Bonum Certa Men Certa

Links 2/3/2022: Windows Sliding Down and Procmail Considered Harmful

  • GNU/Linux

    • Desktop/Laptop

    • Audiocasts/Shows

    • Kernel Space

      • [LWN] Linux 5.16.12
        I'm announcing the release of the 5.16.12 kernel.
        
        

        All users of the 5.16 kernel series must upgrade.

        The updated 5.16.y git tree can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.16.y and can be browsed at the normal kernel.org git web browser: https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...

        thanks,

        greg k-h
      • [LWN] Linux 5.15.26
      • [LWN] Linux 5.10.103
      • [LWN] Linux 5.4.182
      • [LWN] Linux 4.19.232
      • [LWN] Linux 4.14.269
      • [LWN] Linux 4.9.304
      • What the Tech: The ‘2038 problem’ is real and threatens digital infrastructure worldwide

        Two events pose a threat to Americans’ ability to connect to the internet. Hackers have always posed a threat through DNS attacks, or denial of services. Another threat is known through the cyber security world as the “2038 problem” which may cause computer problems similar to the fears over the Y2K bug of 20 years ago. The year 2038 problem is 16 years in the future, but the threat can already be seen. Take your own smartphone. Open settings and try to change the date on the calendar to the year 2038. You can’t because a math glitch prevents many computers to see past 2037. When computer programmers built the Unix code in 1970, they used a 32-bit system that counted seconds. As other programs and systems built on the Unix code, they, in a sense, created an “expiration date of some 2.1 billion seconds.

      • Luca Ceresoli joins Bootlin team

        The entire team at Bootlin is extremely happy to welcome Luca Ceresoli, who started working with us on March 1, 2022. Based in Italy, Luca is the first employee of Bootlin based outside of France, and we plan to continue to expand our hiring in a similar way in the future.

      • Torvalds moves Linux to C11

        Old one out-of-date, but this one goes to 11 Linus Torvalds is about to shift Linux from a version of C which is so old it was written before the fall of the Soviet Union – C89. Torvalds has said that it is time to move to something more modern starting with kernel 5.18. Linux had planned to move to a newer standard eventually with C99 being the next version. However, a recent patch to a security problem revealed that there could be problems with C99.

    • Applications

      • [Make Use Of] The 5 Best System Cleaning Apps for Your Linux Desktop

        Linux-based operating systems have complex structures. When you add a file or install an app, the system performs some arrangements by making the right configurations files to support the file or application. These configuration files stack up and consume the system space. Similarly, when you install an update for the OS, it leaves backup files behind. This leftover data affects the system's performance. To remove these temporary files and keep your computer optimized, there are system cleaning apps available for Linux. So, let's look at five of the best system cleaning apps for Linux that are free to use.

    • Instructionals/Technical

      • How to Install SuiteCRM on Ubuntu 20.04 - RoseHosting

        SuiteCRM is an open-source Customer Relationship Management (CRM) software solution that provides a 360-degree view of your customers and business. It is a fork of the popular open-source SugarCRM Community Edition.

      • How to install Flightgear on Zorin OS 16 - Invidious
      • How To Install aaPanel on Debian 11 - idroot

        In this tutorial, we will show you how to install aaPanel on Debian 11. For those of you who didn’t know, aaPanel is a free and open-source hosting control panel for Linux. It’s easy to install & all the web hosting options are well-categorized for easily managing websites and databases. Currently, aaPanel supports Debian, Ubuntu, and CentOS. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of the aaPanel free and open-source hosting control panel on a Debian 11 (Bullseye).

      • How to install Rosegarden on a Chromebook

        Today we are looking at how to install the Rosegarden DAW workstation on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

      • Touch Command on Linux: Tutorial and Examples - Linux Stans

        In this tutorial, we’re going to show you what the touch command is, how to use it, and include practical examples of using the command. Unlike other commands that you should never run on Linux, the touch command is actually recommended and often used by everyone on Linux.

      • Access and modify virtual machines disk images with libguestfs tools

        In a previous article, we saw how to create kvm virtual machines from the command line; in this tutorial, instead, we learn how to access and modify virtual machines disk images, using some utilities which are part of the libguestfs package on the most commonly used Linux distributions. Those tools let us perform a variety of tasks. We will focus on some of them, like virt-filesystems and guestmount, which can be used to list filesystems existing on guest disk images, and mount them on the host system, respectively.

      • Terraform Variable with Example

        We learned about the terraform variable in the previous article. Let’s start with an example. Let’s set the terraform provider to AWS with the access key, secret key, and region where we wish to build these resources, as usual.

      • Install OpenVAS – Open Vulnerability Assessment Scanner

        Today you will learn how to install OpenVAS. OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated and authenticated testing, various high-level and low-level internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test. The scanner obtains the tests for detecting vulnerabilities from a feed that has a long history and daily updates.

      • Suricata Network IDS integration€ with WAZUH

        This post is about Suricata Network IDS integration with WAZUH. Wazuh is an excellent HIDS (Host-based Intrusion Detection System) among other things. In addition to it’s rule-based analysis of log events from agents and other devices, it also performs file integrity monitoring and anomaly detection. This provides a great deal of insight into the security of your digital assets. However, some security issues are most successfully detected by inspecting a server’s actual network traffic, which generally is not accounted for in logs. This is where a NIDS (Network Intrusion Detection System) can provide additional insight into your security in a way that is highly complimentary to the HIDS functionality in Wazuh. Suricata is one such NIDS solution, which is open source and can be quickly deployed either on dedicated hardware for monitoring one or more transit points on your network, or directly on existing Unix-like hosts to monitor just their own network traffic. Because Suricata is capable of generating JSON logs of NIDS events, it integrates beautifully with Wazuh.

      • Terraform's Variable

        The customer receives a response as soon as he opens the URL. The request then uses a mapping of IP addresses from DNS records to identify its destination, landing on a server that owns this IP, and the server processes to give a response, which is then transmitted back to the request’s origin. Because we’re using Amazon Web Services (AWS), we’ll use an EC2 instance. In production, simply having an EC2 instance that can process requests is insufficient. Virtual private cloud plays an important role to separate networks and other virtual networks from the cloud(AWS).

      • Why should you use Terraform and how does it work?

        Terraform core works with two different input sources. Terraform configuration is the first source. You specify what needs to be created or provisioned in this section. Terraform’s second source for keeping up-to-date configuration files is state. As a result, terraform core analyses the data and implements a plan for finishing the work at hand. It compares the state, what is the present state, and the configuration you want as a final result. It decides what’s to be performed in accomplishing the configuration file’s desired state. To develop or provision the infrastructure, it estimates what has to be created, updated, and destroyed.

      • How to Open Ports in Linux

        Need to connect to an outside PC or server—or need another PC or server to connect to you? If you’re running Linux, you’ll need to make sure the right port is open. While other operating systems usually have some graphical tool for this, Linux isn’t so simple. We’ll walk you through how to open ports in Linux below.

    • Games

    • Distributions

      • PCLinuxOS/Mageia/Mandriva/OpenMandriva Family

      • SUSE/OpenSUSE

      • IBM/Red Hat/Fedora

        • [Linux Magazine] Fedora 36 Beta Now Has a Release Date
          It's official, Fedora 36 now has two different release dates. If things go as planned, the beta of the distribution will become available on March 15, 2022. If there's a delay, Fedora 36 will be released on March 22, 2022. Once the public beta testing is complete, the official release will be April 19, 2022, or, if there's a delay, April 26, 2022. As for new features, the most notable will be the addition of GNOME 42, which improves both UI and functionality. The changes to GNOME 42 include a system-wide dark theme preference, wallpapers for both dark and light themes, updates to the folder icon theme, even more support for libadwaita, an improved System Settings application (thanks to GTK 4), a new default text editor (shifting from Gedit to GNOME Text Editor), and an improved screenshot tool and native screen recording.

        • Red Hat Training And Certification Expands Offerings For Partners

          Red Hat has announced that Red Hat Training and Certification is expanding its offerings for partners in order to advance their skills journey with open hybrid cloud technologies. Red Hat partners can now access Red Hat Training self-paced online courses at no cost in order to develop critical skills around Red Hat solutions in key areas such as cloud computing, containers, virtualization, automation and more.

        • David Cantrell: rpminspect-1.9 released

          rpminspect 1.9 is now available. The last release was in November of 2021, so this release includes a lot of new functionality and bug fixes. Among the many changes and bug fixes is the addition of the rpmdeps inspection. This inspection checks for consistency and expected changes in dependency tags in build comparisons. It also checks to ensure subpackages that gained automatic shared library dependencies also carry the appropriate explicit dependency on the providing package (in cases where the providing package is another subpackage in the build).

      • Debian Family

        • Ben Hutchings: Debian LTS work, February 2022

          In February I was assigned 16 hours of work by Freexian's Debian LTS initiative and carried over 8 hours from January. I worked 16 hours, and will carry over the remaining time to March. I spent most of my time triaging security issues for Linux, working out which of them were fixed upstream and which actually applied to the versions provided in Debian 9 "stretch". I also rebased the Linux 4.9 (linux) package on the latest stable update, but did not make an upload this month.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • Web Browsers

        • Mozilla

          • [Mozilla] How to secure your data in less than 10 minutes

            Data Privacy Day has come and gone. But here at Mozilla, helping educate people around online privacy is so important to us that we want to be your guide to protecting your data over the next four weeks. Save this page on Pocket, come back every Wednesday and find a couple of quick things you can do to help you live your best and most secure digital life. Don’t wait for the next data privacy settlement or breach. Put on a playlist and you’ll be done by the time your favorite song ends.

      • Productivity Software/LibreOffice/Calligra

    • Standards/Consortia

      • OGC Code Sprint: developing open standards and software

        The Open Geospatial Consortium (OGC) has organised a code sprint, along with two other organisations which promote open source software: the Open Geospatial Foundation (OSGeo) and the Apache Software Foundation (ASF). Both OSGeo and ASF have several projects which implement OGC data standards. At Ordnance Survey, we think it’s essential to encourage OS developers to be part of the conversation and development of the open data standards used in our products and services. That’s why we are sponsoring OGC’s code sprint event, and as an OGC member, we implement many OGC standards on the OS Data Hub.

      • War and the Power of Standards - ConsortiumInfo.orgConsortiumInfo.org

        The unleashing of unprovoked acts of violence against the people of Ukraine has both horrified and united much of the world against Russia. Even historically neutral Switzerland has condemned Putin’s aggression. And aid is flooding into the beleaguered democracy from around the world. Why? Not because the Russian Federation has breached any existing treaty, but because Putin has violated widely shared standards of conduct and decency. And while nations have the sovereign right to withdraw from written agreements, they are powerless to disavow an international consensus over what nations may and may not do. Or to avoid the consequences when they violate that consensus.

  • Leftovers

    • Science

      • [Hackaday] You Can Find Military Radars On Publicly-Available Satellite Data | Hackaday

        When it comes to hunting down military radar installations and associated hardware, we typically think of equipment that is firmly in the price bracket of nation states and their military forces. Whether it’s early warning radar, those used for air defence, or for naval purposes, you’d think it was relatively difficult to intercept or track these emissions. However, a new tool built by geocomputation lecturer Ollie Ballinger shows this isn’t the case. In fact, openly-available data captured via satellite can be used to find all manner of military radar emitters. Let’s explore how!

    • Hardware

      • [Hackaday] Electric Jet Engine Uses 3D Printed Compressor, Skips The Turbine Altogether. | Hackaday

        Turbojet engines are an incredible piece of 20th century engineering that except for some edge cases, have mostly been replaced by Turbofans. Still, even the most basic early designs were groundbreaking in their time. Material science was applied to make them more reliable, more powerful, and lighter. But all of those incredible advances go completely out the window when you’re [Joel] of [Integza], and you prefer to build your internal combustion engines using repurposed butane canisters and 3d printed parts as you see in the video below the break.

      • [Hackaday] Learn To Play Guitar, Digitally | Hackaday

        Learning to play a musical instrument takes a major time commitment. If you happened to be stuck inside your home at any point in the last two years, though, you may have had the opportunity that [Dmitriy] had to pick up a guitar and learn to play. Rather than stick with a traditional guitar, though, [Dmitriy] opted to build his own digital guitar which is packed with all kinds of features you won’t find in any Fender or Gibson.

    • Integrity/Availability

      • Proprietary

        • Security

          • [The Anarcat] procmail considered harmful - anarcat

            procmail is a security liability and has been abandoned upstream for the last two decades. If you are still using it, you should probably drop everything and at least remove its SUID flag. There are plenty of alternatives to chose from, and conversion is a one-time, acceptable trade-off.

          • Privacy/Surveillance

    • Defence/Aggression

      • [NewYorkTimes] A Group Founded by Colin Kaepernick Is Providing Free Second Autopsies

        A group founded by the former N.F.L. quarterback Colin Kaepernick started this week to offer free secondary autopsies for families of people who died under “police-related” circumstances. A certified autopsy can be prohibitive, sometimes costing $5,000 or more, so those without means have had to rely on the official inquiry conducted by a medical examiner or coroner. But proponents of a second autopsy argue that forensic pathology is not an exact science, and that medical experts can have differing opinions that are sometimes colored by bias. Not having the means for an independent autopsy — a second opinion, in medical speak — prohibits one’s access to equal justice, supporters of Mr. Kaepernick’s initiative said. “There is definitely a deep-seated subconscious bias — and in some instances a conscious bias — on the part of medical examiners vis-à-vis police-related deaths,” Dr. Cyril H. Wecht, one of country’s most famous forensic pathologists and one of the board-certified examiners who will be conducting autopsies as part of this effort, said in an interview on Thursday.

    • Environment



Recent Techrights' Posts

Microsoft Media Operatives and Bill Epsteingate-Funded Sites Said Microsoft Lays Off 9,000, But Other Sites Say More (Including 2,300 in Redmond Alone)
We might never know the real number/s (Microsoft will keep the cards close to its chest) until there are leakers or unless there are whistleblowers with hard proof
GNU/Linux Reaches All-Time High in the United States of America
Windows is trending down
Why the Microsoft People Who Started SLAPPs Against Techrights Could Very Well be Sent Back to Prison
White-collar crime is also a crime
 
Links 02/07/2025: Deep Microsoft Cuts, Macron Speaks to Putin
Links for the day
Confirmed: Microsoft Shutdowns Today, Not Only Mass Layoffs
"The Initiative is the only studio closure planned today, although some other teams have seen cuts of varying degrees."
GNU/Linux is Replacing Microsoft Windows. But We Need to Eradicate Microsoft, It's a Hub of Crime.
I have been writing about Microsoft since the 1990s when I was in school
Microsoft Windows Nosedives in Switzerland While GNU/Linux Leaps Above 6%
sooner or later they might have to make the move anyway
Anxiety at Microsoft: Many Workers (Maybe Over 10,000) Still Don't Know They're Being Laid Off Just Before US Independence Day
"Has anyone gotten the notification yet?"
Microsoft "Declined to Say How Many People Would be Laid Off," According to Associated Press
Some other prominent publications said they reached out for comment from Microsoft and received none
The X War is Over and the "Wayland People" Lost
People will gravitate towards what works for them
20 Years Since My Thesis
It's still online
GNU/Linux is Replacing Windows in Laptops/Desktops
The world will move on while Windows and Microsoft shrink
Now Comes the Expected Webspam, Framing Microsoft Layoffs as "Hey Hi" Success Story (False Marketing That's Piggybacking the Layoffs)
falsely marketed as "intelligence"
Hungary: Microsoft Windows Sinks to 17% "Market Share"
In many nations in Europe it seems like the era of Windows is coming to an end
Microsoft Layoffs in Spain, Portugal Record for GNU/Linux
in Portugal we see GNU/Linux at record levels
Yes, Microsoft is Again Using Its Favourite Liars (Stenographers) to Seed Fake Layoff Numbers, Much Lower Than What's Really Happening
It is Jordan Novet again, just as we predicted
Will Microsoft Once Again Choose Its Favourite Liar to Spread Lies About Today's Layoffs, Quickly to be Replicated and Spread by Slopfarms?
What lies is Microsoft briefing its media moles to tell today?
"OSS Fetishism" Wins After Ferenc Zsolt Szabó Ousted (Microsoft Mole From Capgemini)
Many people said 2025 would be the "year of Linux on the desktop"
There is Nothing That LLMs Can Offer Honest People
LLMs are a passing fad; they're expensive and offer poor "value" for energy; they usually offer no value at all unless you are a cheater, spammer, and liar
What statCounter Shows Today Helps Explain Microsoft's Helplessness, Mass Layoffs
Since many US journalists are already away on holiday almost nobody will dare ask the difficult questions or give a voice to whistleblowers
Microsoft Gets the Chop in South America
The notion of digital sovereignty gained a lot of popularity
Europe Has an 'Exit'
Let's see what happens the rest of this year
El Presidente Talks, Canada Walks (Away From Windows)
GNU/Linux rising
Cities in France and Germany Move to GNU/Linux and statCounter Detects Big Differences
Will governments lead by example?
Microsoft Lost Its Foothold in Africa
How many of these are "old" Windows machines converted to GNU/Linux? Probably a lot.
Led by Europe, GNU/Linux Makes Big Gains This Month
statCounter started showing new/fresh stats
Links 02/07/2025: Massive Microsoft Layoffs About to Commence, "Tesla's Robotaxi Program Is Failing"
Links for the day
The Company Run by Former (and Last Proper) Red Hat CEO, Promoting Microsoft Mono, Faces Shock as Senior Partner Jailed for 33 Sexual Offenses Including Pedophilia
"As reported by The Oxford Mail in April 2025, the offenses include rape, sexual assault, engaging in non-penetrative activity with a child, and more."
Microsoft Lost 29% of Windows Users, Based on Microsoft, Now Come Massive Layoffs
Microsoft collapse is today
Slopwatch: Google Serves to People Linux Slop and Linux FUD (Made by Bots)
"Slopwatch" finds it difficult to ignore Google's role in encouraging LLM slop
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, July 01, 2025
IRC logs for Tuesday, July 01, 2025
"Wayland People" Behave Like the Googles and Microsofts of This World
Published yesterday by Igor Ljubuncic
Gemini Links 02/07/2025: Arch Linux and Fulfillment in Gemini
Links for the day
Links 01/07/2025: "Independence Day in Taiwan", Bounties on Software Patents
Links for the day
What Happens When Your Law Firm is Preoccupied With Harassing and Trying to Extort a Humble Couple in Manchester, Even on Behalf of Violent Microsoft Staff From Another Continent
It's good to see that law firms which operate in bad faith are perishing
Lawyer X, Law Firm X and Elon Musk's X: scandals linked by Old Xaverian
Reprinted with permission from Daniel Pocock
Gemini Links 01/07/2025: Distraction-Free Writing and Hytale Mismanagement
Links for the day
Links 01/07/2025: "Beauty of Blogging" and "Etiquette of Collapse"
Links for the day
Microsoft Uses LLM Slop to Defraud (or Rob) Shareholders
Microsoft is basically defrauding its shareholders by LLM slop
The Web is a Dead End
We need to adopt alternatives
When Words Lose Their Intended Meaning
examples of words that, at least in the technical spheres, don't mean what they sound like
People Who Disagree With You on Technical Matters May or May Not Agree With You on Political Things (But Usually They Do)
What bothers me a great deal is seeing left-leaning people accusing other left-leaning people of being "nazis"
"Too Much Choice" and "Too Many Programming Languages"
What IBM and its apologists aim for was attempted in the 1930s and it failed
Microsoft Lost 400,000,000 Windows Users, According to Microsoft
more people adopt smaller computers and many people replace Windows with GNU/Linux, as they don't really need a new computer
The "Davos Effect": Tarnishing the Reputation of Places Not by Overtourism But by Oligarch Infestation
The last Venice needs is an affiliation with Venetian oligarchs
Half a Year Gone, What's to Come Next
In the second half of 2025 we expect to be done with the Microsoft SLAPPs
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, June 30, 2025
IRC logs for Monday, June 30, 2025
People at the Very Top of Microsoft Know How Bad Things Really Are
There's no product that can replace the former profitability of Windows licensing and stuff that went on top of Windows
Gemini Links 01/07/2025: Mid Year and a Tour of Old Languages
Links for the day
EPO Presentation Bemoans Misuse of Slop in Decision-Making on Patents and in Classification (Which is Likely Illegal Too)
We habitually mention failed use cases of LLMs on the Web
Mass Layoffs at Microsoft Confirmed, "XBox Hardware Is Dead"
It's possible that over 20% of the staff will be laid off
Links 30/06/2025: Kyrgyzstan vs Media Freedom, Dalai Lama Succession
Links for the day
Gemini Links 30/06/2025: Backend Programs in Gemini and Dynamic Content Without The Scripting
Links for the day
Links 30/06/2025: Zuckerberg’s Tax-Evading Scheme Harms Kids, US Copyright Office Lacks Leadership
Links for the day
Microsoft Isn't Laying Off Tens of Thousands to 'Invest' in Slop ('Hey Hi'), It's Laying Off Tens of Thousands Because It's Running Out of Money (and Willing Lenders)
the layoffs are a sign of the business failing, not "hey hi" (whatever that is) replacing staff
Intel Lays Off 20% of Its Workforce, Microsoft is Doing the Same This Year
Like a yoyo, whatever goes up will come back down
Microsoft XBox Layoffs: Almost 2,000 Layoffs Became "Over 2,000"? (Over 20% of the Staff)
over 20% of staff will be let go, not counting staff that leaves voluntarily
GNU/Linux Rises to New Highs in Angola, Africa in General is Abandoning Windows
Western media barely covers Microsoft layoffs in Africa, but in recent years Microsoft culled the workforce and even shut down entire operations
Summer Plans in Techrights and Elsewhere
massive layoffs at Microsoft
Destination Geminispace (in the Age of LLM Slop and Slop Images That Infest the Web and Social Control Media)
Geminispace isn't vast, but at least it is - on average - a lot "cleaner"
GNU/Linux Growing in Sierra Leone This Year
Based on what statCounter is seeing, this year there are more and more people there who adopt GNU/Linux
Serial Sloppers Gonna Slop
More sites out there ought to call out the cheaters
Quartz (qz.com) is Spam and a Slopfarm
It used to be OK. Then they fired the staff.
Links 30/06/2025: US Economic Woes, Extreme Heat
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, June 29, 2025
IRC logs for Sunday, June 29, 2025
Gemini Links 30/06/2025: "The AI Hype" and New AuraGem Ask
Links for the day