Language Selection

English French German Italian Portuguese Spanish

About Tux Machines

Saturday, 17 Aug 19 - Tux Machines is a community-driven public service/news site which has been around for over a decade and primarily focuses on GNU/LinuxSubscribe now Syndicate content

Search This Site

Orange Pi Zero2 is a Tiny Allwinner H6 SBC with HDMI 2.0, USB 3.0, Ethernet & WiFi

Filed under
Debian
Ubuntu

It’s always frustrating to see boards with USB 3.0 and Fast Ethernet, since there’s no benefit over USB 2.0 for networked storage. But this is usually to cut costs, and in this case the PCB’s size may have been a problem to accommodate the extra transceiver required for Gigabit Ethernet.

Supported operating systems are said to be Android7.0, Ubuntu, and Debian, but this information is not always correct before launch. The good news is that Orange Pi 3 SBC, also powered by Allwinner H6 processor, is supported in Armbian, albeit only with WIP Debian 10 and Ubuntu 18.04 images, meaning they are suitable for testing, but not necessarily stable.

Read more

With Microsoft dumping MS Office, consider LibreOffice for your next PC office suite

Filed under
LibO
Microsoft

LibreOffice's Export as PDF has improved. It now fully supports PDF/A-2 document format. This is required by several organizations for long-term file storage. It also simplified its editable PDF forms by incorporating the Form menu into LibreOffice Writer.

A new feature, which security-minded businesses may find interesting, is that you can now "redact" information in documents. With this, you can remove or hide sensitive information such as personal data before exporting or sharing the file.

You can run LibreOffice on Linux, MacOS, and Windows. You can also use as a cloud Software-as-a-Service (SaaS) application, LibreOffice Online, by deploying it on a cloud you control.

Read more

today's leftovers

Filed under
Misc
  • Linux Mint 19.2 "Mate" overview | Stable, robust, traditional

    In this video, I am going to show an overview of Linux Mint 19.2 "Mate" and some of the applications pre-installed.

  • Abbey Games have released the Will Of The People update for Godhood

    After entering Early Access in July, Godhood from Abbey Games has received a bit of a mixed impression from users but they're moving quickly to improve it.

    I can understand where some of the negative reviews have currently come from, while a nice looking game and one I've enjoyed playing, it's currently pretty simple. To be expected from Early Access though, it's going to evolve over time. They've recently adjusted the way they describe it too, originally saying it was a "strategy god game" but they're now saying it's a "roster-management auto-battling god game"—okay then. Hoping to hook in some auto-battler fans I see!

  • SUSE Academic Program News: Working With Students Around The Globe

    The end of summer for many marks the start of a new semester or calendar school year. At SUSE, we have been working harder than ever to engage with more academic partners and customers, bringing the latest in Linux and Open Source training and education. To only name a few, here are some highlights of recent success within the academic community;

  • University Research Teams Open-Source Natural Adversarial Image DataSet for Computer-Vision AI

    In a paper published in July, researchers from UC Berkeley, the University of Washington, and the University of Chicago described their process for creating the dataset of 7,500 images, which were deliberately chosen to "fool" a pre-trained image recognition system. While there has been previous research on adversarial attacks on such systems, most of the work studies how to modify images in a way that causes the model to output the wrong answer. By contrast, the team used real-world, or "natural" images collected un-modified from the internet. The team used their images as a test-set on a pre-trained DenseNet-121 model, which has a top-1 error rate of 25% when tested on the popular ImageNet dataset. This same model, when tested with ImageNet-A, has a top-1 error rate of 98%. The team also used their dataset to measure the effectiveness of "defensive" training measures developed by the research community; they found that "these techniques hardly help."

  • Security updates for Tuesday

    Security updates have been issued by Arch Linux (chromium, postgresql, and postgresql-libs), Debian (atril, chromium, evince, ghostscript, jackson-databind, kernel, and php5), Fedora (kf5-kconfig, mingw-sqlite, pam-u2f, and poppler), Mageia (kernel), openSUSE (aubio, chromium, kconfig, kdelibs4, nodejs10, osc, and zstd), Red Hat (ghostscript), and Ubuntu (ghostscript and MariaDB). 

  • When your mail hub password is updated...
    don't
     forget
      to
       run
        postmap
         on
          your
           /etc/postfix/sasl_passwd
    
    
    
    
    
  • How to Install Telegram on Ubuntu 18.04 LTS & Up
  • how to upgrade Alpine Linux 3.6.2 to Alpine Linux 3.7
  • LiVES Video Editor 3.0 Released! How to Install in Ubuntu
  • For Linux, a brand-new companion package that supports all major Linux distros is now available.

    For Linux, a brand-new companion package that supports all major Linux distros is now available.

Python Leftovers

Filed under
Development
  • Traditional Face Detection With Python

    Computer vision is an exciting and growing field. There are tons of interesting problems to solve! One of them is face detection: the ability of a computer to recognize that a photograph contains a human face, and tell you where it is located. In this course, you’ll learn about face detection with Python.

    To detect any object in an image, it is necessary to understand how images are represented inside a computer, and how that object differs visually from any other object.

  • What’s in a Name? Clarifying the Anaconda Metapackage

    The name “Anaconda” is overloaded in many ways. There’s our company, Anaconda, Inc., the Anaconda Distribution, the anaconda metapackage, Anaconda Enterprise, and several other, sometimes completely unrelated projects (like Red Hat’s Anaconda). Here we hope to clarify two of those – the difference between the Anaconda Distribution and the anaconda metapackage.

    The Anaconda Distribution is the installer that many people download to get a good start on a Python data science coding environment. It includes Python, pandas, scikit-learn, multiple data visualization options, and many other helpful libraries. This installer may come in the form of a GUI .pkg installer (for MacOS), a command-line .sh installer (for MacOS and Linux) and a GUI .exe installer (for Windows). When you see “Anaconda Distribution,” we’re referring to these installers.

  • Getting Started with Machine Learning in the Enterprise

    Machine learning (ML) is a subset of artificial intelligence (AI) in which data scientists use algorithms and statistical models to predict outcomes and/or perform specific tasks. ML models can automatically “learn from” data sets to improve their performance.

    ML is uniquely applicable to enterprise business use cases across a wide number of industries — for example, credit scoring and fraud detection in financial organizations, and tumor detection and DNA sequencing in healthcare. Given the wide applicability, it’s no surprise that many in the enterprise have already embraced machine learning. According to Deloitte Insight’s 2018 survey of US-based early adopters, 63% were already using ML in their enterprise organizations.

  • Organizing PythonPune Meetups

    One thing I like most about meetups is, you get to meet new people. Talking with people, sharing what they are doing helps a lot to gain more knowledge. It is also a good platform to make connections with people having similar area of interests. I have been attending PythonPune meetup since last 2 years. In this blog post, I will be sharing some history about this group and how I got involved in organizing meetups. I will also cover all things involved in organizing a monthly meetup of PythonPune.

  • Top 9 Django Concepts - Part 1: 4 Mins

    When I first dive into Django after deciding to specialise as a Django developer.

    The number of concepts that are required for anyone to learn to understand Django can be overwhelming.

    Since Django development approach forces, you to develop in a single and opinioned way of web development with a vast ecosystem of packages to support your needs.

    This could discourage potential Django developers, who prefer flexibility, a lesser amount of learning and unopinionated approach to develop a web application using Python.

    These are the people who want to get things done by picking their own adventure using a smaller amount of packages instead of Django's batteries-included approach.

    In the first part of the series, I will be covering only 3 concepts and their related technical terms to help you get up to speed in using Django.

  • Stack Abuse: Using Django Signals to Simplify and Decouple Code

    Systems are getting more complex as time goes by and this warrants the need to decouple systems more. A decoupled system is easier to build, extend, and maintain in the long run since not only does decoupling reduce the complexity of the system, each part of the system can be managed individually. Fault tolerance has also enhanced since, in a decoupled system, a failing component does not drag down the entire system with it.

    Django is a powerful open-source web framework that can be used to build large and complex systems, as well as small ones. It follows the model-template-view architectural pattern and it is true to its goal of helping developers achieve the delivery of complex data-driven web-based applications.

    Django enables us to decouple system functionality by building separate apps within a project. For instance, we can have a shopping system and have separate apps that handle accounts, emailing of receipts, and notifications, among other things.

    In such a system, several apps may be need to perform an action when certain events take place. One event can occur when a customer places an order. For exmaple, we will need to notify the user via email and also send the order to the supplier or vendor, at the same time we can be able to receive and process payments. All these events happen at the same time and since our application is decoupled, we need to keep every component in sync, but how do we achieve this?

HarmonyOS, Huawei, and a 'Foundation' in China

Filed under
OS
  • HarmonyOS - Huawei's New Open Source Mobile OS

    HarmonyOS is a lightweight, compact operating system with powerful functionality, and it will first be used for smart devices like smart watches, smart screens, in-vehicle systems, and smart speakers. Through this implementation Huawei aims to establish an integrated and shared ecosystem across devices, create a secure and reliable runtime environment, and deliver a holistic intelligent experience across every interaction with every device.

    Huawei also announced the evolution roadmap for HarmonyOS and its kernel. HarmonyOS 1.0 will be first adopted in its smart screen products, which are due to launch later this year. Over the next three years, HarmonyOS will be optimized and gradually adopted across a broader range of smart devices.

    Moving forward, Huawei will lay the foundations for HarmonyOS in the Chinese market, and then expand it further to the global ecosystem.

  • Huawei Could Rid Itself Of Spying Accusations If It Open-Sourced Its Software

    Huawei is seen as a threat to American national security because of the software loopholes in its telecom equipment, but TechRepublic's James Sanders says that Huawei could rid itself of spying accusations if it would open-source its telecom software.

    Open-sourcing its telecom software would allow third parties to see it, examine vulnerabilities, and investigate the software apart from Huawei. To open up the software would allow other companies to gain trust in Huawei and roll back the concerns of Chinese espionage that everyone has on their minds nowadays following the spying accusations.

  • Huawei's Open Source Operating System HarmonyOS Is The Answer To Google's Android

    According to the reports, Yu said that the platform supports various sizes of RAM ranging from kilobytes to gigabytes and this operating system will have no support for any root access. The platform also supports a number of applications where applications from other operating systems like Linux, Android, etc will be compatible. HarmonyOS will use ARK compiler for app development and it will also support several other languages such as Java, Kotlin, JavaScript, C, and C++.

    HarmonyOS 1.0 will be launched this year within the smart screen products. Then the next three pears are planned to optimise this operating system and make it adopt across a wider number of smart devices and other wearables, etc.

  • Huawei to help build China’s first open-source software foundation

    The foundation plan came after GitHub, the world's largest host of source code, in July prevented users in Iran and other sanctioned nations from accessing portions of its service. The incident highlights increasing geopolitical interference with global open-source tech communities, which are supposed to be fair and open to all, analysts said.

  • Huawei to help create nation's first open-source foundation
  • Huawei to help create nation's first open-source foundation

    Huawei Technologies Co said it plans to partner with other companies to set up China's first open-source software foundation, which is expected to begin to operate in a month or two to expand the nation's software community.

    The plan for the software foundation came after GitHub, the world's largest host of source code, prevented in July users in Iran and other nations sanctioned by the United States government from accessing portions of its service. The incident highlights increasing geopolitical interference with global open-source tech communities, which are supposed to be fair and open to all, analysts said.

    Wang Chenglu, president of the software department at Huawei's consumer business group, said software development relies on open-source codes and communities.

Linux-driven i.MX6 gateway offers 4G plus isolated serial and CANBus

Filed under
Linux
Hardware

Forlinx announced a compact “FCU1201” IoT gateway that runs Linux on an i.MX6 DualLite and offers 4G, WiFi/BT, LAN, CAN, HDMI, USB, serial, DIDO, and CANBus.

Chinese embedded vendor Forlinx has unveiled a power-efficient FCU1201 IoT gateway equipped with NXP’s 1GHz, dual-core Cortex-A9 i.MX6 DualLite. Like the company’s i.MX6 UL-equipped FCU1101, the system combines extensive serial interfaces with wireless connectivity.

Read more

Vulkan: SIGGRAPH 2019 News and NVIDIA Focus

Filed under
Graphics/Benchmarks
  • NVIDIA Continues To Be Involved With Making Vulkan More Appropriate For Machine Learning

    NVIDIA engineers continue to be among those in the Vulkan technical sub-group working to advance machine learning for this API.

    Vulkan machine learning is being worked on for functionality like NVIDIA's DLSS, bots, character animations, and other functionality that can be tailored to machine learning in high frame-rate applications. There's also the benefit of Vulkan being an industry standard unlike CUDA and friends.

  • NVIDIA 435.17 Linux Beta Driver Adds Vulkan + OpenGL PRIME Render Offload

    NVIDIA this morning introduced their 435 Linux driver series currently in beta form with the release of the 435.17 Linux build. With this new driver comes finally the best PRIME/multi-GPU support they have presented to date.

    The NVIDIA 435.17 driver has a new PRIME render offload implementation supported for Vulkan and OpenGL (with GLX). This PRIME offloading is about using one GPU for display but having the actual rendering be done on a secondary GPU, as is common with many of today's high-end notebooks that have Intel integrated graphics paired with a discrete NVIDIA GPU.

  • Vulkan Video Decoding Coming In H1'2020, Ray-Tracing Progressing

    The Khronos Group has posted their material from the SIGGRAPH 2019 graphics conference and includes some interesting updates on Vulkan and their ongoing efforts.

    In addition to making Vulkan better for machine learning, ray-tracing and video decode are two other topics of interest to us.

Kernel: Linux, Mir, and the Linux Foundation's Hyperledger

Filed under
Linux
  • Oracle's Kernel Test Framework Might Be Added To The Linux Kernel Tree

    Knut Omang of Oracle is working on integrating the Kernel Test Framework into the Linux kernel source tree/repository.

    The Kernel Test Framework is used for unit testing of the Linux kernel as well as different component testing of the code. Up to this point the Kernel Test Framework has been developed separate of the Linux kernel tree in order to allow for testing against arbitrary versions of the Linux kernel. Now, however, Oracle is wanting to get this kernel testing framework as part of the Linux kernel source tree.

  • Mir 1.4 Released With Fix For GTK3, Support For Exclusive Zones

    The Canonical team led by Alan Griffiths for maintaining the Mir display server with Wayland support today rolled out Mir version 1.4.

    Mir 1.4 brings support for the concept of exclusive zones to the MirAL layer, various Wayland layer shell improvements, making the MirClient socket optional, a fix for GTK3 handling, and various other Wayland handling improvements.

  • Essential Developer Guide for Building Blockchain Applications Using Hyperledger Sawtooth

    Hyperledger Sawtooth is an enterprise blockchain platform for building distributed ledger applications and networks. The design philosophy targets keeping ledgers distributed and making smart contracts safe, particularly for enterprise use.

    Sawtooth simplifies blockchain application development by separating the core system from the application domain. Application developers can specify the business rules appropriate for their application, using the language of their choice, without needing to know the underlying design of the core system.

    Sawtooth is also highly modular. This modularity enables enterprises and consortia to make policy decisions that they are best equipped to make. Sawtooth’s core design allows applications to choose the transaction rules, permissioning, and consensus algorithms that support their unique business needs.

Leaving Windows 7? Here are some non-Windows options.

Filed under
GNU
Linux
Microsoft

Then there’s my own favorite: the Linux desktop. But while I love it, I’m well aware of the Linux desktop’s many problems.

But recently the Linux community looks to be finally getting its act together. So now might be a good time to kick Linux’s tires.

Personally, when it comes to the many distros, I favor Linux Mint. It’s good, secure and fast. It also has the advantage, from your perspective, of looking a good deal like Windows 7. That makes switching over to it easier than you might expect.

But if you need corporate support, you’ll be better off with Red Hat Enterprise Linux Workstation or Canonical’s Ubuntu for desktop. You can, by the by, use Linux desktops with your existing Active Directory domains if that’s what’s stopping you from considering Linux.

Which is best for you? Only you can answer that question. What I can say, though, is that these days you don’t have to just grit your teeth and shift over to the next version of Windows. Thanks in large part to the move to a SaaS model for nearly all applications, you have real desktop OS choices.

Read more

More on Fedora (Flock), IBM/Red Hat and Servers/HPC

Filed under
Red Hat
Server
  • Stephen Gallagher: Flock 2019 Trip Report

    As usual, the conference began with Matthew Miller’s traditional “State of Fedora” address wherein he uses pretty graphs to confound and amaze us. Oh, and reminds us that we’ve come a long way in Fedora and we have much further to go together, still.

    Next was a keynote by Cate Huston of Automattic (now the proud owners of both WordPress and Tumblr, apparently!). She talked to us about the importance of understanding when a team has become dysfunctional and some techniques for getting back on track.

    After lunch, Adam Samalik gave his talk, “Modularity: to modularize or not to modularize?”, describing for the audience some of the cases where Fedora Modularity makes sense… and some cases where other packaging techniques are a better choice. This was one of the more useful sessions for me. Once Adam gave his prepared talk, the two of us took a series of great questions from the audience. I hope that we did a good job of disambiguating some things, but time will tell how that works out. We also got some suggestions for improvements we could make, which were translated into Modularity Team tickets: here and here.

  • IBM Cloud: No shift, Sherlock

    IBM’s cloud strategy has gone through a number of iterations as it attempts to offer a compelling hybrid cloud to shift its customers from traditional IT architectures to modern cloud computing.

    IBM is gambling those customers who have yet to embrace the public cloud fully, remain committed to private and hybrid cloud-based infrastructure, and, if they do use public clouds, they want a cloud-agnostic approach to move workloads. In July, IBM closed the $34bn purchase of Red Hat, an acquisition it hopes will finally enable it to deliver cloud-agnostic products and services.

    To tie in with the completion of the acquisition of Red Hat, IBM commissioned Forrester to look at the benefits to those organisations that are both Red Hat and IBM customers.

  • Red Hat Shares ― Not just open source, *enterprise* open source

    Open source software (OSS), by definition, has source code that’s available for anyone to see, learn from, use, modify, and distribute. It’s also the foundation for a model of collaborative invention that empowers communities of individuals and companies to innovate in a way that proprietary software doesn't allow.

    Enterprise open source software is OSS that’s supported and made more secure―by a company like Red Hat―for enterprise use. It plays a strategic role in many organizations and continues to gain popularity.

  • Taashee Linux Services Joins Bright Computing Partner Program

today's howtos

Filed under
HowTos

Compact, TX2-based embedded computer has four PoE ports

Filed under
Linux
Hardware

Aaeon’s rugged, low-height “Boxer-8170AI” AI edge computer runs Linux on a Jetson TX2 and supplies 4x USB 3.0 and 4x PoE-enabled LAN ports for powering cameras. You also get 2x HDMI, 2x serial, GbE, and optional SATA and CANBus.

Aaeon has launched a fanless Boxer-8170AI computer for $1,200. The latest in a line of Boxer-branded, Nvidia Jetson TX2 based compact embedded computers is focused on Power-over-Ethernet for AI edge camera control.

[...]

The wallmount-enabled, 2.15 kg system supports -20 to 50°C temperatures with 0.5 m/s airflow per IEC68-2-14 and resists vibration at 3 Grms/5~500Hz. The system runs Aaeon ACLinux 4.4, which is based on Ubuntu 16.04.

Read more

Qt/KDE: Qt PDF and Krita Development

Filed under
Development
KDE
  • Qt PDF as a new TP module for Qt 5.14

    I suggest to promote Qt PDF to a Qt module. For Qt 5.14, it will be in Tech Preview state, and Shawn Rutledge is volunteering to be the maintainer. Although still staying an independent library from the user's perspective, it will be hosted and built in the qtwebengine.git repository. Initially only the desktop platforms (Windows, Linux, macOS) would be supported.

    Qt PDF is so far a Qt labs module [1]. It allows Qt applications to render/view PDF's in QWidget based applications [2], and is built on top of PDFium. However, development has been stagnant, also because it is built on top of a rather old version of PDFium.

    Why wasn't PDFium updated? PDFium got merged into Chromium a while ago, and is nowadays built as part of Chromium, using their build system (gn). Updating qtpdf.git to ship with latest PDFium would require quite some work, and keeping it up to date would require continuous work, too - work that nobody was willing to invest into so far.

    But it turns out that, since Qt 5.11, we have PDFium already in our sources, and we're actually also building it! It's part of the Qt WebEngine libs that use it for PDF rendering in HTML. So technically, you can already render PDF's by loading them into a Qt WebEngine page. Anyhow, not everybody wants to ship a web browser for 'just' rendering PDF's [3] ...

    So the idea is that we leverage on the existing build infrastructure for PDFium in qtwebengine.git, and host and build the Qt PDF libraries there. This also means that PDFium will be updated as part of the regular Chromium updates in qtwebengine.git. qtwebengine.git would furthermore get configure flags so that you can build just the Qt PDF libs. And, to reiterate: The Qt PDF libraries will _not_ depend on Qt WebEngine libs at runtime.

    What do you think? Are there any objections for going forward with this for Qt 5.14?

  • Qt PDF Being Discussed For Qt 5.14

    Being evaluated for Qt 5.14 is shipping Qt PDF that allows PDF documents to be rendered/viewed inside QWidget-based applications.

    Qt PDF would be introduced as a technical preview module for Qt 5.14. This Qt component is currently built off the PDFium library. PDFium as part of the Chromium sources for Qt WebEngine is already within the Qt tree and their goal would be to re-use that existing code for the PDF library support.

  • Krita 2019 Sprint: Animation and Workflow BoF

    Last week we had a huge Krita Sprint in Deventer. A detailed report is written by Boudewijn here, and I will concentrate on the Animation and Workflow discussion we had on Tuesday, when Boudewijn was away, meeting and managing people arriving. The discussion was centered around Steven and his workflow, but other people joined during the discussion: Noemie, Scott, Raghavendra and Jouni.

    (Eternal) Eraser problem

    Steven brought up a point that current brush options "Eraser Switch Size" and "Eraser switch Opacity" are buggy, so it winded up an old topic again. These options were always considered as a workaround for people who need a distinct eraser tool/brush tip, and they were always difficult to maintain.

Linux Stressed in Fedora, Red Hat/IBM and Security

Filed under
Red Hat
Security
  • Fedora Developers Discuss Ways To Improve Linux Interactivity In Low-Memory Situations

    While hopefully the upstream Linux kernel code can be improved to benefit all distributions for low-memory Linux desktops, Fedora developers at least are discussing their options for in the near-term improving the experience. With various easy "tests", it's possible to easily illustrate just how poorly the Linux desktop responds when under memory pressure. Besides the desktop interactivity becoming awful under memory pressure, some argue that an unprivileged task shouldn't be able to cause such behavior to the system in the first place.

  • How open source can help banks combat fraud and money laundering

    Jump ahead a few years to the Fourth EU AML Directive - a regulation which required compliance by June 2017 - demanding enhanced Customer Due Diligence procedures must be adhered to when cash transactions reach an aggregated amount of more than $11,000 U.S. dollars (USD). (The Fifth EU AML Directive is on the way, with a June 2020 deadline.) In New Zealand’s Anti-Money Laundering and Countering Financing of Terrorism Amendment Act of 2017 it is stated that banks and other financial entities must provide authorities with information about clients making cash transactions over $6,500 USD and international monetary wire transfers from New Zealand exceeding $650 USD. In 2018, the updated open banking European Directive on Payment Services (PSD2) that requires fraud monitoring also went into effect. And the Monetary Authority of Singapore is developing regulations regarding the use of cryptocurrencies for terrorist funding and money laundering, too.

  • Automate security in increasingly complex hybrid environments

    As new technologies and infrastructure such as virtualization, cloud, and containers are introduced into enterprise networks to make them more efficient, these hybrid environments are becoming more complex—potentially adding risks and security vulnerabilities.

    According to the Information Security Forum’s Global Security Threat Outlook for 2019, one of the biggest IT trends to watch this year is the increasing sophistication of cybercrime and ransomware. And even as the volume of ransomware attacks is dropping, cybercriminals are finding new, more potent ways to be disruptive. An article in TechRepublic points to cryptojacking malware, which enables someone to hijack another's hardware without permission to mine cryptocurrency, as a growing threat for enterprise networks.

    To more effectively mitigate these risks, organizations could invest in automation as a component of their security plans. That’s because it takes time to investigate and resolve issues, in addition to applying controlled remediations across bare metal, virtualized systems, and cloud environments -- both private and public -- all while documenting changes.

  • Josh Bressers: Appsec isn’t people

    The best way to think about this is to ask a different but related question. Why don’t we have training for developers to write code with fewer bugs? Even the suggestion of this would be ridiculed by every single person in the software world. I can only imagine the university course “CS 107: Error free development”. Everyone would fail the course. It would probably be a blast to teach, you could spend the whole semester yelling at the students for being stupid and not just writing code with fewer bugs. You don’t even have to grade anything, just fail them all because you know the projects have bugs.

    Humans are never going to write bug free code, this isn’t a controversial subject. Pretending we can somehow teach people to write bug free code would be a monumental waste of time and energy so we don’t even try.

    Now it’s time for a logic puzzle. We know that we can’t train humans to write bug free code. All security vulnerabilities are bugs. So we know we can’t train humans to write vulnerability free code. Well, we don’t really know it, we think we can if you look at history. The last twenty years has had an unhealthy obsession with getting humans to change their behaviors to be “more secure”. The only things that have come out of these efforts are 1) nobody likes security people anymore 2) we had to create our own conferences and parties because we don’t get invited to theirs 3) they probably never liked us in the first place.

Software: Cast to TV GNOME Shell, Easy rTorrent + ruTorrent, Cantata

Filed under
Software
  • Cast To TV v10 GNOME Extension Adds Support For Casting To Other Linux Devices

    Cast to TV GNOME Shell extension v10 brings Playercast app support, allowing users to cast media files to other Linux devices on the same network remotely, from GNOME Shell.

    Cast to TV is a GNOME Shell extension to cast videos, music and pictures to Chromecast or other devices over a local network. It supports video transcoding on the fly (for videos that can't directly play on the device), customizable subtitles, it can show a music visualizer while casting music, and much more. For controlling the device, the Gnome Shell extensions adds a new button on the top panel with playback controls.

    The latest v10 release of Cast to TV extension doesn't come with any exciting features for Chromecasts, but it brings support for Playercast app.

  • Easy rTorrent + ruTorrent Installation And Configuration Script For Debian Or Ubuntu

    Installing and setting up rTorrent and ruTorrent on an Ubuntu or Debian server can be a complicated, tedious task, specially for inexperienced users. rtinst is a script that makes this easier, by automatically installing and configuring rTorrent, ruTorrent (stable or master), and everything else needed for an Ubuntu or Debian (including on Raspberry Pi) seedbox.

    The script was updated recently with some important improvements, like support for the latest Debian 10 (buster) stable release, and automatic Let's Encrypt certificates generation if possible (in case it fails, it falls back to self-signed certificates).

    rTorrent is a text-based ncurses BitTorrent client based on libTorrent, great for usage on servers, while ruTorrent is a web front-end for rTorrent.

  • Listen to Online Radio on Ubuntu through Cantata

    There are many ways through which you can listen to online radio through Ubuntu. However, if you are looking for a stable application that gives you dedicated access to a large number of radio stations, we recommend using Cantata. It is a free graphical MPD client for Linux, macOS, Windows, and Haiku.

    In this article, we will explain how you can install Cantata to your Ubuntu through the official Ubuntu repositories, and also through the PPA(for latest version). We will also explain how you can set up and use Cantata to listen to online radio stations.

Instant Workstation

Filed under
KDE
BSD

Some considerable time ago I wrote up instructions on how to set up a FreeBSD machine with the latest KDE Plasma Desktop. Those instructions, while fairly short (set up X, install the KDE meta-port, .. and that’s it) are a bit fiddly.

So – prompted slightly by a Twitter exchange recently – I’ve started a mini-sub-project to script the installation of a desktop environment and the bits needed to support it. To give it at least a modicum of UI, dialog(1) is used to ask for an environment to install and a display manager.

The tricky bits – pointed out to me after I started – are hardware support, although a best-effort is better than having nothing, I think.

In any case, in a VBox host it’s now down to running a single script and picking Plasma and SDDM to get a usable system for me. Other combinations have not been tested, nor has system-hardware-setup. I’ll probably maintain it for a while and if I have time and energy it’ll be tried with nVidia (those work quite well on FreeBSD) and AMD (not so much, in my experience) graphics cards when I shuffle some machines around.

Read more

Games: Duck in Town - A Rising Knight, The ambitious Anodyne 2: Return to Dust, RPCS3 and Goldberg Steam Emulator

Filed under
Gaming

KDE.org Applications Site

Filed under
KDE

I’ve updated the kde.org/applications site so KDE now has web pages and lists the applications we produce.

In the update this week it’s gained Console apps and Addons.

Some exciting console apps we have include Clazy, kdesrc-build, KDebug Settings (a GUI app but has no menu entry) and KDialog (another GUI app but called from the command line).

Read more

Ubuntu/MAAS, SUSE/OBS and Desktop/Laptop

Filed under
GNU
Linux
  • Ubuntu Blog: Provisioning ESXi with MAAS: An overview

    MAAS has supported provisioning ESXi starting from MAAS 2.5. However, MAAS 2.6 has expanded its support and provides new features that significantly improves the provisioning experience.

  • Ubuntu Weekly Newsletter Issue 591

    Welcome to the Ubuntu Weekly Newsletter, Issue 591 for the week of August 4 – 10, 2019. The full version of this issue is available here.

  • Addressing Typography Issues in the new User Interface

    We tackled typography issues after receiving feedback from multiple users.

  • [Update: Arriving] Chromebook Pixel 2015, 8 more Chrome OS devices to get Linux apps support soon

    The ability to run Linux apps has opened the door for Chromebooks to become more than just a glorified web browser, but an actual workstation. Many older devices, however, were unable to get Linux apps support, due to not having the necessary hardware. Other Chromebooks were held back because their underlying Linux kernel for Chrome OS was much older and thus didn’t have everything necessary to integrate Linux apps properly.

    A handful of devices from 2015, including that year’s Chromebook Pixel, were stuck in an awkward place, being too outdated for Linux apps to be easily possible and being too new to be ignored completely. Last August, the Chromium team said that the fate of these devices was still “undecided,” which is why they’re not explicitly mentioned in Chromium documentation.

    In the intervening months, Google has been hard at work on a project called “kernelnext,” which seems poised to update the Linux kernel of certain devices, starting with the 2015 Chromebook Pixel (aka Samus), from version 3.14 to 4.14. There are actually eight other Chrome OS devices built on the same Broadwell generation Intel processors found in the 2015 Chromebook Pixel, all of which are also being tested with “kernelnext.”

IBM/Red Hat, Fedora and Servers

Filed under
Red Hat
  • Red Hat technologies make open hybrid cloud a reality

    It’s important to make the distinction between open hybrid cloud and multi-cloud environments. A hybrid cloud features coordination between the tasks running in the different environments. Multi-cloud, on the other hand, simply uses different clouds without coordinating or orchestrating tasks among them.

    Red Hat solutions are certified on all major cloud providers, including Alibaba Cloud, Amazon Web Services, the Google Cloud Platform, IBM Cloud, and Microsoft Azure. As you’re defining your hybrid cloud strategy, you can be confident that you won’t be going it alone as you work with a cloud provider. You won’t be the first person to try things on Cloud x; you’ll have the promise of a proven provider that works with your hybrid architecture.

  • Successful OpenShift 4.1 Disconnected install

    My new position has me working with Red Hat customers in the financial services industry. These customers have strict regulations for controlling access to machines. When it comes to installing OpenShift, we often are deploying into an environment that we call “Air Gapped.” What this means in practice is that all install media need to be present inside the data center, and cannot be fetched from online on demand. This approach is at odds with the conveniences of doing an on-demand repository pull of a container image. Most of the effort involves setting up intern registries and repositories, and getting X509 certificates properly created and deployed to make access to those repositories secure.

    The biggest things we learned is that automation counts. When you need to modify a file, take the time to automate how you modify it. That way, when you need to do it again (which you will) you don’t make a mistake in the modification. In our case, we were following a step-by-step document that got us about halfway through before we realized we made a mistake. Once we switched from manual edits to automated, we were far more likely to rollback to a VM snapshot and roll forward to make progress. At this point, things really started getting smoother.

  • NEST 2.18.0 (and 2.16.0) are ready for use on NeuroFedora

    After a bit of work and testing, NEST 2.18.0 and 2.16.0 are now both available for use on NeuroFedora.

  • Capture and playback UDP packets

    Generating some random statsd communication is easy, it’s text-based UDP protocol and all you need to have is netcat. However things change when statsd server is integrated with real application flodding it with thousands of packets of various attributes.

  • Apache Hive vs. Apache HBase: Which is the query performance champion?

    It's super easy to get lost in the world of big data technologies. There are so many of them that it seems a day never passes without the advent of a new one. Still, such fast development is only half the trouble. The real problem is that it's difficult to understand the functionality and the intended use of the existing technologies.

    To find out what technology suits their needs, IT managers often contrast them. We've also conducted an academic study to make a clear distinction between Apache Hive and Apache HBase—two important technologies that are frequently used in Hadoop implementation projects.

  • Geeking outside the office

    Sysadmins have plush, easy desk jobs, right? We sit in a nice climate-controlled office and type away in our terminals, never really forced to exert ourselves. At least, it might look that way. As I write this during a heat wave here in my hometown, I'm certainly grateful for my air-conditioned office.

    Being a sysadmin, though, carries a lot of stress that people don't see. Most sysadmins have some level of on call. In some, places it's a rotation. In others, it's 24/7. That's because some industries demand a quick response, and others maybe a little less. We're also expected to know everything and solve problems quickly. I could write a whole separate article on how keeping calm in an emergency is a pillar of a good sysadmin.

    The point I'm trying to make is that we are, in fact, under a lot of pressure, and we need to keep it together. While in some cases profit margins are at stake, in other cases lives could be. Let's face it, in this digital world almost everything depends on a sysadmin to keep the lights on. Maintaining all of this infrastructure pushes many sysadmins (and network admins, and especially information security professionals) to the brink of burnout.

    So, this article addresses how getting away from the day job can help you keep your sanity.

  • Rook v1.0 Adds Support for Ceph Nautilus, EdgeFS, and NFS Operator

    Rook, a storage orchestrator for Kubernetes, has released version 1.0 for production-ready workloads that use file, block, and object storage in containers. Highlights of Rook 1.0 include support for storage providers through operators like Ceph Nautilus, EdgeFS, and NFS. For instance, when a pod requests an NFS file system, Rook can provision it without any manual intervention.

    Rook was the first storage project accepted into the Cloud Native Computing Foundation (CNCF), and it helps storage administrators to automate everyday tasks like provisioning, configuration, disaster recovery, deployment, and upgrading storage providers. Rook turns a distributed file system into storage services that scale and heal automatically by leveraging the Kubernetes features with the operator pattern. When administrators use Rook with a storage provider like Ceph, they only have to worry about declaring the desired state of the cluster and the operator will be responsible for setting up and configuring the storage layer in the cluster.

Syndicate content

More in Tux Machines

Anime studio, Khara, is planning to use open-source Blender software

The open-source 3D creation software, Blender, will be picked up by the Japanese anime studio, Khara. It’ll begin partially using the software for its current development ‘EVANGELION:3.0+1.0’ but will make the full switch once that project is finished. The current project is expected to end in June next year, so after that point, its employees will start using Blender for the majority of their work. At the moment, Khara uses 3ds Max from Autodesk on a subscription basis; however, the company found that it had to reach out to small and medium-sized businesses for its projects. Due to the limitations of those companies, it’s harder for them to afford 3ds Max. By switching to Blender, Khara says it can work better with external firms. Read more

FOSS From Australian Signals Directorate (ASD)

  • Australian Signals Directorate open sources data analysis tool

    The security agency described Constellation as a NetBeans Java application that can be “used to inform decision making and advance data-driven innovation”. The source code has been released under the Apache License 2.0.

  • ASD makes in-house data analysis app open source

    The Australian Signals Directorate (ASD) has released an open source version of its in-house data visualisation and analysis tool, Constellation, connecting the security agency with the outer world.

    The tool — which is available via GitHub — was designed to help “inform decision-making and advance data-driven innovation” and can be used to “solve large and complex problems in a simple and intuitive way”, according to the agency.

Today in Techrights

today's leftovers: OpenSUSE Tumbleweed, Fedora Program Management, Security and More

  • Dominique Leuenberger: openSUSE Tumbleweed – Review of the week 2019/33

    Week 2019/33 ‘only’ saw three snapshots being published (3 more were given to openQA but discarded).

  • FPgM report: 2019-33

    Here’s your report of what has happened in Fedora Program Management this week. I have weekly office hours in #fedora-meeting-1. Drop by if you have any questions or comments about the schedule, Changes, elections, or anything else. (Just not this week because I will be traveling)

  • Security updates for Friday

    Security updates have been issued by Debian (freetype, libreoffice, and openjdk-7), Fedora (edk2, mariadb, mariadb-connector-c, mariadb-connector-odbc, python-django, and squirrelmail), Gentoo (chromium, cups, firefox, glibc, kconfig, libarchive, libreoffice, oracle-jdk-bin, polkit, proftpd, sqlite, wget, zeromq, and znc), openSUSE (bzip2, chromium, dosbox, evince, gpg2, icedtea-web, java-11-openjdk, java-1_8_0-openjdk, kconfig, kdelibs4, mariadb, mariadb-connector-c, nodejs8, pdns, polkit, python, subversion, and vlc), Oracle (ghostscript and kernel), Red Hat (mysql:8.0 and subversion:1.10), SUSE (389-ds, libvirt and libvirt-python, and openjpeg2), and Ubuntu (nginx).

  • A compendium of container escapes

    My name is Brandon Edwards, I’m Chief Scientist at Capsule8. Today we’ll be talking about a compendium of container escapes in the podcast. We’ve previously talked about escaping containers and the sorts of vulnerabilities people should be concerned with a while back. In particular we’re discussing how the RunC vulnerability had engendered all this interest, or concern, or almost shock, the trust the people are placing in containers was broken. Oh wow, an escape could happen! I think it’s really valuable to be able to communicate and show all the other ways that that sort of thing can happen, either from misconfiguration, or over granting privileges, or providing host mounts into the container, or having kernel vulnerabilities that could somehow compromise any of the elements of the security model of container, which is both fragile and complex.

  • Apollo data graph brings managed federation to enterprises

    Data graph vendor Apollo is aiming to help overcome several obstacles to enterprises using graph databases with its latest Apollo Data Graph Platform update, which became generally available on July 16. Among the key new features in the platform are federated management capabilities that enable more scalability across different GraphQL data graph instances. GraphQL is an open source query language for APIs, originally created by Facebook that is used to enable data graph capabilities.