Bonum Certa Men Certa

Links 12/5/2021: New Audacity and Musescore Owner Named, Microsoft May Lose "JEDI" (Trump's 'Bailout Package')



  • GNU/Linux

    • Audiocasts/Shows

      • mintCast 360.5 – What’s a Distro?

        2:11 Bi-Weekly Wanderings 43:58 The News 1:05:46 Security Update 1:07:29 Announcements & Outro

        In our Innards section, what makes a distro a distro? It’s Elementary, my dear Watson.

      • Distro in the Rough | LINUX Unplugged 405

        We’re taking a look at an underdog distro. We may have found a diamond in the rough with a few tricks up its filesystem.

        Plus our review of the ODROID-Go Super an Ubuntu-powered handheld, and our tools for laptop battery health.

      • This YouTuber now runs the Audacity project

        Tantacrul is a designer and musician who has been running Musescore for years. Now he's set his sights on Audacity.

      • Endeavour OS Review | Why THIS Is The Best Linux Distro For Intermediate Users In 2021? (NEW!)

        Tried ALL the Linux distros and Ready to take the NEXT STEP? Endeavour OS is a POWERFUL and FLEXIBLE Arch-Based Distro that really puts the POWER in your hands. Endeavour OS gets the newest technologies, advanced features and latest package updates before anybody else. It also gives you a lean system that you can build according to your needs.

      • Termite Is Dead, Go Install Alacritty Right Now

        Recently the Termite maintainer decided that he has had enough dealing with the VTE library and rather than handing the project off to someone else has decided to just kill the project and suggest that people move to Alacritty instead. He also calls out GNOME for creating a really hostile environment for developers who want to use their libraries.

    • Kernel Space

      • Latest Linux kernel introduces preliminary Apple M1 support

        The latest version of the Linux kernel, Linux 5.13, introduces support for Apple's M1 system-on-chip and is now available as a release candidate.

        Apple M1 support was previously reported for Linux 5.13, though no release date was mentioned at the time. On Tuesday, however, Linux kernel principal developer Linus Torvalds announced that the release candidate version is now available for public testing.

        Although security researchers have successfully booted Linux on Apple Silicon in the past, it required some fairly technical workarounds. With preliminary support in Linux 5.13, Linux distributions and systems will have a much easier time running on Apple's SoC.

      • Linux Kernel 'Linux 5.13' Will Support Apple M1 System-on-Chip | Now Available for Public Testing

        The Apple M1 chip has recently started to gain much traction and is now fully recognized as another possible processor to choose for high-end performance. It seems like the recognition now stems past Apple as the latest version of the popular Linux kernel known as the Linux 5.13 would introduce support for Apple's M1!

        Apple M1 on Linux

        Apple made headlines for deciding to step away from their long-time chip supplier, Intel, as the company decided to manufacture their own CPUs. Apple made headlines with their M1 chip and are now spreading the chip to other units that they own. Aside from Apple, it now looks like Linux is recognizing its power.

        According to the story by AppleInsider, the Linux 5.13 reportedly introduces support for Apple's popular M1 system-on-chip and is currently available as a certain release candidate. The Apple M1 support was also previously reported for the Linux 5.13 but there was no release date given during that time.

      • Graphics Stack

        • AMD Releases ROCm 4.2 Compute Stack

          Just over one month has passed since the release of Radeon ROCm 4.1 and it's now been succeeded by the ROCm 4.2 feature release.

          The Radeon Open eCosystem 4.2 release comes with changes such as:

          - HIP target platform macros were added for easily targeting HIP_PLATFORM_AMD / HIP_PLATFORM_NVIDIA code differences such as including different header files.

    • Applications

      • Kodi 19.1 Matrix software update brings Xbox support and more

        Kodi formerly XBMC the free and open-source media player software application developed by the XBMC Foundation, a non-profit technology consortium, has this week released a new update in the form of the Kodi 19.1 Matrix providing a wealth of bug fixes, tweaks and enhancements to the software. Kodi is available for a wide variety of different operating systems and hardware platforms and comes with a 10-foot user interface for use with large screen televisions and the like.

        Thanks to its open source and cross-platform design, with its core code written in C++, modified versions of Kodi-XBMC together with a JeOS have been used as a software appliance suite or software framework in a variety of devices including smart TVs, set-top boxes, digital signage, hotel television systems, network connected media players and embedded systems based on arm platforms such as the Raspberry Pi and similar.

      • Jakub Kadlčík: A year with Emacs

        Why would I commit such a heinous crime? After ten years, I came close to hitting my peak knowledge about VIm. Of course, nobody can claim to truly know Vim in its full depth but I got to the point where the learning curve slowed to a deadly pace and new tricks just slightly adjust your approach when solving obscure scenarios. The only real game-changer yet to be conquered was plugins development. I tried but I dislike VimL as a language for writing code and thus I have no intention of doing so.

        On the other hand, I am fascinated by the functional programming paradigm and Lisp in particular. This alone, was a strong enough impulse for migrating to Emacs. I won’t hit the ceiling regarding custom package development.

        Also, I came to realize, that my Vim workflow is different than for most other users (at least in my social circle). Everyone seems to have a shell-centric approach, find-ing, grep-ing, cat-ing their way through a project, and then opening the intended file in Vim, editing, and closing. I do the same thing when it comes to searching within a project but I do it in a separate terminal. When it comes to Vim, I start it once, do everything from within, and then close it after six months when a new Fedora is released and I need to upgrade. If it reminds you of something, it’s Emacs.

        There is also a couple of tempting Emacs features but about them later.

    • Instructionals/Technical

      • How to install Minecraft Bedrock on a Chromebook

        Today we are looking at how to install Minecraft Bedrock on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

      • How To Install Samba on CentOS 8 - idroot

        In this tutorial, we will show you how to install the Samba on CentOS 8. For those of you who didn’t know, Samba is a free and open-source software that can be used to share files, folders, and printers between Linux and Windows systems.

        This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of the Samba on a CentOS 8.

      • How to Mount Partitions using UUID in Linux

        If you use lots of disks that regularly changed or moved, it's preferred to mount the partition using UUID. This is because OS may change device names in some situations like adding another disk. This may end with issues with booting. UUID is unique and independent from the actual device names.

        In this tutorial, we are going to learn how to mount partitions using UUID in a Linux system.

        Firstly, find the UUID of the device partition that is going to be mounted. You can use the following command to find the UUID of the partitions.

      • Raspberry Pi Articles

        Fresh off publishing a bunch of articles on learning tmux yesterday, I finally took the time to also migrate my older Raspberry Pi articles. Given the timeline, they’re mostly about RPi4 release and thoughs on Raspberry Pi 4 platform.

      • How to Create Virtual Machine with Vagrant and VirtualBox

        This article shows how to create a Vagrant project to install a vagrant box, configure a guest machine, and understand important configurations and commands.

      • How to generate and backup a gpg keypair on Linux

        Gnu Privacy Guard (gpg) is the Gnu project free and open source implementation of the OpenGPG standard. The gpg encryption system is called “asymmetric” and it is based on public key encryption: we encrypt a document with the public key of a recipient which will be the only one able to decrypt it, since it owns the private key associated with it. Gpg allows us also to sign documents using our private key and let others verify such signature with our public key. In this tutorial we will see how to generate and create a backup of a gpg keypair.

      • How to run a NYM€ mixnode €· Pablo Iranzo Gómez's blog

        Some time ago I’ve started running a NYM mixnode. NYM is a project that targets improving privacy by decomposing network packages from different hosts, so that origin and target cannot be traced.

      • How to run a NYM€ Validator €· Pablo Iranzo Gómez's blog

        As said in the article about mixnodes, NYM is a technology aiming for providing privacy for the communications.

        Apart of the mixnodes, other key piece in the infrastructure are the validators.

        As said, the project uses Open Source technology to run, and they have a nice docs with details on how to run a node at https://nymtech.net/docs/, and the one relevant for mixnodes at https://nymtech.net/docs/run-nym-nodes/validators/.

        In this case, we can follow the instructions for compiling, but I faced some issues (compiling went fine, but initial sync failed), so in this case, we will use the pre-compiled version provided with the 0.10.0 release.

      • How to check if a system is€ virtual €· Pablo Iranzo Gómez's blog

        I was improving a playbook in Ansible and wanted to find a way to find if a system was virtual or not to decide about some tunning like setting tuned-adm profile virtual-guest or disable the power off when the lid is closed.

      • How to install Krita on Deepin 20.2

        Today we are going to look at how to install the latest version of Krita on Deepin 20.2. As seen in the video, a person updates the repositories of our system, install flaptak, add the flathub repository, install Flowblad, and then reboot your computer. Enjoy!

      • How to cast video from Android to Linux | FOSS Linux

        There are many apps and tools out there that will help you cast your Android screen to your Linux PC. However, the main problem is that it only mirrors what’s on the screen and not the audio. This can be an issue if you are trying to cast video from Android, which requires you to forward both video and audio.

        Also, the tools that do let you effectively cast video (including its audio) from your Android device to your Linux PC either require a rooted Android phone or suffers from latency issues. And if not that, then it’s a premium tool and requires you to pay money.

        But it’s Linux we are talking about! Ain’t there a free and open-source tool that will help us cast video and forward audio from Android to Linux?

      • What is the OSI model?

        Today I tweeted something about how the OSI model doesn’t correspond well to the reality of how TCP/IP works and it made me think – what is the OSI model, exactly?

      • How to set up an MP4 video player on Ubuntu

        Are you new to Ubuntu? Trying to figure out how to play an MP4 video on your Ubuntu desktop but don’t know what video player to use or how to do it? We can help! Follow along as we show you how to set up an MP4 video player on Ubuntu!

      • How to Fix Bluetooth Connectivity Issues in Ubuntu Linux

        Although Ubuntu Linux is a stable and robust operating system, sometimes Bluetooth connections with external devices do not work properly.

        If you have been using Bluetooth devices on your computer, you might have noticed that you need to reconnect your Bluetooth devices whenever the computer wakes up from sleep or hibernation. And that's just one problem to speak of.

        This guide will show you how to fix common Bluetooth connectivity issues on Ubuntu Linux so that you do not have to reconnect Bluetooth devices whenever you want to work on your PC.

      • How To Use Nmap - A Comprehensive Guide: Basics To Advanced

        Nmap is a free and open-source network discovery and security audit tool. Nmap stands for “Network Mapper“.

        Whether you are a network engineer or a penetration tester, Nmap is one of the most important tools in your arsenal.

    • Games

      • Godot Engine - Announcing Go Godot Jam

        Meet Adrian, a game developer from Stockholm, Sweden. He co-organises Go Godot Jam, a one-month long community festival with a game jam included. Adrian answered a few questions.

        [...]

        Godot is a great game engine that unlocks possibilities for game developers. It is a free, open-source 2D and 3D engine that provides many features so that you can focus on your game.

        Yet most people start developing games with proprietary engines such as Unity or Unreal. They are solid engines with a proven track record and a vibrant ecosystem. One advantage having experience with more than one engine can enable people to create better games. In the end, it's up to each individual to pick the one that they’ll be most comfortable with to fulfil their creative vision.

        I know that Godot has a lot to offer to new developers, with a distinctive approach to game development which enables more people to express their creativity. It's open, focused on user-friendliness, easy to learn, yet feature-packed and a great fit for many types of games. As such, I want to increase awareness of the engine so that more users decide to try it out and add it to their toolset.

      • Try out the new teaser for Drova - Forsaken Kin, an upcoming 2D action RPG

        After already being available on itch.io, the free teaser for Drova - Forsaken Kin is now available on Steam and it's been upgraded for the new release.

        "Drova - Forsaken Kin is an Action Based RPG filled with handcrafted open world adventures inspired by the much renowned Gothic game series. A society has discovered the power of a dead empire: to capture the spirits that govern nature and rule over them instead. However, the anger of the remaining spirits divided them. Where will you stand?"

    • Distributions

      • Reviews

        • Bodhi Linux 6.0 livestream Distro Review

          In this live stream, we took a look at the new release of Bodhi Linux - live! There were some technical difficulties, and some rough edges, but it was a fun experience for sure. Check out Bodhi Linux, it's an interesting distribution for sure.

      • New Releases

        • Bodhi Linux 6.0 Released, This is What’s New

          A new version of Bodhi Linux is available to download, based on the Ubuntu 20.04.2 point release.

          As well as offering a newer version of the Linux kernel, Bodhi Linux 6.0 carries a commendable crop of changes. This includes several major improvements to distro’s distinctive Moksha desktop, plus important bug fixes, theme tweaks, and more.

          Keep reading for more more detail on what’s new in Bodhi 6.0, or skip straight to the download section to grab one of the three .iso images that are available so you can road-test the system for yourself.

      • BSD

      • IBM/Red Hat/Fedora

        • IBM leapfrogs everyone with its 2nm chips

          As TSMC charges to 5nm transistor designs and Intel struggles for 7nm, IBM has topped them all with the world’s first 2-nanometer node chip.

          OK, it won’t come to market for four years, according to IBM, and they might not be the first name that comes to mind when you think of processor design, but they are the quiet power in the semiconductor world.

        • IBM Exec: ‘There’s Never Been A Better Time To Be’ A Partner [Ed: CRN seems to have been reduced to pure marketing, not news]

          IBM GMs David La Rose and Evaristus Mainsah told CRN about channel partner-focused announcements at the tech giant’s Think 2021 conference, including a new competency framework for partners, message acceleration workshops to help partners with marketing and expansion of Cloud Engagement Funds for multiple partner types.

        • What CIOs and CMOs can learn from each other

          It used to be that CIOs were strictly concerned with the technical nuts and bolts of product development. That’s no longer the case. With IT becoming more of a revenue driver for organizations, CIOs are asking their teams to take a customer-first approach to application development and design.

          What customers want and how they get it can change quickly. The problem is, what customers want and how they get it can change quickly. For example, a person’s buying patterns during the holidays are probably different in the spring. How they buy can change, too, sometimes during a single transaction – for instance, a person might start a purchase on their desktop PC but eventually click “buy” on their mobile device.

          Customers are complicated. Your team needs help developing applications that meet customers wherever they are on their buying journey. And you need help creating a truly customer-centric IT organization.

        • Digital transformation: 4 ways to build in security

          But just because it’s essential doesn’t mean it’s easy. Change is hard, and successful digital transformation takes a village – from the IT partners and internal staff who help implement the tools to executives communicating the efforts to the team members interfacing with the new technology each day.

          While migrating to new systems and following new protocols is hard enough, there’s another vital part of digital transformation strategy that often gets overlooked. While setting up infrastructure and training employees is typically the main focus, securing these new and exciting projects can sometimes take a back seat.

      • Debian Family

        • Mirror in USA

          There is a new repo mirror available for Sparkers, located in Chicago, USA.

      • Canonical/Ubuntu Family

        • You Can Now Upgrade Ubuntu 20.10 to Ubuntu 21.04, Here’s How

          Upgrades from Ubuntu 20.10 to Ubuntu 21.04 were blocked until today (May 11th) due to a bug that made some systems to end up in an unbootable state if they use EFI 1.10. An updated shim version was released today, which is compatible with EFI 1.10, to make upgrades from Ubuntu 20.10 to Ubuntu 21.04 possible.

          Dubbed Hiruste Hippo, Ubuntu 21.04 introduces numerous new features and improvements, such as a newer kernel (Linux 5.11), the Wayland session enabled by default, GNOME 40 apps, and updated internals to some of the most recent GNU/Linux technologies.

        • Ubuntu 21.04 (Hirsute Hippo) Gets Its First Kernel Security Patch, Update Now

          Ubuntu 21.04 was released three weeks ago and ships with the Linux 5.11 kernel series by default, which has now been patched by the Ubuntu Kernel Team against three recently discovered security vulnerabilities.

          These include CVE-2021-3489 and CVE-2021-3490, two vulnerabilities discovered by Ryota Shiga and Manfred Paul respectively in Linux kernel’s eBPF implementation. Both of these security issues could allow a local attacker to crash the system by causing a denial of service (DoS attack) or execute arbitrary code.

        • Kubuntu and Other Ubuntu 18.04 Flavours Reached End of Life

          Ubuntu 18.04 LTS is supported until April 2023, but the flavours finally reached the end of life in May 2021.

          This includes popular flavors like Kubuntu 18.04, Ubuntu MATE, and others.

          In case you do not know, usually, the Ubuntu flavours get 3 year support in a row while Ubuntu’s official release gets 5 years of support.

          [...]

          While you can already find bleeding edge versions available for some flavors like Ubuntu MATE 21.04, the next best option for users with Ubuntu 18.04 flavors is to upgrade to another flavor based on Ubuntu 20.04 LTS.

          Of course, considering this is already 2021, you will have two more years of support for them.

          If you are aiming for something with a long term support cycle, you may want to stick to the official Ubuntu release, or you can choose Linux Mint over Ubuntu for a similar support cycle.

          If you have a 32-bit installation, you will have to opt for a fresh installation of any latest Ubuntu release/Ubuntu-based distro of your choice.

          If you have a 62-bit installation on board, you can choose to upgrade your flavor to Ubuntu 20.04 LTS base release.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • 'I’m Possibly Alive Because It Exists:' Why Sleep Apnea Patients Rely on a CPAP Machine Hacker

        Christy Lynn was tired all the time, and, after months of trying to diagnose the problem, one of her doctors thought they’d figured out why.

        “I didn’t fit any of the descriptions for sleep apnea,” she told me on a phone call. “I’m a woman, I wasn’t overweight. No one would have thought to test me, except I was seeing a doctor who had a similar medical history.”

        Lynn, who lives in rural Arizona, did an at-home oximetry test, which tests blood oxygen levels, and then a sleep study. She was diagnosed with a difficult-to-treat form of sleep apnea, a disorder in which patients suddenly stop breathing for periods of time while they sleep that most often affects overweight men. She was given a continuous positive airway pressure (CPAP) machine and face mask—which blows air down a patient’s windpipe to keep the airways open—and sent home.

        But a year-and-a-half and three sleep doctors later, her symptoms hadn’t improved. Her Apnoea-Hypopnea Index (AHI), which refers to the number of times she stopped breathing per night, was “horrible.”

      • AV1 Decoder dav1d Lands 10-bit AVX2 Assembly For Big Speed-Up, Thanks Facebook + Netflix

        For those making use of 10-bit AV1 content and using dav1d as the performant CPU-based decoder, the performance on modern Intel and AMD processors is about to be a heck of a lot better.

      • 6 start-to-finish guides to deploying open source technology at your organization

        There are a lot of reasons to deploy open-source operating systems and software: A large community of people helping to constantly improve it, it's free, and you can even participate in its improvement.

        Open source does come with a bit of a catch, though: You'll need to do a lot of legwork yourself that is often automated when using paid products. When done correctly, however, open source operating systems like Linux, database software like MariaDB, and automation software like Kubernetes can be invaluable to an organization.

        These TechRepublic Premium start to finish guides by TechRepublic's open-source expert Jack Wallen will help you get started with invaluable open-source tools without the headache.

      • Web Browsers

        • Mozilla

          • Peace of mind browser add-ons for Firefox

            The web can be as wonderful as it is overwhelming. Fortunately there are ways you can customize Firefox with add-ons to achieve a more harmonious browsing experience. Here are a few examples—from soothing visual enhancements to great tools for mental clarity and peace of mind.

      • SaaS/Back End/Databases

        • insideBIGDATA Latest News – 5/11/2021

          Percona, a leader in open source database software and services, announced a preview of its 100% open source Database as a Service (DBaaS), which eliminates vendor lock-in and enables users to maintain control of their data. As an alternative to public cloud and large enterprise database vendor DBaaS offerings, this on-demand self-service option provides users with a convenient and simple way to deploy databases quickly. Plus, using Percona Kubernetes Operators means it is possible to configure a database once, and deploy it anywhere.

      • FSF

        • GNU Projects

          • GNU Guix 1.3.0 released

            We are pleased to announce the release of GNU Guix version 1.3.0!

            The release comes with ISO-9660 installation images, a virtual machine image, and with tarballs to install the package manager on top of your GNU/Linux distro, either from source or from binaries. Guix users can update by running guix pull.

            It’s been almost 6 months since the last release, during which 212 people contributed code and packages, and a number of people contributed to other important tasks—code review, system administration, translation, web site updates, Outreachy mentoring, and more.

            There’s been more than 8,300 commits in that time frame, which we’ll humbly try to summarize in these release notes.

          • Request to reinstate project: m4-1.4.18b.pot
            The following beta release includes a new m4.pot, where we would like to
            reinstate the m4 translation domain with disclaimers required (since FSF
            owns M4 copyright):
            
            

            file m4-1.4.18b/po/m4.pot within https://alpha.gnu.org/gnu/m4/m4-1.4.18b.tar.xz announced at https://lists.gnu.org/archive/html/m4-discuss/2021-05/msg00001.html

            Notice of translations can be sent to m4-patches@gnu.org; a mere URL of the available translation would be sufficient (no need to send translations themselves, since m4's bootstrap is designed to download the .po files prior to release, the list posts are just a courtesy rather than a patch to be applied manually).

            See also [1], where the m4 package was removed, because at the time there had never been a released build of m4 that used m4.pot. More than 10 years ago, when m4.pot was first uploaded, it was for a version number 1.9.x in preparation for an experimental 2.0 release; that release is nowhere near close, but in the meantime, the stable branch for m4 1.4.x has finally enabled the use of translations [2]. The set of strings for 1.9.x are probably dissimilar enough from 1.4.18b that it is not worth trying to revive the old translations, rather, you can treat this request as a new project, even if you are able to reinstate the m4 package name (and if you must pick a different package name, I need to know, as that will introduce its own wrinkles into how m4's bootstrap script downloads available .po files).

            [1] https://lists.gnu.org/archive/html/bug-m4/2021-03/msg00002.html [2] https://git.savannah.gnu.org/gitweb/?p=m4.git;a=commit;h=610290de87f

            Given comments at [3], I may still need to make some tweaks to what strings are offered for translations between now and 1.4.19, but we've got to start somewhere, and I want to get 1.4.19 out the door this month.

            [3] https://lists.gnu.org/archive/html/bug-m4/2021-03/msg00006.html

      • Programming/Development

        • Paul E. Mc Kenney: Stupid RCU Tricks: Which tests do I run???

          The rcutorture test suite has quite a few options, including locktorture, rcuscale, refscale, and scftorture in addition to rcutorture itself. These tests can be run with the assistance of either KASAN or KCSAN. Given that RCU contains kernel modules, there is the occasional need for an allmodconfig build. Testing of kvfree_rcu() is currently a special case of rcuscale. Some care is required to adapt some of the tests to the test system, for example, based on the number of available CPUs. Both rcuscale and refscale have varying numbers of primitives that they test, so how to keep up with the inevitable additions and deletions? How much time should be devoted to each of locktorture, scftorture, and rcutorture, which, in contrast with rcuscale and refscale, do not have natural accuracy-driven durations? And finally, if you do run all of these things, you end up with about 100 gigabytes of test artifacts scattered across more than 50 date-stamped directories in tools/testing/selftests/rcutorture/bin/res.

          Back in the old days, I kept mental track of the -rcu tree and ran the tests appropriate to whatever was queued there. This strategy broke down in late 2020 due to family health issues (everyone is now fine, thank you!), resulting in a couple of embarrassing escapes. Some additional automation was clearly required.

        • Linux X86 Assembly – How to Build a Hello World Program in GAS
        • Rust

          • The Rust Programming Language Blog: The Plan for the Rust 2021 Edition

            We are happy to announce that the third edition of the Rust language, Rust 2021, is scheduled for release in October. Rust 2021 contains a number of small changes that are nonetheless expected to make a significant improvement to how Rust feels in practice.

            What is an Edition?

            The release of Rust 1.0 established "stability without stagnation" as a core Rust deliverable. Ever since the 1.0 release, the rule for Rust has been that once a feature has been released on stable, we are committed to supporting that feature for all future releases.

            There are times, however, when it is useful to be able to make small changes to the language that are not backwards compatible. The most obvious example is introducing a new keyword, which would invalidate variables with the same name. For example, the first version of Rust did not have the async and await keywords. Suddenly changing those words to keywords in a later version would've broken code like let async = 1;.

            Editions are the mechanism we use to solve this problem. When we want to release a feature that would otherwise be backwards incompatible, we do so as part of a new Rust edition. Editions are opt-in, and so existing crates do not see these changes until they explicitly migrate over to the new edition. This means that even the latest version of Rust will still not treat async as a keyword, unless edition 2018 or later is chosen. This choice is made per crate as part of its Cargo.toml. New crates created by cargo new are always configured to use the latest stable edition.

  • Leftovers

    • Integrity/Availability

      • Proprietary

        • Pseudo-Open Source

        • Security

          • ISTIO-SECURITY-2021-006

            Istio contains a remotely exploitable vulnerability where an external client can access unexpected services in the cluster, bypassing authorization checks, when a gateway is configured with AUTO_PASSTHROUGH routing configuration.

          • ISTIO-SECURITY-2021-005

            Istio contains a remotely exploitable vulnerability where an HTTP request path with multiple slashes or escaped slash characters (%2F or %5C) could potentially bypass an Istio authorization policy when path based authorization rules are used. Related Envoy CVE: CVE-2021-29492.

          • Announcing Istio 1.9.5

            This release fixes the security vulnerabilities described in our May 11th posts, ISTIO-SECURITY-2021-005 and ISTIO-SECURITY-2021-006.

          • Announcing Istio 1.8.6

            This release fixes the security vulnerabilities described in our May 11th posts, ISTIO-SECURITY-2021-005 and ISTIO-SECURITY-2021-006.

          • Six cyber security tips to keep your workspace safe [Ed: Neglects to say you should reject proprietary software, lots of which contains back doors]

            It’s not a secret to anyone that maleficent software is very prevalent across the Internet these days, and navigating with your guard down is cyber suicide. Although there may not be such a thing as 100% protection, there are plenty of useful measures you can take to reduce the risk of getting your computer hacked.

          • The 13 Most Essential Books for Data Protection Officers [Ed: How many of these "Officers" are themselves tech-savvy and not just imposers and posers?]

            Data protection is a broad field encompassing backup and disaster recovery, data storage, business continuity, cybersecurity, endpoint management, data privacy, and data loss prevention. Data protection software becomes more crucial as the amount of data an enterprise creates and stores continues to grow at ever-increasing rates. This makes the role of a data protection officer essential in today’s technological landscape.

            There are plenty of free resources available online (such as Solutions Review’s Data Protection Buyer’s Guide, Backup and Disaster Recovery Guide, DRaaS Buyer’s Guide, Data Protection Vendor Comparison Map, and best practices section), but sometimes it’s best to do things the old-fashioned way. There are few resources that can match the in-depth, comprehensive detail of a book targeted specifically at data protection officers.

          • Mac, Linux and Windows machines need to update Google Chrome

            Google has pushed out a new update for Chrome, its browser, again. The update, 90.0.4430.212, went live on May 10, and typically these new systems are automatically installed, or Google lights up your browser with a color-coded indicator at the top right.

            This update, however, is not necessarily showing up that way, and instead right now may

    • Monopolies

      • Bill and Melinda Gates divorce: Split in the works since 2019, one factor was Epstein connection, WSJ reports
      • Pentagon May Axe Microsoft JEDI Contract Amid Amazon Litigation: WSJ
      • Patents

        • [Older] Report reveals a dip in patent applications in Europe, but a rebound is likely [Ed: There is no rebound in what really matters, namely patent quality and validity]
        • Introducing our EP Validations Portal [Ed: Many European Patents (EPs) are bunk as quality is lowered, legal certainty reduced, EPC ignored (unlawful patents knowingly granted to game the numbers), and some law firms wish to profit from that chaos, too]

          The management of EP validations requires expertise in both European patent law and associated formalities, including translations. Novagraaf’s EP validation services give customers peace of mind that their patent portfolios are being safely and cost-effectively maintained, while our new EP Validations Portal provides customers of Novagraaf and NovumIP with a single access point for all EP data.

        • IP legal expert Roche to lead Secerna Dublin office [Ed: Standing Advisory Committee before the European Patent Office (SACEPO) [1, 2] and the revolving door? EPO does not attract experts in law but experts in ways to break the law and then get away with it, sometimes using personal connections rather than a valid legal argument (they lie, too).]

          A member of numerous patent advisory boards and panels, including the Standing Advisory Committee before the European Patent Office (SACEPO) working parties on Guidelines and e-Patent Process, Dermot Roche also sits on the European Patent Institute (EPI) Council and EPI Harmonisation Committee.

        • Fed. Circ. Appeal Dropped Challenging Albright's Comments [Ed: Texas isn't following patent law; it's just following the money of patent trolls and other radical elements that distorted the system...]

          Vulcan Industrial Manufacturing and Kerr Machine Co. have resolved a yearlong patent dispute, dropping their appeal in the Federal Circuit over Western District of Texas Judge Alan D. Albright's refusal to pause...

        • Software Patents

          • $1,250 Awarded for FireNet Technologies prior art

            Unified is pleased to announce PATROLL crowdsourcing contest winner, Euclid Woo, who received a cash prize of $1,250 for his prior art submission for U.S. Patent 7,739,302. The patent is owned by FireNet Technologies, LLC, an NPE and entity of IPinvestments Group. The '302 patent relates to firewalls for protecting network attached devices and was being asserted against Kemp Technologies, Fortinet, Citrix, A10 Networks, and Fujitsu.



Recent Techrights' Posts

Saving the Planet With Honesty, Transparency, and Sharing (Not Only of Computer Code)
GAFAM is destroying the only habitat humans and other animals have and it'll only get worse
Disinformation About Election Outcomes Even Before Any Election Outcomes (or Election/Voting!)
seeding doubt about election outcomes
Against Outsourcing of Sites and E-mail
Software Freedom is great, but it is not enough if you let someone else do it 'for you'
Drew DeVault: People Talking About My Attack Site (Against the Founder of GNU/Linux) is "Spam"
"Spam on sr.ht mailing lists"
"Oppose the Fascist"
what the founder of GNU/Linux said
Halloween, All Saints Day & Swiss citizenship
Reprinted with permission from Daniel Pocock
 
How Voting Does Not Work
You cannot vote from an "app"
Links 05/11/2024: Bluesky and Enshittification, Pugad Baboy, and Lots of Disinformation Flooding the Web
Links for the day
[Meme] Sweaty Under the Belly
"OK, my critics are 'spam'"
Microsoft Bribing Canonical (to Stop Competing) and Bribing Users to Shun the Competition
Canonical is worth shunning
[Meme] The 2024 'Info Bros'
And prehistoric googling
Computers Getting Worse (for the User) Over Time
This is like Windows-ism coming to "Linux" through the hardware
[Meme] How NOT to Vote
Another form of (mostly-unspoken-of) election interference
An LLM Inside a 'Search' Engine Means That Companies Tell You What They Want, Not What Web Pages to Visit
The future of 'googling' things might be as unreliable as using Social Control Media as a source of information
Google's Debt Has Increased and 'Cash on Hand' Fell by 22.27% This Past Year
These are the numbers that the corporate media intentionally leaves out
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, November 04, 2024
IRC logs for Monday, November 04, 2024
There's a Reason Why Techrights is Turning 18 and Tux Machines Will Turn 20.5 Next Month
I started advocating GNU/Linux when I was a teenager
Techrights Has a Long History of Fighting to Expose 'Team Mono' or Microsofters Inside GNOME
Never downplay the malice of Microsoft and its operatives
Gemini Links 05/11/2024: Halloween Over, Intention and Implementation, Bookmark Syncing
Links for the day
Microsoft Lost Nearly Half of Its 'Cash Reserves' This Past Year
Is Microsoft (MSFT) the next Intel (INTC)?
The Year Isn't Over Yet, There Will be More Waves of Microsoft Layoffs
Nowadays Microsoft just tries to conflate/equate its energy waste with "value"
The Corporate Media Blasted Bitcoin for Destroying the Planet and Must Do the Same to Incite the Public Against the 'Great Rigging of Wall Street' (Under the Guise of "AI", the Latest Gold Rush)
"AI" is the next "metaverse" (trailing by a few months)
[Video] Richard Stallman is Back to Halo and Gown (in Peru) With 2+ Hours of a Public Talk
The globetrotting Richard Stallman gave many talks at the end of last month
Going Strong Against the Wind
the abuse serves to emphasise or affirm the importance of what we do
Links 04/11/2024: Squashing More Software Patents and Taiwan at Risk
Links for the day
Gemini Links 04/11/2024: Typing vs Writing and a Smol (Net) Pub
Links for the day
Links 04/11/2024: LibreOffice Had Adopted PeerTube, "Hey Hi" Hype is a Threat to the Energy Grids (Worse Than Fake-Coins)
Links for the day
[Meme] Social Control Telescreens With Microphone
Nineteen Eighty-Four
Shout-out to Christine From FOSSForce
Who noticed our short story
Not Boycotting Apple (Yet)?
"Apple Forces The Signing Of Applications In MacOS Sequoia 15.1"
statCounter This Month: Android Has Nearly Become Twice as Big as Windows
If it happened, it would be an unprecedented milestone
Why Technical Sites Need Not Make Political Recommendations or Endorsements
Except perhaps when it's for some purely technical role, e.g. FCC chief
[Meme] Apple Freedom
Freedom is... the ability to purchase as many 'i' things as you want
Apple's MacOS Shows Us the Vision of Computing That GAFAM Has for Us (Digital Prisons)
Freedom means "we the people" should be in control, not people being controlled by corporations (contemporary slaveowners)
"Active" as in One URL, One Emoji, and 4 Words in One Week
Diversity community in Fedora
Apple Vision Pro Has Failed, Just Like "Metaverse"
Vision Pro lacks software
Things That Can Improve Election Integrity
the first two relate to "tech"
Rigging Elections is Difficult, Cheating a Little is Not
Avoid social control media, it is the biggest rigger of all
"People who live in glass houses shouldn't throw stones"
On throwing stones in a glass house
Our Stance on Electronic (or Digital) Voting Machines
The simple activity of voting and counting ballots does not require thousands of complex machines with hundreds of millions of transistors and hundreds of millions of lines of code
Microsoft and "Retrospective Re-writing of History..."
in YouTube anyone can make stuff up (as one goes along)
This Coming Week
Go exercise your right to vote
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, November 03, 2024
IRC logs for Sunday, November 03, 2024
Reddit is (Still) Lying and Faking
Don't fall for this phony idea that the above sites are grassroots or edgy; they're not
GNU/Linux Users Are Not Cheaters
The bottom line is, most cheaters use Windows
Links 04/11/2024: FCC, Broadband Industry Spar Over Net Neutrality; Software Patent Squashed
Links for the day
Gemini Links 03/11/2024: Official MyGemini.Space Announcement
Links for the day
Gemini Links 03/11/2024: Election Thoughts, Plagiarism, and LLM Slop
Links for the day
Links 03/11/2024: Deere 'Right to Repair' (RoR) and "Threads Bans Anyone For Mentioning Hitler"
Links for the day
[Video] "El Movimiento del Software Libre y el Sistema Operativo GNU" by Richard M. Stallman
The footage is a bit jittery (taken with a phone apparently, and there's no tripod available), but the sound is OK and the words (in Spanish) are comprehensible
Android at New Highs (47%), Windows at New Lows (24%), Suggests Latest Data From statCounter
So the market share of Android is about double that of Windows
[Video] Richard Stallman's Talk in Spanish (in Peru Last Week)
Alternative URLs too
The Media Focuses on the Wrong Scandal
The real scandal at MIT was Gates
Gemini Links 03/11/2024: Fantasy Life Day and Worship
Links for the day
[Meme] Write Us Drivers and GTFO!
When you realise sanctioning BRICS devs goes against the community
Decommissioning Copper Lines Makes Us Less Safe
We've essentially degraded the robustness or reliability of critical systems
Life of an Addicted Lolicon Who Can Also Code
Personal blog as an open diary
[Meme] Reporting Crime is Not a Crime
Obviously!
Manchester Party for Techrights
If you choose to come, of course we'll cover the cost of the food and treats (but not travel)
Privacy is Not a Crime (in Places Where It is a Crime the Regime is Typically Very Rogue)
Also, criminals lack "privacy rights" to hide their crimes from the public
GNU/Linux "Market Share" in Lebanon More Than Doubled in a Few Months
Maybe it's a reaction to something? Assassination in Haret Hreik was in July.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, November 02, 2024
IRC logs for Saturday, November 02, 2024
Nearly 40 Years Without Security Incidents
People who use Windows have come to sort of "accept" that security incidents are part of life or "normal"
[Meme] The Streisand Effect
Simon says, don't bother trying to suppress facts
Streisand Effect at IBM?
Trying to silence your workers isn't the best approach. It only makes colleagues even more curious.
Microsoft is a Gift That Keeps Giving (Future Stories to Techrights)
Microsoft has been trying to silence me using dirty tricks for nearly 20 years
Elon Musk Has Trashed Twitter for Ideological Reasons (and Propping Up Trump in Exchange for Financial and Political Favours Once in Public Office)
In case you didn't leave Twitter already, consider the fact that Twitter's (or "X"... whatever!) future is uncertain
Wall Street Has Demoted Intel, Seeing There May be No Future to Intel
Intel's loss isn't a loss to us
Free Software Licence Compliance is About Security Too
Linux as de facto proprietary off-the-shelf platform