Bonum Certa Men Certa

Links 26/06/2023: Libreboot 20230625 and GNU Linux-Libre 6.4



  • GNU/Linux

    • 9to5Linux9to5Linux Weekly Roundup: June 25th, 2023

      This week we got some pretty good news as Linux 6.4 finally arrived after two months of development with improved support for our hardware, the KDE Project pushed another hefty update to Plasma 5.27 LTS users, and Nitrux devs finally announced an upgrade tool that will also perform backups and rollbacks.

      On top of that, System76 refreshed two of its Linux laptops with the latest generation of Intel Core CPUs and other goodies, Linux Mint 21.2 entered public beta testing, and Ubuntu 23.10 got a newer kernel. Read the hottest news of this week and get access to all the distro and package downloads in 9to5Linux’s Linux weekly roundup for June 25th, 2023, below.

    • Audiocasts/Shows

      • Open Source Security (Audio Show)Episode 381 – WTF Reddit, APIs and€ risk

        Josh and Kurt talk about the incredible Reddit debacle. At the center of it all is an API. What does it mean to be using an API and how does this relate itself back to our own risk. Many of us rely on APIs for countless things, and if a company decides to cut off that API somehow, it could create a mess.

      • Jupiter BroadcastingThe Fixer-Upper | LINUX Unplugged 516

        Chris tears into two old PCs, and builds a surprisingly powerful multi-monitor Wayland workstation.

      • GNU World Order (Audio Show)GNU World Order 518

        **ebook-tools** , **editorconfig** , **eigen3** , **elfutils** , **enchant** ,

        **esound** , **espeak-ng** , **exiv2** , **expat** from Slackware software

        series **l**.

        shasum -a256=c9c07a477a7f4e5f9df54131dd63018e2cebdf2b26ad910e133b01f63f069c9f

    • Kernel Space

      • DebugPointLinux Kernel 6.4 Released with Intel LAM, Initial Apple M2 Support

        Linus Torvalds announced the release of Linux Kernel 6.4 today. After a calm testing window following the first release candidate, Kernel 6.4 is now ready to be downloaded. If you are a distro maintainer or early adopter, you can get the source and start using this mainline Kernel version.

        The key highlights of this release are the initial support for Apple M2 SoC, the latest additions for CPU and GPU lineups and usual Kernel module updates.

      • The Register UKLinux 6.4 debuts after literally unremarkable development push

        "Most of the stuff in my mailbox the last week has been about upcoming things for 6.5, and I already have 15 pull requests pending," he wrote, adding "I appreciate all you proactive people."

      • AIMLinux Kernel 6.4 Brings Better Support For Rust

        The everlasting Linux Kernel has gotten yet another update, and this one includes some quality of life changes, a few upgrades to the file system of the OS, and additional support for Rust code in the kernel. In addition to this, the update also kept up with housekeeping by adding drivers for the latest hardware, such as Wi-Fi drivers for various Realtek modems.

      • DroidGazzetteEmbracing Apple M2, New Hardware, and More Rust Code

        This release offers many improvements, such as initial Apple M2 silicon support, storage enhancements, better sensor monitoring, and more.

        Even though this is not a major upgrade for regular users, it caters to a specific group of users who want to take advantage of the better hardware/software support on offer.

      • CNX SoftwareLinux 6.4 release – Main changes, Arm, RISC-V and MIPS architectures

        Linux 6.4 has just been released by Linus Torvalds on the Linux Kernel Mailing List (LKML): Hmm.

      • OMG UbuntuLinux Kernel 6.4 Released with Varied Set of Changes

        After 2 months of solid development, Linux 6.4 kernel is now officially available to download. Announcing the release of the latest Linux kernel on (where else?) the official Linux Kernel Mailing List (LKML), Linux founder Linus Torvalds writes [...]

    • Applications

    • Instructionals/Technical

      • ID RootHow To Install Wireshark on Rocky Linux 9

        In this tutorial, we will show you how to install Wireshark on Rocky Linux 9. For those of you who didn’t know, Wireshark is a powerful and widely-used network protocol analyzer that allows network administrators and security professionals to capture and analyze network traffic.

      • It's UbuntuHow To Disable Automatic Updates In Ubuntu

        Are you tired of your Ubuntu updating automatically without your consent and want to stop it then here is the solution for you. In this post, we will discuss on the method to disable automatic updates in Ubuntu.

      • Linux CapableHow to Install OpenJDK 17 on Debian Linux

        As OpenJDK 17 has been released, it’s crucial for developers and system administrators to be acquainted with its new features and enhancements. Following this guide will demonstrate how to install OpenJDK 17 on Debian 12 Bookworm or Debian 11 Bullseye directly from your Debian default repository.

      • ID RootHow To Install PHP on Debian 12

        In this tutorial, we will show you how to install PHP on Debian 12. For those of you who didn’t know, PHP, the widely used scripting language for web development, plays a crucial role in creating dynamic and interactive websites.

      • TecAdminBase64 Encoding and Decoding in Bash

        The Bash shell, which is often used as the default shell in most Linux distributions, supports various commands and features that assist in data manipulation. Among these features, Base64 encoding and decoding are two of the most frequently used, due to their widespread usage in programming, web development, and data science.

      • How to Install Veritas Cluster Server 8.0 in RHEL

        Veritas Cluster Server, commonly known as VCS, is used by organizations around the world to host their mission-critical applications and ensure always-on high availability for their hosted applications.

      • nixCraftHow to restart network service in Alpine Linux

        You need to restart the network service in Alpine Linux using "/etc/init.d/networking restart" command to activate the network configuration defined in the /etc/network/interfaces config file. Do not run this command over an ssh-based session.

      • TecMint6 Useful Tools to Remember Linux Commands Forever

        There are thousands of tools, utilities, and programs that come pre-installed on a Linux system.

      • How to Install Chrome on Ubuntu

        Chrome is one of the most popular web browsers in the world, and it has many features that make it a great choice for users of all levels. However, if you use Ubuntu as your operating system, you may need some help figuring out how to Install Chrome. Fortunately, the process is relatively easy and straightforward.

      • HackadayExploring The Anatomy Of A Linux Kernel Exploit | Hackaday

        A lot of talk and discussion happens anytime a hardware manufacturer releases a new line of faster, more powerful, or more efficient computers. It’s easy to see better and better specifications and assume that’s where all the progress is made. But without improved software and algorithms, often the full potential of the hardware can’t be realized. That’s the reason for the creation of io_uring, an improved system call interface in the Linux kernel. It’s also where [chompie] went to look for exploits.

        The reason for looking here, in a part of the kernel [chompie] had only recently learned about, was twofold. First, because it’s a place where user space applications interact with the kernel, and second because it’s relatively new and that means more opportunities to find bugs. The exploit involves taking advantage of a complicated asynchronous buffer system, specifically at a location where the code confuses a memory location being used by the kernel with one which is supposed to be used for user space.

      • Tao Security BlogMy Last Email with W. Richard Stevens

        In the fall of 1998 I joined the AFCERT. I became acquainted with the amazing book TCP/IP Illustrated, Volume 1: The Protocols by W. Richard Stevens. About a year later I exchanged emails with Mr. Stevens. Here is the last exchange, as forwarded from my AFCERT email address to my home email.

      • University of TorontoWhy use 'TEST-NET' IP addresses in general documentation instead of RFC 1918 ranges

        If the person reading your documentation is in a green-field environment, it's true that the RFC 1918 address ranges are harmless. They can freely use any of them they want, including the ones your documentation. However, if the person reading your documentation isn't in such a green-field environment, some RFC 1918 address ranges may already be in use and routed in their environment; these are, in practice, 'public' IP ranges, just public inside their networks instead of public to the entire Internet. If your documentation's RFC 1918 ranges overlap with RFC 1918 ranges already in use, they'll get more or less the same problems as if they'd used public IPs.

      • Connor TumblesonRetiring Technology

        So if you take the cost of the machine (~$2,220) and divide by the hours spent on it you can tell we have broken sub dollar range. For context if you spend $40 at a bar for 5 hours you got $8 an hour of socializing. I'm currently working at ~90 cents/hour of entertainment value on my computer which seems like I got my money's worth.

        Though if we talk about network equipment or phones - that all goes out the window. I revamp those way before they reach the end of their life. So maybe there is no chance of understanding how I retire technology and replace it.

      • APNICDomain verification using DNS

        The issue is that domain verification using the DNS, while extremely important to the web’s security, is done in many different ways by different providers (some better than others). For example, here’s a real problem that occurs if you try to query twitter.com for its TXT records (shortened for readability).

      • [Repeat] University of TorontoEverything that uses configuration files should report where they're located

        Here's something that I've come to strongly believe as a system administrator: if a program uses a configuration file (or several), it should have an obvious command line way to find out where it expects to find that configuration file.

    • Games

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • Adriaan de GrootAkademy!

          Like plenty of other KDE folks, I’m going to Akademy. See you there!

          Like in past years, I have applied my Awesome Kolourpaint Skills to the banner. I thought the person looked overly serious, so I’ve given them a big smile. And blue eyes, to match my own.

          I’m not giving any talks except for KDE e.V. board presentations (which will probably be mostly Aleix and Lydia). This also means I’m not getting a haircut for this conference. Such is the weight of tradition.

        • KDE Gear 23.08 release schedule

          This is the release schedule the release team agreed on

          €  https://community.kde.org/Schedules/KDE_Gear_23.08_Schedule

        • I got married!

          After ten years of dating, me and tecsiederp got finally married.

  • Distributions and Operating Systems

    • New Releases

      • LibreBootLibreboot 20230625 released!

        Libreboot provides boot firmware for supported x86/ARM machines, starting a bootloader that then loads your operating system. It replaces proprietary BIOS/UEFI firmware on x86 machines, and provides an improved configuration on ARM-based chromebooks supported (U-Boot bootloader, instead of Google’s depthcharge bootloader). On x86 machines, the GRUB and SeaBIOS coreboot payloads are officially supported, provided in varying configurations per machine. It provides an automated build system for the configuration and installation of coreboot ROM images, making coreboot easier to use for non-technical people. You can find the list of supported hardware in the Libreboot documentation.

        This new release, Libreboot 20230625, released today 25 June 2023, is a new stable release of Libreboot. The previous stable release was Libreboot 20220710, released on 10 July 2022.

    • Gentoo Family

      • Gentoogentoo_update Introduction
        Introduction

        gentoo_update (Github repo) is a tool that automatically updates Gentoo Linux.

        Motivation

        Gentoo Linux gives users maximum flexibility and control over the system. A great example of this is the OS upgrade process. Users have a large selection of different command utilities and a bunch of configuration options to choose from to tailor the upgrade process to their needs. Here is the list of some tools that are commonly used during an upgrade:

      • GentooWeek 4 report on porting Gentoo packages to modern C

        Hello all,

        This is my week 4 report on Modern C porting of Gentoo’s packages.

        Well nothing interesting to report this week, just following my proposal
        and focused on -Wimplicit-int type of bug for the first half of the week
        while moving to -Wimplicit-function-declaration.

        However, if you follow my PRs on github [1], you will notice that it
        happens I fix/send patches bugs that are not per my proposal’s timeline.
        This happens because of multiple reasons, sometimes I randomly come
        across a bug that is requires some rather easy patch, some other times I
        come across a package that is not in the tracker listing bug and send in
        a patch. I’ve informed my mentor (Sam) about such situation, and he
        acknowledged me taking bugs at random and diverting from my proposal
        workflow sometimes.

      • GentooWeek 4 Report, Automated Gentoo System Updater

        This article is a summary of all the changes made on€ Automated Gentoo System Updater€ project during€ week 4€ of GSoC.

    • Fedora Family / IBM

      • DebugPointNobara 38 Released, Offering Enhanced Gaming and Content Creation Experience

        The expected release of Nobara 38, based on Fedora 38, is finally here, bringing an array of user-friendly fixes and feature enhancements. Nobara Project, a modified version of Fedora Linux, aims to address common issues users face and provide a seamless gaming, streaming, and content creation experience out of the box. With a range of additional packages and customizations, Nobara 38 takes Fedora to new heights.

      • [Repeat] IT WireIBM-owned Red Hat cracks down on access to RHEL source code

        The announcement comes in the wake of the changes Red Hat made in December 2020, when it killed off CentOS, which for a long time had served as a means whereby people could use RHEL without the costs of support. It was merely RHEL without the trademarks, the only thing which was copyrighted [sic].

      • Red HatHow to deploy apps in a K8s cluster via automation controller

        This article demonstrates how to deploy gaming applications in a Kubernetes€ (K8s) cluster using Red Hat Ansible Automation Platform. The minikube cluster is the best single node cluster for a personal POC. For this article, we will use a minikube cluster and Ansible Automation Platform 2.3 and a restricted set of privileges in the cluster to deploy the application in€ Kubernetes. Automation and orchestration are a rock solid combination that yield more promising results.

      • Red HatWhat's new in Red Hat OpenShift 4.13

        Red Hat OpenShift is a Kubernetes-based app-dev platform that enables developers to build, deploy, and manage containerized applications. It provides a comprehensive set of tools and services for developers, operations teams, and IT organizations to streamline application development and delivery.

        Red Hat OpenShift version 4.13, the latest release, introduces several new features and enhancements that help organizations accelerate their digital transformation journey. Let's take a closer look at some of the key features of OpenShift 4.13.

    • Debian Family

      • Junichi Uekawa: update-info.

        < update-info. Something is corrupting my /usr/share/info/dir entry.

        I've found mutt-alias.info.gz and muttrc-mode.info.gz seems to cause the problematic entries. They seem to declare iso-8859-1 and that seems to cause some kind of corruption.

        Then I found there's a bug 1024997 and then it was fixed in experimental.

        So this fix didn't get in to bookworm.

      • Vasudev Kamath: Migrating my domain from copyninja.info to copyninja.in

        After holding the domain copyninja.info for almost 15 years, I finally let it expire and bought a new domain, copyninja.in. With this move, I also bid goodbye to my VPS, which I had been using for over 12 years on DigitalOcean. This particular VPS was initially set up with Debian Wheezy (7) and had been upgraded over the years to successive Debian versions and finally was running Debian Bullseye (11).

  • Free, Libre, and Open Source Software

    • Web Browsers/Web Servers

      • The Register UKFYI: Tor Browser is very much still a thing and getting updates

        The Tor Browser, based on the Extended Support Release of Mozilla's Firefox, provides a way to connect to the Tor network. It makes an effort to provide – but does not guarantee – anonymity. It does so by: making the user's internet traffic appear to come from a different IP address, thus obscuring the user's location; preventing someone watching your local traffic (e.g. your ISP) from seeing or limiting your website visits; and routing connections through multiple relays.

        The Tor Browser and associated onion services are often used by journalists, human rights advocates, and others in adversarial environments where the threat model goes beyond marketers. Criminals may do so too, but as the Tor Project argues, they have better options.

      • Nicolas FränkelSticky sessions with Apache APISIX

        Sticky sessions became popular when we stored the state on the upstream node, not the database. I’ll use the example of a simplified e-commerce shop to explain further.

        The basic foundations of a small e-commerce site can consist of a web application and a database.

      • James BrownVersion 6

        Welcome to Version 6 of this website. As promised a few months ago, I decided to take this website, which has been using the Pelican static site generator since 2014, and rewrite it to use the Zola static site generator. This was a pretty painless process; I wrote some Python scripts to take all the Pelican markdown and convert it to Zola format1 and to generate redirects for all the old URLs.

    • PostgreSQL

      • PostgreSQLPL/Haskell v3.0 Released

        We are pleased to announce the release of version 3.0 of the PL/Haskell extension. This extension allows users to write PostgreSQL functions in the Haskell functional programming language. Instructions can be found here.

        Version 3.0 adds the ability to execute untrusted code which allows for greater flexibility of functionality.

      • PostgreSQLRegistration for PGCloud Conference London is Open!

        We are pleased to announce registrations are now open for PGCloud Conference London! The 1-day conference is completely free of charge and you can register to attend via the event website:

        https://pgcloudconferencelondon.splashthat.com/

        Join us in London on 10th August for a day of learning how to optimise, manage and scale PostgreSQL in a cloud environment.

      • Linux HintPostgres Random Number

        Random numbers are crucial in various aspects of database management and analysis. For example, in databases, random numbers are fundamental to generate the test data, select random records, distribute the workloads, and enhance the data security. This tutorial explores the different techniques to generate random numbers in PostgreSQL, ranging from basic functions to more advanced […]

      • Linux HintPostgres Case-Insensitive

        Practical tutorial on how to implement the case-insensitive searches in the PostgreSQL databases using the citext data type and by changing the collation.

      • Linux HintPostgreSQL Work_Mem

        Comprehensive tutorial on understanding the role of the work_mem parameter in PostgreSQL, its effects on the database engine and operations, and more.

      • Linux HintPostgres With

        Comprehensive tutorial on how how to create and work with the Common Table Expressions in PostgreSQL using the PostgreSQL WITH keyword using various techniques.

      • Linux HintPostgres Variables

        Practical tutorial on how to work with PostgreSQL variables and how to to define, reference, and use these variables in a PL/SQL block using various examples.

      • Linux HintPostgres Switch User

        Tutorial on switching users in PostgreSQL using the command-line and graphical user interface methods to manage the databases and perform administrative tasks.

      • Linux HintPostgreSQL Switch Database

        Compehensive tutorial on the fundamental methods to switch the databases in the PostgreSQL server using the PSQL utility, SET command, and connection clients.

      • Linux HintPostgreSQL Show Extensions

        Tutorial on the role of extensions in PostgreSQL and how to install and view the installed extensions in PostgreSQL server using various commands and methods.

      • Linux HintPostgres Row_Number Function

        Practical tutorial on the fundamentals of working with the row_number() function in PostgreSQL to assign a unique integer value to each row in the result set.

      • Linux HintPostgres Reset Password

        Guide on the various methods and techniques that we can use to reset a user password in PostgreSQL server using the PSQL utility, pgAdmin, and editing password.

      • Linux HintRemove the NOT NULL Constraint in Postgres

        Practical guide on on how we can work with the NOT NOLL constraint in PostgreSQL and how to drop or remove an existing NOT NULL constraint from a given column.

      • Linux HintPostgreSQL “Relation Doe Not Exist” Error

        Simple guide on what the "Postgres relation does not exist" error means, the possible causes, and the potential solutions or techniques to resolve this error.

      • Linux HintPostgres Rank

        How to work with rank() function in PostgreSQL to fetch the rank of a given row from a result set based on the defined conditions and create complex queries.

    • GNU Projects

      • 9to5LinuxGNU Linux-Libre 6.4 Kernel Released for Those Who Want to Build 100% Free PCs

        Based on the recently released Linux 6.4 kernel, the GNU Linux-libre 6.4 kernel is here to clean up newly added op-tee, rtl8710b, qcom cloud AI, and Bluetooth NXP protocol drivers, clean up blob names in qcom AArch64 DTS files, and adjust deblobbing for x86 microcode docs, x86 Android tablets, and QAT crypto drivers.

        In addition to removing proprietary code from various drivers, the GNU Linux-libre 6.4 kernel comes with all the new features and improvements that have been included in the upstream Linux 6.4 kernel series but doesn’t ship with non-free components as the upstream kernel.

    • Programming/Development

      • MaskRayC++ standard library ABI compatibility

        For a user who only uses one C++ standard library, such as libc++, there are typically three compatibility goals, each with increasing compatibility requirements:

        Can the program, built with a specific version of libc++, work with an upgraded libc++ shared object (DSO)?

        Can an executable and its DSOs be compiled with different versions of libc++ headers?

        Can two relocatable object files, compiled with different versions of libc++ headers, be linked into the same executable or DSO?

      • Jim NielsenComponents and LEGOs

        “We’re going to build a component library — which are like a bunch of LEGOs — so designers/developers can just pick a prefabricated component off the shelf and build with consistency and coherence.”

        It’s a nice thought, if you don’t think about it too much. But I recently read Christian Heilmann talking about “componentisation without big picture planning” and it hit me like a ton of LEGO bricks: [...]

      • JorinProblem Solving

        Software creates value by solving problems. But effectively solving problems is hard. How can we get better at it?

      • [Repeat] Xe's BlogTime is not a synchronization primitive

        Today I want to talk about one of the most common ways that I see things fall apart. This has caused tests, production-load-bearing bash scripts, and normal application code to be unresponsive at best and randomly break at worst. It's when people use time as a synchronization mechanism.

      • Adriaan de GrootRanges (C++20)

        At work-work, we try to stick to the forefront of C++ language development: C++20 all the time, C++23 as it shows up and is available in compilers. It’s a weird mix sometimes with a codebase that has a lengthy history.

        A while back I bumped into a for loop, tried to be clever and then hit limitations of Clang – and those limitations are sometimes relevant for KDE code that lands in FreeBSD, which is why I’m writing about it.

      • Perl / Raku

        • KnorrRaku is pretty damn Cool

          This is not going to be a tutorial, but I'll show you my favorite Raku features. There are many more, and these are not necessarily the biggest ones.

          In general Raku has everything the typical scripting language has. Functions, Classes, Exceptions, typical data types (like lists and dicts / hash maps), modules, and all the usual control flow. An abundance of those. In all forms and colors. One interesting thing that is unusual is the type system: you don't need to type anything, and by default you get dynamic typing, but you can, and then the (byte code) compiler will check the types for you.

      • R

  • Leftovers

    • Jacobin MagazineGamification Is Exploitation

      However, while “gamification” might be new, the introduction of game mechanics into the labor process predates the proliferation of touch screens and the web by decades. Back in 1979, Michael Burawoy wrote of “The Labor Process as a Game,” describing how workers would turn their factory jobs into games to pass the time and make their jobs more endurable. Burawoy cites Donald Roy, who describes how the introduction of piecemeal rates — in which factory workers were paid based on output, not by a standard daily wage — began an implicit competition among workers not based on quotas or outputs but scores and results. The workers in question could exercise their workplace skills, like dexterity and stamina, and a degree of uncertainty and luck added to the level of excitement. “It is not so much the monetary incentive that concretely coordinates the interests of management and worker but rather the play of the game itself,” Burawoy writes, in a statement that has only become more prophetic with time.

    • RTEStatement from RTÉ

      In response to an article today in the Sunday Independent headlined ‘RTÉ scandal: Whistleblower claims broadcaster gave ‘kickbacks’ of €50m to ad agencies’, RTÉ says: [...]

    • Science

    • Education

      • QuilletteAfter College

        I draw from my fellow gloom-sayers as need be, all of whom have valuable points. The far-flung empire of some 3,000 US colleges and universities surely faces a severe trial. But what follows is less data analysis than it is cultural observation. I am an anthropologist most interested in the ways that people shape and are shaped by primary institutions, such as the family and education.

        We are witnessing the transition from “college is for everybody” to “college is unnecessary and often useless.” Going to college “to be able to get a better job” is likely to fade away as the primary reason students attend. And the institutions themselves—universities and colleges of various types—will have to accept a much less prominent role in our social and economic systems. They are in danger of becoming cultural relics.

      • [Old] VoxThe incredible shrinking future of college

        In four years, the number of students graduating from high schools across the country will begin a sudden and precipitous decline, due to a rolling demographic aftershock of the Great Recession. Traumatized by uncertainty and unemployment, people decided to stop having kids during that period. But even as we climbed out of the recession, the birth rate kept dropping, and we are now starting to see the consequences on campuses everywhere. Classes will shrink, year after year, for most of the next two decades. People in the higher education industry call it “the enrollment cliff.”

    • Hardware

      • [Repeat] Ruben SchadeWhen does retrocomputing begin?

        My dear friend and fellow Baltic state fan Michael Dexter ran a fun poll that ended yesterday, with the options of end-of-life date, five years, ten years, twenty years, and never, stay current! I put myself down for twenty years, which turned out to be the most popular answer.

      • Linux GizmosM5Stack Basic Core comes with aluminum alloy enclosure

        Today, M5Stack launched a limited edition of the M5Stack Core host which is based on the Espressif ESP32 chipset.

      • HackadayWatch Hides Gesture Controls In Wristband

        Over the last five to ten years, smart watches have become fairly ubiquitous, with the Apple Watch being among the most prominent of them. Not everyone wants or needs all of the capabilities of these devices, though; plenty are still opting for simpler devices which only have a few functions built into them. [Josh] has been working on one of these devices but takes a major design cue from their smart counterparts with the addition of gesture controls for the watch built into the wristband instead of relying on a more traditional button interface.

      • HackadayThis Camera Does Not Exist

        Blender is a professional-grade 3D-rendering platform and much more, but it suffers sometimes from the just-too-perfect images that rendering produces. You can tell, somehow. So just how do you make a perfectly rendered scene look a little more realistic? If you’re [sirrandalot], you take a photograph. But not by taking a picture of your monitor with a camera. Instead, he’s simulating a colour film camera in extraordinary levels of detail within Blender itself.

      • HackadayHackaday Links: June 25, 2023

        Is it really a dystopian future if the robots are radio-controlled? That’s what came to mind reading this article on a police robot out of Singapore, complete with a breathless headline invoking Black Mirror, which is now apparently the standard by which all dystopias are to be judged. Granted, the episode with the robo-dogs was pretty terrifying, but it seems like the Singapore Police Force has a way to go before getting to that level. The bot, which has been fielded at Changi Airport after extensive testing and seems to be completely remote-controlled, is little more than a beefy telepresence robot. At 5.5 feet (1.7 meters) tall, the bot isn’t terribly imposing, although it apparently has a mast that can be jacked up another couple of feet, plus there are lights, sirens, and speakers that can get the message across. Plus cameras, of course; there are always cameras. The idea is to provide extra eyes to supplement foot patrols, plus the potential to cordon off an incident until meatspace officers arrive. The buzzword game here is weak, though; there’s no mention of AI or machine learning at all. We have a feeling that when the robots finally rise up, ones like this will be left serving the drinks.

      • CNX SoftwareIntel soft router offers up to eight 2.5GbE ports, Comet Lake or Whiskey Lake Core processor

        Topcon is offering a soft router powered by an Intel Whiskey Lake or Comet Lake processor up to the Core i7-10510U quad-core/octa-thread processor with either eight 2.5GbE RJ45 ports or four 2.5GbE RJ45 ports and two 10GbE SFP+ cages.

    • Health/Nutrition/Agriculture

      • SalonPoor air filtration in schools is driving absences and tanking productivity, but the fix is simple

        In 2020, ventilation and filtration were recommended by experts in public health, building science and HVAC engineering. The American Society of Heating, Refrigerating, and Air-conditioning Engineers (ASHRAE)'s official position is that their own standard is "not meant for infection control" and that standard ventilation levels are "significantly lower than levels recommended" for our current challenges. Under pressure from the White House, ASHRAE has approved a new indoor air quality standard that is, in fact, even more aggressive than many of the recommendations heretofore.

        Broadly speaking, to reduce airborne infections, experts recommend that schools introduce outdoor air, use in-room portable HEPA filters and upgrade HVAC filters. Healthy air in schools is a long-term solution with broad health benefits, which can be key to managing allergies, asthma, and preventing airborne infections. With increased wildfires as a result of climate extremes, air filtration becomes an essential tool in classroom resilience. No matter the contaminant, cleaner air has been linked to improved cognitive function and academic performance.

      • IT WireTech guru says PM's mobile advice not enough for peace of mind

        A well-known tech personality says the advice from Prime Minister Anthony Albanese, to switch off mobiles once a day, may not be all that needs to be done to improve one's chances of avoiding security issues on devices.

      • Science AlertLeaving Dog Poop on The Street? Scientist Explains Why It's Way Worse Than You Think

        Urgh.

      • Science AlertA New Subtype of Depression Has Been Identified, And It Could Affect 27% of Patients

        This could revolutionize the way we treat depression.

      • LatviaPolice: Drunk driver numbers over Midsummer 'unforgivably high'

        Compared to the previous year's Jāņi holiday, the traffic situation has improved slightly, but the number of drunk drivers caught is still unforgivably€ high,€ Arturs Smilga, deputy chief of the State Police Transport Safety Administration, told Latvian Radio June 26.

      • JURISTHearings conclude for Norfolk Southern train derailment in East Palestine, OH

        The US National Transportation Safety Board (NTSB) concluded two days of hearings Friday on the Norfolk Southern train derailment in East Palestine, OH in February. In an unusual move, the NTSB chose to hold the public hearings in East Palestine, rather than Washington DC.

    • Proprietary/Artificial Intelligence (AI)

      • MIT Technology ReviewJunk websites filled with AI-generated text are pulling in money from programmatic ads

        Over 140 major brands are paying for ads that end up on unreliable AI-written sites, likely without their knowledge. Ninety percent of the ads from major brands found on these AI-generated news sites were served by Google, in violation of the company’s own policies. The practice threatens to hasten the arrival of a glitchy, spammy internet that is overrun by AI-generated content, as well as wasting massive amounts of ad money.

      • The AtlanticThe Monk Who Thinks the World Is Ending

        For a monk seeking to move us beyond narrative, Forall tells a terrifying story. His monastery is called MAPLE, which stands for the “Monastic Academy for the Preservation of Life on Earth.” The residents there meditate on their breath and on metta, or loving-kindness, an emanation of joy to all creatures. They meditate in order to achieve inner clarity. And they meditate on AI and existential risk in general—life’s violent, early, and unnecessary end.

        Does it matter what a monk in a remote Vermont monastery thinks about AI? A number of important researchers think it does. Forall provides spiritual advice to AI thinkers, and hosts talks and “awakening” retreats for researchers and developers, including employees of OpenAI, Google DeepMind, and Apple. Roughly 50 tech types have done retreats at MAPLE in the past few years. Forall recently visited Tom Gruber, one of the inventors of Siri, at his home in Maui for a week of dharma dinners and snorkeling among the octopuses and neon fish.

      • BW Businessworld Media Pvt LtdTwitter [Cracker] Sentenced To 5 Years In Prison For 2020 Breach

        O'Connor, aged 24, pleaded guilty to a series of cybercrimes, including carrying out a SIM-swapping attack targeting a TikTok account with millions of followers. The [breach] resulted in unauthorised access to the backend of Twitter, compromising the accounts of prominent individuals such as Elon Musk, Bill Gates, Barack Obama, and over 100 other notable users.

      • Windows TCO

    • Security

      • Sweetwater Union High School District confirms data breach caused outages in February [Ed: Probably Windows, but no details given]

        The Sweetwater Union High School District has confirmed a hack was the cause of a days-long system outage at their facilities, saying the personal information of employees, students, and families was accessed and taken.

        The update comes four months after the incident. On Friday afternoon, the Sweetwater Union High School District sent out a release about a security incident that left students and staff without email and internet access for days in February.

        "First of all, it hasn't even been sent to us employees," said Katina Rondeau, a teacher in the district.

      • IT WireCommonwealth Bank outage affects all services, cause unknown
        Credit cards issued by the bank have been declined and direct debits have not been going through.

        In a statement, the bank said: "We are aware some customers are experiencing intermittent difficulties accessing some of our services and we are urgently working to resolve these issues.

      • Privacy/Surveillance

      • Confidentiality

        • DeveverWeb-based cryptography is always snake oil

          A cryptosystem is incoherent if its implementation is distributed by the same entity which it purports to secure against.

          It is inherent to the model of the web platform that the code which implements a client-side web application is distributed by the given website. Thus the client-side code is always distributed by the operator of the web server.

          In other words, web-based “E2E” applications claim to secure against malice on the part of the server operator using encryption implemented in client-side JavaScript, but this is obviously not true, since if the server operator was malicious, they could just push different client-side JavaScript. (Conversely, entities other than the server operator are secured against via use of TLS, so there is no additional benefit to “E2E” if you trust the server operator.)

    • Defence/Aggression

    • Environment

      • The AtlanticThe Loss of Spring Is Disastrous

        After the strange start to 2023, he says, the community, including climate scientists, “now appreciates, a little bit more than before, that spring matters.” Without it, water supplies, ecosystems, agriculture, and more get out of whack. “We got a little bit more complete and nuanced view of how all this works,” Bond says.

        Here’s what we learned from this year’s skipped spring: [...]

      • New York TimesMany Future Storms May Dump 50% More Rain, Overwhelming City Drains

        In some of the nation’s most populous areas, hazardous storms can dump significantly more water than previously believed, new calculations show.

      • New York TimesBangladesh Offers a Glimpse of the Water Crises of Tomorrow

        Bangladesh, a river delta nation, is on the front line of climate change. Its coping strategies could offer lessons for the wider world.

      • AxiosTexas' record heat wave enters 3rd week as storms cause power outages across southern U.S.

        Over 50 million people in the southern U.S. were under heat advisories and many others were facing the threat of severe weather that spawned tornadoes and thunderstorms over the weekend and into Monday.

      • Michael West MediaMinerals project pipeline could throttle climate action

        More mining not less is needed to support the world’s climate change targets and avert a clean energy shortage, a global summit has been told.

        The shift to new energy systems is gaining momentum and unlike previous transformation it relies on critical minerals and rare earths, Resources Minister Madeleine King said on Monday at a mining symposium in Brisbane.

    • Finance

    • AstroTurf/Lobbying/Politics

      • IT WireOne-third of Australian IT leaders doubt their IT infrastructure is ready for AI: survey

        More than one-third of Australian IT leaders (35%) believe their existing IT infrastructure is not fully prepared for the demands of artificial intelligence (AI) technology, despite its widespread adoption across industries, according to the Equinix 2023 Global Tech Trends Survey.

      • Carl SvenssonThe Future of the Software Industry

        I've previously written about the possible future of FOSS software and, in many of my texts, mumbled about the bleak future of the software business in general. I've thought about writing about this for a long time, but for various reasons deemed it uninteresting. Yet, I keep ruminating on it. Here are some unsorted thoughts, loosely linked together to form a whole. These are guesswork theories at best, but nevertheless, it seems a pattern is emerging from which conclusions might be drawn.

      • BW Businessworld Media Pvt LtdGoogle, Amazon Announce Big After PM Modi’s Hi-tech Handshake

        After Prime Minister Narendra Modi's recent official visit to the western superpower, three US tech titans announced significant investments in India. For the development of Indian technology, Amazon, Google, and Microsoft have pledged financial investments and technological collaboration.

      • BW Businessworld Media Pvt LtdInfosys To Partner With Danske Bank In $454 Mn Deal

        As part of the agreement, Infosys will collaborate closely with Danske Bank to expedite the bank's technological transformation. Furthermore, Infosys will acquire Danske Bank's IT centre in India, which currently employs over 1,400 professionals. This acquisition will enable Infosys to leverage the expertise of the existing workforce and expand its capabilities in providing cutting-edge IT solutions and services.

      • India TimesIT industry needs guardrails to weed out graft: Staffing experts

        Experts also said that cases of bribery for recruitment could have gone up during 2021-22, just like moonlighting, when tech talent witnessed accelerated demand and attrition rates hit record highs. During fiscal 2022, top four Indian IT service firms – TCS, Infosys, Wipro and HCLTech – hired more than 220,000 people between them. A significant part of this number hired straight from campuses and staffing firms have no role to play in that recruitment.

      • Hong Kong Free PressSecurity law does not impact freedom of assembly, Hong Kong justice minister claims

        The Beijing-imposed national security law does not impact citizens’ freedom of assembly, Hong Kong’s justice minister Paul Lam claimed on Sunday. However, in his interview with iCable, he added that “more radical actions” such as blocking roads might not be a violation of the sweeping security legislation, they could violate other laws.

      • AxiosBiden admin reverses Trump policy that allowed funding to research in Israeli settlements

        The Biden administration notified Israel two weeks ago that it was reimposing a ban that prohibits U.S. taxpayer funding from being used in any research and development or scientific cooperation projects conducted in Israeli settlements in the occupied West Bank, according to three U.S. and Israeli officials.

        Why it matters: The Biden administration’s decision reverses a Trump administration policy from late 2020 that allowed U.S. taxpayer funding to be used for science and technology projects in the settlements for the first time since 1967.

      • France24Germany’s far-right AfD party wins historic victory in local election

        Germany's far-right AfD won its first district election Sunday, a further boost to the anti-immigration party as it surges to record highs in opinion polls.

      • France24Guatemala€ heads to the polls€ in hotly contested presidential election

        Guatemalans€ headed to the polls on Sunday€ in a hotly contested presidential election dominated by concerns over corruption, the exclusion of a leading candidate and the cost of€ living, with the vote set€ to result in a second round run-off in August.

      • France24Greece elections: Mitsotakis clinches second term as PM, hails ‘safe majority’ in parliament

        Conservative leader Kyriakos Mitsotakis won Greece's national elections on Sunday with a clear majority, clinching a second term with what he called a "strong mandate" that would allow his party to govern alone.

      • JURISTCambodia Parliament amend election law to penalise citizens who boycott July election

        The National Assembly of Cambodia amended on Friday their election laws to impose criminal liability on citizens who disrupt the election in€  July. Deputy Prime Minister of Cambodia Samdech Krolahom Sar Kheng stated that the amendment stipulates individuals must vote in order to be eligible to run for office.

      • Misinformation/Disinformation/Propaganda

        • The Register UKEurope seeks to punish Putin's infowar pals with bans on Russian tech firms

          The IT firms Europe wants to harm work with Russia's Federal Security Service (FSB) and/or Russian Ministry of Industry and Trade and hold clearances that make them privy to state secrets or permitted to work on weapons and other military equipment. A new criterion for existing sanctions means those companies can be cut off from the global financial system and otherwise made persona non grata for commercial and public entities with ties to the EU.

        • The Straits TimesAustralia plans huge fines if big tech giants fails to tackle disinformation

          Owners of platforms like Facebook, Google, Twitter and TikTok would face penalties worth up to 5 per cent of annual global turnover.

    • Censorship/Free Speech

      • US News And World ReportSalman Rushdie and Cheryl Strayed Among Endorsers of Anti-Censorship Initiative

        With book bannings surging nationwide over the past two years, the library and publishing associations are urging “all members of the book community" to affirm their commitment to the June 1953 declaration, which includes such propositions as ”It is in the public interest for publishers and librarians to make available the widest diversity of views and expressions, including those that are unorthodox, unpopular, or considered dangerous by the majority."

      • NYOBIreland: Reporting about DPC procedures soon a crime! Irish Parliament can stop last-minute "gag order" amendment.

        In a surprising last-minute amendment to the otherwise innocuous "Courts and Civil Law (Miscellaneous Provisions) Bill 2022" from September 2022 the Irish Government added a provision that would allow the Irish DPC to declare almost all its procedures "confidential". Section 26A would make most reporting about procedures or decisions by the DPC a crime. Speaking about outlandish claims by "big tech" or unfair procedures that often concern millions of users would equally become a crime. The Amendment has to be approved by the Irish Parliament on Wednesday.

      • ReasonStart the Death Watch for the Overbreadth Doctrine

        United States v. Hansen signals the Court is not willing to "strike down" laws that may, hypothetically, burden someone else's speech rights.

      • Torrent FreakPublishers Carpet-Bomb IPFS Gateway Operators With DMCA Notices

        The Interplanetary File System provides technical resilience against censorship but, for those who offer IPFS gateways, pressure to self-censor is mounting. Reports indicate that major publishing companies are carpet-bombing these volunteers with tens of thousands of DMCA notices, despite being fully aware that they are not responsible for the content in question and cannot take it down. One gateway operator has already called it quits.

      • ReasonThe First Amendment and Refusals to Deal

        Here's a draft of my article, on the constitutionality of anti-BDS laws and other related matters, forthcoming in a symposium at The University of the Pacific Law Review.

    • Freedom of Information / Freedom of the Press

      • ScheerpostWhy Julian Assange Must Be Freed

        When governments become authoritarian, they inspire resistance. Techniques must then be developed to repel that resistance. Those techniques must then be concealed.

        In short: the worse a country is, the more secrets it has. We have a lot of secrets now.

        [...]

        What is conspiracy to obtain such information? We have a word for that. It’s called journalism.

        My government wants to put Julian Assange in jail for 175 years for practicing journalism. The government of this country, the U.K., is going to allow it to happen.

    • Civil Rights/Policing

    • Internet Policy/Net Neutrality

    • Monopolies

      • Copyrights

        • Federal News NetworkBET Awards delivering party-like celebration of 50 years of hip-hop and its many styles

          A masked Lil Uzi Vert has opened the 2023 BET Awards on a platform suspended from the ceiling and jumped into a pyrotechnic-filled kickoff performance the quickly turned into a celebration of hip-hop’s early years. Then came a hip-hop history lesson: DJ Kid Capri walked the audience through a medley of the earliest days of New York City ’80s rap culture featuring The Sugarhill Gang’s “Rapper’s Delight,” MC LYTE’s “Cha Cha Cha”, D-NICE’s “Call ME D-Nice” and Big Daddy Kane’s “Raw,” into a partial cover of “Just A Friend,” an homage to the late great Biz Markie. The show is being broadcast live from Los Angeles' Microsoft Theater.

        • Digital Music NewsBipartisan Congressional Songwriters Caucus Relaunched

          A bipartisan Congressional Songwriters Caucus has been reformed, with a focus on policies that support independent songwriters and intellectual property protections. Congressman Ted Lieu (D-CA) and Congressman Ben Cline (R-VA) relaunched the caucus and will serve as co-chairs. To celebrate the event, both Congressmen welcomed songwriters and representatives from songwriter advocacy groups to Capitol Hill.



Recent Techrights' Posts

Google Has Mass Layoffs (Again), But the Problem is Vastly Larger
started as a rumour about January 2025
Electronic Frontier Foundation Defends Companies That Attack Free Speech Online (Follow the Money)
One might joke that today's EFF has basically adopted the same stance as Donald Trump and has a "warm spot" for BRICS propaganda
 
Gemini Links 22/12/2024: Solstice and IDEs
Links for the day
BetaNews: Microsoft Slop is Your "Latest Technology News"
Paid-for garbage disguised as "journalism"
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, December 21, 2024
IRC logs for Saturday, December 21, 2024
Links 21/12/2024: EU on Solidarity with Ukraine, Focus on Illegal and Unconstitutional Patent Court in the EU (UPC)
Links for the day
[Meme] Microsofters at the End of David's Leash
Hand holding the leash. Whose?
Deciphering Matt's Take on WordPress, Which is Under Attack From Microsofters-Funded Aggravator
the money sponsoring the legal attacks on WordPress and on Matt is connected very closely to Microsoft
Gemini Links 21/12/2024: Projections, Dead Web ('Webapps' Replacing Pages), and Presentation of Pi-hole
Links for the day
American Samoa One of the Sovereign States Where Windows Has Fallen Below 1% (and Stays Below It)
the latest data plotted in LibreOffice
[Meme] Brian's Ravioli
An article per minute?
Links 21/12/2024: "Hey Hi" (AI) or LLM Bubble Criticised by Mainstream Media, Oligarchs Try to Control and Shut Down US Government
Links for the day
LLM Slop is Ruining the Media and Ruining the Web, Ignoring the Problem or the Principal Culprits (or the Slop Itself) Is Not Enough
We need to encourage calling out the culprits (till they stop this poor conduct or misconduct)
Christmas FUD From Microsoft, Smearing "SSH" When the Real Issue is Microsoft Windows
And since Microsoft's software contains back doors, only a fool would allow any part of SSH on Microsoft's environments, which should be presumed compromised
Paywalls, Bots, Spam, and Spyware is "Future of the Media" According to UK Press Gazette
"managers want more LLM slop"
On BetaNews Latest Technology News: "We are moderately confident this text was [LLM Chatbot] generated"
The future of newsrooms or another site circling down the drain with spam, slop, or both?
"The Real New Year" is Now
Happy solstice
Microsoft OSI Reads Techrights Closely
Microsoft OSI has also fraudulently attempted to censor Techrights several times over the years
"Warning About IBM's Labor Practices"
IBM is not growing and its revenue is just "borrowed" from companies it is buying; a lot of this revenue gets spent paying the interest on considerable debt
[Meme] The Easier Way to Make Money
With patents...
The Curse (to Microsoft) of the Faroe Islands
The common factor there seems to be Apple
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, December 20, 2024
IRC logs for Friday, December 20, 2024
Gemini Links 21/12/2024: Death of Mike Case, Slow and Sudden End of the Web
Links for the day
Links 20/12/2024: Security Patches, Openwashing by Open Source Initiative, Prison Sentence for Bitcoin Charlatan and Fraud
Links for the day
Another Terrible Month for Microsoft in Web Servers
Consistent downward curve
LLM Slop Disguised as Journalism: The Latest Threat to the Web
A lot of it is to do with proprietary GitHub, i.e. Microsoft
Gemini Links 20/12/2024: Regulation and Implementing Graphics
Links for the day
Links 20/12/2024: Windows Breaks Itself, Mass Layoffs Coming to Google Again (Big Wave)
Links for the day
Microsoft: "Upgrade" to Vista 11 Today, We'll Brick Your Audio and You Cannot Prevent This
Windows Update is obligatory, so...
The Unspeakable National Security Threat: Plasticwares as the New Industrial Standard
Made to last or made to be as cheap as possible? Meritocracy or industrial rat races are everywhere now.
Microsoft's All-Time Lows in Macao and Hong Kong
Microsoft is having a hard time in China, not only for political reasons
[Meme] "It Was Like a Nuclear Winter"
This won't happen again, will it?
If You Know That Hey Hi (AI) is Hype, Then Stop Participating in It
bogus narrative of "Hey Hi (AI) arms race" and "era/age of Hey Hi" and "Hey Hi Revolution"
Bangladesh (Population Close to 200 Million) Sees Highest GNU/Linux Adoption Levels Ever
Microsoft barely has a grip on this country. It used to.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, December 19, 2024
IRC logs for Thursday, December 19, 2024