Language Selection

English French German Italian Portuguese Spanish

Microsoft

Proprietary Software 'Security'

Filed under
Microsoft
Security

Proprietary Security Issues

Filed under
Microsoft
Mac
Security

Kernel: Microsoft E.E.E. Against Mesa (DirectX, Vista Service Pack 10/11) and HP OMEN Laptops

Filed under
Linux
Microsoft
  • Microsoft Adds An EGL Implementation To Mesa For Windows

    Microsoft is increasingly investing in Mesa as part of working on their Windows Subsystem for Linux graphics support as well as also getting OpenGL and OpenCL working on Windows implemented over Direct3D 12. In fact, Microsoft is one of the gold sponsors for this week's X.Org Developers' Conference (XDC2021).

  • HP OMEN Laptops To Be Better Supported With Linux 5.16 - Phoronix

    HP's higher-end "OMEN" laptop series is set to see better support with the next kernel cycle.

    While just missing out on the Linux 5.15 merge window, one of the early changes queued up so far this week in any of the "-next" branches is the x86 platform drivers picking up HP OMEN laptop support within the HP WMI driver.

  • Orange Publishes An In-Kernel eBPF-Powered Cache - Can Speed Up Memcached By ~18x - Phoronix

    French telecommunications giant Orange has published "BMC" as the (e)BPF Memory Cache providing a cache focused on memcached usage within the Linux kernel.

    Orange's open-source BPF Memory Cache allows for handling memcached requests before the standard network stack and is said to be crash-safe and this module requires no other kernel modules. Additionally, the memcached user-space software itself can run unmodified atop BMC.

Proprietary Software Security

Filed under
Microsoft
Mac
Security
  • OMIGOD: Azure users running Linux VMs need to update now [Ed: They need to abandon Microsoft Azure and get reprimanded by the employer for ever choosing this NSA company as a host in the first place]
  • Microsoft September 2021 Patch Tuesday: Remote code execution flaws in MSHTML, OMI fixed
  • Microsoft Patch Tuesday, September 2021 Edition

    Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple has issued an emergency update to fix a flaw that’s reportedly been abused to install spyware on iOS products, and Google‘s got a new version of Chrome that tackles two zero-day flaws. Finally, Adobe has released critical security updates for Acrobat, Reader and a slew of other software.

  • Apple Patches Up Devices In Response To The Exposure Of Yet Another NSO Group Exploit

    Israeli digital arms merchant NSO Group continues to sell its malware to a wide variety of governments. The governments it sells to, which includes a bunch of notorious human rights abusers, continue to use these exploits to target dissidents, activists, journalists, religious leaders, and political opponents. And the manufacturers of the devices exploited by governments to harm people these governments don't like (NSO says "criminals and terrorists," long-term customers say "eh, whoever") continue to patch things up so these exploits no longer work.

  • It's not just you: Emergency software patches are on the rise

    Researchers raised the alarm Monday about a big one: The Israeli spyware company NSO Group, which sells programs for governments to remotely take over people’s smartphones and computers, had figured out a new way into practically any Apple device by sending a fake GIF through iMessage. The only way to guard against it is to install Apple’s emergency software update.

  • Apple Rushes Out Emergency Update to Stop ‘No Click’ Spyware

    The flaw, disclosed Monday by Citizen Lab, allowed a hacker using NSO’s Pegasus malware to gain access to a device owned by an unnamed Saudi activist, according to security researchers. Apple said the flaw could be exploited if a user on a vulnerable device received a “maliciously crafted” PDF file.

More Microsoftisation of Linux Kernel and Linux Foundation

Filed under
Linux
Microsoft

Microsoft Defender leads the user to assume Free and Open Source Software is malicious with scary red warnings.

Filed under
OS
Microsoft

Microsoft “Defender”, the questionable “free” antivirus software included with Windows, routinely flags Free and Open Source Software that I try to install as a potential virus.

So far, I’ve gotten warnings like these on LibreOffice installers, as well as PeaZip, HexChat, and QBitTorrent.

In fact, over on Reddit, some people even say Microsoft has been removing BitTorrent programs in general, without asking them first, even when there’s no malware at all in them. In fact, there’s so many complaints of Microsoft doing this, here’s an entire search result. Take your pick.

Windows itself meets the definition of spyware and adware set forth by the overall anti-spyware and anti-adware communities in the late 1990s, when the problem first emerged with the stuff piggybacking on software that claimed to be free of charge.

Windows “11” even had the entire OS crash and freeze on the dev and beta channels recently, because a lookup to a Microsoft ad server from the Start Menu failed to respond.

Read more

Latest Ubuntu 21.10 blows the wind out of Windows 10 / 11 in certain performance tests

Filed under
GNU
Graphics/Benchmarks
Linux
Microsoft
Ubuntu

Microsoft's next-gen Windows 11 OS is set to release publicly on the 5th of October which is about a week earlier than the release date for Ubuntu 21.10 (codenamed "Impish Indri"), the latter being on October 14. As a result, folks over at Phoronix were curious and wondered what the performances differences might be like between the two upcoming operating systems.

According to the benchmark results obtained in the comparison across several workstation applications, it seems Ubuntu 21.10 is quite a bit ahead by around 50%, or much more, in some of the tests especially those that involve more dependency on the CPU, indicating that the OS is probably better at utilizing the available CPU resources than Windows. GPU-based applications however have generally tended to favor Microsoft's OS, however, the performance gaps aren't as big in Windows' favor.

Read more

Microsoft and Proprietary Software

Filed under
Microsoft
  • Windows 11? Another wave of pollution | Stop at Zona-M

    To add insult to injury, this explosion of e-waste happens, as they said on Reddit, “in the middle of a chip shortage”. Talk about corporate responsibility.

    More details where I made the screenshot, that is at “Windows 11 To Create e-Waste Mountain”.

  • Why does Amazon want a branded TV?

    Amazon.com reportedly plans to market its own branded TVs in the U.S., possibly as soon as October.

    Citing sources familiar with the matter, Business Insider said the TV will be designed and manufactured by China-based TCL, range between 55 to 75 inches and have Alexa built in. Amazon Devices and Lab126, the R&D team behind the Kindle and Fire TV Stick, are collaborating on the project that’s been covertly in development for nearly two years.

  • Microsoft warns Azure customers of flaw that could have permitted [crackers] access to data

    In an earlier interview, Palo Alto researcher Ariel Zelivansky told Reuters his team had been able to break out of Azure's widely used system for so-called containers that store programs for users.

  • Microsoft: Attackers Exploiting Windows Zero-Day Flaw

    Microsoft Corp. warns that attackers are exploiting a previously unknown vulnerability in Windows 10 and many Windows Server versions to seize control over PCs when users open a malicious document or visit a booby-trapped website. There is currently no official patch for the flaw, but Microsoft has released recommendations for mitigating the threat.

Proprietary Software and Security

Filed under
Red Hat
Microsoft
Security

Security Leftovers and Microsoft

Filed under
Microsoft
Security
Syndicate content

More in Tux Machines

6 Best Ways to Improve Linux Security

The Linux OS has historically been regarded as more secure than Windows or macOS thanks to how it handles user permissions and because it’s open-source software. One of the other big reasons for that faith in Linux’s security was the fact that it isn’t as popular among users worldwide. With Windows being the leader in terms of user adoption. While experts still agree that Linux is a secure OS, some very valid concerns have started popping up in recent years. For one, Linux has seen a boost in popularity as of late, paired with an increase in interest from cybercriminals. But more than that, despite its secure design, Linux is vulnerable to attack. Read more

Try this Linux web browser dedicated solely to web applications

When I'm on the go, I need everything to work as efficiently as possible. And although you might be thinking, "But a web browser is as efficient as it gets, right?" That depends on what task you're doing and what site you're working with. This is especially so in the modern age of web applications and with constantly on-the-move staff. Instead of always having a full-blown, kitchen-sink-type web browser, sometimes we need something a bit more stripped-down, a tool that is geared toward one thing and one thing only—web applications. Read more

Graphics: GL, Libinput, NVIDIA, and AMD

  • Mike Blumenkrantz: Underwater

    I got a request recently to fix up the WebGL Aquarium demo. I’ve had this bookmarked for a while since it’s one of the only test cases for GL_EXT_multisampled_render_to_texture I’m aware of, at least when running Chrome in EGL mode. Naturally, I decided to do both at once since this would be yet another extension that no native desktop driver in Mesa currently supports.

  • xf86-input-libinput 1.2.0

    This release introduces support for touchpad gestures that will be available as part of X server 21.1. Additionally high-resolution scrolling data is now acquired from libinput if available and sent downstream to X server. The default scroll distance has been bumped to 120 in the process, but this should not affect correctly written clients.

  • xf86-input-libinput 1.2 Brings Touchpad Gestures, High Resolution Scrolling - Phoronix

    For those continuing to make use of the X.Org Server, xf86-input-libinput 1.2 is now available for integrating the latest functionality of libinput input handling library. Libinput 1.19 released last week with support for hold gesture types and high resolution wheel scrolling. The xf86-input-libinput 1.2 release for this X.Org DDX now supports touchpad gestures and high resolution scrolling data as well when pairing this driver with libinput 1.19. In the case of the hold gestures, it requires to be used in conjunction with the forthcoming X.Org Server 21.1 release.

  • NVIDIA Prepares The Linux Kernel For Future Laptops With EC-Driven Backlights - Phoronix

    NVIDIA is contributing a new open-source driver to the upstream Linux kernel for dealing with upcoming laptops where the backlight controls are handled by the device's embedded controller (EC). With Linux 5.16 later this year NVIDIA is ready with the "wmaa-backlight-wmi" driver for EC-based backlight controls for upcoming laptop/notebook computers.

  • AMD Continues CRIU Work To Checkpoint/Restore ROCm Compute Workloads - Phoronix

    Earlier this year AMD went public with prototyping CRIU support for Radeon GPUs around ROCm to be able to checkpoint/freeze running compute workloads and to then restore them at a later point. This CRIU focus is driven by their big accelerator needs and forthcoming supercomputers for migrating workloads particularly within containers. AMD continues working on CRIU support for GPUs and last week provided an update on the project.

today's howtos

  • Getting started with JBoss | Enable Sysadmin

    JBoss Enterprise Application Platform (EAP) is an enterprise-grade, open source platform to deploy highly transactional and scalable web applications. It includes everything you need to build, run, deploy, and manage enterprise-level Java applications in different environments—including on-premises, virtual environments, and private, public, and hybrid clouds. This article explains some of what I have learned during my time with JBoss EAP, its operating modes, installing it, and managing the JBoss service. I will also show how to build and deploy a sample web application archive (WAR) file so that you can learn alongside me.

  • How to scale GRUB menu on 4K displays

    Several weeks ago, I installed Kubuntu 20.04 on my IdeaPad Y50-70, a somewhat old but rather capable 15.6-inch laptop with a 4K screen resolution. Predictably, the device wasn't usable in its native screen mode, and I had to make everything bigger, scaling and all that. In the end, I managed to create an ergonomically comfortable setup, with two exceptions - the login menu, and the boot menu. The former gave me some grief, but I was able to get it sorted. With GRUB, there were more problems. One, the menu wouldn't show, even though I had a dual-boot configuration in place. Two, the menu was tiny, with the text barely readable. So I embarked on a journey of GRUB modifications, hence this tutorial. Let me show you how you can make the GRUB menu bigger on HD/UHD displays.

  • Use this Linux command-line tool to learn more about your NVMe drives | Opensource.com

    NVMe stands for Non-Volatile Memory Express, and it refers to how software and storage communicate across PCIe and other protocols, including TCP. It's an open specification led by a non-profit organization and defines several forms of solid-state storage. My laptop has an NVMe drive, as does my desktop. And they're fast. I love how quickly my computers boot and how quickly they're able to read and write data. There's no perceptible delay. It also didn't take long for me to get curious about the technology driving this ultra-fast storage, so I did a little investigation. I learned that NVMe drives consume less power while delivering much faster access to data compared to even SSD drives over SATA. That was interesting, but I wanted to know more about my particular NVMe drives, and I wanted to know how they compared with other drives. Could I securely erase the drive? How could I check its integrity? Those questions led me to an Internet search that yielded an open source project with a collection of tools to manage NVMe drives. It's called nvme-cli.

  • Delta Chat, Overview and Installation

    The email messenger, Delta Chat, is a Germany communication app which everyone can use and just works friends and family even without them using the same application. This article overviews it and give installation guide for Ubuntu and Android users. Let's chat!

  • How to install Node.js & NPM on Debian 11

    Node.js is an open-source, cross-platform runtime environment for developing server-side and networking applications built on Chrome's V8 JavaScript engine. It uses an event-driven, non-blocking I/O model that makes it lightweight and efficient. NPM(Node Package Manager) is the default package manager for Node.js. It comes installed when you install Node.js. You can do almost everything with it since it provides access to thousands of packages that can be downloaded and installed in your application's project directory through the command-line interface. In this article, we will learn what Nodejs is and how to install it on a Linux machine using a non-root user account.

  • How to Install pgAdmin 5 PostgreSQL Administration Tool on Debian 11

    pgAdmin is a free and open-source graphical administration tool for PostgreSQL which is easy to use. It supports PostgreSQL 9.6 and above, and it can be run on multiple operating systems, including Windows, macOS, and Linux.

  • Install Filebeat on CentOS 8 - Unixcop

    Filebeat is used to ship logs to logstash or Elastic search to filter and use them as per requirement. Whether you’re collecting from security devices, cloud, containers, hosts, or OT, Filebeat helps you keep the simple things simple by offering a lightweight way to forward and centralize logs and files. Filebeat consists of two main components: inputs and harvesters. These components work together to tail files and send event data to the output that you specify. An input is responsible for managing the harvesters and finding all sources to read from.

  • How to Install FreeRADIUS and Daloradius on Ubuntu 20.04 – VITUX

    RADIUS is a AAA (authentication, authorization, and accounting) protocol that helps in controlling network access. In other words, RADIUS protocol is used for connection management between the Network Access Server (NAS) and Authentication server. The connection between two ends(NAC-NAS or NAS-Authentication server) is initiated after a successful negotiation on the network layer by exchanging packets containing necessary information such as NAS identification, authentication port number etc. In simple words, it can be said that RADIUS provides authentication, authorization, and account information from an Authentication server to a device requesting access.