11   3 days 3 hours ago
    • Picom

      There are new tools available for Sparkers: Picom & Sparky Picom Manager. [...] Picom is a standalone compositor for Xorg, suitable for use with window managers that do not provide compositing. Picom is a fork of compton, which is a fork of xcompmgr-dana, which in turn is a fork of xcompmgr.

  • Linux 5.7 Features   3 days 3 hours ago
  • Initial Benchmarks With Intel oneAPI Level Zero Performance   3 days 3 hours ago
    • Phoronix Test Suite 9.6 Milestone 2 Released For Latest Cross-Platform Benchmarking

      The second development release of the Phoronix Test Suite 9.6 cross-platform benchmarking software is now available for evaluation and testing.

      Phoronix Test Suite 9.6 Milestone 2 builds off the earlier work so far this development cycle on continuing to improve the PTS9-modern result viewer/portal for viewing local benchmark results.

  • UbuntuDDE is a New Linux Distro That Brings The Beautiful Deepin Desktop to Ubuntu   3 days 3 hours ago
  • Linux 5.7 Features   3 days 4 hours ago
    • C-SKY Architecture Gets Fix For Its Own Speculative Execution Bug In Linux 5.7

      C-SKY is a a Chinese 32-bit CPU architecture intended for low-power devices from media boxes / DVRs to printers and other consumer electronics. C-SKY has also worked its way into a ~$6 development board. With its updates for the Linux 5.7 kernel are various additions to this maturing architecture support along with a speculative execution fix.

  • Red Hat Names Paul Cormier President and Chief Executive Officer   3 days 5 hours ago
  • Mozilla: WebAssembly, 74.0.1 Firefox Release, VR and DMs   3 days 5 hours ago
    • Firefox Zero-Day Flaws Exploited in the Wild Get Patched

      Mozilla Foundation rushes patches to fix bugs in its browser that could allow for remote code execution.

      Mozilla patched two Firefox browser zero-day vulnerabilities actively being exploited in the wild. The flaws, both use-after-free bugs, have been part of “targeted attacks in the wild,” according to a Mozilla Foundation security advisory posted Friday.

      Both bugs have critical ratings and allow remote attackers to execute arbitrary code or trigger crashes on machines running versions of Firefox prior to 74.0.1 and its business-friendly Firefox Extended Support Release 68.6.1. The bugs impact Firefox browser versions running on Windows, macOS and Linux operating systems. Details are scant on how either bug (CVE-2020-6819 and CVE-2020-6820) are specifically being exploited by adversaries.

      Tracked as CVE-2020-6819, this bug is a use-after free vulnerability tied to the browser component “nsDocShell destructor”. The Firefox nsDocShell is a client of the nsI-HttpChannel API, a function of the browser related to reading HTTP headers.

    • Firefox gets fixes for two zero-days exploited in the wild
  • Mozilla Firefox 75 Is Now Available for Download, Here’s What’s New   3 days 5 hours ago
    • Firefox Zero-Day Flaws Exploited in the Wild Get Patched

      Mozilla Foundation rushes patches to fix bugs in its browser that could allow for remote code execution.

      Mozilla patched two Firefox browser zero-day vulnerabilities actively being exploited in the wild. The flaws, both use-after-free bugs, have been part of “targeted attacks in the wild,” according to a Mozilla Foundation security advisory posted Friday.

      Both bugs have critical ratings and allow remote attackers to execute arbitrary code or trigger crashes on machines running versions of Firefox prior to 74.0.1 and its business-friendly Firefox Extended Support Release 68.6.1. The bugs impact Firefox browser versions running on Windows, macOS and Linux operating systems. Details are scant on how either bug (CVE-2020-6819 and CVE-2020-6820) are specifically being exploited by adversaries.

      Tracked as CVE-2020-6819, this bug is a use-after free vulnerability tied to the browser component “nsDocShell destructor”. The Firefox nsDocShell is a client of the nsI-HttpChannel API, a function of the browser related to reading HTTP headers.

  • Linux 5.7 Features   3 days 6 hours ago
    • /dev/random Seeing Performance Work For Linux 5.7

      The Linux 5.7 kernel will bring random performance improvements as in /dev/random.

      First up for boosting the /dev/random performance on the in-development Linux 5.7 kernel is making use of batched CRNG output in place of the CPU RNG instructions in order to deliver better performance. This is an improvement made by WireGuard's Jason Donenfeld after noting the RdRand instruction can be quite slow. With this batched entropy for get random, his accepted patch delivers better performance and also fits better from a security perspective.

  • Red Hat Names Paul Cormier President and Chief Executive Officer   3 days 6 hours ago
  • Red Hat Names Paul Cormier President and Chief Executive Officer   3 days 6 hours ago
    • Email to associates from Red Hat president and CEO, Paul Cormier

      Hi everyone,

      I know it’s unusual to talk about a change like this in this way, normally we would be together, and trust me, I would love to be. But the reality is we’re here. Once again, Red Hatters have come through in a big way for each other and for our customers and partners even under these challenging conditions. This is going to be a marathon and it’s more important than ever to continue to support one another right now.

      In light of all of this, I’ve thought about how interesting it is to take on this new role at this time. But, I believe that this is yet another step in the journey that we’ve all been through. The journey of the last 25+ years of Red Hat’s history has been filled with many obstacles. We’ve conquered many together. Trust that Red Hat will come out stronger on the other side. We always have.

      We still have a lot to accomplish and together we will. You may have heard me say that for 19 years I’ve had the same job, but that’s not entirely true. The last 19 years have not been a job, they’ve been an adventure! But even more importantly, Red Hat’s journey has been my journey. I’m excited to lead Red Hat in a new capacity and continue the journey.

      Looking back to when I joined, we were in a different position and facing different issues, but the spirit was the same. We were on a mission to convince the world that open source was real, safe and enterprise-grade. To do that we had to take risks. Some of those risks were product-related, like the shift to Red Hat Enterprise Linux, and some were M&A decisions, like our acquisition of Qumranet (which led to Red Hat Virtualization) and eNovance (which expanded Red Hat Consulting and our OpenStack expertise).

      We had the fortitude to take these risks along with the people to tackle them skillfully, ultimately helping to drive real change in the IT industry. Because of our close ties with open source communities, we are able to see trends building before much of the world does. I recall being on stage at Red Hat Summit in 2007 talking about the idea of any application, anywhere, anytime, which very quickly led to open hybrid cloud. No one, and I mean no one, was talking about it at that time. There’s an immense feeling of pride that each and every Red Hatter should feel knowing that the technology industry wouldn’t be what it is today and open source wouldn’t be as dominant without Red Hat. We are all a part of that history.

      From those beginnings we’ve brought open source to the point that it's THE development methodology for many areas of enterprise computing including infrastructure, application development and associated tools, and bluntly, real innovation. We not only built our expansive product portfolio using open source methodologies, but we built a company around it. If there’s a secret to our success or a reason why pundits ask if there "will ever be another Red Hat," that’s it: It takes more than just products to build a company. It takes all of us, across all teams and regions, working together. We all play an important role in not only our success and our future, but also the greater success of open source and next-generation computing as a whole, and to continue making Red Hat a great place to work.

      Red Hat is at the point where we’ve grown our "Linux company" into a powerhouse, one that serves as a model to others, making us a target for a broad set of competitors, from start-ups to established, publicly-traded behemoths. Sometimes it feels like everyone is now in the commercial Linux and container business (remember containers are Linux), a place that we’ve been building to since 2001.

      But I don’t see competition as a bad thing. If we weren’t winning and weren’t a dominant force, people wouldn’t be trying to compete with us. This pushes us to continue to innovate and deliver for our customers, while not becoming complacent. What I see is that we’ve gone from customers who might want to work with us to customers who depend on us. Organizations around the world are embracing open source as not only a powerful development model to build quality software but also as a better way to work together. Our company vision has turned into the industry vision.

      To further drive this expansive vision home, Jim Whitehurst came into Red Hat and embraced the open development methodology that has been the cornerstone of our product strategy and took it all the way across the organization. Creating an open organization that many companies now want to emulate. Jim will continue to be a strong ally for Red Hat in his new role as president of IBM alongside Arvind Krishna, CEO of IBM. Arvind has been a powerful advocate for Red Hat’s independence and a champion for this both inside IBM and externally. He is committed to keeping Red Hat Red Hat and he knows that part of that is having someone in this leadership position that understands us and what makes the company tick. Someone with the experience and intuition to understand our journey, and an appreciation for our unique culture and way of working. IBM knows that the best way for us to continue to lead the industry is to allow us to stay on our mission while helping us scale.

      Every year when I stand up at Red Hat Summit to deliver my keynote and look out at the crowd, it’s the most emotional moment for me. Even after all these years I still get that same wild rush: we built this. We created this unique company that changed the industry.

      All that said, future success in technology is not a birthright. As Red Hatters, we know we have to earn it each and every day with our customers. I’m ready to take the next step with you and continue on our journey to being the defining technology company of the 21st century.

      I talked earlier about my 19 year journey, call on me and other leaders at any time to help you in your journey at Red Hat. Stay well. Stay in touch.

  • Red Hat Names Paul Cormier President and Chief Executive Officer   3 days 7 hours ago
    • Get to know Red Hat president and CEO, Paul Cormier

      For the past 20 years, Paul Cormier has helped design, craft and ultimately drive Red Hat's product direction, from the communities we support to the new technology sectors we enter. Now as president and CEO, Paul will be responsible for executing the vision for Red Hat as a whole, not just as our product leader.

      So what makes Paul tick, what’s his background and what do you need to know about him? Read on to find out more!

  • elementary OS: Hera Updates for March, 2020   3 days 12 hours ago
    • Elementary OS 5.1.3 Reveals New Updates And Release Tool

      Ahead of the upcoming Ubuntu 20.04 LTS-based next Elementary OS 6, the current v5.1 Hera gets several new updates with the third point release v5.1.3. Concluding the update for March and early April, Cassidy James Blaede, Co-founder and CXO of Elementary OS, also revealed a new tool to track each package release.

  • Kaidan 0.5.0 released!   3 days 12 hours ago
    • Kaidan 0.5 Released As The KDE-Focused Jabber/XMPP Chat Client

      Kaidan is the open-source project that last year joined KDE as a Jabber/XMPP chat client. After a half year of work, Kaidan 0.5 has finally been released.

      The Kaidan Jabber/XMPP client remains written in C++ and complying with Kirigami specifications and employing Qt Quick for constructing the user-interface. Kaidan 0.5 comes after being in development for more than six months and includes usability improvements, better security, support for recording and sending audio/video, QR code scanning/generating, contact search abilities, and a whole lot of other features.

  • GNOME 3.36 and 3.38   3 days 12 hours ago
  • Linux 5.7 Features   3 days 15 hours ago
    • Linux 5.7 Perf Changes Include Additions For AMD Zen 3, Intel Tiger Lake

      The perf subsystem continues to be quite lively with improvements and for Linux 5.7 is seeing a number of low-level improvements.

      On the Intel side there is now Intel Tiger Lake uncore support. The Tiger Lake uncore support in the perf/x86 code largely amounts to following the same code paths as Ice Lake.

  • Eclipse Theia 1.0   3 days 15 hours ago
    • Theia Framework 1.0 Enables Web IDEs

      Earlier this week, the Eclipse Foundation announced the release of Eclipse Theia 1.0, an open-source framework for building web and native IDEs. Theia provides a JavaScript framework for building IDEs that can either be run on the web or packaged into an Electron application to run on the desktop. It has been designed to be compatible with VSCode extensions and uses the same Language Server Protocol for being able to remotely develop a variety of programming languages, including Java, Python, Rust, and many others.
      Although it may seem superficially similar to VSCode, Theia is actually an IDE framework rather than an IDE itself. It provides components, like JavaFX enables GUI applications, rather than an IDE itself. However, many IDEs have been built on top of pre-releases of Theia already, including the popular Gitpod.io which provides a web-based IDE for your applications, and Eclipse Che which can be run in a kubernetes cluster for self-hosted solutions.

  • 'Open Source' Response to COVID-19   3 days 15 hours ago
    • SD Times Open-Source Project of the Week: CHIME

      The COVID-19 Hospital Impact Model for Epidemics (CHIME) is a tool that provides up-to-date projections of what additional resources will be required in certain hospitals during the COVID-19 outbreak.

      It shows informed estimates of how many patients will need hospitalization, ICU beds, and mechanical ventilation over the coming days and weeks will be crucial inputs to readiness responses and mitigation strategies, according to the Predictive Healthcare team at Penn Medicine, which developed the project.

  • 'Open Source' Response to COVID-19   3 days 15 hours ago
    • Inside Weather Lends an Open Source Hand to the Medical Community

      While industrial manufacturers are ramping up production to meet the needs of medical professionals tomorrow, essential supplies are currently in short supply around the globe today. Setting an example of how designers can lend a hand in these efforts, online furniture retailer Inside Weather have redirected focus to develop an open source resources library intended to guide businesses and individuals to produce medical masks and face shields to help keep medical practitioners safe.

  • 'Open Source' Response to COVID-19   3 days 16 hours ago
    • MIT new open-source project can offer low-cost respirator for hospitals

      Adding to the lack of space and healthcare personnel in the shortage of materials such as masks, protective gloves, and respirators. COVID-19 is pushing the resources and forces of the health system of the affected countries to the limit. However, contributors from MIT are seeking to help curb these issues.

      Governments and private companies are struggling to find the materials that doctors and nurses require to take care of the thousands of infected people in the affected countries. Hence projects like this one from MIT could help them contribute to this crisis.

      The main symptoms of COVID-19 are related to respiratory difficulties, making hospital respirators essential to help the sick. Fortunately, scientific institutions like MIT have spent years working to make easier-to-build respirators. Whose design would speed the arrival of this material in hospitals.

  • 'Open Source' Response to COVID-19   3 days 16 hours ago
  • 'Open Source' Response to COVID-19   3 days 16 hours ago
    • Fashion designers, Vice President's office create open-source protective suit design

      When a crisis is at hand and resources are hard to come by, it only makes sense for groups from different fields to come together and find a solution.

      That’s exactly what happened when the Office of the Vice President (OVP) turned to Filipino fashion designers for help in producing personal protective equipment (PPEs) for medical frontliners in the coronavirus pandemic.

      “It took us more than 48 hrs of going back & forth – until this afternoon, we got word that, finally, our prototype has been approved!” said Robredo in a series of tweets on Sunday, March 29.

  • Ubuntu 20.04 Beta is Now Available to Download   3 days 16 hours ago

  • Linux 5.7 Features   3 days 17 hours ago
    • XFS Working Towards Online Repair, Many Underlying Improvements

      While XFS dates back to the 90's and has been in the Linux kernel for nearly two decades, this proven file-system continues aging gracefully and continuing to see more improvements. With Linux 5.7 is another step forward for XFS.

      With Linux 5.7 the XFS file-system has seen a number of underlying improvements as they work towards online file-system checking (fsck) capabilities. The online repair for XFS won't be ready for Linux 5.7 but a future kernel and they are getting the necessary changes introduced as they are finished.

    • Linux 5.7 To Support Spawning A Process In A Different Cgroup From Its Parent

      An important infrastructure change with the Linux 5.7 kernel now allows the ability to create a process in a different cgroup from the parent process.

      Using the clone3 system call, a child process can now be spawned directly into a different cgroup compared to its parent.

    • KVM With Linux 5.7 Supporting Protected/Secure VM Guests For IBM POWER + s390

      Both of IBM's s390 and POWER CPU architectures are seeing secure/protected guest virtual machine support with KVM on the in-development Linux 5.7 kernel.

      On the s390 front the Kernel-based Virtual Machine (KVM) code has support for protected virtual machines in conjunction with its ultravisor. The KVM s390 support for protected virtual machines (VMs) are where KVM can't access any of the guest's state like guest memory and guest registers. Protected Virtual Machines on s390 in turn become manages by their new ultravisor. These s390 guests can run in unencrypted mode at boot and then load an encrypted blob and transition to the encrypted Protected VM state. The code has gone through a few rounds of review and is ready for IBM s390 hardware with Linux 5.7.

    • Loongson Improvements Land In Linux 5.7 To Improve The Chinese MIPS CPUs

      The MIPS architecture improvements for Linux 5.7 are headlined by Loongson support improvements for those Chinese manufactured MIPS64 platforms.

      As outlined last month, a number of Loongson 3 support improvements were worked on by Loongson engineers and the community. Included as part of the MIPS CPU updates for Linux 5.7 are a generic Device Tree for Loongson 3 devices, Desktop Management Interface (DMI) support for MIPS, a Loongson I/O local interrupt controller driver, and a Hyper Transport PIC controller driver. The generic Loongson 3 DTS support should help in allowing mainline Linux images to run nicely on more devices.

    • DRM TTM Hugepage Support Lands In Linux 5.7

      The work led by VMware on allowing the Direct Rendering Manager's TTM memory management code support huge page tables has been added to Linux 5.7.

      This is the work by VMware initially for their VMWgfx driver but also of relevance to other DRM drivers employing TTM for supporting huge and giant page-table entries. This TTM hugepages support is intended to reduce CPU usage and lower TLB misses. Under a VMware test program just doing some example memory mapping and unmapping, the time to execute was about halved.

  • Ubuntu 20.04 Beta is Now Available to Download   3 days 18 hours ago
    • Ubuntu 20.04 LTS “Focal Fossa” final Beta out now

      The last beta version of Ubuntu 20.04 (codenamed Focal Fossa) is finally here for all those who want to give a shot to this significant update before they get their hands on the final release.

      Delving deeper into this beta release, you can now download images for Ubuntu Desktop, Server, and Cloud products as well as the other Ubuntu variants, which include Xubuntu, Ubuntu Studio, Ubuntu MATE, UbuntuKylin, Ubuntu Budgie, Lubuntu, and Kubuntu.

More in Tux Machines

Security Leftovers

  • Security updates for Thursday

    Security updates have been issued by CentOS (firefox, ipmitool, krb5-appl, and telnet), Debian (ceph and firefox-esr), Mageia (firefox), openSUSE (bluez and exiv2), Red Hat (firefox), SUSE (ceph, libssh, mgetty, permissions, python-PyYAML, rubygem-actionview-4_2, and vino), and Ubuntu (libiberty and libssh).

  • NASA CIO Agencywide Memo: Alert: Cyber Threats Significantly Increasing During Coronavirus Pandemic [iophk: Windows TCO]

    A new wave of cyber-attacks is targeting Federal Agency Personnel, required to telework from home, during the Novel Coronavirus (COVID-19) outbreak. During the past few weeks, NASA’s Security Operations Center (SOC) mitigation tools have prevented success of these attempts. Here are some examples of what’s been observed in the past few days: [...]

  • Apple Safari Flaws Enable One-Click Webcam Access

    A security researcher has disclosed vulnerabilities in Apple’s Safari browser that can be used to snoop on iPhones, iPads and Mac computers using their microphones and cameras. To exploit the flaws in a real-world attack, all an attacker would need to do is convince a victim to click one malicious link.

    Security researcher Ryan Pickren has revealed details on seven flaws in Safari, including three that could be used in a kill chain to access victims’ webcams. The vulnerabilities were previously submitted to Apple via its bug-bounty program and have been patched – however, technical details of the flaws, including a proof of concept (PoC) attack, were kept under wraps until Pickren’s recent disclosure.

  • OK Zoomer: avoiding a privacy disaster in the post-coronavirus world

    It would be an understatement to say that Covid-19 has affected practically every aspect of our lives, given the scale of the transformation. Its impact on privacy, too, is evident. Last week, this blog wrote about a rush by governments around the world to use smartphones to help enforce quarantines and carry out contact tracing. However, a problem can also be an opportunity. One technology company is not just coping with the coronavirus wave, but thriving. Almost overnight, the videoconferencing app Zoom, hitherto mainly used by companies, became an indispensable tool for life under lockdown, and its most representative social platform.

  • Security monitoring in Linux with Tripwire

    Every sysadmin loses sleep every once and a while over system intrusions. Nobody wants a server they're responsible for to be compromised. The problem is, even though you may review logs regularly, a truly effective system intrusion doesn't leave obvious logs lying around. This makes it difficult to know definitively whether your systems are secure. In addition to setting SELinux to Enforcing and implementing regular pentests, one of the best ways to monitor your system for security breaches is to — well, monitor your system for security breaches. If that seems easier said than done, then you need to try Tripwire. Tripwire is a file integrity monitoring tool that watches for changes to critical files on your system. This article shows you how to install, setup, and use Tripwire on your network. Tripwire is both a company and an open-source code base. You can purchase monitoring from Tripwire, or you can use the GPLv2 code they've made available on GitHub. The usual trade-offs apply. If you pay for it, Tripwire does most of the hard work for you, and all you have to do is pay attention to the reports. If you implement Tripwire yourself, then you get to set it up and configure it on your own.

  • sshd attack traffic

    I firmly believe that security through obscurity is a fail. However, I do believe that all things being equal, making it a bit more obscure is better as long as you aren’t introducing more failure points, like a port knocker that has it’s own security bugs. Thus I’ve always run my sshd service on an alternative port. It’s simple, and keeps my logs clean and shouldn’t cause any additional security risks. Of course I use a secure configuration and keep my software up to date. However, I found out that in the past few weeks that my port of choice has been discovered. After the sad realization that I would need to pick a more random port I decided to look at the attempts to brute force my sshd service and summarize what I found.

  • Remote Linux Desktops Made Easier & More Secure Than Ever
  • Why I Don’t Use A Static Site Generator

    Yeah, I hear you, WordPress is less secure than a static site. There’s no getting away from that fact – there’s no admin interface for a threat actor to compromise.

    For me, the potential risk of running WordPress vs a static site is what’s important here. By using strong passwords, multi-factor authentication and good InfoSec hygiene, the potential attack surface of WordPress is significantly reduced.

Software Freedom Podcast #5 about regulation with Professor Lawrence Lessig

This fifth episode of the Software Freedom Podcast covers the complicated topic of regulation. Our guest is Professor Lawrence Lessig from the Harvard Law School. Lessig is a former board member of the Free Software Foundation and the Electronic Frontier Foundation, as well as founder and present Board member of Creative Commons. Lessig has published several books, including the influential and often-quoted "Code and Other Laws of Cyberspace". In this episode we discuss with Professor Lessig the different types of regulation that affect society both, online and offline, such as laws, norms, the market, or architecture. In this respect we also touch upon code as a means of regulation. Enjoy learning about the positive and negative effects that some of these regulations can have on society, as well as the further development of ideas. Read more

Android Leftovers

OpenSUSE Leap + SUSE Linux Enterprise Planning To Move Closer In 2020

SUSE and the openSUSE community are working to move SUSE Linux Enterprise and openSUSE Leap closer together. A proposal sent out today with the interest of SUSE is for taking the openSUSE Leap and SUSE Linux Enterprise relationship to a new level. This new collaboration would more closely align the source trees of openSUSE Leap and SUSE Linux Enterprise Linux, including the use of SUSE Linux Enterprise binaries within Leap. The plan would involve merging of the code-bases for the intersection of openSUSE Leap 15.2 / SUSE Linux Enterprise 15 SP2 and moving forward to even create a a new openSUSE Leap 15.2 flavor leveraging SUSE Linux Enterprise binaries. Read more Direct: opensuse-announce Also: Bringing Leap and SUSE Linux Enterprise closer together - a proposal