Desktop

• Linux-based Pinebook Pro has 1080p display, multi-core processing and privacy switches

  When shopping for a new laptop, most of us would plump for Windows- or macOS-based systems. Or maybe a low cost, online working Chromebook may suit.

• One More Reason Elementary OS Is Ideal For New Linux Users

  Other Linux distributions like Ubuntu MATE and Ubuntu Budgie have great Welcome apps that pop up after you’ve installed the OS, giving you a tour (albeit a wordy one) of key functionality and features. I have to say I sincerely love elementary’s take on the first-run experience, because it’s not only elegant but modular.

  Let’s say you’re a first-time user. You’ve just installed elementary OS. After you create your user account and log in, you’ll see the optional six-step Onboarding app. Here, you can switch on the Night Light, toggle on or off Location Services, set up some Housekeeping (this periodically deletes temporary and trashed files for you), or jump into the AppCenter to download some software. it’s not wordy, and the associated icons alone are enough to explain what each feature is.

  It gets better though, and this is where I think elementary separates itself from the pack.

  The elementary OS devs entertained what might happen if major new features were introduced “mid-cycle,” and not during a typical point release upgrade. The solution was to simply show existing users a scaled down version of the Onboarding app with only those new features. It avoids repetition and keeps things streamlined.

• Linux for Chromebooks 101: Getting started with the command line

  So where does one start with Linux on a Chromebook?
  I’ll be writing up a series of posts to help answer that question, starting today with the basics of the Linux command line. You may not need all of these commands as Linux becomes even more integrated with Chrome OS, but they’re good to know regardless. In the future, I’ll share some more advanced useful Linux features, some of the apps you might want to use for certain instances and more.
  To level-set everyone, here’s a high-level explanation of what you actually have – and what you don’t – when it comes to Linux on a Chromebook.
  When most non-Linux users think about the open-source platform, they imagine something that doesn’t quite look like Windows nor macOS but can be similar.

Server

• GitHub confirms it has blocked developers in Iran, Syria and Crimea [Ed: Microsoft wants us to believe that all companies need to do what GitHub did. That’s a lie. But Microsoft knows that it needs to lick Trump’s and Bolton’s boots to keep getting those government contracts that ‘bail it out’. Microsoft made its choice [1, 2].]

  The impact of U.S. trade restrictions is trickling down to the developer community. GitHub, the world’s largest host of source code, is preventing users in Iran, Syria, Crimea and potentially other sanctioned nations from accessing portions of the service, chief executive of the Microsoft-owned firm said.

• Migrating an Exchange Server to the Cloud? What could possibly go wrong?

  As users stared at useless login screens, Ben and his team floundered for a few hours, trying to work out how to restore access.

  The clue was in the word “restore” as one bright spark remembered there was a user account named “backup” used, well, to do backups.

  It had been missed in the Exchange account purge and so was still active.

  And the Linux connection? The Microsoft Certified Partner used a server running the open-source operating system to perform backup duties.

  The backup software used that Active Directory account, which just so happened to have enough privileges to re-enable the Windows users via Linux LDAP tools.

  After all, these days Microsoft just loves open source, right?

• AWS Turbocharges new Linux Kernel Releases in its Extras Catalogue

  Amazon says it has added AWS-optimised variants of new Linux Kernel releases to its extras catalogue in Amazon Linux 2 – a Linux server operating system (OS) – saying the boost results in higher bandwidth with lower latency on smaller instance types.

  Amazon Linux is an OS distribution supported and updated by AWS and made available for use with Elastic Compute Cloud (EC2) instances. Amazon Linux users will now be able to update the operating system to Linux Kernel 4.19, as released in October 2018.

• Cloud Foundry and Kubernetes – The Blending Continues [Ed: Cloud Foundry Foundation dominated by proprietary software firms]

  At the recent Cloud Foundry Summit in Philadephia, Troy Topnik of SUSE participated in the latest iteration of a panel discussing how the community continues to blend Cloud Foundry and Kubernetes. There is some interesting and insightful discussion between members of the panel from Google, IBM, Microsoft, Pivotal, SAP, and Swarna Podila of the Cloud Foundry Foundation.

  Cloud Foundry Foundation has posted all recorded talks form CF Summit on YouTube.

• Don’t Throw Your Kubernetes Away

  The adoption of Kubernetes is growing at an unprecedented rate. Companies of all sizes are running it in production. Almost all of these companies were early adopters of Kubernetes where different dev teams brought Kubernetes inside the organization.

  Kubernetes is a very engineer-driven technology. Unlike instances like virtualization or other infrastructure components that are managed by the central IT team which offers them to different development groups, Kubernetes is something that developers bring into the organization.

• Issue #2019.07.29 – Kubeflow Releases so far (0.5, 0.4, 0.3)

  Kubeflow 0.5 simplifies model development with enhanced UI and Fairing library – The 2019 Q1 release of Kubeflow goes broader and deeper with release 0.5. Give your Jupyter notebooks a boost with the redesigned notebook app. Get nerdy with the new kfctl command line tool. Power to the people – use your favourite python IDE and send your model to a Kubeflow cluster using the Fairing python library. More training tools added as well, with an example of XGBoost and Fairing.

• IBM

  • IBM CTO: ‘Open Tech Is Our Cloud Strategy’

    IBM may not be as splashy as some of the other tech giants that make big code contributions to open source. But as Chris Ferris, CTO for open technology at IBM says, “we’ve been involved in open source before open source was cool.”

    By Ferris’ estimation, IBM ranks among the top three contributors in terms of code commits to open source project and contributors to the various open source communities. “It’s really significant,” he said. “We don’t run around with the vanity metrics the way some others do, but it’s really important to us.”

  • TurboSched Is A New Linux Scheduler Focused On Maximizing Turbo Frequency Usage

    TurboSched is a new Linux kernel scheduler that’s been in development by IBM for maximizing use of turbo frequencies for the longest possible periods of time. Rather than this scheduler trying to balance the load across all available CPU cores, it tries to keep the priority tasks on a select group of cores while aiming to keep the other cores idle in order to allow for the power allowance to be used by those few turbo-capable cores with the high priority work.

    TurboSched aims to keep low utilization tasks to already active cores as opposed to waking up new cores from their idle/power-savings states. This is beneficial for allowing the CPU cores most likely to be kept in their turbo state for longer while saving power in terms of not waking up extra cores for brief periods of time when handling various background/jitter tasks.

  • SUSE displaces Red Hat @ Istanbul Technical University

    Did you know the third-oldest engineering sciences university in the world is in Turkey? Founded in 1773, Istanbul Technical University (ITU) is one of the oldest universities in Turkey. It trains more than 40,000 students in a wide range of science, technology and engineering disciplines.

    The third-oldest engineering sciences university selected the oldest Enterprise Linux company. Awesome match of experience! The university ditched the half-closed/half-open Red Hat products and went for truly open, open source solutions from SUSE.

Kernel Space

• Linus Torvalds prepares to wave goodbye to Linux floppy drives

  When Linus Torvalds first created Linux in 1991, he built it on a 386-powered PC with a floppy drive. Things change. In 2012, Torvalds bid the i386 processor adieu saying, “I’m not sentimental. Good riddance.” Now, it’s the floppy drive’s turn to bid Linux adieu.

  Torvalds has declared the floppy drive project “orphaned.”

  Why? Because floppy drives have become historical relics. No one’s using them. Indeed, Jiří Kosina, the Czech Linux kernel developer in charge of the floppy drive driver, said he “no longer has working hardware.”

  Torvalds continued, “Actual working physical floppy hardware is getting hard to find, and while Willy was able to test this, I think the driver can be considered pretty much dead from an actual hardware standpoint. The hardware that is still sold seems to be mainly USB-based, which doesn’t use this legacy driver at all.”

• Is This the End of Floppy Disk in Linux? Linus Torvalds Marks Floppy Disks ‘Orphaned’

  Chances are that you haven’t seen a real floppy disk in years. And if you are looking for a computer with floppy drive, you may have to visit a museum.

  More than two decades ago, floppy disks were the popular medium for storing data and running operating systems on it. The early Linux distributions were ‘distributed’ using floppy disks. Floppy disks were also used extensively for saving and transferring data.

  Have you ever wondered why the save icons in many applications look like a floppy? Because it IS floppy disk. Floppy disks were popular for saving data and hence many applications used it as save icons and the tradition continues till date.

• Linux Foundation

  • Netflix Joins Academy Software Foundation, Will Contribute to OTIO Project

    Netflix has joined the Academy Software Foundation (ASWF) and will begin contributing to the OpenTimelineIO (OTIO) project originally created by Pixar, the ASWF said today.

    OTIO is an open-source API and interchange format for collaboration between story, editorial and production departments, making it easier to track changes in shot length, notify collaborators when shots are added or removed, and conform new renders into a cut.

  • Netflix, Amazon Web Services Join the Motion Picture Academy’s Software Foundation

    Netflix, Amazon Web Services, RodeoFX and MovieLabs have joined the Academy Software Foundation (ASWF), the group said Monday. The foundation was started a year ago by the Academy of Motion Picture Arts and Science in cooperation with The Linux Foundation to offer a forum for open source software developers to share resources and collaborate on image creation, visual effects, animation and sound technologies.

    AWS and Netflix have come on board as premier members, Rodeo FX as a general member, and MovieLabs as an associate member.

    Initiated by the Academy’s Science and Technology Council, the foundation also announced on Monday that OpenTimelineIO has been accepted by its technical advisory council as the fifth foundation-hosted project. Created by Pixar, OpenTimelineIO is an open source Application Programming Interface and interchange format aimed at enabling collaboration and communication of editorial data and timeline information between a studio’s story, editorial, production and postproduction departments. It’s already been used in production on Coco, Incredibles 2 and Toy Story 4.

  • Netflix, Amazon Web Services Join Hollywood Open Source Group

  • Academy Software Foundation Marks 1st Anniversary with Major Announcements

    The Academy Software Foundation is celebrating its one year anniversary at SIGGRAPH this week, with plenty to be proud of. The Foundation has accomplished a 78% growth in membership in the past year, with just-announced newcomers Netflix, Amazon Web Services, Rodeo FX and Movie Labs. ASWF further revealed that Pixar’s OpenTimelineIO will be the fifth project hosted at the Foundation.

    SIGGRAPH attendees can check out projects from across the industry during Open Source Day on Tuesday — a full day of Birds of a Feather sessions focused on open source projects tailored to visual effects, animation and image creation. More exciting announcements are in store for these sessions.

• Graphics Stack

  • Radeon RX 5700 / RX 5700 XT Linux Gaming Performance With AMDGPU 5.3 + Mesa 19.2-devel

    Now that the flow of initial Navi fixes and optimizations has settled down for both the AMDGPU DRM kernel driver and the Mesa RADV/RadeonSI user-space driver components, here is a look at AMD Radeon RX 5700 and RX 5700 XT graphics card performance on Ubuntu Linux at the end of July, now three weeks after these 7nm graphics cards first shipped.

    This round of testing features the Navi Radeon RX 5700 series tested with the very latest Linux 5.3 development kernel as of this past weekend, which is the first kernel featuring this Navi support. Since the initial merge earlier this month, there have already been some Navi 10 fixes that followed. On the OpenGL/Vulkan driver side, Mesa 19.2-devel is branching in early August and now has decent support for the Radeon RX 5700 series in place. Since the earlier RadeonSI support and the RADV Vulkan driver support that landed on launch day, there has continued to be a number of fixes to land, various new features, and different driver performance optimizations.

  • AMDVLK 2019.Q3.3 Released With More Navi Performance Tuning, Vulkan Extensions

    Two weeks after AMDVLK received initial Navi 10 support, another release of this official open-source AMD Radeon Vulkan Linux driver is now available. With this 2019.Q3.3 release there is performance optimizations for Navi as well as some new extensions.

    This morning’s AMDVLK 2019.Q3.3 code drop brings performance tuning for Navi 10 with some of the affected games being DiRT 4, Total War: Warhammer II, and F1 2017. I will have out some Navi AMDVLK vs. RADV tests this week — later today will be a fresh look at the RadeonSI/RADV performance.

  • Radeon GPU Profiler 1.6 Released With Navi/RDNA Support

    AMD’s GPUOpen development team has kicked off the new week by releasing Radeon GPU Profiler 1.6, their open-source and cross-platform GPU profiling and analysis utility. With Radeon GPU Profiler 1.6 comes support for gathering insights on AMD Radeon RX 5000 “Navi” graphics processors.

    Navi/RDNA support is the headlining new feature for Radeon GPU Profiler 1.6. The release notes do mention though that the Linux support for RGP on the Radeon RX 5700/5700XT aren’t completely baked, but it doesn’t yet go into any details over those initial limitations. Additionally, the OpenCL profiling for Navi isn’t yet complete and that’s a limitation for both Windows and Linux.

  • NVIDIA have three new Linux driver releases out today

    Today, NVIDIA have released a new stable driver update in addition to an updated Vulkan beta driver and a new OpenGL beta driver.

  • NVIDIA 430.40 Linux Driver Released With RTX 2080 SUPER Support, RTX 3000 Max-Q

    NVIDIA’s Unix/Linux graphics driver team has kicked off a new week by introducing the 430.40 long-lived driver release.

    New GPU support with this NVIDIA 430.40 Linux update is handling of the GeForce RTX 2080 SUPER and Quadro RTX 3000 Max-Q graphics. Sadly no RTX SUPER Linux tests still as NVIDIA seems uninterested in Linux tests with these recent SUPER models.

    The NVIDIA 430.40 Linux driver also fixes a kernel issue when built with CONFIG_HOTPLUG_CPU and support in the NVIDIA installer for systems that provide their ncurses library with the wide character ABI only.

  • OSNEXUS and Pogo Linux Announce New StorageDirector Q-Series Storage Appliance for Multimedia Streaming and Active Archive of Media Content

    OSNEXUS and Pogo Linux will demonstrate the new solution alongside syGlass, a scientific VR software provider, at SIGGRAPH 2019 happening July 30th to August 1st at the Los Angeles Convention Center at booth number 720.

    The StorageDirector Q-Series combines the QuantaStor software-defined storage platform with Pogo-certified hardware to provide enhanced streaming and active archiving of digital content with enterprise-class availability and data services in a fully-integrated, high-capacity storage system. Additionally, the StorageDirector Q-Series storage solution provides industry-leading media processing capabilities while affording the operational agility and flexibility to handle unexpected media workflow demands.

Applications

• LyricPad – access lyrics over the web with this Qt based app

  I recently wrote a review of Olivia. It’s a cloud music player for Linux developed by Keshav Bhatt. The author is writing a number of open source software. I took the opportunity to check out a few of his other projects, one of which is LyricPad.

  LyricPad is a free and open source lyrics viewer written in C++ and uses Qt, a free and open-source widget toolkit for creating graphical user interfaces. LyricPad relies on Python code and back-end developed by Rishabh Bhardwaj.

  LyricPad is at a very early stage of development. There’s no official release to date.

Instructionals/Technical

• How to install Navicat for MongoDB on Linux platforms

• How to install curl command on Ubuntu Linux

• How to install the Eclipse Java IDE on Linux

• FlightGear Flight Simulator 2019.1 Released! (Ubuntu PPA)

• Two ways to add a Wallpaper to your Ubuntu Terminal

• Linux Monitor Hard Disks Temperature With hddtemp

• Linux Commands – Working with Directories

• How to Install Ruby on Debian Linux using RVM

• Core components of a Kubernetes Cluster

• Top 8 Things to do after Installing Debian 10 (Buster)

• Linux Commands for Beginners 12 – Managing systemd Units

• Linux Commands for Beginners 13 – Viewing Logs

• Linux Commands for Beginners 14 – Managing Users

• How to Know The Groups of a Linux User

Games

• Pushy and Pully in Blockland looks like a fun co-op arcade game coming to Linux

  Pushy and Pully in Blockland from Resistance Studio is a solo and co-op arcade game with a retro visual style, confirmed to be coming to Linux.

• Linux Kernel 5.2 gets major gaming performance enhancements, courtesy of Collabora

  Attention, gamers! The new Linux Kernel 5.2 will come with several upgrades that are sure to make your gaming experiences even better — all thanks to the Collabora team.

  Although FOSSLinux has previously covered the release of Linux Kernel 5.2, what was not into public knowledge at that time were the contributions made by Collabora. However, that changed soon afterward as the Collabora team released an official blog post highlighting their part in the development of the new Linux Kernel release, which led us to write this news post.

• First-person strategy game “Colony Survival” finally has a major update after a year of waiting

  It sounds like this latest version might actually be worth a go. Featuring an overhaul to lots of systems in the game like world generation, to include “proper biomes” with more varied landscape features. An entirely new save system, multiple colony support, LAN play support, co-op support, much improved performance, a major update to the version of Unity used, improved modding support, gliders to move around quickly, tons of new items and much more.

• Flippin Kaktus is an absolutely mad looking action-platformer coming to Linux

  As a huge fan of games like Broforce, I’m always on the look out for another good action-platformer with over-the-top craziness and Flippin Kaktus looks pretty sharp.

• Retro-inspired kart racer “Super Indie Karts” updated with a bunch of new tracks

  In need of a stylish retro-inspired kart racer? Super Indie Karts might be exactly what you’re looking for. A recent update to the game added in a bunch of new tracks in the Knight Cup.

• Sky Racket mixes together a shoot ‘em up with a block-breaker and it’s really fun

  Releasing sometime later this year, Double Dash Studios have merged together a block-breaker with a shoot ‘em up to create something a little odd but it’s very fun.

  Armed with nothing more than a fancy “laser tennis racket”, you’re not able to directly attack most enemies. Instead, you will bounce back their bullets to destroy blocks in your way. There’s a few smaller enemies you can smack around with your racket though, but most of it is about bouncing bullets around.

• Studio Attic Salt are bringing a very stylish looking Visual Novel “Misadventures of Laura Silver” to Linux

  Releasing next month, Turkish developer Studio Attic Salt are trying their hand at a Visual Novel with Misadventures of Laura Silver and it looks good.

  What they say is the first Turkish visual novel, the Misadventures of Laura Silver is planned as three-chapter novel with this being the first part. It follows “detective and gun enthusiast extraordinaire” Laura Silver and her companion, former police officer Orewell Cooper. They’re sent over to Czechoslovakia to investigate reports of a mysterious creature lurking in the murky waters of Pilsen.

• The in-development medieval RPG “Donensbourgh” had a huge upgrade recently

  Donensbourgh is one I highlighted only recently, a medieval RPG with no combat or violence that seemed promising. It just had a pretty massive upgrade to improve all of it.

  Definitely like the idea they’re going for here. A single-player story-based experience, with some surprisingly beautiful looking graphics in certain areas with a focus on the late 13th century. With an aim to be on the realistic side, there’s no spells or dragons or anything like that.

• Train Valley and Train Valley 2 released DRM-free on GOG with Linux support

  Here’s a nice surprise to start your week with, both Train Valley and Train Valley 2 are now available DRM-free on GOG. Both games have supported Linux for some time and thankfully today’s GOG release comes with the Linux build ready for both games. Despite being a series, both games actually play quite differently. I’m quite a fan of Train Valley 2 myself, it’s quite challenging.

  The basic idea of both games is very similar, with you building up a rail network and ensuring your trains don’t smash into each other. While the basics and interactions are the same, the goals are completely different.

• Beamdog have announced that Axis & Allies 1942 Online will release on July 31st

  Beamdog, the developer known for Baldur’s Gate: Enhanced Edition, Neverwinter Nights: Enhanced Edition and plenty more have now revealed their strategy game Axis & Allies 1942 Online will release on July 31st.

  This is the official adaption of the classic board game, Axis & Allies 1942 Second Edition, and the release into Early Access will come with Linux support, as confirmed by Beamdog to us in their press release.

Desktop Environments/WMs

• K Desktop Environment/KDE SC/Qt

  • Latte Dock 0.9 Brings More Bling to the KDE Plasma Desktop

    A brand new version of Latte Dock, an application launcher and task switcher for the KDE Plasma desktop, is now available for download.

    Latte Dock v0.9 is the first update to the app this year, and follows a succession of alpha and beta releases.

• GNOME Desktop/GTK

  • Andrei Lisita: Almost there

    All good things come to an end and so does the 2019 Google Summer of Code. With the last coding period having officially started my project is slowly approaching it’s last commit.

    Lately I have been working mostly on various issues regarding the looks and the behavior of the Savestates Manager, but there are also two new visible UI changes…

  • g_assert_finalize_object() in GLib 2.61.2

    One more API in this mini-series! g_assert_finalize_object(), which is available in GLib 2.61.2, which was released today.

    This one’s useful when writing tests (and only when writing tests). It’s been put together by Simon McVittie to implement the common pattern needed in tests, where you want to unref a GObject and assert that you just dropped the final reference to the object — i.e., check that no references to the object have been leaked in the test.

  • Finally TagEditor!

    After a lot of Merge Requests related with MBIDS and AcoustID, finally I started working on acoustid plugin.

    Before the logic was to return the recording with most sources. Now, we need to return multiple results. We need to retrieve first release belonging to each release group of each recording which matched with the given chromaprint.

Distributions

• New Releases

  • Linux Lite 4.6 RC1 Released

    Linux Lite 4.6 RC1 is now available for testing.

  • Linux Lite 4.6 Enters Development Based on Ubuntu 18.04.2 LTS, Here’s What’s New

    Linux Lite creator Jerry Bezencon announced today that the Linux Lite 4.6 operating system is now in development, giving the community an early taste of what’s coming in the next major release of this Ubuntu-based OS.

    Highlights of the Linux Lite 4.6 release include a new theme selector in the Lite Welcome tool to make it easier for newcomers to select between the Light and Dark themes, along with a new Keyboard and Num Lock sections. Moreover, the Lite Sources utility has been updated with comments only about the Linux Lite repositories.

    Another interesting addition to Linux Lite 4.6 is the CPU Performance mode plugin from the Xfce desktop environment (xfce4-cpufreq-plugin), which is now available as an option for the system tray. Users can select it and move it wherever they want by right-clicking on the Taskbar, then go to Panel > Add new items > CPU Frequency Monitor.

  • Linux Lite 4.6 RC1 is here

    Summertime is great, isn’t it? I mean, who doesn’t like fun in the sun? Many, actually. While I do enjoy the outdoors and the beach, I am certainly more comfortable in front of a computer. And I am definitely not alone. If you are the same way, don’t apologize for it — embrace it! There’s nothing wrong with being a homebody.

    For instance, today, rather than go outdoors and risk being injured by the sun, why not install a Linux-based operating system instead? Hell, get even nerdier and geekier and install a pre-release Linux distro! There’s a new such OS available for testing that you should try — the Ubuntu-based Linux Lite 4.6 RC1.

• Fedora Family

  • Introduction Fedora CoreOS (FCOS) with Benjamin Gilbert and Ben Breard (Red Hat) – OpenShift Commons Briefing

    Fedora CoreOS is the new container-centric operating system from the Fedora community and Red Hat.

    In this briefing, Benjamin Gilbert, Fedora CoreOS technical lead, and Ben Breard, product manager, describe how Fedora CoreOS supports immutable infrastructure to make clusters easier to manage and also discuss future development plans, including integration with OKD.

    Fedora CoreOS is an automatically updating, minimal, monolithic, container-focused operating system, designed for clusters but also operable standalone, optimized for Kubernetes, but also great without it. It aims to combine the best of both CoreOS Container Linux and Fedora Atomic Host, integrating technology like Ignition from Container Linux with rpm-ostree and SELinux hardening from Project Atomic. Its goal is to provide the best container host to run containerized workloads securely and at scale.

• Debian Family

  • Debian Outs First Linux Kernel Security Update for Debian GNU/Linux 10 “Buster”

    Released earlier this month, the latest Debian GNU/Linux 10 “Buster” operating system just got its first Linux kernel security update, which addresses a security flaw (CVE-2019-13272) discovered by Google Project Zero’s Jann Horn in Linux kernel’s ptrace subsyste, which could let a local user obtain root privileges.

    “Jann Horn discovered that the ptrace subsystem in the Linux kernel mishandles the management of the credentials of a process that wants to create a ptrace relationship, allowing a local user to obtain root privileges under certain scenarios,” reads the security advisory published by Salvatore Bonaccorso last week.

  • Candy Tsai: Outreachy Week 8 – Week 9: Remote or In-Office Working

    The Week 9 blog prompt recommended by Outreachy was to write about my career goals. To be honest, this is a really hard topic for me. As long as a career path involves some form of coding, creating and learning new things, I’m willing to take it on. The best situation could be that it is also doing something good for the society. This might be because that “something that I am too passionate for” doesn’t yet exist in my life. For now, I wish I’d still be coding 5 years from now. It’s just that simple. The only thing that I would like to see improvement upon is gender balance for this industry.

• Canonical/Ubuntu Family

  • Linux Mint Monthly News – July 2019

    I’ll be very quick with the news this month as we’re getting very close to the stable release.

    First of all, I’d like to thank all the people who helped us test the BETA. Many bugs were identified and fixed in the last two weeks and that is thanks to you! I’d like to thank our donors and sponsors as well, and all the people who support our project financially.

    We entered QA testing again yesterday and we should be able to announce the stable release of Linux Mint 19.2 by the end of the week.

    We’ll also open up and announce an upgrade path for users of Linux Mint 19 and 19.1 before the week-end.

    Next week we’ll shift focus towards LMDE 3 and update it with Cinnamon 4.2 and all the new features from Linux Mint 19.2.

    I hope you have a great Summer (or Winter if you live in the Southern Hemisphere) and you’re as excited as we are with the upcoming new release!

  • Linux Mint 19.2 “Tina” to Launch This Week, Cinnamon 4.2 Coming to LMDE 3 Soon

    Linux Mint project leader Clement Lefebvre announced today that the forthcoming Linux Mint 19.2 “Tina” operating system will launch later this week for all supported editions.
    Dubbed “Tina” and based on Canonical’s long-term supported Ubuntu 18.04 LTS (Bionic Beaver) operating system series, the Linux Mint 19.2 operating system has been in beta testing for the past two weeks, and it looks like it passed all tests and it is ready for launch as soon as early August.

    “We entered QA testing again yesterday and we should be able to announce the stable release of Linux Mint 19.2 by the end of the week,” said Clement Lefebvre in a brief monthly newsletter. “Many bugs were identified and fixed in the last two weeks and that is thanks to you!”

    Linux Mint 19.2 “Tina” will be available in the usual editions with the Cinnamon, MATE, and Xfce desktop environments. Users running the previous version, Linux Mint 19.1, will be able to upgrade to Linux Mint 19.2 as Clement Lefebvre confirmed the upgrade path will be open this coming weekend.

Devices/Embedded

• A digital tally list for hackerspaces

  Overall our plan is to write a digital tally list in two weeks, going from idea to running prototype. This tally list should support donations with a variable amount, drinks with set price, as well as assorted items like the workshop fee. It also needs to support rudimentary user management and some kind of admin interface. All users will be verified by RFID.

  Currently consumption is logged into a monthly log-file, so we can easily handle the payments. Users are managed by the UI itself, we just have to put the initial UID into a json file. Drink prices are read from JSON and a price update requires a restart of the app. The app itself will run on a Raspberry PI with an attached 7″ display and an RFID reader attached via the serial port.

  The entire app is written in Python with a QML frontend.

  I’m ordering the RFID hardware and the display this week, so we have a full weekend of hacking ahead of us.

• Snapdragon 410-based module offers 96Boards and touch-panel eval kits

  Keith & Koep’s tiny, Linux-ready “Myon I” module features the quad -A53 Snapdragon 410 with up to 8GB eMMC, extended temp support, and an optional WiFi/BT/GPS module. The Myon I powers a “ConXM” carrier and “i-PAN M7 CoverLens Touchpanel PC.”

  Keith & Koep, which offers a line of SODIMM-style “Trizeps” computer-on-modules such as the recent i.MX8M-based Trizeps VIII and i.MX8M Mini-driven Trizeps VIII Mini, is introducing a Myon I module with a smaller 48 x 32 x 4.2mm footprint and no edge connector. While the Trizeps line started out with Marvell XScale processors before moving on to Freescale/NXP i.MX SoCs, the Myon I taps Qualcomm’s Snapdragon 410.

• Mobile Systems/Mobile Applications

  • How to Change Bluetooth Codecs and Improve Wireless Audio Quality on Your Android Phone for Free

  • How to Improve Wireless Audio Quality on Your Android Phone for Free

  • What to look for when buying an Android TV box

  • MIUI vs One UI: Which Android Launcher Is Better for You

  • BlackBerry Hub+ beta app updates bring improved Android Q compatibility and stability fixes!

  • When Is Your Samsung or Motorola Smartphone Getting Android Q?

  • Update Your Android Nougat, Oreo, or Pie Device to Block Video Malware

  • LG starts international Android 9 Pie rollout for V30

  • Equifax Settlement, Android Video File Exploit, Encryption Backdoors

  • Android exploit code emerges, ransomware goes south, Citrix calls off hack probe, and more

  • Android ransomware is back – We Live Security

  • Playing This Video Can Hack Your Android Smartphone

  • [Rolling out] OPPO F7 ColorOS 6 (Android Pie 9.0) update trial version (soak test) goes live

  • [Update: Now rolling out] Early Android Pie beta build leaks for the LG V30, still no release info

  • Vivo Z3 Android Pie (Funtouch OS 9) update beta tester recruitment is live

  • Honor 8X and Honor 10 will reportedly get EMUI 10 based on Android Q

  • When will my Motorola phone get Android Q? Here’s a probable Moto G7, G6, Z3, Z4 update roadmap

  • Some official tweets hint at Android Q for the Honor 10 and 8X

  • ARRIS and TDS Telecom to Deploy Android TV™ Set-Top

  • Tech Tips: How to block advertisements on your Android smartphone

  • Issue 64 Of Android Advisor Out Today

  • Librem 5 Final Specs: Will This Linux Phone Make You Dump Android & iOS?

  • Librem 5 Smartphone – Final Specs Announced

    We are proud to unveil the final specifications for the Librem 5 smartphone, set to begin shipping in Q3 of 2019.

  • Purism Confirms Final Specs for the Librem 5

    Purism has announced the finalised specs for Librem 5, the Linux-powered smartphone it successfully crowdfunded back in 2017.

    While the bulk of the hardware that makes up the privacy-focused phone have been known for a while (and made available in developer kits) a few components, including memory and camera, were yet to be formally settled on.

  • Purism finalizes specs for the Librem 5 Linux smartphone (shipping in Q3, 2019)

    Linux laptop company Purism is getting ready to ship its first Linux smartphone. The Purism Librem 5 was first announced in mid-2017, raised over $1.5 million through a crowdfunding campaign a few months later, and has been under development ever since.

    But some details have been in flux. Now that Purism says the phone is almost ready to ship, the organization is revealing the finalized specifications and pricing details.

    The Librem 5 is still on track to ship in the third quarter of 2019, and it’ll have a retail price of $699, but folks who pre-order by July 31st will still be able to reserve one for $649.

  • Librem 5 privacy-focused Linux phone specs finalized as pre-orders begin

    Despite the growing number of evidence and cases of mobile software that blatantly violate user privacy, it’s almost impossible to imagine life these days without a smartphone. While hardcore privacy advocates might be able to ditch their mobile device for good, there are some that try to promise the best of both mobile and privacy worlds. One of those is Purism who has finally finalized the specs and features of its crowdfunded privacy-respecting Librem 5 phone.

    [...]

    The question now is whether all of that is enough to justify a $699 price tag. For those who answer a resounding “yes”, an early bird pre-order will shave $50 off that price for $649 only until July 31. As for the shipping date, that is still unannounced for both those pre-orders and, more importantly, the original backers back in 2017.

  • Purism Reveals Final Hardware Specs of the Privacy-Focused Librem 5 Linux Phone

    Purism, the company behind the powerful Linux-based laptops known as the Librem computers, announced today the final hardware specifications of their upcoming Librem 5 Linux smartphone.

    As you probably are already aware, Purism is working for some time on a Linux-powered smartphone, which the company calls Librem 5. Designed from the ground up to be privacy and security-aware, the Librem 5 Linux phone is currently scheduled for launch in Q3 2019, after it’s been delayed a couple of times.

  • Purism Finally Announces The Firmed Up Specifications For The Librem 5 Smartphone

    It still remains to be seen if Purism will be able to ship the Librem 5 Linux smartphone this quarter as is their current revised target, but at least today they are publishing the finalized specifications for the phone’s hardware.

    While we’ve long known of their plans to use the i.MX8 SoC and other components, items like the phone’s cameras, battery capacity, and even RAM were not known until now.

Free, Libre, and Open Source Software

• Thiruvananthapuram: Digital signature in free software

  Kerala Infrastructure and Technology for Education (KITE) has come up with a system for integrating digital signatures in free and open-source software (FOSS)-based operating systems used in most government offices.

  The state government had recently made digital signatures compulsory for salaries and benefits on the Service and Payroll Administrative Repository for Kerala (SPARK) portal. At present, 27,797 offices use SPARK for salary disbursement for over seven lakh employees.

  The new mechanism comes following reports of some offices, including general education department, depending on proprietary software. The government policy mandates FOSS applications in all offices.

  The IT@School GNU/Linux 18.04 operating system of KITE already has inbuilt software utilities for running drivers for Java-based digital signature.

• Kerala: New system to integrate digital signatures in FOSS

  Kerala Infrastructure and Technology for Education (KITE) has come out with a system for integrating digital signatures in free and open source software (FOSS) for preparing the salaries and other benefits of employees in the Service and Payroll Administrative Repository for Kerala (SPARK) portal. The state government had recently instructed all government offices to compulsorily make use of digital signatures for preparing the salaries and benefits of employees in the SPARK portal. At present, 27,797 government offices in the state use SPARK portal for salary disbursement for over 7 lakh employees. The new mechanism devised by KITE comes against the backdrop of reports of some offices, including some from general education department, depending on proprietary software for this purpose. The prevailing government policy mandates use of only FOSS applications in all its offices, said an official release issued here on Sunday. The IT@School GNU/Linux 18.04 operating system developed by KITE has inbuilt software utilities required for running the drivers for the digital signature token devices, which is based on Java.

• KITE to give technical assistance to Govt offices in Kerala

  The Kerala Infrastructure and Technology for Education (KITE) is all set to provide technical assistance to government offices in the state to install Digital Signature in Free Software based Operating System.

• GitHub developers restricted in Crimea, Cuba, Iran, and other regions under U.S. sanctions

  GitHub placed new restrictions on developers in Crimea, Cuba, Iran, North Korea, and Syria. Developers face restrictions as a result of U.S. trade sanctions. Private repositories (repos) and paid accounts are under these new restrictions, but public repos are still available, and open-source repos are unaffected. Several reports surfaced over the weekend of developers being affected by the restrictions (via The Verge).

• Yellow badges are back. This time not by Nazi Germany & not for Jews, but by U.S. tech companies

  Three days ago (Jul 25, 2019), when GitHub blocked my account, I noticed that there is an ugly fixed yellow warning on every single page of GitHub for me (as a blocked user). The warning message had no close button. I want to call it “Digital yellow badge” but this time it’s not for Jews, it’s for people who born & live in countries like Iran.

• GitHub restricts developer accounts based in Iran, Crimea, and other countries under US sanctions

  At least one developer who was affected by the action was told that the company was not “legally able” to provide an export of the disabled repository content. Friedman added that the company does not believe it is legally able to provide advance notice of these restrictions, but he said that users can choose to make their private repos public to gain access and clone them.

• Open Source GitHub Repositories Safe From Trump’s Ban

  The restriction is IP based, which means even if a developer is simply living in one of these countries, irrespective of citizenship, won’t be able to access these services.

• Events

  • linux.conf.au proposal deadline extended

    For those didn’t quite get around to putting in a proposal for linux.conf.au 2020 (Gold Coast, January 13 to 17), there’s another chance: the proposal deadline has been extended to August 11. “We have heard that some of you would like a bit more time to submit your proposals for linux.conf.au 2020. So, we have decided to extend the due date by two weeks to help everyone have a chance to submit.”

• Web Browsers

  • Mozilla

    • 5 open-source Firefox alternatives for Linux users

      Mozilla Firefox is an excellent open-source web browser, perhaps one of the best tools on the entire Linux platform. Still, the Firefox browser is adding more and more features, and these new additions aren’t for everyone. If you’re looking for an open-source alternative to Firefox on Linux, we’ve got you covered. Here are 5 open-source Firefox alternatives for Linux users.

    • Mozilla WebThings Gateway open source router firmware now available

      Mozilla has this week announced the release of version 0.9 of its WebThings Gateway firmware for wireless routers, making the first experimental builds for the companies first target router hardware, the Turris Omnia.

      Based on the open source OpenWrt operating system Mozilla explains that the firmware features a “new first-time setup experience which enables you to configure the gateway as a router and Wi-Fi access point itself, rather than connecting to an existing Wi-Fi network.”

      Mozilla is also planning to add support for other wireless routers and router developer boards in the near future. As well as these new OpenWrt builds for routers, Mozilla will also continue to support the existing Raspbian-based builds for the Raspberry Pi range of mini PC systems.

    • IRL (podcast): The Tech Worker Resistance

      There’s a movement building within tech. Workers are demanding higher standards from their companies — and because of their unique skills and talent, they have the leverage to get attention. Walkouts and sit-ins. Picket protests and petitions. Shareholder resolutions, and open letters. These are the new tools of tech workers, increasingly emboldened to speak out. And, as they do that, they expose the underbellies of their companies’ ethics and values or perceived lack of them.

      In this episode of IRL, host Manoush Zomorodi meets with Rebecca Stack-Martinez, an Uber driver fed up with being treated like an extension of the app; Jack Poulson, who left Google over ethical concerns with a secret search engine being built for China; and Rebecca Sheppard, who works at Amazon and pushes for innovation on climate change from within. EFF Executive Director Cindy Cohn explains why this movement is happening now, and why it matters for all of us.

• SaaS/Back End

  • Elastic Cloud Enterprise 2.3 turns admins into bouncers

    Version 2.3 of Elastic Cloud Enterprise (ECE) is now available for download, finally bringing role-based access control (RBAC) to its general user base and letting admins decide who gets to see what. ECE allows the deployment of Elastic’s search-based software as a service offerings on a company’s infrastructure of choice (public cloud, private cloud, virtual machines, bare metal).

    The new version is the first to come with four pre-configured roles to help admins control deployment access and management privileges. This is only the first step in the product’s RBAC journey, though. Customisable deployment-level permissions and greater abilities to separate users by teams are on the ECE roadmap.

  • Cloudera open source route seeks to keep big data alive

    Cloudera has had a busy 2019. The vendor started off the year by merging with its primary rival Hortonworks to create a new Hadoop big data juggernaut. However, in the ensuing months, the newly merged company has faced challenges as revenue has come under pressure and the Hadoop market overall has shown signs of weakness.

    Against that backdrop, Cloudera said July 10 that it would be changing its licensing model, taking a fully open source approach. The Cloudera open source route is a new strategy for the vendor. In the past, Cloudera had supported and contributed to open source projects as part of the larger Hadoop ecosystem but had kept its high-end product portfolio under commercial licenses.

    The new open source approach is an attempt to emulate the success that enterprise Linux vendor Red Hat has achieved with its open source model. Red Hat was acquired by IBM for $34 billion in a deal that closed in July. In the Red Hat model, the code is all free and organizations pay a subscription fee for support services.

• Databases

  • YugaByte goes 100% open under Apache

    Open source distributed SQL database company YugaByte has confirmed that its eponymously named YugaByte DB is now 100 percent open source under the Apache 2.0 license.

    The additional homage to open source-ness means that previously commercial features now move into the open source core.

    YugaByte says it hopes that this will directly create more opportunities for open collaboration between users, who will have their hands on 100% open tools.

• Productivity Software/LibreOffice/Calligra

  • A better LibreOffice than LibreOffice

    After readings and advises from other IT directors, one of my customers and strong supporter of LibreOffice, noticed that just switching programs and teaching user to avoid pitfalls in interoperability is not enough for a smooth migration, and something more than following the migration best practices has to be done for a successful switch. He then asked me to deliver a better LibreOffice than LibreOffice.

    Challenge accepted. Together we started to investigate the needs of his organization, a civil company with strong military ties and with significant part of the workforce serving the military. We discovered a set of employees with repetitive tasks, usually performed by reusing old documents and updating them. The straightforward solution was to define a set of document templates and deploy it in the user computers.

    But that was not enough. LibreOffice templates are accessed by a bunch of clicks with dialogs navigation, a sequence that needs to be memorized. Besides, templates dialog covers all kind of documents types and more clicks to narrow the selection. There had to be some easier way to get a brand new document from a corporate controlled template. Also, my customer also wanted to let a fingerprint in the solution and he wanted the solution to bear the company logo when user access it, including the high ranked military.

  • LibreOffice monthly recap: July 2019

    ODF (the Open Document Format) is the native file format of LibreOffice, and is a fully open and standardised format, ideal for long-term document storage. At the start of the month, we announced COSM – the Community of ODF Specification Maintainers, to hold funds and to retain editors to work at the ODF Technical Committee. The goal is to accelerate development of the standard, and build up experienced editors.

• Funding

  • How Ford Lost $181 Million Betting on a Technology Startup—Data Sheet

    In May, 2016, two months after former Steelcase CEO Jim Hackett left the board of automaker Ford to become head of its “mobility services” unit, Ford invested $182 million in a Silicon Valley company called Pivotal Software. “The investment is part of Ford’s expansion to be both an auto and a mobility company,” Ford said at the time. The emphasis was theirs. Hackett subsequently became CEO of Ford and has staked his tenure on Ford’s mobility future.

• BSD

  • Stable release: HardenedBSD-stable 12-STABLE v1200059.2

• Openness/Sharing/Collaboration

  • Open Hardware/Modding

    • A New KiCAD Tutorial Hits The Scene

      KiCAD has a rightfully earned image problem regarding beginners. The shiny new version 5 has improved things (and we’re very excited for v6!) but the tool is a bit obtuse even when coming from a electronics design background, so we’re always excited to see new learning material. [Mike Watts] is the latest to join the esteemed group of people willing to export their knowledge with his KiCAD tutorial series on GitHub that takes the aspiring user from schematic through fab and assembly.

    • Alibaba’s open source processor targets complex cloud workloads like 5G

      If demanding telecoms workloads like virtualized RAN and 5G core are to move to the public cloud, the cloud providers will need to ensure their infrastructure is based on processors capable of supporting these functions. Suppliers like Intel are already investing in accelerators to surround their processors, for cloud hardware that can cope with artificial intelligence (AI), vRAN and other very high performance tasks. But in some cases, the webscalers themselves are also designing or commissioning their own processors to meet the demands of the new generation of cloud-based services and make sure their clouds are a match for specialized private cloud platforms. Google, Amazon AWS and others have periodically announced such developments, raising new challenges for Intel and other…

• Programming/Development

  • Python Fire v0.2.0 CLI library upgrades with new improvements

    Python Fire turns up with a new update. The latest release, version v0.2.0 adds some new improvements. This library auto-generates command line interfaces (CLI) from any Python object. You can call Fire on Python functions, classes, objects, dicts, or anything else!
    Python Fire heats things up with one spicy command: Fire. This open source library automatically generates command line interfaces from any Python object. It can be used as a tool for developing and debugging by calling Fire in the library.

    The latest release arrived on July 26, 2019. Version 0.2.0 improves a few things and makes some tweaks to the library. Let’s fan the flames and see what’s included in the update, as well as some uses and benefits.

  • Python’s Mypy: Callables and Generators

    In my last two articles I’ve described some of the ways Mypy, a type checker for Python, can help identify potential problems with your code. [See "Introducing Mypy, an Experimental Optional Static Type Checker for Python" and "Python's Mypy—Advanced Usage".] For people (like me) who have enjoyed dynamic languages for a long time, Mypy might seem like a step backward. But given the many mission-critical projects being written in Python, often by large teams with limited communication and Python experience, some kind of type checking is an increasingly necessary evil.

    It’s important to remember that Python, the language, isn’t changing, and it isn’t becoming statically typed. Mypy is a separate program, running outside Python, typically as part of a continuous integration (CI) system or invoked as part of a Git commit hook. The idea is that Mypy runs before you put your code into production, identifying where the data doesn’t match the annotations you’ve made to your variables and function parameters.

    I’m going to focus on a few of Mypy’s advanced features here. You might not encounter them very often, but even if you don’t, it’ll give you a better picture of the complexities associated with type checking, and how deeply the Mypy team is thinking about their work, and what tests need to be done. It’ll also help you understand more about the ways people do type checking, and how to balance the beauty, flexibility and expressiveness of dynamic typing with the strictness and fewer errors of static typing.

  • PyPy JIT Now Running Well On 64-Bit ARM For Faster Performance

    Thanks to funding from Arm Holdings and Crossbar, the PyPy folks working on their speedy Python JIT implementation have extended it to support 64-bit ARM (AArch64) with compelling performance results.

    This performance-oriented Python implementation now supports x86, x86_64, PowerPC 64-bit, s390, ARM 32-bit, and now ARM 64-bit.

  • Mike Driscoll: PyDev of the Week: Ines Montani

    This week we welcome Ines Montani (@_inesmontani) as our PyDev of the Week! Ines is the Founder of Explosion AI and a core developer of the spaCy package, which is a Python package for Natural Language Processing. If you would like to know more about Ines, you can check out her website or her Github profile. Let’s take a few moments to get to know her better!

  • Stack Abuse: Serverless Python Application Development with AWS Chalice

    In software development, we are constantly building solutions for end-users that solve a particular problem or ease/automate a certain process. Therefore, designing and building the software is not the only part of the process as we have to make the software available to the intended users.

    For web-based applications, deployment is a very important aspect and part of the process since the application not only needs to work, but also needs to work for many users concurrently and be highly available.

    Some of the deployment options that are available to us include buying our own server hardware and deploying our applications or renting server space in other companies. This comes at a cost not only of the resources needed to acquire them, but also the maintenance costs and personnel to monitor the server resources.

  • Release of Relatorio 0.9.0

    Relatorio is a templating library which provides a way to easily output several kinds of files but mainly OpenDocument.

  • HTML Parser — Developer Tools

    This article contains a shortlist with a few code blocks written in Python on top of BeautifulSoup library, used by me to process and manipulate HTML files.

  • Pylint false positives

    In some recent discussion on Reddit, I claimed that, for cases where I’m already using flake8, it seemed as though 95% of Pylint’s reported problems were false positives. Others had very different experiences, so I was intrigued enough to actually do some measurements.

    [...]

    I took part of the code from a side project where I don’t use Pylint, ran Pylint (with some very basic tuning) and tried to analyse the result in terms of helpful warnings compared to false positives etc.

  • Understanding the Python Traceback

    Python prints a traceback when an exception is raised in your code. The traceback output can be a bit overwhelming if you’re seeing it for the first time or you don’t know what it’s telling you. But the Python traceback has a wealth of information that can help you diagnose and fix the reason for the exception being raised in your code. Understanding what information a Python traceback provides is vital to becoming a better Python programmer.

  • Automated Report Generation with Papermill: Part 2

    Welcome to part 2 of this two-part series post about automating report generation using python, jupyter, papermill, and a couple of other tools.

    In the first part, we covered 4 main important processes that are part of the automation process. In this second and final part, we will bring everything together and build our report automation system.

    Note: This code was written in python 3.7. You might have to adapt the code for older versions of python.

  • NumPy 1.17.0 released

    The NumPy team has announced the release of NumPy 1.17.0. NumPy is a fundamental package for scientific computing with Python. “The 1.17.0 release contains a number of new features that should substantially improve its performance and usefulness. The Python versions supported are 3.5-3.7, note that Python 2.7 has been dropped.”

• Standards/Consortia

  • Vulkan 1.1.117 Adds Line Rasterization – Helping Out CAD Applications & More

    In addition to the release of OpenXR 1.0 for kicking off SIGGRAPH 2019 week, The Khronos Group has released Vulkan 1.1.117 as a fairly notable update to this high-performance graphics API.

    This SIGGRAPH update to Vulkan brings three new extensions.

  • Khronos releases the OpenXR 1.0 specification aimed at unifying VR and AR

    Today, The Khronos Group has formally announced the OpenXR 1.0 specification as an exciting step towards bringing together the various different ways of interacting with virtual reality (VR) and augmented reality (AR).

    If VR/AR is to become more commonplace, a proper standard should be a big boost to developers since they could target OpenXR and have it be supported across the industry. It’s gathered some pretty huge support too including Valve, AMD, NVIDIA, Epic Games, Arm, Oculus, HTC, Microsoft and more.

  • Khronos Officially Releases OpenXR 1.0

    Back during the Game Developers Conference was the release of the OpenXR provisional specification by The Khronos Group while today for SIGGRAPH they have formally announced OpenXR 1.0.

    OpenXR is the industry standard designed to address fragmentation and promote better interoperability in the AR/VR space across different headsets, software frameworks, and other interfaces. OpenXR 1.0 aims to offer a unified interface for high-performance access to VR and AR devices.

  • Khronos Releases OpenXR 1.0 Specification Establishing a Foundation for the AR and VR Ecosystem

    After gathering feedback from the XR community during the public review of the provisional specification, improvements were made to the OpenXR input subsystem, game engine editor support, and loader. With this 1.0 release, the working group will evolve the standard while maintaining full backwards compatibility from this point onward, giving software developers and hardware vendors a solid foundation upon which to deliver incredible, portable, user experiences.

  • Kernel 5.3-rc2 Is Out, Latte Doc v0.9 Officially Available, GitHub Blocking Developers from Certain Countries, the Khronos Group Announces the Public Release of OpenXR 1.0, and Netflix Joins the Academy Software Foundation

    The Khronos Group today announced “the ratification and public release of the OpenXR 1.0 specification together with publicly available implementations and substantial ecosystem momentum. OpenXR is a unifying, royalty-free, open standard that provides high-performance, cross-platform access to virtual reality (VR) and augmented reality (AR)—collectively known as XR—platforms and devices.”

Security (Confidentiality/Integrity/Availability)

• Cyberattack on Elasticseach Databases turns DBs into Zombies/Botnets

  Recently a new cyberattack added into the list of Elasticsearch which is making Elasticsearch databases into Zombies or botnets.

  There is a list of attacks conducted on Elasticsearch databases in the past few years. The new one raises more tension among security experts due to its complexity and use of different tactics to evade security system and carry forward the attack successfully.

  Elasticsearch is a popular tool that helps companies managing billions of records in the database easily. Its source code is open and big companies like Netflix, Uber, Dell, and Adobe are already using Elasticsearch. I hope you now have an idea of how important it is for hackers to find vulnerabilities in this tool and exploit them to gain systems control.

  Recently, Trend Micro, a cybersecurity company revealed hackers have targetted publicly available Elasticsearch databases by delivering a backdoor as a payload.

  The attack requires multiple scripts to be executed on the system, starting from disabling the system firewall and stopping all the crypto mining processes running on the system. Once these tasks are completed successfully then hackers download another script to the server from a compromised or a grey website.

• Security updates for Monday

  Security updates have been issued by Debian (patch, sdl-image1.2, and unzip), Fedora (deepin-clone, dtkcore, dtkwidget, and sqlite), Mageia (virtualbox), openSUSE (firefox), and SUSE (cronie and firefox).

• Court Will Decide If AT&T Is Liable For Cryptocurrency Theft Caused By Shoddy Security

  Wireless carriers are coming under increasing fire for failing to protect their users from SIM hijacking. The practice involves posing as a wireless customer, then fooling a wireless carrier to port the victim’s cell phone number right out from underneath them, letting the attacker then pose as the customer to potentially devastating effect. Back in February, a man sued T-Mobile for failing to protect his account after a hacker pretending to be him, ported out his phone number, then managed to use his identity to steal thousands of dollars worth of cryptocoins.

  T-Mobile customers aren’t the only users who’ve experienced this problem. US entrepreneur and cryptocurrency investor Michael Terpin sued AT&T last summer (pdf) for the same thing: somebody ran a SIM hijacking scam on AT&T, then stole his identity and, in turn, stole $23.8 million in cryptocurrency.

Environment

• Energy

  • New premier plans new UK nuclear tax

    All electricity consumers in Britain will pay a new UK nuclear tax, a levy on their bills to finance the construction of nuclear power plants under a scheme announced by the UK government.

    Called a Regulated Asset Base (RAB), but in reality a nuclear tax levied on electricity bills, the charge has no limits, so consumers will go on paying for any cost over-runs and delays, however long it takes to build a nuclear power station.

    The plan, launched by the UK Department for Business, is also to finance the as yet unproven technologies of carbon capture and storage.

• Wildlife/Nature

  • Will the Future Be Rural?

    Much has been written about when and how that should be done. One of the organizations looking for solutions is the nonprofit Post Carbon Institute, which for years has talked about better, instead of bigger growth, and what a transition to a less carbon-intensive energy system could look like.

    Its latest effort is a report by board president Jason Bradford called The Future Is Rural: Food System Adaptations to the Great Simplification.

    The report contains a premise that many may find surprising: New technologies and renewable energy will not be able to fully replace fossil fuels — or not as quickly as we will need them to. While some kinds of energy are more easily substituted by renewables, like solar and wind standing in for fossil-fueled electricity, others are not. Running heavy equipment, tractors and massive cargo ships that have relied on liquid fuels is a much more challenging task. As a result, the reasoning goes, we’ll need to learn how to use less energy and use it differently.

    If true this would have major impacts on every facet of our lives, including our food system —which today, in the United States, relies on fossil fuels and long trade networks.

    “We must face the prospect that many of us will need to be more responsible for food security,” Bradford writes in the report. “People in highly urbanized and globally integrated countries like the U.S. will need to re-ruralize and re-localize human settlement and subsistence patterns over the coming decades to adapt to both the end of cheaply available fossil fuels and climate change.”

    We talked to Bradford, who has worked for years in sustainable agriculture, about what changes he thinks are ahead and what we can do to prepare for them.

Finance

• The Dangerous Austerity Politics of the Washington Post

  This passes for wisdom at the Washington Post, but it is actually dangerously wrong-headed thinking that rich people (like the owner of the Washington Post) use their power to endlessly barrage the public with.

  The basic story of the 12 years since the collapse of the housing bubble is that the US economy has suffered from a lack of demand. We need actors in the economy to spend more money. The lack of spending over this period has cost us trillions of dollars in lost output.

  This should not be just an abstraction. Millions of people who wanted jobs in the decade from 2008 to 2018 did not have them because the Washington Post and its clique of “responsible” budget types joined in calls for austerity. This meant millions of families took a whack to their income, throwing some into poverty, leading many to lose houses, and some to become homeless.

  At this point, the evidence from the harm from austerity in the United States (it’s worse in Europe) is overwhelming, but just like Pravda in the days of the Soviet Union, we never see the Washington Post, or most other major news outlets, acknowledge the horrible cost of unnecessary austerity. We just get more of the same, as though the paper is hoping its readers will simply ignore the damage done by austerity.

AstroTurf/Lobbying/Politics

• Splintered Parliament faces 5 years of rancor

  A fractured European Parliament threatens to make passing laws very difficult this mandate.

  The Parliament got down to work this month in Strasbourg, but with the two main political families weakened and at loggerheads over a Council deal divvying up the EU’s top jobs, cobbling together majorities won’t be easy.

  “The duopoly between the Socialists and conservatives is over,” said French Green MEP David Cormand. “This is an opportunity for us. Before, they were co-managing the Parliament, now, we will be able to politicize the institution.”

  The European People’s Party and the Socialists & Democrats — the two old families of EU politics — saw their combined delegations fall to 336 this time around, short of a majority in the 751-seat legislature. That means a straight grand coalition between the two won’t carry enough weight to ram through new laws, unlike the last time around when the two had a combined 403 seats.

Censorship/Free Speech

• As Expected: Covington HS Teen’s Lawsuit Against The Washington Post Is Dismissed

  This was not unexpected. As we easily predicted back when it was filed, Nick Sandmann — the MAGA red hat wearing teenager from Covington Catholic High School who was briefly at the center of a viral social media Rorschach test — has now lost his laughably bad defamation lawsuit against the Washington Post. As we pointed out, he never alleged any actual defamation, and federal Judge William Bertelsman did not seem at all pleased with Sandmann’s legal arguments.

  [...]

  We see so many of these lawsuits these days, where people insist that saying something that you don’t like is somehow defamatory. That’s not how it works. Of course, it would have been nice if Kentucky had an anti-SLAPP law (it has none) or if there were a federal anti-SLAPP law (there is not) to discourage this kind of frivolous, free speech chilling, lawsuit.

• NY Times Calls Out Politicians For Lying About Section 230

  We’ve spent months now highlighting how politicians (of both parties) continually misrepresent what Section 230 of the CDA says. There are open questions as to whether or not this is because they don’t know the law, or they don’t care, and they think lying about it helps them politically. Considering that two of the most vocal individuals are Senators Ted Cruz and Josh Hawley — both of whom have a long history of being Constitutional lawyers — it is difficult to believe that both aren’t fully aware that they are lying.

  Now the NY Times is calling them out, with an opinion piece by editorial board member Sarah Jeong, highlighting how badly they get the law wrong. She notes that the law is short and easy to read, and therefore no one has an excuse for blatantly misrepresenting it.

Privacy/Surveillance

• Is your government requesting user data from tech giants?

  ‘User data’; it‘s a phrase many of us might not even have been aware of until recent changes to the law made it a hot topic that we can‘t ignore. New data protection laws have forced technology companies to become much more transparent about the ways they use your data and how they are sharing it with global governments.

  To do this, tech giants such as Apple, Microsoft, Google, and Facebook publish regular transparency reports, which shed light on how the policies and actions of governments and corporations affect privacy, security and access to information. However, these reports tend to be impenetrable to anyone who‘s not an expert on such matters, so we decided to create a series of visualisations to break it all down.

• Top European Court Rules Companies Using Facebook “Like” Button Are Responsible for User Privacy

  The Court of Justice for the European Union has ruled websites embedding the Facebook “like” button are responsible for user privacy. Facebook’s tracking technique collects the personal data of visitors to a third-party website and transfers it to Facebook. In Fashion ID v Verbraucherzentrale NRW, the Court stated FashionID can be held jointly responsible with Facebook for compliance with Europe’s data protection rules. Fashion ID must obtain prior consent from users or have a legitimate interest in processing their data. The case concerns Europe’s 1995 privacy law, but implicates similar terms in the new EU General Data Protection Regulation. EPIC Senior Counsel Alan Butler also recently appeared before the Court of Justice in DPC v. Facebook. The landmark case considers whether the transfer of data to the U.S. using standard contract clauses violates fundamental rights.

• San Mateo Dumps Red Light Camera Program After A Decade Of Continuous Failure

  The response from the city back in 2009 was just as exonerative, but nowhere near as littered with bureaucratese. The city claimed the Daily Post was “irresponsible” and only published the story for the clicks. The city also claimed the Daily Post was wrong. It backed this claim with zero evidence. The city never tested the lights itself.

  Six years later, an NBC affiliate performed the same testing at San Mateo intersections. Again, it was determined the city’s yellow light timing was below federal guidelines. This time, the city refunded 948 tickets.

  The city did nothing to prevent this from happening again. So, naturally, it happened again. And, finally, the city has decided to toss the program, rather than be forced to periodically confront its failure to run a legal red light camera program.

  I’m sure the money had something to do with the refusal to kill this program earlier. According to numbers obtained by Price, the city netted at least $266,000 last year from red light cameras. Its partner — Redflex — did just about as well, collecting $239,000 in fees. That’s two sets of vested interests with quite a bit of power between them.

  Behind all the cash-grabbing is the repeatedly disproven claim that unmanned cameras with the power to automatically issue tickets make drivers safer. It doesn’t work anywhere else. It didn’t work in San Mateo.

• Opinion: The ugly truth about red-light cameras

  San Mateo has finally pulled the plug on its red-light cameras — about 10 years too late, in my opinion.

  In January 2009, the Post received a tip that the yellow light was set too short at an intersection monitored by a red-light camera in San Mateo. Drivers were getting caught in the intersection unexpectedly and given tickets.

  So a Post reporter set up a video camera that records 30 frames every second and recorded the stoplight cycle. He then checked the recording frame by frame and discovered that, indeed, the yellow light was shorter than federal regulations.

  Then we contacted an outside expert to check our work to make sure our conclusions were correct.

Civil Rights/Policing

• Facebook and Google Algorithms Are Secret—but Australia Plans to Change That

• The Removal of Humanity

  Occasionally I post about my personal experience of butting up against the consequences of the removal of both common humanity and common sense from the administration of the systems which govern us. It is not that my experiences of this are worse, or more consequential, than those of anyone else. It is simply that I have a forum on which to rail against the contempt with which we all are treated.

  Tomorrow we move home, within Edinburgh but about six miles away. Cameron has finished P5 at Royal Mile Primary School and will now be entering P6 at a new school. Hopefully. In Edinburgh there is no entitlement to a place in your local catchment area school if you move there after year 1.

  About six months ago I phoned the primary school of our new catchment area to ask if they would have a place. They replied – in a rather brusque manner – that they could not give me any information and that I could not apply for a place until after we had moved. At that stage I had to send in a form direct to the school with a council tax demand plus utility bill as proof of address (making it impossible to apply until you have not only moved but received those bills).

Monopolies

• Patents and Software Patents

  • Gaming the system: Qualcomm leverages 3GPP working group chairmanship to distort patent portfolio valuations

    The valuation of standard-essential patent (SEP) portfolios is often performed in two steps: first, the value of all SEPs reading on the relevant standard is determined; second, the relative value of a given company’s contributions to the standard is measured. In antitrust or contract cases raising FRAND questions, the inquiry may be limited to the second part, as a disproportionately high share of industry-wide royalties collected by one SEP holder can in and of itself serve to establish overcharging and unreasonableness. The latter is a huge problem for Qualcomm in the FTC antitrust case, given that Qualcomm collects approximately 25% of all wireless SEP royalties while being far below that percentage when it comes to its ownership position in wireless SEPs relative to the rest of the industry. Even Ericsson, a company that just suported Qualcomm’s now-fully-briefed Ninth Circuit motion to stay the FTC’s antitrust remedies, gave testimony in the FTC case that undermines Qualcomm’s royalty demands. Ericsson believes to be the leader, and expressed the view that even Nokia’s SEP portfolio appears more valuable than Qualcomm’s.

  • A Different Bite At The Subject Matter Apple

    Utility patents aren’t the only form of patent, much less the only form of intellectual property. While not a frequent subject of discussion in comparison to its much better known cousins, the utility patent and the design patent, the plant patent is still relevant and provides a useful example of how to protect subject matter that might not be susceptible to protection as a utility patent.

    On a recent episode of the Inside Trader Joe’s podcast, the hosts discussed how intellectual property even extends to the most prosaic of produce, the apple. Discussing varieties of apples, the discussion focused on how “holding a patent for a type of produce is becoming really important.” Their subject was the Opal apple, a Golden Delicious/Topaz cross, which is the subject of U.S. Plant Patent 15,963. Apples are a frequent plant patent subject, and there’s even a tiny bit (or bite?) of apple plant patent litigation. The most recent reported plant patent case I found (2006) was also about apples—a particular variety of Golden Delicious referred to as the “Scarlet Spur.”

  • Amgen v. Coherus: Argument-based prosecution history estoppel

    The doctrine of equivalents (“DOE”) may be every patent law student’s favorite doctrine to hate. I sometimes introduce it as “the rule against perpetuities – except more complicated and economically significant.” Under the DOE, a patent can be infringed even when the accused product or process doesn’t literally meet all the limitations of the claim.

    Central to the DOE is prosecution history estoppel: a doctrine that prevents “a patentee from using the doctrine of equivalents to recapture subject matter surrendered from the literal scope of a claim during prosecution.” Slip Op. at 8, quoting Trading Techs. Int’l, Inc. v. Open E Cry, LLC, 728 F.3d 1309, 1322 (Fed. Cir. 2013). Because prosecution history estoppel is a question of law, it often functions as threshold question that is resolved before moving to the fact-specific equivalents analysis. Indeed, David Schwartz, Lee Petherbridge and others have argued that PHE is one of the key mechanisms that the Federal Circuit has used to limit the application of the doctrine of equivalents following Warner-Jenkinson.

    Often when we think about prosecution-history estoppel, we think about amendment-based estoppel, which can arise when an applicant makes a narrowing amendment to a pending claim. This case involves one of the trickier aspects of PHE: argument-based estoppel.

    [...]

    Amgen’s primary argument, that it asserted other reasons for distinguishing the prior art reference, was not persuasive as “our precedent instructs that estoppel can attach to each argument.” Id. at 11. Nor was the court persuaded by Amgen’s argument that it’s last response before the claims were allowed did not contain the particular-salt-combination argument. But “[t]here is no requirement that argument-based estoppel apply only to arguments made in the most recent submission before allowance.” Id. at 11. For those seeking to avoid this outcome, note the court’s final words on the subject: “We see nothing in Amgen’s final submission that disavows the clear and unmistakable surrender of unclaimed salt combinations made in Amgen’s January 6, 2011 response.” (I’m curious: has any applicant ever disavowed an argument made earlier in prosecution? This seems like a risky strategy for getting claims allowed.)

• Trademarks

  • USPTO wants powers to fine fraudulent TM actors

    The office asked to discuss the issue with Congress during a recent hearing on Capitol Hill, where one lawmaker claimed that Chinese e-commerce platforms are doing more than their US counterparts to stamp out counterfeits

    [...]

    The USPTO is responding in several ways, Denison added, including requiring foreign-domiciled applicants to be represented by US counsel (see Managing IP’s previous coverage here) and creating a special task force to focus on improper behaviour by applicants and registrants. The full list of actions can be found here.

    Held on July 18, the hearing also discussed the problem of counterfeit goods, particularly those available online. Congressman Doug Collins (Georgia) was vocal in criticising US e-commerce platforms for not doing enough to prevent the “endless” list of fakes being sold on their websites, adding that companies such as Amazon and eBay should have been part of the discussions during the hearing.

• Copyrights

  • CJEU rules that use of a protected work for the purpose of reporting current events does not, in principle, require authorization

    Together with its judgments in Funke Medien [here] and Pelham [here], this morning the Grand Chamber of the Court of Justice of the European Union (CJEU) also delivered its ruling in Spiegel Online, C-516/17 [Katpost here].

    This referral, also from Germany, focused on the quotation exception in the InfoSoc Directive and the compatibility with EU law of an open-ended general copyright exception like the German ‘free use’.

  • CJEU rules that unauthorized (non-trasformative) sampling can infringe a phonogram producer’s rights and German free use is against EU law

    As announced, the Court of Justice of the European Union (CJEU) has just issued 3 important copyright judgments, including one – Pelham, C-476/17 [Katposts here and here], also known as the Metall auf Metall case – which concerns the important and contentious issue of whether sampling, that is the copying of the sounds fixed in a phonogram, requires a licence from the relevant phonogram producer.

    In his Opinion last December, Advocate General (AG) Szpunar had advised the CJEU to rule that indeed a licence is required.

    He noted that, when it comes to phonograms, the concept of ‘reproduction in part’ within Article 2 of the InfoSoc Directive does not require that the part copied be original (unlike ‘works’). The AG explained that, while it is incorrect to think (as some of the interveners had argued) of a quantitative threshold to protection, in the sense that only fragments long enough to represent the investment made by producers should be entitled to it, a phonogram is not subject to any originality requirement.

  • CJEU rules that freedom of information and of the press cannot justify a derogation from the rights of copyright holders beyond allowed exceptions and limitation

    The reference was made in the context of litigation between German Government and a newspaper over the unauthorized publication, by the latter, of the so called ‘Afghanistan Papers’, that is confidential military reports on the operations of German armed forces in that region in between 2005 and 2012.

    The German Federal Court of Justice asked the CJEU to clarify whether and to what extent the assessment of prima facie copyright infringement and the applicability of the exceptions in favour of the press (Article 5(3)(c) of the InfoSoc Directive) and for quotation (Article 5(3)(d) of the same directive) are informed by a fundamental rights analysis.

    More specifically: can copyright protection be trumped by the need to safeguard freedom of the press and freedom of information, and can fundamental rights be directly invoked to prevent enforcement of copyright?

Server

• Edge computing: 6 things to know

  As more and more things get smart – from thermostats and toothbrushes to utility grids and industrial machines – data is being created nearly everywhere, making it increasingly urgent for IT leaders to determine how and where that data will be processed.

  Enter the edge. There are perhaps as many ways to define edge computing as there are ways to apply it. At its core, edge computing is the practice of processing data close to where it is generated.

• IBM

  • 3scale toolbox: Deploy an API from the CLI

    Deploying your API from a CI/CD pipeline can be a tremendous amount of work. The latest release of Red Hat Integration greatly improved this situation by adding new capabilities to the 3scale CLI. The 3scale CLI is named 3scale toolbox and strives to help API administrators to operate their services as well as automate the delivery of their API through Continuous Delivery pipelines.

    Having a standard CLI is a great advantage for our customers since they can use it in the CI/CD solution of their choice (Jenkins, GitLab CI, Ansible, Tekton, etc.). It is also a means for Red Hat to capture customer needs as much as possible and offer the same feature set to all our customers.

  • Red Hat Universal Base Image: How it works in 3 minutes or less

  • Guidelines for instruction encoding in the NOP space

Audiocasts/Shows

• GNU World Order 13×31

• Linux Action News 116

  Fedora CoreOS introduced its future looks bright, VLC’s president debunks security claims, Mozilla debuts an open-source router firmware and the Android flaw that might be our favorite in years.

  Plus how Sailfish OS 3.1 is stepping things up, the first 16-core RISC-V chip is revealed, and more.

• Docker Best Practices For Python In Production

  Docker is a useful technology for packaging and deploying software to production environments, but it also introduces a different set of complexities that need to be understood. In this episode Itamar Turner-Trauring shares best practices for running Python workloads in production using Docker. He also explains some of the security implications to be aware of and digs into ways that you can optimize your build process to cut down on wasted developer time. If you are using Docker, thinking about using it, or just heard of it recently then it is worth your time to listen and learn about some of the cases you might not have considered.

Kernel Space

• Linux 5.2.4

  I’m announcing the release of the 5.2.4 kernel.

  All users of the 5.2 kernel series must upgrade.

  The updated 5.2.y git tree can be found at:
  git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.2.y
  and can be browsed at the normal kernel.org git web browser:

  https://git.kernel.org/?p=linux/kernel/git/stable/linux-s…

• Linux 5.1.21

• Linux 4.19.62

• EROFS-Utils Adds LZ4 Compression Bits, Finally Has A README

  While initially the user-space utility for Huawei’s EROFS file-system was not publicly available, it came last November and this past April they began rewriting these EROFS user-space bits. Fortunately, since then they have done a better job of keeping EROFS-utils up-to-date against their latest kernel module changes for this read-only file-system.

  With the kernel bits now aligned for LZ4 in-place decompression, the EROFS-utils code was updated this week for supporting this functionality.

• Linux k10temp Support Pending For AMD Ryzen 3000 Series Processors

  Patches are now queued into the Linux kernel’s hwmon subsystem staging area that allow the AMD “k10temp” driver to support the Ryzen 3000 “Zen 2″ processors.

  Back during the Zen 2 press briefings I was told no temperature control offset was needed for Zen 2 and that the Linux thermal driver support was all squared away as a result. It was correct no Tctl is thankfully needed but the Linux driver support still wasn’t exactly squared away. It turns out the new PCI IDs were missing from the Linux driver and thus no temperature monitoring support under Linux.

• Linux 5.3-rc2

  Hmm. I reasonably large rc2 to go with a fairly large merge window.

  There are fixes all over, I don’t think there’s much of a pattern
  here. The three areas that do stand out are Documentation (more rst
  conversions), arch updates (mainly because of the netx arm platform
  removal) and misc driver fixes (gpu, iommu, net, nvdimm, sound ..).

  But there’s a smattering of fixes all over (core kernel, netfilter,
  filesystems, you name it). I don’t think anything stands out as
  particularly damning.

  Shortlog appended for people who want to get an overview of the details.

• Linux 5.3-rc2 Comes In As Reasonably Large Following The Big Merge Window

• Linux 5.4 To Support The Buttons On Newer Microsoft Surface Laptops

  Coming for the Linux 5.4 cycle later this year will be support for the buttons on newer Microsoft Surface devices.

  Queued into the input-next’s Git tree already is support for newer Surface devices within the soc_button_array driver. In particular, the power and volume buttons are now supported by the Microsoft 5th and 6th generation Surface devices.

  [...]

  Still a bit silly and unfortunate in 2019 the Linux kernel needs to be battling laptop vendors for supporting items as mundane as power and volume buttons, but it is what it is, especially with Microsoft.

• Unikernels: the next stage of Linux’s dominance [Ed: cites this PDF]

  Unikernels have demonstrated enormous advantages over Linux in many important domains, causing some to propose that the days of Linux’s dominance may be coming to an end. On the contrary, we believe that unikernels’ advantages represent the next natural evolution for Linux, as it can adopt the best ideas from the unikernel approach and, along with its battle-tested codebase and large open source community, continue to dominate. In this paper, we posit that an up-streamable unikernel target is achievable from the Linux kernel, and, through an early Linux unikernel prototype, demonstrate that some simple changes can bring dramatic performance advantages.

• Linux Foundation

  • Academy Software Foundation Announces Amazon Web Services as a New Premier Member

    “We are pleased to welcome Amazon Web Services as a new Premier member. Many open source projects and developers rely on cloud services from AWS for content creation and production. We look forward to their contributions as our projects continue to evolve and grow,” said David Morin, Executive Director of Academy Software Foundation. “We are also excited to have Rodeo FX and MovieLabs join our community. Rodeo FX has a deep expertise in visual effects and developing artist-driven tools that will be beneficial as our Foundation continues to grow. MovieLabs has a history of bringing together studios and tech companies to develop common technology goals, which aligns with our goal of driving collaboration and shared development of open source technologies across the motion picture and media industries.”

  • Netflix Joins the Academy Software Foundation

    The Academy Software Foundation (ASWF), a neutral forum for open source software development in the motion picture and media industries, today announced that Netflix has joined the Foundation as a member.

  • Netflix, Amazon Web Services Join Hollywood Open Source Group

    Netflix and Amazon Web Services are among the newest members of the Academy Software Foundation, a group dedicated to promoting the use of open source software in Hollywood that is being spearheaded by the Linux Foundation and the Academy of Motion Picture Arts and Sciences.

  • Amazon Web Services, RodeoFX, and MovieLabs Join Academy Software Foundation

    The Academy Software Foundation (ASWF), a neutral forum for open source software development in the motion picture and media industries, today announced that Amazon Web Services has joined the Foundation as a Premier member, Rodeo FX as a General member, and MovieLabs as an Associate member.

    “We are pleased to welcome Amazon Web Services as a new Premier member. Many open source projects and developers rely on cloud services from AWS for content creation and production. We look forward to their contributions as our projects continue to evolve and grow,” said David Morin, Executive Director of Academy Software Foundation. “We are also excited to have Rodeo FX and MovieLabs join our community. Rodeo FX has a deep expertise in visual effects and developing artist-driven tools that will be beneficial as our Foundation continues to grow. MovieLabs has a history of bringing together studios and tech companies to develop common technology goals, which aligns with our goal of driving collaboration and shared development of open source technologies across the motion picture and media industries.”

  • Netflix Joins the Academy Software Foundation

    The Academy Software Foundation (ASWF), a neutral forum for open source software development in the motion picture and media industries, today announced that Netflix has joined the Foundation as a member.

    The Academy Software Foundation also announced today that OpenTimelineIO has been accepted as a Foundation-hosted project and is one of the first projects Netflix will contribute to as a member of the Foundation. Initially created by Pixar Animation Studios, OpenTimelineIO (OTIO) is an Open Source API and interchange format that facilitates collaboration and communication of editorial data and timeline information between a studio’s Story, Editorial, and Production departments all the way through Post-Production. You can read more about the announcement here.

  • OpenTimelineIO Becomes Fifth Project Hosted at Academy Software Foundation

    Initially created by Pixar Animation Studios, OpenTimelineIO (OTIO) is an Open Source API and interchange format that facilitates collaboration and communication of editorial data and timeline information between a studio’s Story, Editorial, and Production departments all the way through Post-Production. Since 2016, there have been eleven OTIO releases with contributions from many studios and vendors including Pixar, Lucasfilm and Netflix. It has been used in production for films including Coco, Incredibles 2, and Toy Story 4.

    “Picture-less data produced by editorial departments is very useful across the pipeline. We developed OpenTimelineIO to provide an open source alternative to proprietary formats and enable our community to easily and efficiently interchange editorial timelines,” said Guido Quaroni, Vice President of Research and Development at Pixar. “As an Academy Software Foundation project, we hope OpenTimelineIO can help facilitate content creation within the motion picture and other similar industries.”

    OTIO makes it easier to build tools that use editorial timeline information, filling a gap in film production pipelines that was previously underserved by similar, proprietary technologies. It supports clips, timing, tracks, transitions, markers, and metadata in an API that is easy for studios to integrate with their tools and for vendors to integrate with their software. Use cases include tracking shot length changes, providing context shots in dailies, communicating shots added or removed, conforming new renders into a cut, and dealing with picture-in-picture shots.

• Graphics Stack

  • Destiny 2 Works on Ryzen 3000 Finally: Test Chipset Driver to Fix RDDAND Issue

    The Linux folks over at Phoronix covered this in their performance overview of Ryzen 3000. Their conclusion was that third-gen Ryzen delivered fantastic performance on Linux, especially in multithreaded applications, but that the RDRAND issue made running newer distros impossible at the moment.

    [...]

    We don’t have an update yet on whether or not the new driver enables support for new Linux distros, but it appears that Destiny 2 works just fine, so if not being able to run and gun was your issue, it’s been resolved. If you were looking forward to running the latest version of Ubuntu, we’ll update you soon on whether Linux support has been fixed, too.

Instructionals/Technical

• Linux Find Command – Everything You Need to Know

• Khadas VIM3 (Amlogic A311D) Benchmarks & System Info in Android 9.0

• Fix CSGO won’t launch on Pop!_OS 18.04

• Using sops with Ansible for vars encryption

• 3 commands to reboot Linux (plus 4 more ways to do it safely)

  Linux is fully capable of running not weeks, but years, without a reboot. In some industries, that’s exactly what Linux does, thanks to advances like kpatch and kgraph.

  For laptop and desktop users, though, that metric is a little extreme. While it may not be a day-to-day reality, it’s at least a weekly reality that sometimes you have a good reason to reboot your machine. And for a system that doesn’t need rebooting often, Linux offers plenty of choices for when it’s time to start over.

• The Definitive Guide to Centralized Logging with Syslog on Linux

• How to install VNC Server on CentOS

• How to install Blackarch Repositories on Arch Linux

• How to Install Latest VirtualBox 6.0.10 on Debian 10 Buster

• Here documents in bash explained

• Docker hub basics

• Docker: Running your first container!

• Docker introduction and installation on Centos 7

• IntelliJ IDEA 2019.2 Released with Java 13 (Preview) Support

• How to quickly re-install all installed apps on Fedora

• How to play Nintendo Entertainment System games on Linux

• How to mount Microsoft OneDrive in Linux Ubuntu

• How to Install Xrdp (Remote Desktop) on Ubuntu 18.04

• How to Install Chrome on Ubuntu 18.04 and 19.04

• Block all IPv4 addresses that has brute forcing our ssh server

• Faciliate the work for lftp (‘all’ is needed if you wanna use it with getopts, otherwise its enough with the lftp line)

• Faciliate the work for lftp (‘all’ is needed if you wanna use it with getopts, otherwise its enough with the lftp line)

• Block all brute force attacks in realtime (IPv4/SSH)

Desktop Environments/WMs

• K Desktop Environment/KDE SC/Qt

  • KDE Plasma 5.17 Linux Desktop to Modernize the Settings, Add Many UI Changes

    One of the nicest changes to be implemented in the upcoming KDE Plasma 5.17 desktop environment is a totally revamped System Settings window, which now features a modern look and feel to make setting up various aspects of the KDE Plasma desktop a breeze for newcomers and advanced users alike.

    “This design is months in the making, and it took quite a bit of work to pull it off,” said developer Nate Graham in his latest weekly report. “This is the first of several user interface changes we’re hoping to land in the Plasma 5.17 timeframe, and I hope you’ll like them.”

  • Latte Dock v0.9, “…a world to discover…”

    After a full year of development a new stable branch is finally available! This is a version full of innovations, improvements and enhancements that improve the entire experience at all areas. I have written plenty of articles for introduced major features and in the same manner this article will focus only on highlights.

  • Latte Dock 0.9 Brings Better Settings, Layout Enhancements

    Latte Dock 0.9 brings new indicators, settings improvements, improved badgets. better Wayland support though still a technology preview, and a variety of other polishing and additions to this KDE-focused dock.

  • My KDE Onboarding Sprint 2019 report

    This week I took part on the KDE Onboarding Sprint 2019 (part of what’s been known as Nuremberg Megasprint (i.e. KDEConnect+KWin+Onboarding) in, you guessed it, Nuremberg.

    The goal of the sprint was “how do we make it easier for people to start contributing”. We mostly focused on the “start contributing *code*” side, though we briefly touched artists and translators too.

  • Strokes are Working Now

    Okay, good news today. I have been porting DefaultTool to the new node-replacing system and it is working now, finally, at least for the part I have already done.

    The work involves combining a number of different modules in Krita: the stroke system,KoInteractionTool and its interaction strategies, and, well, the COW mechanism in Flake.

    KoInteractionTool is the class used to manage the interaction with vector shapes, and is subclassed by DefaultTool. The behaviours of KoInteractionTool (and thus DefaultTool) are defined by KoInteractionStrategys. Upon the press of the mouse button, DefaultTool creates an instance of some subclass of KoInteractionStrategy, say, ShapeMoveStrategy, according to the point of the click as well as keyboard modifiers. Mouse move events after that are all handled by the interaction strategy. When the mouse is released, the interaction strategy’s finishInteraction() is called, and then createCommand(). If the latter returns some KUndo2Command, the command is added to the undo history. Till now it sounds simple.

    [...]

    A problem I found lies in the final stage–if the mouse is released as soon as being pressed and no undo command is created, Krita will simply crash. It does not happen when I use gdb to start Krita so it seems to be a timing issue though it leads to difficulty for debugging as well. Dmitry used a self-modified version of Qt to produce a backtrace, indicating the problem probably lies in KisCanvas2‘s canvasUpdateCompressor, which is not thread-safe. However, after I changed it to KisThreadSafeSignalCompressor, the crash still happens, unfortunately.

• GNOME Desktop/GTK

  • GNOME’s Pango 1.44 Released With Many Text Rendering Improvements

    GNOME’s Pango text layout and rendering library is now in much better shape with the brand new 1.44 release following receiving some attention by Red Hat’s developer team.

    The Pango layout library had been suffering from rot in recent years and basically in a maintenance mode but recently was revived thanks to Red Hat’s Matthias Clasen and work by other developers. This is important with Pango being used by the likes of the GTK tool-kit. In the process of improving Pango, there’s also been some enhancements made to the Cairo renderer too.

  • The Plan

    So I started my GSoC project with understanding and retrieval of MusicBrainz Identifiers. That was a slow start, other than that I added mappings for MBIDs in grilo. This is required because,
    we’ve tracker properties for MBIDs and we’ve grilo properties for MBIDs, but there’s no linkage between them. So we needed to add mapping from grilo to tracker.

    Last week one more thing which I tried was finally retrieving MBIDs in GNOME Music. That was very exciting, because for past one month, I’ve been dealing with extraction of MBIDs through different extractors especially GStreamer extractor. So finally seeing those tags in Music made me really excited. It wasn’t hard retrieving those tags in Music, there’s already tracker plugin launched by Music which retrieves different tags, so I just added MBIDs in query module. Once you get the required MBIDs in Music, all you need to do is launch already existing cover-art grilo plugin with required tags and automatically cover art will be updated!

Distributions

• Reviews

  • Review: Endless OS 3.6

    They sell computers, small computers, with up to 4GB of RAM, HDMI and VGA on most, and all the other usual accouterments like USB 3 and Bluetooth. They definitely aren’t powerful machines, and there is no price listed, instead you need to submit a form with contact information and they will get back to you. The computers are sleek and some seem to be design pieces. With the lower end specs, they are probably able to get the price down pretty well to match their marketing agenda towards lower income audiences. One other thing the company offers is a pay-as-you-go system (which they call PAYG) that allows lower income people to more easily afford their computers. On the surface this seems like an admirable cause, but if you dig a little you can see that their system, “was designed to de-risk loans through a PC locking mechanism, built into the Endless OS, that is tied to the payment status of a loan. If a customer is not able to make their loan payment the laptop locks until payment is made. While locked the users’ data, files and settings are all perfectly preserved and protected. Endless PAYG is a completely offline code based locking mechanism. Users receive unlock codes over SMS once they make a payment. These codes then unlock the PC for different time intervals (1 day, 1 week, 1 month, etc).”

    In the free and open source world that we as Linux users have become accustomed to, it is hard to remember that companies exist – companies have employees and employees need to make money to feed their families and put a roof over their head. Still, this mechanism upset me a great deal. I understand Endless is a company and needs to make money, but this feels akin to hackers who hold data ransom. If a person is paying as-they-go to use a computer because they cannot afford it outright, maybe we as a society should give them a little more grace than locking up their data when they cannot afford to pay. I would recommend, personally, a more gentle approach – perhaps locking functionality to only educational purposes and LibreOffice would be more appropriate.

    Overall, I am impressed with Endless OS. I would never use it because I am a tinkerer and Endless OS does not allow tinkering. Endless has a good little thing going, and if they are able to bring Linux to the whole world, I support them in their endeavors. (I do not have to approve of all the ways they go about doing that.)

• Debian Family

  • Q4OS Operating System Brings the Trinity Desktop to Debian GNU/Linux 10 “Buster”

    Based on the recently released Debian GNU/Linux 10 “Buster” operating system series, Q4OS 3.8 “Centaurus” comes more than seven months after the Q4OS 2.7 “Scorpion” release and it is the first stable version in the 3.x series, which was in heavy development during the last few years.

    For a long time, Q4OS was shipping with the Trinity Desktop Environment (TDE) by default, which offers users, especially those who want to switch from Windows to Linux, a very familiar interface. However, it looks like the Q4OS 3.8 “Centaurus” series uses the latest stable KDE Plasma desktop by default.

  • Deepin 15.11 Released with Could Sync and Many Other Improvements

    It preinstalls Deepin Desktop Environment (DDE) and nearly 30 deepin native applications, as well as several applications from the open source community to fulfill user expectations.

    There are thousand applications are offered in Deepin Store, which users can install on demand.

    There are lot of fixes applied to Kwin (KDE Window Manager) and optimized for better stability and compatibility.

  • Dirk Eddelbuettel: anytime 0.3.5

    A new release of the anytime package is arriving on CRAN. This is the sixteenth release, and comes a good month after the 0.3.4 release.

    anytime is a very focused package aiming to do just one thing really well: to convert anything in integer, numeric, character, factor, ordered, … format to either POSIXct or Date objects – and to do so without requiring a format string. See the anytime page, or the GitHub README.md for a few examples.

  • DebConf20 Conference Takes Place August 23-29 for Debian GNU/Linux 11 “Bullseye”

    With the DebConf19 event closed, the Debian Project announced the dates for next year’s DebConf20 Debian GNU/Linux developer conference, which will be hosted in Haifa, Israel.

    Next year, in 2020, the Debian Project will celebrate 12 years from the launch of the first DebConf Debian developer conference, and they selected Israel’s Haifa instead of Portugal’s Lisbon for DebConf20 despite Israel’s political system. Now, they announced the official dates for DebConf20, which will take place between August 23rd and 29th.

• Canonical/Ubuntu Family

  • Canonical Outs Linux Kernel Security Patch for Ubuntu 16.04 LTS to Fix Six Flaws

    This new Linux kernel security patch comes hot on the heels of the security update released earlier this week for the Ubuntu 19.04 (Disco Dingo) and Ubuntu 18.04 LTS (Bionic Beaver) operating system series, but it’s only available for users of the Ubuntu 16.04 LTS (Xenial Xerus) operating system series running the stock Linux 4.4 kernel.

    It addresses a total of six flaws, including an integer overflow (CVE-2019-10142) discovered in Linux kernel’s Freescale (PowerPC) hypervisor manager and a race condition (CVE-2018-20836) discovered in the Serial Attached SCSI (SAS) implementation, which could allow a local attacker to execute arbitrary code or cause a denial of service (system crash).

Devices/Embedded

• Raspberry Pi Competitor Pine64 Opens Pinebook Pro Notebook Pre-Orders

  Pine64 opened pre-orders for its Pinebook Pro laptop, which is an open-source project based on the Rockchip RK3399 SOC, on July 25.

  Pine64 is probably best known for competing with Raspberry Pi in the single-board computing market. It released the Pine H64 Model B to developers in March; the board is now available in 2GB and 3GB versions from the Pine64 online store. But it’s not exclusively focused on single-board computers: Pine64 has also been working on two Pinebook laptops, a PinePhone smartphone, the PineTab tablet, and devices in other product categories.

• Snekboard v0.2 Update

  I’ve got the six v0.2 prototypes that I’ll be able to use in for the upcoming class year, but I’m unsure of whether there would be enough interest in the broader community to have more of them made. Let me know if you’d be interested in purchasing snekboards; if I get enough responses, I’ll look at running them through Crowd Supply or similar.

• Mobile Systems/Mobile Applications

  • Surprise: The first device to get Huawei’s Android alternative isn’t a phone

  • 5 Amazing New Android apps and games to check out this week (JULY 28, 2019)

  • Google is Replacing Voice Search With Google Assistant on Android Devices

  • Android phones in U.K. and France receive RCS Chat; will the U.S. be next?

  • ASUS Zenfone 6 Android Q beta testers wanted

  • LG V30 starts receiving Android 9.0 Pie update

  • LG V30 is now getting the Android 9 Pie update

  • An Android ROM for Nintendo Switch is due to drop any day

  • You’ll soon be able to run Android on your Nintendo Switch

  • Best VPN For Android Phones: My #1 Pick For 2019

  • 18 best new Android games released this week including DOOM, DOOM II, and Pavilion: Touch Edition

  • This week in Android: The Galaxy Fold returns, plus K20 Pro and Mi 9T reviews

  • Moto G6 Android 9.0 Pie update locks users out of their phones, here is how to fix it

  • Solid Explorer now works with Scoped Storage on Android Q

  • Google completes rollout of RCS Android chat in UK and France, with more countries to follow soon

  • Huawei now claiming OS won’t replace Android

  • How To Fix Missing Videos Bug On Google Photos On Android And iPhone

  • How To Move Apps To SD Card On Your Android Phone

KITE to help offices install digital signature

The Kerala Infrastructure and Technology for Education (KITE) has come up with a system for integrating digital signatures in free and open-source software (FOSS)-based operating systems used in most government offices.

The State government had recently instructed all government offices to use digital signatures compulsorily for preparing salaries and other benefits of employees on the Spark (Service and Payroll Administrative Repository for Kerala) portal.

OpenHMD: Open Source Project for VR Development

A universal distortion shader was added to OpenHMD. This additions “makes it possible to simply set some variables in the drivers that gives information to the shader regarding lens size, chromatic aberration, position and quirks.”

They also announced plans to change the build system. OpenHMD added support for Meson and will remove support for Autotools in the next (0.4) release.

The team behind OpenHMD also had to remove some features because they want their system to work for everyone. Support for PlayStation VR has been disabled because of some issue with Windows and mac OS due to incomplete HID headers. NOLO has a bunch of firmware version, many will small changes. OpenHMD is unable to test all of the firmware versions, so some version might not work. They recommend upgrading to the latest firmware release. Finally, several devices only have limited support and therefore are not included in this release.

API Fortress launches open source app, 3loa Helper, to automate 3-legged OAuth 2.0 flows

API Fortress, the leader in continuous API testing, announces 3loa Helper, an open source application that automates 3-legged OAuth 2.0 flows from the world’s largest social and search providers.

By simply integrating API Fortress with 3loa Helper, developers and test engineers can test and validate 3-legged OAuth flows.

“Too many tests today don’t truly reproduce the user flows a production API sees,” says Patrick Poulin, CEO and co-founder at API Fortress, “This leaves risky holes in a test plan, and ignores what is often the very first step for users.”

It is difficult to automate 3-legged OAuth 2.0 flows for API testing because 3-legged OAuth 2.0 was specifically designed to require user intervention.

Productivity Software/LibreOffice/Calligra

• Week 9 Report

  First of all, This week was the second Evaluation Result of the Project and I am happy on working on this project and thanks to all LO family.

FSF/FSFE/GNU/SFLC

• GNU Stow 2.3.1 released

  This release improves ease of installation by dropping some module dependencies which were introduced in 2.3.0. It also fixes an issue with the test suite, and improves the release procedure. See http://git.savannah.gnu.org/cgit/stow.git/tree/NEWS for more details.

Licensing/Legal

• Building a Successful Open Source Management Strategy

  When software is deployed continuously, composition analysis for quality, compliance, and security within code needs to be managed strategically. Ensuring that the benefits of open source are not outweighed by risks, software developers and corporate counsel must align around tools and practices to help manage their open source code responsibly to drive business value. Building and Maintaining a Successful Open Source Management Strategy discusses:

Openness/Sharing/Collaboration

• Open Access/Content

  • Rowan college affordability initiative takes aim at textbooks

    Rowan University is doubling the size of a grant program to create free course materials for students…

• Open Hardware/Modding

  • China’s Alibaba is making a 16-core, 2.5 GHz RISC-V processor

    Why it matters: What do you do when the US is threatening to cut off access to every piece of important tech ever? Join the open-source RISC-V Foundation, of course. Unrestricted access to some of the most advanced existing processor technologies, and a guaranteed window to peek at what the other Foundation members, including Google and Nvidia, are doing. Chinese retail giant Alibaba has established a new R&D branch to take advantage of the open-source RISC-V instruction set and their first product is here: the Xuantie 910.

  • RISC Is Fundamentally Unscalable

Programming/Development

• How to structure a multi-file C program: Part 1

  It has often been said that the art of computer programming is part managing complexity and part naming things. I contend that this is largely true with the addition of “and sometimes it requires drawing boxes.”

  In this article, I’ll name some things and manage some complexity while writing a small C program that is loosely based on the program structure I discussed in “How to write a good C main function”—but different. This one will do something. Grab your favorite beverage, editor, and compiler, crank up some tunes, and let’s write a mildly interesting C program together.

• Get top exchanges by volume for a currency pair

  In this chapter, we will create a button which will call a function to retrieve the top 50 exchanges and the trading volume for a cryptocurrency/currency pair. The API needs the selected cryptocurrency and the selected currency symbol to make the call.

• Speed Matters: Python and Lua

  Python is great, but pure Python code sometimes has one problem: It’s slow.

  Fortunately there are several great solutions to improve the performance, like Numpy, Cython, Numba, Pypy.

  All of the above solutions have different drawbacks:

  Numpy and Numba are big modules. In addition Numpy is not always fast enough. Pypy is not 100% compatible and a heavy solution if it is used in addition to CPython. Cython is complex and you need a C-compiler. Recently I’ve found one more solution which maybe is not that well known: Lua integration in Python programs.

  Lua is another scripting language with dynamic data types.

Do you prefer a live demo to be perfect or broken?

At DevFest DC in June, Sara Robinson, developer advocate at Google Cloud, gave the most seamless live demo I’ve ever witnessed.

Sara live-coded a machine model from scratch using TensorFlow and Keras. Then she trained the model live, deployed it to Google’s Cloud AI platform, and used the deployed model to make predictions.

With the exception of perhaps one small hiccup, the whole thing went smoothly, and I learned a lot as an audience member.

Survival Analysis for Deep Learning

Most machine learning algorithms have been developed to perform classification or regression. However, in clinical research we often want to estimate the time to and event, such as death or recurrence of cancer, which leads to a special type of learning task that is distinct from classification and regression. This task is termed survival analysis, but is also referred to as time-to-event analysis or reliability analysis. Many machine learning algorithms have been adopted to perform survival analysis: Support Vector Machines, Random Forest, or Boosting. It has only been recently that survival analysis entered the era of deep learning, which is the focus of this post.

You will learn how to train a convolutional neural network to predict time to a (generated) event from MNIST images, using a loss function specific to survival analysis. The first part, will cover some basic terms and quantities used in survival analysis (feel free to skip this part if you are already familiar). In the second part, we will generate synthetic survival data from MNIST images and visualize it. In the third part, we will briefly revisit the most popular survival model of them all and learn how it can be used as a loss function for training a neural network. Finally, we put all the pieces together and train a convolutional neural network on MNIST and predict survival functions on the test data.

Security (Confidentiality/Integrity/Availability)

• Linux’s 32-Bit Kernel Has Been Buggy Since Being Mitigated For Meltdown

  Whether you like it or not, the Linux kernel’s x86 32-bit support has already begun suffering some minor forms of bit rot. Most kernel developers are no longer actively testing x86-32 and distribution vendors are beginning to drop 32-bit support. The latest example of x86 32-bit’s effectively demoted state is some buggy undefined behavior functionality living within the mainline kernel for the past year since the Meltdown mitigations landed.

  Not only did it take months after Intel’s Meltdown vulnerability was published (and x86_64 being mitigated) to see Linux KPTI support for x86 32-bit to mitigate Meltdown (from January’s disclosure to mainline readiness in July), but it turns out it ended up exposing a 32-bit only bug that has lived in the kernel from summer 2018 until now with the Linux 5.3.

• Russia Suspected In Attempted ProtonMail Client Hack

  ProtonMail, an email service based in Switzerland, has been targeted in a sophisticated cyber attack aimed at journalists investigating Russian intelligence activities, the company says.

  The target was Bellingcat, an open-source investigative website that has been probing the involvement of Russia and its GRU intelligence service in the downing of flight MH17 over Ukraine in 2014.

  On Saturday, ProtonMail posted a blog saying that these attempts have failed, and that reports stating that ProtonMail itself had been hacked were inaccurate.

• 5 Free Linux Antivirus – Anti-Ransomware, Server Malware And Spyware [Ed: Very poor, weak article. Compares NSA back doors in Windows to Linux and speaks of security problems one actually needs to recklessly install.]

  The WannaCry ransomware epidemic hit customers on Home windows like wildfire, however what can it do on a Linux system operating wine? Is Linux proof against Ransomware? Will Linux shield you from ransomware assaults?

• Fernando Corbato: Scientist who fostered the digital revolution and the computer password

  Fernando Corbato’s achievements in computer science have had a huge impact on daily life. His work drastically expanded the usefulness of the computer and put its benefits at the reach of all. But he also made his mark on the modern world by conceiving and applying the idea of controlling computer access by passwords.

  Corbato, who has died aged 93, was a professor emeritus at the Massachusetts Institute of Technology, where he was interested in the problem of increasing access to computers while protecting individual privacy and data. Passwords seemed to be the solution, and he found himself drawn to the discipline that would become known as computer science.

  He entered the new arena in its early days, when the slide rule or the mechanical calculator were mainstays of computation. In 1956, when Corbato began at the MIT Computation Centre, machines and their operations were characterised by such items as vacuum tubes, paper tape and stacks of the infamous punch cards – the last giving rise to the slogan, “Do not fold, spindle or mutilate.”

• After Two Years, Malwaretech Is A Free Man

  The judge them emphasized that, on top of everything else, Hutchins had been away from home for two years.

  That’s when what every lawyer watching in the courtroom I spoke with called unprecedented. The Judge suggested Hutchins should get a pardon, which would enable him to come back to the US to work. “While court has no pardon power, matter reserved to the executive. Truly left for another day.”

  He then imposed Hutchins’ sentence. “We reach a point in balancing these considerations, court left to make final call. Final call is a sentence of time served with one year of supervised release.” He went on to make it clear that, once Hutchins finishes packing up his life in LA, he wanted to be sure that Immigration doesn’t get custody. “Nothing in this judgement requires he stay in the United States. I’m seeking to avoid him being taken into custody by Immigration and Customs. We don’t need any more publicity or another statistic.”

• Arduino Selects Auth0 as Standardized Login for Open-Source Ecosystem

  Auth0, a global leader in Identity-as-a-Service (IDaaS), today announced it has been selected as the identity management platform of choice for Arduino®, the world’s leading open-source hardware and software ecosystem. With a global community of 30 million “makers”, Arduino will use Auth0 to replace its own Single Sign On solution for all of its public facing web properties, including Arduino Create and community apps.

Defence/Aggression

• France wants to arm satellites with guns and lasers by 2030 [iophk: France advances the probability of achieving the kessler syndrome]

  Minister Florence Parly announced that the country would be reallocating €700 million from the military budget for space defense, with more than €4.3 billion to be spent by 2025. That money would go towards upgrading France’s network of Syracuse military communications satellites, which are operated by the French Navy. The military wants the next generation of satellites to come with cameras to identify adversaries, with a followup generation equipped with submachine guns and lasers to attack and disable other satellites.

AstroTurf/Lobbying/Politics

• Robert Reich: The Real Reason We Need to Impeach Trump Immediately

  By issuing a blanket refusal to respond to any congressional subpoena, Trump is saying Congress has no constitutional authority to oversee the executive branch. He’s telling America that Congress is a subordinate branch of government rather than a co-equal branch.

Censorship/Free Speech

• Pakistan censorship: ‘Hovering above the mute button’

  The interview, between one of Pakistan’s best-known TV news anchors, Hamid Mir, and leading opposition politician Asif Ali Zardari, was only a few minutes into its transmission when it was suddenly interrupted by an unscheduled ad break and news bulletin.

Privacy/Surveillance

• Did Facebook CEO Mark Zuckerberg Intend To Deceive?

  Sounds great. Only, it wasn’t true. According to the FTC, Facebook kept handing over user data secretly — without consent — to dozens of outside developers (like Cambridge Analytica, the political research firm that worked on President Trump’s campaign).

Monopolies

• Patents and Software Patents

  • Implicit Overruling And Foreign Lost Profits

    How does one know when the Supreme Court has implicitly overruled a circuit panel precedent? Despite the fact that circuit courts are faced with this question on a regular basis, the answer is not clear. The Power Integrations case currently pending before the Federal Circuit provides an interesting case study in implicit overruling, as well as an opportunity for the court to clarify how extraterritoriality relates to proximate causation in the law of patent damages, in light of the Supreme Court’s recent opinion in WesternGeco.

  • Why Is Big Pharma Heading To Canada For Its Cannabis Patents?

    Currently, seven of Canada’s top ten cannabis patent holders are major multi-national pharmaceutical companies, according to a joint research project by Washington D.C.-based New Frontier Data and London-based cannabis bio-technology firm, Grow Biotech. The list includes Ciba-Geigy AG (Switzerland) with 21 patents; Pfizer Products (United States) with 14; and Telefonaktiebolaget LM Ericsson (Sweden) with 13. Merck Sharp and Dohme Corporation, the fourth largest pharmaceutical company in the world, has 11 cannabis-related patents, and recently announced a partnership to pursue collaborations with Intec Pharma Ltd., a clinical-stage biopharmaceutical company that has developed a propriety oral drug delivery system for delivery of CBD and THC in treating pain. This got me wondering: why are the mega companies choosing to file their cannabis patents in Canada as opposed to the United States?

  • New Apple patent filing shows a mixed reality headset that tracks your whole face

    Apple has filed a patent for a complex mixed reality headset, potentially including sensors that track users’ facial features, eyes, and hands. Variety reported on the patent application earlier today; it was published last week and originally filed in March 2019. It’s part of a long string of Apple mixed (or augmented) reality patents, and, like its predecessors, it indicates that Apple is broadly examining how AR might translate from phones to glasses.

    The “Display System Having Sensors” patent covers a head-mounted display, a collection of cameras and other sensors that track the external environment, and a different set of sensors that track the wearer’s eyes. The components all work together to display a virtual 3D image that’s somehow based on the real world. Beyond that, there are a lot of potential variations. The headset could include hand sensors, “head pose sensors,” sensors that capture detailed information about real-world lighting conditions, “eyebrow sensors,” and “lower jaw sensors” that track movement of the mouth and jaw.

  • Apple Pays $1 Billion for Part of Intel’s Modem Business

    Apple said on Thursday that it would buy most of Intel’s smartphone-modem business for $1 billion, aiding its push to gain more control over faster wireless technology in iPhones.

    Apple will add about 2,200 Intel employees, as well as patents and equipment. The deal is expected to close in the fourth quarter and is subject to regulatory approval.

    Analysts say Apple will develop a 5G iPhone by late next year. Those iPhones are expected to use chips from Qualcomm, another chip maker that, until recently, was in a legal fight with Apple over royalties and other business practices.

• Copyrights

  • Secretly Public Domain

    The two datasets are in different formats, but a little elbow grease will mesh them up. It turns out that eighty percent of 1924-1963 books never had their copyright renewed. More importantly, with a couple caveats about foreign publication and such, we now know which 80%.