01.12.22

Links 12/1/2022: IPython 8.0, Iranian Attacks on Microsoft Windows

Posted in News Roundup at 6:43 pm by Dr. Roy Schestowitz

  • GNU/Linux

    • Desktop/Laptop

      • 6 Key Differences Between macOS and Linux – LinuxBuz

        The most popular operating system for computers is Windows. According to StatCounter, Windows has more than 30 percent of the global market share. macOS and Linux are behind, but it does not mean that the two are inferior to MS Windows.

        If anything, these two operating systems offer a plethora of neat features and fit profiles of certain individuals and businesses. Ultimately, a lot comes down to one’s needs.

        At the same time, someone might be looking to try a different OS, and switching from Windows to Linux or macOS could be just the thing.

        Knowing the key differences between the two will make you decide easier, and you can find these differences below.

    • Audiocasts/Shows

      • Fast Kernel Headers Improves Compile Times By 50% – Invidious

        There are some absolutely crazy people working on the Linux kernel and Ingo Molnar is one of them and he is working on a project that he dubs fast kernel headers which improves kernel build times by over 50%

      • Useless Use Of Cat Isn’t Useless – Invidious

        Every time I make a video where I’m doing stuff at the command line, inevitably I get the troll comment about the “useless use of cat” (UUOC). What’s weird (and mildy annoying) about the folks crying “UUOC” is that my useless use of cat is not useless. I have my reasons!

      • FLOSS Weekly 663: UNIX as a Second Language – Sandra Henry-Stocker

        Sandra Henry-Stocker, @bugfarm on Twitter, whose column for Network World is Unix as a Second Language, joins Doc Searls and Dan Lynch from her home in the mountains of Western Virginia to share wisdom gathered from more than 30 years administering and writing about Unix and Linux systems. The topics range widely to adjacent subjects, including astronomy, containers and lesser operating systems.

      • Fakers and Takers | Coder Radio 448

        Was he justified? Our thoughts on the dev who corrupted libraries in NPM for millions of users with his political statement about free software.

        Plus how Google blew a once-in-a-lifetime opportunity to control mobile messaging.

      • Cutefish Desktop Environment | A Brand New Linux Desktop With Stunning Looks & Modern Design! (2022) – Invidious

        Cutefish is an upcoming desktop environment that’s going to be radically different from anything you’ve experienced till now. Stunning looks, modern design, and intuitiveness that’s basically instinct, drive the development of this new and premium interface. I’ve installed the beta version of Cutefish and the way it feels to use this interface has left me very impressed. The idea behind this project is to provide a high-quality interface for Linux newcomers, that is easy to navigate, equipped with all the tools needed for everyday usage but leaves out the complex things which might overwhelm the users.

    • Kernel Space

      • Linux 5.17 Adds Support For “The First Usable, Low-Cost RISC-V Platform”

        In addition to the prompt support for Qualcomm’s Snapdragon 8 Gen 1, another exciting milestone for the in-development Linux 5.17 kernel is introducing mainline support for the StarFive JH7100, which has been trying to make its debut as the first usable and low-cost RISC-V platform.

        The StarFive JH7100 SoC is powered by SiFive’s U74 dual-core 64-bit RISC-V processor running at 1.5GHz while having 4K display support but no integrated 3D GPU at this point. The StarFive JH7100 was announced last year as a low-cost RISC-V SoC. The performance out of the SiFive U74 cores is reported to be in similar ball park to Arm Cortex-A55 cores.

    • Applications

      • Watch Command in Linux [with Examples]

        The watch command in Linux is used to run other commands on a regular interval, and then it displays the output in the terminal. Here’s how to use it!

        Sometimes, while working on the Linux command line, you might want to execute a command repeatedly so as to track any change in output. Luckily, there is a command-line utility that lets you do this.

        With the Linux watch command, you can track the changes in the output from time to time. It is beneficial for reflecting the real-time view of events that are happening on an operating system.

        The watch command comes installed, by default, on nearly all Linux distributions. It is useful when you need to monitor changes in a command output over time. So instead of reading the whole output, you can keep an eye on the changes.

      • Say Hello to Warble, a ‘Wordle’ Clone for elementary OS – OMG! Ubuntu!

        It was inevitable that the popularity of viral word guessing game Wordle would inspire clones, and thus only a matter of time before one of them popped up on Linux.

        And lo, it has.

        elementary OS gets to call first-dibs with Warble. Built by Andrew Vojak, Warble is described as a “native Linux word-guessing game built in Vala and Gtk for elementary OS.”

        The aim? Just like Wordle (and the 80s gameshow Lingo) you need to figure out what a mystery five letter word is in as few guesses as possible. You smush in a (valid) word and see if it matches. Letters you get in the correct place are green (so you know they go there again), while letters that are the word but not in the right location are yellow.

      • 5 Best Open-Source Writing Software for Linux – Linux notes from DarkDuck

        Linux is fundamentally an open-source Operating System. Using open-source software on Linux is as peaceful as the Himalayas. Here we’ve discussed 5 such software that could be the best friend of a writer if done right.

      • Tellico: Free Open-source Collection Manager

        If you collect anything, then you need to keep records to organize and track your collections.

        Let’s say you collect books, movies, stamps, or even coins, as your collection keeps growing, it will become difficult to organize.

        Here comes Tellico, an outstanding collection manager app that helps you catalog everything and update all records when required.

      • Projectpad: The tool that every developer should have

        Projectpad is constructed with Rust programming language for Linux and Unix systems, which can be installed either by building from source or using the Flatpak package from Flathub.

    • Instructionals/Technical

      • Top 10 Ansible tutorials of 2021 | Enable Sysadmin

        When I started my career in IT over 25 years ago, automation wasn’t a popular concept. However, sysadmins would still automate parts of their jobs to increase their efficiency and effectiveness in managing their IT environments. At the time, writing scripts was the common way to address repetitive tasks, allowing admins to focus on other issues.

        While scripts can get you a long way, Ansible is a versatile solution that makes automation even easier and more robust. Ansible abstracts the boring part of writing scripts away so that you can focus on your business needs instead of writing code to handle exceptions and special cases.

        Looking at the top 10 Ansible articles from 2021, I see a common theme. Most of these articles are introductory, which means that IT professionals in general, and sysadmins in particular, are looking to learn Ansible and start automating their environment.

        If this describes you, or if you’ve already started automating and are looking to improve your skills, this list contains some valuable information. Make sure to take a look at it.

      • Installing the latest syslog-ng on Ubuntu and other DEB distributions – Blog – syslog-ng Community – syslog-ng Community

        As a follow-up to my RPM blog, here are instructions installing syslog-ng Open Source Edition (syslog-ng OSE) on the Debian / Ubuntu version. If you read my previous blog, skip to the installation part at the end, otherwise: read on.

        The syslog-ng application is part of all major Linux distributions, and you can usually install syslog-ng from the official repositories. If you use just the core functionality of syslog-ng, use the package in your distribution repository (apt-get install syslog-ng), and you can stop reading here. However, if you want to use the features of newer syslog-ng versions (for example, send log messages to Elasticsearch or Apache Kafka), you have to either compile the syslog-ng from source, or install it from unofficial repositories. This post explains you how to do that.

      • Adjusting NordVPN Settings on Linux

        NordVPN is one of the most common VPN providers in the world. They have a Linux version which works on both RPM-based and Debian-based distributions.

        Sadly, they do not provide a GUI client for Linux, only a command line interface. That’s why it could be tricky to adjust NordVPN settings on Linux.

      • Remove metadata from pdf file (e.g. creation date)
      • Change dates/timestamps of all files in the current folder
      • Looking for Something? How to grep Multiple Strings in Linux

        The Linux terminal is full of useful commands, but few are as powerful as the seemingly simple grep. It stands for Global Regular Expression Print, printing the results of user-defined system searches for collections of characters.

        grep is extremely powerful but can be quite intimidating to use, so today, you’ll learn some basics. If you are looking for some information within the documents on your machine, usually, you’ll be looking for several words at once.

        This article focuses on how to search multiple strings using grep and will show you a few similar tips and tricks for using grep in general.

      • How to install Vivaldi Browser on AlmaLinux | Rocky Linux 8 – Linux Shout

        Learn the commands to install the Vivaldi browser on RHEL based AlmaLinux 8 or Rocky Linux 8 using the command terminal.

        Vivaldi is an interesting alternative to Chrome, Firefox, Opera, and other popular browsers. And like most of the other web browsers, this one is also available for Linux. The USP of Vivaldi is it offers a refreshing experience instead of the same monotonous approach. Instead of trying to please all users, the Norwegian company Vivaldi Technologies focuses on users for whom there are never enough functions. The idea for such a browser alternative came from Opera users who were dissatisfied with the radical slimming of “their” browser. The browser is now available for Windows, Mac, Linux, and Android app. Vivaldi’s in-built Mail client, a calendar, nice tab management, and a feed reader are some interesting features.

      • How to install Second Life on a Chromebook in 2022

        Today we are looking at how to install Firestorm Second Life on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

        This tutorial will only work on Chromebooks with an Intel or AMD CPU (with Linux Apps Support) and not those with an ARM64 architecture CPU.

      • How to Connect to a Debian 10/11 Server via Remote Desktop Connection using xRDP – ByteXD

        xRDP is a free and open-source implementation of Windows Remote Desktop Protocol (RDP), that started in 2004.

        With RDP you can connect to a another computer over a network and control it through its graphical user interface, and use it almost as if you were sitting right in front of it. You also control the remote machine from operating systems that support RDP, which includes Windows, Mac, Linux, Android and iOS.

        xRDP allows non-Microsoft operating systems such as Linux and BSD to provide a fully-functional RDP-compliant remote desktop environment.

        The xRDP server is full-screen and doesn’t require any special client-side software to be installed. xRDP allows RDP clients to present an X Windows desktop to the user. It works by bridging graphics from an X Windows system (Unix-like OS) to the client (the one receiving commands) and relaying controls back from the client to X.

      • How to install Google Chrome on Elementary OS 6.0 – Invidious

        In this video, we are looking at how to install Google Chrome on Elementary OS 6.0.

      • How to Install and Configure Memcached on OpenSUSE Leap 15.3

        In this guide we will learn how to install and configure Memcached in ROpenSUSE Leap 15.3.

        Memcached is an open source, distributed memory object caching system. The system caches data and objects in memory to minimize the frequency with which an external database or API must be accessed. This alleviates database load and speeds up dynamic Web applications. It offers a mature, scalable, open-source solution for delivering sub-millisecond response times making it useful as a cache or session store. Memcached is a popular choice for powering real-time applications in Web, Mobile Apps, Gaming, Ad-Tech, and E-Commerce.

        Unlike databases that store data on disk or SSDs, Memcached keeps its data in memory. By eliminating the need to access disks, in-memory key-value stores such as Memcached avoid seek time delays and can access data in microseconds. Memcached is also distributed, meaning that it is easy to scale out by adding new nodes. And since Memcached is multithreaded, you can easily scale up compute capacity. As a result of its speed and scalability as well as its simple design, efficient memory management, and API support for most popular languages Memcached is a popular choice for high-performance, large-scale caching use cases.

      • How to install and configure Squid Proxy on OpenSUSE Leap 11 – Citizix

        In this guide we will learn how to install and configure Squid Proxy server on a OpenSUSE Leap server.

        Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes a great server accelerator. It runs on most available operating systems.

        Squids reverse proxy is a service that sits between the Internet and the webserver (usually within a private network) that redirects inbound client requests to a server where data is stored for easier retrieval. If the caching server (proxy) does not have the cached data, it then forwards the request on to the web server where the data is actually stored. This type of caching allows for the collection of data and reproducing the original data values stored in a different location to provide for easier access.

      • How to install and Configure Mariadb 10 in FreeBSD 13

        In this guide we will learn how to install and configure MariaDB 10 in FreeBSD 13.

        MariaDB is an open-source one of the most popular relational database management system (RDBMS) that is a highly compatible drop-in replacement of MySQL. It is built upon the values of performance, stability, and openness, and MariaDB Foundation ensures contributions will be accepted on technical merit.

        MariaDB was developed as a software fork of MySQL in 2009 in response to Oracle’s acquisition of MySQL. MariaDB intends to remain free and open-source software under the GNU General Public License. It is part of most cloud offerings and the default in most Linux distributions.

      • How To Install Linux Kernel 5.16 In Rocky Linux 8 / Fedora 35 | Tips On UNIX

        Linus Torvalds announced the Linux Kernel 5.16 after a few weeks of development and it is available for general usage. Linux Kernel 5.16 released with new features, security and support.

        It contains the new system feaures are futex_waitv() which improves the Gaming performance in Native Linux , for the compete changelog refer the link

        This tutorial will be helpful for beginners to install Linux kernel 5.16 in Rocky Linux 8 , AlmaLinux 8 and Fedora 35

        This tutorial is for educational purpose, please do not install the kernel in PRODUCTION Server.

      • How to use Wireshark for capturing and analyzing network packets

        Wireshark (formerly Ethereal) is a FOSS (free and open-source software) for network protocol analyzer. One can use it to troubleshoot network issues, analyze communication protocols like TCP, DNS, HTTP etc.

      • How to install UbuntuDDE Remix 21.10
      • How to Use the find Command in Linux

        The Linux find command is great at searching for files and directories. But you can also pass the results of the search to other programs for further processing. We show you how.

      • How to Install Vim in a Docker Container

        You are likely to not find Vim editor installed in your Docker container. Here’s how to get it.

        It’s almost certain that the Linux distribution you are running in a Docker container doesn’t have Vim or any other text editor installed by default.

      • How to Install Drupal on Ubuntu 20.04 – VITUX

        Drupal is an open-source and popular content management tool that is the foundation of many websites across the internet. It comes with a lot of modules that allow the creation of any and every type of website.

        In this post, we are going to explain how to install the Drupal content management tool on Ubuntu OS.
        Note: The steps mentioned here have been tested on Ubuntu 20.04 LTS.

      • How To Install Nload on Ubuntu 20.04 LTS – idroot

        In this tutorial, we will show you how to install Nload on Ubuntu 20.04 LTS. For those of you who didn’t know, Nload is a command-line-based real-time network traffic and bandwidth usage monitor. It visualizes the in and outgoing traffic using two graphs and provides additional info like the total amount of transferred data and min/max network usage.

        This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of Nload monitors network traffic and bandwidth usage on Ubuntu 20.04 (Focal Fossa). You can follow the same instructions for Ubuntu 18.04, 16.04, and any other Debian-based distribution like Linux Mint.

    • Games

      • Red Alert Remastered – There goes my free time

        The 1990s saw the emergence of the quintessential Real Time Strategy (RTS) game. Starting with Dune II, and finishing with Age of Empires II, the genre was born, defined, sculpted. Indeed, the RTS titles of the era, Warcraft, Command & Conquer and a few others became the gold standard of the build-research-destroy computerized fun, never eclipsed despite advancement in software, graphics and availability. Needless to say, I’ve played them all.

        The aforementioned gold standard is so high that it seems impossible to beat. In fact, many a game company has simply stopped trying, and instead decided to play the game of nostalgia instead. Release these supreme classics as modern titles, complete with all the tech bits that have changed in the past 20 years. Mostly extra power and high-def graphics. Age of Empires II and its Definitive Edition are a great example of a timeless success. Now, we also have Red Alert Remastered, the oldie goldie in 4K.

      • Godot Engine – Godot Showcase – RPG in a Box developer talks about his experience

        Welcome to a new Godot showcase developer interview to start off the new year! This time, we asked Justin Arnold about his experience developing and releasing his project RPG in a Box. This “engine within an engine” demonstrates that Godot is not only capable for game development, but also for creating applications with complex user interfaces.

        [...]

        Hello! My name is Justin Arnold and I’m a solo developer working on RPG in a Box. I’ve always loved programming since my dad got me interested in learning BASIC on our C64 as a child. As I got older I developed a strong desire to build an RPG-focused tool that would allow others to easily create their own worlds and adventures. This idea has gone through several iterations over the past two decades and I’m excited to finally be bringing it to fruition through RPG in a Box!

      • Linux-based Standalone VR Headset Boasts PC Specs with a Price to Match, Kickstarter Coming Soon – Road to VR

        SimulaVR, the startup behind its own open-source VR Linux distro, is creating a VR headset that aims to bring the full power of a PC to the standalone format. The powerful little standalone is definitely going to cost a pretty penny though, as it’s set to include a detachable compute unit featuring the guts of an Intel 11th gen NUC, which sports a Core i7 mobile processor.

        It’s been about a month since we first learned about Simula One, a headset that’s squarely targeted at developers and people who want to use Linux natively on a virtual screen for work (re: not gamers or consumers). Now the company has released price and specs ahead of its Kickstarter campaign, which is slated to launch at some point this month.

      • Looks like Monster Hunter Rise runs well on Linux with Proton | GamingOnLinux

        Monster Hunter Rise has just released on Steam today from Capcom and the good news is – it appears to run very nicely out of the box with Steam Play Proton on Linux. That’s another tick in the box for a big AAA title.

        Tested with Proton Experimental, the only issue currently encountered is a small intro video not playing. This is a reoccurring issue and will be for the Steam Deck, for titles that use things like Media Foundation. If such things bother you, it worked just fine with Proton GE which you can easily download with ProtonUp-Qt.

      • Nintendo Switch emulator Yuzu gets big graphical improvements, Flatpak fixes | GamingOnLinux

        Yuzu is another incredibly promising open source project, emulating the Nintendo Switch which is not exactly a small job (not that emulation ever is) and it’s improving at a rapid pace.

        Some good news for NVIDIA users came, with some major problems now being solved. Recently NVIDIA dropped support for some older cards, and the driver changes towards it introduced issues for Yuzu. The devs explain “The root of the problem in NVIDIA’s drivers seems to be in negation of integer and floating point values, and bitwise conversions of input values.” – but thankfully all known issues have been worked around. As it turns out, what they ended up doing fixes it for Intel too and was also an optimization so they’re now doing it for all APIs.

      • Blending 2D and 3D together, puzzle-platformer Neko Ghost, Jump! is out | GamingOnLinux

        Neko Ghost, Jump! shows you what you can get when you blend together new and old, with this platformer having both a 2D and 3D mixture of gameplay in each level.

        This is no gimmick either. Levels are designed around needing both 2D and 3D viewpoints, with some areas only being accessible with one viewpoint. Not only that, you also have physical and ghost forms to switch between to solve puzzles and combat enemies too.

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • KDE Plasma 5.24’s Default Wallpaper is Unveiled

          If you’ve been reading this site for a while you may have noticed that I’m rather fond of desktop wallpapers, particularly the ‘default’ ones used by Ubuntu and related distros, and those shipped by desktop environments like GNOME and KDE Plasma.

          I don’t profess that wallpapers are interesting or worthy of as much attention as I give them, but hey: we all have our little quirks.

    • Distributions

      • PCLinuxOS/Mageia/Mandriva/OpenMandriva Family

        • Additional benefits for PCLinuxOS users.

          It should be noted that users of PCLinuxOS have the following services available:
          – 25GB Cloud storage
          – Email
          – Graphic Image Hosting
          – Chat messenger

      • IBM/Red Hat/Fedora

        • Flatpak 1.12.3 Released with Important Security Fixes, Support for More PulseAudio Configs

          Flatpak 1.12.3 is an important update as it fixes two critical security issues found in Flatpak, such as CVE-2021-4386, a vulnerability that could allow a malicious repository to send invalid application metadata in a way that the app’s permissions are hidden during the installation.

          Also fixed is an issue affecting the flatpak-builder component of Flatpak, which can cause the flatpak-builder –mirror-screenshots-url commands to access files outside the build directory.

        • How Red Hat helps organizations build DevOps capabilities

          The beginning of any new year brings a wealth of new opportunities for growth and change, which is equally valid for organizations across all industries. So, rather than falling into the same old routines, now is the time to focus on integrating and practicing more robust DevOps approaches and updating archaic practices.

          Throughout 2021, Red Hat Services worked closely with customers and partners across many industries and engagements, both in-person and online, to provide consulting and technology solutions. These interactions have helped refine our observations, advancements, and key takeaways for future engagements, technology utilization, and implementation practices. Out of all of these, four stand out as the most significant focus areas that can bring the biggest impact to your organization’s DevOps plan in 2022.

        • Automating Postfix installation and configuration with RHEL System Roles

          Many organizations have a requirement to configure a mail transfer agent (MTA) on Red Hat Enterprise Linux (RHEL) servers. This is frequently done to enable servers to send out notifications or reports over email. For example, you might configure a script to email out a notification after an event occurs, or you might have a script to email out a monthly report after it is generated.

          RHEL 7, 8 and 9 provide two options for MTAs: Postfix and Sendmail. Sendmail has been deprecated, and this post will be focusing on Postfix.

          It is possible to install and configure Postfix on RHEL systems manually, following the documentation, however this can be time-consuming and prone to error. Red Hat introduced the postfix RHEL System Role to provide an automated solution to install and configure Postfix. The postfix RHEL System Role was introduced in RHEL 7.6 as a technology preview feature. With the release of RHEL 8.5, the postfix RHEL System Role is now fully supported.

      • Debian Family

        • Revisiting 2021

          2021 was quite challenging overall. It started with four weeks of distance learning at school. Luckily at least at school things got back to “some kind of normal” afterwards.

          [...]

          For obvious reasons plenty of concerts I was looking forward didn’t take place. With my parents we at least managed to attend a concert performance of Puccinis Tosca with Jonas Kaufmann at Schloßbergbühne Kasematten/Graz, and with the kids we saw “Robin Hood” in Oper Graz and “Pippi Langstrumpf” at Studiobühne of Oper Graz. The lack of concerts and rehearsals once again and still severely impacts my playing the drums, including at HTU BigBand Graz. :-/

          Grml-wise we managed to publish release 2021.07, codename JauKerl. Debian-wise we got version 11 AKA bullseye released as new stable release in August.

      • Canonical/Ubuntu Family

        • Ubuntu Linux 22.04 will be faster than ever on Raspberry Pi computers

          The Raspberry Pi series of single-board computers might be the most popular Linux-based PCs of all time, thanks to their super-low prices, educational resources, and versatility. The first few models weren’t that great at functioning like desktop computers, due to the low-power processors and limited RAM, but newer iterations (like the Raspberry Pi 4 with 8GB RAM) are perfectly capable budget PCs. Ubuntu, one of the most popular desktop Linux distributions, is now preparing some Pi-specific performance tweaks for the upcoming Ubuntu 22.04 release.

        • Ubuntu 22.04 Desktop Will be Able to Run on 2GB Raspberry Pi 4

          Ubuntu Desktop is available for Raspberry Pi 4 boards since Ubuntu 20.10 release. However, to get a comfortable experience and use it as a desktop/server, Canonical officially recommends 4/8 GB RAM variants of the board.

          After all, memory requirements by modern distributions are gradually increasing. So, it only makes sense not to expect a desktop setup with a 2 GB RAM Raspberry Pi board.

          But, it looks like Canonical has plans to make that happen with a feature enabled in Ubuntu 22.04 LTS, scheduled for release in April 2022.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • LibreOffice Calc Basics I: SUM, COUNT, AVERAGE

        This tutorial explains how you can work with Calc, the spreadsheet program of LibreOffice, by learning its basic formula examples. In this first part, we will learn the most basic ones namely SUM, COUNT and AVERAGE. Let’s start!

      • Open@RIT: Helping Students Embrace the Power of Open Source

        Creative, exciting applications of open source software can be found worldwide, and who better to share the details of new use cases than the practitioners themselves. In this blog series we’ll feature guests who told their open source stories during Practical Open Source Information (POSI) 2021, an online conference hosted by OSI.

        The Rochester Institute of Technology (RIT) not only offers a minor in free and open source software and free culture, but it also recently created an official Center of Excellence called Open@RIT. It’s dedicated to fostering the collaborative engine for faculty, staff, and students working on open source projects. The goal is to discover and grow the footprint of RIT’s impact on all things open across many disciplines, both within the university and beyond. This includes open source software, open data, open science, open hardware, and open educational resources and creative commons licensed efforts, which collectively they refer to as Open Work.

      • Results from the first new members campaign

        We did it! We’re welcoming 1,354 new members to the Open Source Initiative. The membership drive we launched at the end of 2021 surpassed our expectations. These new members are mostly “free” members and don’t have voting rights to elect the next board members; however, there is time to become a full member by the next election cycle in March.

        [...]

        The majority of traffic to the campaign was through the website, with social media traffic being quite small by comparison. The impact of social media on promotions like this is often overestimated. Social channels are great for engaging with the community, “reinforcing the brand”, and connecting with “influencers”: basically, social media helps make people aware that we exist, but isn’t a particularly effective tool to convince them to take an action. Therefore, we’ll emphasize our website for future promotions, and social media channels will continue to be a part of the promotional mix, but not the primary focus.

      • Web Browsers

        • Mozilla

          • Mozilla Firefox 96.0 Released! Significantly Reduced Main-thread Load

            Mozilla Firefox 96.0 was released today. The new release focuses on performance and security improvements.

            Firefox 96.0 significantly reduced the main-thread load, improved noise suppression and automatic gain control for better overall experience.

            It now enforces the Cookie Policy: Same-Site=lax by default which helps defend against Cross-Site Request Forgery (CSRF) attacks.

            The release also fixed some issues, including video quality degradation issues on certain sites, issue where WebRTC downgrades screen sharing resolution, and video intermittently drops SSRC. As well, there are various security fixes.

          • Linux Mint Announces Mozilla Partnership

            Linux Mint announced that it will keep Mozilla Firefox as its distribution’s default web browser, but with some major changes. It describes the deal as a “commercial and technical partnership.”

            “Linux Mint signed a new partnership with Mozilla,” the announcement post explains. “It’s a real pleasure for us to join forces with Mozilla and to start this partnership.”

            I’m not fully versed in the politics behind this new partnership, but it goes something like this: Linux Mint is based on Ubuntu, and is one of the more popular Linux distributions. It has offered Firefox as the default browser for years, but with Ubuntu switching to a new container-based Snap app packaging format that Mint is not a fan of, it needed to find a different distribution method. And it had been packaging Firefox itself using the .deb packaging technology.

            Going forward, Firefox will continue to be distributed through the official Linux Mint repositories, using .deb, but this work will be done by Mozilla. And that means there will be some changes to how the browser is configured. Instead of Mint’s highly customized install, Mint users will now get the Mozilla defaults.

      • SaaS/Back End/Databases

        • PostgreSQL experiment targets zero-downtime schema migration • The Register

          A Swedish developer has published code that promises to avoid application downtime during PostgreSQL schema migrations.

          Using “views” in the popular open-source database to encapsulate tables and create a versioned interface, Fabian Lindfors, a final year MSc student in computer science at Lund University, has produced a tool that he hopes can automate zero-downtime migrations.

      • Productivity Software/LibreOffice/Calligra

      • FSFE

        • Public Money? Public Code! brochure is now available in Spanish – FSFE

          A large part of our work is possible thanks to the contribution of our volunteers. This was not the exception. Our Public Money? Public Code! brochure is now translated into Spanish, and we hosted an event to share this great news with our community. GNUHealth, Pica Pica HackLab, Lliurex, Linkat, and KDE took part in our event.

          In the framework of our Public Money? Public Code! initiative, we have an exhaustive brochure dedicated to public administrations. It summarises the FSFE’s long-term expertise with additional knowledge from leading experts in various ICT areas. It helps readers understand Free Software and its benefits for a modern digital public infrastructure. Hot topics covered include the avoidance of vendor lock-in, improvement of IT security through openness, exploring different business models, handling of procurement issues, and learning from innovative approaches to smart cities.

          Now, thanks to the work of our volunteers, this brochure is also available in Spanish, which means a broader audience that can read about the benefits of modernising public infrastructure with public code in their own language, and that is a highlight to us.

          To share this good news, we organised an event dedicated to our Spanish speaking community. We had the participation of experts such as Luis Falcón, founder of GNUHealth, Ricardo Muñoz from Lliurex, Alexis Puente Montiel from Pica Pica HackLab, Francesc Busquets in representation of Linkat, and Aleix Pol Gonzalez, president of KDE. Our speakers and panelist also had the chance to discuss the challenges that still lie ahead for Free Software in the public sector with a special focus on Spain.

      • Programming/Development

        • Top Contributors to Qt Project in 2021

          2021 was a successful year for the Qt – we managed to do important releases like Qt 6.2 and Qt Creator 6 on time and with the planned content. That is however not only because of my colleagues at The Qt Company. A lot of community members are also contributing, be it by writing diligent bug reports, contributing patches, giving technical advise, or helping out other users in forums and mailing lists. Thanks to all of you – you are an important part of what makes Qt so great!

        • GCC 12 Shifting To Stage 4 Development – No Sign Of AMD Zen 4 Support – Phoronix

          The GNU Compiler Collection (GCC) that serves as the default system compiler on most Linux distributions is nearing its annual update with GCC 12. GCC 12 has been in a general bug fixing period since November while beginning next week will be onto its final phase of focusing just on regression and documentation fixes to the compiler.

          GCC 12 release manager Richard Biener announced that the general bug fixing “stage 3″ period will end on 16 January followed by the stage 4 period of just regression/documentation fixing. At the moment there are about 30 P1 regressions of the highest priority, 307 P2 regressions, and 279 P3 regressions.

        • 9 JavaScript/Node.js One-Liners You Should Know

          As the web and applications become more complex, JavaScript and Node.js are increasingly becoming commonplace requirements in a developer’s repertoire. To improve your code-foo and minimize the headaches you encounter, you can define some functions early in your code that quickly accomplish simple tasks.

        • 10 Best Web Development Frameworks to Use in 2022 [Updated]

          Frameworks have become an essential part of web development, as the standards of web applications are always rising, so does the complexity of the technology needed. It’s completely unreasonable to reinvent the wheel for such sophisticated techniques -assuming that you can reinvent all that. That’s why using frameworks endorsed by thousands of developers around the world is a very sensible approach for building rich and interactive web applications. A web app has a backend (server-side) and a frontend (client-side), so we discuss both best Backend frameworks as well as frontend frameworks.

        • Python

  • Leftovers

    • One Day University: How a Learning Company Adapted With the Pandemic

      Say what you will about the last two years, but it’s fascinating how quickly the future caught up with our immediate needs. We had to rebuild entire infrastructures, entire businesses, in the blink of an eye, and some were more successful at riding this unusual economic wave than others. (I repeatedly think how this never would have been possible even 10, 15 years earlier.) We haven’t really stepped back, as a society, and given these success stories their due. So, let’s do that. During the holiday break, I found myself chatting over Zoom with a founder of a company that three years ago was barely even digital in the sense that you might think of it—its approach was structured almost entirely around groups of people being in the same room. And in a matter of literal weeks, his company had to move the whole show onto webcams and chat rooms, and figure out a way to make it work. Somehow, they did—so well, in fact, that the business was acquired last year by a company that has always been digital. And I think the reason they pulled it off says a lot about the way we learn online. Today’s Tedium talks about One Day University, innovating on the fly, and the state of consumer-focused digital education.

    • An Oil Diffusion Vacuum Pump From Thrift Store Junk | Hackaday

      It seems like creating a vacuum should be a pretty easy job, but it turns out that sucking all the air out of something is harder than it seems. A cheap vacuum pump will get you part of the way there, but to really pull a hard vacuum, you need an oil diffusion pump that costs multiple tens of thousands of dollars.

      Or, you need a bunch of thrift store junk, a TIG welder, and a can of WD-40. At least that’s what [Lucas] put into his homebrew oil diffusion pump. The idea of such a contraption is to vaporize oil in a chamber such that the oil droplets entrain any remaining gas molecules toward an exhaust port. His low-budget realization of this principle involved a lot of thrift store stainless steel cookware, welded together with varying degrees of success, with liberal applications of epoxy to seal up any leaks. And an electric smores cooker for the heating element, which was a nice touch. The low-budget approach extended even to the oil for the pump; rather than shelling out for expensive specialty oil, [Lucas] distilled some from a WD-40 silicone spray lubricant.

    • Science

      • Regenerative Medicine: The Promise Of Undoing The Ravages Of Time | Hackaday

        In many ways, the human body is like any other machine in that it requires constant refueling and maintenance to keep functioning. Much of this happens without our intervention beyond us selecting what to eat that day. There are however times when due to an accident, physical illness or aging the automatic repair mechanisms of our body become overwhelmed, fail to do their task correctly, or outright fall short in repairing damage.

        Most of us know that lizards can regrow tails, some starfish regenerate into as many new starfish as the pieces which they were chopped into, and axolotl can regenerate limbs and even parts of their brain. Yet humans too have an amazing regenerating ability, although for us it is mostly contained within the liver, which can regenerate even when three-quarters are removed.

        In the field of regenerative medicine, the goal is to either induce regeneration in damaged tissues, or to replace damaged organs and tissues with externally grown ones, using the patient’s own genetic material. This could offer us a future in which replacement organs are always available at demand, and many types of injuries are no longer permanent, including paralysis.

      • Falling Down The Carbon Rabbit Hole | Hackaday

        Research projects have a funny way of getting blown out of proportion by the non-experts, over-promising the often relatively small success that the dedicated folks doing the science have managed to eke out. Scaling-up cost-effectively is one of the biggest killers for commercializing research, which is why recent developments in creating carbon nanotube transistors have us hopeful.

        Currently, most cutting-edge processes use FETs (Field Effect Transistors). As they’ve gotten smaller, we’ve added fins and other tricks to get around the fact that things get weird when they’re small. The industry is looking to move to GAAFETs (Gate All Around FET) as Intel and Samsung have declared their 3 nm processes (or equivalent) will use the new type of gate. As transistors have shrunk, the “off-state” leakage current has grown. GAAFETs are multi-gate devices, allowing better control of that leakage, among other things.

    • Hardware

      • Even desktops showed up on growth radar in global PC shipment stakes for 2021 [Ed: Faking 'growth' by comparing it to the worst (first) pandemic year]

        “2021 was a watershed year in the history of the PC market, with the PCs place at the center of work, learning and leisure truly cemented,” said Ishan Dutt, senior analyst at Canalys, in a statement.

        According to the figures, Lenovo declined 6.5 per cent in Q4 to 21.7 million units and HP was down 3 per cent to 18.64 million. Canalys didn’t indicate why either shrank but presumably it is related to the scarce supply of parts including integrated circuits and panels. We asked both vendors.

      • Rohde & Schwarz FSIQ Signal Analyzer IF-Filter Module Repair | Hackaday

        Who can’t resist snapping up a piece of really expensive laboratory testing gear for next to nothing when browsing eBay or similar? Maybe it’s giving you mournful eyes when browsing through a yard sale. Often such gear is sold for cheap because it’s defective, but with a bit of attention, can be brought back to life. This is how [Roberto Barrios] ended up with a Rohde & Schwarz FSIQ 7 signal analyzer lounging around his place for a few months until he got it fixed.

      • My Keyboard – January 2022 | Hund

        It’s been exactly four years since I built my last keyboard. It has been a good keyboard that has served me well over the years, but it was time for a long awaited upgrade.

        I have actually been waiting for a long time for some new switches that would be both buttery smooth and affordable. Too much excitement, that day is finally here!

      • The Charachorder Keyboard Is Too Fast For Competition | Hackaday

        We interrupt the flow of Keebin’ with Kristina to bring you this special bulletin. When three different people alert you to a keyboard within 48 hours or so, it calls for more than just a paragraph in the roundup column. So here are several paragraphs, an animated GIF, and some extended commentary about the Charachorder, a new kind of input that came up through Kickstarter in 2021.

        Driving this hype train are some short viral videos that show the founder hitting 500+ WPM on this crazy thing. FYI, that is fast enough to get you banned from typing competitions, including the monkeytype leaderboard. Those apes forbid chorded input altogether, and automatically throw out entries above 300 WPM. It acheives these insane speeds through clever mechanical design and, of course, firmware.

    • Integrity/Availability

      • Proprietary

        • CNMF Identifies and Discloses Malware used by Iranian APT MuddyWater | CISA

          U.S. Cyber Command’s Cyber National Mission Force (CNMF) has identified multiple open-source tools used by an Iranian advanced persistent threat (APT) group known as MuddyWater. According to CNMF, “MuddyWater has been seen using a variety of techniques to maintain access to victim networks. These include side-loading DLLs in order to trick legitimate programs into running malware and obfuscating PowerShell scripts to hide command and control functions.” U.S. Cyber Command has released malware samples attributed to MuddyWater to the malware aggregation tool and repository, VirusTotal.

        • Norfolk County Council suffers delay to Oracle ERP project • The Register

          Norfolk County Council will have to wait a bit longer for that a-ha moment when it finally turns on its new £18m cloud-based Oracle ERP system as the go-live date is delayed until April.

          Expected to accrue between £20m and £31m in savings over 10 years, the project joins a list of local authorities with late-running enterprise application projects including Surrey County Council and West Sussex.

          In May 2020, Norfolk council published deals including £13.5m for Big Red’s software and £4.4m for the “service partner” Insight Direct.

          It promised a fully integrated ERP SaaS system including UK local government HR, finance, procurement, payroll and analytics services.

        • Security

          • Security updates for Wednesday [LWN.net]

            Security updates have been issued by Debian (cfrpki, gdal, and lighttpd), Fedora (perl-CPAN and roundcubemail), Mageia (firefox), openSUSE (jawn, kernel, and thunderbird), Oracle (kernel, openssl, and webkitgtk4), Red Hat (cpio, idm:DL1, kernel, kernel-rt, openssl, virt:av and virt-devel:av, webkit2gtk3, and webkitgtk4), Scientific Linux (openssl and webkitgtk4), SUSE (kernel and thunderbird), and Ubuntu (apache-log4j2, ghostscript, and lxml).

          • New SysJoker Espionage Malware Targeting Windows, macOS, and Linux Users [Ed: One needs to actually install this malware, so it's not the real issue here]

            A C++-based malware, SysJoker is delivered via a dropper file from a remote server that, upon execution, is engineered to gather information about the compromised host, such as MAC address, user name, physical media serial number, and IP address, all of which are encoded and transmitted back to the server.

          • Increasing Number of Bank-Themed Survey Scams | Netcraft News

            Netcraft has seen a large increase in survey scams impersonating well-known banks as a lure. These are often run under the guise of a prize in celebration of the bank’s anniversary, though in some cases a reward is promised just for participating.

            These scams first came to Netcraft’s attention around 16 months ago, when businesses that were particularly useful during lockdown such as supermarkets, mobile phone networks, and delivery companies were targeted. The expansion of these attacks to use banks as a lure started in October 2021. To date we have seen over 75 distinct banks used as lures for these survey scams, with a global spread including banks from US, UK, Asia, and the Middle East.

            Survey scams mislead victims into thinking they are being marketed to by a well-known company or brand and will receive a high-value reward or prize by answering a few simple questions. These sites usually pose as either market research for the company or as a quiz contest e.g. “To win all you need to do is answer these questions”.

            After answering these questions, the victim is told they have won, and then redirected to another scam or a third-party affiliate link under the guise of redeeming their prize. For example, they may be asked to pay a small shipping and handling fee in order to claim their prize but are instead unknowingly signed up for an unwanted subscription service with recurring payments. Alternatively, the user may be tricked into giving away personal information or installing malicious software.

          • Privacy/Surveillance

    • Finance

    • Internet Policy/Net Neutrality

      • ANALYSIS-Kazakhstan’s internet shutdown leaves millions in …

        A state-imposed internet shutdown in Kazakhstan entered a sixth day on Monday, leaving millions of people struggling to access basic services and information about anti-government protests that have rocked the country, digital rights groups said.

        Connectivity was restored nationwide for a few hours on Monday, according to Internet blockage observatory NetBlocks, before being cut off soon after in the Central Asian nation following last week’s wave of unrest.

        “Earlier today, some users briefly came online for the first time in five days,” the group said on Twitter.

        The streets of Kazakhstan’s biggest city Almaty returned to near-normal on Monday after the worst violence in three decades of post-Soviet independence, with thousands of people detained and some public buildings torched.

      • Tech newsletter: Broadband ‘nutrition labels’

        Recently, FCC Chairwoman Jessica Rosenworcel said the agency would consider moving ahead with a proposal to establish “broadband labels” that would help customers easily see information about internet-service provider’s (ISPs) prices, data allowances, and internet speeds.

        While this is clearly a great way to help everyday consumers sift through the muck of internet plans, it only address part of a larger problem.

        In a recent letter, Rosenworcel said the FCC would discuss the labels at its open meeting on Jan. 27. The idea of creating labels for broadband plans isn’t new.

        President Joe Biden urged the FCC to move forward with the labels in his July executive order regarding competition, and in 2016 the FCC introduced voluntary broadband labels that were modeled after the nutrition labels you see on various food products.

        But when the FCC repealed net neutrality rules, it also nixed transparency requirements that were part of the 2015 Open Internet order.

    • Monopolies

Links 12/1/2022: GNOME 42 Alpha Near, Linux App Summit 2022 Set for Italy

Posted in News Roundup at 1:04 pm by Dr. Roy Schestowitz

  • GNU/Linux

    • Desktop/Laptop

      • Major hotel chain ditches Windows for Chrome OS after ransomware attack | Windows Central

        It’s no secret Windows is a ransomware magnet. According to VirusTotal, 95% of all ransomware attacks go after Microsoft’s operating system. And anyone who follows Windows news has likely seen the numerous reports of ransomware raining on the operating system’s parade wherever it can, including with regards to pedestrian functions such as Windows-based printing.

        As such, it’s little surprise that a business unwilling to tolerate ransomware headaches would make the move to abandon the OS altogether and go with a safer alternative, assuming they don’t have a need for the specific functionalities Windows affords.

    • Kernel Space

      • Linux 5.17: Quicker Mount Times For XFS, Few New Features For EXT4 – Phoronix

        In addition to the Btrfs updates, the EXT4 and XFS file-system maintainers submitted their feature changes already for the in-development Linux 5.17 kernel.

        The main feature change for XFS with Linux 5.17 is the mount code only trying to free stale CoW staging extents if the file-system unmounted cleanly. In turn this means XFS mount times should be lower, especially for file-systems supporting reflinks and having a large number of allocation groups.

      • CXL Memory Hotplug Support Ready To Plug Into Linux 5.17 – Phoronix

        Over the past two years work has been ramping up a lot on Compute Express Link (CXL) enablement for the Linux kernel and with the in-development Linux 5.17 there is more feature code landing.

        The newest CXL subsystem support in place is CXL 2.0 memory hotplug handling, which is handled somewhat similarly to PCI. The ACPI SRAT Physical Address to Proximity Domain information is also extended for handling possible performance-class and memory-target nodes dynamically created from CXL memory.

      • Qualcomm Snapdragon 8 Gen 1 Sees Timely Support With The Mainline Linux 5.17 Kernel – Phoronix

        Qualcomm only announced the Snapdragon 8 Gen 1 and X65 platforms at the end of November but already they have managed to provide timely mainline support for these latest high-end SoCs. This is great to see compared to the days of slow to materialize mainline support for new Arm SoCs, which still persists among some vendors with either belated mainline support or only focusing on vendor downstream kernels. The big batch of Arm SoC/platform changes have landed for Linux 5.17.

        The big set of Arm platform/SoC changes is all ready for mainline Linux 5.17. New SoCs now supported by the mainline Linux 5.17 kernel include the Qualcomm Snapdragon 8 Gen 1, Snapdragon SDX65, NXP i.MX8ULP, Texas Instruments J721S2, and Renesas R-Car S4-8. Seeing prompt support for the Snapdragon 8 Gen 1 is exciting for that recently-announced SoC manufactured on a 4nm process and over the Snapdragon 888 advertises 20% better CPU performance and 30% more power efficient. Besides the SoCs itself, the reference boards for the new Qualcomm SoCs are also supported with Linux 5.17.

      • Graphics Stack

        • One-Line Patch To Intel’s Vulkan Linux Driver Can Help Modern Games By A Few Percent – Phoronix

          A patch merged into Mesa 22.0 on Tuesday for Intel’s “ANV” open-source Vulkan Linux driver is helping bump up the perforrmance in modern games.

          The one-line patch can help modern games both native and via Steam Play (Proton + DXVK) by a few percent. The change is simply increasing the binding table pool size from 4KB to 64KB.

        • Intel Arc Alchemist GPU gets 20-40% perf boost with Mesa 22.0 Linux OS | TweakTown

          Intel’s new Arc Alchemist DG2 GPUs were meant to launch in Q1 2022 but now that’s a mess and it’s sometime in 2022, but Intel has been helping the Linux community by kick-starting their Xe HP pipeline optimization from the get-go so that Linux users wouldn’t have to wait for compatibility.

          But then rolls in Mesa 22.0 which will have pixel pipeline optimizations, boosts to OpenGL and Vulkan performance in Intel discrete GPUs — offering up to 40% more performance. In something like Unigine Valley, there was a huge 40% performance gain in Mesa 22.0 with Intel DG2-448 hardware. DOTA2 for example, had up to 30% more performance while Xonotic had up to 14% more performance… impressive numbers.

    • Instructionals/Technical

      • Download Linux distributions from a terminal using the OSGET utility

        The conventional method to download ISO is best when you have access to Graphical User Interface (GUI), but what to do when you just have a command-line interface? In this situation, you seek another system and get back with an ISO image, quite awful aha!

      • How to Install Apache Maven on Rocky Linux/Alma Linux 8

        Maven is a popular open source build tool for used primarily for Java projects, designed to take much of the hard work out of the build process. Maven can also be used to build and manage projects written in C#, Ruby, Scala, and other languages. Maven uses a declarative approach, where the project structure and contents are described, rather then the task-based approach used in Ant or in traditional make files, for example. The Maven project is hosted by the Apache Software Foundation, where it was formerly part of the Jakarta Project.

        In this guide, we will learn how to install Apache Maven on a Rocky Linux 8 server. This guide will also work for other RHEL 8 based systems like Alma Linux and Oracle Linux 8.

      • How to Install NodeJS and NPM on Rocky Linux/Alma Linux 8

        Node.js is an open-source, cross-platform, back-end JavaScript runtime environment that runs on the V8 engine and executes JavaScript code outside a web browser. Node. js is primarily used for non-blocking, event-driven servers, due to its single-threaded nature. It’s used for traditional web sites and back-end API services, but was designed with real-time, push-based architectures in mind. Node.js can be used both on the frontend and the backend.

        NPM(Node Package Manager) is the default package manager for Node.js and also the largest repository for open-source Node.js packages.

        In this tutorial we will learn how to install Node.js and npm on Rocky Linux 8 but it also works on other RHEL 8 based distributions.

      • How To Update and Maintain Separate Git Branches – CloudSavvy IT

        One of Git’s core features is the ability to make multiple versions of your project. Often, these are used for short-term forks called “feature branches,” which get merged into master. However, sometimes it is necessary to have truly separate branches, which makes it harder to keep them in sync.

      • How to Install Apache (HTTPD) on Fedora 35 – LinuxCapable

        Apache, also known as Apache HTTP server, has been one of the most widely used web server applications globally for the past few decades. It is a free and open-source web application software maintained by the Apache Software Foundation. Apache provides some powerful features with dynamically loadable modules, easy integration with other software, and handling of static files, among other popular features.

        In the tutorial, you will learn how to install and configure Apache (HTTPD) on Fedora 35 Workstation or Server with a free TLS/SSL certificate from Let’s Encrypt.

      • How to Install Oracle JDK 17 (Java 17 LTS) on Linux Mint 20 – LinuxCapable

        Java is a general-purpose, class-based, object-oriented multipurpose programming language that is popular due to the design of having lesser implementation dependencies, meaning that the compiled Java code can be run on all platforms that support Java without the need for recompilation. Java is also fast, secure, and reliable, therefore. It is widely used for developing Java applications in laptops, data centers, game consoles, scientific supercomputers, cell phones, etc.

        JDK 17 (JDK 17) has brought forward new language enhancements, updates to the libraries, support for new Apple computers, removals and deprecations of legacy features, and work to ensure Java code written today will continue working without change in future JDK versions.

        In the following tutorial, you will learn how to install the latest Oracle Java 17 (JDK 17) on Linux Mint 20.

        For users wishing to install the OpenJDK 17 version, please see the tutorial How to Install OpenJDK 17 on Linux Mint 20.

      • How to use Thunderbolt 3 and 4 on CentOS – ByteXD

        The Thunderbolt hardware interface is a relatively new technology launched in 2011 by Apple and Intel. It’s an external hardware interface to connect your external peripheral devices to your laptop/ Desktop. Thunderbolt 1 and 2 used a Mini DisplayPort (MDP) connector illustrated in the image below. However, only a few laptop models and Macbooks shipped their products with the Thunderbolt 1/ 2 interface by this time. The main reason was that for laptop brands to use the interface on their products, they had to pay high copyright fees to Intel.

      • Set up a build system with CMake and VSCodium | Opensource.com

        This article is part of a series about open source DevOps tools for C/C++ development. If you build up your project from the beginning on a powerful toolchain, you will benefit from a faster and safer development. Aside from that, it will be easier for you to get others involved in your project. In this article, I will prepare a C/C++ build system based on CMake and VSCodium. As usual, the related example code is available on GitHub.

      • How to Change Your User Password In Linux – buildVirtual

        It’s a quick and easy process to change a user password on a system using the Linux Operating System. That is, it’s straight forward if you know the commands, which might not be obvious if your background is with other operating systems such as Microsoft Windows. This article shows how to change your user password on a Linux system.

        As there are many Linux distributions, with different desktop environments with can look and feel differently, this guide focuses on how to change your password from a shell prompt. The steps below will work from a shell session within a desktop session, or when connecting remotely using SSH, and will cover how to change your Linux password or reset your or another user password.

      • How to migrate your Java applications to Red Hat OpenShift | Red Hat Developer

        The article Why you should migrate your Java workloads to OpenShift described the benefits of moving a Java application to Red Hat OpenShift, and the tools that help in this effort. Now we’ll walk through how to actually do the migration.

        For this exercise, we’re going to use the Red Hat JBoss Enterprise Application Platform (EAP) getting-started kitchen-sink application, but with some modifications to use MySQL as the database. You can find the source code in the eap-quickstarts GitHub repository.

    • Games

      • ProtonUp-Qt adds support for Lutris Flatpak, new batch update feature | GamingOnLinux

        ProtonUp-Qt is the fantastic and simple way to download and upgrade the Linux compatibility tools Proton-GE, Luxtorpeda, Boxtron or Roberta for Steam and works with both Lutris and Heroic Games Launcher too.

        This allows you to easy get these external tools, and have them added to Steam directly so you can pick them as you preferred compatibility option for running games. Proton-GE can sometimes run games that the official Proton can not, Luxtorpeda gives you access to lots of native Linux game engines (like OpenMW for Morrowind), Boxtron for native DOSBox and Roberta for ScummVM. Add to that the ability to easily add newer Wine to Lutris and Heroic and Linux gaming looks easier than ever.

      • PS2 emulator PCSX2 adds in Vulkan API support | GamingOnLinux

        How about some better performance for emulating the PlayStation 2? That’s what you’re going to get with Vulkan support now hooked up nicely in PCSX2.

        Writing on Twitter the official account said: “A lot of people were asking for a Vulkan renderer and courtesy of Stenzek (Duckstation) it is finally here! It performs better than OpenGL in a lot of cases on similar blending levels so it should make a couple of harder to run games much easier to play! Thanks Sten!”.

      • Spring RTS v106.0 released with OpenGL 4 support | GamingOnLinux

        The first major upgrade to Spring RTS in years is here with version 106.0, which has some major architectural changes to the popular game engine. For those who need something of a refresher: Spring RTS starting off life as TASpring to bring the classic Total Annihilation into 3D. It later expanded into a more generic RTS game engine, that has spawned a big community and multiple different games.

        Seems this release took a while, as there were differing opinions on where to take Spring RTS next. They needed to do something though, as Spring was just falling behind on everything so thankfully one developer decided to tag a new release with all the previous development changes.

      • Slay the Spire testing Steam Input ready for the Steam Deck | GamingOnLinux

        Slay the Spire, one of the games that helped to really push the popularity of deck-builders is back with a fresh Beta build, this time getting ready for the Steam Deck.

        Bringing support for Steam Input, this should hopefully give Slay the Spire better gamepad support overall, not just for the Steam Deck but that’s of course the biggest reason to do it right now. The update also additionally adds Finnish language support, and updates for other localizations. There’s also a removal of “excessive” display config loading and an update for log4j to prevent any future security problems.

      • Looks like Portal 2 is the first Steam Deck Verified title | GamingOnLinux

        As we come closer to the February launch date of the Steam Deck, it appears Valve are now starting to actually go through and tick titles for their Deck Verified program.

        Reports coming in that were noticed thanks to updates on SteamDB, showing that Portal 2 has been through verification. It’s not exactly surprising, since it’s Valve’s own title and Portal 2 has long worked nicely on Linux with their native port. That, and it was recently upgraded to use DXVK-Native, to give it Vulkan support too.

    • Desktop Environments/WMs

      • GNOME Desktop/GTK

        • This App Makes Installing GNOME Extensions MUCH Easier

          It’s called ‘Extension Manager‘ and it lets you search for and install GNOME extensions without needing to use a web browser.

          Yeah: no web browser — which is handy on Ubuntu 21.10 (and above) since you can’t install GNOME extensions using the bundled version Firefox as it’s a Snap and thus can’t (currently) talk to the chrome-gnome-shell connector integral to the whole process.

        • GNOME Shell & Mutter Prepare For GNOME 42 Alpha With Exciting Improvements

          The GNOME Shell and Mutter have checked in their new development releases for the imminent GNOME 42 Alpha milestone.

          There is a lot of work as usual with these new alpha releases, especially on the Mutter side a number of notable updates for when acting as a Wayland compositor. Below is a look at some of the changes that caught my attention.

        • GNOME Boxes 42 is Shaping Up as an Exciting Alternative to VirtualBox – It’s FOSS News

          GNOME Boxes is an easy-to-use virtualization software that lets you download operating systems from within the program or use ISO files to create new virtual machines.

          It is also the only program that lets you test upcoming GNOME versions, just like we tried GNOME OS.

          While it remains a simplified experience now, the upcoming version brings several UI updates to give you more control and customizations.

          In a tweet, Felipe Borges (maintainer) shared some early development progress with Boxes 42 alpha build.

          I tried it out to give you some key highlights here.

    • Distributions

      • New Releases

        • On January 11th 2022, EmmaDE4 1.01 focused on reuse for all with Ventoy !

          On January 11th 2022, the Emmabuntüs Collective is happy to announce the release of the Emmabuntüs Debian Edition 4 1.01 update (32 and 64 bits), based on the Debian 11.2 Bullseye distribution and supporting both Xfce and LXQt desktop environments.

          This distribution was originally designed to facilitate the reconditioning of computers donated to humanitarian organizations, starting with the Emmaüs communities (which is where the distribution’s name obviously comes from), to promote the discovery of GNU/Linux by beginners, as well as to extend the lifespan of computer hardware, in order to reduce the waste induced by the over-consumption of raw materials.

          This new update of our distribution brings the addition of the Ventoy utility as part of our reuse campaign launched in early September 2020 in collaboration with our friends from Debian-Facile and Tugaleres.com in France, as well as Blabla Linux in Belgium, as we have just put online a second version of our refurbishing USB flash drive now based on Ventoy.

      • IBM/Red Hat/Fedora

        • 10 must-read technology books for 2022

          How do you keep up with technology change, given the rapid pace of tech advances? For CIOs and IT leaders who are looking to improve their tech skills or want to learn about the latest developments, we’ve pulled together a reading list for 2022.

          Peruse these titles for a thorough dive into key technologies and the related business and leadership challenges that your organizations may encounter.

        • Change management: 4 tips for leaders on embracing human nature | The Enterprisers Project

          Organizational change continues to speed up and deepen, accelerated by the uncertainty and new demands brought on by the pandemic. Technology executives and their teams are almost always key to these changes because these days, most major organizational changes have a large technological component.

          The simple truth is that this puts you, as a tech leader, in a difficult position because for most people, most of the time, change is hard.

        • Prevent Trojan Source attacks with GCC 12 | Red Hat Developer

          At the start of November of 2021, a new kind of software vulnerability was made public: “Trojan Source,” in which certain Unicode bidirectional control characters are used to write obfuscated code. These control characters can be used to create text in which the logical order seen by a programming language implementation (such as a compiler or interpreter) differs from the visual order seen by a human reading the code.

        • Integrate Apache ActiveMQ brokers using Camel K | Red Hat Developer

          Apache ActiveMQ is a highly popular message broker that features persistence, guaranteed message delivery, and high throughput. Apache ActiveMQ Artemis streamlines the classic message broker implementation for microservices architectures. This article is for developers transitioning from ActiveMQ Classic to ActiveMQ Artemis. We will show you how to get the two versions working together using Apache Camel K. Our example is based on Red Hat AMQ versions 6 and 7, and we will perform the steps on Red Hat OpenShift 4. Our code is written in Java. The integration process and techniques should be applicable to many other scenarios.

        • IBM AIX optimized system boot and dynamic reconfiguration – IBM Developer

          Some of the key factors that are important for system administrators during system maintenance are how long it takes to apply system patches or updates that require a reboot and how fast the system resources can be reconfigured without disrupting the existing workloads.

          Boot time is an important component of system performance as users must wait for the boot operation to complete before they can use the device. It is the time taken for a device to be ready to operate after the power has been turned on. Slow boot times would make the system owners to refuse to apply any patches or updates that require a reboot.

          Dynamic logical partitioning (DLPAR) is the capability of a logical partition (LPAR) to be reconfigured dynamically, without having to shut down the operating system that runs in the LPAR. DLPAR enables memory, CPU capacity, and I/O interfaces to be moved non-disruptively between LPARs within the same server. This support exists on IBM AIX since AIX 5L. System owners expect DLPAR operations to have minimal impact on the currently running workloads.

          This blog talks about the AIX 7.3 system boot and DLPAR optimizations.

          AIX 7.3 comes with an optimized boot phase which will have much shorter boot time when compared to a similar configuration with earlier AIX releases. AIX 7.3 has also significantly optimized the CPU and memory dynamic LPAR operations. Both were achieved by the redesign of the Lightweight Memory Trace (LMT) infrastructure.

          LMT is a critical reliability, availability, and serviceability (RAS) function on AIX, which is ON by default. To enhance the boot phase, the LMT buffer allocation which occurs early in the boot phase was redesigned and optimized. In AIX 7.3, during boot, LMT will allocate only sufficient buffer size that is sufficient to capture traces during the boot. After the boot, the LMT buffers are resized in the background without holding the boot process, there by resulting in significant improvements in boot times.

      • Canonical/Ubuntu Family

        • Linux Mint 20.3 appears – now with more Mozilla flavor: Why this distro switched Firefox defaults back to Google

          The Linux Mint distro has been busy. Not only has it pushed out release 20.3, it’s also announced a deal with Mozilla, meaning vanilla Mozilla versions of Firefox and Thunderbird.

          It’s very hard to estimate the relative popularity of Linux distributions. Aside from a couple of paid enterprise distros, they’re all free downloads without serial numbers, activation nor any other tracking mechanisms. One of the only mechanisms is the Distrowatch popularity page, although vendors dispute its accuracy.

          Saying that, Mint is in third or fourth place, outranking its own upstream distro, Ubuntu, which comes sixth. Each major version of Mint is based upon the long-term support version of Ubuntu: Mint 20 is based on Ubuntu 20.04.

          Like most Linux distros, Mint offers Firefox as its default browser – and Mozilla’s email client, Thunderbird. The Mint team had built these apps itself, based on changes it inherited from its parent distro, Ubuntu. Now, Mint is switching away from Ubuntu’s versions of Firefox and Thunderbird to Mozilla’s versions – skipping an intermediary.

        • Linux Mint 20.3 appears – now with more Mozilla flavor: Why this distro switched Firefox defaults back to Google

          The Linux Mint distro has been busy. Not only has it pushed out release 20.3, it’s also announced a deal with Mozilla, meaning vanilla Mozilla versions of Firefox and Thunderbird.

          It’s very hard to estimate the relative popularity of Linux distributions. Aside from a couple of paid enterprise distros, they’re all free downloads without serial numbers, activation nor any other tracking mechanisms. One of the only mechanisms is the Distrowatch popularity page, although vendors dispute its accuracy.

        • Ubuntu 22.04 Release Date, New Features and More


          Ubuntu fans! It’s time to get excited about the next big release which is Ubuntu 22.04 LTS. Yes. It is a long term support release and it will be supported for five years till April 2027.

          The upcoming LTS release brings several new features. If you are using Ubuntu 20.04 LTS, you will notice numerous visual changes. If you are using Ubuntu 21.10, you already have seen plenty of changes but there will still be a few new ones in the upcoming release.

        • Ubuntu 22.04 LTS Promises Performance Boost for All Raspberry Pi 4 Devices

          Ubuntu Desktop on Raspberry Pi arrived officially with the Ubuntu 20.10 (Groovy Gorilla) release, but it was only recommended for the Raspberry Pi 4 models with 4GB or 8GB RAM, Raspberry Pi 400, as well as Raspberry Pi CM4 (Compute Module 4).

          Well, that’s about to change as Canonical wants to make Ubuntu Desktop work smoothly on the Raspberry Pi 4 model with 2GB of RAM, and the secret to this performance boost is to enable the zswap feature in the Linux kernel.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • Best Free and Open Source Alternatives to Cisco Webex

        Cisco Systems, Inc. is an American multinational technology corporation that focuses on networking hardware and software. It has over 75,000 employees with its headquarters in San Jose, California.

        Cisco has been participating in open source development for almost 30 years including founding projects like OpenDaylight, FD.io, VPP, PNDA, SNAS, and OpenH264, and contributing to projects like OPNFV, Kubernetes, OpenStack, Ansible, Chef, Puppet, Maven, and many others.

      • How to build an open source metaverse

        Like web servers on the internet, you need VR servers. But worry not, I wrote one, and an article about it was published right here about a year ago. Then, of course, you need VR-enabled web browsers, but web browsers already do support video/audio streaming (WebRTC) and VR and AR both (WebXR). Furthermore, you need a bunch of 3D content, preferably in open source standard glTF format. And luckily, Sketchfab hosts 500,000+ free 3D models, published under Creative Commons licenses by a huge number of authors. Sketchfab isn’t the only company doing that, but they provide REST API to search and download any of these models.

        Being in VR for quite a while now, I can tell you first hand what I miss the most: The keyboard! I write code on the keyboard, but it disappears when I put on my VR goggles. You can imagine how disruptive taking VR gear off and on is. And not just that, I need to see my code in VR. And then why stop there? Why wouldn’t I see every application in VR? Many people are using two or more displays. In VR, arrange windows wherever you look. That’s better than any number of screens. And once that happens, you’ll be able to talk metaverse for real.

      • Events

        • Italy welcomes Linux App Summit 2022 – Getting to know GNOME

          We’re happy to announce that Linux App Summit will take place in Rovereto, Italy between the 29th and 30th of April.

          Linux App Summit (LAS) is a conference focused on building a Linux application ecosystem. LAS aims to encourage the creation of quality applications, seek opportunities for compensation for FOSS developers, and foster a thriving market for the Linux operating system.

          This year LAS will be held as a hybrid event and attendees will be able to join virtually or in person at our venue in Rovereto.

          Everyone is invited to attend! Companies, journalists, and individuals who are interested in learning more about the Linux desktop application space and growing their user base are especially welcome.

      • Programming/Development

  • Leftovers

    • It Can Happen Here

      These published opinions, some about the possibility of civil war carried out over years of terrorism, bombings and political assassinations, surfaced against the backdrop of the one-year anniversary Thursday of the deadly storming of the Capitol. A white mob egged on by Donald Trump tried to halt the time-honored electoral process of transferring power peacefully to a new president. It was anything but peaceful.

      Unlike the turmoil of the 1960s antiwar and civil rights movements, 9/11, the Civil War and British Redcoats during the war of 1812, it marked the first time Americans invaded the citadel of American democracy, the guiding light of their own country. They nearly succeeded in overthrowing the government. All because of that pretend Boston Tea Party patriotism riot based on Trump pursuing his Holy Grail – the presidency – by repeatedly lying that he won reelection.

    • “You Come Out With Nothing”: What It Means to Bring Back the Box at Rikers

      On January 5, four new members of the New York City Council arrived at Rikers for an unannounced tour. Council members Alexa Avilés, Sandy Nurse, Tiffany Cabán, and Shahana Hanif visited five of the island’s eight jails, including the isolation units that should already have been shuttered.1

    • Letter to June Jordan in September

      I cannot pass the anniversary of that first news event of childhood without returning to your poem. How from my house I watched. And watching, watched my grief-stricken parents unable to speak. How I leaned into the screen, the chords of the cries, searching for what was recognizable of fingers and thighs, of bracelets and moustaches. Macabre arrangement of bodies with names like our own. I cannot pass without your words. Something about witnessing twice removed. About distances magnified by the shift into language. Of dailyness and my own children’s vernacular and the machine. Grinding us all in its jaws. I met a girl from the camp at a reading in Beirut. She asked if we could talk about the life of poetry. Our families are hauled off to the world of the dead and every day it is on screen. In Gaza we’re watching Ferguson and in Atlanta we’re watching Jerusalem watching Minneapolis watching. Their weapons and their training programs indistinguishable. The word almost flickers for a nanosecond. Here I note the shelf-life of self-censorship, legacy of our era. Some days poems are scrawled on pieces of cardboard and carried on our shoulders at the protest like martyrs. Here I should say something about hope. Here I should say something about living.

    • India’s Patriotic Paradox: Desi vs. Foreign Liquor
    • Oceans Hotter in 2021 Than Any Time in Recorded History

      New research out Tuesday shows that the world’s oceans last year were hotter than they’ve ever been in recorded history—part of a long-term warming trend driven primarily by planet-wrecking fossil fuel emissions.

      “This finding really underscores the urgency of acting on climate now.”

    • A Better World

      Before I go through my favorite unriggings, let me start by making a general point, which some people may miss. I focus much of my writing on ways that we rig the market to give money to the Bill Gates and Moderna billionaires of the world.

      The idea of restructuring the market, so that these people do not get so rich, is not just a question of punishing the wealthy. When we give these people more money, in excess of what they contribute to the economy (we have to pay people something to develop mRNA vaccines, just not as much as we did), then we are generating more demand in the economy. This has the same effect on the economy as an increase in government spending.

    • This Is the Unbuilding of America

      Let me start 2022 by heading back—way, way back—for a moment.

    • Top 10 Things People Pretend They Don’t Know

      There are plenty of good excuses to actually not know something: it would take decades of study, it’s of no interest or value, it would cost so much money to research it that you could have saved millions of lives instead.

      There are, I think, fewer good justifications for pretending to yourself (not just to others) not to know something that you actually already know or would know with a moment’s consideration, something overwhelmingly established by widely acknowledged and clear evidence, regardless of what your television might tell you.

    • About 2021

      Disasters happened all year long. Whatever could go wrong went wrong. So, ’21, it’s simply true: We’re glad to see the back of you.

    • Opinion | The White Christian Nationalism Tearing America Apart at the Seams

      “If you are neutral in situations of injustice, you have chosen the side of the oppressor. If an elephant has its foot on the tail of a mouse and you say that you are neutral, the mouse will not appreciate your neutrality.” — Archbishop Desmond Tutu

    • Obits for a South Korean Dictator Gloss Over US’s Anti-Democratic Role

      When former South Korean dictator Chun Doo-hwan passed away on November 23, Western media were forthcoming about his brutality, including his direction of the 1980 Gwangju Massacre, in which at least several hundred opponents of his regime were slaughtered. But the US role in supporting successive dictatorships in South Korea and its involvement in the 1980 massacre to preserve South Korea’s status as an American vassal state were either erased entirely, or whitewashed to distance Washington’s efforts to suppress democratic uprisings in Korea.

    • Education

    • Health/Agriculture

      • Opinion | Argentina’s Economic Success in the Face of Covid-19

        Although COVID-19 has been hard on everyone, it has not been an “equal opportunity” disease. The virus poses a greater threat to those who are already in poor health, many of whom are concentrated in poor countries with weak public-health systems. Moreover, not every country can spend one-quarter of its GDP to protect its economy, as the United States did. Developing and emerging economies have faced hard financial and fiscal constraints. And because of vaccine nationalism (hoarding by rich countries), they have had to scrounge for whatever doses they can get.

      • Lurking Behind Lackluster Jobs Gain are a Stagnating Labor Market and the Threat of Omicron

        First, the good news. The economy did add jobs in December, 199,000 of them, with gains in most sectors. This was less than the 440,000-job increase that some economists expected. Still, the gains are an indication of a reasonably healthy economy.

        And October and November jobs numbers were revised upward by the Bureau of Labor Statistics. Meanwhile, gains were seen across a number of key sectors. The leisure and hospitality sector was up, as expected given recent trends, as were business services and manufacturing.

      • What’s Driving the UK’s Shortage of Medical Doctors?

        His response to bad news was to hide it, which is in keeping with secretive traditions of the NHS, as it is with all large institutions protecting their own interests. In the case of the NHS, the secrecy may be less obvious because a sympathetic media has been giving wall-to-wall coverage to its heroic efforts to treat victims of the pandemic.

        Reporting today focuses largely on the shortage of doctors and nurses, their numbers depleted by Covid-19. Much publicity is given to short-term fixes such as sending in the army and re-employing retired medical staff.

      • Sanders, Khanna Demand Free Covid Tests for All Americans

        As the Omicron variant overwhelms healthcare systems across the country, Sen. Bernie Sanders and Rep. Ro Khanna are leading a call for the Biden administration to drastically expand its plans to distribute “one of the most effective tools the federal government has at its disposal”—rapid Covid-19 tests.

        Sanders (I-Vt.), Khanna (D-Calif.), and Rep. Adam Schiff (D-Calif.) led more than 40 Democrats in the House and Senate in writing to the White House Sunday, urging officials “to take additional, immediate steps to eliminate existing barriers to Covid-19 rapid tests and ensure robust access to free over-the-counter rapid tests throughout the country for the duration of the pandemic.”

      • Fauci Accuses Rand Paul of Kindling ‘The Crazies’ During Heated Exchange

        As U.S. Covid-19 cases surge amid an unprecedented wave of Omicron variant infections, National Institute of Allergy and Infectious Diseases Director Dr. Anthony Fauci on Tuesday parried a salvo of attacks by Republican senators, led by Rand Paul, who object to his expert-endorsed countermeasures against the unrelenting pandemic.

        “I have… threats upon my life, harassment of my family and my children with obscene phone calls because people are lying about me.”

      • Nurses Plan Nationwide Rally to Demand Better Covid Safety Rules

        Members of the National Nurses United, the nation’s largest union of RNs, will hold demonstrations across the country on Thursday, January 13 to advocate for safer working conditions in hospitals and demand President Joe Biden fufill his campaign promises of protecting nurses and public health.

        “As we enter year three of the deadliest pandemic in our lifetimes, nurses are enraged to see that, for our government and our employers, it’s all about what’s good for business, not what’s good for public health,” said NNU president Zenei Triunfo-Cortez, RN.

      • Holding $9 Billion Hostage, US Offers $300 Million as Afghan Starve

        The Biden administration said Tuesday that it will contribute roughly $308 million to humanitarian assistance efforts in Afghanistan, where millions are on the brink of starvation and at risk of freezing to death in the aftermath of the U.S.-led war.

        But the newly announced aid falls far short of estimates of the war-torn country’s immediate needs and pales in comparison to the $9.4 billion in Afghan government assets that the Biden administration is refusing to unfreeze, despite growing pressure from progressive members of Congress and human rights advocates.

      • Red Cross Declares First-Ever Blood Shortage Crisis in US

        Due to problems tied to the ongoing Covid-19 pandemic, the American Red Cross on Tuesday declared its first-ever national blood shortage crisis, warning that already, “doctors have been forced to make difficult decisions about who receives blood transfusions and who will need to wait.”

        “We’re doing everything we can to increase blood donations to ensure every patient can receive medical treatments without delay, but we cannot do it without more donors.”

    • Integrity/Availability

      • ESA

        • European Space Agency: Come on, hack our satellite if you think you’re hard enough

          The European Space Agency (ESA) is inviting applications from attackers who fancy having a crack at its OPS-SAT spacecraft.

          It’s all in the name of ethical hacking, of course. The plan is to improve the resilience and security of space assets by understanding the threats dreamed up by security professionals and members of the public alike.

          OPS-SAT has, according to ESA, “a flight computer 10 times more powerful than any current ESA spacecraft” and the CubeSat has been in orbit since 2019, providing a test bed for software experiments.

          It is therefore the ideal candidate for l33t h4x0rs to turn their attention to, while ESA engineers ensure the environment is kept under control.

        • Security

          • Who is the Network Access Broker ‘Wazawaka?’

            In a great many ransomware attacks, the criminals who pillage the victim’s network are not the same crooks who gained the initial access to the victim organization. More commonly, the infected PC or stolen VPN credentials the gang used to break in were purchased from a cybercriminal middleman known as an initial access broker. This post examines some of the clues left behind by “Wazawaka,” the hacker handle chosen by a major access broker in the Russian-speaking cybercrime scene.

          • Sonicwall SMA 100 VPN box security hole exploit info shared • The Register

            Technical details and exploitation notes have been published for a remote-code-execution vulnerability in Sonicwall SMA 100 series VPN appliances.

            The information was released today by infosec outfit Rapid7. This comes about a month after Sonicwall issued a patch for the security hole, which was discovered and privately disclosed by Rapid7′s Jake Baines to Sonicwall in October.

            If you haven’t yet applied the update, now would be a good time before it’s widely exploited. So far there is no evidence the programming flaw, which is present in SMA 200, 210, 400, 410 and 500v products as well as the 100, has been abused in the wild, Sonicwall said.

          • Faking an iPhone Reboot – Schneier on Security

            I see this as another manifestation of the security problems that stem from all controls becoming software controls. Back when the physical buttons actually did things — like turn the power, the Wi-Fi, or the camera on and off — you could actually know that something was on or off. Now that software controls those functions, you can never be sure.

          • [Older] LastPass users are skeptical after company insists it wasn’t hacked

            Online forums are abuzz with reports that LastPass sent emails to users describing unauthorized login attempts with their master passwords, after one user posted about the issue on Hacker News. LastPass has since said it hasn’t leaked user information, leaving people with a lot of questions.

            Greg Sadetsky, the Montreal-based technologist who wrote the post on Hacker News, calls himself a part-time involuntary “security mensch.” “I think I’m pretty paranoid,” he told Input, before adding that he has a habit of ending conversations with a reminder not to use the same password twice (“not all conversations, though,” he assured me). In the past month alone, he tells me he’s uncovered security vulnerabilities in both a COVID test company lab and the app that controls the lights above the World Trade Center. “I just want these things fixed,” he said. So on December 27, when Sadetsky got a concerning email from his password manager, he spoke up.

            Sadetsky wrote that LastPass had alerted him of a login attempt using his account’s master password with this message: “Someone just used your master password to try to log in to your account from a device or location we didn’t recognize.”

            He considers the incident particularly concerning because the password was used only on LastPass and stored only in an encrypted password manager called KeePassX. Sadetsky says he had gone through a scrupulous extra step to use a second password manager to generate and encrypt the key to his LastPass password manager.

            COULD IT BE A KEYBOARD SNIFFER? — The last time he’d accessed the master password, he says, was in 2017. He copied it from KeePassX and pasted it into LastPass. He initially reasoned that malware, like a clipboard sniffer, could have gotten his password when he copied and pasted it over four years ago. But when his post developed traction and more people reported the same issue, he says he considered that explanation less likely.

            It’s unlikely to be an issue with KeePassX, either. KeePassX encrypts passwords, scrambling them in a way that is unreadable and unusable by hackers.

            HACKED FROM THE SAME PLACE — Another notable detail is the similarity in IP addresses that attempted the logins. In the email alert, LastPass included the IP address from which the login attempt took place, and Sadetsky found four other users who had received alerts involving startlingly similar IP addresses. At least five users’ accounts had experienced log-in attempts from foreign IP addresses in the 160.116 range. But at least five other Hacker News users reported similar LastPass alerts involving IP addresses that did not fit with the rest.

          • Open source isn’t the security problem – misusing it is [Ed: Richard Waters has a long history attacking Free software [1, 2, 3, 4, 5, 6, 7]; his employer receives money from Bill Gates]

            We’re going to be cleaning up Apache Log4j security problems for months to come, but the real problem isn’t that it was open-source software. It’s how we track and use open-source code.

            When security vulnerabilities were found in the extremely popular open-source Apache Log4j logging library, we knew we were in trouble. What we didn’t know was just how much trouble we were in. We know now. Just ask the Belgian defence ministry. In this ongoing security disaster, many people blame open source for all our troubles.

            In the Financial Times (FT), Richard Waters, the newspaper’s west coast editor, wrung his hands, saying it’s a “little alarming to discover that, more than two decades into the open-source era, glaring security holes sometimes surprise even the experts.”

            Surprising? I think not. It’s software. It always has bugs. Sometimes they’re really bad bugs. As security maven Bruce Schneier said over 20 years ago: “Security is a process, not a product.” There’s no surprise here.

          • Privacy/Surveillance

            • Access Now joins Global Encryption Coalition and continues to fight the good fight – Access Now

              As governments around the world unite in efforts to undermine encryption, Access Now is joining the Global Encryption Coalition (GEC) in the fight to prevent this critical technology from being weakened.

              Encryption helps people across the globe communicate freely and securely, and is a necessary tool to protect human rights in the digital age.

              “2020 and 2021 — years that saw an unprecedented rise in online activity owing to the pandemic, also witnessed an increase in proposals threatening encryption and jeopardising our online safety,” said Namrata Maheshwari, Asia Pacific Policy Counsel at Access Now. “We are committed to changing this narrative in partnership with the Global Encryption Coalition.”

              In joining the GEC, Access Now joins over 250 civil society organizations, technologists, industry associations, and companies to defend encryption.

            • Meta Platforms demands staffers provide proof of COVID-19 booster vaccine before returning to office
    • Defence/Aggression

      • Opinion | The Treaty on the Prohibition of Nuclear Weapons and the World’s Future

        Late January of this year will mark the first anniversary of the entry into force of the UN Treaty on the Prohibition of Nuclear Weapons.  This momentous international agreement, the result of a lengthy struggle by the International Campaign to Abolish Nuclear Weapons (ICAN) and by many non-nuclear nations, bans developing, testing, producing, acquiring, possessing, stockpiling, and threatening to use nuclear weapons.  Adopted by an overwhelming vote of the official representatives of the world’s nations at a UN conference in July 2017, the treaty was subsequently signed by 86 nations.  It received the required 50 national ratifications by late October 2020, and, on January 22, 2021, became international law.

      • The Treaty on the Prohibition of Nuclear Weapons and the World’s Future

        Right from the start, the world’s nine nuclear powers—the United States, Russia, China, Britain, France, Israel, India, Pakistan, and North Korea—expressed their opposition to such a treaty. They pressed other nations to boycott the crucial 2017 UN conference and refused to attend it when it occurred. Indeed, three of them (the United States, Britain, and France) issued a statement declaring that they would never ratify the treaty. Not surprisingly, then, none of the nuclear powers has signed the agreement or indicated any sympathy for it.

        Even so, the Treaty on the Prohibition of Nuclear Weapons has acquired considerable momentum over the past year. During that time, an additional nine nations ratified it, thus becoming parties to the treaty. And dozens more, having signed it, are expected to ratify it in the near future. Furthermore, the governments of two NATO nations, Norway and Germany, have broken free from the U.S. government’s oppositional stance to the treaty and agreed to attend the first meeting of the countries that are parties to it.

      • The US Drops an Average of 46 Bombs a Day While Grandstanding for Peace
      • The post-January 6 Future is Ours to Decide

        Yet, despite the pundits, the polls, the stringent warnings, threats, and denunciations, the simple truth remains that the future is ours to decide and will not be decided by a single politician, political party, or cluster of alternative reality organizations.

        There is nothing to cavalierly dismiss about the storming of the U.S. Capitol by Trump’s disgruntled and facetiously-informed supporters. It was, after all, the first time the Capitol had been invaded since the British did so in 1814. And yes, “invaded” is an accurate description for smashing your way into a building by breaking down the doors and kicking out the windows. It was, and remains, a horrific act of violence that resulted in death and injury to many, particularly those tasked with ensuring the security of the building and the continuance of democracy’s activities within.

      • Guantánamo Is Still “a Black Hole of Secrecy”

        John Ryan, a legal affairs journalist, often sits alone in the front row of the court gallery during pretrial hearings at the Guantánamo Bay detention camp. Three panes of glass separate him from the five men accused of orchestrating the attacks of September 11, 2001, as well as the defense and prosecution lawyers, judge, guards, court staff, and witnesses. Television monitors relay the scene and audio with a 40-second delay, should any classified information be uttered, which is flagged by a flashing red light behind the judge’s bench. “It’s a little bit disjointed,” Ryan said. “I think it is important just to be there. It’s hard to articulate. It just feels weird to me that the front row would be empty.” Reporting for this story was supported by a fellowship from the Ira A. Lipman Center for Journalism and Civil and Human Rights at the Columbia Graduate School of Journalism.

      • Meet the Muslim Army Chaplain Who Condemned Torture of Guantánamo Prisoners & Then Was Jailed Himself

        Twenty years ago today, the U.S. military began imprisoning Muslim men at Guantánamo Bay in Cuba. We speak with the prison’s former Muslim chaplain, James Yee, who was jailed and held in solitary confinement for 76 days after being falsely accused of espionage. All charges were eventually dropped, and he received an honorable discharge. Yee describes how boys as young as 12 to 15 years old were treated as enemy combatants on the prison complex and the widespread Islamophobia that put even Muslim Americans under heavy surveillance. “During my time I was there, it was clear that these individuals were not in any way associated with terrorism whatsoever,” says Yee.

      • 20 Years and 4 Presidents Later and Gitmo Still Not Closed

        Human rights defenders marked the 20th anniversary of the opening of the U.S. military prison at Guantánamo Bay, Cuba under the administration of former President George W. Bush by noting that three American presidents have come and gone without anyone being held accountable for the horrific crimes that have occurred there, while calling on the fourth—Joe Biden—to finally close what one advocate called an “indelible stain” on the nation.

        “President Biden needs to fulfill his pledge to finally end this shameful chapter of American history.” 

      • Opinion | Guantanamo Is an Indelible Stain on America. Biden Must Close It Once and for All

        At a recent demonstration outside the White House calling for the closure of the US military prison at the Guantánamo Bay naval base, a teenager approached a colleague to ask what the protest was all about. He told her he had never heard of the detention facility.

      • Ilhan Omar: Close the Prison at Guantánamo Now

        Democratic Congresswoman Ilhan Omar wrote in a new op-ed that Tuesday—the 20th anniversary of the opening of the U.S. offshore prison at the Guantánamo Bay naval base—should be “a day to reflect, and to act” and urged younger Americans to heap pressure on President Joe Biden to finally close the facility

        While “Congress has acted to frustrate rather than facilitate closing Guantánamo,” at least most of the work to shutter the prison can be done by Biden, Omar (D-Minn.) argued in her op-ed at Teen Vogue.

    • Environment

      • Energy

        • Green Groups Urge Biden to ‘Do Much More’ to Stop Arctic Drilling

          While praising President Joe Biden for taking steps Monday to reverse a Trump administration policy that opened up millions of acres in the Western Arctic for oil drilling, environmental justice advocates argued that only a comprehensive federal ban on new fossil fuel leasing can adequately protect public lands and waters and stave off the worst impacts of the climate crisis.

          “We urge the Biden administration… to phase out all new leasing for fossil fuels on our public lands.”

    • Finance

      • Dems Urged to Act First as GOP Mulls Ban on Lawmaker Stock Trades

        Congressional Democrats on Tuesday faced new pressure to bar sitting lawmakers from trading stocks amid reports that Republican House Minority Leader Kevin McCarthy is considering enacting such a ban if the GOP wins control of the House in the upcoming midterms.

        Seen by progressives as an obvious political ploy rather than a genuine reform effort, news of McCarthy’s (R-Calif.) potential endorsement of a stock trading ban comes just weeks after House Speaker Nancy Pelosi (D-Calif.) defended current rules that allow members of Congress to hold and trade individual stocks while in office—a status quo that has helped turn Capitol Hill into a veritable hotbed of insider trading.

      • 150+ NY Groups Back Public Banking Bill to Declare ‘Independence From Wall Street’

        Over 150 advocacy groups from across the Empire State Tuesday sent a letter to New York legislative leaders urging them to follow in the footsteps of places like North Dakota, Germany, and Costa Rica and pass legislation allowing the creation of public banks that would help “advance racial equity and ensure a just recovery for all New Yorkers.”

        “We need to divest from destructive Wall Street banks and invest in our communities!”

    • AstroTurf/Lobbying/Politics

      • What a Progressive Champion From Rural Maine Can Teach Democrats About Winning

        The 2022 midterms are still 10 months away—but if much of the media is to be believed, the fight is already over before it’s even begun.

      • Whose Body Is It?
      • What Should the Left Do About China?

        Since March 2019, Hong Kong has confronted the greatest challenge to its relatively free and open civil society since it was transferred from British to Chinese rule in 1997. In incidents spanning more than a year, local police faced off against enormous crowds of young demonstrators fighting a losing battle to maintain the city’s autonomy within the People’s Republic of China. Using batons and more than 10,000 canisters of tear gas, officers crushed the protest movement in 2020, but the repression has continued: By February 2021, more than 10,000 Hong Kongers had been arrested in connection with these demonstrations, and over a quarter of those had been prosecuted, while tens of thousands more had sought asylum in Britain, Canada, or Australia.

      • Opinion | January 6th Is Just the Beginning of the Assault on American Democracy

        One year ago, millions of Americans watched as white supremacists and domestic terrorists, emboldened, funded and organized by then-president Donald Trump, his staff and elected officials at every level of our government, attacked the heart of American democracy. 

      • How Democracy Gets Eroded: Lessons From the Nixon Era

        Donald Trump had hoped to reverse his election loss in a single, decisive, dramatic confrontation between his supporters and the republic’s, broadcast live around the world. His plan backfired, filling our screens with vivid illustrations of authoritarianism’s most repugnant ills: chaos, lawlessness, violence, racism, fascismand all manner of hatred run amok. The blatancy of the subversion provoked an immediate backlash, even among some Republicans.

        Had he studied democratic erosion before becoming a practitioner, Trump would know that effective authoritarians tighten their grips on government gradually, stealthilyundermining courts, legislatures, election officials, news organizations, political opposition and other institutions strong enough to check them.

      • Coming This 2022: Refugees, Democracy and Human Rights

        Exasperated with NATO expansion and growing ambitions in the Black Sea region, Moscow has decided to challenge the US-led Western alliance in an area of crucial geopolitical importance to Russia.

      • Why Georgia Voting Rights Groups Are Skipping Biden’s Atlanta Visit

        What might have been a rousing national kickoff not only of a 2022 federal voting rights push but also the campaigns to elect Stacey Abrams Georgia governor and reelect Senator Raphael Warnock has turned out to be anything but that. Days after blasting President Joe Biden for insufficient urgency on passing some kind of voting rights bill, a coalition of crucial Georgia voting groups—the Black Voters Matter Fund, the Asian American Advocacy Fund, the New Georgia Project Action Fund, and the GALEO Impact Action Fund, which organizes Latinos—announced that its leaders would not attend his Atlanta events with Vice President Kamala Harris on Tuesday. Abrams herself endorsed the visit, but said she would miss it because of a “scheduling conflict.”

      • Opinion | Yes, Donald Trump Is the Antichrist

        A listener called into my program yesterday and asked, “Is Donald Trump the Antichrist?”

      • Ultras

        In 1956, the former commissioner of the Internal Revenue Service made a surprising political turn: He announced in an essay in The Washington Post that he saw taxation as a Marxist scheme to “bring capitalism to its knees.” Even though T. Coleman Andrews had served in government only a year before, under Republican President Dwight D. Eisenhower, once out of Washington he turned against the entire enterprise of the modern state. Any progressive or liberal, he insisted, was “either a dupe or, at heart, a dictator.”

    • Freedom of Information/Freedom of the Press

    • Civil Rights/Policing

      • The Indomitable Rev. Addie L. Wyatt

        When she reported to work for her first day at Armour and Company’s meatpacking plant in 1941, Addie L. Wyatt was not planning on becoming a labor activist. She didn’t even really want to be a butcher, but after spending weeks applying for work as a typist and being rejected each time, the young Southern transplant was growing desperate. The meatpacking workers at Armour’s sprawling Chicago facility had a union, the United Packinghouse Workers of America (UPWA), and drew a good wage; Wyatt had a family to support, so despite her lack of butchering experience, the five-foot tall, 100-pound 17-year-old decided to give it a shot. An exasperated foreman tossed her off the line, but as she was leaving, Wyatt noticed a group of white women waiting to apply for clerical positions. She slipped in and took the typing test with them, passing easily thanks to skills she’d acquired in a high school typing course. Those who had passed were told to report to work on Monday, but when Wyatt showed up, she was instead directed to the factory floor, and told to join the other Black women canning stew. At Armour—and in so many other places then—Black women were not welcome in the front office.

      • “Race-Neutral” Traffic Cameras Disproportionately Ticket People of Color
      • Police-Led Youth Programs Don’t Actually Combat the School-to-Prison Pipeline
      • Activists Renew Push for Moratorium in Jackson State Forest; Six Arrested

        Six forest activists were arrested early Monday morning in the course of a nonviolent direct action that shut down logging for the day in Jackson Demonstration State Forest (JDSF). Activists blocked all entrances to timber harvest plan (THP) 1-19-00224-MEN, known as Red Tail, keeping out logging crews from several private companies working under contract with Calfire, the agency in charge of JDSF.  The three men and three women were cited for “trespass” and “false imprisonment”, given a court date, and released on site.

        These were the first arrests since the nonstop protests erupted in JDSF in April 2021, including tree-sits, frequent gate blockades, and work stoppages on active logging sites. However, until now Calfire has declined to arrest forest defenders. Monday, however, the loggers initiated four ‘citizens’ arrests’ at the gate. Two more arrests were made by Calfire on a road inside the THP. The activists had refused orders to move away from the gate because the loggers had refused to identify themselves. When Calfire officers Comer and Dudley arrived, they took over and performed the actual arrests requested by the loggers and security personnel.

      • Georgia Voting Rights Groups to Boycott Biden Speech

        Several prominent Georgia-based advocacy groups are planning to boycott President Joe Biden’s voting rights speech in Atlanta on Tuesday, criticizing the event as yet another symbolic gesture in the face of concrete threats to the franchise nationwide.

        “We don’t need even more photo ops,” Cliff Albright, co-founder of Black Voters Matter, told reporters during a press conference on Monday. “We need action, and that action is in the form of the John Lewis Voting Rights [Advancement] Act as well as the Freedom to Vote Act, and we need that immediately.”

      • Alabama Amazon Workers Win New Vote to Unionize

        Workers’ rights advocates on Tuesday applauded a decision by the National Labor Relations Board to hold a new union election at an Amazon warehouse in Bessemer, Alabama nearly a year after employees accused the multinational company of union-busting conduct that unfairly influenced the result of the previous election.

        “A reminder of the shameful anti-union behavior of Bezos and Amazon management and the need to pass the Pro Act bill to protect workers’ rights to form a union.”

    • Internet Policy/Net Neutrality

      • Kazakhstan internet shutdowns and protests: Timeline

        Access Now and the #KeepItOn coalition condemn the use of internet shutdowns in Kazakhstan to crush protests and provide cover for state violence, and are calling on authorities and telecommunication providers to immediately restore full and permanent access to the internet.

        For more than a week, authorities in Kazakhstan have been arbitrarily manipulating and disrupting internet access across the country, leaving much of the population disconnected and uncertain about whether or when the internet will be fully accessible in the future. While the international community’s ability to connect with people on the ground has been fractured, a timeline of escalating events can be identified.

        Here’s what’s happened so far, plus tools and resources to help those impacted by the shutdowns and violence.

    • Monopolies

      • Patents

        • From lab to market – two more case studies highlighting routes to success [Ed: Corrupt EPO still bribing scholars for self-serving patent propaganda, which corrupts academia]

          Today the EPO publishes two more case studies and a podcast in its series on how technology transfer from university research teams can create new companies, new jobs and new markets. The series includes examples from Austria, Italy, Ireland, Sweden and Turkey. Each case study provides advice for researchers and small and medium-sized enterprises (SMEs) to help them make better use of the patent system. They show how companies can adapt their patent strategy as it grows, in response to threats and opportunities, whilst balancing cashflow issues in the fragile early years.

          The first case study is about Blubrake, a spin-off from the Politecnico di Milano which developed an award-winning anti-lock braking system for e-bikes and e-cargos. Incubator e-Novia provided industrial expertise combined with a smart patenting strategy, helping to turn university researchers into entrepreneurs and their technology into a market success. Despite the economic crisis caused by the COVID-19 pandemic, the company has been growing fast by providing safety to green mobility. The accompanying podcast features Blubrake’s co-founder and general manager Fabio Todeschini along with technology transfer expert Massimiliano Granieri, who also wrote the case study, and examines Blubrake’s journey from research lab to market from their perspective.

Links 12/1/2022: WordPress 5.9 RC2, Tails 4.26, and Tor Browser 11.0.4

Posted in News Roundup at 3:20 am by Dr. Roy Schestowitz

  • GNU/Linux

    • Desktop/Laptop

      • Review: Black Box Emerald SE Over-IP System Provides Seamless Desktop Experience | HealthTech Magazine

        Healthcare organizations aim to operate with flexibility, scalability, affordability and security. Linux operating systems offer an affordable option for running back-end systems in a secure manner that only open-source architecture provides.

        At the center of the value Linux provides healthcare systems are Kernel-based Virtual Machines, which are based on open-source virtualization technology that is built directly into Linux. KVMs can turn the Linux OS into a hypervisor that supports multiple, isolated virtual environments called guests or virtual machines, according to Red Hat. This is especially useful for deploying mobile solutions.

      • Why You Should Buy a Computer With Linux Preinstalled

        If you’re a Linux user considering a new machine, you might be tempted to just buy a standard computer and install Linux on it, irrespective of the operating system it came with.

        There are several reasons you might want to seek out a computer with Linux preinstalled. Let’s take a look at some of them.

      • Dell Laptop Intel core i3 11th Gen-1115G4/8GB/256GB SSD/Ubuntu – Latitude 3520

        This laptop is compact and lightweight hence you can easily carry it in your backpack. The dimensions of the Dell Laptop Intel core i3 11th Gen-1115G4/8GB/256GB SSD/Ubuntu – Latitude 3520 are 24.08 x 36.09 x 1.8 cm and it weighs around 1.79 Kg.

    • Audiocasts/Shows

    • Kernel Space

    • Instructionals/Technical

      • Backup your databases with mysqldump – Unixcop the Unix / Linux the admins deams

        Hello, friends. In this post, we will show you how to use the mysqldump command. This command allows you to back up your MySQL / MariaDB databases rapidly.

      • How to download tux paint – TechStory

        Tux Paint is a free, grant-winning drawing program made for youngsters ages 3 to 12, yet delighted in by all! It joins a simple to-utilize interface, fun audio effects, and an uplifting animation mascot who guides youngsters as they utilize the program.

      • How to Install Vivaldi Browser on Rocky Linux 8 – LinuxCapable

        Vivaldi is a freeware, cross-platform web browser developed by Vivaldi Technologies. It had grown from the downfall of Opera with many disgruntled when it changed from the Presto layout engine to a Chromium-based browser. This platform angered traditional Opera users. Since then, Vivaldi has become one of the most popular alternative Internet Browsers amongst the big three Chrome, Firefox, and Edge.

        Vivaldi promotes itself as a leading browser with faster navigation, clever bookmarking, more intelligent browsing, extensive tab management, and a more visual approach.

        In the following tutorial, you will learn how to install Vivaldi Browser on Rocky Linux 8 Workstation.

      • How to Install Opera Browser on Rocky Linux 8 – LinuxCapable

        Opera is a freeware, cross-platform web browser developed by Opera Software and operates as a Chromium-based browser. Opera offers a clean, modern web browser that is an alternative to the other major players in the Browser race. Its famous Opera Turbo mode and its renowned battery saving mode are the best amongst all known web browsers by quite a margin, along with a built-in VPN and much more.

        In the following tutorial, you will learn how to install Opera Browser on Rocky Linux 8 Workstation.

      • How to Install Linux Kernel 5.16 on Rocky Linux 8 – LinuxCapable

        Linux kernel 5.16 has many new features, support, and security. The Linux 5.16 kernel release has a great new feature, FUTEX2, or futex_watv(), which aims to improve the Linux gaming experience, growing considerably with better native Linux porting for Windows games utilizing Wine.

        Other improvements have seen write include improved write congestion management, task scheduler for CPU clusters sharing L2/L3 cache, amongst many other additions. More information can be found on the Linux 5.16 Kernel release changelog.

        In the following tutorial, you will learn how to install the latest 5.16 Linux Kernel on Rocky Linux 8 Workstation or Server.

      • How to Add a Printer to a Chromebook

        A Chromebook is unlike most traditional laptops you’ll encounter. It runs a web-based operating system known as Chrome OS, which makes it a modern and versatile device to own.

        But sometimes, even performing rudimentary tasks like setting up printers can be daunting to new users considering the unique interface Chromebooks offer. Let’s take a look at how you can add a printer to your Chromebook in a few simple steps.

      • Virtual machine for my courses | Vojtěch Zeisek

        For my courses ofwork in Linux command line not only for MetaCentrum and with molecular data in R I provide VirtualBox image, which allows to run complete desktop Linux (in this case openSUSE Leap) with all preinstalled applications needed for both courses. It’s easy way how to get fully working Linux to play with. It requires at least bit powerful notebook, e.g. at least quad-core with at least 8 GB RAM, but more is better.

      • The Complete Guide to User Management in Linux

        User account management is one of the many challenges of Linux system administrators. Some of the responsibilities of a system administrator are enabling/disabling user accounts, preserving the home directory, setting user permissions, assigning groups/shells to users, and managing passwords.

        Effective control of user accounts is only possible after familiarity with the basics of Linux account management. Hence, this article is a stepping stone towards securing user accounts. It demonstrates how to create, delete and modify user accounts and manage predefined settings or files to build the most suitable and secure environment for Linux users.

      • How to install and Configure HAProxy load balancer on Rocky Linux/Alma Linux 8

        HAProxy is a free and open source software that provides a high availability load balancer and proxy server for TCP and HTTP-based applications that spreads requests across multiple servers. It distributes the load among the web and application servers.

        Haproxy is popular for load balancing because of its efficiency, reliability, and low memory and CPU footprint. Load balancing is a common solution for distributing web applications horizontally across multiple hosts while providing the users with a single point of access to the service.

        It is available for install on major Linux distributions. In this guide we will learn how to install and configure HAProxy load balancer on Rocky Linux 8. This guide also works on other RHEL 8 based distributions like Alma Linux and Oracle Linux.

      • How to install and use Nmap on Ubuntu 20.04 – NextGenTips

        Welcome to today’s topic where we will be talking about how to install Nmap on Fedora 35.

        Nmap (Network mapper) is a free and open-source software for network discovery and security auditing. It is also used for network inventory services, managing service upgrades, and monitoring hosts’ downtime.

        Nmap is designed for bigger networks but it can also work fine with standalone hosts. Nmap suite includes an advanced GUI and results viewer called Zenmap, a flexible data transfer, redirection and a debugging tool called Ncat, a utility for comparing scan results called Ndiff, and a packet generation and response analysis tool called Nping.

      • How to Modify the Configuration of Running Docker Containers – CloudSavvy IT

        Docker containers are usually treated as immutable once they’ve started running. You can update some configuration parameters dynamically though, such as the container’s name and its hardware resource limits.

        In this guide, we’ll show you how to use built-in Docker commands to modify selected parameters of running containers. We’ll also look at what you shouldn’t change and a workaround you can use if you believe you must.

      • How to Secure Docker’s TCP Socket With TLS – CloudSavvy IT

        Docker’s API is completely unprotected by default except for filesystem permissions on its Unix socket. You should set up TLS when exposing the Docker API over TCP so Docker Engine and your clients can verify each others’ identity. Otherwise anyone with access to the TCP port could browse your Docker containers, start new ones, and run actions as root on your system.

        Configured TLS will require clients to present a valid certificate that’s signed by the server’s certificate authority. To get it working, you need to create SSL certificates, then set up Docker Engine to require TLS connections. Docker CLI clients must also be adjusted to expect a TLS server.

    • Wine or Emulation

      • BeOS rebuild Haiku has a new feature that runs Windows apps • The Register

        The Haiku operating system has an experimental new feature, WINE. Originally a Linux subsystem, WINE can run unmodified Windows programs on other operating systems.

        Edward FitzGerald translated only 158 of the more than 1,200 quatrains attributed to the Persian Astronomer-Poet Omar Khayyám so there are probably more experimental operating systems out there than there are of Omar’s rubāʿiyāt in English. Very, very few such OSes ever amount to much – a few demos, some sketchy code on GitHub, and that’s the end.

        Haiku is different. An open-source reimplementation of former Apple exec Jean-Louis Gassée’s BeOS, the project started in 2001 and took until 2018 to make it to its first beta version. But since then, the pace has picked up a little, with Beta 2 in 2020 and Beta 3 in 2021.

        Partly this is because Haiku didn’t start completely from scratch. The project began right after Palm bought Be and cancelled BeOS.

        Haiku uses some of the original code and its GUI is notably based on BeOS’s Tracker and Deskbar, which Be released as open source in 2000 – when BeOS was already at version 5 and a decade old. In fact, that year your correspondent reviewed it. I was impressed:

    • Games

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • Plasma 5.24 Wallpaper: “Wavy McWallpaperface” › Ken Vermette

          After two tremendously fun livestreams the Plasma 5.24 wallpaper is all wrapped up. With this particular image we had a lot of fun using new techniques to create this wallpaper, and the entire process was a fun adventure. To download the wallpaper it’s available on OpenDesktop and GetHowNewStuff if you’re a Plasma user.

          The wallpaper was first sketched in the Krita painting application. Up until this point wallpapers I authored used a fairly inflexible technique of creating a polygon grid and manipulating it, but this new shape would require new techniques.

    • Distributions

      • MakuluLinux Shift – Good News !

        We have a new Video for showing what’s new and upcoming up with Shift, Some really good news !

      • Haiku Contract Report: December 2021

        For the first time, most of the work I did as part of this contract was not in the month’s activity report aside from a passing reference, as nearly all of it took place outside the main Haiku source tree. So, here I detail it; and thanks once again to the generous donations of readers like you (thank you!).

        Nearly all of my work last month was spent on one thing, which was alluded to in the activity report:

        “Xlibe”: an Xlib/X11 compatibility layer for Haiku

      • BSD

        • Using KeePassXC with SSH-Agent on OpenBSD

          I’m using KeePassXC to manage my secrets. But when I log into my OpenBSD laptop, I’m still asked to enter my SSH passphrase to fill-in ssh-agent(1). Somehow, it’s great ; maybe other system don’t even propose that feature out of the box. But what if KeePassXC could know about my passphrase(s) and interact with ssh-agent(1). Well, it can.

      • IBM/Red Hat/Fedora

        • How To Install Lynis on Fedora 35 – idroot

          In this tutorial, we will show you how to install Lynis on Fedora 35. For those of you who didn’t know, Lynis is the popular security auditing tool for Linux, Unix, and macOS systems. Lynis performs an extensive health scan of your systems to support system hardening and compliance testing. Lynis also gives complete information about the current operating system, current operating system version, hardware running on the Linux machine, firmware information, etc.

          This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the Lynis security audit tool on a Fedora 35.

        • How to Tell If You Are a Successful Program Manager [Ed: As a community, Fedora failed, largely due to actions from a community-hostile IBM]

          When I was hired as the Fedora Program Manager, my manager told me that he wouldn’t hold me responsible for Fedora Linux shipping on time. If an on-time release isn’t part of my success, then what could possibly be?! Keeping in mind that a program manager’s primary responsibilities are to coordinate and communicate across functions, I’ve settled on a few ways that I judge how successful I am.

        • Measuring Your Success as an Open Source Program Manager

          Fedora Program Manager Ben Cotton explains how to know when you’re doing a good job as a program manager.

          Cotton says, “as an active and visible member of the team, you have significant influence on the culture. Besides, culture isn’t evenly distributed. So let’s focus primarily on what’s going on near you. Do people trust you? Do they feel safe giving you bad news?”

        • [CentOS] December 2021 Board Meeting Minutes

          Note: Posting late, as we appear to have overlooked posting these after the December meeting.

          Note: The November board meeting didn’t happen due to scheduling conflicts, so there are no minutes for that month.

        • Red Hat / Fedora Anaconda Installer Shifting To A Web Based UI

          The Red Hat / Fedora Anaconda installer for carrying out new operating system installs is in the early stages of a major rewrite to its user-interface and moving forward will be web-based.

          Anaconda has long been GTK-based but as part of modernizing it they are now looking at rewriting the UI to be a web browser-based UI that makes use of Red Hat’s Cockpit project. The new UI will run locally or also remotely for those wanting to carry out headless server installs and the likes more easily than through VNC, etc.

          Red Hat’s Cockpit web-based management system already has Anaconda DBus while they are working on this new installer UI that will allow it to be more consistent with the rest of the system.

      • Debian Family

        • Tails 4.26 is out

          Add a shortcut to open the Tor Connection assistant when starting Tor Browser if Tails is not connected to the Tor network yet.

      • Canonical/Ubuntu Family

        • How low can you go? Running Ubuntu Desktop on a 2GB Raspberry Pi 4 | Ubuntu

          At Canonical we’re proud to be able to offer a full Ubuntu Desktop experience on the Raspberry 4. Ubuntu Desktop provides everything you need to develop software and even deploy it to Ubuntu Server on devices like the Raspberry Pi Zero 2 W.

          However the full desktop environment is quite a lot for the Pi to handle. Up until now, we’ve recommended users stick to models with either 4GB or 8GB of RAM to be confident that it will perform well. One of our goals for the upcoming Ubuntu 22.04 LTS release is to lower that barrier to entry. This means targeting a viable Desktop experience on Raspberry Pi 4 2GB models.

          The secret to this optimisation is a Linux kernel feature called zswap. In this blog, we’ll show you how to enable this functionality today and benefit from the upcoming performance boost that will come as standard in 22.04.

        • Ubuntu Brings Full Desktop to Raspberry Pi 4 with 2GB RAM

          Want to run the full Ubuntu desktop on a Raspberry Pi 4 with 2GB of RAM? Well, now you can.

          Ubuntu already supports the Raspberry Pi 4 Model B 4GB and 8GB versions (and has done since the Ubuntu 20.10 release). Now the team building the distro plan to go further by supporting the Raspberry Pi 4 2GB model too (which costs around £40, if you’re considering one).

          However, making Ubuntu run decently on devices with modest amounts of memory is difficult.

          Enter zswap, Ubuntu’s ‘secret weapon’ in targeting low-memory Pis with the full-blown Ubuntu experience.

          Most Ubuntu systems come with a swap file. This acts as an ‘overflow’ for RAM, caching processes and tasks that aren’t immediately needed to free up RAM for ones that are. The existing Ubuntu Raspberry Pi builds are no exception to this.

          But all that reading to and from an SD card isn’t the fastest fallback. So Ubuntu is swapping — yes, pun intended— to a compression tool like Zswap.

          “When a process is about to be moved to the swap file, zswap compresses it and checks whether the new, smaller size still needs to be moved or if it can stay in your RAM. It is much quicker to decompress a ‘zswapped’ page than it is to access the swap file so this is a great way of getting more bang for your buck from systems with smaller amounts of RAM,” Canonical’s Oliver Smith explains.

    • Devices/Embedded

      • PinePhone Pro Explorer Edition Linux smartphone is up for pre-order for $399

        Pine64’s PinePhone Pro “Explorer Edition”, the successor of the PinePhone Linux smartphone with a much more powerful Rockchip RK3399S processor, is now available for pre-order for $399 on Pine64 store, but mostly for Linux developers since there’s still a lot of work to do before the phone becomes usable.

        Based on Allwinner A64 processor, the original PinePhone was the cheapest Linux smartphone you could get, but as a user, I can also say it’s sluggish and suspect only a few people have made it their main mobile device. The story should be a different story with PinePhone Pro with much better specs include on hexa-core Cortex-A72/A55 processor tweaked to consume less power than RK3399, 4GB RAM, 128 GB eMMC flash, and a 6-inch display that makes it more like a typical entry-level/mid-range smartphone.

      • PinePhone Pro ‘Explorer Edition’ Pre-Orders Go Live

        You’ll need to move moderately quickly if you want the phone in your hands ASAP, as the upcoming Chinese New Year is expected to temporarily interrupt fulfilment.

        Pine64 say all orders placed between January 11th and 17th will ship by the end of the month. After that? Well you might be waiting until the end of February at the earliest.

        Now that this is the first time people have been able to buy the PinePhone Pro. A ‘developer edition’ went on sale late last year targeted at software enthusiasts wishing to work on bringing up OS support for the device.

        The PinePhone Pro ‘Explorer Edition’ is a little further along the refinement process. It ships with a Manjaro-based OS running the Plasma Mobile UI.

        That said, this phone is still targeted at FOSS enthusiasts willing to workaround flaws and wait for missing features to be added.

        There’s plenty of stock to go around as this is a “large production run” that’s not excepted to sell out in minutes. It is, however, limited to one PinePhone Pro per customer.

      • PinePhone Pro Explorer Edition is now available for $399 (Linux Smartphones) – Liliputing

        The PinePhone Pro is a Linux-friendly smartphone with a 6 inch FHD+ display, a Rockchip RK3399S processor, 4GB of RAM, and 128GB of storage. Priced at $399, it costs about twice as much as the original PinePhone, but it has better specs and should offer significantly better performance.

        Pine64 unveiled the PinePhone Pro last fall and began shipping developer units in December. Today a PinePhone Pro Explorer Edition is available for anyone to purchase – just keep in mind that this is a unit aimed at early adopters and enthusiasts and may not yet be able to do everything you’d expect from a smartphone, especially since software for the PinePhone Pro is still pretty early in the development process.

      • You can pre-order the Linux-powered PinePhone Pro Explorer Edition starting today

        Pine64, the team behind all sorts of Linux-powered hardware like single-board computers, notebooks, and smartphones, announced the PinePhone Pro last October as the successor to its OG PinePhone from 2019. While early units of the Pro model shipped to developers last month, broader availability is only just now getting underway following initial production delays, with the Pro Explorer Edition going up for public pre-order.

        The company posted on its website that it had intended to start pre-orders earlier this month but couldn’t due to some minor problems at the factory, and wanted to be sure everything was running smoothly before opening the floodgates. As a result of that hiccup, only people who place their orders between now and January 17th will have their devices shipped this month, and purchases from the 18th onward will be dispatched after Chinese New Year in February. Regardless of when you choose to place your order, you’re only allowed one unit per person.

      • Open Hardware/Modding

        • How can AI-based analysis help educators support students?
        • 3D Printed Sensor For Finding Wind Direction And Likely Much More | Hackaday

          Have you ever wondered how an electronic wind vane translates a direction into a unique signal? It seems as though it might be very complicated, and indeed some of them are. [martinm] over at yoctopuce.com has an excellent writeup about measuring wind direction using just a single, easily printed disk and some phototransistors.

        • Geniatech spins two SBC options with RK3568

          Geniatech’s “RK3568 Developer Board (K3-3568)” SBC builds on the quad -A55 SoC with up to 8GB DDR4, 2x GbE, HDMI in and out, MIPI-DSI and -CSI, a mic array, M.2, mini-PCIe, and a DVB-T2 tuner. A recent DB3568 version offers even more features.

          Last February, Geniatech announced a RK3568 Development Board and RK3566 Development Board, which is identical except for using a slightly less I/O capable RK3566 instead of the RK3568. We were confused when Geniatech sent us a link to a new RK3568 Developer Board, until we realized it was a different model called the K3-3568. We then saw that our old RK3568 Developer Board product page link had changed to yet another design called the DB3568, which differed from the larger board we covered in that report, which is now used only for the RK3566 Developer Board. Here we look at the two RK3568-based models.

          [...]

          Both boards support Linux and Android.

        • i.MX 8M Plus solderable LGA module follows OSM Size-L standard – CNX Software

          SGET Open Standard Module (OSM) specification was ratified in November 2020. It defined specifications for solderable LGA system-on-modules, and we first noticed it though through the launch of F&S Elektronik “FS 8MM OSM-SF” module powered by an NXP i.MX 8M Mini processor, and following OSM Size-S standard (30x30mm).

          As we noted in our introduction about the Open Standard Module, SGET defined four sizes from Size-0 (30x15mm) to Size-L (45x45mm), and there’s now at least one “Large” OSM module courtesy of iWave Systems, and their iW-RainboW-G40M module equipped with an NXP i.MX 8M Plus processor for AI applications.

      • Mobile Systems/Mobile Applications

        • Some Cool and Free Android Launcher Apps Without Ads!

          Android smartphones on the market usually have their own default launcher. So, the appearance of a certain brand of smartphone will also be different, unless the smartphone uses the default stock android which looks still standard.

          I have several Chinese production smartphones, and most of them embed ads in their UI. Sometimes these ads are embedded in some of the default apps from smartphones. You can delete some default apps without root using adb.

    • Free, Libre, and Open Source Software

      • Events

        • Registration Now Open for CodeNewbie Challenge 2022

          The CodeNewbie Challenge for 2022 (CNC2022) is now open for registration, with a new track and improved resources to help you connect with other participants. This challenge is a free email-based series designed to help you develop your coding skills.

        • First up in 2022: linux.conf.au!

          First up in 2022: linux.conf.au!
          Mark Filion avatar Mark Filion
          January 11, 2022
          Share on Twitter Share on LinkedIn Share on Facebook Share on Mastodon Share on Email
          The new year has only just begun, and already our first conference of 2022 is on the horizon. Join us down under this week for the virtual edition of linux.conf.au, as we discuss bringing WebM Alpha support to GStreamer, and provide a status update on the futex2 syscall!

          Proudly sponsored by Collabora, linux.conf.au 2022 is “the largest linux and open source conference in the Asia-Pacific region. The conference provides deeply technical presentations from industry leaders and experts on a wide array of subjects relating to open source projects, data and open government and community engagement”.

          Just like last year’s edition, LCA2022 will be once again be held entirely online, with four Miniconfs kicking things off this Friday, January 14, followed by a busy two day main conference on January 15 & 16. Among the 80+ sessions spread out over three days will be two from Collabora’s André Almeida and Nicolas Dufresne, as well as a talk on KernelCI by Gentoo’s Alice Ferrazzi. Here’s a look at what each will be discussing.

      • Web Browsers

        • Chromium

          • Can You Use Other Browsers on a Chromebook?

            Chromebooks run Chrome OS, an operating system built around Google Chrome. But what if you want to use another browser like Mozilla Firefox or Microsoft Edge? The answer to that question is not as simple as you might think.

            Naturally, you’d assume a Chromebook—which runs Chrome OS—can only use the Chrome browser. After all, many people consider Chrome OS to be just a glorified browser anyway.

        • Mozilla

          • New Release: Tor Browser 11.0.4

            Tor Browser 11.0.4 is now available from the Tor Browser download page and also from our distribution directory

            This version includes important security updates to Firefox.

      • SaaS/Back End/Databases

        • MySQL vs. MongoDB | FOSS Linux

          MongoDB is a NoSQL document-oriented database primarily used to store high-volume data. MongoDB came into existence around the mid-2000s. It is categorized under the NoSQL databases. MongoDB is maintained and owned by MongoDB Inc.

          NoSQL databases are known for using dynamic schemas. This means that users can create records without defining the structure in the first instance with these databases. Besides, MongoDB is widely known for allowing users to change the record structures, thus adding new fields and deleting existing ones.

          MySQL is one of the extensively used and popular RDBMS (Relational Database Management System). The name MySQL was derived from the co-founder’s daughter’s name “My” and “SQL .”MySQL is maintained and owned by Oracle Corporation.

          MySQL is primarily based on a relational database model since it is a Relational Database Management System). This database model makes DB administration straightforward and flexible.

          Unlike MongoDB, in MySQL, you have to pre-define the database schema based on your preferences and set rules to oversee the relationships between fields in the tables.

      • Productivity Software/LibreOffice/Calligra

      • Content Management Systems (CMS)

        • WordPress 5.9 RC 2

          The second Release Candidate (RC2) for WordPress 5.9 is now available!

          “Release Candidate” means the new version of the software is ready for release. It helps the community check that nothing is missed, given the thousands of plugins and themes and differences in how millions of people use the software.

          Thank you to everyone who has contributed thus far towards testing and filing bugs to help make WordPress 5.9 a great release. WordPress 5.9 is slated for release in just two weeks on January 25, 2022. There’s still time to help! Since RC1 was released, six bugs have been found and fixed. There were 13 bug fixes backported from Gutenberg.

      • FSFE

        • Device Neutrality becomes a reality +++ Stockholm +++ FSFE infrastructure +++ AI

          In our January Newsletter, we recognise the importance of the Digital Markets Act as a mostly positive development for software freedom. Read how the lack of public code cost Stockholm €100 million. Our System Hackers team unravel what lies behind the FSFE infrastructure. Vincent Lequertier stresses that AI needs transparency. FOSDEM is coming up.

          [...]

          Parents in Stockholm receive information about their children’s schools or kindergartens directly to their devices with the help of Skolplattformen (‘School platform’), a digital platform offered by the city of Stockholm. It cost an estimated €100 million and although it was publicly funded, Skolplattformen’s code was private. Parents spotted irregularities and security issues in the platform and proceeded to fix the flaws themselves. They created a functional and secure Free Software alternative, Öppna skolplattformen (‘Open school platform’). The city of Stockholm took legal measures against the developers who wanted to help.

      • FSF

      • Openness/Sharing/Collaboration

        • Open Data

          • Space-Eye: Satellite surveillance from underneath

            High-resolution images from earth observation could help with non-governmental sea rescues in the Mediterranean. However, these have to be purchased from commercial providers, because openly accessible images from EU satellites are of low quality. An initiative now wants to enrich this data with other sources and evaluate it with algorithms.

      • Programming/Development

        • Command Line JSON Client In Golang

          I’m an experienced software developer learning Golang by building an activity tracker1. I want a low-effort way to track my physical activity, and building it seems like a fun learning project. Last time I built a REST service for storing my workout activities, and now I’m going to make a command-line client for it.

        • The burden of an Open Source maintainer

          I look at it this way: if I didn’t use my strategies to stave off burnout, I wouldn’t maintain my projects at all. And having a project that works well and is maintained for 80% of the people who find it is better—in my mind—than adding on extra support and maintenance burden by dealing with every issue and PR that comes my way. And in the end, I maintain the projects for my own needs first.

          Maybe that sounds callous, but it’s the reality of the open source contract, whether the project in question is backed by a multi-billion-dollar corporation or a random guy in St. Louis.

        • Good web scraping is not just about avoiding load

          One of my opinions here is that good web scraping is not just about avoiding load on the target. Ultimately, good web scraping is about being polite. One of the things that’s definitely impolite is overloading the target; harming a scraping target is not a good thing. But another thing that’s impolite, at least in my view (and my view is what matters for Wandering Thoughts), is simple being too large a source of requests and traffic. And 27,000 requests from a single source is at least one order of magnitude larger than I normally see, and the single largest regular source is itself an unreasonable one.

        • AdamW’s Debugging Adventures: Bootloaders and machine IDs | AdamW on Linux and more

          Hi folks! Well, it looks like I forgot to blog for…checks watch….checks calendar…a year. Wow. Whoops. Sorry about that. I’m still here, though! We released, uh, lots of Fedoras since the last time I wrote about that. Fedora 35 is the current one. It’s, uh, mostly great! Go get a copy, why don’t you?

          And while that’s downloading, you can get comfy and listen to another of Crazy Uncle Adam’s Debugging Adventures. In this episode, we’ll be uncomfortably reminded just how much of the code that causes your system to actually boot at all consists of fragile shell script with no tests, so this’ll be fun!

          Last month, booting a system installed from Rawhide live images stopped working properly. You could boot the live image fine, run the installation fine, but on rebooting, the system would fail to boot with an error: dracut: FATAL: Don’t know how to handle ‘root=live:CDLABEL=Fedora-WS-Live-rawh-20211229-n-1′. openQA caught this, and so did one of our QA community members – Ahed Almeleh – who filed a bug. After the end-of-year holidays, I got to figuring out what was going wrong.

          [...]

          When I checked those files, it turned out that on the live image, the ID in both /etc/machine-id and /etc/machine-info was a69bd9379d6445668e7df3ddbda62f86 – the problematic ID on the installed system. When we generate the live image itself, kernel-install uses the value from /etc/machine-id and writes it to /etc/machine-info, and both files wind up in the live filesystem. But on the installed system, the ID in /etc/machine-info was that same value, but the ID in /etc/machine-id was different (as we saw above).

          Remember how I mentioned above that when doing a live install, we essentially dump the live filesystem itself onto the installed system? Well, one of the ‘tweaks’ we make when doing this is to re-generate /etc/machine-id, because that ID is meant to be unique to each installed system – we don’t want every system installed from a Fedora live image to have the same machine ID as the live image itself. However, as this /etc/machine-info file is new, we don’t strip it from or re-generate it in the installed system, we just install it. The installed system has a /etc/machine-info with the same ID as the live image’s machine ID, but a new, different ID in /etc/machine-id. And this (finally) was the ultimate source of the problem! When we run them on the installed system, the new version of kernel-install writes config snippet files using the ID from /etc/machine-info. But Fedora’s patched grub2-mkconfig scriptlet doesn’t know about that mechanism at all (since it’s brand new), and expects the snippet files to contain the ID from /etc/machine-id.

        • BOLT Merged Into LLVM To Optimize Binaries For Faster Performance – Phoronix

          Merged into LLVM’s mono repository minutes ago was BOLT! This is the Facebook-developed tool for optimizing the layout of binaries in the name of delivering greater performance. Facebook (now Meta) already has been using BOLT internally to great success with production workloads, it’s continued advancing in the public as open-source for a while, and is now upstream in LLVM for fostering its future development.

        • New blog!

          At the time, I used Blogger because I didn’t want to mess implementing a blog on my own website infrastructure. Why? The honest answer is an object lesson in software engineering. The last time I re-built my website I thought that building a website generator sounded like a fantastic excuse to learn some Ruby.

        • Single attribute in-place editing with Rails and Turbo

          Turbo can largely simplify our front-end needs to achieve a single-page application feel. If you have ever wondered how to do a single attribute in-place update with Turbo, this post is for you.

          I’ll assume you have Turbo (with turbo-rails gem) installed, and you already have a classic model CRUD done. If you don’t, just generate a standard scaffold. I’ll use the User model and the name attribute, but it can be anything.

        • Perl/Raku

        • Python

          • PyCook

            A few months ago, I went on a quest to better digitize and collect a bunch of the recipes I use on a regular basis. Like most people, I’ve got a 3-ring binder of stuff I’ve printed from the internet, a box with the usual 4×6 cards, most of which are hand-written, and a stack of cookbooks. I wanted something that could be both digital and physical and which would make recipes easier to share. I also wanted whatever storage system I developed to be something stupid simple. If there’s one thing I’ve learned about myself over the years it’s that if I make something too hard, I’ll never get around to it.

        • Shell/Bash/Zsh/Ksh

          • Tidy tables for data processing

            I’ve seen some very pretty data tables in spreadsheets, on webpages and in word-processed documents.

            There were lots of colours. Careful attention had been paid to font, font size and font emphasis. Column widths, row heights and border thickness had been skillfully adjusted. In spreadsheets there were comments and metadata notes. In word-processed documents there were numbered footnotes, with superscript numbers attached to data items.

            Of course, all that colour and data decoration is for human eyes. If the same tables were to be processed digitally, the processing program wouldn’t care what the table looks like. It just wants the data to be tidy and workable.

            In this post I explain what “tidy and workable” means for data processing.

        • Java

          • The 10 Best IDEs for Java | FOSS Linux

            Java is a leading programming language and a computing platform in the development world. Its first inception was in 1995 by Sun Microsystem and later acquired by Oracle Corporation. So as you know, Java is one of the first programming languages that many learned because of its popularity levels. It is a high-level, object-oriented, and class-based language designed to be an all-around general-purpose language.

            This language permits developers to “write once, run anywhere,” which means that after compiling a code in Java, it can run anywhere- Hence, Java is supported without needing to recompile. It is nothing different from the C and C++ programming language syntax if you don’t comprehend its syntax.

            To implement Java programming language, you need particular environments to develop codes and apps. So here comes the starring role of Java Integrated Development Environment (Java IDE). This (IDE) was felt as developers encountered issues day in day out while coding huge apps and resolved out to find a solution.

            Typically, huge apps have lots of classes and files, and as such, it gets challenging to debug them. But with the help of an IDE, proper project management can be maintained as it offers hints on code completion and syntax errors.

            The integrated Development Environment (IDE) is typically a software app that gives developers a platform with numerous features to formulate computer-based apps, tools, web pages, services, etc.

    • Standards/Consortia

      • PCIe 6.0 Specification Released With 64 GT/s Transfer Speeds – Phoronix

        While PCIe 5.0 adoption is only in its infancy, the PCI-SIG today announced the PCIe 6.0 specification.

        The PCI Express standard speeds are again being doubled with PCIe 6.0 now being designed to deliver 64 GT/s transfer speeds, double that of PCIe 5.0. PCIe 6.0 will be able to deliver up to 256 GB/s of bandwidth in a PCIe x16 configuration. The specs shouldn’t be all that surprising as back in 2019 it was announced PCIe 6.0 would deliver 64 GT/s transfer rates though at that time the spec was expected to be out in 2021.

      • Why Are Hyperlinks Blue

        While musing over my recently published article, Why are hyperlinks blue, I was left feeling a bit blue myself. Yes, it could have been the fact that I was evacuated and Hurricane Ida was destroying my home, I’ll admit. Besides that, I was also bothered by the fact that even though I was able to determine that Mosaic was indeed the first browser to use blue hyperlinks, I was not much closer to determining why the hyperlinks themselves were blue.

        Black hyperlinks had been the standard for many years, but why the sudden shift to blue? One can assume that it is because RGB phosphorescent monitors were becoming more readily available in comparison to monotone phosphorescent monitors that could only produce one color. Okay then, with a palette of colors to choose from, why blue? Why not green? Microsoft 3.1 had used green for hyperlinks. Surely there must have been something to support or inspire Marc Andreessen and Eric Bina on April 12, 1993 to make the hyperlinks blue, but what was it?

        I simply didn’t know, so I published the article anyway and hoped the internet would do as it always does: thrill in pointing out when someone is wrong, in the hope that someone would know the true answer.

        I published the first article, a hurricane destroyed my home, and now two months later I’m once again sitting in my now gutted home with the miracle of the internet once again restored, and I’m back on the case.

  • Leftovers

    • Science

      • Veto Power and Decision Making Process

        Imagine you’re a venture capital partnership that has make decisions on whether to invest in a startup or not. A partner comes to the Monday meeting after having met a promising new startup, but not everyone agrees that it’s a worthwhile investment. What is the optimal decision making process for the group to maximize their return?

        Majority vote? Supermajority? Unanimous? Does anyone have veto power? Can a single individual with high conviction make a unilateral decision?

        Turns out the answer in practice depends in part on the riskiness of the decision being made. Think about it in terms of the probability of a “yes” decision. All other things equal, the more votes needed to pass the proposal lowers the probability of success. Veto power lowers it even more.

      • Many presentations of axiomatic set theory contain an error

        The axiom of union is a typical example. It states that if !!\mathcal A!! is some family of sets, then there is also a set !!\bigcup \mathcal A!!, which is the union of the members of !!\mathcal A!!. The other axioms of this type are the axioms of pairing, specification, power set, replacement, and choice.

        There is a minor technical problem with this approach: where do you get the elements of !!\mathcal A!! to begin with? If the axioms only tell you how to make new sets out of old ones, how do you get started? The theory is a potentially vacuous one in which there aren’t any sets! You can prove that if there were any sets they would have certain properties, but not that there actually are any such things.

        This isn’t an entirely silly quibble. Prior to the development of axiomatic set theory, mathematicians had been using a model called naïve set theory, and after about thirty years it transpired that the theory was inconsistent. Thirty years of work about a theory of sets, and then it turned out that there was no possible universe of sets that satisfied the requirements of the theory! This precipitated an upheaval in mathematics a bit similar to the quantum revolution in physics: the top-down view is okay, but the most basic underlying theory is just wrong.

      • Reusable Booster Rockets, Asian Roundup | Hackaday

        The Space Shuttle’s solid rocket boosters were reusable, although ultimately the overall system didn’t prove cheaper than expendable launches. But given the successes of the Falcon 9 program — booster B1051 completed its 11th mission last month — the idea of a rocket stage returning to the launch site and being reused isn’t such a crazy proposition anymore. It’s not surprising that other space agencies around the world are pursuing this technology.

        Last year the India Space Research Organization (ISRO) announced plans for a reusable launcher program based on their GSLV Mark III rocket. The Japan Aerospace Exploratory Agency (JAXA) announced last Fall that it is beginning a reusable rocket project, in cooperation with various industries and universities in Japan. The South Korean space agency, Korea Aerospace Research Institute (KARI), was surprised in November when lawmakers announced a reusable rocket program that wasn’t requested in their 2022 budget. Not in Asia, but in December France’s ArianeGroup announced a reusable rocket program called Maïa.

    • Education

    • Hardware

      • Electronic Drum Toy Built From Scratch | Hackaday

        Drum kits used to be key to any serious band, however, these days, much of our music is created on computer or using a drum machine instead. [spanceac] has built a simple example of the latter, using a microcontroller to build a basic sample-based drum toy.

        The brains of the operation is the STM32F100VET6B, which comes complete with a 12-bit DAC for outputting sound. It’s also got a healthy 512 KB of flash, enabling it to store the drum samples onboard without the need for extra parts. Samples are stored at a sample rate of 22,050 Hz in 16-bit resolution – decent quality for a tiny little build, even if the DAC chops that back down to 12-bits later.

      • Honda Ignition Coils Sing The Song Of Their People | Hackaday

        High-voltage experimenters have been using automotive ignition coils to generate impressive sparks in the home lab for decades, and why not? They’re cheap, easily obtainable, and at the end of the day, producing sparks is literally what they’re designed to do. But that doesn’t mean there isn’t room for improvement.

        In his latest Plasma Channel video [Jay Bowles] revisits this classic experiment, bringing to bear the considerable high-voltage experience he’s gained over the last several years. Building on an earlier setup that used a single Honda ignition coil, this new dual-coil version can produce up to 60,000 volts and is driven by a cleaner and more reliable circuit based on the iconic 555 timer. A pair of potentiometers on the front of the driver can adjust its square wave output from 1 to 10 kilohertz manually, while a commercial Bluetooth audio receiver tied into the 555 circuit allows the output to be modulated by simply playing audio from a paired device.

      • HitClips Custom Cartridge Hack Will Never Give Up, Let Down, Or Turn Around

        In August 2000, Tiger Electronics released HitClips: Music cartridges and players designed to easily share 60 second low quality Clips of a youngster’s favorite Hits. Various players were available, and individual cartridges were inexpensive enough to collect. And it’s these toy music players that [Guy Dupont] has been hacking quite successfully on as you can see in the video after the break and on [Guy]’s Hackaday.io page.

      • The Atari Punk Console, Now With More Vacuum Tubes | Hackaday

        Most of us have beheld the sonic glory of an Atari Punk Console, that lo-fi synth whose classic incarnation is a pair of 555 timers set up to warble and bleep in interesting ways. Very few of us, however, have likely seen an APC built from 555s that are made from vacuum tubes.

        It’s little surprise to regular readers that this one comes to us by way of [David] at Usagi Electric, who hasn’t met a circuit that couldn’t be improved by realizing it in vacuum tubes. His “hollow-state” Atari Punk Console began with the 18-tube version of the 555 that he built just for fun a while back, which proved popular enough that he’s working on a kit version, the prototype of which served as the second timer for the synth. With 32 tubes aglow amid a rats-nest of jumpers, the console managed to make the requisites sounds, but lacked a certain elegance. [David] then vastly simplified the design, reducing the BOM to just four dual-triode tubes. Housed on a CNC milled PCB in a custom wood box, the synth does a respectable job and looks good doing it. The video below shows both versions in action, as well as detailing their construction.

      • LED Bubbles From The 1970s Tell The Time | Hackaday

        [CuriousMarc] is nothing if not curious. Finding some old TI timekeeping chips to reverse engineer, he set out to make a clock using old-fashioned “bubble LEDs.” You can see the result of his tinkering in the video below. For the uninitiated, bubble LEDs are 7-segment LEDs with magnifying bubbles over each digit. These were popular in calculators, watches, and other places that used LEDs before LCDs largely displaced them.

        The history of these has to do with the power required to light an LED. You don’t technically need a magnifying lens, but larger LEDs take more power. These displays were relatively low power and used tiny LEDs with light pipes to make each dot a full segment. The lens made the segments larger and easier to see.

        Beyond the TI chip and HP displays, there isn’t too much else needed. [Marc] just wired the whole thing using the IC as a substrate. Sort of dead bug construction using enameled wire. At first, it didn’t work but it turned out to be a battery issue. The device really wanted 2.5 V and not the 3 V provided by the battery. The solution required a little detective work.

      • 3D Printering: Soldering A Heated Bed | Hackaday

        There’s an old saying about something being a “drop in the ocean.” That’s how I felt faced with the prospect of replacing a 12 V heated bed on my printer with a new 24 V one. The old bed had a nice connector assembled from the factory, although I had replaced the cable long ago due to heating issues with that particular printer. The new bed, however, just had bare copper pads.

        I’m no soldering novice: I made my first solder joint sometime in the early 1970s. So I felt up to the challenge, but I also knew I wouldn’t be able to use my usual Edsyn iron for a job like this. Since the heated bed is essentially a giant heatsink for these pads, I knew it would require the big guns. I dug out my old — and I mean super old — Weller 140 W soldering gun. Surely, that would do the trick, right?

    • Health/Nutrition/Agriculture

      • Headed for six figures The Omicron variant is bringing Russia’s coronavirus epidemic to a tipping point, officials warn

        According to government officials, Russia’s coronavirus epidemic has reached a tipping point. On Tuesday, January 11, Moscow Mayor Sergey Sobyanin, Rospotrebnadzor head Anna Popova, and Russian Health Minister Mikhail Murashko all raised concerns about the rapid spread of the Omicron strain during a meeting of the Presidium of the Government Coordination Council on countering COVID-19. Among other things, they warned that the daily number of new coronavirus cases in Russia could soon hit six figures. Meduza summarizes their remarks here.

      • Republicans Only Extend Unemployment When It Protects Anti-Vaxxers
      • EU Says ‘Premature’ to Have Urgent WTO Meeting on Covid-19

        After over a year of the European Union blocking a proposed waiver of intellectual property rights for Covid-19 vaccines—and as case numbers surge thanks to the Omicron variant—an E.U. representative on Monday called India’s proposal for a World Trade Organization conference on pandemic response “premature.”

        “The pandemic hasn’t lasted long enough for the E.U.?” asked Dimitri Eynikel, who represents Médecins Sans Frontières (MSF), or Doctors Without Borders, on the issue of access to medicines at the European Union.

      • There Are No Heroes in Djokovic vs. Australia

        If someone is going to compare you to Spartacus, you had better damn well earn it through your words and deeds. Novak Djokovic, the sour, selfish tennis demigod, isn’t even in the conversation. That didn’t stop the father of the tennis great from saying that his son was “the world’s new Spartacus” and “the symbol and the leader of the free world.” Why? Because he was standing up to “corona fascism” by refusing to be vaccinated or tamed by any mandates or restrictions. Yet Djokovic’s desire to remain a vaccine denier collided with Australia’s own policy of denying entry to anyone who has not gotten the vaccine.

      • Omicron has higher asymptomatic carriage: studies

        The results suggest a high carriage rate even in those vaccinated, the South African Medical Research Council said in a release.

      • How triclosan, found in many consumer products, is triggered to harm the gut

        Increasingly, research links triclosan, an antimicrobial found in thousands of consumer products, with the gut microbiome and gut inflammation. A new study looks at the potential for combating damage to the intestine. The findings suggest new approaches for improving the diagnosis, prevention and treatment of inflammatory bowel disease.

      • IDPH ‘Unable’ To Say How Many Children Are Hospitalized For COVID
    • Integrity/Availability

      • Proprietary

        • Pseudo-Open Source

          • Openwashing

            • Instaclustr focuses on pure open source to offer open-core alternative – SiliconANGLE

              The promise of open source is to make software tools free and open, yet some versions contain proprietary add-ons, licensing terms, or risks that must be vetted first.

              This situation is commonly referred to as “open core,” and to address this issue, Instaclustr Pty. Ltd. has built its business around providing managed support to configure open-source technologies such as Apache Cassandra or PostgreSQL while avoiding the encumbrance of open core. Instaclustr has become a player in the estimated $21 billion open-source services market.

        • Security

          • SOK: On the Analysis of Web Browser Security

            Web browsers are integral parts of everyone’s daily life. They are commonly used for security-critical and privacy sensitive tasks, like banking transactions and checking medical records. Unfortunately, modern web browsers are too complex to be bug free (e.g., 25 million lines of code in Chrome), and their role as an interface to the cyberspace makes them an attractive target for attacks. Accordingly, web browsers naturally become an arena for demonstrating advanced exploitation techniques by attackers and state-of-the-art defenses by browser vendors. Web browsers, arguably, are the most exciting place to learn the latest security issues and techniques, but remain as a black art to most security researchers because of their fast-changing characteristics and complex code bases.

            To bridge this gap, this paper attempts to systematize the security landscape of modern web browsers by studying the popular classes of security bugs, their exploitation techniques, and deployed defenses. More specifically, we first introduce a unified architecture that faithfully represents the security design of four major web browsers. Second, we share insights from a 10-year longitudinal study on browser bugs. Third, we present a timeline and context of mitigation schemes and their effectiveness. Fourth, we share our lessons from a full-chain exploit used in 2020 Pwn2Own competition. and the implication of bug bounty programs to web browser security. We believe that the key takeaways from this systematization can shed light on how to advance the status quo of modern web browsers, and, importantly, how to create secure yet complex software in the future.

          • Cloud Apps Replace Web as Source for Most Malware Downloads

            New research shows that enterprise organizations these days are far more likely to experience malware downloads from cloud applications than any other source.

            Researchers at Netskope recently analyzed data gathered from customer networks and discovered that more than two-thirds of malware downloaded to enterprise networks between Jan. 1, 2020, and Nov. 30, 2021, originated from cloud applications. The security vendor found that cloud-delivered malware has become more prevalent than malware delivered via the Web and via malware-laced websites.

          • Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird | CISA

            Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. 

            CISA encourages users and administrators to review the Mozilla security advisories for [Firefox 96], [Firefox ESR 91.5], and [Thunderbird 91.5] and apply the necessary updates.

          • ‘Wormable’ Flaw Leads January 2022 Patch Tuesday

            Microsoft today released updates to plug nearly 120 security holes in Windows and supported software. Six of the vulnerabilities were publicly detailed already, potentially giving attackers a head start in figuring out how to exploit them in unpatched systems. More concerning, Microsoft warns that one of the flaws fixed this month is “wormable,” meaning no human interaction would be required for an attack to spread from one vulnerable Windows box to another.

          • Microsoft Releases January 2022 Security Updates [Ed: If CISA and NSA were serious about security, they would advise people to abandon Microsoft for the back doors]

            Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker could exploit some of these vulnerabilities to take control of an affected system.

          • Citrix Releases Security Update for Workspace App for Linux | CISA

            Citrix has released a security update to address a vulnerability in Workspace App for Linux. An attacker could exploit this vulnerability to take control of an affected system.

          • Adobe Releases Security Updates for Multiple Products | CISA

            Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

          • Privacy/Surveillance

            • Meta Sues Firm For Data Scraping; Claims That Signing Up For New Accounts After Being Banned Is Equivalent Of Hacking

              For years we’ve talked about the infamous Facebook lawsuit against Power.com. As you may recall, this was a key CFAA case against a site, Power.com, that was trying to create a social media aggregator dashboard — in which you could login through a single interface, and access content from and post to a variety of different social media platforms. Facebook alleged that this was a form of hacking — claiming it was “unauthorized access” to Facebook. This was even though there was no actual unauthorized access. Individual users gave Power their login credentials, so everything was completely authorized. After years of winding through the courts, unfortunately, it was decided that this was a violation of the CFAA, mainly because Facebook sent a cease & desist letter, and somehow going against that now made it “unauthorized.” In my mind, this is one of the biggest reasons why Facebook has much less competition today than it otherwise might — because it used the CFAA and cases against Power.com to create a “you can check in, but you can’t check out” kind of data arrangement. Things like Power.com were an empowering system that might have made people much less reliant on Facebook — but it was killed.

            • Standing Up For Privacy In New York State

              The first piece of legislation is A. 7326/S. 6541—New York bills must have identical versions in each house to pass—which protects the confidentiality of medical immunity information. It does this in several key ways, including: limiting the collection, use and sharing of immunity information; expressly prohibiting such information from being shared with immigration or child services agencies; and requiring that those asking for immunity information also accept an analog credential—such as a paper record.

              As New Yorkers present information about their immunity—vaccination records, for example, or test results— to get in the door at restaurants or gyms, they shouldn’t have to worry that that information will end up in places they never expected. They shouldn’t have to worry that a company working with the government on an app to present these records will keep them to track their movements. And they should not have to worry that this information will be collected for other purposes by companies or government agencies. Assuring people that their information will not be used in unauthorized ways increases much-needed trust in public health efforts. 

              The second piece of legislation, A. 84/ S. 296, also aims to stop unnecessary intrusion on people’s everyday lives. This legislation would stop law enforcement from conducting a particularly troubling type of dragnet surveillance on New Yorkers, by stopping “reverse location” warrants. Such warrants—sometimes also called “geofence” warrants—allow law enforcement agencies to conduct fishing expeditions and access data about dozens, or even hundreds, of devices at once. Government use of this surveillance tactic is incredibly dangerous to our freedoms, and has been used to disproportionately target marginalized communities. Unfortunately courts have rubber-stamped these warrant requests without questioning their broad scope. This has shown that requiring warrants alone is not enough to protect our privacy; legislatures must act to stop these practices.

            • UK Government Apparently Hoping It Can Regulate End-To-End Encryption Out Of Existence

              Politicians — those motivated by the notion of “doing something” — want to end encryption. They don’t want this to affect their communications and data security. But they don’t see the harm in stripping these protections from the general public. Often, the argument is nothing better than “only criminals want end-to-end encryption,” something they trot out as a truism despite plenty of evidence to the contrary.

            • Danish spy chief detained over ‘highly sensitive’ leak

              The chief of Denmark’s Defense Intelligence Service (FE), Lars Findsen, has been held in custody for more than a month over an apparent leak, it was revealed on Monday.

              Local media said the leak involved “highly sensitive” information. It follows allegations last year that Danish intelligence colluded with the US National Security Agency (NSA) to spy on European leaders and private Danish citizens.

            • EDPS sanctions Parliament over EU-US Data Transfers to Google and Stripe

              The European Data Protection Supervisor (EDPS) issued a decision after a complaint filed by noyb confirming that the European Parliament violated data protection law on its COVID testing website. The EDPS highlights that the use of Google Analytics and the payment provider Stripe (both US companies) violated the Court of Justice’s (CJEU) “Schrems II” ruling on EU-US data transfers. The ruling is one of the first decisions implementing “Schrems II” on the ground and may show the way for hundreds of other cases pending before regulators.

            • Stop Europol’s illegal bulk data collection!

              For years, the EU police authority Europol has been collecting massive amounts of data without any legal basis. Now Europe’s top data protection official Wojciech Wiewiórowski is taking action against the police agency, according to an order published today.

            • EDPS sanctions European Parliament for illegal data transfer to the US

              Following a complaint by six MEPs, including Patrick Breyer of the Pirate Party, the European Data Protection Supervisor (EDPS) has confirmed that the European Parliament‘s COVID test website violated data protection rules. The EDPS highlights that the use of Google Analytics and the payment provider Stripe (both US companies) violated the European Court of Justice’s (CJEU) “Schrems II” ruling on data transfers between the EU and the US. The ruling is one of the first decisions to implement “Schrems II” in practice and could be groundbreaking for many other cases currently being considered by regulators.

              On behalf of six MEPs, the data protection organisation noyb filed a data protection complaint against the European Parliament in January 2021. The main issues raised are the deceptive cookies banners of an internal corona testing website, the vague and unclear data protection notice, and the illegal transfer of data to the US. The EDPS investigated the matter and issued a reprimand on the Parliament for violation of the “GDPR for EU institutions” (Regulation (EU) 2018/1725 applicable only to EU institutions).

    • Defence/Aggression

      • Kazakhstan: Militarist’s Newest Case For Confronting Putin’s Russia

        The fact that the Russian force includes members of the 45th Brigade, an elite special forces unit, is indeed worrisome.  This unit fought in both Chechen wars in 1996 and 1999; in South Ossetia in 2008 in the five-day war with Georgia; in the abrupt annexation of Crimea in 2014; and in Syria in 2015.  Nevertheless, Russia’s overall view of war, as expressed by its own writers, is one of defeat and even humiliation.  Moscow lost the Crimean War in the 1850; the Russo-Japanese War in 1904-1905; WWI, which opened the door to the Bolshevik Revolution; the Cold War with the United States; and finally the humiliation of the dissolution of the Soviet Union.  The Soviet demise meant the loss of two million square miles, which exceeds the size of the European Union or India.  Even the so-called victory in WWII meant the loss of more than 27 million Soviets, and an economic and social recovery that took decades.

        Russians know the cost of war, and Putin, who lost a brother in WWII, presumably shares that concern.  His so-called adventurism has involved very short campaigns with limited risk.  The short war with Georgia was typical, and in fact was brought on by the Bush administration’s encouragement of Georgian irredentism in Abkhazia and South Ossetia.  The seizure of Crimea was quick and tidy, and returned to Moscow a territory that had been in Russian hands for hundreds of years.  As in Georgia, U.S. manipulation of Ukraine’s political firmament had much to do with Putin’s decision to retake Crimea.  (Politically, Ukraine is more united and stable without Crimea because of the heavy concentration of Russian ethnics in the region.)

      • Tech giants banned Trump. But did they censor him?

        But there’s another, more conceptual debate that transcends partisan politics and carries implications beyond Trump’s freedom to tweet. It’s the question of whether the largest social media companies have become so critical to public debate that being banned or blacklisted — whether you’re an elected official, a dissident or even just a private citizen who runs afoul of their content policies — amounts to a form of modern-day censorship. And, if so, are there circumstances under which such censorship is justified?

      • Former Army Chaplain at Guantánamo Was Jailed There Himself
      • Twenty Years Of Barbarism At Guantánamo: Biden Could End It But Lacks The Political Will

        The first “high-value detainee” at Guantánamo military prison was approved for transfer a day before the detention camp marked the 20th anniversary of confining prisoners in the “war on terrorism.”

        According to lawyers from Center for Constitutional Rights (CCR) who represented him, Guled Hassan Duran was captured in Djibouti in March 2004. The CIA renditioned him to a secret prison site, where he was tortured and abused prior to his transfer to Guantánamo in 2006. He was designated by President Barack Obama’s review task force for indefinite detention, even though he was not charged with a crime. Duran is a citizen of Somalia with “prior residence in Germany and Sweden.” Congress prohibited the United States government from transferring any Guantánamo prisoners to Libya, Somalia, Syria, or Yemen in 2015. Because he cannot return to Somalia, it could be several years before he is released to a country willing to accept him.  Thirty-nine prisoners remain indefinitely detained at Guantánamo. They have been in confinement for the past 15-to-20 years without charge or trial.

      • Guantánamo Turns 20: Ex-Prisoner Moazzam Begg Calls on Biden to Close Site & End Legacy of Torture

        On the 20th anniversary of the first prisoner’s arrival at Guantánamo Bay, we spend the hour with former detainees, starting with Moazzam Begg, who was imprisoned for three years at the military prison and eventually released without ever being charged with a crime. He now advocates on behalf of victims of the so-called war on terror, calling on the Biden administration to follow through on promises to shut down the military prison and release the remaining 39 prisoners. Twenty years after the detention center opened, Begg reflects on the absurdity and lawlessness of Guantánamo, describing how its torture methods were not only unethical but ultimately extracted very little credible intelligence. “The legacy of this place is imprisonment without trial, torture, the absence of the rule of law, the removal of the presumption of innocence,” says Begg.

      • Twenty Years Of Barbarism At Guantánamo: Biden Could End It But Lacks The Political Will

        This article was funded by paid subscribers of The Dissenter, a project of Shadowproof. Become a paid subscriber and help us expand our work.

        The first “high-value detainee” at Guantánamo military prison was approved for transfer a day before the detention camp marked the 20th anniversary of confining prisoners in the “war on terrorism.”

      • Guantánamo 2.0: Former Prisoner Mansoor Adayfi Says Injustice Continues Even After Release

        Former Guantánamo Bay detainee Mansoor Adayfi was imprisoned for 14 years without charge before being released in 2016 to Serbia. Adayfi says those released from Guantánamo become “stateless men” who experience a brutal legal limbo even after being cleared of all charges, often released to countries where they have no history or connection with their families. Even exonerated former detainees of Guantánamo “live in the stigma of Guantánamo, viewed by the hosting countries as terrorists, as killers,” says Adayfi. He joins advocates everywhere in calling for President Biden to shut the prison down.

    • Environment

      • REPORT Lufthansa group confirmed that 18,000 flights had been flown empty to keep airport slots

        The airline’s parent company, Lufthansa Group, confirmed that 18,000 flights had been flown empty, including 3,000 Brussels Airlines services, according to a report in The Bulletin.

        EU rules require that airlines operate a certain percentage of scheduled flights to keep their slots at major airports.

        Under these “use it or lose it” regulations, prior to the pandemic carriers had to utilise at least 80pc of their scheduled take-off and landing slots.

      • Energy

        • Living Closer to Oil and Gas Drilling Linked to Higher Risk of Pregnancy Complications, New Study Finds

          Living near oil and gas drilling may increase pregnant women’s risk of developing gestational hypertension and eclampsia, according to a new study.

          “We observed for those pregnant women within one kilometer of drilling that there’s about a 5 percent increase in odds of gestational hypertension, and 26 percent increase odds of eclampsia,” Mary Willis, a postdoctoral scholar at Oregon State University and one of the authors of the study, told DeSmog. “So, it’s this really close range where we are seeing a potential impact right on women’s health.”

        • [Cryptocurrency] Startup Lets You Fund Other People’s Lawsuits Against Each Other

          First, some background on litigation funding. Half-gambling and half-fundraising, the process of litigation funding is a way for people with money to help those without fund their lawsuits — and in return, they get a share of whatever potential settlements the claimants receive.

        • Another Entire Country Just Banned [Cryptocurrency] Mining

          This week Kosovo, located in southeastern Europe, announced that it’s banning mining as well, after spending the last 60 days in a government state of emergency over an ongoing energy crisis.

      • Wildlife/Nature

        • Environmentalists Sue to Stop Livestock Grazing Plan for Point Reyes National Seashore

          Point Reyes is a spectacular landscape of open prairies and patches of woodlands home to 460 species, 876 plants, and many different marine and terrestrial mammals. In addition, the seashore harbors a hundred listed rare, threatened, and endangered species, an incredible diversity given the seashore’s relatively small size.

          While the peninsula possesses unquestioned scenic value, Point Reyes National Seashore’s ecological significance is recognized by its designation as an international biosphere reserve, part of the UNESCO’s Man and the Biosphere program.

        • What to expect from the world’s sixth mass extinction

          Over the next few decades alone, at least 1 million species are at risk of being wiped out. That’s according to an estimate in a landmark report published in 2019 — but many scientists say it could well be an undercount.

          Trying to predict the results of a complete collapse in biodiversity is almost a black art — ecosystems are incredibly complex.

          Scientists agree, however, that there are several clear predictions should extinctions continue at this rate. And all the effects are inextricably linked, like a game of Jenga.

    • Finance

      • I won’t let you pay me for my open source

        What I do think is interesting is how both Gates and Stallman anchored their worldview in a scarcity paradigm that embraced a similar fear of the freeloader problem, and relied on software licenses, that is contracts, to counter it.

        Gates was afraid that users would take his software and not pay him for it. Stallman was afraid that users would extend his software and not hand over their contributions.

        Both men believed that the distribution of software was a trade exchange. One that had to be bound by certain explicit debt obligations, which had to be settled or else!

        Neither Gates nor Stallman were unique in their zeal to control the terms under which their software was used and distributed. Most of the software world fall in the same category. Share the same mistrust of users, and consider some level of debt obligations for using software completely natural.

      • Too Cheap to Meter

        Like the distances in the race between Achilles and the Tortoise, halving makes things get small quick. At some point, we stopped thinking about how much internet bandwidth we were using and we got free services like YouTube. Storage became so cheap that many companies gave it away for free, and we got practically unlimited storage in our Gmail inboxes. Now, computing power is becoming cheap enough for businesses like Replit or GitHub Codespaces to give it away for free.

        There’s something special about when things are so cheap that they’re free. As I wrote in Jevons Paradox and Software Efficiency, when the efficiency of something increases, sometimes we end up using more of it. There’s few distribution strategies that work better than giving a paid service away for free.

    • AstroTurf/Lobbying/Politics

      • Companies propose scanning content pre-encryption to fight CSAM

        According to a government press release, the three companies will work “to develop software focusing on user privacy, detection and prevention of CSAM and predatory behaviour, and age verification to detect child sexual abuse before it reaches an E2EE environment, preventing it from being uploaded and shared”.

        The firms have said any CSAM detected by the system will be reported to moderators for further action to be taken. When CSAM is discovered by the AI algorithm, the information given to moderators will be tracked and audited to prevent any misuse.

        The developers claim there are currently no products in the market that provide this kind of pre-content filtering with end-to-end encryption.

      • Manufacturing Modi’s popularity

        The Wire news portal last week reported that a little-known app called Tek Fog was used to inflate the BJP’s clout. It can unleash a barrage of orchestrated trolls also against critics through a secret set-up.

        The Wire is among a clutch of courageous media outfits that have refused to be cowed by the state’s daily intrusions and intimidations. The portal observed for two years the existence of the app when a former insider turned whistleblower revealed its use “by political operatives affiliated with the BJP to artificially inflate the popularity of the party, harass its critics and manipulate public perceptions at scale across major social media platforms”. The orchestration was visible quite pronouncedly in the phrases used and references made, for example, to Mr Modi’s convoy, which last week got stranded in Punjab for all of 15 minutes. “Menacingly close to the Pakistan border” was repeated ad nauseum by the chorus of TV anchors to enlarge the threat Mr Modi faced after a change in his travel plan hit a roadblock of protesting farmers who had no clue he was travelling by.

      • Tek Fog: An App With BJP Footprints for Cyber Troops to Automate Hate, Manipulate Trends

        Over subsequent conversations, the source claimed their daily job involved hijacking Twitter’s ‘trending’ section with targeted hashtags, creating and managing multiple WhatsApp groups affiliated to the BJP and directing the online harassment of journalists critical of the BJP, all via the Tek Fog app.

        The source went on to allege that they had decided to come forward after their supposed handler – Devang Dave, ex national social media and IT head, Bharatiya Janata Yuva Morcha (the youth-wing of the BJP) and current election manager for the party in Maharashtra – failed to deliver on a lucrative job offer promised in 2018 if the BJP was able to retain power in the 2019 Lok Sabha elections.

    • Misinformation/Disinformation

      • The Shocking Things the GOP and Trumpians Believe

        “What you see is what you get” is an old cliche, but it’s endured all these centuries because there’s so much truth in it. “Don’t listen to what people say, instead look at what they do” is another truism we can apply to inform us about today’s politics.

        The past forty years have seen three Republican and three Democratic presidencies, and the modern priorities and values of each Party are now quite clear.

      • Covid Test Misinformation Spikes Along With Spread of Omicron

        Misinformation about Covid-19 tests has spiked across social media in recent weeks, researchers say, as coronavirus cases have surged again worldwide because of the highly infectious Omicron variant.

        The burst of misinformation threatens to further stymie public efforts to keep the health crisis under control. Previous spikes in pandemic-related falsehoods focused on the vaccines, masks and the severity of the virus. The falsehoods help undermine best practices for controlling the spread of the coronavirus, health experts say, noting that misinformation remains a key factor in vaccine hesitancy.

      • AI’s 6 Worst-Case Scenarios: Who needs Terminators when you have precision clickbait and ultra-deepfakes?

        Hollywood’s worst-case scenario involving artificial intelligence (AI) is familiar as a blockbuster sci-fi film: Machines acquire humanlike intelligence, achieving sentience, and inevitably turn into evil overlords that attempt to destroy the human race. This narrative capitalizes on our innate fear of technology, a reflection of the profound change that often accompanies new technological developments.

        However, as Malcolm Murdock, machine-learning engineer and author of the 2019 novel The Quantum Price, puts it, “AI doesn’t have to be sentient to kill us all. There are plenty of other scenarios that will wipe us out before sentient AI becomes a problem.”

    • Censorship/Free Speech

    • Freedom of Information/Freedom of the Press

      • Niger: Suspended Jail Terms for Journalists Who Published Report On Corruption

        Reporters Without Borders (RSF) is appalled by the suspended prison sentences passed yesterday on two Nigerien journalists who published an international report about drug trafficking and corruption in Niger. These totally unjustified sentences send a shocking signal about the state of justice and the fight against corruption in this country, RSF says.

        In a terrible start to the year for journalists in Niger, L’Événement news website editor Moussa Aksar was given a two-month suspended jail sentence and freelance reporter Samira Sabou got a one-month suspended jail sentence for publishing a report by the Geneva-based Global Initiative Against Transnational Organised Crime (GI-TOC) in May.

      • Suspended jail terms for journalists in Niger who published report on corruption

        Reporters Without Borders (RSF) is appalled by the suspended prison sentences passed yesterday on two Nigerien journalists who published an international report about drug trafficking and corruption in Niger. These totally unjustified sentences send a shocking signal about the state of justice and the fight against corruption in this country, RSF says.

    • Civil Rights/Policing

    • Digital Restrictions (DRM)

      • Chip Shortage Forces Canon To Issue Workarounds For Its Own Obnoxious DRM

        For decades now, consumers have been lured into a sour deal: pay for a relatively inexpensive printer, then spend a lifetime paying an arm and a leg for viciously overpriced printer cartridges. As most have learned first-hand, any attempt to disrupt this obnoxious paradigm via third-party printer cartridges has been met with a swift DRM roundhouse kick to the solar plexus. In fact if there’s an area where the printer industry actually innovates, it’s most frequently in finding new, creative and obnoxious methods of preventing cartridge competition.

      • Indie Label Ilian Tape Removes Entire Catalog From Spotify — “It Just Felt Like the Right Thing to Do” [Ed: DRM]

        The Munich-based label was founded in 2007 by the Zenker Brothers. They announced the shift away from Spotify for 2022 on December 30, celebrating the new year. “This year has been one of the busiest for the label. We want to deeply thank all the artists and all our supporters! Ilian Tape turns 15 next year, lots of fresh stuff coming up,” the tweet reads. “It’s also time for a change; none of the music will be available on Spotify anymore. Happy new year!”

    • Monopolies

      • Big Tech ‘Antitrust Reform’ Agenda Sags, Revealing Mostly Empty Rhetoric

        Much of last year was dominated by talk about how there was a “new, bipartisan coalition” of folks interested in “reining in big tech” via “antitrust reform.” The GOP in particular, which has, for forty years, largely embraced and encouraged monopolization and consolidation at every turn (see telecom as a shining example) was repeatedly portrayed as “very serious about antitrust reform this time.” At least as it applied to “big tech.” There are countless U.S. business sectors where monopolies and anticompetitive behaviors are rampant that Congress simply couldn’t give any less of a shit about, whether it’s banking, health care, telecom, airline travel, or energy.

      • Small Changes, Big Effects

        EU regulators long-since recognize in principle that academic publishers are monopolies, i.e., they are not substitutable, justifying the single-source exception granted to academic institutions for their negotiations with academic publishers (another such negotiation round just recently concluded in the UK). Openly contradicting this justification for the single source exemption, the EU Commission nevertheless classifies academic publishing as a market and, moreover, demonstrates with Open Research Europe, that public, competitive tenders for publishing services are possible. This now offers the opportunity for the first decision: we propose that now is the time for regulators to no longer allow academic institutions to buy their publishing services from academic publishers that do not compete with one another in such tenders. The consequences would be far-reaching, but the most immediate ones would be that the (mostly secret and NDA-protected) negotiations between institutions and publishers, which allowed prices and profits to skyrocket in the last decades, would now be a thing of the past. Another consequence is that the obvious contradiction between academic publishing as a set of recognized monopolies in procurement regulation, but as a regular market in anti-trust regulation would be resolved. After this decision, academic publishing would be an actual market that could be regulated by authorities in pretty much the same way as any other market, preventing future lock-ins and monopolies. Yet another consequence would be that competitive pricing would reduce the costs for these institutions dramatically, by nearly 90% in the long term, amounting to about US$10 billion annually world-wide.

      • Copyrights

        • How The Financialization Of Music Could Lead To Demands For Perpetual Copyright

          Back in October, I noted the huge amounts of money pouring into music copyrights, largely driven by the global rise of online streaming. Since then, that trend has continued, most notably with Bruce Springsteen’s sale of his recordings and songwriting catalogue to Sony, for a rumored $550 million. As I pointed out in the post, one of the problems with this “financialization” of the sector is that music copyrights become completely divorced from the original creativity that lies behind them. They become just another asset, like gold, petroleum or property. On the Open Future blog, Paul Keller has pointed out a plausible – and terrifying – consequence of this shift.

        • Twitch Streamers Deliberately Get Themselves Banned For Copyright Infringement

          One of the more controversial trends to gain traction on Twitch lately is the wholesale streaming of copyrighted TV shows by some of the site’s top streamers. Bizarrely they appear to have understood the consequences in advance and some are currently sitting out suspensions. So why bite the hand that feeds?

        • AimJunkies Returns Fire in Destiny 2 Copyright Lawsuit: ‘Cheating Isn’t Against the Law’

          AimJunkies.com has asked a federal court in Washington to dismiss the lawsuit filed a few months ago by “Destiny 2″ creator Bungie. The defense argues that cheating isn’t against the law and notes that Bungie’s copyright infringement claims fall flat. As it turns out, two Destiny copyrights were registered after the cheats were sold in public, which may cause problems.

01.11.22

Links 11/1/2022: DragonFly 6.2.1 and Latte Dock 0.10.7

Posted in News Roundup at 5:55 pm by Dr. Roy Schestowitz

  • GNU/Linux

    • Audiocasts/Shows

    • Kernel Space

      • Linux 5.15.14
        I'm announcing the release of the 5.15.14 kernel.
        
        All users of the 5.15 kernel series must upgrade.
        
        The updated 5.15.y git tree can be found at:
        	git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.15.y
        and can be browsed at the normal kernel.org git web browser:
        
        https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...
        
        thanks,
        
        greg k-h
        
      • Linux 5.10.91
      • Linux 5.4.171
      • Linux 4.19.225
      • Linux 4.14.262
      • Linux 4.9.297
      • Linux 4.4.299
      • New AMD P-State Driver Headlines The Power Management Updates For Linux 5.17 – Phoronix

        The power management subsystem updates were sent out yesterday and already mainlined for the in-development Linux 5.17 kernel. Most notable with the power management changes for this new version of the Linux kernel is the introduction of the AMD P-State driver developed in cooperation with Valve for the Steam Deck but stands to help CPU/SoC power efficiency across Zen 2 and newer hardware.

        Linux PM/ACPI maintainer Rafael Wysocki of Intel sent in the power management updates yesterday to which Linus Torvalds has already merged them.

      • Linux 5.17 Adds Sensor Monitoring Support To Many More ASUS Motherboards – Phoronix

        The Linux 5.17 hardware monitoring “HWMON” subsystem updates include the new NZXT driver, new drivers to greatly expand sensor coverage on modern ASUS desktop motherboards, temperature monitoring for next-gen AMD Zen processors, and more.

        Guenter Roeck submitted the HWMON feature updates on Monday for the Linux 5.17 kernel. There is a lot of notable changes this cycle, especially on the desktop side. It’s been great seeing all the desktop-related hardware monitoring enhancements in recent versions of the Linux kernel, but unfortunate that most of it has been driven by the independent open-source community rather than the hardware vendors themselves.

      • Graphics Stack

        • Radeon RADV Optimizations In Mesa 22.0 Improve PRIME/Hybrid GPU Performance – Phoronix

          While RADV is not AMD’s official Radeon Vulkan driver for Linux systems, for Mesa 22.0 they have contributed a set of optimizations to improve the “DRI_PRIME” performance for hybrid GPU setups such as the growing number of AMD powered notebooks with discrete graphics.

          More last minute feature work to land for Mesa 22.0 ahead of its imminent feature freeze are DRI_PRIME optimizations. These improvements by AMD engineer Pierre-Eric Pelloux-Prayer are based on prior patches to the RadeonSI Gallium3D driver.

        • Intel Lands 20~40% Performance Optimization For Arc Graphics In Mesa 22.0 – Phoronix

          Intel’s pixel pipeline optimization work focused on speeding up DG2/Alchemist graphics cards with their open-source graphics driver has managed to land in Mesa 22.0.

          With Mesa 22.0 set to be branched this week that marks the feature freeze in preparation for releasing as stable in February, Intel managed to squeeze their Xe HP pixel pipeline optimization work into this next quarterly release. Getting this big optimization in Mesa 22.0 is important considering Intel continues to report that they will begin shipping Intel Arc discrete graphics later this quarter.

        • NVIDIA 510.39.01 Beta driver out for Linux | GamingOnLinux

          After silently launching the RTX 3080 12GB, NVIDIA has also today put out a brand new Beta driver for Linux with version 510.39.01 now available.

          The interesting part is, the changelog mentions quite a number of things that were added in previous driver releases like support for the GBM API. There’s also mentions of extensions that were added in previous stable releases too. It’s likely that this will be their new “Production Branch” driver that has pulled over lots of changes from their “New Feature Branch”.

        • NVIDIA 510.39.01 Linux Beta Brings Vulkan Dynamic Rendering, AV1 VDPAU Decode & More – Phoronix

          In addition to announcing the GeForce RTX 3080 12GB graphics card this morning, NVIDIA has published their first public beta of the new NVIDIA 510 Linux driver series.

          The NVIDIA 510.39.01 Linux beta driver is available today with a variety of fixes while a bulk of the updates are on the Vulkan driver side. There is Vulkan dynamic rendering support along with an assortment of other extensions previously only found in NVIDIA’s dedicated Vulkan beta builds.

          Besides all of the Vulkan updates, also exciting with the NVIDIA 510 series for Linux is adding AV1 decode support to their VDPAU driver to complement the existing NVDEC AV1 support for latest-generation RTX 30 series graphics cards.

          NVIDIA’s 510 Linux beta also has a ReBAR indicator, updated Linux kernel support, refined GBM API support, and other updates.

        • NVIDIA releases a 12GB GeForce RTX 3080 | GamingOnLinux

          For those of you with money to burn who want a new GPU, perhaps the latest from NVIDIA will catch your eye? They’ve introduced a new model of the GeForce RTX 3080. It’s a small but noticeable upgrade to the original, and only available to a select few partners right now

          The bump not only ups the memory from 10GB to 12GB but also goes from 8704 to 8960 CUDA Cores, and you’re also getting a memory bus jump from 320-bit to 384-bit. You’re going to need just a little bit more power for it too, as NVIDIA say it needs 350 watts compared with the 320 on the 10GB model.

        • DirectX 12 support is infiltrating Linux under the radar [Ed: That’s just Microsoft infiltrating Linux to undermine it]

          In the realm of PC gaming, there is an enormous industry push toward open-source graphics APIs like Vulkan. Performant, cross-platform software like Vulkan enables the incredible performance of games like Doom Eternal and allows low budget titles like Farming Simulator 22 to run on Mac OS X and Linux.

    • Applications

      • 3 Best Free Hard Disk Imaging Software

        The hard disk and partition imaging software take a snapshot of your hard disk so that you can restore your system at a later time to the exact same state the system was when you imaged the disk or partition.

        Data is probably the most important asset in today’s world. One of the worst fears of every computer user is what if the hard drive that has an enormous amount of valuable data in it corrupts suddenly? Losing files critical to your day-to-day work can be incredibly frustrating and damaging to your business.

        Unfortunately, you can never predict when your system might crash or get infected, and you lose your entire data to it. That is where the disk image software comes into the picture.

    • Instructionals/Technical

      • How to install and Use NMAP on Fedora 35 – NextGenTips

        Welcome to today’s topic where we will be talking about how to install Nmap on Fedora 35.

        Nmap (Network mapper) is a free and open-source software for network discovery and security auditing. It is also used for network inventory services, managing service upgrades, and monitoring hosts’ downtime.

        Nmap is designed for bigger networks but it can also work fine with standalone hosts. Nmap suite includes an advanced GUI and results viewer called Zenmap, a flexible data transfer, redirection and a debugging tool called Ncat, a utility for comparing scan results called Ndiff, and a packet generation and response analysis tool called Nping.

      • Docker Exec Command – Tutorial with Examples – buildVirtual

        The Docker exec command is a very useful command for interacting with your running docker containers. When working with Docker you will likely have the need to access the shell or CLI of the docker containers you have deployed, which you can do using docker exec.

      • How to Install Linux Kernel 5.16 on Ubuntu 20.04 LTS – LinuxCapable

        Linux kernel 5.16 is out with many new features, support, and security. The Linux 5.16 kernel release has a great new featured FUTEX2, or futex_watv(), which aims to improve the Linux gaming experience, growing considerably with better native Linux porting for games running Windows by utilizing Wine.

        Other improvements have seen write include improved write congestion management, task scheduler for CPU clusters sharing L2/L3 cache, amongst many other additions. More information can be found on the Linux 5.16 Kernel release changelog.

        In the following tutorial, you will learn how to install the latest 5.16 Linux Kernel on Ubuntu 20.04 LTS.

      • How to Install Cockpit on Ubuntu 22.04 | 20.04 LTS – Linux Shout

        Manage your command line or graphical desktop Linux system remotely using browser by installing Cockpit on Ubuntu 22.04 Jammy Jellyfish or 20.04 Focal Fossa.

        Cockpit is a popular tool that comes with a web-based graphical interface for providing remote management for Linux users. RHEL based Linux distros out of the box offer this tool, and the user just need to access it. Where other users can install Cockpit directly using their system package manager.

        Well, Cockpit is open-source software and light in weight offers web GUI to manage Linux systems, beneficial especially to those who are running a command-line interface Linux such as CentOS and Ubuntu minimal servers. It helps advance users in quickly updating, enabling services, restarting the system, accessing Docker containers, Network, storage management, and all above the web-based terminal to issue commands remotely on a server.

      • An Introduction To Snowflake Data Warehouse – OSTechNix

        In this tutorial, we will be discussing what is Snowflake Data Warehouse, Snowflake architecture, how to create a free trail account for test drive, and finally how to access Snowflake WebUI.

      • Why Use Graphical User Interface For Version Control Git

        Git is the most popular tool for version management of files and applications. Git was developed to manage open-source software source codes primarily. Github is a widespread application today among all open source contributors and freelance developers. Though Git is mainly a CUI-based application, GUI also can be configured to work with Git. For new users, the Graphical user interface is a very good way to master the Git operations. If you are also one of them who is looking for a GUI solution for Git, I have a couple of options listed below.

      • The truth about Linux true and false commands | Network World

        True and false are common concepts in all forms of computing. They’re critical to Boolean logic after all, but did you know that true and false are also commands on Linux? Do you know how to use them?

        The simplest explanation is that the true command generates an exit code of 0 and that the false command generates an exit code of 1. This explanation, however, doesn’t provide much detail on how these commands can best be used.

        In this post, we’ll look at how the true and false commands work and how you might put them to use on the command line or in your scripts.

    • Games

      • Survival game Vintage Story gets another huge upgrade with improved combat | GamingOnLinux

        Vintage Story continues to impress with not just the rate they can churn out updates, but also how much they manage to stuff into each of them. The “Homesteading part 2 & Combat update” is out now, bringing some pretty fancy new features and so if you’ve been on the fence about it, perhaps it’s time to try it out if you’re after a different open-world survival experience. The price will also slightly increase soon.

      • Homesteading part 2 & Combat update, stable! (1.16.0)

        This is it community. v1.16 looks stable enough to me. There are still bugs, but I estimate there’s now less than in 1.15.10. This major update contains over 300 features, tweaks and fixes. It’s been quite a monumental task to get here. As always, it would not have been possible with the incredible amounts of feedback and bug reports by you, the community. I’m very grateful for your support, thank you so much!

      • Project Zomboid has big plans for 2022 and beyond, with NPCs on the way | GamingOnLinux

        After a great many years in Early Access, Project Zomboid has finally hit the big time with it regularly seeing multiple tens of thousands of players and they have some big plans. The latest release (Build 41) took a long time, as it reworked so much of the game but it’s done and they’re moving onto the next big chunk of features and it all sounds rather exciting.

        One big addition that has been talked about for years is the addition of NPCs, and they’re finally coming – for reals this time. They’ve split into different teams to work on different things, one team being focused on getting NPCs all hooked up and working.

      • Buck Up And Drive! is a retro-racing delight now on Steam | GamingOnLinux

        Buck Up And Drive! is a fusion of classic retro endless racing with a few fun twists, like 1v1 car fighting mode. Previously only available via itch.io, it’s screeched over to Steam now too.

        Since we last wrote about it in the Summer of 2021, it’s added a bunch of new content for the full release too and it’s looking like it’s quite amusing. I grew up with racers like this on the Amiga, so it speaks to me quite personally. The developer is quite funny about it too, saying “There is time to explain, I just don’t wanna.”. Not really selling us on it but the trailer below speaks enough for itself I think.

      • Humble Bundle decides you need another launcher for parts of Humble Choice | GamingOnLinux

        Humble Bundle has announced changes are coming in February for Humble Choice, so let’s go over what they’re going to be doing.

        First up, they’re moving back towards how it started with Humble Monthly. There’s only going to be one single tier at $11.99 / £8.99 / €9.99 – with regional pricing and more regions supported, except if you’re on the Classic plan you continue to be billed in USD. The amount of games will fluctuate, and hopefully mean they will be better and you will get access to all of them.

        Humble said: “Our focus is to bring you maximum bang for your buck through an expertly curated mix of awesome games. The exact number of games might vary each month, but no matter what our scouts choose, our mission is to always bring you a ton of value that’s well worth the price of admission. And as always, you can skip a month whenever you want or cancel anytime.”

      • New Steam Games with Native Linux Clients – 2022-01-11 Edition – Boiling Steam

        Between 2022-01-04 and 2022-01-11 there were 17 new native Linux games released on Steam with Linux clients. For reference, during the same time, there were 197 games released for Windows on Steam, so the Linux versions represent about 8.6 % of total released titles.

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

    • Distributions

      • BSD

        • DragonFly 6.2.1 released

          DragonFly version 6.2.1 has been released. This version has hardware support for type-2 hypervisors with NVMM, an amdgpu driver, the experimental ability to remote-mount HAMMER2 volumes, and many other changes.

          The details of all commits between the 6.0 and 6.2 releases are available in the associated commit messages for 6.2.1. 6.2.0 was not released due to an error in tagging.

          Go to the 6.2 release page page for details on the release, and download via one of the mirrors.

      • IBM/Red Hat/Fedora

        • Anaconda is getting a new suit – Fedora Community Blog

          It’s quite some time since we created the current GTK based UI for Anaconda: the OS installer for Fedora, RHEL, CentOS. For a long time we (the Anaconda team) were looking for possibilities to modernize and improve the user experience. In this post, we would like to explain what we are working on, and—most of all—inform you about what you can expect in the future.

          First, we need to express that we decided to share this information pretty early. We are currently at the stage where we have made the decisions. We have a ‘working prototype’ of the solution already available but don’t expect screenshots and demos yet!

        • Anaconda is getting a new suit (Fedora Community Blog) [LWN.net]

          The GTK-based Anaconda installer has long been used to set up Fedora, CentOS, and RHEL systems.

        • Run containers on Linux without sudo in Podman | Opensource.com

          Containers are an important part of modern computing, and as the infrastructure around containers evolves, new and better tools have started to surface. It used to be that you could run containers with just LXC, and then Docker gained popularity, and things started getting more complex. Eventually, we got the container management system we all deserved with Podman, a daemonless container engine that makes containers and pods easy to build, run, and manage.

          Containers interface directly with Linux kernel abilities like cgroups and namespaces, and they spawn lots of new processes within those namespaces. In short, running a container is literally running a Linux system inside a Linux system. From the operating system’s viewpoint, it looks very much like an administrative and privileged activity. Normal users don’t usually get to have free reign over system resources the way containers demand, so by default, root or sudo permissions are required to run Podman. However, that’s only the default setting, and it’s by no means the only setting available or intended. This article demonstrates how to configure your Linux system so that a normal user can run Podman without the use of sudo (“rootless”).

        • IT careers: 5 flourishing and 4 fading IT skills for 2022 | The Enterprisers Project

          There’s no dispute: An IT talent war is afoot. Nearly three-quarters (73 percent) of global technology leaders surveyed for IEEE’s Impact of Technology in 2022 and Beyond survey say recruiting technologists and filling open tech positions in the year ahead will be challenging.

          However, both the needs of the enterprise and the capabilities of the tech talent marketplace are a mixed bag. There are red-hot and lukewarm skills and a variety of enterprise technology requirements. Determining how best to match supply and demand has become as much art as science. This year, creating “micro career paths aligned to individual aspirations will be important,” says Yugal Joshi, a partner at Dallas, Texas-based strategic IT consultancy and research firm Everest Group.

          Understanding what capabilities are likely to be increasing in value and which are likely to decrease is also important, for both hiring managers and job candidates. Following are five flourishing ‒ and four fading ‒ IT skills for 2022.

        • IT leadership: 4 tips on achieving your goals in 2022 | The Enterprisers Project

          We made it through another topsy-turvy year. Many technology leaders are reflecting on some pretty massive achievements over the past two years ‒ from turning on a dime to pivot entire organizations to remote work to accelerating their digital transformation and driving business performance through collaborative, strategic efforts.

          Most of us feel like we’ve been running a marathon for the past two years. It’s not surprising that disengagement, burnout, and turnover are on the rise. But all signs point to more unpredictability ahead, and we need to make sure we and our teams have the mental and physical energy to not just tackle the next challenges but also keep an eye on what’s to come.

          As I was thinking about who could share some insights about how to help leaders kick things off on the right note this year, one name came to mind immediately. Rhonda Vetere is a technology executive whose CIO journey has spanned multiple industries and countries. Most recently CIO and EVP for global nutrition company Herbalife, she’s also an endurance athlete, a twice-published author, a board member, a mentor, and a change agent.

        • Red Hat and Temenos enable process automation for digital banking

          Today, banking software company and Red Hat partner, Temenos, announced the integration of Red Hat Process Automation Manager into the Temenos Infinity digital banking platform. This comes as a result of a long-standing collaboration between Red Hat and Temenos and our shared commitment in helping organizations navigate this new world of digital banking by leveraging cloud-native, open source solutions.

        • Kafka Monthly Digest: December 2021 | Red Hat Developer

          This Apache Kafka community report includes progress on Kafka 3.1.0, Kafka project milestones in 2021, and a look ahead to new features coming in 2022.

        • 5 design principles for microservices | Red Hat Developer

          The microservice-oriented application is a powerful model for large-scale software systems. Learn five key principles to implement one effectively.

      • Debian Family

        • ThinkPad AMD Debian

          After a hiatus of 6 years, it was nice to be back with the ThinkPad. This blog post briefly touches upon my impressions with the current generation ThinkPad T14 Gen2 AMD variant.

          The overall hardware support has been surprisingly decent. The MediaTek WiFi driver had some glitches but with Linux 5.15+, things have considerably improved. And I hope the trend will continue with forthcoming Linux releases. My previous device driver experience with MediaTek wasn’t good but I took the plunge, considering that in the worst scenario I’d have the option to swap the card.

          There’s a lot of marketing about Linux + Intel. But I took a jibe with Linux + AMD. There are glitches but nothing so far that has been a dealbreaker. If anything, I wish Lenovo/AMD would seriously work on the power/thermal issues.

      • Canonical/Ubuntu Family

        • Ubuntu 21.04 Support Ends Next Week

          For those who haven’t looked at a calendar in a while, January 20th is next week. Assuming you haven’t already, now is the time to start thinking about upgrade paths or alternative distro choices.

          Released last April, Ubuntu 21.04 received nine months of support from release. From January 20 it will get nothing else. No further kernel patches, no critical security fixes, and no further app updates though the standard Ubuntu repos.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • Web Browsers

        • Mozilla

          • New Year, New Privacy Protection for Firefox Focus on Android

            Have you ever signed up for a contest to win a big screen TV or a vacation to an exotic location? Or have you joined a big retailer loyalty program so you can save money? If you answered yes to either of these questions you may be exchanging your name, home address, email address, phone number and sometimes even your birthdate to companies who are building your profile with the information you freely provide. Companies use those profiles to help them make ads that are targeted at convincing you to purchase, like resurfacing an item you were shopping for. When you go online, there are similar tactics that work behind the scenes to gather information about you and your browsing behavior, and track you when you go from site to site.

            Mozilla has been leading the industry in privacy protections by putting our users first. Last year, we introduced one of our strongest privacy protections to date, Total Cookie Protection, to combat cross-site tracking, and we’re bringing it to Firefox Focus on Android, our simple, privacy by default companion app. Firefox Focus on Android will be the first Firefox mobile browser to have Total Cookie Protection. This will help mitigate the cross-site tracking where companies collect information about you like the sites you visit every day or the products you are searching for.

          • Firefox 96 improves noise cancellation on calls, bookmarks on Android, and more

            Firefox is one of the few web browsers left with a non-Chromium rendering engine engine, giving Mozilla the ability to try out new web features and low-level performance changes in a way that most other browsers can’t (without essentially becoming a fork, anyway). Firefox 95 rolled out last month with new security features and some macOS enhancements, and now Firefox 96 is officially available.

            Firefox 96 on desktop platforms (via TechDows) should be better than ever for video and audio calls, as Mozilla has “made significant improvements” to noise suppression, automatic gain control, and echo cancellation. Many communication platforms have their own noise cancellation technology, but if you happen to use a service that doesn’t, Firefox should at least help a little bit. Firefox also now uses the “Same-Site=lax” HTTP header by default when receiving data, which improves security.

      • Programming/Development

        • JavaScript developer screws over own popular npm packages • The Register

          Two popular open-source packages were recently sabotaged with mischievous commits, creating confusion among those using the software and exacerbating concerns about the fragility of the open-source software supply chain.

          The npm packages, faker.js and colors.js, were not hijacked by outsiders, as has been known to happen; rather their creator added code to the software libraries that made them malfunction.

          Three days ago, developer Marak Squires added a “new American flag module” to colors.js, a module to simplify printing colored text in the developer console. The new code printed the word “LIBERTY” multiple times and an ASCII-flag to the developer console and went into an endless loop.

          Six days ago, faker.js, used for generating fake data for API testing, also received an unexpected update: it removed the code, added the commit message “endgame,” and replaced the ReadMe file with the question, “What really happened with Aaron Swartz?”

        • Qbs 1.21 released

          The Qbs build tool version 1.21.0 is available.

          Qbs is a community-driven language-agnostic build automation system. It is fast and offers an easy-to-learn language based upon QML.

        • Python

        • Shell/Bash/Zsh/Ksh

        • Rust

  • Leftovers

    • Science

      • Haber-Bosch And The Greening Of Ammonia Production | Hackaday

        We here on Earth live at the bottom of an ocean of nitrogen. Nearly 80% of every breath we take is nitrogen, and the element is a vital component of the building blocks of life. Nitrogen is critical to the backbone of proteins that form the scaffold that life hangs on and that catalyze the myriad reactions in our cells, and the information needed to build these biopolymers is encoded in nucleic acids, themselves nitrogen-rich molecules.

        And yet, in its abundant gaseous form, nitrogen remains directly unavailable to higher life forms, unusably inert and unreactive. We must steal our vital supply of nitrogen from the few species that have learned the biochemical trick of turning atmospheric nitrogen into more reactive compounds like ammonia. Or at least until relatively recently, when a couple of particularly clever members of our species found a way to pull nitrogen from the air using a combination of chemistry and engineering now known as the Haber-Bosch process.

    • Integrity/Availability

      • Proprietary

        • Avira is adding a crypto miner to its products as well [Ed: They tell you that malware will protect you from malware...]

          Et Tu, Avira? Ashwin reported last week that Norton was adding a new component, called Norton Crypto, to its security products. Norton Crypto is a crypto currency miner that will run when the system is detected as idle. It appears that Avira is doing the same.

        • Security

          • New KCodes NetUSB Bug Affect Millions of Routers from Different Vendors

            Cybersecurity researchers have detailed a high severity flaw in KCodes NetUSB component that’s integrated into millions of end-user router devices from Netgear, TP-Link, Tenda, EDiMAX, D-Link, and Western Digital, among others.

            KCodes NetUSB is a Linux kernel module that enables devices on a local network to provide USB-based services over IP. Printers, external hard drives, and flash drives plugged into a Linux-based embedded system (e.g., a router) are made available via the network using the driver.

          • Samba Releases Security Update | CISA

            The Samba Team has released a security update to address a vulnerability in multiple versions of Samba. An attacker could exploit this vulnerability to take control of an affected system.

          • Security updates for Tuesday [LWN.net]

            Security updates have been issued by Debian (clamav, vim, and wordpress), Mageia (ghostscript, osgi-core, apache-commons-compress, python-django, squashfs-tools, and suricata), openSUSE (libsndfile, net-snmp, and systemd), Oracle (httpd:2.4, kernel, and kernel-container), SUSE (libsndfile, libvirt, net-snmp, and systemd), and Ubuntu (exiv2, linux, linux-aws, linux-aws-5.11, linux-azure, linux-azure-5.11, linux-gcp, linux-gcp-5.11, linux-hwe-5.11, linux-kvm, linux-oem-5.10, linux-oracle, linux-oracle-5.11, linux-raspi, linux-oem-5.13, and linux-oem-5.14).

          • ‘Fully Undetected’ SysJoker Backdoor Malware Targets Windows, Linux & macOS | Threatpost

            The malware establishes initial access on targeted machines, then waits for additional code to execute.

            A brand-new multiplatform malware, likely distributed via malicious npm packages, is spreading under the radar with Linux and Mac versions going fully undetected in VirusTotal, researchers warned.

          • Privacy/Surveillance

    • Defence/Aggression

      • CISA, FBI, and NSA Release Cybersecurity Advisory on Russian Cyber Threats to U.S. Critical Infrastructure [Ed: That's politics instead of science (like studying the underlying security of stuff)]

        CISA, the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have released a joint Cybersecurity Advisory (CSA) that provides an overview of Russian state-sponsored cyber operations, including commonly observed tactics, techniques, and procedures. The CSA also provides detection actions, incident response guidance, and mitigations. CISA, the FBI, and NSA are releasing the joint CSA to help the cybersecurity community reduce the risk presented by Russian state-sponsored cyber threats.

    • Civil Rights/Policing

      • IFF assists Amina – who was targeted by the Bulli Bai App – in writing to the NCW and Telangana State Women Commission against the incident

        On 1st January 2022, we saw public outrage around an application titled “Bulli Bai” that was hosted on GitHub where pictures of around 100 Muslim women, sourced from their social media accounts, were put for ‘auction’. Muslim women were targeted due to their gender and religious identity. After much furore, some arrests have been made, and the investigation is still pending. One of the victims of this incident, with IFF’s assistance, wrote to the National Commission of Women, and the Telangana State Women Commission highlighting concerns about targeted harassment, and seeking their intervention in ensuring fair investigation. She also requested the Commissions to take steps to avoid such incidents from happening in the future.

    • Digital Restrictions (DRM)

      • This John Deere Tractor Doesn’t Need a Driver

        While most autonomous vehicles are meant to travel over the highway, John Deere’s new 8R tractor shown at the 2022 Consumer Electronics Show will likely only traverse fields and it will do so without a human at the wheel.

        The tractor is slated to be available to farmers in late 2022 and has six pairs of stereo cameras to generate a 360 degree view of obstacles. It also uses location technology, including GPS, to ensure it is where it is supposed to be with a claimed accuracy of 1 inch. You can see a video about the beast below.

        According to press releases, the company has been testing the technology for at least 3 years. It is controlled by — what else? — a smartphone app that can set it to its task and monitor it remotely, allowing the farmer to monitor and control the operation from anywhere. The company claims it can prepare 325 acres in 24 hours.

Links 11/1/2022: Btrfs Improvements and DXVK 1.9.3

Posted in News Roundup at 9:56 am by Dr. Roy Schestowitz

  • GNU/Linux

    • My polyamorous relationship with operating systems: FreeBSD, openSUSE, Fedora & Co.

      Recently, I have posted blogs and articles about three operating systems (or rather OS families) I use, and now people ask which one is my “true” love. It’s not easy, but I guess, the best way to describe it is that both FreeBSD and openSUSE are true ones, and Fedora & Co. is a workplace affair  This is why I’m writing that it is a polyamorous relationship. Let me explain!

      My first ever opensource operating system was FreeBSD. I got an account on the faculty server in 1994, a FreeBSD 1.X system. A few months later, I got the task to install Linux and a year later I ended up using S.u.S.E. Linux on the second faculty server. Soon, I was running a couple of Linux and FreeBSD servers at the university and elsewhere as a part-time student job. SuSE Linux also became my desktop operating system. I have always liked state-of-the art hardware, and while I felt FreeBSD to be a lot more mature on the server-side, it did not play well on a desktop. 25+ years later, it is still the case…

    • Audiocasts/Shows

      • Destination Linux 260: A Retro-spective of Classic Linux Distros

        This week’s episode of Destination Linux, we’re going to talk about the Classics of the distro world. Then we’re going to discuss some updates to Audacity. Plus we’ve also got our famous tips, tricks and software picks. All of this and so much more this week on Destination Linux. So whether you’re brand new to Linux and open source or a guru of sudo. This is the podcast for you.

      • Late Night Linux – Episode 159 – Late Night Linux

        A simple FOSS way to share your mouse and keyboard across multiple machines, and a handy command line tool to find duplicate files. Plus your predictions for 2022 including gaming, GNOME, Firefox, Raspberry Pi, and PipeWire.

      • Ask A KDE Dev Anything – TEST! – Kockatoo Tube

        Yo, come at me and ask me stuff! I’ll use this stream to check if things work or not.

    • Kernel Space

      • Linux Kernel 5.16 Released. This is What’s New

        Linus Torvalds released Linux Kernel 5.16 as the first stable Kernel release of the year 2022, improving storage, processor, ports and all modules. We wrap up the release in this post with download and installation guidelines.

      • Linux Garbage Collection Memory Corruption

        Linux suffers from a garbage collection memory corruption vulnerability by resurrecting a file reference through RCU.

      • Btrfs Seeing Nice Performance Improvements For Linux 5.17 – Phoronix

        With the Btrfs file-system popularity ticking back up, that seems to be helping upstream enthusiasm and development efforts as with Linux 5.17 there is yet more exciting work.

        Btrfs for the Linux 5.17 kernel has prepared another round of performance optimizations on top of tuning found in prior kernel versions. There is also some new core features and never-ending work on code clean-ups and other underlying improvements.

        On the performance front for Btrfs with Linux 5.17 there is now less metadata needed for directory logging, which can mean directory deletion is now 20~40% faster.

      • Graphics Stack

        • DXVK 1.9.3 is out supporting DLSS, D3D9 improvements and more | GamingOnLinux

          DXVK, the Vulkan-based implementation of D3D9, D3D10 and D3D11 for Wine / Proton has version 1.9.3 out now. This is what’s used in Steam Play Proton, to help get Windows games running nicely on Linux. It’s a bit of an uphill battle to get so many tens of thousands of games to work nicely, but DXVK shows just how powerful and flexible Vulkan is as an API.

          This release brings support for NVIDIA DLSS (Deep Learning Super Sampling) for supported games, when used along with dxvk-nvapi. There’s also a bunch of optimizations and accuracy improvements for D3D9 that should help fix games like Red Orchestra 2, Dark Souls 2 (original version), Dog Fight 1942, Bayonetta, Rayman Origins, Guilty Gear Xrd and Richard Burns Rally.

        • DXVK 1.9.3 Released with Improvements for Black Mesa, Crysis 3, and Many Other Games

          DXVK 1.9.3 is here about four months after DXVK 1.9.2 to make the DLSS implementation work on supported games in combination with dxvk-nvapi, optimize the D3D9 shader constants for games using software vertex processing, and fix a DXGI issue causing games to fail to enter full-screen mode on some displays that don’t support low rates across all resolutions.

        • DXVK 1.9.3 Released With NVIDIA DLSS Integration, Many Game Fixes

          DXVK 1.9.3 is out as its first release of 2022 for implementing Direct3D 9/10/11 over Vulkan for allowing Windows games to enjoy good performance when running atop Linux via Valve’s Steam Play.

          With DXVK 1.9.3 there is NVIDIA Deep Learning Super Sampling (DLSS) support in place when used in conjunction with the DXVK-NVAPI component for implementing the NVIDIA NVAPI interface. DXVK-NVAPI usage supports DLSS both for Vulkan and via D3D11/D3D12 Windows games.

          DXVK 1.9.3 also brings optimized Direct3D 9 shader constants handling, D3D9 floating point emulation improvements, and a variety of fixes benefiting different games.

        • The importance of window to desktop file mapping – Nico’s blog

          Now that we established why it is important to map a window to a desktop file, how is it done?

          On Wayland the xdg-shell protocol, which is responsible for application windows, has builtin support for passing a desktop file name in form of set_app_id.

          On X11, it’s more complicated.

          For Qt applications the plasma-integration Qt Platform Theme sets a KDE-specific window property that contains the desktop file name. The task manager reads this property and handles it accordingly.

          GTK apps have a very similar window property, named _GTK_APPLICATION_ID. However, until now Plasma did not use this information at all! Beginning with Plasma 5.25 the task manager will take _GTK_APPLICATION_ID into account, which fixes matching Gedit and other apps.

        • Mike Blumenkrantz: How To Bug

          I posted some fun fluff pieces last week to kick off the new year, but now it’s time to get down to brass tacks.

          Everyone knows adding features is just flipping on the enable button. Now it’s time to see some real work.

          If you don’t like real work, stop reading. Stop right now. Now.

          Alright, now that all the haters are gone, let’s put on our bisecting snorkels and dive in.

    • Applications

      • Modern Alternatives to Some of the Classic Linux Commands

        When you start learning Linux, you begin with a standard set of Linux commands that have been in existence since the UNIX days. As you grow old as a Linux user, you keep on mastering the same set of standard commands.

        But these standard, legacy commands were created several decades ago and while they do their intended jobs, their functionalities could be improved and the structure could be simplified.

      • 5 Best Free and Open Source Scala Static Site Generators

        LinuxLinks, like most modern websites, is dynamic in that content is stored in a database and converted into presentation-ready HTML when readers access the site.

        While we employ built-in server caching which creates static versions of the site, we don’t generate a full, static HTML website based on raw data and a set of templates. However, sometimes a full, static HTML website is desirable. Because HTML pages are all prebuilt, they load extremely quickly in web browsers.

        There are lots of other advantages of running a full, static HTML website.

    • Instructionals/Technical

      • How to install QPrompt as an alternative to Teleprompter

        An outbreak of COVID-19 cases has changed the way of living life earlier, we used to go to our offices, colleges, schools, but now we shifted to a virtual environment.

        Now you attend your office meeting from the couch, children attending their school while taking a nap, and many untold stories of different domains.

        Whatever the situation is, you take the help of video to convey your thought, and It’s quite possible to make mistakes while shooting a video. And it’s quite embarrassing too.

        Qprompt is one of the teleprompter software available on all major platforms, including Android mobile, and most importantly, it is an open-source application.

      • The Zorin Appearance Tool

        The Zorin Appearance tool can mimic the desktop layout of proprietary operating systems, making it appealing to newcomers.

        Switching to Linux can be a bewildering experience for Windows and macOS users. To ease this transition, some distributions offer desktop environments that imitate proprietary ones. For example, ChaletOS, Linuxfx, and ReactOS all offer imitations of various versions of Windows, while elementary OS’s desktop is sometimes said to resemble that of ReactOS. Yet, no other distribution takes this approach as far as Zorin OS. Depending on the release version, Zorin OS offers as many as eight desktop layouts in its Zorin Appearance tool that loosely resemble those on everything from proprietary operating systems and mobile touchscreens to Ubuntu’s Unity. However, if you expect a full emulation of these operating systems, you may be disappointed.

        Zorin OS is an Ubuntu-derivative founded in 2009 by brothers Artyom and Kyrill Zorin and is currently based in Ireland. Zorin 16, the most recent version, comes in three editions: Core, a free version intended for modern computers; Lite, a free edition intended for “low-spec PCs up to 15 years old,” according to the download page; and Pro, which includes advanced productivity apps, costs $39, and can be installed for individuals with one license for multiple computers. All the versions default to a modified Xfce desktop with a minimalist modern appearance. However, the available settings range from elementary cosmetic control settings to unique controls over the applications that make up the desktop environment. On a virtual machine, you will need 35GB for installation, a high number which might well interfere with Zorin’s use on an older, small computer. In fact, while Zorin OS responds quickly while up and running, its boot and shutdown are notably sluggish.

      • Terraform Module Dependency – buildVirtual

        As of Terraform 0.13 you can create dependencies between your Terraform modules easily. Version 0.13 of Terraform has been available since August 2020, and introduced some enhancements to Terrafrom modules capability including count, depends_on and for_each functions. In this short article we will look at an example of how to use depends_on with Terraform modules.

        Terraform typically does a great job of understanding dependencies in your Terraform plans, however sometimes it is useful to manually configure a Terraform module dependency to ensure resources deploy in the expected order.

      • Linux Command: Passwd Usage

        All the user accounts need passwords to log in via the different operating systems many times. In the same way, we can update the password settings for passwords as we did for the user. Thus, the passwd command is known for making updates to the password in Linux. Henceforth, we will discuss the usages of the “passwd” command in Ubuntu 20.04 terminal. Let’s start with the terminal launch in Ubuntu 20.04 system. It would be done using the shortcut “Ctrl+Alt+T” in the Ubuntu 20.04 desktop. The terminal will be opened on your screen.

      • CUPS web interface fixed
      • How to Install Handbrake Video Transcoder 1.5.1 in Ubuntu 20.04 / 21.10 | UbuntuHandbook

        The popular free open-source Handbrake video transcoder released version 1.5.0 a day ago and then 1.5.1 with quick fix. Here’s what’s new and how to install it in Ubuntu / Linux Mint.

      • Linux Command: Usermod Usage

        Linux is a diverse operating system most known for its terminal commands. These commands are of a hundred types and usages. One of these Linux commands is the “Usermod” command. The usermod command can be used for performing a lot of things using flags. This command is specifically designed for Linux users to update and change anything regarding other users in their existing system. Within this guide today, you will see the different uses of the “Usermod” command in Ubuntu 20.04. Let’s have a new start with some of the usermod command examples to see those flags working. Let’s get started.

        Let’s start with the launch of a Ubuntu 20.04 console application. The shortcut key “Ctrl+Alt+T” will be used to launch it in our system quickly. To use the usermod command in Linux, we must use it in the terminal with sudo rights. For the use of sudo rights, you have to use the keyword “su” in the shell, as shown below. It will require your root account password and press Enter to do so. You will see that we will be able to work in a sudo terminal environment.

      • How to Install Cockpit on Fedora 35 – LinuxCapable

        Cockpit is a free remote server manager that is lightweight and easy to use for GNU/Linux servers. Cockpit is a web-based graphical interface for servers intended for people new to Linux to the experts such as sysadmins. Cockpit makes Linux discoverable, allowing anyone using the software to perform tasks such as start containers, administer storage, configure networks, and inspect logs.

        In the following tutorial, you will learn how to install or enable Cockpit on Fedora 35 Workstation or Server.

      • Install a Redis server on Debian 11 – Unixcop the Unix / Linux the admins deams

        Hello, friends. In this post, we will install a Redis server in Debian 11. For this, we will use the Debian repository that provides the most suitable way.

      • MySql Contains Podman -

        MySQL contains is a prominent open-source relational database administration system and one of the popular web server solutions. It stores and structures data in a meaningful and ensures easy accessibility. A container image is maintained by the community.

        Podman is a set of platform-as-a-service developments that support CI/CD development. It allows to develop and deploys applications inside virtual environments, called containers. Podman boots up an application with all its libraries and dependencies with a single image.

      • MySQL Database Commands Cheat Sheet for Linux

        Both MySQL and MariaDB are attributed as open-source relational database management systems (RDBMS). Since MySQL is broken down to either community or enterprise release.

        MariaDB became a drop-in replacement to parade all the structured query language (SQL) features offered by MySQL but at an open-source cost.

        So whether you are using MySQL Enterprise Edition, MySQL Community Edition, or MariaDB, this article is for you. By the end of your read, you should be comfortable with the use of the powerful structured query language mimicked by these RDBMS.

      • How to Install Fail2ban with Firewalld on Fedora 35 – LinuxCapable

        Fail2ban is an intrusion prevention software framework that protects computer servers from primarily brute-force attacks, banning bad user agents, banning URL scanners, and much more. Fail2ban achieves this by reading access/error logs of your server or web applications. Fail2ban is coded in the python programming language.

        The following tutorial will teach you how to install Fail2ban on Fedora 35 Workstation or Server and some basic setup and tips.

      • How to Install ClamAV on Fedora 35 – LinuxCapable

        ClamAV is an open-source and free antivirus software toolkit able to detect many types of malicious software, including viruses, trojans, malware, adware, rootkits, and other malicious threats. One of its primary uses of ClamAV is on mail servers as a server-side email virus scanner or used on file hosting servers to periodically scan to make sure files are clean, especially if the public can upload to the server.

        ClamAV supports multiple file formats (documents, executables, or archives), utilizes multi-thread scanner features, and receives updates for its signature database daily to sometimes numerous times per day for the latest protection.

        In the following tutorial, you will learn how to install and use ClamAV on Fedora 35 Workstation or Server.

      • How to Install MariaDB 10.6 on Fedora 35 – LinuxCapable

        MariaDB is one of the most popular open-source databases next to its originator MySQL. The original creators of MySQL developed MariaDB in response to fears that MySQL would suddenly become a paid service due to Oracle acquiring it in 2010. With its history of doing similar tactics, the developers behind MariaDB have promised to keep it open source and free from such fears as what has happened to MySQL.

        MariaDB has become just as popular as MySQL with developers, with advanced clustering with Galera Cluster 4, faster cache/indexes, storage engines, and features/extensions that you won’t find in MySQL.

        In the following tutorial, you will learn how to install MariaDB 10.6 on Fedora 35 Workstation or Server.

      • How to Install SQLite 3 on Fedora 35 – LinuxCapable

        SQLite is a free, lightweight relational database management system (RDBMS) in a C library. SQLite is not a client-server database engine. Instead, it is embedded into the end program. Primarily all programming languages support SQLite, which how languages embed the program is with a file with .sqlite3/.sqlite/.DB extension. The software is a popular choice for local/client storage such as web browsers, Android devices, and much more. The list is quite extensive.

        In the following tutorial, you will learn how to install SQLite 3 with Fedora 35 Workstation or Server.

      • It only takes minutes to set up a Git repository on Linux – TechRepublic

        If you need a quick code repository, you have everything you need with git and SSH. Jack Wallen shows you how it’s done.

      • Install Deepin Desktop Environment (UbuntuDDE) on POP OS

        In this tutorial, we learn the steps to install popular Deepin Dekstop- DEE on POP_OS 20.04 LTS or 21.04 Linux using the command terminal.

        Deepin is one of the most beautiful Linux distro based on the Debian operating system. However, there are many people who refrain themselves from using either because of its origin or slow repository. Hence, one of the best ways to experience its beauty is by installing the Deepin Desktop GUI on our existing POP_OS operating systems.

        Moreover, installing a new operating system is also cumbersome if you have already have set up applications you required on it. In such as scenario, installing an extra GUI apart from the default one will be a good idea.

        POP_OS comes with a popular Gnome desktop environment, however being a Linux distro, users are free to install any popular Linux GUI with few commands such as Cinnamon, XFCE, etc. However, unlike other GUI, the Deepin Linux desktop is not available through the default base repository of POPOS. Therefore, to get it we have to add a repo manually. And the best way is to use the package repo made available by UbuntuDDE, an Linux operating system based on Ubuntu and running with DDE.

      • 4 Ways to Install Discord client on Ubuntu 22.04 | 20.04 LTS – Linux Shout

        In this tutorial, we learn the commands and steps to install GitHub alternative self-hosted GitLab on Ubuntu 20.04 Focalusing the terminal.

      • Install Gitlab on Ubuntu 20.04 LTS Focal fossa Linux – Linux Shout

        GitLab is a version control system( VCS). It is based entirely on Git, a distributed versioning system that is made available as open-source software. Git is by far the most widely used VCS in the world. GitLab is not much different from GitHub, both web-based solutions are based on Git for managing the various repository created by developers. Anyone who is acquainted with GitHub would already know what is Gitlab, still, if you are not then it is an alternative to Github. It is a solution that was written by Ukrainian Dmitriy Zaporozhets in collaboration with Valery Sizov in 2011 using the programming language Ruby on Rails. After Microsoft took over GitHub in 2018, many users switch to GitLab to mitigate the monopoly of one platform.

        Being a version management platform the key task of GitLab is to save and document all changes to files done by developers and their source code to make them easily traceable at any time. Hence, GitLab including Github is more inclined and used by the programmers and developers to make things easy for them. Due to a version control system, several developers can work on the same project simultaneously. Know more about this platform’s history at Wikipedia.

      • How to Install Apache Cassandra on AlmaLinux / Rocky Linux 8

        Apache Cassandra is an open-source NoSQL distributed database management system. Cassandra can be scaled horizontally by adding more nodes across which data is replicated automatically. Nodes can be added or removed without any downtime. The nodes can be organized logically as a cluster or a ring and set up across multiple data centers to improve speed and reliability for high-performance applications.

        In this tutorial, we will learn how to install Apache Cassandra on AlmaLinux and Rocky Linux 8 OS. The commands for both the Operating systems will be identical unless specified otherwise.

      • How to Install LEMP Stack on Fedora 35 – LinuxCapable

        LEMP is a collection of open-source software commonly used to serve web applications. The term LEMP is an acronym that represents the configuration of a Linux operating system with an Nginx (pronounced engine-x, hence the E in the acronym) web server, with site data stored in a MySQL or MariaDB database and dynamic content processed by PHP that is popularly used for hosting extensive websites due to its performance and scalability.

        In the following tutorial, you will learn how to install LEMP (Nginx, MariaDB, PHP) on Fedora 35 Server or Workstation. The tutorial will install various version choices with Nginx, MariaDB, and PHP.

      • How to Install ModSecurity & OWASP Core Rule Set with Nginx on Fedora 35 – LinuxCapable

        ModSecurity, often referred to as Modsec, is a free, open-source web application firewall (WAF). ModSecurity was created as a module for the Apache HTTP Server. However, since its early days, the WAF has grown and now covers an array of HyperText Transfer Protocol request and response filtering capabilities for various platforms such as Microsoft IIS, Nginx, and Apache.

        How the WAF works, the ModSecurity engine is deployed in front of the web application, allowing the engine to scan the incoming and outgoing HTTP connections. ModSecurity is most commonly used in conjunction with the OWASP Core Rule Set (CRS), an open-source set of rules written in ModSecurity’s SecRules language and is highly regarded among the security industry.

      • Freezing your Node.js dependencies with yarn.lock and –frozen-lockfile

        When Yarn introduced a lock file (similar to Gemfile.lock), it did it with an unexpected twist. If you need reproducible builds, yarn.lock is not enough.

        What is a lock file? Lock files ensure that the defined dependencies from files such as package.json get pinned to specific versions. This later ensures parity on developers’ workstations, CI, and production.

        Many people probably depend on Yarn doing the right thing and installing only the pinned versions from yarn.lock on yarn install. But, unfortunately, this is not the case…

        The default behavior of yarn install is that the yarn.lock file gets updated if there is any mismatch between package.json and yarn.lock. Weird, right?

        (In comparison, other package managers such as RubyGems would only ever look at lock files and install the pinned versions from there.)

      • How to Setup Varnish SSL Termination with Nginx Web server on Rocky Linux 8

        Varnish cache software does not support SSL/TLS by default. You need additional software to enable SSL/TLS support on Varnish.

        SSL Termination is a method to enable SSL/TLS on Varnish. You can use Hitch, Nginx, or Apache to enable SSL termination for the Varnish HTTP accelerator.

        SSL termination software will be running on the HTTPS port ’443′ and handles all HTTPS requests from clients. After that, all requests will be forwarded to the varnish cache software, then forward to the origin backend server.

      • How to find a domain’s authoritative nameservers

        To be able to tell which one is happening (do you need to make a change, or do you just need to wait?), you need to be able to find your domain’s authoritative nameserver and query it to see what records it has.

        But when I looked up how to find a domain’s authoritative nameserver online to see what advice was out there, I found a lot of conflicting answers. So here’s how I look up a domain’s authoritative nameserver when I want to be 100% sure I’m getting the right answer.

        In this example, we’re going to look up the authoritative nameserver for jvns.ca. There are 2 steps, and the hardest part is just knowing what line of dig’s output to use.

      • How to use Podman to get information about your containers | Enable Sysadmin

        Podman is a daemon-less engine for developing, managing, and running Open Container Initiative (OCI)-compliant containers. This is the second article in a series about using Podman based on things I do in my real work environment. In my previous article, I showed you how to start containers quickly and easily using the familiar interface of shell scripting.

        In this article, I’ll demonstrate how to get insight into running containers. If you want to follow along with this article, first run the shell scripts I used in the “Setting things up” section of the first article in this series.

        [...]

        There are more options to explore in the podman ps and podman stats toolset. Try them out to familiarize yourself with the outputs. As you do, you’ll become comfortable with the commands, and you’ll be able to decide what suits your ongoing needs best.

        Podman is gaining more and more followers as a convenient and flexible tool for managing containers and images. Understanding how to use it for things such as listing running containers gives you an advantage in managing containers.

        In my next article, I’ll explore how to get your container’s external internet protocol (IP) address. Until then, you can learn more about Podman from 10 Podman guides to do more with containers in 2022, Top 10 container guides for sysadmins, and of course, Podman.io.

      • How to set up Laravel Bagisto with Nginx and PHP-FPM in Rocky Linux/Alma Linux 8

        Bagisto is an easy to use, free and open source Laravel eCommerce platform to build your online shop in no time.

        In this guide we will learn how to configure Laravel Bagisto with Nginx and PHP-FPM with MariaDB as the data source.

      • How to install and Configure Mariadb 10 in Rocky Linux/Alma Linux 8

        In this guide we will learn how to install and configure MariaDB in Rocky Linux/Alma Linux 8.

        MariaDB is an open-source one of the most popular relational database management system (RDBMS) that is a highly compatible drop-in replacement of MySQL. It is built upon the values of performance, stability, and openness, and MariaDB Foundation ensures contributions will be accepted on technical merit.

        MariaDB was developed as a software fork of MySQL in 2009 in response to Oracle’s acquisition of MySQL. MariaDB intends to remain free and open-source software under the GNU General Public License. It is part of most cloud offerings and the default in most Linux distributions.

      • What is BusyBox in Linux? How to Use it?

        BusyBox is getting popular these days, specially among Docker users. Many Docker images use BusyBox to provide you with a minimal image.

        And this could leave many users confused specially if you take Linux commands for granted. You think ls, mv and other such commands are part of Linux, while the truth is that these commands are part of GNU Coreutils package and most Linux distributions have it preinstalled.

        GNU Coreutils is almost the de facto provider of various UNIX/Linux commands. Almost because there are always alternatives and BusyBox is one such alternative to GNU Coreutils.

      • This Tool Adds More Display Scaling Levels for Ubuntu Gnome on X | UbuntuHandbook

        As you may know, Gnome control center (aka settings) has “Fractional Scaling” option since Ubuntu 20.04, allows to change scaling level for HiDPI displays.

        By default, user may scale up to 125%, 150%, 175% and 200% to make Ubuntu (or other GNOME based Linux, such as Fedora) to be read easily. In this tutorial, I’m going to introduce “BetterScale”, a command line tool gives more scaling levels.

      • Most Simple Linux Commands With 10 Examples

        In this guide you are going to learn the most simple yet powerful Linux commands which every Linux system user should know. These commands are used over and over on your daily work.

        Below given the Tips & Tricks you are about to learn.

      • How To Manage Location Sharing on Your Android Device

        Suppose you’re looking for someone but not able to find him/her. You know the place where he/she is, but not the exact location. No worries, your Android can make things easy for you in situations like this. You just need to share the exact location from the person’s (you’re looking for) Android to your Android. By doing so, you can easily reach your exact destination. So, manage your Android location sharing and get things done pretty easily.

        Moreover, you can also manage your app location sharing access on your Android along with WiFi and Bluetooth scanning to detect the location automatically. Additionally, real-time location sharing, Google’s location history on/off, is also there for your convenience. So finding or hiding your location is not a big deal anymore.

    • Distributions

      • New Releases

        • antiX-sid iso files available

          For those that like to live on the bleeding edge and build upwards from a small base, antiX has made available iso files based on Debian sid.

          We offer the following completely systemd-free and elogind-free flavours for both 32 and 64 bit architecture. User can download sysVinit or runit versions.

          antiX-core (c460MB) – no X, but should support most wireless (libdbus-1-3 is installed).

      • SUSE/OpenSUSE

        • SUSE-Dell Technologies partnership continues to shine with Joint Open Source Solutions | SUSE Communities

          More value. Less effort. Less worry. No lock-in.
          For more than 20 years now, these are the shared values of SUSE and our partners at Dell Technologies. We believe in our joint ventures, but we still want you to feel you have the final decision to love us, no questions asked. And that’s how the future should be because it will be widely distributed over sensors and machines, in the cloud, on-premise and at the edge, all with a strong open-source backbone.
          Together we continue to collaborate over platform integration, original equipment manufacturer (OEM) support, and a solid compute foundation. We enable enterprises to deploy interoperable platforms for mission-critical computing and delivery IT services across your own blend of physical, virtual and cloud environments. And we base it all on SUSE Linux.

        • SA Power Networks focuses on sustainability with SUSE

          “We’re completing four full patching cycles a year with very few issues thanks to the reliability of SUSE Linux Enterprise Server.” Pino Lascala, Server Technical Engineer (Unix), SA Power Networks.

      • Librem

        • Secure and Cloud-Friendly Experience with Librem 14 and NextCloud

          If you are wondering how to be on the cloud with your Librem device, we recommend Nextcloud, the freedom-respecting online productivity platform that keeps you in control. Nextcloud allows you to upload, edit, and share documents and files. It also has calendering and advanced plugins.

        • 2021 Year in Review: Design – Purism

          This year, just like the previous years, the Purism design team has been focusing on improving the overall Librem products experience. We took this opportunity to contribute to some amazing upstream projects like Libadwaita for the world to benefit from those modern and respectful technologies. Our goal is to make each Librem product simple and usable by anyone, while remaining secure and respecting digital rights. We are also working on unifying the overall experience across the different devices by designing UIs and gestures that naturally adapt to different screen sizes and orientations. We want people using a Librem desktop or laptop computer to feel at home when using a Librem 5 and vice-versa.

      • Canonical/Ubuntu Family

        • Linux Release Roundup #22.2: EasyOS 3.2, Linux Mint 20.3, Neptune 7.0, and More Releases – It’s FOSS News

          Linux Mint 20.3 is a point upgrade with several improvements and some new additions. You should also find a new application with this release to manage documents/ebooks.

          For more details, you should read our initial impressions and highlights on Linux Mint 20.3.

        • Ubuntu Fridge | Ubuntu Weekly Newsletter Issue 717

          Welcome to the Ubuntu Weekly Newsletter, Issue 717 for the week of January 2 – 8, 2022.

        • Release of Vanilla framework v3.0 | Ubuntu

          We’ve just released Vanilla v3.0 – a new major update to our CSS framework. It includes a few significant updates and improvements around spacing variables, responsive breakpoints, a new expanding search box and various updates to existing components. Important aspects of the release include dropping a noticeable chunk of deprecated styles and components and removing IE support.

          [...]

          We’ve always put a lot of attention into making sure components in Vanilla are consistently spaced and that all text and block elements align properly to our baseline grid. To make it possible while keeping the framework flexible, we used to have quite a large number of spacing variables in our SCSS code. These were used to add various amounts of horizontal or vertical spacing to the elements.

          We also had separate variables for “inner” and “outer” spacing. These turned out to be confusing, as it wasn’t always clear for more complex components if the given space should be considered “inner” or “outer”. The other aspect that made Vanilla spacing complicated was the density multiplication factor that could be changed on a framework level. It affected some of the spacing variables (that we called “scaleable”), but not the others. It was not widely used and was the source of some confusion and bugs.

          For Vanilla 3.0 we decided to refactor the spacing variables and reduce the number of them. We did this by removing the separation of “inner” and “outer” spacing, merging different variables that share the same values and removing the density multiplier and all variables that it affected. We still kept separate variables for horizontal and vertical spacing (to make it clear which values should be used in given directions), but they all follow the same naming conventions. So, “small” horizontal spacing has the same value as “small” vertical one.

          Alongside this work, we also cleaned up and refactored some spacing related mappings.

          This allowed us to reduce the number of our main spacing variables from 20 to around 10 with much more clear and consistent naming.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • Web Browsers

        • Chromium

          • Chromium Blog: Chrome 98 Beta: Color Gradient Vector Fonts, Region Capture Origin Trial, and More

            Unless otherwise noted, changes described below apply to the newest Chrome beta channel release for Android, Chrome OS, Linux, macOS, and Windows. Learn more about the features listed here through the provided links or from the list on ChromeStatus.com. Chrome 98 is beta as of January 10, 2022. You can download the latest on Google.com for desktop or on Google Play Store on Android.

          • Google Rolls Chrome 98 Into Beta With COLRv1 Font Support – Phoronix

            Following last week’s release of Chrome 97, Google has promoted Chrome 98 to beta form.

            With Chrome 98 there are a variety of small additions but mostly developer-facing items. Some of the Chrome 98 beta highlights include:

            - COLRv1 color gradient vector fonts are supported as a new font format. These color fonts are made up of glpyhs with multiple colors in them such as for emoji, country flags, or multi-colored letters. More details on COLRv1 fonts via developer.chrome.com.

        • Mozilla

          • Mozilla launches study into Facebook data collection

            Mozilla, the company behind the Firefox browser, is partnering with the nonprofit newsroom The Markup to launch a study that will analyze how Facebook tracks data for targeted ads and to tailor content recommendations for users.

            The study will use tools provided by Rally, a privacy-focused data sharing platform created by Mozilla in June, Mozilla announced Monday.

            Firefox users can opt into the “Facebook Pixel Hunt” study through Rally. The study will collect the data sent to Facebook pixels as users browse, the URLs of the web pages users browse, the time users spend browsing pages and the presence of Facebook login cookies in users’ browsers.

          • Mozilla and Linux Mint sign a partnership agreement

            Linux Mint, developer of the popular Linux distribution, and Mozilla, maker of the popular Firefox web browser and Thunderbird email client, have signed a partnership agreement.

            The Linux Mint team announced the partnership on the official blog. According to the information published there, the partnership is commercial and technical in nature.

            Some things will change for Linux Mint users who use Firefox as a browser on the system. Linux Mint shipped Firefox with a custom set of settings and configurations in the past, and most of these will be dropped to go back to the defaults.

          • Firefox 96 is Available to Download, This is What’s New – OMG! Ubuntu!

            Mozilla Firefox 96 is out.

            The first major update to the browser this year comes with a modest miscellany of improvements, plus a few Linux-specifics changes users may be interested to hear about.

            But we’ll start with something everyone: better security.

            Firefox 96 ships with the Cookie Policy: Same-Site=lax setting enabled by default. This, Mozilla say, “provides a solid first line of defense against Cross-Site Request Forgery (CSRF) attacks”. Nice.

            Next, Mozilla says it made “significant improvements in noise-suppression and auto-gain-control as well as slight improvements in echo-cancellation to provide you with a better overall experience.” This relates to the browser’s built-in Media Capture and Streams API which is used in WebRTC.

          • Firefox 96 Yields Less Load On The Main Thread, WebP Encoder For Canvas – Phoronix

            Firefox 96.0 is officially shipping today as the first update of 2022 for this open-source web browser.

            Firefox 96.0 has “significantly” reduced the amount of load placed on the browser’s main thread and there is also “significant” improvements in noise suppression and auto-gain-control and improvements in echo cancellation. In addition to that performance work, there are also WebRTC improvements, an improved cookie policy to reduce the likelihood of Cross-Site Request Forgery (CSRF) attacks, video quality degradation fixes, and other fixes.

          • Linux Mint Partners with Mozilla to ‘Improve Firefox Experience’ – It’s FOSS News

            Linux Mint announced a partnership with Mozilla.

            Considering Linux Mint offers Firefox as the default web browser and continues to use Thunderbird as the email client, it sounds like a piece of good news.

            But, what exactly does the partnership affect? What are the changes that come with Firefox on Linux Mint?

            [...]

            Linux Mint will be dropping its customizations and using the default configurations for the Firefox browser, identical to other operating systems or distributions.

            This should ensure that you get a uniform Firefox browsing experience, no matter the platform.

          • Updating to Firefox 96

            Yesterday we announced a new partnership with Mozilla and a transition to Mozilla default settings in Firefox 96. If you didn’t read this announcement yet, please visit https://blog.linuxmint.com/?p=4244.

            Today, in preparation for Firefox 96 I want to make one more blog post, this time to talk specifically about technical details and to help people before, through and after the transition.

            Firefox 96 is out today but we’ll publish the update on Friday January 14th. This will give everyone a few days to read this post, prepare for the update and get an opportunity to ask questions and seek help before the transition.

      • FSF

        • Licensing/Legal

          • Making Open Source economy more viable with dual license collectives

            Here is an idea that has been sitting in my mind for more than a year now, and I still think it might work. I finally decided to write it down, so people can tell me if it already has been tried or why is it bad. I almost never have any truly unique idea, so I bet someone will send me a link proving that I just suck at googling stuff. If you think it’s good – feel free to give it a try. After all, ideas are cheap and execution is where the value is.

      • Programming/Development

        • Setting Up a CI System Part 3: Provisioning Your CI Gateway

          In this article, we will further discuss the role of the CI gateway, and which steps we can take to simplify its deployment, maintenance, and disaster recovery.

          This work is sponsored by the Valve Corporation.

        • Perl/Raku

          • Raku Advent Calendar: All the blogs posts of 2021
          • 2022.01/02 Perching? – Rakudo Weekly News

            Inspired by the mention of increased number of visitors to the 2021 Raku Advent Calendar (up 180% from 2020), and an article about the cycle of adoption of technology, Steve Roe created a Pull Request for the Raku’s Most Wanted list, which describes a plan to make the Raku Programming Language the tool of choice for the scientist / programmer that is hitting the limits of Python. Hopefully, a Python Perch for all the people working on this in the Rakudo Weekly News, will become a thing!

  • Leftovers

    • From the Market Mirage to Regional Communities: the Communitarian Vision of William Appleman Williams

      Friedman made that statement in 1982, even as the laissez-faire economic ideas that had seemed impossible through much of his career were coming to fruition. The new Reagan Administration was busy cutting government programs and regulations, while reducing taxes on corporations and the wealthy. “Government is not the solution to our problem, government is the problem,” Reagan had proclaimed in his inaugural address. It was a sharp turn from previous decades. The 1930s Depression had deeply discredited free market economics. From the 1930s New Deal to the 1960s Great Society, expansion of government and its role in society had been the hallmark.

      But the 1970s saw the emergence of multiple crises. Oil prices skyrocketed, while inflation radiated throughout a stagnating economy. The old economic formulas no longer seemed to work. The ruling business and political classes were under severe challenge. Wealth inequality, always a major divide, reached a historically low point in the mid-1970s, while labor intensified its demands. The ideas of Freidman and other free market economists developed in the 1950s and ‘60s had already undergone a test run in Chile after the 1973 coup. Now the ruling classes of the U.S. were ready to implement them wholesale in the U.S., even as Margaret Thatcher brought them to the fore in the UK. Strictly speaking, the neoliberal revolution did not so much reduce government as the parts of government that benefitted ordinary people, while attacking labor and unleashing corporations from much of the regulatory framework created in previous decades. The trend continued through Republican and Democratic administrations.

    • ProPublica’s Year in Visual Journalism

      We at ProPublica often tell stories about vulnerable people who have been failed by powerful individuals and institutions. Through our visual journalism, we aim to help our readers connect with and contextualize these stories.

    • Hardware

      • A Simple EMF Detector And Electroscope You Can Make From Junk Box Parts | Hackaday

        Electromagnetic fields are everywhere, all around us. Some are generated naturally, but in vast majority of cases, it’s we humans that are generating them with artificial, electronic means. Everything from your mobile phone to the toaster will emit some sort of signal, be it intentional or not. So we think it only befits the general electronics-orientated hacker to have some way of sniffing around for these signals, so here is [Mirko Pavleski] with his take on a very simple pair of instruments to detect both static and dynamic electromagnetic fields.

        [...]

        The first unit (a simple electroscope) uses a cascade of 2N2222 NPN bipolar transistors configured to give a high current gain, so any charge near the antenna will result in increasing currents in subsequent stages, finally illuminating the LED. Simple stuff.

    • Health/Nutrition/Agriculture

      • Disability Rights Advocates Condemn CDC Director’s ‘Abhorrent’ Comments on Covid-19 Deaths

        Disability rights groups on Sunday were among those expressing horror at comments by Centers for Disease Control and Prevention director Dr. Rochelle Walensky regarding who is most likely to die from the Omicron variant of Covid-19.

        On “Good Morning America” Friday, Walensky shared what she said was “encouraging news” about the variant which is driving case numbers to record highs in the U.S., saying, “The overwhelming number of deaths, over 75%, occurred in people who had at least four comorbidities.”

      • Why Doesn’t the Supreme Court Want Workers to Be As Safe From Covid as They Are?

        All the Supreme Court justices are vaccinated. The court, moreover, was an early adopter of remote working to keep the justices safe, and even as they’ve gone back to the court in person, they still require Covid testing of those who will argue in front of them. It would seem the nine people who can be removed from power only by death are taking the best available precautions to stay alive.

      • The Front Lines of Omicron

        This winter brings a bleak sense of déjà vu to the Boston-area ICU where I work. Once again, beds are increasingly occupied by critically ill patients with Covid-19. When I join Zoom calls with physicians from other hospitals to coordinate regional “load balancing” of ICU beds—exchanging patients between facilities to prevent overload—the tone is again tense.

      • Omicron Spike Is Straining Hospitals as Health Care Workers Leave the Profession
      • Congress Is Providing KN95s to Lawmakers. What About the Rest of Us?
      • ‘Good News for Seniors’: Becerra Orders Medicare to Reassess Premium Hike

        As the head of the U.S. Department of Health and Human Services announced Monday that he was ordering a review of a planned 15% hike in the Medicare Part B premium for 2022, healthcare reform advocates stressed the need for Congress to pass a Build Back Better bill with a provision allowing the federal government to negotiate the price of prescription drugs.

        “Pharma corporations cynically anticipate public anger at high launch prices and so plan for ‘voluntary’ price reductions.”

      • ‘What About the General Public?’: Members of Congress to Get KN95 Masks Amid Omicron Wave

        With Capitol Hill—like much of the United States—experiencing a major spike in Covid-19 cases, members of Congress and their offices are reportedly set to receive KN95 masks to help stem the spread of the highly contagious Omicron variant.

        “There are unprecedented infections around the entire country! What about the general public?”

      • Breaking Point: Ed Yong Says Omicron Is Straining Hospitals & Schools Amid Vaccine Mandate Pushback

        The Omicron variant’s transmission rate is exponentially higher than Delta, leaving healthcare workers across the U.S. in dire straits. Waves of doctors, nurses and other health professionals are unionizing, and some have quit the profession over exploitative conditions. The staffing shortage has added on to the strains of increasing hospitalizations due to COVID-19, limited availability of necessary equipment and lack of federal support for preventative measures such as paid medical leave. “This is the cost of two years spent pushing prematurely for a return to normal,” says Ed Yong, Pulitzer Prize-winning reporter and science writer at The Atlantic. Yong also discusses the debate over keeping schools open during the COVID-19 surge, and challenges to President Biden’s vaccine mandates affecting nearly 100 million workers.

      • As Djokovic Leaves Australian Detention Hotel, Refugees Held There Urge World Not to Forget Them

        As an Australian judge allows unvaccinated tennis star Novak Djokovic to be released from immigration detention amid controversy over his COVID vaccine exemption, we look at how his case has intensified international scrutiny over Australia’s inhumane treatment of refugees jailed in the same rundown hotel. “No one is telling us when we get out of this indefinite detention,” says Mehdi Ali, an Iranian refugee currently detained by the Australian government at the Park Hotel in Melbourne. We also speak with former Australian soccer player Craig Foster, who advocates for asylum seekers.

      • Calls for Paid Leave Grow as Workers Face ‘Vicious Cycle’: Their Jobs or Covid Safety

        As U.S. workers ill with Covid-19 during the Omicron surge face the stark choice of staying home without pay at the risk of losing their jobs or reporting to work and possibly infecting colleagues and customers, progressives on Monday renewed calls for the implementation of paid sick leave at the national level.

        “I thought I was doing the right thing by protecting my co-workers. Now I wish I just would’ve gone to work and not said anything.”

    • Integrity/Availability

      • Proprietary

        • Security

          • Privacy/Surveillance

            • Australian Government Reviews Its Encryption-Breaking Law, Says It’s Cool And Good

              The Australian government gave itself encryption-breaking powers at the end of 2018. The law went into effect January 2019. The beneficiaries of the law immediately swept in to reap the rewards. Demands for “exceptional access” required tech companies to break encryption upon request to hand over communications and data sought by law enforcement and security agencies.

            • Here Comes the Digital Markets Act, Important New Legislation From the EU Boosting Privacy and Interoperability

              Where the DSA is highly contentious, because of its desire to lay down what is illegal content online — something that touches on human rights such as freedom of speech — the DMA has a great deal of support across the political spectrum in Europe. The GAFAM group has long been regarded as too powerful, and even as a threat to European democracy; calls to clip the wings of these companies have been heard for years. The DMA aims to impose a number of wide-ranging restrictions on these digital giants, and if passed is likely to have a major impact on them not just in the EU, but globally.

            • Moxie Marlinspike has stepped down as CEO of Signal

              Founded in 2014, Signal has grown into one of the most trusted and robust apps for encrypted messaging. The service has more than 40 million monthly users and is regularly recommended in security guides. Established as a nonprofit, the company is not supported by advertising or app sales, instead relying on donations and a recently launched sustainer program.

            • The FCC’s still in a stalemate a year into Biden’s presidency

              After nearly a year into Joe Biden’s presidency, new pressure is mounting on the Senate to expeditiously confirm nominations for positions at two of the federal government’s top agencies with control over broadband and data privacy.

              In new statements issued on Monday, public interest groups Free Press Action and Fight for the Future called on the Senate Commerce Committee to fill the final seats at the Federal Communications Commission and the Federal Trade Commission. Both Gigi Sohn and Alvaro Bedoya, for the FCC and FTC, respectively, have finished their confirmation hearing processes, but neither nomination has received a final committee vote to set them up for floor confirmation.

    • Defence/Aggression

      • Citing ‘Blatant Acts of Insurrection,’ NC Voters Petition to Bar Cawthorn From Seeking Reelection

        Citing U.S. Rep. Madison Cawthorn’s alleged participation in the January 6 coup attempt, a group of North Carolina voters on Monday submitted a legal challenge to prevent the Republican lawmaker from seeking reelection in 2022.

        “Cawthorn has engaged in blatant acts of insurrection. He must be held accountable for his actions which have threatened our democracy.”

      • Opinion | Killer Robots and the Laws We Need to Stop Them

        Here’s a scenario to consider: a military force has purchased a million cheap, disposable flying drones each the size of a deck of cards, each capable of carrying three grams of explosives—enough to kill a single person or, in a “shaped charge,” pierce a steel wall. They’ve been programmed to seek out and “engage” (kill) certain human beings, based on specific “signature” characteristics like carrying a weapon, say, or having a particular skin color. They fit in a single shipping container and can be deployed remotely. Once launched, they will fly and kill autonomously without any further human action.

      • Progressives Demand Biden End Sanctions to Avert Mass Starvation in Afghanistan

        Progressive U.S. lawmakers and human rights advocates are urging the Biden administration to immediately lift economic sanctions on Afghanistan that are fueling a humanitarian disaster and as famine threatens millions in the war-torn nation.

        “Afghanistan is facing an avalanche of hunger and destitution the likes of which I have never seen in my 20 plus years with the World Food Program.”

      • Lethal Robotic Weapons Systems Are on the Rise, But So Is the Fight to Stop Them
      • When Sidney Poitier Picked Up the Gun

        I was 15 in the summer of 1968, when it seemed everybody my age and older was out in the streets. Instead, I hunkered down and let the world’s rage, turbulence, and intensity come to me. I absorbed it all. And got so used to my hopes being dashed by the events of that summer that I expected disappointment each day as if it were a regular meal.

      • Nina Khrushcheva: Putin Could Be Kingmaker in Kazakhstan Power Struggle as Russia Helps Quell Protests

        Kazakhstan’s authoritarian President Kassym-Jomart Tokayev has described last week’s protests as an attempted coup and defended his call for Russian-led troops into the country to put down the unrest. Demonstrations were triggered by a rise in fuel prices and widened to broader anti-government protests. Over 160 people were killed in the violence, including a 4-year-old girl, and thousands were detained. “The Russian troops will probably get out, but Tokayev, if he keeps power … probably will be somehow in debt of Putin, and Putin may have [the] position to decide, or help decide, certain moves in Kazakhstan,” says Nina Khrushcheva, professor of international affairs at The New School.

      • A grim year: Meduza’s Andrey Pertsev sums up the key developments in Russia’s domestic politics in 2021

        The year 2020 saw the death of public politics in Russia. To accommodate a plebiscite on amending the constitution, the authorities introduced a three-day voting period (leaving ballots unsupervised at polling stations overnight), as well as “mobile polling stations” (giving rise to the infamous “stump” voting). The official result was 67 percent turnout, with 78 percent of voters supporting the constitutional changes. 

      • Putin Unlikely to Invade Ukraine Despite Overheated U.S. Rhetoric, Says Khrushchev’s Great-Granddaughter

        U.S. and Russian officials are meeting today in Geneva as NATO calls on Russia to remove its troops from along the Ukrainian border. The Russian military has also mobilized soldiers to suppress protests in Kazakhstan. We go to Moscow to speak with Nina Khrushcheva, professor of international affairs at The New School, who says President Vladimir Putin is expanding Russia’s sphere of influence but will not invade Ukraine. “It’s not that he wants to take more territory. I think he wants to get heard,” says Khrushcheva.

      • ‘Reinforced concrete guarantees’ Here’s what the heads of the Russian and U.S. delegations said after today’s talks in Geneva

        On Monday, January 11, diplomats from Russia and the United States held a series of security talks in Geneva. Taking place against the backdrop of Russia massing troops along its border with Ukraine, the discussion centered around a set of draft security proposals that Moscow presented to the United States and NATO in December. Speaking to reporters after the talks, Russian Deputy Foreign Minister Sergey Ryabkov and U.S. Deputy Secretary of State Wendy Sherman underscored that no concrete decisions have been made as of yet. Here are their comments to the press, in a nutshell. 

      • Denying the Inevitable: Why the West Refuses to Accept China’s Superpower Status

        To help us understand what this claim precisely means, the FT writer uses an analogy. “To use a sporting analogy, you can be an extremely gifted tennis player and genuinely want to be world champion, but still be unwilling to make the sacrifices to turn the dream into reality.”

        At least, in Rachman’s thinking, China is capable of being a political actor, though it remains incapable of vying for the superpower status, as it supposedly lacks ‘the will’ to make the required ‘sacrifices’.

      • The U.S. Makes a Mockery of Treaties and International Law

        This cudgel is now used most commonly against China and Russia. Oddly enough, whenever the United States asserts this “rules-based order” that China (and other “revisionist powers”/enemy states) are violating, the United States never seems to clarify which “rules” are being violated, but simply releases a miasma of generic accusation, leaving the stench of racism and xenophobia to do the rest.

        This is because there is a fundamental contradiction at the heart of the RBIO.

      • January 6th: From Standoff to Siege and Back Again

        As Western Watersheds Project and others said at the time, the siege of the Capitol was unprecedented but unsurprising. A former senior domestic terrorism analyst described it as “A straight line that you can draw” between Jan. 6, 2021 and the 2014 standoff at the Bundy Ranch. To those of us who have been watching the uprising of anti-government sentiment play out on public lands in the West, the trajectory was painfully clear. The same “Don’t Tread on Me” flags waving on the national mall had been flying from flagpoles in rural towns, and were trademarks of both the occupation of the Malheur National Wildlife Refuge in 2016 and the standoff at the Bundy Ranch in Bunkerville in 2014.

        The resistance to, and resentment of, the government’s nominal protection and management of federally-managed lands from private exploitation by grazing has been a ‘thing’ in the West since the Taylor Grazing Act took the public land out of the hands of the cattle industry. Though certainly not the only – or most extreme – example of white supremacists laying claim to lands that don’t belong to them, public lands ranchers and the January 6 insurrectionists have the same sense of entitlement about having the government run in accordance with their beliefs and for their benefit.

      • The Pentagon and CIA Have Shaped Thousands of Hollywood Movies into Super Effective Propaganda
      • Opinion | Hey, Hey, USA! How Many Bombs Did You Drop Today?

        The Pentagon has finally published its first Airpower Summary since President Biden took office nearly a year ago. These monthly reports have been published since 2007 to document the number of bombs and missiles dropped by U.S.-led air forces in Afghanistan, Iraq and Syria since 2004. But President Trump stopped publishing them after February 2020, shrouding continued U.S. bombing in secrecy.

      • More German state police forces introduce tasers for patrol police

        Four out of 16 federal states are now introducing electric pulse weapons across the board. The right-wing conservative police union DPolG has declared itself to be the mastermind and is sponsored by a manufacturer. Whether the officers will use less violence with the new weapons, as claimed, is questionable. Every year there are two deaths in Germany after being tasered

      • Anti-War Voices Denounce Knighting of Ex-PM Tony Blair

        Outrage continues to swell over the recent decision to give a knighthood to former Prime Minister Tony Blair, who was instrumental in the bloody U.S.-led invasions of Iraq and Afghanistan, with anti-war campaigners in the U.K. gearing up for a protest later this year.

        “We will protest at this grotesque award in the name of the Iraqis, the Afghans, the families who lost soldiers, the refugees, and victims of these and subsequent wars.”

      • How Close Is Iran to Getting a Nuclear Weapon?

        There are a number of critical technological hurdles Tehran must surmount first to acquire a fully functioning nuclear weapons program. Iran must develop enough highly enriched, weapons-grade uranium to fuel one or more nuclear bomb; construct a nuclear warhead capable of housing the fissile nuclear fuel; and develop a ballistic missile system capable of delivering a nuclear explosive to its target. Finally, it needs to conduct a test to see if the explosive actually works.

      • The disturbing parallels between the 2020s and 1940s in the U.S.

        These “paradigms” have been for more than a year a regular subject of discussion between me and Jay Weixelbaum. He’s a writer and business historian who’s producing a streaming mini-series about the time a Nazi spy joined US businessmen to toast the fall of France in a Manhattan hotel while a Jewish FBI agent investigated.

        Jay’s project is called A Nazi on Wall Street. (You can donate to the cause here.) During our conversation, he explained why he believes we are moving into a new paradigm and how the choices made in the 1940s seem to mirror choices being made in the 2020s. We could have turned fully fascist back then. Let’s hope we don’t do that now.

    • Environment

      • NOAA Report Shows 310 Climate-Linked Disasters Cost US Over $2 Trillion Since 1980

        As new statistics published Monday by the U.S. National Oceanic and Atmospheric Administration revealed the United States has sustained more than $2 trillion in damages wrought by over 300 weather and climate disasters since 1980, a leading economist specializing in equitable climate solutions reiterated the need for urgent action—starting with passing Democrats’ flagship Build Back Better Act—to mitigate the planetary emergency.  

        “Policymakers must take drastic actions to rein in global warming emissions across all sectors of the economy.”

      • Opinion | The Climate Crisis Is Clawing Back Progress We Made to Save the Puffins

        I stepped onto the battlefield of climate change, sidestepping carcass after carcass. In the grass were the remains of Arctic terns, common terns, and roseate terns. Along the boulders, researchers pointed out dead puffin chicks. As other climate war zones smolder with wildfire embers, are strewn with flattened homes, or marked by bleached coral, the signature of conflict on a seabird island in the Gulf of Maine is a maddening quietude.

      • Obsession: Climate Change Russian Roulette

        How about geo-engineering to reflect sunlight back into space, and cool the Earth? A friend asked: Is Dr. Ye Tao’s mirrors-on-the-ocean-surface scheme to reduce solar influx and thus reduce global warming reasonable? [2]

        My initial reaction: It’s like wearing a thicker helmet so you can keep playing Russian Roulette.

      • Energy

        • Opinion | The Fed Is Getting This Economy All Wrong

          Friday’s jobs report from the Department of Labor was a warning sign about the US economy. It should cause widespread concern about the Fed’s plans to raise interest rates to control inflation. And it should cause policymakers to rethink ending government supports such as extended unemployment insurance and the child tax credit. These will soon be needed to keep millions of families afloat.

        • We Need the Fossil Free Finance Act Now to Combat Wall Street’s Greenwashing
        • Fukushima Takes a Turn for the Worse

          The problems, issues, enormous danger, and ill timing of deconstruction of a nuclear disaster is always unexpectedly complicated by something new. That’s the nature of nuclear meltdowns, aka: China Syndrome debacles.

          As of today, TEPCO is suffering some very serious setbacks that have “impossible to deal with” written all over the issues.

        • Bakers: Expensive electricity will raise price of pastries

          Increased electricity bills are eating away at the stocks entrepreneurs have managed to save up during the coronavirus crisis. Bakeries say that rising energy, raw material and labor prices will eventually lead to higher product prices.

      • Wildlife/Nature

        • Vanishing Lines I Ski resort expansion is destroying our last living glaciers.
        • Cargo, With a Side of Hornets, Flies and Crabs
        • The Fish and Wildlife Service Must Reject Gianforte’s Political Grizzly Bear Petition

          The petition is not based upon the best scientific and commercial information available. In fact, its key provision of declaring the NCDE to be a genetically distinct population segment is devoid of any scientific backing or supporting data whatsoever and is not in accord with the Distinct Population Segment Policy. It is built entirely on numbers using questionable methods.

          Let’s be clear, the petition is a transparent political power grab and a vehicle to begin hunting of grizzly bears no matter the levels of other mortality sources. If delisted there WILL be hunting of grizzly bears with mortality exceeding sustainable levels. Forget science-based management. We can see the potential future of state management of grizzly bears by taking a look at the current wolf slaughter which has wiped out entire packs of Yellowstone wolves. By fencing bears into undersized recovery zones with a wall of mortality, the State is attempting to create distinct population segments through permanent isolation. The State’s plan allows for the NCDE grizzly population to fall more than 27% before remedial actions are even considered. That’s an invitation to the extinction vortex where rapid population decline cannot be reversed by management.

    • Finance

      • How To Destroy Innovation And Competition: Putting SHOP SAFE Act Into Innovation And Competition Act

        Last fall, we had three separate articles about the horrific problems of the SHOP SAFE Act — one by me, one by Cathy Gellis, and a massive one by Prof. Eric Goldman. The bill is extraordinarily bad, but it’s extraordinarily bad in a somewhat sneaky manner, which we’ll get to in a moment.

      • Worshiping Markets, Genuflecting to Grand Fortune
      • Think Big to Overcome Losing Big to Corporatism

        These bills included the creation of the Environmental Protection Agency (EPA) and environmental laws, the establishment of the Occupational Safety and Health Administration (OSHA) for worker health and safety, the Consumer Product Safety Commission (CPSC), the Freedom of Information Act (FOIA), and worker pension protection, among others.

        Alas, Richard Nixon was the last Republican president to be afraid of liberals. When grade B actor Ronald Reagan flew into Washington, he opened all doors to Big Business. A cruel man with a smile, Reagan gave an actor’s cover to the greatest collapse into the corporate power pits in American history.

      • Knowledge of Build Back Better is Power

        A day after news broke that Manchin’s “no” was not necessarily final and defending the senator’s earlier blanket refusal, Fox News Contributor Deroy Murdock fired off a barrage of invective. He wrote that “BBB [Build Back Better] is … a Pandora’s box teeming with far-Left vipers and viruses.” These include “[u]niversal pre-kindergarten, all the better to brainwash children with critical race theory …,” and a smorgasbord of “socialist goodies,” such as “body spa treatments” and “a Great Lakes heavy icebreaker.”

        Hardworking preschool teachers make sure that the toddlers in their charge learn all sorts of skills. Crafts, story time, potty training, and naps are also big parts of the day, so there is no room for critical race theory, a subject mostly taught in universities. In addition, I do not recall my political science professor ever teaching us that massages and icebreakers are critical elements in forming repressive, authoritarian regimes, even those with a socialist veneer. If he had, we might have wondered if he was qualified for the job or was simply joking.

      • Inside the December Jobs Report: Unemployment Falls to 3.9 Percent; Wage Growth Remains Strong

        The unemployment rate fell another 0.3 percentage points in December, bringing the unemployment rate down to 3.9 percent. This is lower than all but five months in the late 1990s boom and the period between May 2018 and the pandemic.

        At the same time, the establishment survey showed a weaker than expected increase in 199,000 jobs; although the prior two months figures were revised upward by a total of 141,000. With the upward revisions, the average growth for the last three months was 365,000.

      • Today in adulting: At nearly 38, I learned that dental insurance almost isn’t worth the paper it’s printed on.

        I have fairly good teeth, so I haven’t had dental insurance in 20 years.

        But my spouse has awful teeth and has a dental insurance plan through Blue Cross/Blue Shield.

        They pitch it as paying for 80% of minor work (extractions, fillings) and 50% of major (crowns, root canals, and dentures), but what I found out is that their plan and their paper Explanation of Benefits that you get in the mail is really deceptive.

        What actually will happen is a bunch of things like, the dentist charges $275 for a filling, but Blue Cross/Blue Shield has an “allowable amount”.

        Now, on HEALTH insurance, an allowable amount would mean that they gave you a network discount and then paid 80% of that.

    • AstroTurf/Lobbying/Politics

      • Elizabeth Warren Demands Information on Fed Official’s Questionable Stock Trades
      • Opinion | The Murderous Corporate Psychopaths Who Never Go to Prison

        Alfred Ruf poisoned his wife as part of a scheme to get rich off her life insurance. So did Dr. Gregory “Brent” Dennis, who was looking at a $2 million payout. Joshua Hunsucker poisoned his wife for a mere $250K in life insurance money, $80,000 of which he used to buy a boat. David L. Pettis poisoned his wife for $150,000.

      • Manchin Filibuster Talks Like “Negotiating Via Etch A Sketch,” Dem Sources Say
      • Sanders Says Democrats Need ‘Major Course Correction’ to Prevent GOP Takeover

        Sen. Bernie Sanders said in an interview published Monday that too much of the Democratic Party has “turned its back on the working class” and is in need of a dramatic shift as central elements of its agenda—from voting rights to climate action to social spending—face possible collapse thanks to corporate-backed lawmakers.

        In the conversation with The Guardian, Sanders (I-Vt.)—a two-time contender for the Democratic presidential nomination and the current chair of the Senate Budget Committee—said the party must immediately undertake “a major course correction” if it hopes to advance its popular agenda, reverse its falling support among key constituencies, and prevent the increasingly authoritarian GOP from seizing power.

      • Who could ever have seen this coming?

        As I approached what I should write about early in 2022, I thought that I should write about something more “meta”. (No, not the metaverse or Facebook’s crappy new name!) This reminds me of something I saw before the holidays on Twitter about retiring NIH director Francis Collins, who irritated me so much that I almost broke my vow not to blog over the holidays. Fortunately, I didn’t, which allowed me to contemplate it more and my anger to recede. That doesn’t change my level of frustration; so here we go.

      • American Exception: Empire and the Deep State with Aaron Good and David Talbot – The Project Censored Show
      • North Carolina Voters Challenge Madison Cawthorn’s Candidacy
      • When Will David Brooks Admit That Conservatism Paved the Way for Trump?

        David Brooks is the prodigal son of the Democratic Party. As an undergrad at the University of Chicago in the early 1980s, he identified as a democratic socialist. But upon graduating he got caught up in the spirit of Reaganism, starting off as an intern for William F. Buckley Jr. Now, after more than three decades of being a formidable Republican advocate, Brooks is ready to return to the Democratic fold.

      • Attention, Democrats: The Constitution Trumps the Filibuster

        Four times during this past congressional session, Senate Republicans have blocked voting rights legislation. Democrats are currently trying to decide whether to use their shaky, one-vote majority to end or limit use of the filibuster in order to overcome Republican opposition and pass a voting rights reform bill. As usual, they are divided.

      • Opinion | Killing Build Back Better Could End Sinema and Manchin’s Careers: Lessons from 2010

        Holding the fate of Build Back Better (BBB) in their hands, Senators Kyrsten Sinema and Joe Manchin should heed some lessons from 2010. When a small group of Democratic senators so delayed and weakened Obamacare that they cratered Obama’s initially massive support, they also helped end all their own political careers. 

      • Groups Tell Biden He’s Not Welcome in Georgia Without a ‘Finalized Voting Rights Plan’

        President Joe Biden is set to visit Atlanta on Tuesday to deliver a major speech on the state of voting rights in the U.S., but his planned visit has gotten a chilly reception from Georgia advocates who say they’re sick of lofty rhetoric and no action from Democratic leaders.

        In a joint statement ahead of Biden and Vice President Kamala Harris’ trip, a coalition of advocacy groups including the Black Voters Matter Fund, the Georgia NAACP, and the Asian American Advocacy Fund said the president must bring with him “an announcement of a finalized voting rights plan that will pass both chambers, not be stopped by the filibuster, and be signed into law.”

      • Steve Bannon Is Onto Something

        To Hersh, that’s not politics. It’s what he calls “political hobbyism.” And it’s close to a national pastime. “A third of Americans say they spend two hours or more each day on politics,” he writes. “Of these people, four out of five say that not one minute of that time is spent on any kind of real political work. It’s all TV news and podcasts and radio shows and social media and cheering and booing and complaining to friends and family.”

        Real political work, for Hersh, is the intentional, strategic accumulation of power in service of a defined end. It is action in service of change, not information in service of outrage. This distinction is on my mind because, like so many others, I’ve spent the week revisiting the attempted coup of Jan. 6, marinating in my fury toward the Republicans who put fealty toward Donald Trump above loyalty toward country and the few but pivotal Senate Democrats who are proving, day after day, that they think the filibuster more important than the franchise. Let me tell you, the tweets and columns I drafted in my head were searing.

    • Misinformation/Disinformation

      • Fox News has a Jan. 6 problem: Sean Hannity’s text messages make clear his complicity

        It’s impossible to know for sure what he meant by “January 6th happening the way he is being told” but according to a number of accounts this was when Trump’s henchmen were hatching their plot to have Republicans in Congress object to the electoral count and have Pence throw the election to the House of Representatives where Trump would win despite losing through legitimate means. In other words, the coup was being planned. And apparently, the White House counsel’s office knew it was illegal and was threatening to quit en masse over it, or at least that’s the suspicion based upon what Hannity was texting.

    • Censorship/Free Speech

      • SOPA Plus 10, reflections and continued work

        On January 18, 2012, the web went dark in protest of the Stop Online Piracy Act (SOPA) and the Protect IP Act (PIPA), two bills introduced into the United States House and Senate in the last quarter of 2011.

    • Civil Rights/Policing

      • Immigration Reform Is Still Possible — With a Strong Social Movement
      • Opinion | “The White Negro”: Norman Mailer’s Essay 65 Years Later

        A 1957 essay by celebrated writer Norman Mailer called  “The White Negro” is getting a lot of renewed attention these days. According to a just-published article by journalist Michael Wolff in a site called The Ankler, Random House decided against publishing a collection of Mailer’s essays after a “junior staffer” complained about “The White Negro,” which was going to be included in the anthology.  According to Wolff, the staffer believed that the title was racist and that was enough for Random House to scuttle the project in order to avoid controversy. This quickly triggered a debate on social media over so-called “cancel culture.” Did the nation’s largest book publisher cancel the Mailer book over fears of being called racist?

      • Japanese Women Are Fighting Back Against Pervasive Sexism
      • Starbucks Workers in Chicago, Ohio and Oregon Join Unionization Efforts
      • A Free South

        In the 1960s, the Free Southern Theater, an organization founded by a group of activists with the Student Nonviolent Coordinating Committee (SNCC), traveled to a church in a predominantly Black, rural corner of Mississippi. There they staged Samuel Beckett’s Waiting for Godot, an absurdist drama about characters conversing as they wait for someone who never arrives. The play may have seemed like a strange choice—who would imagine that Beckett might connect with rural Black Americans in the throes of the civil rights movement?—but it found at least one admirer in civil rights leader Fannie Lou Hamer. “I guess we know something about waiting, don’t we?” Hamer said from the audience.1

      • ‘Absolute Disgrace’: Maine’s Democratic Gov. Kills Bill to Allow Farmworkers to Unionize

        Maine’s Democratic Gov. Janet Mills is under fire after vetoing a bill that would have allowed farmworkers in the state to unionize.

        The Maine Legislature passed a bill to give workers in agricultural industries the right to organize and collectively bargain for better wages, benefits, and working conditions. But in a move that labor reporter Kim Kelly called “an absolute disgrace,” Mills on Friday single-handedly prevented the proposal from becoming law.

      • Conservatives on Supreme Court Poised to Block Biden’s Vaccine and Mask Mandates
      • Joleen Nez: A Death in Custody

        On April 16, 2020, Officer Preston Panana walked up to Joleen Nez at the corner of Texas Street and Zuni Avenue in Albuquerque. Nez was living in a nearby encampment in a neighborhood known as the War Zone, along with dozens of other unhoused Native Americans. About six months pregnant with her fifth child, Nez, who is Navajo and Zia Pueblo, was getting her meals at the Albuquerque Indian Center, where she’d known some of the staff for years.

        Panana was with four other police officers when he heard Nez and a man arguing. As the two quarreled, the man set a paper cup and bowl down on the sidewalk, and Nez knocked them over. That’s when, as Panana wrote in the incident report, he advised her “to pick up her litter and of the consequences if she did not.”

      • Podcast Episode: Algorithms for a Just Future

        EFF’s Cindy Cohn and Danny O’Brien joined Vinhcent to discuss our digital privacy and how U.S. laws haven’t kept up with safeguarding our rights when we go online. 

      • The Civil Rights Era on Screen: the Legacy of Sidney Poitier

        “He has carved for himself an imperishable niche in the annals of our nation’s history,” King told the audience of 2,000 delegates. “I consider him a friend. I consider him a great friend of humanity.”

        That man was Sidney Poitier.

      • Amazon shortens paid leave policy for employees infected with COVID-19

        Amazon is shortening its paid leave policy for employees infected with COVID-19 following the change in quarantine guidance from the Centers for Disease Control and Prevention.

        Amazon told all U.S. employees on Friday that paid leave for COVID-19 quarantine will be shortened from 10 days to seven days.

    • Internet Policy/Net Neutrality

      • Cable TV Cord Cutting Continues To Set Records, Though Streaming TV Is Slowing Down Too

        For more than a decade, cable TV executives brushed aside the threat of cable TV “cord cutting” as either a nonexistent threat or a temporary phenomenon. Of course neither wound up being true, and consumer defections from the bloated, pricey traditional cable TV bundle continue to set records during the COVID crisis. Traditional cable TV providers saw a 6.2% drop in subscribers in the third quarter of 2021, an all time record. It’s particularly bad for traditional satellite TV providers, who saw a 12% dip in overall users during the same quarter.

    • Digital Restrictions (DRM)

      • WarnerMedia Renews Comcast Carriage Deal, CNN Plus to Become Available on Xfinity Platforms

        As part of the extended agreement, Comcast will make CNN Plus, WarnerMedia’s upcoming subscription streaming platform, available on its Xfinity X1, Xfinity Flex and XClass TV platforms later in the year, following its first-quarter launch. This marks the first distribution deal set for the new streamer.

      • Canon ink is freaking out after shipping without crucial chips. Here’s how to fix it

        Canon is reporting that it has been forced to ship ink cartridges without chips that identify ink levels, leading to error messages when the cartridges are inserted. The company has published a workaround while it sorts the issue out.

        Canon reported that supply chain shortages have forced the printer manufacturer to ship consumable print cartridges without certain semiconductors inside them. Canon doesn’t describe exactly what these chips do, though a German support page (as discovered by TechRadar) says that they oversee “certain additional functions” such as toner level detection.

    • Monopolies

      • Antitrust Suit Alleges 16 Elite Universities Colluded to Limit Financial Aid

        Sixteen elite universities were sued in federal court late Sunday over an alleged price-fixing scheme in which plaintiffs say the schools formed a “cartel” to limit the amount of financial aid they would each offer to low- and middle-income prospective students—breaking antitrust laws.

        Five students who previously attended some of the universities filed the federal lawsuit in Illinois, arguing that in defiance of legislation passed in the 1990s, at least some of the schools take families’ financial needs into account when making admissions decisions. The schools in question are part of a group called the “568 Presidents Group,” which was formed after Ivy League schools were charged with price-fixing in 1991 and is supposed to admit students on a “need-blind” basis.

      • Trademarks

        • CBS Sued Over Portrayal of Torture Device on ‘Evil’

          At the beginning of the episode, a woman referenced the device by saying, “Oh right, the God Helmet,” to which a man responds, “Actually, that’s trademarked, so we’ve been asked not to call it that.”

          “There is clear and convincing evidence that Defendants CBS and KING did research for their episode because Defendants knew of the God Helmet, the way the helmet works, and the trademark,” the lawsuit reads. “Therefore Defendants knew the depictions and statements would create a false impression about Plaintiff’s device and trademark.”

      • Copyrights

        • Sculptor Of Pillar Of Shame Announces It’s Now Public Domain So That Anyone Can Make A Copy, As Chinese Authorities Seek To Destroy It

          Last fall we wrote about how Chinese officials were looking to remove the “Pillar of Shame,” a sculpture by artist Jens Galschiøt that commemorates China’s massacre of pro-democracy demonstrators at Tiananmen Square in 1989. The sculpture was erected at the University of Hong Kong in 1997, and now that China has been wiping out every last bit of freedom in Hong Kong, the statue has been targeted as well. In our post last fall, we noted that (1) Galschiøt was threatening legal action if the statue is damaged, and (2) activists were making 3D scans of the sculpture so that it can be replicated.

        • Popcorn Time: The ‘Netflix of piracy’ is dead, developers announce

          Popcorn Time, a streaming service that was both beloved and hated as the “Netflix of piracy”, has been shut down.

          The tool gained vast popularity for the ease with which it allowed users to stream pirated films and TV shows for free. Unlike more complicated or risky services, users were able to easily access what they wanted to watch, with the ease of streaming content on Netflix.

        • No, Popcorn Time Is Not Dead … It’s Unkillable

          This led various publications including Bloomberg to declare that Popcorn Time, one of the most popular piracy services of all time, is dead and that this era of piracy is over. But it’s not that simple, and it’s silly to declare something that was designed to be unkillable as being “dead.” Just as the Pirate Bay has been “shut down” dozens of times but still exists in some version today, various versions of Popcorn Time are alive and well, and there’s no reason to think that it will ever die as long as the internet exists.

          This is because Popcorn Time is essentially just a BitTorrent client that has a video player built into it. BitTorrent is probably the best, earliest, most useful, and most enduring example of the decentralized internet that Web3 and cryptocurrency evangelists hope to achieve. In that sense, Popcorn Time is unkillable. Popcorn Time has “died” before and has come back, several times.

        • NFT art sales are booming. Just without some artists’ permission.

          But thanks to the explosion of the NFT art market, thieves have started stealing her work at a jaw-dropping rate. Last week, an unidentified user on OpenSea, the dominant marketplace for the burgeoning NFT art market, started putting tens of thousands of listings of her work, often duplicates, up for sale. Thirty-seven of them sold before she was able to convince the platform to take them down.

          “They just kept taking and remaking them as NFTs,” Trier said. “It’s so flagrant. And if it happens to me, it can happen to anyone.”

        • RIAA: Yout’s Attempt to Legitimize Stream-Ripping is ‘Wordplay’

          YouTube-ripping service Yout.com is suing the RIAA in an attempt to have its platform declared legal in the US. The case boils down to whether YouTube has meaningful technical protection measures and whether Yout circumvents them. According to the RIAA, there is no question that Yout.com is in the wrong and it characterizes any claims to the contrary as “wordplay”.

        • PrimeWire: Hollywood & Netflix Win Court Injunction to Disable Site Domains

          Early December, several Hollywood studios and Netflix teamed up under the banner of the MPA to sue PrimeWire, one of the longest-standing pirate streaming sites. After a hearing early this month, the court has now handed down an injunction designed to render the site inaccessible within a matter of days.

        • Talks At Google: Professor Michael Geist – Talks at Google
        • Twitter Asks Court To Reconsider Order To Unmask Anonymous Critic Of A Billionaire Over Questionable Copyright Claims

          On Friday we got around to posting an article about the very, very strange case of a shell company with almost no presence filing a DMCA 512(h) subpoena to Twitter seeking the identity of the person behind the @CallMeMoneyBags account, that has a history of mocking wealthy private equity bros. The subpoena came from an operation called Bayside Advisory, which registered the copyrights for a few images that MoneyBags had posted to the Twitter account, all typical social media photos, showing a young woman. The MoneyBags account implied that the woman in the photos was the mistress of a billionaire, Brian Sheth.

        • Olive Garden At It Again Enforcing Its IP Instead Of Letting Anyone Have Some Fun With Joke NFTs

          You all know about Olive Garden. It’s the chain of… oh, let’s just play along and call them Italian restaurants that have unlimited breadsticks and names of supposedly Italian offerings that appear to have gotten their names by inputting a bunch of Italian food words into a dilapidated AI program that combines them into a series of unholy dish-names. Sure, there’s “Shrimp Scampi”, but there is also “Five Cheese Ziti Al Forno” and “Lasagna Fritta”. I kid of course, but the chain and its parent company, Darden, have also found their way onto Techdirt in the past by being overly aggressive when it comes to trademark enforcement. For instance, Darden attempted to shut down the site allofgarden.com, which was dedicated to tongue in cheek reviews of the chain’s dishes. Darden later apologized for that, blaming some kind of legal bot that crawls for potential trademark infringements on the brand.

Links 11/1/2022: Minted Mozilla and Xwayland 22.1 Schedule

Posted in News Roundup at 12:04 am by Dr. Roy Schestowitz

  • GNU/Linux

    • Server/Kubernetes

      • What Are Finalizers In Kubernetes? How to Handle Object Deletions – CloudSavvy IT

        Kubernetes object deletions aren’t as straightforward as they seem on the surface. Deleting an object is an involved process that includes conditional checks to determine whether safe removal is possible. This is achieved by API objects called Finalizers.

        In this article, we’ll look at what Finalizers are, how they’re managed, and challenges they can cause when you want to delete an object. Having a better understanding of the deletion process can help you debug problems where resources don’t seem to terminate in a timely manner.

      • Kubernetes for Finservs – Unlocking success in digital transformations

        The global health crisis has accelerated the digital transformation within the financial services industry. A McKinsey report highlights that “In a competitive environment of rising cost pressures, where rapid action and response is imperative, financial institutions must modernise their technology function to support expanded digitisation of both the front and back ends of their businesses.”

        To serve the on-demand customer, financial institutions must become agile digital enterprises focused on delivering innovative products, services, and customer experiences. Containerisation and Kubernetes have a key role to play in enabling financial institutions to meet the needs of customers at speed and scale.

      • Meet Our Contributors – APAC (India region)

        Welcome to the first episode of the APAC edition of the “Meet Our Contributors” blog post series.

        In this post, we’ll introduce you to five amazing folks from the India region who have been actively contributing to the upstream Kubernetes projects in a variety of ways, as well as being the leaders or maintainers of numerous community initiatives.

    • Audiocasts/Shows

      • So Many Linux Terminal Commands Do The Same Thing – Invidious

        So many terminal commands can do the same thing. For example, I often use the ‘wc’ program to get a line count of terminal output. You see me do this on distro reviews to get the number of installed packages for that distro. Well, many people like to point out that I don’t have to use ‘wc’ to get a line count. I could actually use at least half a dozen other standard core utilities to get a line count.

      • Annotate On Your Linux Desktop With Gromit MPX – Invidious

        I’ve wanted a to annotate the screen while I record videos for a while and I’ve finally found something to do the job and that’s Gromit MPX, expect to see it in future videos

      • Linux Mint 20.3 MATE

        Today we are looking at Linux Mint 20.3, MATE edition. It is based on Ubuntu 20.04, Linux Kernel 5.4 (but you can easily upgrade it to 5.13), MATE 1.26, and uses about 1GB of ram when idling. Enjoy!

      • Linux Mint 20.3 MATE Run Through – Invidious

        In this video, we are looking at Linux Mint 20.3, the MATE edition.

      • Linux in the Ham Shack Episode #447: A Whiff of Ozone

        Hello and welcome to the first short-topics episode of 2022. In this episode, the hosts discuss a new appointment at the ARRL, an inexpensive four-band QRP transceiver, a new direction for Solus, the new release of Pipewire, three popular video rendering projects, WSJT-X, WFView and much more. Thank you for listening and have a fantastic week.

      • Saving Podcasting from Centralization | LINUX Unplugged 440

        A new initiative uses open source to keep podcasting decentralized and add new features.

        We chatted with Dave Jones behind the Podcast Index.

    • Kernel Space

      • GNU Linux-libre 5.16 Brings More Firmware Cleansing, Deblobbing – Phoronix

        Following yesterday’s release of Linux 5.16, the GNU folks have released GNU Linux-libre 5.16-gnu as their downstream that removes/disables any code depending upon non-open-source firmware/microcode binaries, the ability to load proprietary kernel modules, and other cleaning in the name of free software.

      • Linux kernel 5.16 now available with Nintendo Switch controller drivers

        The Linux kernel is at the heart of countless devices and operating systems, including Android phones and tablets, Chromebooks, desktop Linux distributions, and much more. New versions are usually released every few months, and now version 5.16 is available to try out.

        Linus Torvalds, the creator and lead maintainer of the Linux kernel, wrote on the kernel mailing list (via omg! ubuntu!), “Not a lot here since [v5.16 release candidate 8], which is not unexpected. We had that extra week due to the holidays, and it’s not like we had lots of last-minute things that needed to be sorted out. So this mainly contains some driver fixes (mainly networking and rdma), a cgroup credential use fix, a few core networking fixes, a couple of last-minute reverts, and some other random noise.”

        Perhaps the most important change in this release is a new kernel system called ‘futex2,’ short for ‘fast user mutex.’ It allows applications to create mutexes, semaphores, conditional variables, and other fast-performing synchronization mechanisms. This new feature could improve performance of games running in the Wine compatibility layer (as well as native Linux games), but Wine hasn’t implemented this yet, so we’ll have to wait and see how that turns out.

      • Linux Kernel 5.16 Delivers Gaming Boost, Nintendo Joy-Con Drivers + More – OMG! Ubuntu!

        The Linux Kernel just received its major update of the year — and if you’re a gamer, it’s a corker!

        Linus Torvalds announced the availability of Linux kernel 5.16 exactly where he always announces it: the Linux kernel mailing list.

        The Linux 5.16 release was delayed by week or so due to the appearance of a red-suited bearded fellow, something Torvalds notes in his announcement where he quips: “we had that extra week due to the holidays, and it’s not like we had lots of last-minute things that needed to be sorted out”.

        So what’s new?

      • Linux Kernel 5.16 Release Improves Gaming & Adds Support for New-Gen Hardware – It’s FOSS News

        Linux Kernel 5.16 is an interesting release for both gamers and desktop users.

        The changes introduced aren’t massive, but useful upgrades for users with the latest hardware and looking to get better performance in terms of gaming.

        Linux Kernel 5.16: What’s New?

        The support for the latest generation hardware from team red (AMD) and team blue (Intel) are some major additions to this release. You will notice improvements for the CPU and GPU as well.

      • Linux Kernel 5.16 Released, Speeds up Wine Games

        Linus Torvalds has announced the release of Linux kernel 5.16. The release offers plenty of new hardware support and features to get excited about.

        As expected Linus Torvalds announced Linux kernel 5.16 to stable in providing the latest features, hardware support, and other improvements ahead of the new 2022 Linux distribution releases, so let’s see what’s new.

        Playing video games on Linux can sometimes be a difficult process. Of course, gaming platforms such as Steam, allow users to play Windows games on Linux with the help of the projects like Proton. However, there is another option – Wine. With that said, the latest version of the Linux kernel brings a new system call, futex_waitv(), which results in better gaming performance while playing both native Linux games or Windows games on Wine.

        Looking at the CPUs, the biggest addition is that Intel’s Advanced Matrix Extensions support is now finally stable. This new extension introduces a unique and performant approach to matrix operations that are frequently used to demonstrate the high-performance capabilities of GPUs.

      • Linux Kernel 5.16 is out now bringing the futex2 work to help Linux Gaming | GamingOnLinux

        Linus Torvalds has announced the release of Linux Kernel 5.16, bringing with it the usual assortment of new hardware support and improvements everywhere. Plus, there’s something big for Linux gaming fans.

        The one many have no doubt been waiting for is the inclusion of Collabora’s work on FUTEX2 with futex_waitv(). This is supposed to help Linux gaming with Proton / Wine and also Native Linux gaming too. As Collabora developer André Almeida previously described it: “The use case of this syscall is to allow low level locking libraries to wait for multiple locks at the same time. This is specially useful for emulating Windows’ WaitForMultipleObjects. A futex_waitv()-based solution has been used for some time at Proton’s Wine (a compatibility layer to run Windows games on Linux). Compared to a solution that uses eventfd(), futex was able to reduce CPU utilization for games, and even increase frames per second for some games. This happens because eventfd doesn’t scale very well for a huge number of read, write and poll calls compared to futex. Native game engines will benefit of this as well, given that this wait pattern is common for games.”.

      • Linux 5.17 EDAC Driver Brings Support For New AMD Zen CPUs, RDDR5 / LRDDR5 Memory – Phoronix

        With the Linux 5.17 kernel merge window formally open today, among the early pull requests sent out this morning were the Error Detection And Correction (EDAC) driver updates which is notable this time in preparation for next-generation AMD EPYC server hardware.

        The most exciting EDAC work for this next kernel cycle is preparation for next-generation AMD Zen processors as well as adding support for DDR5 system memory to this kernel code that deals with ECC and other error detection/correction handling. The DDR5 support within the scope of EDAC is both for Registered DDR5 and Load-Reduced DDR5 memory. This EDAC work I previously reported on last month while the news today is that it’s been submitted for debuting in Linux 5.17.

      • The Intel/AMD Laptop & Tablet Support Improvements For Linux 5.17 – Phoronix

        The x86 platform drivers area of the kernel remains very active in recent times thanks to the continued investments by Red Hat as well as growing IHV interest from the likes of Lenovo while also still having many contributions flow in from the likes of AMD and Intel. With Linux 5.17 are a number of driver additions and improvements for benefiting various x86 laptops and tablets.

      • USI Stylus, LetSketch Tablet Driver, Better Apple Magic Device Support In Linux 5.17 – Phoronix

        The HID subsystem changes are rather exciting this time around of the new feature material for Linux 5.17.

        First up, there is USI stylus/pen support with Linux 5.17. USI is the Universal Stylus Initiative for supported styluses/pens that would work across devices supporting the standard. Google has been backing USI for Chromebooks and other major IHVs/ISVs have been backing USI for much more convenient stylus support across devices. Intel worked out the USI standards support for the Linux kernel.

      • The Networking Changes For Linux 5.17 Are Very Exciting – Phoronix

        The Linux networking subsystem updates for the in-development 5.17 kernel are quite exciting as usual given how prolific Linux is from large servers in the cloud to running on enterprise networking gear down to Linux on small IoT hardware. Not only is there a lot of hardware driver action as usual but also some key performance/latency optimizations.

        On the performance optimization front, there is a significant latency optimization for AF_UNIX sockets.

      • Graphics Stack

        • Xwayland 22.1 schedule
          Hi all,
          
          It's been a year since we released Xwayland standalone and the
          xwayland-21.1 branch.
          
          Some new (and nice!) features found their way in the master branch of
          the xserver since then and the time has come to consider a new
          xwayland-22.1 branch and release, similar to what Michel did a year or
          so ago for xwayland-21.1.
          
          For that purpose I prepared the branch and posted a draft MR (not to
          be merged) here:
          
          https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/819
          
          I see no reason to wait any longer so I'd propose the following schedule:
          
           * Create the branch xwayland-22.1 this week (week #2)
           * January 19th: 1st release candidate
           * February 2nd: 2nd release candidate
           * February 16th: 22.1.0 release if all goes well
          
          Please let me know if that schedule works for you - Also, the
          milestone xwayland-22.1.0 in gitlab should be used to tag issues or
          merge requests that need to be checked before Xwayland 22.1.0 is
          released.
          
          Cheers
          
        • XWayland 22.1 Planned For Release Next Month

          It’s been almost one year already since the last XWayland standalone feature release separate from the X.Org Server codebase itself while now the next feature installment will soon be out.

          Olivier Fourdan of Red Hat has laid out plans for releasing XWayland 22.1. He is stepping up to manage this next feature release and is looking at getting this release out around Valentine’s Day.

    • Applications

      • Bittorrent client qBittorrent 4.4.0 released with v2 torrent support – gHacks Tech News

        The developers of qBittorrent, a popular cross-platform Bittorrent client, have released qBittorrent 4.4.0 to the public.

        The new version introduces support for a Qt6 build for Windows 10 and newer, which promises better HiDPI compatibility according to the developers. The qBittorrent 4.4.x release branch could be the last to support Qt5, and that would also mean that it would be the last branch to support Microsoft’s Windows 7 and 8 operating systems. Releases will continue until at least Summer 2022.

        [...]

        An AppImage is offered for qBittorrent on Linux. It “uses the latest versions of Qt6, libtorrent, boost, openssl” and is created on Ubuntu 20.04. The developers note that it is not tested well at this point.

      • Extension Manager: Search And Install GNOME Shell Extensions Without Using A Web Browser – Linux Uprising Blog

        Extension Manager is a new, unofficial application to browse and install GNOME Shell extensions from your desktop, without having to use a web browser.

        Besides allowing users to search and install extensions from extensions.gnome.org, the tool can also enable or disable extensions (and display a list of installed extensions), access the extension settings, and uninstall extensions.

        The application is very new, having its first (0.1.0) release only a couple of days ago, so it’s still lacking in features.

        Extension Manager does not currently support updating extensions or translations. Also, only the first 10 results are displayed when performing a search, and there’s no option to sort the search results (e.g. by popularity, recency, etc., like on the GNOME Extensions website). Extension screenshots and comments are also not available right now.

      • PostgreSQL: pgsodium 2.0.0: Modern cryptography for PostgreSQL

        pgsodium 2.0.0 is a postgres extension that uses the libsodium library to provide high-performance, modern cryptography support for PostgreSQL 10+.

      • xxd from vim replaces busybox xxd

        Buxybox has the ‘xxd’ utility, but a couple of times recently I found it to be inadequate. A few days ago was compiling a package, which failed due to xxd not supporting the “-i” option. So, yet another busybox applet has to get replaced with the full utility.

        The full xxd is in the vim package. Vim is a text-mode text editor, with quite a good imitation of a GUI. It has it’s fans. Vim is available via the package manager, but I noticed something…

        The vim package is compiled in OpenEmbedded, and for some unknown reason the executable is packaged as /usr/bin/vim.vim — very odd, and it breaks everything, as there are symlinks, for example /usr/bin/gvim, that point to the non-existent /usr/bin/vim

      • Support for Istio 1.10 has ended

        As previously announced, support for Istio 1.10 has now officially ended.

        At this point we will no longer back-port fixes for security issues and critical bugs to 1.10, so we heartily encourage you to upgrade to the latest version of Istio (1.12.1) if you haven’t already.

      • FlowTrack develops employee monitoring software for Linux, Stealth Mode [Ed: Tamil Nadu was known for embrace of freedom-respecting software; do we want spyware for GNU/Linux?]

        FlowTrack has announced its brand-new addition, a real-time employee monitoring software for Linux users.

        This software is touted to be the flagship solution for monitoring the internet and computer activities of employees all across the world.

    • Instructionals/Technical

      • Can You Run a Virtual Machine on a Smartphone? How Does It Work?

        Offering great convenience and security, virtual machines are a popular staple for those who like to tinker and experiment on different operating systems. As personal computers become more and more capable, the market for virtual machines grew with it. Today, PCs can run several operating systems simultaneously.

        The current generation of smartphones has become capable devices. Users can edit videos, play complex games at high resolutions, stream and watch 4K videos, and emulate software meant for computers. This begs the question—can you run a virtual machine on a smartphone?

      • 4 Ways to Install Discord client on Ubuntu 22.04 | 20.04 LTS – Linux Shout

        This tutorial will help you to learn the commands and steps to install Discord client on Ubuntu 22.04 Jammy JellyFish or Ubuntu 20.04 Focal Fossa using the terminal.

      • Iptables vs Nftables on Centos/RHEL 8

        nftables will eventually replace iptables as the Linux kernel packet classification framework, more comply referred to as ‘the firewall.’ However, both are still present and will be for a while. So which one should you choose? Iptables vs Nftables, the answer is nftables, at least in the long run.

      • How to install Linux Mint 20.3 “Una” – Invidious

        In this video, I am going to show how to install Linux Mint 20.3 “Una”.

      • How to Setup MySQL Replication in RHEL/Centos – Unixcop the Unix / Linux the admins deams

        In this article, I will demonstrate how to setup MySQL replication between Master and Slave database servers. This will use two servers, one of which will replicate data from the other (Master to Slave). Use this setup if you want enhanced reliability and performance out of your systems configuration.

      • How to Switch Between Users in Linux

        Linux is a multi-user operating system. Whether it’s using the superuser account to execute administrative tasks or modifying the current user’s access to a certain directory, you’ll have to move between users at some point.

        Linux has several options for dealing with such difficulties. The obvious solution is to log out and log in as the desired user. But you have a couple of different options available through which you can switch users without logging out of the current user.

        In this article, you will learn about all the different ways to switch between users in the Linux system.

      • How to Use the for Loop in a Linux Bash Shell Script

        Looping is an inherent art, which can make your work simpler and help you automate repetitive tasks with relative ease.

        Imagine a situation wherein you need to update a series of numbers or text, and instead of doing it manually, you have the system do it for you. This is the power of looping and the benefits it brings to the table for you.

        Loops, as a function, are available in almost every programming language; Linux’s Bash is no exception to this rule.

        Here’s a guide explaining how you can use the for loop in a shell script.

      • How to configure EC2 for Session Manager – Kernel Talks

        Ok this must be a very basic post for most of you and there is a readily available AWS doc for it, but I am just cutting it short to list down steps for achieving the objective quickly. You should go through the official AWS doc to understand all aspects of it but if you are on the clock then just follow along and get it set up in no time.

      • Getting Started with OpenSSH Key Management – Invidious
      • How to Install and configure PostgreSQL with phpPgAdmin on Ubuntu 20.04 LTS – Unixcop the Unix / Linux the admins deams

        In this article, we will learn how to Install and configure PostgreSQL with phpPgAdmin on Ubuntu 20.04 LTS

        PostgreSQL is powerful object-relational database systems. It is a free and open-source database management system. PhpPgAdmin is a fully managed web-based administration tool for the PostgreSQL database server.

      • How to Install a DEB File in Linux

        So, you finally installed Linux and when downloading your favorite app you got a file with the “.deb” extension. Now what? In this article, let’s look at the two ways you can easily install apps using DEB files on Linux.

      • How to Install OPcache on Debian

        In this guide, we will walk you through the installation of the Zend OPcache in Debian-based Linux distributions such as Ubuntu and Mint.

        OpCache is an advanced caching module that operates similarly to other caching solutions. By keeping your site’s pre-compiled PHP pages in shared memory, it substantially improves PHP performance and, by extension, your website. This avoids the need for PHP to load these pages every time the server receives a request.

        In this guide, we will We’ll be using Ubuntu 20.04 in this post, and we’ll show you how to install and enable the module on both Apache and Nginx web servers. If you need help setting a server, please refer to one of our other guides.

      • How To Install Chromium Browser on AlmaLinux 8 – idroot

        In this tutorial, we will show you how to install Chromium Browser on AlmaLinux 8. For those of you who didn’t know, Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. The Chromium codebase is widely used, and Microsoft Edge, Opera, and many other browsers are based on the code. The key difference between Chromium and Chrome is that Chromium is open-source.

        This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of the Chromium Browser on an AlmaLinux 8. You can follow the same instructions for CentOS and Rocky Linux.

      • Store Kannel DLR to MySQL/MariaDB – Unixcop the Unix / Linux the admins deams

        In our earlier article on Kannel we have learned about how to install Kannel. So, in that configuration, we store SMS Delivery Report (DLR) in memory of the bearerbox process. In that way, if bearerbox crashes or we take the process down, but there are still DLRs open, it may cause problem for SMS Users.

        So, to avoid this situation, we can use external DLR storage like MySQL database.In the previous article we used two kannel boxes: bearerbox and smsbox. To store DLR in MySQL database we will use another Kannel program: sqlbox. All communication between bearerbox and smsbox will be done via sqlbox. In operation, sqlbox will act like bearerbox for smsbox and smsbox for bearerbox.

        Communication between different processes can be illustrated as below

      • How To Setup a Counter Strike: Global Offensive Server on CentOS 8

        Counter-Strikes first option is a feature called “Official Matchmaking.” This selects a Steam-owned server near you where you can play against players from all over the world. It can be entertaining because there are so many different enemy skill levels and play styles to choose from. You, on the other hand, have no influence over who joins the server or what rules and settings are in place. When you want to organise matches based on your preferences or host private games where you only play against your pals, this is an issue. The solution to this problem is to set up your own Counter-Strike: Global Offensive dedicated server. Apart from that, having your own location where you can relax and have fun is also a feasible business option.

        With hundreds of thousands of active players, there are bound to be a few who want their own server, which you can either build for them and rent, or simply host their matches. As there is unlimited potential, you will definitely find other methods to monetize it.

        In this article, I’ll show you how to setup a Counter-Strike: Global Offensive server on Centos/RHEL based systems.

      • How to Install and Set Up Sublime Text on Linux

        Sublime Text is a source code editor that supports various markup and programming languages. It offers features like command palette, goto anything, auto-completion, snippets, and plugins, among others, and works on all major platforms, including Linux, macOS, and Windows.

        If you, too, are a Sublime Text user and your recent switch to Linux has you missing the editor, or you’re just getting started with programming and wish to try out a new code editor, you’ll want to get Sublime Text running on your Linux machine.

        To make things easier, here’s a guide with step-by-step instructions to install Sublime Text on Linux.

      • How to Switch Between Users in Linux

        Linux is a multi-user operating system. Whether it’s using the superuser account to execute administrative tasks or modifying the current user’s access to a certain directory, you’ll have to move between users at some point.

        Linux has several options for dealing with such difficulties. The obvious solution is to log out and log in as the desired user. But you have a couple of different options available through which you can switch users without logging out of the current user.

        In this article, you will learn about all the different ways to switch between users in the Linux system.

    • Games

      • Dead Cells: The Queen and the Sea DLC is out now | GamingOnLinux

        Ready for another run? Dead Cells: The Queen and the Sea DLC is out now and brings with it plenty of new enemies to hack and slash your way through.

      • If you ever doubted for a second that Linux was better than Windows… – Invidious

        All the proof you need is right here. Microsoft doesn’t care about producing a functional operating system, they only care about spying on you. Linux, on the other hand, won’t screw you over with broken updates or surveillance capitalism.

      • Steam Deck Developer Kit Impressions – Boiling Steam

        We had a chance to have a quick Q&A with a developer, who asked to remain anonymous, with hands-on access to the developer kit of the Steam Deck. Because of a non-disclosure agreement (NDA), they couldn’t comment on every question that we had—instead, they could only “talk about the hardware, and the overall experience to some degree.” That being said, here’s some valuable info that you might find interesting concerning the Steam Deck, which is scheduled to start shipping next month!

        The first thing they mentioned was that they’re “not convinced that even with all the improvements to SteamOS 3.0 between August and October that it would have been ready by December. Yes, there’s a semiconductor shortage but I’m thinking it’s not the real reason for the delay.” So, the shipping delay could potentially be tied to the SteamOS experience needing more polish rather than (just) the chip shortage we all thought it was connected to.

      • The latest Humble Bundle brings a few scary looking treats, plus an indie hits sale | GamingOnLinux

        Need a few new games to add to your collection? Perhaps readying up for the Steam Deck that should be launching next month? The Humble Dead of Winter Bundle is live – as is a nice sale on indie games.

        For the game bundle, none of them are native Linux games but most work really well with Steam Play Proton.

      • Pixel-art turn-based RPG fans – check out the demo for Of Blades & Tails | GamingOnLinux

        Interested in checking out a fresh upcoming pixel-art turn-based RPG? Of Blades & Tails looks pretty great and there’s now a demo available to try.

        The developer explains that it’s inspired by Diablo, Tales of Maj’Eyal and Stoneshard but there’s no permadeath so you don’t need to worry about any brutal difficulty here. That’s not to say it will be easy but it will regularly give you a save so that’s nice. On top of that the lore is inspired by the classic point & click adventure Inherit the Earth.

      • Check out the original Half-Life with Ray Tracing | GamingOnLinux

        Want to play with some real-time path tracing in Half-Life? Well, a modder is doing just that and has released a small teaser to show it off.

        The work is actually based on an existing effort, which will bring Vulkan Ray Tracing into Xash3D FWGS, a game engine that’s compatible with classic Valve games designed for modding. The modder going by sultim_t, mentions their work will see the source code released when the mod is ready. They said it will provide hardware accelerated ray tracing with the possibility to “calculate global illumination, reflections, refractions, soft shadows and other visual effects with interactive framerates”.

      • Upcoming GZDoom-powered FPS Selaco shows off the ‘AI Response System’ | GamingOnLinux

        As if I could get any more excited? Selaco just looks simply incredible in the footage we’ve seen previously, this new GZDoom-powered FPS is going to kick-ass.

        One of the big features is the FEAR-inspired AI system, where the enemies actually work together properly to take you down. They’re aware of each other, use different tactics depending on the situation and so on. It does sound exciting and the latest video shows it off a little more. Oh, you also get to flip things for cover which is clearly awesome.

      • Building a Retro Linux Gaming Computer – Part 8: Shovelware with a Penguin | GamingOnLinux

        After completing all of the boxed Quake games for Linux, I was left with indecision. So if I could not settle on a single game to play, why not try one hundred? 100 Great Linux Games is a software compilation put out by Canadian publisher Global Star Software. Made for a time of slow internet speeds and limited storage, these kinds of retail collections allowed users to explore hundreds of freeware and shareware titles from the comfort of a single CD-ROM.

        Even at their height at around the turn of the millennium the true value of these sets was disputed, with the moniker “shovelware” often being used to mock the tendency of these compilations to value quantity over quality. It also feels an especially odd fit for Linux, where having a wide variety of free software packaged alongside the operating system was already the norm dating back to the earliest Linux distributions.

      • Steam Deck’s support for Epic’s ‘Easy Anti-Cheat’ isn’t easy, says ‘Warhammer: Vermintide 2’ dev

        The problem is actually wider than just Steam Deck, affecting any Linux based system, and dates back to September 2021, when Epic Games announced its Easy Anti-Cheat service would be available for Mac and Linux. At the time, it said that “support for the Wine and Proton compatibility layers on Linux is included”.

        Simply put, Wine and Proton are compatibility layers for Linux systems, allowing users to run Windows-based software. Valve’s Steam Deck will run on its own SteamOS, and use Proton to enable games to run.

    • Distributions

      • BSD

        • DragonFlyBSD 6.2 Released With AMD Graphics Driver, Better HAMMER2, NVMM Hypervisor

          DragonFlyBSD 6.2 is now available as the latest version of this popular BSD open-source operating system.

          Exciting with DragonFlyBSD 6.2 is finally having modern AMD Radeon graphics support via the “AMDGPU” DRM kernel driver ported over from the Linux kernel. DragonFlyBSD 6.2 has a port of the AMDGPU Linux driver but it’s based on the Linux 4.19 state compared to upstream 5.16, which means RDNA2, Aldebaran, and other latest-generation bits haven’t landed nor any of the recent optimizations and features. DragonFlyBSD along with the BSDs at large continue to be quite behind Linux when it comes to the GPU driver support. Likewise, with DragonFlyBSD 6.2 there is working support for Intel Whiskey Lake Gen9 graphics.

        • Year in Review: personal (and GPG) | [bobulate]

          So I plan on plugging away at Calamares, at FreeBSD, at making a healthy balanced dinner for my family every evening, at playing badminton when it’s possible, and just getting on with things.

      • IBM/Red Hat/Fedora

        • CentOS Hyperscale SIG Quarterly Report for 2021Q4

          This report covers work that happened between October 2nd and December 31st. For previous work, see the 2021Q3 report.

        • Hyperscalers Have Been Making CentOS 9 Stream More Attractive With New Features – Phoronix

          While many were upset by CentOS Linux 8 going premature EOL at the end of last year, for those that made the move to CentOS Stream there continues to be a love of moment in part by the recently establisher Hyperscale SIG. For CentOS Stream 9, the big hyperscalers have been working on some interesting additions/backporting to the platform.

          Established one year ago with backing from the likes of Twitter and Facebook was the CentOS Hyperscale SIG. Engineers from these big tech companies have been working to provide optional back-ports and other new features atop CentOS (Stream) for what otherwise isn’t readily available on that enterprise-aged software platform.

        • The Red Hat ecosystem: Then vs. now

          Once upon a time, the Red Hat ecosystem was oriented around one platform: Red Hat Enterprise Linux.

          Those days are gone.

          While RHEL remains one pillar of Red Hat’s offerings, the Red Hat ecosystem evolved to include a variety of other products and services through acquisitions and new development. Concurrently, key facets of the relationship between Red Hat, Linux and open source have changed in important ways.

          Let’s examine the state of the Red Hat ecosystem in the 2020s and its relationship to the larger software market. We’ll look at the major products and services Red Hat offers — and how those services interact with third-party tools and software, such as Linux distributions based on RHEL.

        • The GDB developer’s GNU Debugger tutorial, Part 2: All about debuginfo

          In the first article of this series, Getting started with the debugger, I introduced the GNU Debugger (GDB) and walked you through its common startup options and processes. As I promised in Part 1, this article introduces the debugging information that is used to describe compiled code.

        • Node.js at Red Hat: 2021 year in review | Red Hat Developer

          As we start the new year, it’s a good time to look back on what the Red Hat Node.js team accomplished in 2021. Time goes by quickly, and it’s easy to forget the work we’ve done and the useful assets that we’ve put together.

          The team is involved in a variety of projects: working on the upstream Node.js releases, keeping the V8 JavaScript engine running on Power and s390 platforms, publishing content to help Node.js developers learn and adopt Node.js, and creating guidance for enterprise Node.js deployments on Red Hat OpenShift and other settings. Through our wide-ranging work, we have the opportunity to collaborate with many people from across the community and ecosystem. Here are some of the highlights from the past year.

        • Create fast, easy, and repeatable containers with Podman and shell scripts

          Podman is a daemon-less container engine for developing, managing, and running Open Container Initiative (OCI)-compliant containers and container images. It follows industry standards to provide a robust container-management tool that you can also integrate into Kubernetes and other services as needed.

          [...]

          Containers don’t have to be strange concepts to a Linux user. Integrated into the operating system, they’re powerful tools for the busy sysadmin. In my next article, I’ll demonstrate how Podman provides tools to see information about running pods.

        • How Red Hat’s helping customers with high performance computing, container technology and more

          Things are ramping for our customers in the Europe, Middle East and Africa region (EMEA). In this month’s customer success stories, we’ll share how customers in Belgium, Norway and Slovenia have counted Red Hat technologies to work better and faster as we enter the new year.

          Let’s see how Red Hat, along with our partner ecosystem, is helping customers keep up with competition and prepare to enter new markets with high performance computing, container technology and more.

        • Hybrid cloud: 4 trends to watch in 2022 | The Enterprisers Project

          If you’re pressed for time, here’s a one-word executive summary of where hybrid cloud is headed in 2022: Everywhere.

          That declaration requires only modest exaggeration. Roughly half (48 percent) of respondents in O’Reilly’s 2021 Cloud Adoption Survey plan to migrate 50 percent or more of their applications to a cloud in the coming year. The same survey found a healthy mix of public cloud (67 percent), private cloud (45 percent), and traditional on-premises infrastructure (55 percent) already in use.

          Meanwhile, 38 percent of the organizations included in Red Hat’s 2021 Global Tech Outlook already had a hybrid cloud or multi-cloud strategy in place. The report shows clear growth ahead in 2022, and more organizations plan to use three or more clouds than ever.

        • Hybrid work: 5 ways to make it work for you

          In the past, going to work meant heading to a traditional office. Today, it might mean settling in at your kitchen table, traveling to a customer site, setting up at a hotel, or connecting at any number of other places. As the pandemic has proven, work can happen just about anywhere – but staying engaged and productive in all environments isn’t always easy.

          Here are five things you can do to help you stay focused and on-task, wherever you happen to be.

      • Canonical/Ubuntu Family

        • Linux Mint 20.3 is out with theme adjustments, Document Manager, Dark Mode | GamingOnLinux

          Another brand new distribution release with Linux Mint 20.3 now officially available following the Beta release in December 2021. Not much has changed since the Beta, other than ensuring any nasty bugs didn’t slip through to provide a pretty good desktop experience for both new and experienced users who want the simple life.

          [...]

          Linux Mint 20.3 will receive security updates until 2025, with the distribution moving over to a newer Ubuntu package base later this year.

        • Linux Mint 20.3 Now Available

          Users of the popular Linux Mint distribution can celebrate the new year with a new release. The developers have made the latest version, 20.3 available for download. This latest iteration is based on Ubuntu 20.04.5 LTS and although it doesn’t have any game-changing new features, it does offer a lot of subtle UI tweaks and a very helpful document manager app.

          As for the polish, the default Mint theme doesn’t lean so much on the color green and includes larger title bars, bigger controls, and rounded corners. A number of the default apps also default to a dark theme.

        • Linux Mint 20.3 released promising security updates until 2025

          Linux Mint has released version 20.3, codenamed ‘Una,’ as a long-term support version that will receive security updates until 2025.

          Long-term support releases are for those who favor stability over bleeding-edge software and experimental features, so Linux Mint 20.3 is ideal for those who want to keep the same system without significant changes for years.

          Mint is one of the most popular and widely used Linux distributions available today, using a Ubuntu base along with a desktop environment called ‘Cinnamon’ that will be more familiar to Windows users.

          The reason why Mint is so popular mainly has to do with the complete out-of-the-box experience it offers, coming with proprietary format codecs, closed-source GPU drivers, and a variety of helpful multimedia apps pre-installed.

          These features allow users to start using the Linux distribution without installing too many other packages.

        • Ubuntu underage girl: child sex or child prostitution?

          In the Ubuntu underage girl scandal, the Ubuntu employee, who is also a Mozilla tech speaker, has frequently been in a position of power over women. Women know they have to please these men if they want free trips. Let’s see some examples.

        • Still the top: Linux Mint 20.3 is the best Linux desktop

          As always, I like Mint’s default Gnome-2-based Cinnamon desktop. But Mint gives you a choice of many fully supported interfaces, including MATE, a Gnome-2 fork, and the ultra-lightweight Xfce. Most desktop users will be pleased with Cinnamon or MATE. But if you have older low-powered systems, Xfce is an excellent choice.

          Even PCs built in the 2000s can run Mint; if your PC has a 64-bit AMD/Intel processor, it can run Mint. The full version of Linux Mint requires a mere 2GB of RAM, but you can run it with a mere 1GB.

          This is not Windows — where running on 4GB is just asking for trouble.

          You’ll also need at least 20GB of disk space, but Mint recommends 100GB. Finally, you’ll need a graphics card and monitor that supports a 1024×768 resolution. In other words, you can pretty much run Mint on any PC built in the last decade.

          Updating to Linux Mint 20.3 from Mint 20.x is simple. You can also easily install Mint on a Windows PC and other computers.

          In my case, I updated to Linux Mint 20.3 from Mint 20.2 on my 2020 Dell Precision 3451. This model, which came with Ubuntu 20.04, is powered by an Intel 8-core 3GHz i7-9700 CPU. It also includes 16GB of RAM and a 512GB SSD. This is far more computer than Mint needs.

          I don’t recommend installing Mint 20.3 on your main PC — unless you’re an expert. It’s always better to be sure everything works well on a test box before upgrading a production machine to a new operating system, be it Linux, Windows, or anything else.

          This latest version of Mint is a long-term support (LTS) release (it will be supported until summer 2025). Under the hood, you’ll find the Linux kernel 5.4.0-92 and Linux firmware 1.187. For its foundation, Mint is still based on Ubuntu 20.04. Looking ahead, Mint has no plans to move off of Ubuntu 20.04 until 2023. Unlike Fedora, Linux Mint is not a cutting-edge distribution. It prioritizes stability over experimentation.

    • Devices/Embedded

      • Rock 5 SBC features octa-core RK3588, 16GB RAM, and triple displays

        Radxa has opened pre-orders for a “Rock 5 Model B” SBC with the octa-core Cortex-A76/-A55 Rockchip RK3588 with 4GB ($79) to 16GB ($139) RAM plus 2.5GbE, 4x USB, HDMI-in, 2x M.2, and triple displays with 2x HDMI 2.1 and Type-C/DP.

        Radxa has unveiled the first board built around Rockchip’s powerful RK3588. The open-spec, Pico-ITX sized Rock 5 Model B (Rock 5B) SBC has opened for pre-orders, with $50 discounts available over the standard 4GB LPDDR4x ($129), 8GB ($149), and 16GB ($189) prices via a coupon program at Ameridroid and Allnet China, resulting in $79, $99, or $139 prices. Shipments are expected in Q2 2022.

      • Low Cost Haptic VR Gloves Work With Hacked Steam Games | Hackaday

        [IraqiGeek aka Lucas VRTech] has made some significant progress with building force-feedback type haptic gloves for use with steam VR games. The idea is pretty straightforward; the end of the finger is attached to a cable, which is pulled from inside a sprung-loaded spool: the kind used for hanging ID cards on.

        The spool body can rotate, but a peg protruding from it engages with the arm of a co-located servo motor. This produces a programmable stop position. But it is a hard stop, and it is not possible with the current hardware to detect precisely when the stop is reached, nor is it possible to control the force it is pushing with. Such features are not difficult to achieve, its just a matter of a little more development with some custom mechatronics.

      • PsyLink is a low-cost, non-invasive EMG interface based on the Nano 33 BLE Sense

        Non-invasive EMG interfaces have the potential to solve many problems that afflict those who suffer from a disability or simply want a more efficient way to perform a task. This is what led one maker, who goes by the name “Hut,” to create their own open source device called PsyLink. It works by measuring the minute electrical impulses that cause muscles to contract and then sending them for further processing and inferencing via a machine learning model.

        PsyLink’s initial prototype was based around the Nano 33 BLE Sense due to its large number of ADC pins and potential for Bluetooth connectivity. The device features a pair of aluminum foil pads attached to some wires, although this was later changed out for studs embedded within a more secure sleeve. Signals are read from the electrodes and sent through a series of filters made from op-amps and eventually to an analog multiplexer. After that, the signal is digitized by the onboard ADC and transmitted over Bluetooth Low Energy where it is then displayed in a custom desktop application.

      • ’80s-style home computer made from scratch using an Arduino Due | Arduino Blog

        As a continuation from his previous Arduino BASIC interpreter project, Stefan Lenz wanted to take things a step further by recreating a home computer from the 1980s with an Arduino Due board and just a few other components. His system combines a 7″ 800 by 480px TFT screen with an SD card reader acting as the disk, along with a PS/2 port for connecting a keyboard.

        He began by mounting the TFT display shield to the Arduino by slotting it in place and inserting an SD card to function as the external disk since floppy drives have long since disappeared and would be far too unwieldy. After soldering some additional wires to the SPI and I2C bus pins, a level shifter was attached to two digital pins that serve as the data and clock lines for the external PS/2 port.

      • Raspberry Pi Pico Gets A Tiny Keyboard On Its Back | Hackaday

        With hackers and makers building custom computing devices that don’t necessarily follow conventional design paradigms, there’s been a growing demand for smaller and smaller keyboards. Many of the cyberdecks we’ve seen over the last couple of years have used so-called 60% or even 40% keyboards, and there’s been a trend towards repurposing BlackBerry keyboards for wearables and other pocket-sized gadgets. But what if you need something even smaller?

        Enter this incredibly diminutive keyboard created by [TEC.IST]. With 59 keys crammed into an area scarcely larger than three US pennies, it may well be the smallest keyboard ever made. The PCB has been designed to mount directly onto the back of a Raspberry Pi Pico, which is running some CircuitPython code to read the switch matrix and act as a standard USB Human Interface Device. The board design files as well as the source code for the Pico have been released on the project’s Hackaday.io page, giving you everything you need to spin up your own teeny tiny input device.

    • Free, Libre, and Open Source Software

      • BeOS rebuild Haiku has a new feature that runs Windows apps • The Register

        The Haiku operating system has an experimental new feature, WINE. Originally a Linux subsystem, WINE can run unmodified Windows programs on other operating systems.

        Edward FitzGerald translated only 158 of the more than 1,200 quatrains attributed to the Persian Astronomer-Poet Omar Khayyám so there are probably more experimental operating systems out there than there are of Omar’s rubāʿiyāt in English. Very, very few such OSes ever amount to much – a few demos, some sketchy code on GitHub, and that’s the end.

        Haiku is different. An open-source reimplementation of former Apple exec Jean-Louis Gassée’s BeOS, the project started in 2001 and took until 2018 to make it to its first beta version. But since then, the pace has picked up a little, with Beta 2 in 2020 and Beta 3 in 2021.

      • The Apache Weekly News Round-up: week ending 7 January 2022

        Welcome, 2022! We hope that you have had a festive holiday season and are excited to kick off the new year. Here’s what happened over the past week

      • Open 3D Engine: Amazon’s Old Clothes Or A Game Engine To Truly Get Excited About? | Hackaday

        Recently Amazon announced that they would be open sourcing the 3D engine and related behind their Amazon Lumberyard game tooling effort. As Lumberyard is based on CryEngine 3.8 (~2015 vintage), this raises the question of whether this new open source engine – creatively named Open 3D Engine (O3DE) – is an open source version of a CryTek engine, and what this brings to those of us who like to tinker with 2D, 3D games and similar.

        When reading through the marketing materials, one might be forgiven for thinking that O3DE is the best thing since sliced 3D bread, and is Amazon’s benevolent gift to the unwashed masses to free them from the chains imposed on them by proprietary engines like Unity and Unreal Engine. A closer look reveals however that O3DE is Lumberyard, but with many parts of Lumberyard replaced, including the renderer still in the process of being rewritten from the old CryEngine code.

      • Libre Arts – Looking back at 2021, looking forward at 2022

        Let’s have a closer look at main events of 2021 and what’s coming for us in 2022. Obligatory disclaimer: I only talk about projects that I track more or less closely. There are many more great projects out there, and I’d love to hear your thoughts about those!

        [...]

        The other reason is that, with a project like GIMP, it’s hard to do just one thing. The team is constantly bombarded with requests that are mostly doable once you have a team of 10 to 20 full-time developers, which is light years away from where GIMP is now. Which results in a lot of running around between under-the-hood work, UX fixes, featurettes, better file formats support etc. So you give everyone a little of what they want but you end up delaying an actual release because the big stuff still needs to happen.

      • Web Browsers

        • Mozilla

          • Linux Mint Sells Out for Mozilla Money [Ed: Trolling by Fagioli fed by Slashdot]
          • Linux Mint sells out for Mozilla money — Google becomes default search in Firefox

            The Linux Mint developers explain, “For Mozilla, the goal is to make Firefox work the same way across all platforms to ease maintenance and simplify development and bug fixing. With these changes Firefox will give the same experience in Linux Mint as it does in other operating systems. For us, this change means a tremendous simplification in terms of maintenance and development. We used to build Firefox ourselves using Ubuntu’s packaging (which is set to be discontinued as Ubuntu is moving towards snap). We now package the Mozilla version of Firefox instead.”

          • Linux Mint strikes deal with Mozilla to keep Firefox as default web browser

            Linux Mint has been one of the most popular desktop Linux distributions for years, combining an Ubuntu base with different desktop environments and built-in applications. Linux Mint 20.3 was just released last week with several new features, and now the operating system is partnering with Mozilla to keep Firefox as the default web browser.

            Linut Mint is based on Ubuntu and uses Ubuntu’s package repositories, but Canonical (the company behind the operating system) switched Firefox to a ‘Snap’ container package for last year’s Ubuntu 21.10 update. Even though Snap packages are generally more secure than non-containerized Linux software, and it leads to easier distribution across many different Linux distributions, not everyone likes Snap packages. The Linux Mint project in particular has fought against Snap, citing a lack of transparency from Canonical and the centralized nature — no one can run a Snap-powered app store except for Canonical.

          • Linux Mint is reverting Firefox to Mozilla config after partnership signed

            Mozilla and Linux Mint have signed a partnership that will see the Linux distribution dump its customisation of the web browser, in favour of rolling out the defaults chosen by Mozilla.

            “In the past Linux Mint used its own default settings and configured Firefox in a specific way. Most of this configuration is abandoned to go back to Mozilla defaults,” distribution founder Clement Lefebvre wrote.

            Among the change will be the default start page no longer pointing to a page controlled by Mint; search engines switching from Linux Mint search partners including Yahoo and DuckDuckGo to Mozilla search partners including Google, Amazon, Bing, DuckDuckGo, and Ebay; and patches from Mint upstream distributions Debian and Ubuntu being dropped.

            The relationship between Mozilla and Mint is commercial and technical, with hopes that Mint users will be able to update the browser from within Firefox, similar to how Windows users do, rather than needing to use the distribution’s package manager.

          • Linux Mint signs a partnership with Mozilla

            Mozilla is one of the Open Source greatest champions of all time. It played a unique role throughout history in the promotion of Free Software and greatly contributed to the success of Linux.

            In the 90’s Netscape Navigator was the most popular Web browser but it quickly lost its lead to Internet Explorer which came bundled with Microsoft Windows. The Web was changing rapidly, Explorer was dominant (it reached 95% user share in 2003) to the point where most websites no longer cared about compatibility with other browsers or operating systems and we got in a situation where Microsoft de-facto dictated Web standards.

          • Linux Mint Announces Major New Partnership with Mozilla

            Announced today, the commercial tie-up means Firefox will continue to remain Linux Mint’s default web browser but, crucially, no longer ship with Mint-specific customisations.

            Don’t panic unnecessarily; Mint say Firefox will continue to be distributed as a .deb package through the official Linux Mint repositories.

          • Mozilla partners with The Markup to launch Rally study into Facebook’s tracking and data collection practices

            Browser maker Mozilla today announced a partnership with The Markup, the non-profit newsroom that investigates how technology is reshaping society, on a research project to provide insights into and data about a space that’s opaque to policymakers, researchers and users themselves. By joining Mozilla and The Markup’s “Facebook Pixel Hunt” in Firefox, people can help Rally and The Markup unravel how Facebook’s tracking infrastructure massively collects data about people online – data that is used to target ads, tailor content recommendations and spread misinformation – all by simply browsing the web.

            The Markup is the newest partner for Rally, the privacy-first data-sharing platform that was created by Mozilla in 2021 to take back control from platforms that are not transparent about how they use people’s data and make it very difficult for independent outside research to take place. Rally is a novel way for people to help answer systemic questions by contributing their own browsing behavior data, putting it to work as part of a collective effort to solve societal problems that start online and that we have not been able to investigate this way before.

          • Adwaita Fan? Check Out This Epic Theme for Firefox – OMG! Ubuntu!

            Do you want a Firefox theme that makes the browser better integrate with the vanilla GNOME desktop?

            If you do, check out the Firefox GNOME Theme on GitHub. It’s an all-in-one transformation pack that works with modern versions of the browser. When applied it makes Firefox look and feel like a regular GTK app adhering to GNOME’s Adwaita theme.

            We’re talking the same gradients, colours, and button shapes as Adwaita, and it supports Adwaita’s standard light look as well as it’s dark mode.

          • Digital Checklist: How to Start 2022 Right [Ed: Who wrote that blog post for Mozilla? “Prior to Mozilla, Lindsey headed up corporate-level marketing for Facebook Inc.” as per this page and she is not alone.]

            For most, the New Year marks a time to reflect, reset and re-prioritize. While learning a new language, creating a budget or starting up a new hobby have become staples of our New Years’ Resolutions, as our lives increasingly shift online, it’s important we also use this opportunity to reassess our digital habits. Whether you received a new device this holiday season or just want to make sure you’re protecting yourself online, there’s no better time to partake in some New Year’s cyber cleaning.

            To get 2022 off to a strong start, here’s a helpful and easy checklist to help you tidy up your browsing, tighten your security and ensure your online health isn’t left at the wayside.

      • Funding

        • Funding software supply chains – staktrace.com

          An author of popular free software packages intentionally inserted infinite loops into his code to break downstream users, as a form of protest. It’s not the first time this sort of thing has happened, and it won’t be the last. In this particular case I would say that both primary parties are in the wrong.

          To the author: if you make your software freely available, obviously people are going to use it without paying for it. Why would you expect anything else?

          To the users: if you use some random piece of software in your code without verifying it and just keep blindly updating it, obviously stuff like this is going to happen. Why would you expect anything else?

          To me it seems like there’s no strongly defined interface here, on either side. So you have to be prepared to accept any kind of behavior from the other party. What’s surprising is that this doesn’t happen more frequently.

      • Programming/Development

        • Don’t mix URL parsers | daniel.haxx.se

          There is still no common or standard URL syntax format in sight. A string that you think looks like a URL passed to one URL parser might be considered fine, but passed to a second parser it might be rejected or get interpreted differently. I believe the state of URLs in the wild has never before been this poor.

        • Perl/Raku

        • Rust

          • December of Rust 2021, Part 1: A Little Computer | The Mad Scientist Review

            In the beginning of December I read Andrei Ciobanu’s Writing a simple 16-bit VM in less than 125 lines of C. Now, I’ve been interested in virtual machines and emulators for a long time, and I work tangential to VMs as part of my day job as a JavaScript engine developer for Igalia. I found this post really interesting because, well, it does what it says on the tin: A simple VM in less than 125 lines of C.

            Readers of this blog, if I have any left at this point, might remember that in December 2020 I did a series of posts solving that year’s Advent of Code puzzles in order to try to teach myself how to write programs in the Rust programming language. I did say last year that if I were to do these puzzles again, I would do them at a slower pace and wouldn’t blog about them. Indeed, I started again this year, but it just wasn’t as interesting, having already gone through the progression from easy to hard puzzles and now having some idea already of the kinds of twists that they like to do in between the first and second halves of each puzzle.

          • Blink An LED On A PIC32 With Rust, Easily | Hackaday

            [Harry Gill] has you covered with his primer on programming a PIC32 with Rust, which will have you blinking an LED in no time. [Harry] admits that when he got started, his microcontroller programming skills were a bit rusty, so don’t let yourself think setting this up is beyond your abilities. If you have a working knowledge of the basics of microcontroller programming, you’ll be fine. [Harry] had to jump through a few hoops to get the right tools working, but thoughtfully documented the necessary steps, and provides a bare minimum hardware list.

        • Java

  • Leftovers

    • Mining And Refining: Copper, The Metal That Built Technology | Hackaday

      It’s hard to reckon exactly when in history humans became a technological species. Part of that is because the definition of technology is somewhat subjective; if you think making a stick pointy enough to grub roots from the dirt or to poke enough holes in an animal to convince it to let you eat it is technology, then our engineered world goes back a long, long way indeed.

      But something about pointy sticks just doesn’t seem transformative enough, in the sense of fundamentally changing a naturally occurring material, to really count as a technological line in the sand. To cross that line, it really seems like the use of metals should be part of the package. Even if that’s the case, our technological history still goes pretty far back. And copper ends up being one of the metals that started it all, about 11,000 years ago, when our ancestors discovered natural deposits of the soft, reddish metal and began learning how to fashion it into the tools and implements that lifted us out of the Stone Age.

      Our world literally cannot run without copper, forming as it does not only the electric-motor muscles of civilization, but also the wires and cables that form the power and data grids that stitch us together. Ironically, we are just as dependent on copper now as we were when it was the only metal we could make tools from, and perhaps more so. We’ll take a look at what’s involved in extracting and purifying copper, and see how the methods we today use are not entirely different from those developed over seven millennia ago.

    • Peek Behind The Curtain Of This Robotic Mouse | Hackaday

      At first glance, this little animatronic mouse might seem like a fairly simple affair. A door opens, our rodent friend pops its head out, looks around, and goes back in. But just like in The Wizard of Oz, a strategically placed curtain is hiding the impressive array of gadgetry that makes the trick possible.

      Creator [Will Donaldson] has put together a fantastic write-up of just what went into creating this little fellow, and we think you’ll be surprised at just how serious the mechanics involved are. Take for example the rig that provides horizontal motion with a NEMA 17 stepper motor mated to a 200 mm leadscrew and dual 8 mm rail assembly that would like right at home as part of a 3D printer.

    • Powering Up An Original Apple I After Three Decades In A Museum | Hackaday

      The Apple I is the stuff of legend. Designed and marketed in 1976 by Steve Wozniak and Steve Jobs, it was the very first product released by what would become today’s multi-trillion-dollar manufacturer of iPhones and iMacs. With about 60 original ones known to exist today, prices at auction are commonly in the $300,000 range, while confirmed working ones are even more valuable.

      The Heinz Nixdorf Museumsforum (HNF), a computer museum in the German city of Paderborn, is fortunate enough to have an original Apple I in its collection. Although it has been there since 1996, it was always on static display and had never been powered on. In fact, it was unknown whether it would even work, and with it being the most valuable exhibit in the entire museum, simply firing it up would be a seriously risky project.

    • Health/Nutrition/Agriculture

    • Integrity/Availability

      • Proprietary

        • Microsoft: powerdir bug gives access to protected macOS user data
        • CISA Adds 15 Known Exploited Vulnerabilities to Catalog [Ed: Proprietary software for the most part here...]

          CISA has added 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in the table below. These types of vulnerabilities are a frequent attack vector for malicious cyber actors of all types and pose significant risk to the federal enterprise.

        • One More Trip Around the Sun

          Replace my reliance on iPad and Apple Pencil. Would be nice to use a small screen tablet on my Fedora instead. Just plug it when I need it, run GIMP or Aseprite in the same time it takes me with Procreate and Pixaki.

        • Avira is adding a crypto miner to its products as well

          Et Tu, Avira? Ashwin reported last week that Norton was adding a new component, called Norton Crypto, to its security products. Norton Crypto is a crypto currency miner that will run when the system is detected as idle. It appears that Avira is doing the same.

        • Microsoft acknowledges that the KB5008212 update breaks Outlook search in Windows 10 [Ed: Even dedicated Microsoft boot lickers such as Sofia Wyciślik-Wilson seem to have their patience tested by Microsoft's incompetence]

          Microsoft has acknowledged an issue following the installation of the KB5008212 update. The problem causes email searching in Outlook to break, and no fix is currently available.

          To let people know about the issue, and to provide details of a workaround, Microsoft has published a support document entitled “Outlook Search not showing recent emails after Windows update KB5008212″.

        • Security

          • US Police Warn of Parking Meters with Phishing QR Codes

            In a hurry to park your car? Don’t want to fumble around in your pocket to find cash for the parking meter, and don’t have the correct payment app installed on your phone?

            Well, think carefully before rushing to scan the payment QR code stuck on the side of the meter – it may well be an attempt by fraudsters to phish your financial information.

            Police are warning that they have discovered bogus QR codes stuck onto public parking meters across Austin, Texas – a city where parking meters don’t display QR codes, and only accept payment via coins, cards or a smartphone app.

          • Fake QR Codes on Parking Meters – Schneier on Security

            The City of Austin is warning about QR codes stuck to parking meters that take people to fraudulent payment sites.

          • Apache Software Foundation Security Report: 2021 : The Apache Software Foundation Blog

            Synopsis: This report explores the state of security across all of The Apache Software Foundation projects for the calendar year 2021. We review key metrics, specific vulnerabilities, and the most common ways users of ASF projects were affected by security issues.

            [...]

            The security committee of The Apache Software Foundation (ASF) oversees and coordinates the handling of vulnerabilities across all of the 350+ Apache projects. Established in 2002 and composed of all volunteers, we have a consistent process for how issues are handled, and this process includes how our projects must disclose security issues.

            Anyone finding security issues in any Apache project can report them to security@apache.org where they are recorded and passed on to the relevant dedicated security teams or private project management committees (PMC) to handle. The security committee monitors all the issues reported across all the projects and keeps track of the issues throughout the vulnerability lifecycle.

            The security committee is responsible for ensuring that issues are dealt with properly and actively reminds projects of their outstanding issues and responsibilities. As a board committee, we have the ability to take action including blocking their future releases or, worst case, archiving a project if such projects are unresponsive to handling their security issues. This, along with the Apache License v2,0, are key parts of the ASF’s general oversight function around official releases, allowing the ASF to protect individual developers and giving users confidence to deploy and rely on ASF software.

            The oversight into all security reports, along with tools we have developed, gives us the ability to easily create metrics on the issues. Our last report covered the metrics for 2020.

          • Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation

            • Linux version of AvosLocker ransomware targets VMware ESXi servers [Ed: People are not meant to install this and it targets proprietary software anyway. FUD.]

              AvosLocker is the latest ransomware gang that has added support for encrypting Linux systems to its recent malware variants, specifically targeting VMware ESXi virtual machines.

              While we couldn’t find what targets were attacked using this AvosLocker ransomware Linux variant, BleepingComputer knows of at least one victim that got hit with a $1 million ransom demand.

              Several months ago, the AvosLocker gang was also seen advertising its latest ransomware variants, the Windows Avos2 and AvosLinux, while making a point of warning affiliates not to attack post-soviet/CIS targets.

              “Out new variants (avos2 / avoslinux) have the best of both worlds to offer: high performance & high amount of encryption compared to its competitors,” the gang said.

          • Privacy/Surveillance

            • Google and Facebook fined for cookies practices

              The CNIL, France’s data regulator, fined Meta (Facebook) and Google for violating the GDPR for a total of 210M€.

              [...]

              Interestingly, the French regulator issued the fine to 2 Irish companies. Usually, the rule has been that the regulator of the nation where the company is located is going to be the one issuing the fines. The CNIL reason behind those fines is that French people are being affected. This fact completely turns the table around. If the legitimacy of CNIL’s standing is proved, the balance of power between the European data regulators might completely change. Since the majority of big companies are located in Ireland, the Irish data regulator (DPC) should be the one issuing the majority of fines. Though, many say that the DPC is not issuing enough fines because Ireland wants to keep good relationships with the companies located in the country. Fines such as this one could change the paradigm to one where any country will be able to fine any company. At that point, it will be apparent if some countries have been more strict than others in the past and, in a way, make it a plain field since the company’s incorporation country will not grant it additional or reduced liabilities.

    • Internet Policy/Net Neutrality

      • #KeepItOn: people in Kazakhstan have the right to internet access

        The government of Kazakhstan has no right to implement ongoing, arbitrary internet shutdowns and blockings as part of its intensifying campaign of state-sponsored violence against the population. Access Now and the #KeepItOn coalition are calling for open, accessible internet across the country, and a commitment from authorities to ensure it is upheld moving forward — including during protests and times of unrest.

        “By manipulating internet access — shutting it off one day, allowing limited access the next — the government of Kazakhstan is exerting its authority over the country,” said Anastasiya Zhyrmont, Eastern Europe & Central Asia Regional Outreach Coordinator at Access Now. “That’s not how things are allowed to work. Governments should empower people through access to information and communication, not threaten to ‘shoot to kill,’ then disconnect a population exercising its right to protest.”

        On January 2, 2022, as people protested the government’s changes to liquefied petroleum gas price caps in the city of Zhanaozen, individuals began reporting difficulty in accessing the internet. Since then, government-mandated internet blockings and shutdowns have been imposed in other regions, and range from targeted attacks on social media platforms such as WhatsApp, Telegram, and Signal, to complete nation-wide internet shutdowns of varying time frames in different regions on January 4, 5, 6, and 7. Reports indicate that the internet is accessible today, Monday, January 10.

01.10.22

Links 10/1/2022: DragonFly BSD 6.2 and Mint/Firefox Collaboration

Posted in News Roundup at 1:48 pm by Dr. Roy Schestowitz

  • GNU/Linux

    • 9to5Linux Weekly Roundup: January 9th, 2022

      This week has been really great, a strong start for the Linux and Open Source ecosystem in 2022. We finally got the Linux Mint 20.3 release, which was promised to us on Christmas 2021 but it didn’t happen, we got a new Ubuntu Touch OTA update for our Linux phones, and we got a brand new Linux kernel to play with.

      On top of that, there were new releases of the Ubuntu Deepin Remix, KaOS Linux, Clonezilla Live, and GeckoLinux distributions, as well as new updates for fans of the KDE Plasma desktop environment. Also, System76 teased us with a new Linux laptop and I show newcomers how to upgrade their Linux Mint installations.

    • Server

      • 10 Best Udemy Linux Learning Courses in 2022 [Ed: Seems a bit spammy, promotional]

        Linux, the family of open-source computers based on the Linux kernel is the most popular operating system in the world. The kernel is at the core of billions of computers ranging from heavy-duty servers, satellites, cars, and mining computers to smartphones, washing machines, palmtops, and IoT devices.

    • Audiocasts/Shows

      • Josh Bressers: Episode 305 – Norton, Ethereum, NFT, and Apes

        Josh and Kurt talk about Norton creating an Ethereum mining pool. This is almost certainly a bad idea, we explain why. We then discuss the reality of NFTs and the case of stolen apes. NFTs can be very confusing. The whole world of cryptocurrency is very confusing for normal people. None of this is new, there have always been con artists, there will always be con artists.

    • Kernel Space

      • Linux Kernel 5.16 Released! What’s New?

        Linux Kernel 5.16 is finally here, and while it doesn’t bring lots of features or improvements, there are a handful of features that might matter to Linux gamers and desktop users. Here’s everything new in the Linux Kernel 5.16.

        One of the release highlights is the improvements in the performance of Intel and AMD CPUs and GPUs. Apart from that, ARM platforms like the Raspberry Pi have also been improved. The AMD, Intel CPU, and GPU claims were tested by our good friends at Phoronix, and the results showed great improvements.

      • Linux 5.16 Release – Main Changes, Arm, RISC-V and MIPS architectures

        Not a lot here since -rc8, which is not unexpected. We had that extra week due to the holidays, and it’s not like we had lots of last-minute things that needed to be sorted out.

        So this mainly contains some driver fixes (mainly networking and rdma), a cgroup credential use fix, a few core networking fixes, a couple of last-minute reverts, and some other random noise. The appended shortlog is so small that you might as well scroll through it.

        This obviously means that the merge window for 5.17 opens tomorrow, and I’m happy to say I already have several pending early pull requests. I wish I had even more, because this merge window is going to be somewhat painful due to unfortunate travel for family reasons. So I’ll be doing most of it on the road on a laptop – something I generally try to avoid.

    • Applications

      • HandBrake 1.5 Open-Source Video Transcoder Released with Better Flatpak Support

        Coming six months after HandBrake 1.4, the HandBrake 1.5 update is here to further improve support for the Flatpak universal binary format by updating the dependencies to the Freedesktop Platform 21.08 and GNOME 41 stack, updating the Intel QSV Flatpak plugin to use Intel MediaSDK 21.3.5, and fixing several potential race conditions in the Flatpak build process.

        This means that the next time you’re updating or installing HandBrake as a Flatpak on your GNU/Linux distribution, you’ll notice more stability and better compatibility with recent GNU/Linux technologies.

      • QPrompt is a Free and Open Source Teleprompter for Video Creators

        These days, all sorts of people are creating video contents. From the professional YouTubers to school teachers, creating video content has become part of various job profiles.

        From screen recorders to video editors, there are various tools that help create good videos. Teleprompter is also one such tool.

        A teleprompter runs visual cues or even complete text so that a speaker can take hints while speaking. You might have seen news readers using the teleprompter.

        There are dedicated teleprompter software that can be run on computer or mobile device.

      • Best Free and Open Source Alternatives to Autodesk Flame

        Autodesk, Inc. is an American multinational software company that makes software products and services for the architecture, engineering, construction, product design, manufacturing, media, education, and entertainment industries. It bills itself as a “… leader in 3D design, engineering and entertainment software”.

        The company was founded in 1982 by John Walker, who was a joint developer of the first versions of AutoCAD, the company’s best known software application. Autodesk is listed on the Nasdaq stock exchange, it has over 11,000 employees, and is headquartered in the San Francisco Bay Area.

    • Instructionals/Technical

      • How to Make Spotify’s Desktop App Look Great with Custom Themes [Ed: Joey Sneddon promoting proprietary software, DRM, and surveillance]

        Do you think the official Spotify for Linux client would look better with a major restyle? So did the devs behind customisation tool Spicetify, which can do just that.

        I last showcased a “hacky” way to use custom Spotify skins back in 2016 using the Spotio project. That effort is long dormant but several similarly-minded methods have emerged in the years since, enabled by comprehensive CLI tool Spicetify (via Diolinux).

        Now, I’ve put “hacky” in quotes there as while these efforts aren’t “one click” solutions that most users will feel comfortable applying, they’re not exactly difficult or exotic to achieve, either. It’s also not exclusive to Linux; you can use the exact same themes on Windows and macOS systems too.

      • Fork, exec, wait and exit system call explained in Linux – VITUX

        The sequence of instructions and data that can be executed a single time, multiple time,s or concurrently are called programs. And the process is the execution of such programs. So those processes can run many programs. In the same process, the operating system can load different programs. Reused process states like current directories, privileges, file handles, etc are inherited by the new programs. Such things are done at the same level with the syscalls like fork(), exec(), wait() and exit().

        In this article, we are going to discuss the Linux syscalls fork(), exec(), wait() and exit() in detail with examples and the use cases.

      • How to Install Apache Tomcat 10 with Nginx on Rocky Linux 8

        Tomcat is an open-source web server for Java-based applications. It is used for deploying Java Servlet and JSP applications. Java servlets are small programs defining how a server handles requests and responses. Tomcat acts as an open-source implementation of the Java Servlet, JavaServer Pages, Java Expression Language, and Java WebSocket technologies.

        There are multiple versions of Tomcat available. We will discuss the installation of Tomcat 10 for our tutorial. If you want to install Tomcat 9, the instructions will be the same. If there are any changes, they will be specified in the tutorial.

        For our tutorial, we will install Tomcat 10 along with the Nginx server to act as a reverse proxy and protect it using SSL. There is a Tomcat 10.1.x version which is the latest alpha version of Tomcat, but we will not be installing that.

      • How to Create XFS File System in Linux (Step by Step)

        XFS is a 64-bit journaling file system and used where high performance is required. XFS file system is available in most of the linux distribution like Ubuntu, Debian and RHEL. In RHEL based distributions XFS is the default file system.

        In guide, we will learn how to create XFS file system from the scratch step by step and then also learn how to mount and use it. For managing file system in Linux, we need a user with sudo privileges. For the demonstration purpose, I have attached 10 GB (/dev/sdb) disk to my linux system. I would be creating XFS file system on it.

        Let’s deep dive into the steps,

      • How To Install Linux Kernel 5.15 on Debian 11 – idroot

        In this tutorial, we will show you how to install Linux Kernel 5.15 on Debian 11. For those of you who didn’t know, Linux Kernel 5.15 has been released on Halloween, on October 31st, 2021 with lots of new interesting new features. The Linux 5.15 kernel release further improves the support for AMD CPUs and GPUs, Intel’s 12th Gen CPUs, and brings new features like NTFS3, KSMBD (CIFS/SMB3), and further Apple M1 support, amongst many other changes and additions.

        This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of the GoAccess web log analyzer on a Debian 11 (Bullseye).

      • How to Install Git on CentOS 9 Stream – LinuxCapable

        Git is a mature, actively maintained open source project initially developed in 2005 by Linus Torvalds, the famous Linux operating system kernel creator. Git is designed for developers that need a pretty straightforward version control system. Most software is collaborative efforts and sometimes can have hundreds of people with commits working on software development projects. It is essential to track these commits customarily done in branches in most projects before being merged into the master for release. It is easy to review and track down any incorrect commits and revert, leading to a much easier development if anything goes wrong.

        In the following tutorial, you will learn how to install Git on CentOS 9 Stream Server or Desktop in various methods.

      • How to Install Discord on Ubuntu 22.04 LTS – LinuxCapable

        Discord is a free voice, video, and text chat app used by tens of millions of people ages 13+ to talk and hang out with their communities and friends. Users communicate with voice calls, video calls, text messaging, media, and files in private chats or as part of communities called “servers.” Discord is available on Windows, macOS, and Linux Distros.

        In the following tutorial, you will learn how to install Discord client on Ubuntu 22.04 LTS Jammy Jellyfish using three different methods.

      • How to Install Deepin Desktop Environment (DDE) on Fedora 35 – LinuxCapable

        The Deepin Desktop Environment (DDE) is known to be one of the most excellent aesthetic-looking desktop environments created by the developers of Deepin Linux. It is often regarded too as the most beautiful desktop on Linux. For users of Fedora, this can be easily installed and be an optional choice for those that like to hop between desktops.

        In the following tutorial, you will learn how to install Deepin Desktop Environment (DDE) on Fedora 35 Workstation.

      • How to Install and Configure Memcached on Rocky Linux/Alma Linux 8 – Citizix

        In this guide we will learn how to install and configure Memcached in RHEL 8 based systems like Rocky Linux and Alma Linux 8.

        Memcached is an open source, distributed memory object caching system. The system caches data and objects in memory to minimize the frequency with which an external database or API must be accessed. This alleviates database load and speeds up dynamic Web applications. It offers a mature, scalable, open-source solution for delivering sub-millisecond response times making it useful as a cache or session store. Memcached is a popular choice for powering real-time applications in Web, Mobile Apps, Gaming, Ad-Tech, and E-Commerce.

        Unlike databases that store data on disk or SSDs, Memcached keeps its data in memory. By eliminating the need to access disks, in-memory key-value stores such as Memcached avoid seek time delays and can access data in microseconds. Memcached is also distributed, meaning that it is easy to scale out by adding new nodes. And since Memcached is multithreaded, you can easily scale up compute capacity. As a result of its speed and scalability as well as its simple design, efficient memory management, and API support for most popular languages Memcached is a popular choice for high-performance, large-scale caching use cases.

      • How to Install and Configure Elasticsearch on Debian 11

        In this guide, we will learn how to install and configure Elasticsearch on Debian 11.

        Elasticsearch is a distributed search and analytics engine built on Apache Lucene. It provides a distributed, multitenant-capable full-text search engine with an HTTP web interface and schema-free JSON documents. Elasticsearch has quickly become the most popular search engine and is commonly used for log analytics, full-text search, security intelligence, business analytics, and operational intelligence use cases.

      • How To Install Linux Kernel 5.16 In Ubuntu / Linux Mint | Tips On UNIX

        Linus Torvalds announced the Linux Kernel 5.16 after a few weeks of development and is available for general usage with driver fixes, a few core networking fixes, and some random issues.

      • How to Set Up a Reverse Proxy With Apache – CloudSavvy IT

        Apache is a versatile web server which offers a full complement of supporting features, some of them via extensions. In this article, we’ll use the mod_proxy module to configure Apache in a reverse proxy role.

        While Apache might not be your first choice as a reverse proxy, with more modern alternatives like NGINX tending to steal attention, mod_proxy is useful for servers which are already running Apache and now need to route traffic to another service. You can set up an Apache virtual host to pass on requests for a given domain to a separate web server.

        We’re using Apache 2.4 with a Debian-based system for the purposes of this guide. We’ll also assume the servers you want to proxy traffic to are already network-accessible from your Apache host. This article focuses on enabling proxying based on a unique virtual host but mod_proxy is also configurable globally, as part of your Apache server config, or at the directory-level via .htaccess files.

      • How to Install vsftpd FTP Server and Secure it with TLS on Debian 11

        File Transfer Protocol or FTP is a very old and one of the most well-known network protocols. It is not secure compared to SFTP or SCP these days but is still the first choice of many users for transferring files between a server and a client. FTP is known as insecure because it transfers data along with user credentials without any type of encryption.

        We have a wild range of open-source FTP servers available nowadays like FTPD, VSFTPD, PROFTPD, and pureftpd. Among all of them, VSFTPD is a very secure, fast, and most wildly used protocol for transferring files between two systems.

        VSFTPD is also known as “Very Secure File Transfer Protocol Daemon” with support of SSL, IPv6, explicit and implicit FTPS.

        In this guide, We will show you How to Install vsftpd FTP Server on Debian 11.

      • How to Install and Use Cockpit in Rocky Linux

        Server management does not have to feel like rocket science thanks to Cockpit’s contributive footprints. This server management software makes it flexibly easy for anyone to manage their Linux servers either locally or remotely.

        Through a web browser interface, Cockpit yields real-time information regarding your server machine status. Such system information includes but is not limited to system running processes, networking, system storage, applications, file system statistics, and CPU load.

        Cockpit also gives you superuser control like remote shutdown or remote reboot of your server machine. Moreover, Cockpit only gains control of your server resources once you are signed in to its web interface and begin interacting with its web-based control panel.

      • How to manage Bash history

        BASH (Bourne Again SHell) is the default shell in practically all Linux-based operating systems. All the commands we write in the terminal are interpreted by the shell, and become part of its history. In this tutorial we see where the shell history is saved, and how to manage it using the “history” built-in command and some environment variables.

      • How to install and configure Squid Proxy on Debian 11

        In this guide we will learn how to install and configure Squid Proxy server on a Debian 11 server.

        Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. Squid has extensive access controls and makes a great server accelerator. It runs on most available operating systems.

        Squids reverse proxy is a service that sits between the Internet and the webserver (usually within a private network) that redirects inbound client requests to a server where data is stored for easier retrieval. If the caching server (proxy) does not have the cached data, it then forwards the request on to the web server where the data is actually stored. This type of caching allows for the collection of data and reproducing the original data values stored in a different location to provide for easier access.

        A reverse proxy typically provides an additional layer of control to smooth the flow of inbound network traffic between your clients and the web server.

      • How to update Node JS on Ubuntu 18.04

        In this short tutorial, you will discover three ways to update NodeJs on Ubuntu 18.04 and 20.04.

      • How to update a disconnected Red Hat Satellite Server

        Red Hat Satellite now features the ability to export content to a disconnected Satellite server with full and incremental updates.

      • Install Deepin Desktop Environment (UbuntuDDE) on POP OS

        In this tutorial, we learn the steps to install popular Deepin Dekstop- DEE on POP_OS 20.04 LTS or 21.04 Linux using the command terminal.

        Deepin is one of the most beautiful Linux distro based on the Debian operating system. However, there are many people who refrain themselves from using either because of its origin or slow repository. Hence, one of the best ways to experience its beauty is by installing the Deepin Desktop GUI on our existing POP_OS operating systems.

        Moreover, installing a new operating system is also cumbersome if you have already have set up applications you required on it. In such as scenario, installing an extra GUI apart from the default one will be a good idea.

      • Install Gitlab on Ubuntu 20.04 LTS Focal fossa Linux – Linux Shout

        Tutorial to learn commands for installing and uninstalling Deepin DDE desktop on POP OS using the PPA with the help of UbuntuDDE repository

      • Install Spotify On Ubuntu / Fedora & Manjaro | Tips On UNIX

        Spotify is one of the world’s largest music streaming service providers.

        This tutorial will be helpful for beginners to install Spotify in Ubuntu 20.04 LTS, Ubuntu 20.10, Fedora 35, and Manjaro Linux.

      • How to add or implement counter in bash scripting – TREND OCEANS

        The counter is very common in programming to trace the number of cycles that have been executed by loop functions.

        In this article, you will see how to add or implement a counter in bash scripting.

      • How to install Docker CE on Rocky Linux 8

        Hello, friends. In this post, you will learn how to install Docker CE on Rocky Linux 8. The process is simple, and we will be able to install the latest stable version of the tool.

        Docker is a technology that allows us to deploy applications and operating systems in containers that are distributed in images.

        Many blogs have commented on Docker, including ours. That is why this technology is so popular and so widely used worldwide.

        As we know, CentOS 8 came to an end on December 31 of last year, so we have to migrate to alternatives such as Rocky Linux or Alma Linux.

        So let’s go for it.

      • How to use Terraform AWS EC2 user_data – aws_instance

        In this guide we will learn how to provision an EC2 instance with user_data when launching the instance using terraform.

        AWS user_data is the set of commands/data you can provide to an instance at launch time. For example if you are launching an ec2 instance and want to have docker installed on the newly launched ec2, than you can provide set of bash commands in the user_data field of aws ec2 config page.

        We can do this level of customization during the image build time with packer as well.

      • 15 apt Command Examples in Ubuntu / Debian Linux

        Apt is a command line package management utility for Ubuntu and Debian Linux. Apt is used to install, remove, update and upgrade Debian packages from command line in Ubuntu and Debian systems. Apt (Advanced package tool) overcomes the issues and bugs that were noticed in apt-get command. To use apt command user must have sudo privileges.

        In this post, we will cover 15 apt command examples in Ubuntu / Debian Linux. Let’s dive into the examples.

      • How to upgrade Linux Kernel to 5.16 Release

        Linux Kernel 5.16: What’s New?

        Linux latest kernel was finally introduced with an interesting update for a gamer, raspberry pie, and desktop users.

        With the latest release, many new generation Intel and AMD hardware support were added along with the CPU and GPU devices.

      • How to Install Linux Kernel 5.16 on Ubuntu or Linux Mint


        Linux kernel 5.16 is now available so here’s a tutorial on how to install it on your Ubuntu or Linux Mint distributions, or a similar derivative.

        Linux kernel 5.16 is a great release of Linux gamers and AMD users. It brings the long-anticipated FUTEX2 implementation from Collabora for a faster gaming experience when playing both native Linux games and Windows games via Wine.

      • Date command usage in Linux

        At first, the date command may seem like a simple utility to you, but once you try to execute the date command with different utilities, you will realize the real power.

        A date command can be handy in bash scripting, backup, and the limation is your imagination.

        In this article, you will see the basic to advanced usage of the date command in Linux.

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • Review: The Common Desktop Environment (CDE) on a modern Linux distribution

          Once upon a time, in a long ago age called the 1990s, I attended a class on operating systems. It was my first hands-on exposure to UNIX-like operating systems and the course focused on Solaris. One feature which was relatively new to Solaris at the time was the Common Desktop Environment (CDE).

          CDE took an approach to the desktop concept I had not experienced before. Windows, at the time, focused on launching applications from its Start menu and then tracking open windows with a task manager; and macOS was mostly driven by a global menu at the time. CDE took a different approach which seemed designed to truly reflect the concept of a literal work desk. A panel along the bottom of the display contained drawers and toggle buttons. Programs and files could be accessed by opening the drawers and placing work items on the desktop. (It might be more proper to say “desktops” since CDE offered four virtual desktops by default.) Items on the desktop could be minimized or moved off to the corner of the desk when not being used.

      • GNOME Desktop/GTK

    • Distributions

      • BSD

        • DragonFly BSD 6.2

          DragonFly version 6.2 is the next step in the 6.x release series. This version has hardware support for type-2 hypervisors with NVMM, an amdgpu driver, the experimental ability to remote-mount HAMMER2 volumes, and many other changes.

          The details of all commits between the 6.0 and 6.2 releases are available in the associated commit messages for 6.2.1. 6.2.0 was not released.

      • Arch Family

        • Manjaro 21.2 Qonos Plasma – Very nice, high five

          Manjaro 21.2 Qonos Plasma is a pretty darn good distro. Let’s start with the negatives. A few small bugs here and there, the system menu needs to be resizable, the package management is under-developed, and the battery life is only solid+, but not more than that. Everything else? Well, quite nicely done.

          I have to say that Qonos Plasma is one of the more cohesive distros I’ve tried in a while, and the level of consistency with the Gnome edition is quite admirable. The system delivers beauty, speed, a good arsenal of programs, decent defaults, even more decent configurability thanks to the Plasma desktop, elegance, and stability. If not for the rolling nature of this distro, I might even consider doing some risky production-level experimentation. We ain’t there yet. But. But. Manjaro is constantly improving, and so, who knows what might happen a year or two from now. All in all, quite recommended and more than worth your time and testing.

      • Debian Family

        • In practice, Debian (and Ubuntu) have fixed minimum system UIDs and GIDs

          Unfortunately, in practice the start of the range for both system UIDs and GIDs is fixed. This comes about through two things combined together. First, a certain number of system logins and groups are created early in system installation, well before you can normally customize the system. These early system logins and groups will use the standard starting point for system UIDs and GIDs (currently 100 for both), and so be assigned low UIDs and GIDs. This includes things like the ‘systemd-network’ login and the ‘systemd-journal’ group.

      • Canonical/Ubuntu Family

        • It might be time to consider running Ubuntu on your smartphone

          The UBports Foundation has rolled out an update for mobile operating system Ubuntu Touch that eliminates a long-standing pain point.

          Ubuntu Touch OTA-21, the latest version of the Linux-based OS, delivers a fix for problems with the set-up and synchronization of Google accounts, first encountered by users more than two years ago. Now, however, users should be able to sync their Google calendar and contacts without any issues.

          Other changes include a sleek new “Greeter” screen, which is displayed when the smartphone or tablet is about to be unlocked, and an upgrade that allows MMS content to be retrieved when in 2G network mode.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • Why we built an open source testing framework

        If you’ve ever wanted to join an open source community and contribute or start an open source project of your own, then read on to find out about our fun and awesome open source project we created from scratch at Red Hat. I’m a Software Quality Engineering Manager in the OpenStack Networking group, and together with a team of engineers both from my team and from R&D, we collaborated to create the Tobiko open source testing framework.

        Sometimes, you just have to start a new open source project.

        Our starting point was good. We already had an official open source testing framework called Tempest, which strived for complete coverage of the OpenStack API and common scenarios that simulate a working cloud.

      • Web Browsers

        • Mozilla

          • Mozilla pauses donations using cryptocurrencies after community fallout

            The Mozilla Foundation faced community disapproval after previously indicating that it will allow people to donate using various cryptocurrencies such as Ethereum and Dogecoin through BitPay.

            The foundation takes pride in its non-profit status and its commitment to privacy. However, the organisation was scolded by the founder of Mozilla, Jamie Zawinski, who uncandidly expressed his grave distaste for the donation policy by bashing the ‘decision to partner with planet-incinerating Ponzi grifters’.

          • Firefox 96 Is Now Available for Download, Here’s What’s New


            Firefox 96 is here as the first release of the open-source web browser in 2022, bringing a handful of modest performance and security improvements to make your web browsing experience more stable, reliable, and secure.

            For example, the new Firefox release significantly reduces the main thread load, significantly improves noise-suppression and auto-gain-control, and slightly improves echo-cancellation to provide users with a better overall experience.

          • Linux Mint Devs Announce Partnership with Mozilla to Improve Firefox in Linux Mint

            According to Clement Lefebvre, this is both a commercial or a technical partnership in an attempt to improve the Firefox web browser in Linux Mint. Firefox will still be distributed as a .deb package in Linux Mint, but starting with the Firefox 96 release, it will receive better support for rounded corners for its own window decorations.

            But, what’s most important is the fact that the default Firefox configuration in Linux Mint will change due to this partnership to provide users with a configuration almost identical to the version of the web browser distributed by Mozilla.

      • Productivity Software/LibreOffice/Calligra

        • Oyez! Oyez! Oyez! The LibreOffice Draw Guide 7.2 has arrived!


          Anyone who wants to quickly acquire knowledge about LibreOffice Draw and is new to drawing software, or may be familiar with another office suite, will find this user guide very useful. It introduces the main features of LibreOffice Draw. Although Draw is a vector graphics drawing tool, it can also perform some operations on raster graphics (pixels) such as photographs.

          Using Draw, a wide variety of graphical images can be created quickly. Some of the drawing functions are: layer management, snap functions and grid-point system, dimensions and measurement display, connectors for making organization charts, 3D functions that enable small 3D drawings to be created (with texture and lighting effects), drawing and page-style integration, and Bézier curves.

      • Education

      • FSF

        • GNU Projects

          • GNU Linux-Libre 5.16 Kernel Released for Those Seeking 100% Freedom for Their PCs

            Based on the Linux 5.16 kernel series, the GNU Linux-libre 5.16 kernel is here to introduced an analogous firmware_reject_builtin function for the new firmware_request_builtin call in Linux kernel 5.16, as well as to unify the various separate shell functions used by the cleanup scripts to disable request_firmware and the _nowarn variant, and extended them to also clean up the _builtin variant.

            In addition, the GNU Linux-libre 5.16 kernel removes blob names from various new drivers added in Linux kernel 5.16, including the mt7921s and rtw89 (8852a) Wi-Fi drivers, the ili210x touchscreen driver, the i.MX dsp remoteproc driver, qdsp6 audio driver, and the devicetree files for AArch64 (ARM64) qcom variants.

      • Programming/Development

        • Open source developer corrupts widely-used libraries, affecting tons of projects

          A developer appears to have purposefully corrupted a pair of open-source libraries on GitHub and software registry npm — “faker.js” and “colors.js” — that thousands of users depend on, rendering any project that contains these libraries useless, as reported by Bleeping Computer. While it looks like color.js has been updated to a working version, faker.js still appears to be affected, but the issue can be worked around by downgrading to a previous version (5.5.3).

        • Blockchain and how does it work?

          In his 1982 dissertation “Computer Systems Established, Maintained, and Trusted by Mutually Suspicious Groups,” cryptographer David Chaum presented a blockchain-like system for the first time. Stuart Haber and W. Scott Stornetta presented more work on a cryptographically protected chain of blocks in 1991.

          However, blockchain saw its use in 2009.

          Satoshi Nakamoto created the first successful and popular implementation of Blockchain technology in 2009 by creating the first digital cryptocurrency called Bitcoin.

        • Dirk Eddelbuettel: Rblpapi 0.3.13: Some Fixes and Documentation

          A new version, now at 0.3.13, of the Rblpapi package just arrived at CRAN. Rblpapi provides a direct interface between R and the Bloomberg Terminal via the C++ API provided by Bloomberg (but note that a valid Bloomberg license and installation is required).

          This is the thirteenth release since the package first appeared on CRAN in 2016. It comprises the PRs from three different contributors (with special thanks once again to Michael Kerber), and extends test and documentation, and extends two function interfaces to control explicitly whether returned lists of length one should be simplified.

    • Standards/Consortia

      • Portability is not sufficient for portability

        Before looking into portable software, let’s first examine portability from a hardware perspective. When you ask most people what they consider a “portable computer”, they’ll probably think of laptops or possibly even a modern smartphone. But what about this: [...]

      • [Old] Dagen H, the day Sweden switched sides of the road, 1967

        Initially, the usage of American cars (with drivers positioned on the left side of the vehicle) in left-hand traffic was advantageous to early drivers. It allowed them to negotiate the tight squeezes past oncoming traffic by paying close attention to the underdeveloped left shoulders of the country’s old roads.

        By the 1950s and 1960s, increased auto traffic and more developed roads created dangerous overtaking situations due to the mismatch of left-hand roads and American-style left-side drive.

        Therefore, the Swedes implemented a switch in the name of logic, safety, and consistency with their Scandinavian and continental counterparts.

  • Leftovers

    • Mailer and Me
    • Science

      • Even NASA Seems Surprised by Its New Space Telescope

        NASA had never attempted such a complicated deployment before, and there were hundreds of ways that the process could go wrong. If an important part became stuck—really, truly stuck—NASA would have to face the painful reality of abandoning its brand-new, $10 billion mission. Over the past two weeks, Webb’s stewards have worked nearly nonstop, trading 12-hour shifts, checking and rechecking data as hundreds of little mechanisms clicked into action.

        And this afternoon, one final piece slid into place. The deployment, the scariest part of the mission—the one that astronomers and engineers have dreaded for years—is over. Rigby was in the mission-operations room at the Space Telescope Science Institute, in Baltimore, when they called it. Webb, once compact and curled up, has finally become a real space telescope.

      • NASA’s James Webb Space Telescope deployment complete as mirror unfolds

        The team behind the recently launched James Webb Space Telescope successfully finished unfolding the instrument’s distinctive golden mirror on Saturday, meaning the telescope is now fully deployed and is one step closer to sending back data about the universe’s first galaxies.

    • Hardware

      • Macropopsicle Melts On Your Desk, Not In Your Mouth | Hackaday

        We all know by now that macropads are super cool shortcut machines. And what’s cooler than a popsicle? Well, this cute little thing, which goes by the name of Macropopsicle.

        The freezer’s open if you want your own Macropopsicle. There’s not much more to this tasty and practical desktop treat than an adafruit QT Py, a couple of Cherry MX-style switches, some wires, and a handful of printed parts. One cool thing about this design is that all the pieces print with little to no supports, and many of them snap together.

      • Fail Of The Week: 3D Printed Parts That Burn Like NASA’s Rocket Fuel | Hackaday

        [Integza] is on a mission to find as many ways as possible to build rockets and other engines using 3D printing and other accessible manufacturing techniques. He had an a great idea – is it possible to 3D print a solid fuelled rocket, (video, embedded below) specifically can you 3D print the rocket grain itself? By using the resin as a fuel and mixing in a potent oxidiser (ammonium perchlorate specifically – thanks for the tip NASA!) he has some, erm, mixed success.

    • Health/Nutrition/Agriculture

    • Integrity/Availability

      • Proprietary

        • The Story of Adobe

          Adobe is celebrating its 40th anniversary this year and the company has never been performing better. After successfully moving from the perpetual licensing model of software to SaaS, the company is worth $243 billion. Many of the products that made Adobe famous are still used today like PDF and Photoshop. Adobe’s story is fascinating: run ins with Steve Jobs, snagging a distribution deal of a hot new piece of software called Photoshop, and even a kidnapping.

        • Security

          • Security updates for Monday [LWN.net]

            Security updates have been issued by Debian (ghostscript and roundcube), Fedora (gegl04, mbedtls, and mediawiki), openSUSE (kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container), SUSE (kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container and libvirt), and Ubuntu (apache2).

          • Privacy/Surveillance

            • Opinion | Congress Must Pass Federal Data Privacy Law to Protect Democracy

              January 6, 2021 will be remembered as one of the darkest days for democracy in modern U.S. history, and the attack’s anniversary coincides with the kickoff of an election year. Some lawmakers responded to January 6 by attempting to reduce online free speech by modifying Section 230. However, this misguided approach would fail to address radicalization and hate online, undermine human rights, and further solidify Big Tech’s domination of the internet. In this election year, lawmakers must stop the true threat to democracy: mass surveillance.

            • Alec Baldwin says in Instagram video he is complying with cell phone search warrant

              “This is a process,” the actor said, adding part of the process involves investigators from another state having to go through the state he lives in to make a request for his phone.

              “They have to specify what exactly they want. They can’t just go through your phone and take, you know, your photos or your love letters to your wife or what have you,” Baldwin said in a video shot in the driver’s seat of a parked car.

            • Sports Illustrated swimsuit model says she was tracked for hours with AirTag

              Nader, 26, detailed the incident in an Instagram post on Thursday. Nader said that she left her coat on the back of a chair, which is when someone could have placed the AirTag in her pocket. After that, she says the person stalked her for five hours as she went bar-hopping in New York City.

              She was only alerted to the stalking when a notification appeared on her iPhone that said an unknown accessory was moving with her. She discovered the AirTag in her coat after she got home.

            • Model shares warning, says a stranger was tracking her with an Apple AirTag

              “Once I was already on my walk home, halfway home, I got the notification that was like ‘Someone’s tracking you and has been for a while,’” she explained in her Instagram story. “So I freaked out, obviously and then, of course my phone died.”

            • [Old] I tracked my kid with Apple’s Airtags to test its privacy features

              I clipped a keychain with one of Apple’s tiny new Bluetooth trackers, AirTags, onto my son’s book bag and waved goodbye to him on the school bus. I watched on my iPhone’s Find My app as the bus stopped at a light a few blocks down from our street.

              But then the tiny “key” icon on the app stopped moving. The item was “last detected” seven minutes ago at a busy intersection less than a mile away. Traffic, maybe? Five more minutes passed with no update. Is there an issue with the app? After another 10 minutes, my heart started to race; still nothing.

              Finally, the tracker was detected four miles away in front of his school. Relieved, I decided more information in this case was worse; I’d go back to just tracking my keys. Apple later told me the delay was due to the tracker needing to communicate with Bluetooth on other iOS devices in the Find My network along the bus route before the AirTag’s location could be updated to iCloud and the app.

              Still, my experiment highlighted how easily these trackers could be used to track another person. After all, I knew the moment he arrived at school and when he got back on the bus to head home.

    • Defence/Aggression

      • Biden Urged to ‘Engage Diplomatically’ With Russia to ‘Avert a Military Conflict’ Over Ukraine

        Ahead of highly anticipated talks scheduled to begin Monday, a diverse coalition of organizations sent a letter to the White House urging U.S. President Joe Biden to “engage diplomatically” with Russia to prevent an armed confrontation resulting from rising tensions involving Ukraine.

        “We urge you to continue to pursue diplomatic progress, to promote de-escalation, and to seek negotiated solutions to disputes that avoid war.”

      • Opinion | Nuclear-Armed Nations—Including the US—Must End Their Hypocrisy

        In an open letter to President Biden over 1,000 physicians, health professionals and concerned citizens have called on the president to take bold action toward the complete elimination of nuclear weapons in anticipation of his administration’s Nuclear Posture Review expected to be released in the next month.

      • ’20 Years of US Torture and Counting’: Report Details Post-9/11 Abuse at Gitmo and Beyond

        A report released Sunday, nearly 20 years after the first prisoners arrived at Naval Station Guantánamo Bay, details “systematic abuses carried out by the United States Central Intelligence Agency (CIA) and U.S. military” since the 2001 terrorist attacks.

        “Thus far, Biden administration actions raise sobering questions about its commitment to ending the so-called ‘War on Terror.’”

      • Nigeria motorbike gang attack: Death toll rises to 200

        Known locally as bandits, these gangs are sophisticated networks of criminals who operate across large swathes of territory, often stealing animals, kidnapping for ransom and killing those who confront them.

        This week, the government officially labelled bandits as terrorists, allowing security forces to impose tougher sanctions on the groups and their supporters.

      • Democrats quietly explore barring Trump from office over Jan. 6

        Section 3 of the 14th Amendment, which was ratified after the Civil War, says that officeholders who “have engaged in insurrection or rebellion against the same” are disqualified from future office.

    • Environment

      • Energy

        • More government funding for solar R&D

          Arena’s latest $40 million R&D funding round is intended to support projects that align with the agency’s Solar 30 30 30 target of 30% module efficiency and 30 cents per installed watt at utility scale by 2030.

        • Celebrities push cryptocurrencies, but their fans carry all the risk

          “[Cryptocurrency] is orders of magnitude riskier than anything in the stock market,” said Eshwar Venugopal, a finance professor at the University of Central Florida, principally because of the lack of financial transparency and legal accountability that come with regulated securities. He likened investing in [cryptocurrency] to being an angel investor in an early-stage startup knowing your investment could go to zero. For [cryptocurrency] investors, “the risk is from lack of information, misinformation, and speculation,” he said.

        • Finance minister: US, Estonia can collaborate on crypto currency monitoring

          A bill soon to be put before the Riigikogu will, if it passes, increase the transparency of virtual currency transactions, including those using crypto currencies like Bitcoin, as well as non-fungible tokens (NFTs), reducing the anonymity of [cryptocurrency] asset transactions, the finance ministry says, adding this will enable more effective monitoring of a sector which, the minister says, is rapidly growing.

      • Overpopulation

        • Air pollution: Delhi’s smog problem is rooted in India’s water crisis

          But then comes winter. Pollution in any city mixes vertically in the atmosphere, and the height at which this happens shrinks by more than half in the winter, raising the concentration of pollution. Two new sources also enter the mix. By the end of October, when the rains have ceased, the winds begin to blow in from the northwest, carrying fumes from burning fields. Then there is the Diwali, the popular festival lights, where millions burst fire crackers to celebrate.

        • [Old] ‘Zero Day’ for California water? Not yet, but unprecedented water restrictions send a sharp warning

          Based on water conditions each year, the state Department of Water Resources makes an initial allocation by Dec. 1 to help these state water contractors plan. As the year progresses, the state can adjust the allocation based on additional rain or snow and the amount of water in storage reservoirs. In 2010, for example, the allocation started at 5% and was raised to 50% by June. In 2014, the allocation started at 5%, dropped to 0% and then finished at 5%.

          This year is the lowest initial allocation on record. According to the state Department of Water Resources, “unprecedented drought conditions” and “reservoirs at or near historic lows” led to this year’s headline-producing 0% allocation.

        • [Old] Is it ‘Zero Day’ for California Water?

          On Dec. 1, 2021, California triggered headlines heard around the world when officials announced how much water suppliers would be getting from the State Water Project. “California water districts to get 0% of requested supplies in an unprecedented decision,” one headline proclaimed. “No state water for California farms,” read another.

        • California adopts drought rules outlawing water wasting, with fines of up to $500

          In an effort to discourage wasteful water practices such as hosing off driveways or allowing irrigation water to run down streets, California water officials have imposed new drought rules for cities and towns throughout the state.

          The regulations, adopted Tuesday by the State Water Resources Control Board, prohibit overwatering yards, washing cars without a shutoff nozzle, hosing down sidewalks or watering grass within 48 hours after rainfall.

        • California adopts water restrictions as drought drags on

          The action comes as Californians have failed to meet Gov. Gavin Newsom’s call for a voluntary 15% reduction in water use compared to last year. Between July and November, the state’s water usage went down just 6%.

    • Finance

    • AstroTurf/Lobbying/Politics

      • Cheney’s Inferno Comes to Capitol Hill

        Now as I write this today, on January 6, I can see video of the Democratic members of Congress gathered to honor the officers who tried to stem the attack on the Capitol last year – an attack fomented by a man who, unlike Cheney and Bush, failed in his effort to subvert an election. I see Dick Cheney there, with his daughter Liz, the only sitting Republican to show up. I see solemn Democratic grandees lining up to shake Dick Cheney’s hand, to welcome him warmly. A glance at media feeds shows me a great gaggle of “liberal” voices praising Cheney for “supporting democracy,” engaging in their usual orgiastic spasms at the sight of any display of bipartisanship.

    • Censorship/Free Speech

      • Taliban arrest Afghan professor after criticism

        A prominent Afghan university professor and open critic of the Taliban’s hardline regime has been arrested in Kabul, with his daughter on Sunday saying she now fears for his safety.

        Professor Faizullah Jalal was arrested by the Taliban on Saturday after repeatedly speaking out on television against the country’s new rulers, who stormed back to power in August.

    • Civil Rights/Policing

    • Monopolies

      • Patents

        • EPO Launches Consultation On Grace Periods [Ed: EPO is a Mafia that knows nothing about grace]
        • Canada’s patent dispute over cherry tree plant moves to trial [Ed: Who ‘owns’ fruit?]

          The Canadian government will be able to pursue its allegations of plant patent infringement against two US fruit companies at trial, a federal court in Washington has determined.

        • Review Of EPO Antibody Decisions January 2021 – December 2021 [Ed: Corrupt EPO management wants you to believe that life and nature themselves are inventions and humans can monopolise both]
        • EPO Board Of Appeal Finds “No Legal Basis” For Requirement To Adapt The Description To Conform To The Claims [Ed: As if they care about what’s legal and what’s not legal]

          As applicants and representatives will be well-aware, the EPO has, for a very long time, required that the description of a patent application be amended prior to grant to ensure that it “conforms” to the allowed claims. Traditionally such amendments took the form of amending the “summary of the invention” or similar introductory portion of the application to recite the wording of the allowed independent claims, or to make explicit reference to those claims. Such amendments, whilst occasionally tedious, became an accepted part of practice at the EPO and had no noticeable impact on the scope of protection.

          However, in the past year or so, we have seen a significant “tightening-up” of the EPO’s approach to description amendments which has become, in many cases, extremely burdensome and raised concerns about the interpretation of the resulting granted patents. This process started with the issuance of internal guidance to EPO examiners regarding the amendments, that guidance being largely codified in the 2021 edition of the EPO’s Guidelines for Examination as reported here. Most relevantly, the Guidelines specified that embodiments which do not fall under the scope of the claims should be deleted or “prominently stated” as not being covered by the claims. The revised Guidelines also indicated that it was “not sufficient to use generic statements such as “embodiments not falling under the scope of the appended claims are to be considered merely as examples suitable for understanding the invention” without indicating which parts of the description are no longer covered” and that “merely changing the wording “invention” to “disclosure” and/or the wording “embodiment” to “example”, “aspect” or similar is not sufficient … it has to be explicitly specified that this part of the description does not describe part of the claimed invention.”

      • Trademarks

        • Muratbey v EUIPO – The twists and turns of protecting the appearance of cheese – Carpmaels & Ransford – Law Firm [Ed: Corrupt EUIPO in trouble over the appearance and name of cheese]

          Registered Community designs can be used to protect the appearance of products throughout the European Union. In order to be valid, these registrations must have individual character, i.e. they must be sufficiently different from existing designs. The legal test is that they must produce an overall impression on the informed user that differs from the overall impression produced on the informed user by any existing design.

          In Muratbey Gida Sanayí ve Tícaret AŞ v EUIPO (Case T‑662/20), the General Court considered an appeal against a decision of the European Union Intellectual Property Office’s Board of Appeal. The decision had invalidated Muratbey’s registration for a cheese with a helical shape for lacking individual character compared to an existing design.

      • Copyrights

        • Subpoenas Targeted Over 35,000 Cloudflare Customer Domain Names in Six Months

          Cloudflare doesn’t remove anything in response to DMCA takedown notices unless it stores the content permanently on its network. However, the company will hand over the personal details of customers to copyright holders who obtain a DMCA subpoena. During the first half of 2021, civil subpoenas targeted hundreds of customers linked to more than 35,000 domains.

01.09.22

Links 9/1/2022: 5.16 Linux Kernel Released

Posted in News Roundup at 6:44 pm by Dr. Roy Schestowitz

  • GNU/Linux

    • What Are Linux Metacharacters? Everything You Need to Know

      The most powerful feature of the Linux Bash shell is its capability to work around files and redirect their input and output efficiently. Linux uses special characters or symbols known as metacharacters that add special meaning to a shell command with respect to file search and commands connection.

      The metacharacters are helpful in listing, removing, and copying files on Linux. However, the function of each metacharacter differs depending on the command you are using it with.

      This article provides an in-depth guide on different types of metacharacters in Linux. Lastly, we explain how these special characters help in connecting and expanding commands.

    • Linux Weekly Roundup #164

      Welcome to this week’s Linux Roundup, the second of 2022! May it be a great hear for you.

      We had a full week in the world of Linux releases with KaOS 2022.01, Bodhi Linux 6.1.0 Beta, Manjaro 21.2.1, and Linux Mint 20.3.

    • Audiocasts/Shows

    • Kernel Space

      • Linux 5.16
        Not a lot here since -rc8, which is not unexpected. We had that extra
        week due to the holidays, and it's not like we had lots of last-minute
        things that needed to be sorted out.
        
        So this mainly contains some driver fixes (mainly networking and
        rdma), a cgroup credential use fix, a few core networking fixes, a
        couple of last-minute reverts, and some other random noise. The
        appended shortlog is so small that you might as well scroll through
        it.
        
        This obviously means that the merge window for 5.17 opens tomorrow,
        and I'm happy to say I already have several pending early pull
        requests.  I wish I had even more, because this merge window is going
        to be somewhat painful due to unfortunate travel for family reasons.
        So I'll be doing most of it on the road on a laptop - something I
        generally try to avoid.
        
        That said, the merging part of the merge window works perfectly well
        on a laptop, it's just that I normally really want to do more local
        build testing between merges than a laptop really allows me to do. So
        the main downside during travel is that I end up relying much more on
        the automated build testing in the cloud. And so really hope that
        everything has been properly cooking in linux-next so that there are
        no unnecessary issues that pop up when things hit my tree.
        
        Of course, realistically our automated build testing is so good
        anyway, and people have been pretty good about linux-next, that maybe
        my local builds aren't _that_ important. I do end up occasionally
        hitting issues that should never have made it as far as my tree, but
        it's not like it's a common - or generally serious - issue.
        
        Knock wood.
        
        Anyway, I don't expect any real issue, but I'll probably be jetlagged
        and in odd timezones, so my response time might be "variable".
        
        But hey, before that merge window even opens, you still have some time
        to give a shiny new kernel release some TLC and testing.
        
                        Linus
        
      • Linux Kernel 5.16 Officially Released, This Is What’s New

        After two months of development, Linux kernel 5.16 is here to introduce the futex_waitv() kernel system call from Collabora, which promises to make your gaming experience faster when playing both native Linux games and Windows games via Wine.

        Linux kernel 5.16 also adds support for Intel’s Advanced Matrix Extensions (AMX) 64-bit programming paradigm for servers, cluster scheduler support to the task scheduler, a new fanotify event type for file system health reporting, a new page folios mechanism for faster memory management, and improved write congestion.

      • Linux 5.16 Released With Many Intel & AMD Additions, Memory Folios, AMX, FUTEX2

        As expected the Linux 5.16 kernel has been promoted to stable.

        Linux 5.16 has many new features including the FUTEX2 futex_waitv system call for helping Steam Play (and Wine), memory folios have been mainlined, AMD Ryzen 6000 mobile series support is getting into better shape, Intel Alder Lake S graphics are now considered stable, Intel AMX support for Sapphire Rapids has landed, big AMD Ryzen with Radeon graphics performance improvements, and a wealth of other hardware improvements.

      • The 5.16 kernel has been released

        Linus Torvalds has released the 5.16 kernel, as expected. Significant changes in 5.16 include the futex_waitv() system call, cluster-aware CPU scheduling, some internal memcpy() hardening, memory folios, the DAMON operating schemes user-space memory-management mechanism, and much more. See the LWN merge-window summaries (part 1, part 2) and the KernelNewbies 5.16 page for details.

      • Graphics Stack

        • Sway 1.7 Nears Release With Less Abrasive NVIDIA Option, Zero-Copy Direct Scanout – Phoronix

          Sway 1.7 is up to its second release candidate for this popular i3-inspired Wayland lightweight compositor.

          Sway 1.7 kicked off its release candidate phase in late December. Notable with Sway 1.7 is adding support for zero-copy direct scanout for better performance when rendering full-screen windows.

          Sway 1.7 also has better support for virtual reality (VR) headsets via DRM leasing support on Wayland, xdg-activation-v1 support as some additional Wayland protocol work, and various other compositor enhancements.

    • Applications

      • qBitTorrent 4.4.0 Adds Torrent v2, Libtorrent 2.0 & Qt6 Support

        After more than half a year of development, the qBitTorrent app released version 4.4.0 with many new features and various bug-fixes.

        qBitTorrent 4.4.0 added Qt6 support. It offers better HiDPI compatibility for Windows 10+ and Linux using AppImage package. Though, it has known issue about text display on the progress bar. The Qt5 build is still the primary packages, though the next major release will probably drop Qt5 support.

        The new release also supports BitTorrent v2 protocol and libtorrent 2.0.x, that use SHA-256 to provide a safer cryptographic hash function.

      • KeePass Password Safe 2.50

        KeePass is a free open source password manager, which helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key file. So you only have to remember one single master password or select the key file to unlock the whole database. The databases are encrypted using the best and most secure encryption algorithms currently known (AES and Twofish).

        KeePass is really free, and more than that: it is open source (OSI certified). You can have a look at its full source and check whether the encryption algorithms are implemented correctly.

      • The 6 Best Spotify Alternatives for Linux You Should Try

        Spotify is not the only music streaming app for Linux users. Here are some free-to-use Spotify alternatives you can install on your system.

        Using an open-source operating system such as Linux calls for using open-source entertainment apps. Even though Spotify has plenty of native versions available for desktop and mobile platforms, many users prefer using alternatives packed with exciting features.

        If that sounds like you, you’re in for a surprise, as Linux has a ton of fine-tuned Spotify alternatives, which allow you to listen to music right from your desktop.

      • HandBrake 1.5.0

        HandBrake is an open-source, GPL-licensed, multiplatform, multithreaded video transcoder, available for MacOS X, Linux and Windows. Handbrake can process most common multimedia files and any DVD or BluRay sources that do not contain any kind of copy protection.

    • Instructionals/Technical

      • How to install Octave on Ubuntu 22.04 | 20.04 LTS – Linux Shout

        Matlab alternative Octave is an open-source special-purpose high-level level programming language. let’s see the commands to install Octave on Ubuntu 22.04 Jammy or 20.04 Focal LTS Linux.

        Under GPL license Octave is available to use by anyone free of cost; it uses its own script language, which is very similar to Matlab and therefore makes switching particularly easy. This is a program package for the numerical solution of mathematical and scientific tasks as well as for general data analysis and visualization. Using it developers can also create a math program completely compatible with Matlab with free additional packages and add-ons. In this way, the data you have already created will not be lost. In particular, an Octave program can usually also be executed by MATLAB without changes.

        Well, it is a command-line tool natively but also comes with a graphical user interface in the standard installation. It is available for Linux, Windows, and Mac OS.

      • How to Perform Security Audits on Linux With Lynis

        Whether you’re a Linux administrator or user, having a secure server or PC should be a top priority. Although Linux is a secure operating system, it is also susceptible to attacks or security breaches just like other OSes.

        In this guide, you’ll learn how to audit and scan for security vulnerabilities and loopholes on your Linux machine using Lynis. Lynis is an open-source tool and is available on most Unix-based operating systems such as Linux, macOS, Solaris, FreeBSD, etc.

      • Date command usage in Linux – TREND OCEANS

        The date command is part of the Coreutils package, and it is mainly used to get the date in a different type of format with various available options.

        At first, the date command may seem like a simple utility to you, but once you try to execute the date command with different utilities, you will realize the real power.

        A date command can be handy in bash scripting, backup, and the limation is your imagination.

        In this article, you will see the basic to advanced usage of the date command in Linux.

      • Analyze Network Traffic using Zeek – kifarunix.com

        In this tutorial, you will learn how to analyze network traffic using Zeek. Zeek is a world’s leading passive network security monitoring tool that sits on the network and read all the traffic passing through the network, parses them into a high-level events that can then be passed through Zeek policy script intepreter which then generates comprehensive record/logs of every connection seen on the wire including all HTTP sessions with their requested URIs, key headers, MIME types, and server responses; DNS requests with replies; SSL certificates; key content of SMTP sessions e.tc.

      • KVM – easy Network card NIC PCI pass through with virt-manager
      • How To Customize Cinnamon Desktop in Linux System

        Cinnamon desktop is one of the most trendy and easy-to-use desktops for Linux. Most Windows users or newbies switch to Cinnamon desktop from Windows to taste Linux for the very first time. The way Cinnamon adopts the system UI of GNOME but still keeps it traditional, which is eye-catching. Once you get the Cinnamon desktop installed on your computer, there are many steps and methods to customize the Cinnamon desktop in Linux. With open-source, you can customize the desktop exactly as you want it. There can be options to make it look like Mac, Windows, or a completely new look.

      • How To Upgrade Ubuntu 20.04 LTS To Ubuntu 22.04 LTS | Itsubuntu.com

        Here in this tutorial, we will learn the two easy ways to upgrade Ubuntu 20.04 LTS To 22.04 LTS. One of the most important things that you should remember while upgrading your system to the latest version is to take the proper backup for your important files and the system configuration. We hope that you will have a backup before going through the upgrading process to Ubuntu 22.04 LTS from Ubuntu 20.04 LTS.

      • Install Ubuntu 22.04 LTS Container On Docker | Itsubuntu.com

        Ubuntu 22.04 LTS is the latest long-term version from Ubuntu. Ubuntu 22.04 Jammy Jellyfish LTS will be supported till April 2027. In this tutorial post, we are going to show you the easy way to install Ubuntu 22.04 LTS container on Docker.

      • How To Install Htop on Fedora 35 – idroot

        In this tutorial, we will show you how to install Htop on Fedora 35. For those of you who didn’t know, Htop is an interactive real-time process monitoring utility or command for Linux and also a handy alternative to top command, which is a default process monitoring tool that comes pre-installed on all Linux operating systems. Htop allows scrolling the list of processes vertically and horizontally to see their full command lines and related information like memory and CPU consumption. Also, system-wide information, like load average or swap usage, is shown.

        This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the Htop real-time system monitor process on a Fedora 35.

      • How to stream on Discord | FOSS Linux

        Discord was initially released in 2015, and it has been revolutionary up to date. This term is not new for gamers as it is one of the most used ways to interact with other gamers regardless of their locality. The discord platform has continued offering tremendous value to the community as it is an open-source app. Since its inception, Discord has helped develop new methods of connecting its users through video, voice, and messaging.

        With so many streaming choices available now, it is hard for users to select the best streaming option. Therefore, with this challenge in place, it is vital to ensure you choose an app that suits your need to attain maximum productivity. Like Discord, you can opt to use alternate applications that offer online streaming services such as Twitch and YouTube.

        Due to its lightweight nature and easy-to-use GUI (Graphical User Interface), Discord has arguably become one of the best streaming services. This has mainly been aided by its unparalleled compression quality that guarantees users a stable streaming connection. Besides, the fact that Discord’s voice chat is reliable and of high quality poses a challenge to its competitors, and users love it as it is easy to set up and use.

      • Removing an alias/domain from a Let’s Encrypt certificate managed by certbot

        I tried to find a way to remove that name from the certificate before renewing it, but it seems like the only way to do it is to create a new certificate without that alternative name.

      • How To Find CPU Information In Linux Using Command Line

        A central processing unit (CPU), also called a central processor, main processor or just processor, is the electronic circuitry that executes instructions comprising a computer program.

        The CPU performs basic arithmetic, logic, controlling, and input/output (I/O) operations specified by the instructions in the program.

        This contrasts with external components such as main memory and I/O circuitry, and specialized processors such as graphics processing units (GPUs).

        CPU is considered as the brain of a Computer. You may want to know the basic details of your processor, processor speed, architecture, number of cores and cache size.

      • 9 ways to learn Ansible this year | Opensource.com

        Ansible is an open source automation tool that can be used in a variety of ways. Here are a few examples of last year’s most popular Ansible tutorials and stories.

        Automation just keeps improving the lives of everyone on the IT team. Ansible helps anyone who uses IT automation, whether for keeping files organized or configuring printers, or for anything else someone can imagine and build. These are some of the most notable use cases and experiences shared on Opensource.com in 2021.

      • Reading a log out of a docker file | Adam Young’s Web Log

        I have to pull the log out of a docker process to figure out why it is crashing. The Docker container name is ironic_ipxe.

    • Games

      • Easy Anti-Cheat not as simple as expected for Proton and Steam Deck

        Even though Epic Games announced recently how they expanded support for Easy Anti-Cheat to have full support of native Linux, plus Wine / Proton (and so the Steam Deck), it seems it’s not as easy as we hoped.

        In the original announcement, Epic mentioned how it can be enabled with “a few clicks in the Epic Online Services Developer Portal” but the situation is never that simple. A developer of Warhammer: Vermintide 2 has written a post on Steam to explain, noting that there are two versions of EAC. There’s the original and the newer version used via Epic Online Services. The majority of games are likely still with the old version, since the newer one needs SDK upgrades and newer integrations.

    • Desktop Environments/WMs

      • Productivity And Using Modern Linux Desktop Environments – Random [Tech] Stuff

        I was first introduced to Linux in 2001. A colleague of mine in college handed a set of CD-R discs containing Red Hat Linux 7.2. This was before Red Hat split the distribution into Red Hat Enterprise Linux (for enterprise customers) and Fedora Linux (maintained by the open source community). The install came with with a version of GNOME 1.x and doing a bit of Google searching, it leads me to believe it was 1.4. From that point I became extremely familiar with the GNOME desktop environment, enough so where if I was not using GNOME, I was not being very productive. This was not the result of laziness. Far from it. It was solely because of my comfort level.

        I am not doing a Desktop Environment review here. This is merely an opinion piece based on my personal experience and computing style.

        Fast forward to the present and the graphical user interface of a modern desktop distribution has changed drastically. There are many reasons for these changes, one of which is adapting to modern technology. Mobile computing, touch input, etc. I look at GNOME today which is at version 40 and I am really struggling to get comfortable.

      • K Desktop Environment/KDE SC/Qt

        • qml-doxygen: qml-lsp’s qml –> doxygen cousin

          With the infrastructure I built in qml-lsp for parsing and analysing QML files, I thought “hm, since doxyqml is just a glorified qml parser –> c++ header file converter, wouldn’t it be trivial to write the same thing in go reusing qml-lsp’s infrastructure?” And that’s exactly what I did. I wrote a 130-line program that faithfully replicated doxyqml’s functionality in Go.

          By virtue of being a Go program that calls on a pretty optimised parser in C, it ended up being a little over 10 times faster than doxyqml on my system.

          I wasn’t done there.

          [...]

          The next thing I’m planning to do is to resolve the concrete type of an alias property, so that documentation generation for aliases can be improved without developers needing to explicitly tell the computer what type the alias points to.

      • GNOME Desktop/GTK

        • Sebastian Pölsterl: scikit-survival 0.17 released

          This release adds support for scikit-learn 1.0, which includes support for feature names. If you pass a pandas dataframe to fit, the estimator will set a feature_names_in_ attribute containing the feature names. When a dataframe is passed to predict, it is checked that the column names are consistent with those passed to fit. The example below illustrates this feature.

          For a full list of changes in scikit-survival 0.17.0, please see the release notes.

    • Distributions

      • Using Distrobox To Augment The Package Selection On Clear Linux, Other Distributions

        While our testing has consistently shown how Clear Linux can deliver leading performance on Intel/AMD x86_64 platforms, one of the user criticisms to that distribution has been around the limited selection of packaged software especially on the desktop side. But the rather interesting Distrobox can help address that by leveraging Podman or Docker to run other Linux distribution user-space software packages atop.

        Distrobox is an open-source project that builds off Podman or Docker to create containers of different Linux distributions. These Distrobox’ed containers are tightly integrated with the host for sharing the user’s home directory, X11 / Wayland GUI app support, audio, and other connectivity.

      • BSD

      • PCLinuxOS/Mageia/Mandriva/OpenMandriva Family

        • KDE Plasma Frameworks

          The KDE Plasma Frameworks packages have been updated to 5.90.0. This is a service release update.

      • Canonical/Ubuntu Family

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • 12 Best Free and Open Source Linux System Monitoring Tools

        Computer monitoring systems are used to gather data for the purpose of real-time incident notification, performance analysis, and system health verification. Without such a tool, a system administrator would have to login to each machine to collect information on a regular basis. This kind of repetitive task can be automated using a system monitoring tool.

        System monitoring can also help identify problems before they escalate to emergency status. This type of software is not only useful for network administrators. Home users with a small network or even just a single computer will benefit from advanced notification provided by system monitoring tools. Knowing that free space on the hard disk is running out, or that a particular server/daemon has gone down can be extremely useful.

      • Best Free and Open Source Alternatives to Intuit TurboTax

        Intuit Inc. is an American corporation that specializes in financial software. Specifically, the company develops personal finance, accounting, and tax return software.

        The company is headquartered in Mountain View, California. It has more than 10,000 employees.

        While Intuit has a GitHub presence with over 100 repositories for numerous open source projects, none of these repositories offer any substantial desktop software. Instead, the repositories focus on tools and libraries for developers. None of these projects appear to have attracted significant interest from the open source community.

      • Productivity Software/LibreOffice/Calligra

        • Language Tool 5.6 is released

          Language Tool 5.6 is available now.

          Russian, English, Ukrainian, French, German, Portuguese, Catalan, Dutch and Spain language checking modules were updated in this release.

      • FSF

        • New Hampshire residents: make your voice heard on January 11th — Free Software Foundation

          To show your support for the bill, and software freedom in New Hampshire, you must testify in person at the New Hampshire Legislative Office building at 33 N. State St. in Concord, NH at 10:30 AM. For more information, such as where to park at the Legislative Office Building, and any COVID-related precautions to take, please refer to this Nitter thread written by HB 1273′s sponsor, NH state representative Eric Gallager.

          As it is likely that representatives of proprietary software companies will be giving testimonies of their own, it is imperative that the free software community in New Hampshire and surrounding states give a strong show of support to computer user freedom.

          When giving your testimony, it is important that you keep your comments concise and accessible to a nontechnical audience. It would also be helpful to prepare a rebuttal of common false claims.

          If you can’t make it to the hearing, please be sure to spread the message on social media, perhaps by using the #userfreedom or #SOFTWAREAct hashtags. And if you do plan on attending the hearing, try and bring a friend!

      • Programming/Development

        • Top 5 Most Liked and Hated Programming Languages of 2022 [Ed: This lacks any actual sources, seems to be based on hearsay and intuition/gut feeling for the most part, or bribed media]

          One cannot deny that programming is super fun and interesting. It is practically impossible to think of leading our lives without programming today. Every sector that we can think of relies on programming in one way or the other. Over time, many programming languages have surged in popularity and some have fallen from grace. That said, have a look at the top 5 most liked and hated programming languages of 2022.

  • Leftovers

    • Automated Mushroom Cultivation Yields Delicious Fried Goodies | Hackaday

      [Kyle Gabriel] knows mushrooms, and his years of experience really shine through in his thorough documentation of an automated mushroom cultivation environment, created with off-the-shelf sensors and hardware as much as possible. The results speak for themselves, with some delicious fried oyster mushrooms to show for it!

    • 2022 resolution: become machine independent again – toscalix

      I change jobs frequently, I travel a lot, I work in the operating system space so I like to try out new distros, installers, recovery measures… In addition, even when I am at home, in Málaga or Los Llanos De Aridane, Canary Islands, I like to take notes and write at different places since I find little inspiration at my office…

      All these factors together means that I end up having several machines: laptops, convertibles, tablets, phone, RPis… and with various machines it comes the information, configurations and applications hell.

      [...]

      The pandemic has work against me. Such a long time without really travelling (beyond my two locations) had as a consequence that some of my good habits to keep the “machine independent” challenge under control were gone. I realized it when, despite carrying 3 machines in my first business trip since the pandemic started, back in November 2021. I still could not access to a couple of places because I did not have the credentials available or they were not up-to-date. My backpack was ridiculously heavy and I still could not perform some basic personal activities.

      How could I let my self, a professional, get to this point?

      In addition, I am increasingly worried about data privacy. I have taken several steps the last couple of years in this front, but for every step in the right direction I perform, I end up taking one in the wrong one. It is so hard to come into good terms with data privacy nowadays… The effort and knowledge required is simply too high for a regular citizen. I feel in this front like I did back in the days I started using Open Source. Like back then, I feel the world is against me. But I lack now the same energy level I had. A sign of getting old, I guess.

    • Resorbing Patent Law’s Kessler Cat – Request for Comments

      The cat: We parallel our article alongside a short parable from Paulo Coelho titled the “Importance of the Cat in Meditation.” The basic punchline is that once people started thinking the cat was an important element of mediation, it was easier for them to scientifically explain the importance rather than let go of the meaningless attachment. We argue that the Kessler Doctrine is following the same pathway, the Federal Circuit’s explanations do not make sense, and that it is time to resorb the doctrine into the general law of preclusion.

    • Hardware

      • Adding An Audio Jack To Classic Headphones Is A Nifty Upgrade | Hackaday

        [mauriziomiscio.mm] has a way of dealing with the problem in a once-and-done fashion, by installing a female audio jack into his vintage headphones. The benefit is that if the cable is damaged, it can simply be unplugged and replaced with a new one, and is commonly seen on headphones from companies like KRK.

        The hack is simple when applied to a classic pair of AKG K141 headphones. The little plastic casing on one earpiece is popped off, and replaced with a 3D-printed version that stoutly holds a female TRS jack in place. This can then be soldered up to the wiring inside the headphones.

        With everything assembled, the headphones can now use an easily-replaceable cable, and one needn’t worry about having to bust out the soldering iron if the lead is damaged in future. It’s a particularly useful hack for those who use their headphones on the road, always throwing them into backpacks between gigs.

    • Health/Nutrition/Agriculture

      • FDA Biosimilar Approval Recap – 2021 [Ed: FDA under Trump and Biden is known for regulatory capture, rubbers-stamping -- symptom is a dying economy where few people control the entire system]

        The U.S. Food and Drug Administration approved four biosimilar drugs in 2021 under the provisions of the Biologics Price Competition and Innovation Act (BPCIA, codified at 42 U.S.C. § 262) as part of the Affordable Care Act of 2010 (colloquially known as “Obamacare”). This brings to 33 the total number of approved biosimilars, although the effects of the pandemic has been felt in the last two years. From 2015 (when there was only a single approved biosimilar, Sandoz’s Zarxio®, see chart below), the rate of approvals rose every year (3 in 2016, 5 in 2017, 7 in 2018, and 10 in 2019), but 2020 saw only 3 approvals.

      • Corruption is The Easiest Way to Turn an Outbreak Into a Disaster

        The death of Dr. Li Wenliang (Feb.7.2020) sparks outrage as he was the first whistleblower for the current outbreak. Until this moment, many human rights groups and civil groups worldwide are demanding an investigation into his alleged grievance and speech suppression.

        [...]

        Propaganda and conspiracy lies are a means to control and keep the people busy in the dark arguing with each other while the thieves keep stealing them.

        However, they always backfire and when they do, they will hit the manufacture in the face. The closes example is Iran, look consequences of that.

        [...]

        The solution is quite simple: if you want to fight the epidemic you have to face and fight your endemic corruption.

    • Integrity/Availability

    • AstroTurf/Lobbying/Politics

      • Novak Djokovic & Codes of Conduct

        Court documents show that Australian Border Force officials tried to pressure Novak into accepting deportation after his 25 hour journey. They denied him access to lawyers and documents. Let us put that in context: Victoria Police do an excellent job promoting safety on the roads in our state. One of their campaigns tells us that lack of sleep is equivalent to intoxication and drugs. Therefore, if the border police ask for a traveller to give consent to a serious topic like deportation after 25 hours without proper sleep, it is not real consent. Their insistence is on par with date rape.

        The Tampa affair in 2001 was just a few weeks before an election. The next election in Australia has to be between February and May. Novak Djokovic is the new Tampa. Around the world, the incarceration of Novak has provoked ridicule and anger at Australia’s apartheid-like immigration system. Yet in Australia, the Government is hoping to win votes from bullying a foreign athlete.

        [...]

        The quarantine hotel where Novak is imprisoned is in the middle of the University precinct

        I studied computer science and engineering in buildings barely 200 meters away from Novak’s prison, I walked past that hotel almost every day

        Novak has conjured an anti-vax mob in the street barely 500 meters from the Doherty Institute. That was the first lab in the world to cultivate Covid and sequence the genome outside China. Their brilliance in health is on par with Novak’s brilliance in tennis.

        Novak is a leader in sport and Australians have great respect for that. The best leaders are willing to listen to all sides of the story. While Novak is in this unique corner of Melbourne, I hope he will take the time to seek the opinion and advice of world leaders on pandemics and vaccination. In equal measure, I hope to see Novak playing in the tournament without further excuses from the Boarder Force officials.

      • Why Democrats Are So Bad at Defending Democracy

        When it comes to elections, the Republican Party operates within a carapace of lies. So we rely on the Democrats to preserve our system of government.

        The problem is that Democrats live within their own insular echo chamber. Within that bubble convenient falsehoods spread, go unchallenged and make it harder to focus on the real crisis. So let’s clear away some of these myths that are distorting Democratic behavior…

    • Monopolies

      • Google Fired A Black Leading AI Scientist, But Now She’s Founded Her Own Firm

        Timnit Gebru, an Ethiopian with Eritrean heritage, was a leading artificial intelligence computer scientist until she was fired from Google. Recently she launched her firm that was awarded $3.7 million in funding from the MacArthur Foundation, Ford Foundation, Kapor Center, Open Society Foundation, and the Rockefeller Foundation.

        Her company is an independent artificial intelligence research institute that will concentrate on the harmful outcomes technology has on marginalized groups who encounter inordinate effects from AI structures but lack the access to govern its development, as reported by The Washington Post.

      • Protecting Your Online Brand on Amazon [Ed: Amazon has fast become a ‘censorship platform’ for merchandise]

        In today’s ever-expanding e-commerce environment, online brand protection and enforcement has become a necessary undertaking of paramount importance for brand owners in efforts to combat the illicit trade of counterfeit and infringing products. With around 2 million active sellers on Amazon, and approximately 200 million active Amazon Prime subscribers, it’s easy to understand why brand owners choose to offer their products on Amazon.

      • Patents

        • Can amending the description to summarize the prior art add matter to the patent application as filed? (T 0471/20) [Ed: EPO Guidelines for Examination have strayed very far away from what’s actually legal, abusing not just the granting authority but also patent examiners]

          The EPO Guidelines for Examination require the description of a patent application to summarise the background art (F-II-4.3). This requirement usually manifests with a request from the Examiner for the description to be amended to identify the closest prior art. In contrast to other types of description amendment, amending the description so as to mention known prior art seems a relatively innocuous requirement. It is hard to see how the addition of a simple summary of the prior art could be detrimental to the patentee. However, this comfortable assumption was recently put to the test in T 471/20, in which the Board of Appeal considered whether an amendment summarising the prior art could be considered to change the scope of the claim, add matter and thereby invalidate the patent. It will come as a relief to many that the Board of Appeal disagreed with the original finding of the Opposition Division, and found that introducing a prior art reference cannot add matter. However, the Board of Appeal did note that description amendments in general could add matter should they change the interpretation of the claims.

          [...]

          The Opposition Division (OD) found the patent invalid on the grounds that the description amendment summarising D8 added matter. The OD was particularly convinced by the Opponent’s arguments that the filing unit disclosed in D8, contrary to the amendment in the patent, would be understood by a skilled person to be a robot, i.e., “a machine which can be programmed to perform tasks which involve manipulative or locomotive actions under automatic control”. As such, the statement that D8 did not relate to a robot was a subjective as opposed to a factual statement. The Opposition Division further found that by introducing this subjective statement, the applicant had effectively introduced a disclaimer into the description. By stating that the disclosure in D8 was not a robot, the applicant had thereby changed the meaning of “robot” as used in the patent application, including the claims.

          The OD found that the application as filed did not contain subject matter equivalent to the disclaimer indirectly provided by the applicants summary of D8, and as such, the summary of D8 added matter. The patentee was unable to delete the disclaimer as this would have been considered to broaden the scope of the patent, which is not permitted post-grant (the so-called “added matter trap”). The patent was thus revoked in its entirety.

        • Strict US written description requirement applied to CAR-T-cell therapy (Juno v Kite) [Ed: Oddball criteria for patent eligibility to help fake the actual novelty and basically rubber-stamp tons of laughable fake 'inventions' in exchange for fees]

          In the US, functional antibody claims have increasingly failed to satisfy the strict “written description” sufficiency requirement. The written description requirement stipulates that a patent specification should sufficiently describe the claimed invention such that a skilled person would be convinced that the inventor had possession of the claimed subject matter at the filing date. In a Court Appeal of the Federal Circuit (CAFC) decision last year, the same reasoning was applied to a broadly claimed molecule for CAR-T-cell therapy (Juno v Kite). The decision in Juno v Kite is not a surprise in light of the recent CAFC case law on written description for antibodies, and represents yet another nail in the coffin of functional genus claiming for biomolecules in the US.

          [...]

          Written description is a type of sufficiency requirement, derived from the stipulation in US law that a patent specification “shall contain a written description of the invention” (35 US Code § 112(a)). The written description has been understood by the US courts as requiring the patent specification to describe the invention such that it reasonably conveys to a skilled person that the inventor had possession of the claimed subject matter as of the filing date. As such, “a mere wish or plan” for obtaining the claimed invention is not sufficient to satisfy the written description requirement.

          Over the years, the US courts have grown stricter and stricter in their application of the written description requirement to functional language or genus claims for biological inventions such as antibodies. The written description requirement has been interpreted as requiring demonstration in the specification that the patent applicant “has invented species sufficient to support a claim to the functionally-defined genus” (Ariad v Eli Lilly). In practice, the bar for what constitutes a sufficient number of species has been set very high. In Abbvie v Janssen, for example, a claim directed to a functionally defined anti-Il-12 antibody was found invalid for lack of written description despite disclosure in the specification of 300 example antibodies. In this case, the CAFC found that that 300 examples did not sufficiently represent all antibodies that might fall under the scope of the claim.

          To this Kat’s knowledge, the decision in Juno v Kite is the first time the CAFC has applied the written description case law to a CAR-T-cell invention.

        • Europe: key patent issues counsel should monitor this year [Ed: Rory O’Neill propping up UPC delusions; he knows what patent litigation firms are paying his salary]

          Between AI inventorship, SEPs, and the UPC, there’s plenty to keep European attorneys busy in 2022

        • Patent Law’s Fifth Column: Motivation to Combine with Reasonable Expectation to Success [Ed: SCOTUS and obvious (fake) patents, which should never even be granted in the first place]

          In its petition for writ of certiorari, Apotex asks the Supreme Court to revisit motivation to combine, obvious to try and whether the non-obvious contribution needs to be an improvement over the prior art. The petition argues that KSR v. Teleflex (2007) requires a flexible analysis, but that “over the ensuing decade-and-a-half, the Federal Circuit has … reverted to its old rigid ways.” The petition also complains that the Federal Circuit has again masked its jurisprudence via Summary Affirmance without opinion.

        • Novartis Pharmaceuticals Corp. v. Accord Healthcare, Inc. (Fed. Cir. 2022)

          When does the absence of evidence turn into evidence of absence, and when does such absence amount to an adequate written description of the absence of a step of a method claim? This is a question that comes readily to mind when reading the Federal Circuit’s opinion (and Chief Judge Moore’s dissent) in Novartis Pharmaceuticals Corp. v. Accord Healthcare, Inc. (Fed. Cir. 2022).

          The case arose in ANDA litigation over U.S. Patent No. 9,187,405, which recites methods for treating recurring remitting multiple sclerosis (RRMS), a degenerative disorder of the myelin surrounding nervous tissue, with fingolimod (2-amino-2-[2-(4-octylphenyl)ethyl]propane-1,3-diol) sold by Novartis under the brand name Gilenya®.

          [...]

          Chief Judge Moore’s dissent, as foreshadowed in the majority opinion, focused on the adequacy vel non of the written description of the negative limitation regarding the absence of a loading dose of fingolimod hydrochloride. Perhaps sensitized to the issue by the Court’s recent Biogen decision, the Chief Judge asserted that “[t]he majority dramatically expands a patentee’s ability to add, years after filing a patent application, negative claim limitations that have zero support in the written description” (emphasis added), summarizing her position with appropriate pith as “[s]ilence is not disclosure.” The dissent illustrates how readily answers to questions like the one before the Court can be completely divergent depending on which “policy lever” (as legal academics might call them) are considered most relevant. The Chief focused on disclosure, which carries with it a requirement for affirmative statements and definitions that without question are not found in the ’405 specification (although it can be appreciated that there must be a limit to the requirement for affirmatively disclosing what an invention does not comprise, lest a specification become overburdened with unnecessary verbiage directed to irrelevancies). The dissent provided a basis for the Chief’s apprehension that in this case the question of whether the absence of an initial loading dose was not so straightforward when it noted that the limitation was added in response to an obviousness rejection asserted against claims in a co-pending priority application to the ’405 patent. The Chief Judge found support for her position in many of the same cases cited by the majority or distinguished them, to the point that these cases require that a patent specification must “describe[] a reason to exclude the relevant limitation,” citing Sartorius (emphasis in dissent). And the Chief parsed the specification and the testimony to support her conclusion that the District Court’s interpretation of the adequacy of the written description regarding the negative limitation concerning a loading dose, and the majority’s affirmance thereof, was error. According to the dissent “the district court (and now the majority) [engaged in] rewriting the specification with expert testimony” to arrive at their conclusion regarding such adequacy.

        • Strategic IP Considerations of Batteries and Energy Storage Solutions [Ed: This patent 'gold rush' is burning the world because climate issues aren't being tackled, it's being treated as nothing but "premium" profiteering and monopolistic opportunity]

          The lithium-ion battery, introduced commercially in 1991, revolutionized the consumer electronics industry. Compared with older battery technologies, the lithium-ion battery was lightweight and compact, had high energy density, and required little to no maintenance, making it the ideal battery for mobile devices. It now powers the world’s most popular electronics, from smartphones to laptops to wearable devices. But the lithium-ion battery has now expanded far beyond the consumer electronics industry, sparking a gold rush of research and development aimed at producing lower-cost, higher-performance batteries that can be used in a wider range of applications. Over the past decade, developments in battery technology have led to rapid advances in the ubiquity of electric vehicles (“EVs”) and opened up new possibilities for energy solutions that will help reduce dependence on fossil fuels. With these technical advances comes an increase in legal activity, including intellectual property (“IP”) filings and litigation.

        • Getting Your First Filing Right [Ed: One paragraph before last here insinuate that the EPC is still taken into account, though EPO violates it every day]

          Wherever filing takes place and in whichever name(s), the making of a priority filing gives rise to a priority right which is often imperative to retain. Under Article 87 EPC, the applicant(s) for claiming priority by the end of the priority year must be the same, unless an original applicant A is added to by an applicant B or an original applicant is substituted by a successor in title. Priority entitlement must be correct at the filing date, but entitlement to a patent can be sorted later. This is the lesson to be learnt from the Marrafini priority issue which led to upholding of revocation of Broad’s CRISPR- related EP2771468 on opposition appeal (EPO Appeal T0884/18).

        • Bolt introduces tandem riding prevention system [Ed: EPO grants invalid patents]

          Bolt, the European scooter operator, has become the first company in the world to introduce a tandem riding prevention system and is on its way to obtaining a patent for the feature from the European Patent Office after its submission was accepted.

        • IceCure Medical CEO Issues Letter to Shareholders [Ed: Celebrating patent monopolies from issuer of fake patents]
        • Oramed Granted Key European Patent for Platform Technology in Oral Delivery of Proteins [Ed: Oramed seems to be unaware of the legitimacy crisis of European Patents; many many be presumed invalid]
        • Legally speaking – Artificial Intelligence is not even close to human intelligence [Ed: Lobbyists against the integrity of patent law have found a worthless Microsoft rag, Analytics India Magazine [sic], to publish some mindless “Hey Hi” fluff]

          In public proceedings, the Legal Board of Appeal of the EPO confirmed that under the European Patent Convention (EPC), an inventor designated in a patent application must be a human being. This was the judgement in combined cases J 8/20 and J 9/20, where the board just dismissed the applicant’s appeal. Here, both the applications were made by a Missouri physicist Stephen Thaler, whose AI-system DABUS had made the inventions.

        • EPO rejects patent application identifying AI system DABUS as inventor [Ed: Bots (“Hey Hi”) are not inventors and even the patent maximalists at the EPO haven’t fallen for this sick ploy]

          The Legal Board of Appeal of the European Patent Office (EPO) has affirmed the decision of the Receiving Section that a patent application cannot succeed where the designated inventor is not a person, but an AI machine. An auxiliary request had also been made indicating that a natural person was to have “the right to the European Patent by virtue of being the owner and creator of” the artificial intelligence system DABUS. This did not meet the provisions of the European Patent Convention (EPC) either.

        • High Growth SMEs And A Mix Of IPRs [Ed: Dehns is a notorious spreader of lies about the UPC and here it is citing Europe’s most corrupt, EPO and EUIPO, with lies in the headline (e.g. “IPR”) ]

          Haakon, IP Consultant in the Dehns Oslo office, shares his thoughts on high growth SMEs, referring to new reports from IP Australia, an EUIPO/EPO report and several papers on collaboration, open innovation and IP management.

          I just read a new report from IP Australia on high growth SMEs and how they use IPRs. First, the report finds that SMEs’ use of IPR is associated with high growth and higher wages. The conclusions align with what the EPO and EUIPO reported in their 2019 “High-growth firms and intellectual property rights.”

          Interestingly, both reports point to how a mix of IPR – for example of patents, trademarks and designs – associates even more with high growth than having only a single type of rights. My favourite topic: The new Australian report does not mention how trade secrets could be a part of the mix – but the EPO/EUIPO report discusses this (see p. 19).

        • [Conference Report] Patents, truth, PCT and more at the UIC School of Law International IP Practice Seminar [Ed: Some phonies that have managed to conflate patents with privacy and then promote patent maximalism with misnomers like "IP"]

          Back in October, University of Illinois Chicago School of Law’s Center for Intellectual Property (“IP”), Information, and Privacy Law organized and virtually hosted its International IP Practice Seminar. The Seminar, co-organized by the World Intellectual Property Organization (WIPO) and Kuhnen & Wacker, brought together international policymakers and practitioners to discuss the worldwide landscape of the most cutting-edge IP issues from a comparative perspective. Each speaker brought unique national and international perspectives across industries, technologies, and IP subject matter to the discussion. Adam Ernette (UIC) reports on the seminar.

        • Mazda Patents Reveal RWD Car With Rotary Engine and Hybrid Tech

          Mazda has filed several new patents in Europe, and they appear to be regarding a new rotary-engined vehicle. The unnamed model has a hybrid configuration, along with a transaxle gearbox. This is just the tip of the iceberg, though, but that does not guarantee it will be built.

          [...]

          As the Mazda aficionado who goes by the name taku2_4885 found, the rotary engine configuration that the Japanese marque has patented in Europe is part of a series of patents, and if they are put together, it appears that the company is planning a rear-wheel-drive sports car with a 48V hybrid configuration.

          The transmission is a transaxle, while the engine is a three-rotor, which is entirely new. It is worth noting that not all the images in the photo gallery are recently filed, some being as old as 2019, but they do make sense and form a potential new model.

        • FOSS Patents: Contributed article to Wolters Kluwer publication and discussed practical implications of German patent ‘reform’ on licensing negotiations

          Only intermittently do I author articles in German–and it’s more or less unprecedented for me to adopt a quasi-academic style with proper citations because it would just slow me down when adding content to this blog. But the rare exception has just occurred, and a German-language Wolters Kluwer publication very recently published a German-language article of mine, with various citations in the footnotes.

          A few years ago Wolters Kluwer’s Licensing Journal asked for permission to reprint a FOSS Patents post on a Qualcomm-BlackBerry licensing dispute that was resolved through binding arbitration. I gladly authorized it. Now, the November 2021 edition of Wolters Kluwer’s Zeitschrift für das Recht der digitalen Wirtschaft (which I would translate as “law journal for the digital economy”) has come out with a slight delay, and on pages 407-410 (the content of the November edition starts with page number 401) subscribers can find my article entitled Unterlassungsanspruch bleibt Hebel der Patentinhaber in Lizenzverhandlungen (“entitlement to injunctive relief continues to give patentees leverage in licensing negotiations”).

          The ZdiW’s editors are professors Bernd Hartmann and Mary-Rose McGuire, both of the University of Osnabrueck in Northern Germany. Professor McGuire was a witness at a parliamentary hearing on patent injunction reform, frequently comments on patent enforcement rules, and under her auspices, Maximilian Schellhorn (now practicing law at Hoyng Rokh Monegier) authored a doctoral thesis that took a critical perspective on the proposal for German patent injunction reform that was on the table at the time and subsequently adopted in an almost identical fashion.

        • CommWorks Solutions reexamination granted

          On December 23, 2021, about one month after Unified filed an ex parte reexamination, the USPTO granted Unified’s request, finding substantial new questions of patentability on the challenged claims of U.S. Patent 6,832,249. The ‘249 patent is owned and asserted by CommWorks Solutions, LLC, an NPE and subsidiary of IP Investments Group LLC, and is generally directed to multi-layered internet communication systems that allow for control over quality of service and priority of information delivery. It is being asserted against Comcast and RCN Telecom and is at issue in a declaratory judgment action brought by Altice USA. It was also previously asserted against Skybeam, Mediacom, AMG Technology Investment Group, Consolidated Communications Holdings, and Cable One, Inc.

        • Just 1 Judge Accounted for Nearly 25% of Patent Infringement Filings in 2021, New Report Says

          Patent owners continued to converge on U.S. District Judge Alan Albright’s Waco courtroom in 2021, though the number of patent infringement suits overall was flat, according to Unified Patents statistics.

          [...]

          Patent infringement suits boomed in U.S. District Judge Alan Albright’s courtroom in 2021, but they were flat across federal courts as a whole, according to Unified Patents’ annual Patent Dispute Report: Year in Review, released Monday

          America Invents Act (AIA) challenges dropped by 12 percent at the Patent Trial and Appeal Board, but ex parte reexaminations were on the rise. Unified Patents Chief IP Counsel Jonathan Stroud chalked it up to the PTAB’s Fintiv framework discouraging some AIA petitioners, plus a few reexaminations that led to stay orders in high-profile cases.

        • USPTO Announces Deferred Subject Matter Eligibility Response Pilot Program [Ed: Software patent litigation profiteer Michael Borella is cheering on paid and corrupted politicians looking to change the law to allow bogus patents in defiance of the Supreme Court, common sense, software professionals and so on]

          On January 6, 2022, the U.S. Patent and Trademark Office announced a new program with the goal of increasing examiner efficiency. The Deferred Subject Matter Eligibility Response (DSMER) Pilot Program will launch on February 1, 2022 and end on July 30, 2022, unless extended.[1] The Program allows applicants to, in certain circumstances, not include a substantive reply to a 35 U.S.C. § 101 rejection in an Office action response. The USPTO initiated the Program at the suggestion of Senators Thom Tillis and Tom Cotton (see “Senators Tillis and Cotton Propose Sequenced Examination Approach”).

          [...]

          For a participating application, the applicant may file a response that defers “presenting arguments, evidence, or amendments in response to the SME rejection(s) until the earlier of final disposition of the participating application or the withdrawal or obviation of all other outstanding rejections.” But, the applicant must respond to all other objections and rejections in the Office action. In other words, if the claims are rejected on the grounds of subject matter eligibility and obviousness, the applicant must respond to the obviousness rejections and can choose whether to respond to the eligibility rejections.

          The “final disposition” above is when the earliest of any of the following events occurs: (i) mailing of a notice of allowance, (ii) mailing of a final Office action, (iii) filing of a notice of appeal, (iv) filing of an RCE, or (v) abandonment of the application.[3] In the case that the applicant receives a subsequent non-final Office action in which only the § 101 rejection remains, the applicant must respond to this rejection even though the application has not reached a final disposition.

          Further, the applicant’s deferral of § 101 responses can be on a rejection-by-rejection basis.[4] For instance, if an Office action contains two different § 101 rejections, the applicant may defer one, the other, or both. The USPTO also contemplates removing an application from the Program in certain rare situations, such as when a participating examiner resigns or retires and the application is not reassigned to another participating examiner.

        • Timing of CVSG Briefs: American Axle Coming Soon [Ed: This is a lie from Dennis Crouch. Patents are not properly. He says “form of” because he knows he’s dishonest. “Although patents are a form of private property…]

          Although patents are a form of private property, they are also expressly a tool of public policy. When a private patent lawsuit of interest reaches the Supreme Court, the Court regularly turns to the President’s administration for its views on how a decision may impact patent law and innovation writ large. That request for an amicus brief from the government is termed a CVSG – Call for the Views of the Solicitor General. One problem with CVSGs is that they typically add several months to the certiorari process because the DOJ spends substantial time collecting input from various government branches and outside interests before drafting and filing its brief. In patent cases, a Gov’t amicus brief is often the most important at the certiorari stage — or at least the most predictive of the outcome.

        • The IPKat welcomes new GuestKats

          The dawn of a new year is here, and in the spirit of renovation, The IPKat welcomes new GuestKats Gabriele Girardello, Jan Jacobi and Becky Knott to our family.

        • In memoriam: William (Bill) Cornish (1937 – 2022) [Ed: Jeremy Phillips back to IP Kat, which he founded and then left, as his friend has just died]

          I first encountered Bill Cornish in 1974 when, as a raw intellectual property doctoral student, I travelled up from Canterbury to discuss my chosen topic and seek his advice. In the 1970s, people who taught IP were almost as rare as those who studied it. We must have been a little wary of one another, since we scarcely spoke about the subject at all — me because, as a neophyte, I was unwilling to display my ignorance of it and Bill because, as I was later to discover, had so much to talk about that interested him more than straight IP. But what I did find out, in that first meeting, was how many important people he knew and how well he had assessed their usefulness to me in my chosen subject.

          It was more than a decade later, in 1985, that I next encountered Bill. He was then about to succeed the legendary Professor Friedrich-Karl Beier as President of ATRIP, the Association for Advancement of Teaching and Research in Intellectual Property. It turned out that I had made sufficient of an impression for him to summon me from the wilds of Queen Mary College’s Mile End Campus in order to act as Secretary to ATRIP during his term of office. It was during Bill’s two-year presidency that I got to know him much better. I can testify that he was a pleasure to work with. His instructions to me were always brief, relevant and unambiguous. To be honest, he didn’t really need a secretariat. I often found that, by the time I came to carry out his orders, he had already performed to perfection the administrative chores with which he had tasked me.

          ATRIP conferences displayed Bill at his best. Here he could share his deep understanding of IP with colleagues from around the world. A good and diplomatic listener, he gave his ear to all who sought it. Quiet and serious by nature, he was always on duty, though we all enjoyed watching him let his hair down at venues where a piano might be found; he would play though a series of exquisitely executed pieces with a verve and panache that stood in stark contrast with the solemnity of his set-piece speeches.

        • Counsel set out concerns about EPO after latest BoA move announcement [Ed: Serious corruption; nobody punished]

          In light of the proposal to move the offices of the EPO Boards of Appeal back to central Munich, just five years after they were relocated to the suburb of Haar, counsel told Managing IP they’d be more than pleased the see the BoA return.

          They noted that the move had given them pause to reflect on the whole episode and what it said about the EPO, however.

          “From commercial point of view, it’s a catastrophe,” said Beat Weibel, chief IP counsel at Siemens in Munich.

        • Asia patent trends in 2022: SEP rates, court changes and more [Ed: Another think tank manned only by patent maximalists and profiteers, to be covered by so-called ‘journalists’ they subsidise for propaganda and lobbying]

          Patent lawyers from China, India, Japan, South Korea and Singapore talk about SEPs, pharma patents and other matters they’re keeping an eye on this year

        • Software Patents

          • Access Advance licence is non-FRAND, rules Regional Court Düsseldorf [Ed: Software patents being advanced into Europe or creeping into illegal territories by “HEVC Advance”]

            Four members of the Access Advance patent pool, formerly known as HEVC Advance, have been in dispute with Vestel since summer 2020 over six patents for the HEVC/H.265 standard. However, the court has declared the member licenses to be non-FRAND. The technology enables the encoding of video content and images, and is used in television sets and for streaming on mobile devices.

            Pool members GE Video Compression, Dolby, IP Bridge and Philips are the plaintiff accusing Vestel of infringing patents EP 25 59 245, EP 28 42 318 (both GE), EP 27 77 270, EP 27 77 269 (both Dolby) as well as EP 17 39 973 (IP Bridge) and EP 29 50 544 (Philips). All patents are SEPs.

            [...]

            The court’s decision to find the pool members’ licensing offer non-FRAND surprised the patent community. In a similar case, in summer 2020 the same judge found HEVC Advance’s licenses to be FRAND in a dispute with MAS Elektronik. That case involved some of the same patents as the present case, namely Dolby’s EP 270 and GE’s EP 245.

            Recently, in almost all other major disputes in which patent pools sued implementers, German patent chambers have generally ruled favourably for patent holders. An example is in the dispute between Via Licensing against TCL or in the protracted proceedings between MPEG LA and Huawei.

          • $2,000 for Xperi Holding prior art [Ed: Software patents again. Use Alice/Section 101 instead of "prior art"]

            On January 4, 2022, Unified Patents added a new PATROLL contest, with a $2,000 cash prize, seeking prior art on at least claim 1 of U.S. Patent 11,012,720. The patent is owned by Xperi Holding Corporation, an NPE. The ’720 patent generally relates to selectively providing a buffer time prior to deletion of a media content item.

          • Another MicroPairing patent challenged

            On January 4, 2022, Unified filed a petition for inter partes review (IPR) against U.S. Patent 7,178,049, owned by MicroParing Technologies LLC, an NPE. The ’049 patent is generally directed to managing applications in a multi-processor system in a vehicle and was asserted against several car companies in 2021, including Mazda, Kia, Hyundai, Honda, Toyota, GM, Nissan, Mitsubishi, FCA, and Volvo.

          • $2,000 for HY LIT Radio Tech prior art

            On January 4, 2022, Unified Patents added a new PATROLL contest, with a $2,000 cash prize, seeking prior art on at least claim 1 of U.S. Patent 8,793,330. The patent is owned by HY LIT Radio Technologies Inc., an NPE. The ‘330 patent generally relates to a system and method for displaying graphics, text, animation, video, and other content.

          • Patent splurging: how in-house would spend budget increases [Ed: Litigation fanatics and profiteers just want to sue more and more for profit, say they "would invest in people" (what people? Patent trolls? Brutal litigators?); they are destroying companies and people's careers]

            Four lawyers tell Managing IP that they would invest in people, foreign filings and patent quality if their budgets went up by 20% or more

          • UK: Health-Conscious IP Strategies [Ed: When HGF isn’t too busy spreading lies for the illegal and unconstitutional UPC it helps the EPO spread lies and propaganda terms (“MedTech IP”) as loophole for unlawful software patents]

            As MedTech patent filings grow, so do the number of rights obtained by applicants operating in the healthcare market. In addition to restricting the actions of new entrants in the marketplace, patent portfolios can be monetised to provide licensing income and returns on R&D investment. The graph below (based on statistics from the European Patent Office) shows that the number of MedTech patents granted in Europe has vastly increased over the last ten years, reflecting the expansion of R&D activities throughout this industry.

      • Trademarks

        • Board of Appeal sweeps floor with Invalidity Division: vacuum cleaner bags do enjoy design right protection [Ed: Reminder that the EUIPO’s Boards of Appeal, which are controlled by a crooked crony, are not too concerned about actual novelty]

          With the holiday season behind us, the vacuum cleaner is a valuable ally to get rid of leftover pine needles or bits of broken baubles. For those Kats that have a vacuum cleaner operating with cleaner bags, a decision by the EUIPO (Third) Board of Appeal (‘BOA’) may be ofparticular interest. In the case of Miele v. Green Label (of 23 August 2021), the BOA ruled that vacuum cleaner bags enjoy design right protection, overturning a previous decision by the Invalidity Division.

        • Four US trademark and copyright trends shaping 2022: lawyers [Ed: A site called Managing IP [sic] conflating trademark law and copyright law]

          Attorneys may finally see the effects of the CASE Act and the Trademark Modernization Act in the new year, among other things

        • The TTABlog®: Professor McCarthy Criticizes CAFC’s Stance on Article III Standing in Brooklyn Brewery Case

          Professor J. Thomas McCarthy has provided to me his comments on the CAFC’s October 27, 2021 decision in the Brooklyn Brewery case, in which the appellate court largely affirmed the TTAB’s denial of Plaintiff Brooklyn Brewery’s petition for cancellation of a registration for the mark BROOKLYN BREW SHOP (in standard form) for beer-making kits. However, as to the Board’s dismissal of Brewery’s opposition to the stylized form of the mark for “sanitizing preparations for household use,” the court ruled that Brewery lacked Article III standing to appeal that decision because it failed to demonstrate that it would suffer injury if the registration were granted, since the Brewery does not sell sanitizing preparations. That, in Professor McCarthy’s view, was a serious error. His comments are set out below.

          [...]

          In my opinion, the court’s embrace in the Brooklyn Brewery case of a novel requirement of a competitive relationship is both unprecedented and alarming. I can only hope that it will not be read by this or other courts to work a sudden and far-reaching change in the legal test for likelihood of confusion. A century ago, courts did require competition between the parties for infringement by likelihood of confusion to occur. For example, in 1912 the Seventh Circuit found no infringement of the trademark BORDEN for milk by the use of BORDEN for ice cream because the goods were non-competitive. Borden Ice Cream Co v. Borden’s Condensed Milk Co, 201 F. 510, 513 (7th Cir. 1912).

          Under that early view of trademark law, unless there was competition between the parties, there could not be a diversion of customers and thus there could be no injury to the mark owner. Case law in the early 20th century decisively rejected the earlier precedent. For many decades since, no court, including the Federal Circuit, has held that the parties must be in competition with each other for a likelihood of confusion to occur. See McCarthy on Trademarks and Unfair Competition, §24:13 (Competition is Not Necessary for Confusion to Occur.) The Federal Circuit itself held that the “related goods test measures whether a reasonably prudent consumer would believe that noncompetitive but related goods sold under similar marks derive from the same source, or are affiliated with, connected with, or sponsored by the same trademark owner.” In re Save Venice New York, Inc., 259 F.3d 1346, 1355, 59 U.S.P.Q.2d 1778 (Fed. Cir. 2001),

        • Dairy good: Judge rules ‘gruyere’ is not a term exclusive to Europe [Ed: Monopolies on words and name never end too well]

          A judicial ruling has determined that “gruyere” is a generic style of cheese that can come from anywhere.

          Senior Judge T. S. Ellis III of the United States District Court for the Eastern District of Virginia upheld the August 5, 2020, precedential decision of the U.S. Patent and Trademark Office’s Trademark Trial and Appeal Board. The decision reaffirms that all cheesemakers, not just those in France or Switzerland, can continue to create and market cheese under this common name.

          In the judicial decision made public yesterday evening, the Consortium for Common Food Names,U.S. Dairy Export Council, National Milk Producers Federation, and a coalition of other dairy stakeholders prevailed in their sustained fight to preserve the ability of all actors in the U.S. marketplace to use generic terms.

        • Dairy scores key victory in US fight for cheese names [Ed: Monopolies on names of cheese]
        • Why collaboration is crucial for trademark industry innovation – exclusive IP office roundtable [Ed: Grotesque terms such as "trademark industry" (yes, industry) show what happened to what was supposed to exist for one purpose but got corrupted over time]

          There have been some major innovation developments at national offices around the world in the past 18 months, as new partnerships have been struck to bring non-core tools and services to users.

        • 3D trade marks return to equilibrium? The end of the Gömböc saga [Ed: CJEU fires back against #trademark maximalists?]

          In 2020, upon referral by the Supreme Court of Hungary (Kúria), the CJEU issued a leading case on the interpretation of Art. 3(1)(e) of the Trade Mark Directive related to a 3D shape (Gömböc, C-237/19, Kat post, here). The Kúria issued its decision following the CJEU ruling in late 2021 (not yet published online at the time of writing) and put an end to the case, ruling that the shape of the Gömböc cannot be protected under EU trade mark law.

          Before delving into the reasoning of the Court, a refresher in Euclidean solid geometry will be helpful. Until recently, it was believed that a three-dimensional body having only two equilibrium points (one stable and one unstable) did not exist. This conjecture was tested by two Hungarian engineers who not only proved it wrong, but actually built the three-dimensional body representing such a shape, naming it the Gömböc (read more about the etymology of this word in the Kat post on the CJEU decision).

          [...]

          The applicant also sought registration of the Gömböc shape for “decorative items” in class 14 and “decorative crystalware and chinaware” in class 21. The Court addressed the two product classes together.

          The Court first observed that the relevant public considers the Gömböc shape to be the tangible symbol of a mathematical discovery. Hence, the relevant public wishes to purchase a Gömböc because of what it represents in terms of the history of science. The main objective of trade marks is to distinguish between products or services of competitors. The substantial value of the shape of a Gömböc stems, as the Court put it, “from an intellectual creation” and not from the intent to distinguish certain goods from goods of a competitor.

          Trade mark law is not the correct intellectual property right to protect such shapes. Accordingly, the Court ruled that the shape of a Gömböc is excluded from registration for decorative items in classes 14 and 21, based on Art. 3(1)(e)(iii) of the Trade Mark Directive (and the Hungarian statutory provisions implementing it).

        • TTAB Sustains Section 2(d) Opposition to ALZHEIMER’S NEW JERSEY WALK TO FIGHT ALZHEIMER’S & Design for Charitable Fundraising

          The Board sustained this opposition to registration of the mark ALZHEIMER’S NEW JERSEY WALK TO FIGHT ALZHEIMER’S & Design on the ground of likelihood of confusion with the common law mark WALK TO END ALZHEIMER’S & Design, both marks for charitable fundraising services. The Board readily rejected the applicant’s prior registration (a/k/a Morehouse ] defense. Alzheimer’s Disease and Related Disorders Association v. Alzheimer’s New Jersey, Opposition No. 91245121 (December 31, 2021) [not precedential] [Opinion by Judge Robert H. Coggins].

        • The TTABlog®: TTABlog Test: How Did These Three Recent Section 2(d) Appeals Turn Out?

          Here are the first three TTAB decisions of the new year in appeals from Section 2(d) refusals. No hints today. How do you think they turned out? [Answer in first comment].

        • [Guest post] Retromark Volume X: the last six months in trade marks – The IPKat [Ed: What 2021 was like for trademark maximalists that think shapes are "owned"]

          Retromark turns ten volumes, making it about four and a half human years old. That’s roughly 30 in dog years and closer to mid-30s in cat years (apparently). A lot has changed over that time, but the trade mark cases keep coming.

« Previous Page« Previous entries « Previous Page · Next Page » Next entries »Next Page »

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channels: Come and chat with us in real time

New to This Site? Here Are Some Introductory Resources

No

Mono

ODF

Samba logo






We support

End software patents

GPLv3

GNU project

BLAG

EFF bloggers

Comcast is Blocktastic? SavetheInternet.com



Recent Posts