Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Friday, 18 Oct 19 - Tux Machines is a community-driven public service/news site which has been around for over a decade and a half and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Quick Roundup

Apache Rya matures open source triple store database

The open source Apache Rya database effort is continuing to move forward as it reaches a new level of project maturity and acceptance. Rya (pronounced "ree-uh") is an RDF (resource description framework) triple store database. The project started at the U.S. government's Laboratory for Telecommunication Sciences with an initial research paper published in 2012. The project joined the Apache Software Foundation (ASF) in 2015 as an incubated project, and in September 2019 achieved what is known as Top-Level Project status. The Top-Level status is an indication and validation of the project's maturity, code quality and community. The ASF is home to Hadoop, Spark and other widely used database and data management programs. Read more Also: Yahoo Groups is being prepared for shutdown, with all stored archives to be deleted on Dec 14

The Spectre Mitigation Impact For Intel Ice Lake With Core i7-1065G7

For those wondering if -- or how much -- of a performance impact mitigations still make regarding Spectre for Intel's long-awaited 10nm+ Ice Lake processors, here is the rundown on the mitigation state and the performance impact. One of the areas that Phoronix readers have requested testing on with the recent purchase of the Dell XPS 7390 with Core i7 1065G7 is regarding the mitigation state and performance. Ice Lake with its Sunny Cove microarchitecture -- similar to Cascade Lake -- is no longer affected by Meltdown, MDS, or L1TF / Foreshadow. Read more

Networking SBCs run Linux on quad -A53 and -A72 NXP LS chips

Forlinx’s sandwich-style OK1043A-C and OK1046A SBCs run Linux on NXP’s quad -A53 LS1043A and quad -A72 LS1046A SoCs, respectively, and offer a 10GbE port and up to 6x GbE ports with optional SFP. Forlinx has posted product pages for two similar COM Express modules and carrier boards that run Linux on NXP’s networking focused LS series processors. The FET1043A-C module taps the up to 1.6GHz, quad-core, Cortex-A53 LS1043A while the FET1046A-C uses the up to 1.8GHz, quad-core, Cortex-A72 LS1046A. All the processors are headless — without GPUs. Read more

Security: WireGuard, Birds and Updates

  • WireGuard Restored In Android's Google Play Store After Brief But Controversial Removal

    After Google dropped the open-source WireGuard app from their Play Store since it contained a donation link, the app has now been restored within Google's software store for Android users but without the donation option. The WireGuard app for Android makes it easy to setup the secure VPN tunnel software on mobile devices, similar to its port to iOS and other platforms. The WireGuard apps are free but have included a donation link to the WireGuard website should anyone wish to optionally make a donation to support the development of this very promising network tech.

  • Letting Birds scooters fly free

    At that point I had everything I need to write a simple app to unlock the scooters, and it worked! For about 2 minutes, at which point the network would notice that the scooter was unlocked when it should be locked and sent a lock command to force disable the scooter again. Ah well. So, what else could I do? The next thing I tried was just modifying some STM firmware and flashing it onto a board. It still booted, indicating that there was no sort of verified boot process. Remember what I mentioned about the throttle being hooked through the STM32's analogue to digital converters[3]? A bit of hacking later and I had a board that would appear to work normally, but about a minute after starting the ride would cut the throttle. Alternative options are left as an exercise for the reader. Finally, there was the component I hadn't really looked at yet. The Quectel modem actually contains its own application processor that runs Linux, making it significantly more powerful than any of the chips actually running the scooter application[4]. The STM communicates with the modem over serial, sending it an AT command asking it to make an SSL connection to a remote endpoint. It then uses further AT commands to send data over this SSL connection, allowing it to talk to the internet without having any sort of IP stack. Figuring out just what was going over this connection was made slightly difficult by virtue of all the debug functionality having been ripped out of the STM's firmware, so in the end I took a more brute force approach - I identified the address of the function that sends data to the modem, hooked up OpenOCD to the SWD pins on the STM, ran OpenOCD's gdb stub, attached gdb, set a breakpoint for that function and then dumped the arguments being passed to that function. A couple of minutes later and I had a full transaction between the scooter and the remote. The scooter authenticates against the remote endpoint by sending its serial number and IMEI. You need to send both, but the IMEI didn't seem to need to be associated with the serial number at all. New connections seemed to take precedence over existing connections, so it would be simple to just pretend to be every scooter and hijack all the connections, resulting in scooter unlock commands being sent to you rather than to the scooter or allowing someone to send fake GPS data and make it impossible for users to find scooters.

  • Security updates for Friday

    Security updates have been issued by Debian (poppler, sudo, and wordpress), Oracle (java-1.8.0-openjdk), Red Hat (java-1.8.0-openjdk), Scientific Linux (java-1.8.0-openjdk, java-11-openjdk, and kernel), and SUSE (kernel and postgresql10).

Solus Brightens Computing Across the Linux User Spectrum

Filed under
OS
Linux
Reviews

Regardless of how you spend your time at the keyboard, Solus can be an ideal solution for all your computing needs. It comes with a collection of specially designed tools to make using and maintaining the operating system a uniquely easy experience.

For technically minded users, Solus supports a wide variety of editors, programming languages, compilers and version-control systems. It has tools for containerization/virtualization technology, such as Docker and Vagrant. Whether you're writing drivers in C or writing backend Web services in Go, there is software that will fit your needs.

Home or office users will be pleased with the latest LibreOffice suite version 6.2.1.2. The Solus Software Center has options for accounting, Personal Information Management and more. Content Creators can animate in Synfig Studio, produce music with Musescore or Mixxx, do graphic designing with GIMP or Inkscape, and edit videos with Avidemux, Kdenlive or Shotcut.

Gamers can enjoy open source games natively configured for Solus with support for many gamepads and controllers. With little or no setup required, gamers can play Steam titles for Linux with a modern, optimized gaming runtime. There is also built-in support for the Itch.io and Lutris gaming platforms.

Read more

today's leftovers

Filed under
Misc
  • Molly de Blanc: Autonomy and consent

    When I was an undergraduate, I took a course on medical ethics. The core takeaways from the class were that autonomy is necessary for consent, and consent is necessary for ethical action.

    There is a reciprocal relationship between autonomy and consent. We are autonomous creatures, we are self-governing. In being self-governing, we have the ability to consent, to give permission to others to interact with us in the ways we agree on. We can only really consent when we are self-governing, otherwise, it’s not proper consent. Consent also allows us to continue to be self-governing. By giving others permission, we are giving up some control, but doing so on our own terms.

    In order to actually consent, we have to grasp the situation we’re in, and as much about it as possible. Decision making needs to come from a place of understanding.

  • Ritesh Raj Sarraf: User Mode Linux 5.2

    User Mode Linux version 5.2 has been uploaded to Debian Unstable and will soon be available on the supported architectures. This upload took more time than usual as I ran into a build time failure caused by newer PCAP library.

    Thanks to active upstream developers, this got sorted out quick. In the longer run, we may have a much better fix for it.

  • PCLinuxOS MATE Review

    Published for Patreons on Oct 8th 2019. Available to the public Oct. 17th, 2019 – Become a Patreon today to get this plus exclusive Linux tips not found anywhere else!

  • Worn Out EMMC Chips Are Crippling Older Teslas

    Much like the rockets and spacecraft of sister company SpaceX, Tesla’s vehicles are powered by Linux running on what’s essentially off-the-shelf computing hardware. Until 2018 the Model S and X were running the open source operating system on a NVIDIA Tegra 3, at which point they switched the Media Control Unit (MCU) over to an Intel Atom solution. In either event, the Linux system is stored on an embedded Multi-Media Controller (eMMC) flash chip instead of a removable storage device as you might expect.

    Now under normal circumstances, this wouldn’t be an issue. There are literally billions of devices running Linux from an eMMC chip. But any competent embedded Linux developer would take the steps necessary to make sure the operating system’s various log files are not being written to a non-replaceable storage device soldered onto the board

    Unfortunately, for reasons that still remain somewhat unclear, the build of Linux running on the MCU is doing exactly that. What’s worse, Tesla’s graphical interface appears to be generating its own additional log messages. Despite the likelihood that nobody will ever actually read them, for every second a Tesla is driving down the road, more lines are being added to the log files.

    Now, it appears that the near continuous writing of data to the eMMC chips on the older Tegra-based MCUs has finally started to take its toll. Owners on Tesla forums are reporting that their MCUs are crashing and leaving the expensive vehicles in “Limp Home Mode”, which allows the car to remain drivable but unable to charge. The prescribed fix for this issue by Tesla is a complete MCU replacement at the cost of several thousand dollars. As this failure will almost certainly happen after the factory warranty has lapsed, the owner will have to foot the bill themselves.

  • Seven more videos from the auditorium at LibreOffice Conference 2019

    Yes, here’s anther bunch of videos from our recent LibreOffice Conference 2019 in Almeria, Spain.

  • Self-publishing using LibreOffice Writer 6

    My new book, Self-publishing using LibreOffice Writer 6, is now available in paperback or PDF.

  • Montreal Subway Foot Traffic Data

    STM kindly sent me daily values for each subway stations from 2001 to 2018. Armed with all this data, I decided to play a little with R and came up with some interesting graphs.

    Behold this semi-interactive map of Montreal's subway! By clicking on a subway station, you'll be redirected to a graph of the station's foot traffic.

  • Is your Internet up-to-date?

    Modern Internet Standards provide for more reliability and further growth of the Internet. Are you using them?

  • Call of Duty: Modern Warfare ditches loot boxes for a battle pass

    Popularized by Fortnite, the battle pass system allows for players to buy the pass at the beginning of the season, and unlock a variety of items as they progress. Modern Warfare’s system sounds like it’ll be extremely similar to the Fortnite model (which has since been adopted by other major titles, like Destiny 2 and PUBG). Players will be able to buy a pass at the beginning of a season, with full transparency as to what the items included are, and how and when they’ll be unlocked.

  • Innr Smart White A19 bulb review: This inexpensive smart bulb seamlessly connects with a Philips Hue Bridge

    If you’re shopping for your first smart bulb and you’re not ready to invest in a hub, an Innr bulb isn’t the cheapest way to go. Instead, you’d be better off with a Bluetooth- or Wi-Fi-enabled bulb that can operate with just a smartphone app. The latest Philips Hue White bulb, for example, which can be controlled via Bluetooth as well as Zigbee), or a Wi-Fi-connected bulb like the $8 Wyze Bulb, which offers the bonus of being color-temperature-tunable.

  • The Untold Story of the 2018 Olympics Cyberattack, the Most Deceptive [Computer Attack] in History [iophk: Windows TCO]

    All nine of the Olympic staff's domain controllers, the powerful machines that governed which employee could access which computers in the network, had somehow been paralyzed, crippling the entire system. The staff decided on a temporary workaround: They set all the surviving servers that powered some basic services, such as Wi-Fi and the internet-linked TVs, to bypass the dead gatekeeper machines. By doing so, they managed to bring those bare-minimum systems back online just minutes before the end of the ceremony.

  • [Old] Olympic Destroyer Takes Aim At Winter Olympics

    The purpose is to copy the initial stage to the remote system in %ProgramData%\%COMPUTERNAME%.exe and to execute it via a VBScript.

Apache Rya matures open source triple store database

Filed under
OSS

The open source Apache Rya database effort is continuing to move forward as it reaches a new level of project maturity and acceptance.

Rya (pronounced "ree-uh") is an RDF (resource description framework) triple store database. The project started at the U.S. government's Laboratory for Telecommunication Sciences with an initial research paper published in 2012.

The project joined the Apache Software Foundation (ASF) in 2015 as an incubated project, and in September 2019 achieved what is known as Top-Level Project status. The Top-Level status is an indication and validation of the project's maturity, code quality and community. The ASF is home to Hadoop, Spark and other widely used database and data management programs.

Read more

Also: Yahoo Groups is being prepared for shutdown, with all stored archives to be deleted on Dec 14

The Spectre Mitigation Impact For Intel Ice Lake With Core i7-1065G7

Filed under
Graphics/Benchmarks

For those wondering if -- or how much -- of a performance impact mitigations still make regarding Spectre for Intel's long-awaited 10nm+ Ice Lake processors, here is the rundown on the mitigation state and the performance impact.

One of the areas that Phoronix readers have requested testing on with the recent purchase of the Dell XPS 7390 with Core i7 1065G7 is regarding the mitigation state and performance. Ice Lake with its Sunny Cove microarchitecture -- similar to Cascade Lake -- is no longer affected by Meltdown, MDS, or L1TF / Foreshadow.

Read more

Networking SBCs run Linux on quad -A53 and -A72 NXP LS chips

Filed under
Linux
Ubuntu

Forlinx’s sandwich-style OK1043A-C and OK1046A SBCs run Linux on NXP’s quad -A53 LS1043A and quad -A72 LS1046A SoCs, respectively, and offer a 10GbE port and up to 6x GbE ports with optional SFP.

Forlinx has posted product pages for two similar COM Express modules and carrier boards that run Linux on NXP’s networking focused LS series processors. The FET1043A-C module taps the up to 1.6GHz, quad-core, Cortex-A53 LS1043A while the FET1046A-C uses the up to 1.8GHz, quad-core, Cortex-A72 LS1046A. All the processors are headless — without GPUs.

Read more

Security: WireGuard, Birds and Updates

Filed under
Security
  • WireGuard Restored In Android's Google Play Store After Brief But Controversial Removal

    After Google dropped the open-source WireGuard app from their Play Store since it contained a donation link, the app has now been restored within Google's software store for Android users but without the donation option.

    The WireGuard app for Android makes it easy to setup the secure VPN tunnel software on mobile devices, similar to its port to iOS and other platforms. The WireGuard apps are free but have included a donation link to the WireGuard website should anyone wish to optionally make a donation to support the development of this very promising network tech.

  • Letting Birds scooters fly free

    At that point I had everything I need to write a simple app to unlock the scooters, and it worked! For about 2 minutes, at which point the network would notice that the scooter was unlocked when it should be locked and sent a lock command to force disable the scooter again. Ah well.

    So, what else could I do? The next thing I tried was just modifying some STM firmware and flashing it onto a board. It still booted, indicating that there was no sort of verified boot process. Remember what I mentioned about the throttle being hooked through the STM32's analogue to digital converters[3]? A bit of hacking later and I had a board that would appear to work normally, but about a minute after starting the ride would cut the throttle. Alternative options are left as an exercise for the reader.

    Finally, there was the component I hadn't really looked at yet. The Quectel modem actually contains its own application processor that runs Linux, making it significantly more powerful than any of the chips actually running the scooter application[4]. The STM communicates with the modem over serial, sending it an AT command asking it to make an SSL connection to a remote endpoint. It then uses further AT commands to send data over this SSL connection, allowing it to talk to the internet without having any sort of IP stack. Figuring out just what was going over this connection was made slightly difficult by virtue of all the debug functionality having been ripped out of the STM's firmware, so in the end I took a more brute force approach - I identified the address of the function that sends data to the modem, hooked up OpenOCD to the SWD pins on the STM, ran OpenOCD's gdb stub, attached gdb, set a breakpoint for that function and then dumped the arguments being passed to that function. A couple of minutes later and I had a full transaction between the scooter and the remote.

    The scooter authenticates against the remote endpoint by sending its serial number and IMEI. You need to send both, but the IMEI didn't seem to need to be associated with the serial number at all. New connections seemed to take precedence over existing connections, so it would be simple to just pretend to be every scooter and hijack all the connections, resulting in scooter unlock commands being sent to you rather than to the scooter or allowing someone to send fake GPS data and make it impossible for users to find scooters.

  • Security updates for Friday

    Security updates have been issued by Debian (poppler, sudo, and wordpress), Oracle (java-1.8.0-openjdk), Red Hat (java-1.8.0-openjdk), Scientific Linux (java-1.8.0-openjdk, java-11-openjdk, and kernel), and SUSE (kernel and postgresql10).

Xfce4-Panel Adds Dark Mode Preference

Filed under
GNU
Linux

Landing this week in xfce4-panel was this commit providing a dark mode preference for Xfce4, similar to the growing trend with other desktops/UIs for those wanting a "dark mode" interface.

Enabling this option will request the GTK dark theme variant of capable themes. For a long time now GTK has exposed a property (gtk-application-prefer-dark-theme) for preferring dark themes while now is being tapped by xfce4-panel.

Read more

Cascade Lake vs. Rome With MrBayes, dav1d 0.5, OSPray, SVT-VP9, OIDn + Other Benchmarks

Filed under
Graphics/Benchmarks

While swapping around CPUs for the AMD EPYC vs. Intel Xeon Cascade Lake testing of Facebook's RocksDB enterprise workload testing, I also took the opportunity for running some other recently updated test profiles on these EPYC/Xeon parts under test.

These newest results shouldn't be particularly surprising but are primarily just benchmark results for some updated versions of existing tests. With recently a number of updated test profiles on OpenBenchmarking.org against the upstream programs under test, here are simply those latest performance numbers when running on the dual Intel Xeon Platinum 8280 and the AMD EPYC 7601 Naples and EPYC 7502 / 7642 / 7742 Rome processors all in 2P configurations. The setups were the same as from the RocksDB testing with running the newly-minted Ubuntu 19.10.

Read more

conf.kde 2020

Filed under
KDE
  • conf.kde.in Is Coming Back In 2020

    conf.kde.in 2020 will be held in Maharaja Agrasen Institute of Technology, located in Rohini, Delhi, India. MAIT was established by the Maharaja Agrasen Technical Education Society and promoted by well-known industrialists, businessmen, professionals and philanthropists. The aim of MAIT is to promote quality education in the field of Technology.

    MAIT endeavors to provide industry-relevant education and training through its well-crafted and practical training programs for the students in different semesters of their courses. The campus is composed of 10 blocks with a learning resource center. MAIT has been ranked as the 10th best private engineering institute in India by the Dataquest T-School Survey. MAIT always supports Free and Open Source communities and tech-related activities.

  • conf.kde.in is live!

    At least twice I have been to India. Atil Chitnis closed FOSS.IN in 2008, and I wrote about that only briefly, and in 2011 there was conf.kde.in in Bangalore which I wrote about some more.

    During one of those conferences I fell asleep on the ground in the hall at the KDE booth.

Linux Candy: Ternimal – animated lifeform in the terminal

Filed under
Software

Who loves eye candy? Don’t be shy — you can raise both hands!!

Linux Candy is a new series of articles covering interesting eye candy software. We’re only going to feature open-source software in this series.

I’m not going to harp on about the tired proverb “All work and no play makes Jack a dull boy”. But there’s a certain element of truth here. If you spend all day coding neural networks, mastering a new programming language, sit in meetings feeling bored witless, you’ll need some relief at the end of the day. And what better way by making your desktop environment a bit more memorable, zany, and idiosyncratic.

For this article in the Linux Candy series, we’re looking at Ternimal. That’s not a typo. It’s called Ternimal. Think of the name as a hybrid of terminal and animal.

Ternimal simulates a lifeform in the terminal using Unicode block symbols. It’s a script written in Rust. It has no dependencies and consumes very few resources.

Read more

Stable kernels 5.3.7, 4.19.80, 4.14.150, 4.9.197, and 4.4.197

Filed under
Linux
  • Linux 5.3.7

    I'm announcing the release of the 5.3.7 kernel.

    All users of the 5.3 kernel series must upgrade.

    The updated 5.3.y git tree can be found at:
    git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.3.y
    and can be browsed at the normal kernel.org git web browser:
    https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...

  • Linux 4.19.80
  • Linux 4.14.150
  • Linux 4.9.197
  • Linux 4.4.197

KDE: Akademy 2019, Plasma Mobile, List stores in kde.org/applications

Filed under
KDE
  • Akademy 2019 in Beautiful Milan

    We discussed on some marketing strategies, and did some brainstorming on few topics. Learnt how far we have reached on spreading KDE to new users and determined few tasks we would work on for this year.

  • Plasma Mobile: weekly update: part 3

    Thanks to the awesome KDE community, we are happy to present the Plasma Mobile project’s third weekly update.

  • List stores in kde.org/applications

    Announcing a small update for the goal: KDE is All About the Apps. kde.org/applications is now listing the stores where the application is available. For the moment, it’s only listing Linux and the Windows Store, but support for F-Droid and the Play Store is planned. Stay tuned!

Can Linux improve ATM security?

Filed under
Linux
Security

While ATM security is not necessarily "life critical" as with many other industries (think transportation, medical and some industrial applications) there are certainly financial and identity theft risks associated with these devices.

Plenty of info is available on the web regarding various ATM attack vectors, estimated number of annual hacks and the cost to the industry. The question we will ponder here is very specific: Would replacing the Windows operating system in an ATM with a Linux-based one improve security? Most experts believe the answer is yes.

Today's ATM looks much like a personal computer on your desk. It runs the world's most popular desktop operating system — Windows —on the world's most popular hardware: Intel motherboards.

But therein lies part of the problem. Being "most popular" means there are few barriers to keeping the bad guys from simulating the internals of a typical ATM. This fact alone makes Windows more prone to attack than alternatives.

Read more

Meet The Linux Desktop That Will Embarass Windows 10 And macOS in 2020

Filed under
Linux

If you haven’t been paying attention to a little Linux desktop distribution called Deepin, it’s time to put it on your radar. Nevermind that Huawei chose Deepin to ship on their MateBook laptop lineup. Nevermind that Deepin Cloud Sync is a killer, forward-thinking feature that every Linux distro needs to adopt. Nevermind that its elegant slide-out control center resembles something sexy and sensible straight out of the future. But looking toward 2020, Deepin is poised to be absolutely stunning.

This is without question the most beautiful environment I’ve ever laid eyes on. I’ve gone from admiring it as an elevated Desktop Linux distribution to downright salivating over it.

Read more

Qt Creator 4.11 Beta released

Filed under
KDE

We are happy to announce the release of Qt Creator 4.11 Beta!

We added experimental support for Qt for WebAssembly and Qt for MCUs.

We improved the general handling of configuring, building and running projects in so many smaller ways that I fail to choose anything for being highlighted here.

If you use CMake 3.14 or later we now use CMake's file-base API for configuring and parsing projects. Which behaves much more reliably than the previous server-mode, especially if you also use CMake from a terminal or other applications.

Read more

Games: Crusader Kings II, Woven, Team Fortress 2, X4: Foundations and Wildermyth

Filed under
Gaming
  • Crusader Kings II goes free to play, Paradox games on sale and possibly Crusader Kings III coming

    It's Friday morning, I've got my coffee ready so let's go over what's going on what Paradox Interactive. They've got a lot going on right now!

    Firstly, it seems Crusader Kings II has gone fully free to play. This doesn't appear to be time limited either, the Steam store page properly states it's "Free To Play" and on Twitter, the Crusader Kings official account said "This is not a joke - Crusader Kings 2 is free to play!".

    Considering it has a rather large amount of DLC, it's seven years old and it's been given out temporarily free for keeps before, it seems like a good idea to set the base game free for everyone now. Looks like all the DLC is also 50% off.

  • With a fabric world, Woven looks like a unique adventure coming to Linux next month

    Alterego Games and StickyLock Studios have announced that their adventure game Woven is releasing on November 15. Woven certainly looks pleasant, with a world that looks like someone stitched it together and your character is a stuffed animal.

    Woven is a laid-back adventure and exploration game, where you roam a world made of fabric. They said all the stuffed animals once lived in peace and all appears well at first glance, but not everything is as it seems. As you progress through Woven as the clumsy character Stuffy you customize them with different animal shapes to gain new abilities, solve puzzles and attempt to find out why the world is being invaded by metal machines.

  • The Scream Fortress XI event has launched for Team Fortress 2

    While perhaps not as big as previous events, it's still a good time to boot up Team Fortress 2 again and have a blast. Dust off your crazy mask, pick a silly weapon skin and dive in.

  • X4: Foundations update 2.60 is out, X4: Split Vendetta and the big 3.0 update both delayed

    A couple of bits of news from Egosoft to share for their massive space sci-fi sandbox X4: Foundations.

  • Fantasty tactical RPG Wildermyth blends a mix of hand-painted 2D and 3D art & arrives on Steam soon

    With character art during the turn-based battles that look like paper cutouts in a 3D environment, Wildermyth certainly has a strange and lovely charm to it.

    Currently available on itch.io were users have been testing it for some time, Worldwalker Games have now announced that their character-driven tactical RPG will enter Early Access on Steam on November 13. In Wildermyth, your party will be tasked with defending the lands from various threads, switching between the turn-based combat and making decisions on the over-world map. It has choice-based comic-styled events, which can end up changing your heroes appearance, personalities, relationships, and abilities.

Learn Hyperledger Blockchain Tech from the Linux Foundation

Filed under
News

Linux Foundation, the official organization behind Linux, is running a limited time deal on its Hyperledger training and certification courses. This will help in boosting your career as blockchain skills are in high demand.
Read more

Syndicate content

More in Tux Machines

Apache Rya matures open source triple store database

The open source Apache Rya database effort is continuing to move forward as it reaches a new level of project maturity and acceptance. Rya (pronounced "ree-uh") is an RDF (resource description framework) triple store database. The project started at the U.S. government's Laboratory for Telecommunication Sciences with an initial research paper published in 2012. The project joined the Apache Software Foundation (ASF) in 2015 as an incubated project, and in September 2019 achieved what is known as Top-Level Project status. The Top-Level status is an indication and validation of the project's maturity, code quality and community. The ASF is home to Hadoop, Spark and other widely used database and data management programs. Read more Also: Yahoo Groups is being prepared for shutdown, with all stored archives to be deleted on Dec 14

The Spectre Mitigation Impact For Intel Ice Lake With Core i7-1065G7

For those wondering if -- or how much -- of a performance impact mitigations still make regarding Spectre for Intel's long-awaited 10nm+ Ice Lake processors, here is the rundown on the mitigation state and the performance impact. One of the areas that Phoronix readers have requested testing on with the recent purchase of the Dell XPS 7390 with Core i7 1065G7 is regarding the mitigation state and performance. Ice Lake with its Sunny Cove microarchitecture -- similar to Cascade Lake -- is no longer affected by Meltdown, MDS, or L1TF / Foreshadow. Read more

Networking SBCs run Linux on quad -A53 and -A72 NXP LS chips

Forlinx’s sandwich-style OK1043A-C and OK1046A SBCs run Linux on NXP’s quad -A53 LS1043A and quad -A72 LS1046A SoCs, respectively, and offer a 10GbE port and up to 6x GbE ports with optional SFP. Forlinx has posted product pages for two similar COM Express modules and carrier boards that run Linux on NXP’s networking focused LS series processors. The FET1043A-C module taps the up to 1.6GHz, quad-core, Cortex-A53 LS1043A while the FET1046A-C uses the up to 1.8GHz, quad-core, Cortex-A72 LS1046A. All the processors are headless — without GPUs. Read more

Security: WireGuard, Birds and Updates

  • WireGuard Restored In Android's Google Play Store After Brief But Controversial Removal

    After Google dropped the open-source WireGuard app from their Play Store since it contained a donation link, the app has now been restored within Google's software store for Android users but without the donation option. The WireGuard app for Android makes it easy to setup the secure VPN tunnel software on mobile devices, similar to its port to iOS and other platforms. The WireGuard apps are free but have included a donation link to the WireGuard website should anyone wish to optionally make a donation to support the development of this very promising network tech.

  • Letting Birds scooters fly free

    At that point I had everything I need to write a simple app to unlock the scooters, and it worked! For about 2 minutes, at which point the network would notice that the scooter was unlocked when it should be locked and sent a lock command to force disable the scooter again. Ah well. So, what else could I do? The next thing I tried was just modifying some STM firmware and flashing it onto a board. It still booted, indicating that there was no sort of verified boot process. Remember what I mentioned about the throttle being hooked through the STM32's analogue to digital converters[3]? A bit of hacking later and I had a board that would appear to work normally, but about a minute after starting the ride would cut the throttle. Alternative options are left as an exercise for the reader. Finally, there was the component I hadn't really looked at yet. The Quectel modem actually contains its own application processor that runs Linux, making it significantly more powerful than any of the chips actually running the scooter application[4]. The STM communicates with the modem over serial, sending it an AT command asking it to make an SSL connection to a remote endpoint. It then uses further AT commands to send data over this SSL connection, allowing it to talk to the internet without having any sort of IP stack. Figuring out just what was going over this connection was made slightly difficult by virtue of all the debug functionality having been ripped out of the STM's firmware, so in the end I took a more brute force approach - I identified the address of the function that sends data to the modem, hooked up OpenOCD to the SWD pins on the STM, ran OpenOCD's gdb stub, attached gdb, set a breakpoint for that function and then dumped the arguments being passed to that function. A couple of minutes later and I had a full transaction between the scooter and the remote. The scooter authenticates against the remote endpoint by sending its serial number and IMEI. You need to send both, but the IMEI didn't seem to need to be associated with the serial number at all. New connections seemed to take precedence over existing connections, so it would be simple to just pretend to be every scooter and hijack all the connections, resulting in scooter unlock commands being sent to you rather than to the scooter or allowing someone to send fake GPS data and make it impossible for users to find scooters.

  • Security updates for Friday

    Security updates have been issued by Debian (poppler, sudo, and wordpress), Oracle (java-1.8.0-openjdk), Red Hat (java-1.8.0-openjdk), Scientific Linux (java-1.8.0-openjdk, java-11-openjdk, and kernel), and SUSE (kernel and postgresql10).