Bonum Certa Men Certa

Links 29/10/2021: FreeBSD 12.3 Beta 2 and the End Of Zink



  • GNU/Linux

    • Desktop/Laptop

      • Chromebooks will soon be a lot more useful for Linux power users

        It took a long time for Linux to become officially supported on Chromebooks. In fact, it spent three years in beta until the release of Chrome OS 91. Now, anyone who wants to can install and run Linux on their Chromebook, with the caveat that they can only use one container at a time. A new update aims to remove this limitation.

        On the latest version of Chrome OS, users can create multiple containers if they want to (though it's a highly involved technical process). However, issues arise when there is a need to use separate containers for separate projects at the same time. As an example, even though a high-spec Chromebook could run one container for gaming while another container for development is also active, it can't.

    • Audiocasts/Shows

      • Hackaday Podcast 142: 65 Days Of Airtime, Racecars Staring At The Ceiling, A Pushy White Cane, And Soapy Water Rockets | Hackaday

        Hackaday editors Elliot Williams and Mike Szczys flap their gums about all the great hacks of the week. Something as simple as a wheel can be totally revolutionary, as we saw with a white cane mod for the visually impaired which adds an omniwheel that knows where it’s going. We enjoyed the collection of great hacks from all over the community that went into a multi-two-liter water rocket build. You’ll hear Elliot and Mike’s great debate about the origin of comments in computer code. And we spend plenty of time joking around about the worlds longest airplane flight (it was in a tiny Cessna and lasted over two months!)

      • Full Circle Magazine #174
    • Kernel Space

      • AMD Posts Latest Revision To Its New P-State Linux Driver - Phoronix

        In early September AMD posted their new "amd-pstate" CPU frequency scaling driver for Linux that leverages ACPI CPPC data available with Zen 2 and newer processors for making wiser frequency scaling decisions. The goal of AMD P-State is to offer better performance-per-Watt and today they have posted a new revision of this driver.

      • Improved Retpoline Code Staged Ahead Of Linux 5.16 - Phoronix

        A set of patches improving the return trampoline "Retpoline" code used for Spectre V2 mitigations has made its way into tip.git's "objtool/core" staging area ahead of the upcoming Linux 5.16 merge window.

        These Linux Retpoline patches are the work covered earlier this month on Phoronix around rewriting the Retpoline rewrite code.

      • Graphics Stack

        • RadeonSI Lands Yet Another Round Of Optimizations That Further Reduce CPU Overhead - Phoronix

          Well known AMD open-source OpenGL driver developer Marek Olšák has landed another big batch of patches to further lower the driver overhead of this Linux OpenGL driver.

          Marek merged two sets of optimizations today to Mesa 22.0-devel of micro-optimizations for this AMD Radeon OpenGL driver used on Linux for Radeon HD 7000 "Southern Islands" GCN 1.0 GPUs and newer up through the latest Radeon RX 6000 series RDNA2 graphics cards.

        • Intel's i965 Mesa Classic OpenGL Driver Will Stick Around A Bit Longer - Phoronix

          Earlier this year was talk of finally retiring the Intel "i965" Mesa classic OpenGL driver along with the rest of the "classic Mesa" driver code now that it's been replaced by the Crocus Gallium3D driver and the other open-source Mesa OpenGL divers all using the modern Gallium3D architecture. Those plans are still on but shifting now into 2022.

          Removing the long-standing Intel open-source i965 Mesa driver has been a possibility since earlier in the year when the "Crocus" Gallium3D driver was merged and has matured into good shape for providing accelerated OpenGL on old Intel 965 chipsets through Haswell. It's with Broadwell and newer where Intel's Iris Gallium3D driver has come together nicely and continues to work great through Xe Graphics. So between Crocus and Iris, Intel's OpenGL driver is in a solid footing now.

        • X.Org Server Bids Farewell To Autotools - Phoronix

          With X.Org Server 21.1 having finally shipped this week, the X.Org Server Autotools build system support has been killed off.

          X.Org Server is now all-in on using the Meson build system support that is considered quite mature at this point.

          Removing Autotools support from the codebase lightened up the tree by over six thousand lines.

        • [ANNOUNCE] Wayland 1.19.0 release schedule
          Hi all,
          
          

          Here is the release schedule for Wayland 1.20.0:

          - Alpha: November 4th, in one week - Beta: November 18th - RC1: December 2nd - First potential final release date: December 9th

          Package maintainers are encouraged to pick up the pre-releases to make sure packaging can be tested (and fixed) before the stable release. This release will drop the autotools build system. Please make sure you've migrated to Meson, feel free to open an issue if you run into a bug.

          Let me know if you'd like a pending patch to make it in the release.

          Thanks,

          Simon
        • Wayland 1.20 Planned For Release In December - Phoronix

          It's been nine months since the release of Wayland 1.19 while now release plans have been drafted for Wayland 1.20.

          Simon Ser is looking to release Wayland 1.20 in early-to-mid December and for that to happen the Wayland 1.20 Alpha release is expected to be made in about one week, a Wayland 1.20 beta in mid-November, and to then proceed with release candidates as needed until the final release is ready.

        • Zink OpenGL On Vulkan Inches Closer To OpenGL 4.6 Conformance, More Games Working - Phoronix

          While there has been less major progress to report on Mesa's Zink OpenGL-over-Vulkan code in recent weeks, Mike Blumenkrantz of Valve and others continue optimizing and fixing this increasing useful implementation. Most recently the game Bioshock: Infinite is running on Zink and there are more fixes in aiming toward OpenGL 4.6 conformance.

        • The End Of Zink

          Zink is done. It’s finished. I’ve said it before, I’ve said it again after that, and I even said I meant it that one time, but now I’m serious.

          Super serious.

          We’re done here. There’s no need to check this blog anymore, and you don’t have to update zink ever again if you’ve pulled in the last week.

        • Three and a half years after X.Org Server 1.20, 1.21 is out ● The Register
    • Applications

      • Ventoy 1.0.57
        Ventoy is an open source tool to create bootable USB drive for ISO/WIM/IMG/VHD(x)/EFI files. With Ventoy, you don't need to format the disk over and over, you just need to copy the ISO/WIM/IMG/VHD(x)EFI files to the USB drive and boot them directly. You can copy many files at a time and ventoy will give you a boot menu to select them. Both Legacy BIOS and UEFI are supported in the same way. Most type of OS supported (Windows/WinPE/Linux/Unix/Vmware/Xen...)

      • The 5 Best FTP Clients for Linux

        Want to transfer files to and from a remote server in Linux? Check out these powerful FTP clients that will help you transfer your data securely.

        FTP or File Transfer Protocol is the most common method of transferring files between computers over a network. It's also the go-to option to move large amounts of files back and forth from/to a server.

        As such, you'll find a variety of FTP clients, depending on your operating system, to help you with the same, each promising to deliver better transfer and management features than the other while staying true to its core functionality.

    • Instructionals/Technical

      • dos2unix and unix2dos commands usage - ByteXD

        Sometimes, we need to transfer files between Unix and Windows systems. In Windows and Dos files, the line break is represented using two characters: the first is the carriage return (\r) (CR) and the second is the Line feed (\n) (LF). On the other hand, in Linux/Unix distributions the end of the line is indicated by using only one character that is a Line Feed (LF). However, this difference may cause issues, like code not compiling, scripts not working, text formating looking off.

        Using the popular commands dos2unix and unix2dos, we can avoid the hidden character problems.

      • How To Compress A File or Folder With Tar In Linux - linuxwebdevelopment.com

        To compress a file or folder with the tar command is easy in Linux. Read this article to learn about various ways to compress files or folders with tar.

        tar is a ubiquitous command in Linux. Most modern Linux distros should come with tar by default.

        Now, I will discuss how to compress a file or folder with tar in Linux.

      • How To Extract A Tar File In Linux - linuxwebdevelopment.com

        Extracting a tar file in Linux is very straightforward. You can use the same command to extract almost any kind of tar file: .tar.gz, .tar.bz2, and .tar.xz.

      • How to Deploy MongoDB with Docker – NextGenTips

        In this article we are going to explore how to deploy MongoDB with Docker. What is MongoDB? MongoDB is an open source document database built on an horizontal scale out architecture that uses a flexible schema for storing data.

        Docker is a set of platform as a service products that uses OS level virtualization to deliver software service in packages called containers.

      • How to install Wireguard on Debian 11/Ubuntu 21.04 – NextGenTips

        In this tutorial we are going to learn how to install wireguard VPN on Debian 11. Wireguard is a communication protocol which is free and open source software that implements encrypted virtual private networks(VPN) and was designed with some goals, to provide ease of use, high speed performance and low attack space.

      • How to Install OpenLiteSpeed Webserver on Alma Linux 8 – VITUX

        OpenLiteSpeed is a web server that can be used to speed up dynamic content delivery. It also features a built-in caching system for static content.

        OpenLiteSpeed is faster, consumes less memory, and requires fewer resources than Apache. It’s more secure because the source code is available for inspection, which means that bugs can be found and fixed quickly. OpenLiteSpeed uses Event MPM, so that it will scale on multicore servers better than Apache with Worker MPM. Since Event MPM has been around longer, it’s also more mature, so there are fewer known issues people might run into when using OpenLiteSpeed compared to apache. When configured properly OpenLiteSpeed can handle a lot of connections at once.

        OpenLiteSpeed can be used as either a standalone web server by itself, in front of Apache, Nginx, or other web servers, or it can also sit behind another web server. You can use it with PHP-FPM to make your site super fast.

      • How to Install Apache Cassandra 4 on Ubuntu 21.10

        In this tutorial we are going to explore how to install Apache Cassandra 4 on our Ubuntu 21.10 server. Apache Cassandra is an open-source, free, NoSQL database used to store large data.

      • How to Install Anydesk on Ubuntu 21.04 – NextGenTips

        In this tutorial guide we are going to learn how to install Anydesk on Ubuntu 21.04.

        Anydesk is a closed source remote desktop application, it provides platform independent remote access to personal computers and other devices running the host application. It is both suitable for personal use and company wise.

      • Make Your KDE Plasma Desktop A Minimal And Elegant Look with Orchis Theme - Invidious

        This video showing step by step how to customize your KDE plasma desktop a minimal And elegant look with Orchis Theme.

      • How to install Oracle VirtualBox 6.1 on Ubuntu 21.04 – NextGenTips

        In this tutorial we are going to learn how to install Oracle VirtualBox on Ubuntu 21.04 and learn about it rich feature content.

        VirtualBox is free, open source virtualization software. So what is virtualization? It is the process of running a virtual instance of a computer system in a layer abstracted from the actual hardware.

      • How to install NextCloud on Debain 11 Bullseye Linux - Linux Shout

        Nextcloud is free software distributed under an open-source license and can be used to set up personal cloud just like Google Drive, iCloud, Dropbox, and Onedrive. When using a client, the server is automatically synchronized with a local directory. Hence, the same data stored on NextCloud can be accessed from multiple devices using a client app or via the web interface.

        The server-side program of NextCloud is meant to work on Linux operating systems, therefore any Linux user even the beginner one can easily install it. Apart from the Linux OS, the user also needs PHP and a web server like Nginx or Apache to set this personal cloud platform.

      • How to install MongoDB 5 on Ubuntu 21.04 – NextGenTips

        In this tutorial guide we are going to learn how to install Mongodb on Ubuntu 21.04. Mongodb is an open source NoSQL database that provides high throughput for data driven applications. Unlike relational databases such as MySQL, Oracle and SQL server which store data in tables according to a rigid schema, Mongodb stores data in documents with flexible schema.

      • How to install GNS3 2.2.26 on Ubuntu 21.04 – NextGenTips

        In this guide you are going to learn how to install GNS3 2.2.26 on our Ubuntu 21.04 server.

        GNS3 is free and open source software used by many network engineers to emulate, configure, test and troubleshoot virtual networks. GNS3 allows one to run small topology consisting of few devices in your laptop, to those that have many devices hosted on multiple servers or even hosted on the cloud.

        GNS3 help you prepare for certifications such as CISCO CCNA, CCNP, CCIE and also help while trying real deployments. GNS3 help network engineers to virtualize real hardware. At first it used to emulate CISCO devices with the help of Dynamips but now it has evolved until it can support other devices from multiple network providers i.e brocade, cumulus Linux switches, Docker instances etc.

      • How to Install PostgreSQL 14 on Rocky Linux 8 – NextGenTips

        In this tutorial we are going to learn how to install PostgreSQL 14 on Rocky Linux. PostgreSQL is world’s most advanced open source relational database. It has experienced running up to 30 years that is why it has earned strong reputation for its reliability, robustness and its strong performance.

    • Games

      • Popular Tools of Linux Gamers in 2021 - Boiling Steam

        We are progressively reaching the end of our Q2 2021 survey analysis articles. This time we look at the usage of a specific set of tools among Linux Gamers.

        [...]

        You can probably guess that some of them are more popular than others. It will come as absolutely no surprise to learn that ProtonDB is, for example, widely known and used. But how about Steam Tinker Launcher (STL) vs GameHub? or Minigalaxy vs Heroic Games Launcher? Such comparisons of popularity are not as obvious.

      • Submarine survival sim Barotrauma gets a huge 'Among the Ancients' update | GamingOnLinux

        Among the Ancients is the latest update for the tough submarine survival game Barotrauma, bringing with it new alien ruins and character progression to give you more of everything.

        Characters got a visual overhaul with many new hair styles, facial features and accessories. Skin tone can now also be changed, thanks to the implementation of a skin shader system. While character animations and proportions are now more realistic, they still retain their trademark ragdoll appearance and movement for maximum viewing pleasure as you fall about all over the place. The new progression system enables you to unlock special talents and buffs to make each class a bit more unique too.

      • Colonize the red planet in Terraformers: First Steps on Mars, a free prologue out now | GamingOnLinux

        Terraformers: First Steps on Mars is the free prologue for the upcoming colony sim from Asteroid Lab and Goblinz Publishing. Available now to try out.

        Terraformers is a strategy game with roguelite elements in which you terraform Mars. Explore the planet's wonders, exploit its resources and expand by settling new cities. Start the terraforming process: warming the planet, creating oceans and spreading life. This free prologue offers up an exclusive challenge to lead humanity's first attempt at settling the Red Planet.

      • GamecubePC Packs Plenty Of Punch Into GameCube Plastics | Hackaday

        If reading Hackaday teaches us anything, it’s that there is a subset of hackers who take things like emulator builds a step farther than most. [GamecubePC] is very clearly one such hacker. Enter the GamecubePC, which you can read about on Hackaday.io. The GamecubePC is a multi-year project that aims to stuff an entire Windows 10 PC into a GameCube shell while still being able to play Wii and GameCube titles at native resolution and performance.

      • Games Relying On CEG DRM Should Now Be Able To Run With Steam Play - Phoronix

        Running the newest Steam client beta paired with the newest Proton Experimental should yield more Windows games working on Steam Play with Linux.

        Valve has been busy getting more anti-cheat/DRM services working under Proton (Steam Play) ahead of the first Steam Deck devices shipping to consumers later this quarter. Their latest achievement is getting CEG DRM'ed games working, at least if you are willing to use Proton Experimental and Steam beta for the time being... About time considering Valve developed CEG (Custom Executable Generation).

    • Distributions

      • Kali Linux NetHunter: Everything you need to know

        Kali Linux NetHunter is the first Android penetration testing platform for Android devices. The NetHunter is an open-source project meaning developers can freely use it without getting copyright infringements or any other related threats. This project allows the supported Android devices to access the kali toolset, thus enabling penetration testing. In addition, there are various unique features offered by Kali NetHunter that are not possible on other hardware platforms.

        The NetHunter interface permits users to work efficiently with complex configuration files via a local web interface. Besides this feature, custom kernels that support 802.11 wireless injections and back connect preconfigured VPN service constitute a formidable network security advancement plus discrete dropbox with Kali Linux at your fingertips always.

      • Reviews

        • Distrowatch Top 5 Distributions Review: EndeavourOS

          It's no secret to anyone who has read my distro reviews in the past that I love Arch and Arch based systems...and EndeavourOS is no exception. If you love Arch, and you want Arch with a nice graphical installer, easy desktop environment choosing and installation, minimal bloat, and a great and friendly community, give EndeavourOS a try; I highly doubt you will be disappointed. Frankly, I have used EndeavourOS multiple times in the past, and I always come back to it unless I need an Ubuntu system or something else for some specific reason. I used to use Manjaro a lot, but EndeavourOS took my #1 spot when it came to Arch based systems. But, with that said, Manjaro and other systems are absolutely awesome too, and have some perks that EndeavourOS does not; but I'll save that for the Manjaro review coming in the near future.

      • BSD

        • FreeBSD 12.3-BETA2 Now Available
          The second BETA build of the 12.3-RELEASE release cycle is now
          available.
          
          

          Installation images are available for:

          o 12.3-BETA2 amd64 GENERIC o 12.3-BETA2 i386 GENERIC o 12.3-BETA2 powerpc GENERIC o 12.3-BETA2 powerpc64 GENERIC64 o 12.3-BETA2 powerpcspe MPC85XXSPE o 12.3-BETA2 sparc64 GENERIC o 12.3-BETA2 armv6 RPI-B o 12.3-BETA2 armv7 BANANAPI o 12.3-BETA2 armv7 BEAGLEBONE o 12.3-BETA2 armv7 CUBIEBOARD o 12.3-BETA2 armv7 CUBIEBOARD2 o 12.3-BETA2 armv7 CUBOX-HUMMINGBOARD o 12.3-BETA2 armv7 RPI2 o 12.3-BETA2 armv7 WANDBOARD o 12.3-BETA2 armv7 GENERICSD o 12.3-BETA2 aarch64 GENERIC o 12.3-BETA2 aarch64 RPI3 o 12.3-BETA2 aarch64 PINE64 o 12.3-BETA2 aarch64 PINE64-LTS

          Note regarding arm SD card images: For convenience for those without console access to the system, a freebsd user with a password of freebsd is available by default for ssh(1) access. Additionally, the root user password is set to root. It is strongly recommended to change the password for both users after gaining access to the system.

          Installer images and memory stick images are available here:

          https://download.freebsd.org/ftp/releases/ISO-IMAGES/12.3/

          The image checksums follow at the end of this e-mail.

          If you notice problems you can report them through the Bugzilla PR system or on the -stable mailing list.

          If you would like to use SVN to do a source based update of an existing system, use the "releng/12.3" branch.

          A summary of changes since 12.3-BETA1 includes:

          o An update to cmp(1) to limit stack garbage limits.

          o An update to tzdata to correct DST in Palestine.

          o An update to tzdata to correct DST in Fiji.

          Please note, the release notes page is not yet complete, and will be updated on an ongoing basis as the 12.3-RELEASE cycle progresses.

          === Virtual Machine Disk Images ===

          VM disk images are available for the amd64, i386, and aarch64 architectures. Disk images may be downloaded from the following URL (or any of the FreeBSD download mirrors):

          https://download.freebsd.org/ftp/releases/VM-IMAGES/12.3-BETA2/

          The partition layout is:

          ~ 16 kB - freebsd-boot GPT partition type (bootfs GPT label) ~ 1 GB - freebsd-swap GPT partition type (swapfs GPT label) ~ 20 GB - freebsd-ufs GPT partition type (rootfs GPT label)

          The disk images are available in QCOW2, VHD, VMDK, and raw disk image formats. The image download size is approximately 135 MB and 165 MB respectively (amd64/i386), decompressing to a 21 GB sparse image.

          Note regarding arm64/aarch64 virtual machine images: a modified QEMU EFI loader file is needed for qemu-system-aarch64 to be able to boot the virtual machine images. See this page for more information:

          https://wiki.freebsd.org/arm64/QEMU

          To boot the VM image, run:

          % qemu-system-aarch64 -m 4096M -cpu cortex-a57 -M virt \ -bios QEMU_EFI.fd -serial telnet::4444,server -nographic \ -drive if=none,file=VMDISK,id=hd0 \ -device virtio-blk-device,drive=hd0 \ -device virtio-net-device,netdev=net0 \ -netdev user,id=net0

          Be sure to replace "VMDISK" with the path to the virtual machine image.
      • SUSE/OpenSUSE

        • VirtualBox, Plasma, systemd Updates in Tumbleweed

          Rolling release users had a variety of package updates this week to include updates of rpm, Plasma, rsyslog, webkit2gtk3, systemd, AppStream and more, which were updated throughout the week’s four openSUSE Tumbleweed snapshots.

          The latest snapshot to be released, 20211027, updated eight packages. Mozilla Thunderbird 91.2.1 increased the memory required per threads for AArch64 to avoid an out of memory state and the email client also had Link Time Optimization enabled for Tumbleweed. The php7 7.4.25 update was a security release focusing on bug fixes like one that affected high memory usage during encoding detection and another fix addressed Common Vulnerabilities and Exposure–2021-21703. The 9.22 version of the real-time web framework perl-Mojolicious added a referer method and fixed the response status log message to use the trace log level instead of debug. A second release this week of mpg123 updated the package to version 1.29.2, which had a single fix for a non-live-decoder safeguard. AppStream, which is a cross-distribution package for standardizing software component metadata, updated to version 0.14.6; the new version updated documentation and added support for source locales. The package also added support for image and video screenshot handling and the changed states that it added Fedora to the continuous integration environment.

          Snapshot 20211025 had an update of rpm 4.17.0. The update had many improvements, new translations and python generators and debuginfo extraction have been split into a separate upstream project. The rsyslog had two updates in Tumbleweed this week and this snapshot brought in version 8.2110.0, which fixes a couple of bugs affecting configurations. The 5.14.14 Linux Kernel had a whole bunch of fixes for Advanced Linux Sound Architecture and Btrfs. There were also several 4.2.20 library updates for libyui , which implemented the C++17 standard for package plugins. Another update in the snapshot was the update of the Free Remote Desktop package freerdp 2.4.1; the package update addressed two CVEs and one of those was an improper client input validation for gateway connections that would allow to overwrite memory.

        • openSUSE Tumbleweed – Review of the week 2021/43

          Despite a few technical difficulties (openQA workers were updated to Leap 15.3), we managed to release 4 snapshots to the public (built and tested 7). You have received snapshots 1021, 1024, 1025, and 1027.

      • IBM/Red Hat/Fedora

        • Winter is Coming for CentOS 8

          Winter is Coming for CentOS 8—but here is how you can enjoy your holidays after all.

          The server environment is complex and if you're managing thousands of Linux servers, the last thing you want is for an operating system vendor to do something completely unexpected.

          That is exactly what Red Hat, the parent company of the CentOS Project, did when it suddenly announced a curtailment of support for CentOS 8 – sending thousands of organizations scrambling for an alternative.

          In this article, we'll review what happened with CentOS 8 and what it means for users who have already upgraded from CentOS release 7 to release 8. We'll also look at your alternatives for replacing CentOS 8.

        • Looking back on 30 years of Linux history with Red Hat's Ethan Dicks

          I first encountered Linux through the Usenet post because I was a very avid Usenet reader and contributor—starting in about ‘85 or so. I saw the Andrew Tanenbaum post about the release of Minix and newsgroups were created for that, so that was an exciting chance to have [something like] Unix on desktop-grade hardware.

          I’d been running Unix at work since ‘84, ‘85 and had tried (on a number of occasions) to gather enough hardware to be able to run it at home and just really couldn't ever afford to put it together because disks were expensive. I remember when that famous first message came out from Linus [Torvalds]. I was not a PC guy at the time.

          By April of 1992, which was five months after that announcement, I was at a computer show at a fairgrounds and felt that things had gotten cheap enough. So, I went and bought a 386 motherboard and four megabytes of RAM (in April of 1992, it was $35 per megabyte!) specifically to run Linux, popped on a drive, brought it home and put together a PC.

        • Top tips for building your personal network

          Being a sysadmin often attracts "Lone Ranger" types. You spend most of your time interacting with servers and intermittently cruising forums—searching for solutions or vulnerabilities. However, this work style often keeps you working alone in close quarters and can put pressure on you when high-profile incidents occur or you need an extra pair of hands.

          These situations might make you wish you had a more extensive network to lean on. In this article, I share ways of building a network of contacts within and outside your company.

        • Hybrid work's next phase: 3 lessons for CIOs

          2020 saw the evolution of millions of new "offices" – dining room tables, living room couches, and more – as employees across the board found themselves working remotely in unfamiliar settings. In time, with the help of both technology and resilience, we’ve not only adapted but in many cases, thrived. A recent remote work study found that 97 percent of employees hope to work remotely at least part of the time for the rest of their careers, and many companies are incorporating that number into their long-term plans.

          But as we think about return-to-office and hybrid work plans, there isn’t a clearly written manual or one-size-fits-all solution – and we’ll continue to have our work cut out for us we navigate another potentially significant shift in the way we operate.

          Here are a few guiding principles that HR and IT leaders should keep in mind to ensure a smooth and secure transition for all employees, wherever they choose to work.

        • Red Hat and SAS collaborate to bring advanced analytic capabilities to the hybrid cloud

          Data and analytics are changing the way we do business -- enabling organizations to better serve their customers and get more done quicker. However, to obtain value from AI and data science efforts, organizations need to deploy, operationalize and put these analytical assets into production. To help put analytical insights into action quicker, we are pleased to announce the general availability of SAS Viya on Red Hat OpenShift. ​​Initially available on VMWare, Viya will support other infrastructure variations in subsequent releases.

        • Introducing Red Hat TV
        • Compiler: How Do We Mentor the Next Generation of IT Leaders?

          New tech graduates enter the workforce every year. What generational differences and unique challenges will these younger professionals face? Mentorship is essential to make the transition into enterprise IT, regardless of where a person worked before. But it’s not always clear what mentees need, or what would be most beneficial for them.

          In this episode, we speak to people about what makes a good mentor, how learning can go both ways, and what is most meaningful in mentoring relationships.

        • Red Hat Brings Azure Red Hat OpenShift to U.S. Government Agencies [Ed: Red Hat is trying to help Microsoft makes money; Azure has problems and layoffs, IBM/Red Hat ought not help it]
    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • FSF

        • GNU Projects

          • A beginner's attempt at optimizing GCC

            Anyone who engages in C/C++ development on a modern GNU/Linux system typically ends up using the GCC or LLVM compiler, to which Red Hat actively contributes. As a member of the toolchain engineering team, I mostly work on runtime libraries (glibc), but being acquainted with the internals of the compiler that builds Red Hat Enterprise Linux (RHEL) is useful.

            With this goal in mind, and with a bit of advice from experienced engineers on the team, I decided to dip my toes into GCC internals by attempting to implement a small optimization. I was pointed to a list of open "tree optimization" bugs marked as

      • Public Services/Government

        • Get FOSS-happy, China tells its financial institutions

          China has told its finance sector to embrace free and open source software (FOSS).

          An opinion from the People's Bank of China and the nation's Central Cyberspace Administration essentially boils down to "go for it".

          The document instructs China's financial sector players to use FOSS whenever they feel it is apposite, to contribute to FOSS projects, and to respect the licences under which such software is published. Financial institutions are also encouraged to collaborate with tech companies, universities and other institutions on FOSS efforts.

  • Leftovers

    • Health/Nutrition

      • Another Struggle for Long Covid Patients: Disability Benefits

        Since she tested positive for the coronavirus in April 2020, Josie Cabrera Taveras has found herself sleeping for up to 15 hours a day, stopping in grocery store aisles to catch her breath, lapsing in and out of consciousness and unable to return to her job as a nanny.

        She believes that she is one of thousands, possibly millions, of Americans who may have a condition known as “long Covid.” The Biden administration has said people with the condition could qualify for federal disability protections and benefits, which can include health care, housing and unemployment benefits.

        But like many others who may have long Covid, Ms. Taveras, 31, has had a hard time proving it.

    • Integrity/Availability

      • Proprietary

        • Pseudo-Open Source

          • Privatisation/Privateering

            • Linux Foundation

              • Codenotary: Notarize and verify your software bill of materials [Ed: At ZDNet, SJVN has become a lot like a marketing operative of Linux Foundation because that's a client. The problem is, the Linux Foundation and Linux aren't the same thing. SJVN leans to the money, not GNU/Linux.]

                The Solarwinds software supply chain attack is the one everyone knows about. But supply chain attacks are becoming commonplace, and that's bad news. There are efforts afoot, such as the Linux Foundation's Software Package Data Exchange€® (SPDX) project, which ensures transparency and improves compliance for software bill of materials (SBOM). But, we need SBOMs now.

        • Security

          • #6 Cybersec Charcha: What comes after Breach Pe Breach?

            In previous editions of Cybersec Charcha, we discussed what you could do to protect your data from being stolen and how to best implement strong digital security practices to protect yourself and your sensitive information. However, we haven’t yet looked at what you can do to take back control — if your data has already been compromised in a data breach.

            Data breaches are now becoming increasingly common. In 2021 alone, we have seen some of the most serious instances of data breaches — both in India and around the world. In a scenario like this, it becomes really important to learn not only how you can protect yourself, but also the measures you can take if your data is leaked in a data breach.

            In the sixth edition of Cybersec Charcha, we’ll be exploring what you can do to take back control in the aftermath of a data breach.

          • This Week In Security: Use-After-Free For Dummies, WiFi Cracking, And PHP-FPM | Hackaday

            In a brilliant write-up, [Stephen Tong] brings us his “Use-After-Free for Dummies“. It’s a surprising tale of a vulnerability that really shouldn’t exist, and a walkthrough of how to complete a capture the flag challenge. The vulnerable binary is running on a Raspberry Pi, which turns out to be very important. It’s a multithreaded application that uses lock-free data sharing, through pair of integers readable by multiple threads. Those ints are declared using the volatile keyword, which is a useful way to tell a compiler not to optimize too heavily, as this value may get changed by another thread.

            [...]

            [Ido Hoorvitch] of CyberArk had some pandemic induced time on his hands, and opted to collect packet captures of 5000 password protected WiFi networks around Tel Aviv. In the old days, you had to capture a 4-way handshake to have any chance at breaking WPA encryption. In 2018 a new technique was discovered, where a single authentication response was all that was required to attempt to crack the key — no active user required.

          • GoCD Authentication Vulnerability | CISA

            GoCD has released a security update to address a critical authentication vulnerability in GoCD versions 20.6.0 through 21.2.0. GoCD is an open-source Continuous Integration and Continuous Delivery system. A remote attacker could exploit this vulnerability to obtain sensitive information.

          • Supreme Court Delivered on Initial Expectations on Pegasus, Follow-Up Crucial | OPINION

            Of the three branches of government in India, the judiciary has been forced to carry the burden of protecting the people’s right to privacy. Since 2017 when the court held that the right to privacy is a fundamental right under the Indian Constitution—triggered by government lawyers formally submitting that it was not a fundamental right—there have not been any significant legislative enactments or executive actions to safeguard this right.

            On the contrary, threats to privacy and freedom of expression have been mounting through growing surveillance and cyber intrusion activity, intermediary rules that undermine internet freedom, and the lack of a data protection law.

            Therefore, when the Pegasus project revealed that several Indian journalists, ministers, activists, and others had been spied on, and the government failed to provide answers, all hopes were pegged on the Supreme Court.

          • Security updates for Friday

            Security updates have been issued by Debian (bind9, gpsd, jbig2dec, libdatetime-timezone-perl, tzdata, webkit2gtk, and wpewebkit), Fedora (flatpak, java-1.8.0-openjdk, java-11-openjdk, and php), SUSE (qemu), and Ubuntu (bind9).

          • 10-Year-Old PHP-FPM Local Privilege Escalation Vulnerability Discovered

            The vulnerability allows a low-privilege user to escalate his privileges to root using a bug in PHP-FPM.

            PHP is one of the most commonly used programming languages on the planet. As you know it is a programming language originally designed for use in web-based applications with HTML content.

          • Reproducible Builds (diffoscope): diffoscope 189 released

            The diffoscope maintainers are pleased to announce the release of diffoscope version 189. This version includes the following changes:

            [ Chris Lamb ]
            * Try some alternative suffixes (eg. ".py") to support distributions that
              strip or retain them. (Closes: reproducible-builds/diffoscope#283)
            * Skip Python bytecode testing where we do not have an expected diff.
              (Closes: reproducible-builds/diffoscope#284)
            * Refactor the find_executable utility into an explicit method.
            * Split out a custom call to assert_diff to support a .startswith equivalent.
            * Use skipif instead of manual conditionals in some tests.
            
            

            [ Vagrant Cascadian ] * Add an external tool reference for Guix to support ppudump and dumppdf.

            [ Sergei Trofimovich ] * Update uImage test output for file(1) version 5.41.

            [ Jelle van der Waa ] * Add Arch Linux as CI test target. * Add external tools on Arch Linux for ffmpeg, openssl and ocalobjinfo.

          • Privacy/Surveillance

            • IFF assisted in sending a legal notice to the Hyderabad Police Commissioner regarding search of mobile phones for keywords such as ‘ganja’

              We assisted Mr. Srinivas Kodali, an independent privacy researcher, in drafting and sending a legal notice to the Hyderabad Police Commissioner, when we learned that Hyderabad Police is stopping random passers-by on the roads, and going through their phones. News videos clearly showed police personnel asking people to unlock their phones and hand it over to police officials. The police officials then admittedly searched the phones for keywords such as ‘ganja’, ‘weed’ and ‘stuff’. This is a clear and blatant abuse of police power, and is entirely illegal.

            • Underinvested, overexposed: Facebook Papers confirm our worst fears

              Early reports on the Facebook Papers have laid bare what civil society around the world has warned of for years now — Facebook is much more interested in rapidly expanding its user base and leveraging people’s data to maximize profits than in ensuring everyone can use its platforms safely.

              For more than a decade, grassroots activists, researchers, digital security help desks, and others serving at-risk communities have been diligently documenting and presenting Facebook with mounting evidence of its failed policies’ negative impact, both in people’s lives and on our societies.

              In India, Palestine, Ethiopia, Myanmar, Syria, Australia, Tunisia, and so many other places around the world, Facebook’s “move fast and break things” model has had dire consequences for human rights defenders and journalists, along with women, LGBTQ+ communities, people facing discrimination based on race, religion, or caste, and other marginalized groups.

              In many cases, Facebook is still relying on resource-strapped civil society actors, often struggling themselves to navigate a tense and complex landscape, rather than investing in its own capacity to meet its users’ needs.

            • Facebook dithered in curbing divisive user content in India

              Facebook in India has been selective in curbing hate speech, misinformation and inflammatory posts, particularly anti-Muslim content, according to leaked documents obtained by The Associated Press, even as the internet giant’s own employees cast doubt over its motivations and interests.

            • Continuing the journey at SUNET

              I will be helping out various in open source projects and services provided SUNET, focusing on privacy and security. I will also continue working on all of the upstream projects I maintain, including SecureDrop.

    • Environment

      • Energy

        • Oil System Collapsing so Fast it May Derail Renewables, Warn French Government Scientists – Byline Times

          A team of French government energy scientists are warning that the collapse of the global oil system is coming so rapidly it could derail the transition to a renewable energy system if it doesn’t happen fast enough. In just 13 years, global oil production could enter into a terminal and exponential decline, accompanied by the overall collapse of the global oil and gas industries over the next three decades.

          But this is not because the earth is running out of oil and gas. Rather, it’s because they are increasingly eating themselves to stay alive. The oil and gas industries are consuming exponentially more and more energy just to keep extracting oil and gas. That’s why they’ve entered a downwards spiral of increasing costs of production, diminishing profits, rising debt and irreversible economic decline.

        • Study: Toxic fracking waste is leaking into California groundwater

          Chevron has long dominated oil production in Lost Hills, a massive fossil fuel reserve in Central California that was accidentally discovered by water drillers more than a century ago. The company routinely pumps hundreds of thousands of gallons of water mixed with a special concoction of chemicals into the ground at high pressure to shake up shale deposits and release oil and gas. The process — called hydraulic fracturing, or fracking — produces thousands of barrels of oil every day. But it also leaves the company saddled with millions of gallons of wastewater laced with toxic chemicals, salts, and heavy metals.

          Between the late 1950s and 2008, Chevron disposed much of the slurry produced in Lost Hills in eight cavernous impoundments at its Section 29 facility. Euphemistically called “ponds,” the impoundments have a combined surface area of 26 acres and do not have synthetic liners to prevent leaking. That meant that over time, salts and chemicals in the wastewater could leak into the ground and nearby water sources like the California Aqueduct, a network of canals that delivers water to farms in the Central Valley and cities like Los Angeles.

    • Civil Rights/Policing

      • Israel/OPT: Designation of Palestinian civil society groups as terrorists a brazen attack on human rights - Amnesty International

        The Israeli Defense Ministry on 19 October 2021 issued a military order declaring six Palestinian civil society organizations in the Occupied Palestinian Territory to be “terrorist organizations.” The groups are Addameer, al-Haq, Defense for Children Palestine, the Union of Agricultural Work Committees, Bisan Center for Research and Development and the Union of Palestinian Women Committees. The designation, made pursuant to a 2016 Israeli statute, effectively outlaws the activities of these civil society groups. It authorizes Israeli authorities to close their offices, seize their assets and arrest and jail their staff members, and it prohibits funding or even publicly expressing support for their activities.

      • Half a Million South Korean Workers Walk Off Jobs in General Strike

        On October 20, at least half a million workers in South Korea — from across the construction, transportation, service, and other sectors — are walking off their jobs in a one-day general strike. The strike will be followed by mass demonstrations in urban centers and rural farmlands, culminating in a national all-people’s mobilization in January 2022. The Korean Confederation of Trade Unions (KCTU), the country’s largest labor union umbrella with 1.1 million members, is organizing these mobilizations in a broad-based front with South Korea’s urban poor and farmers.

    • Digital Restrictions (DRM)



Recent Techrights' Posts

Techrights' Statement on Code of Censorship (CoC) and Kent Overstreet: This Was the Real Purpose of Censorship Agreements All Along
Bombing people is OK (if you sponsor the key organisations), opposing bombings is not (a CoC in a nutshell)
[Meme] The Most Liberal Company
"Insurrection? What insurrection?"
apple.com Traffic Down Over 7%, Says One Spyware Firm; Apple's Liabilities Increased Over 6% to $308,030,000,000
Apple is also about 120 billion dollars in debt
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, November 23, 2024
IRC logs for Saturday, November 23, 2024
[Meme] GAFAMfox
Mozilla Firefox in a state of extreme distress
Google Can Kill Mozilla Any Time It Wants
That gives Google far too much power over its rival... There are already many sites that refuse to work with Firefox or explicitly say Firefox isn't supported
Free (as in Freedom) Software Helps Tackle the Software Liability Issue, It Lets Users Exercise Greater Control Over Programs
Microsofters have been trying to ban or exclude Free software
In the US, Patent Laws Are Up for Sale
This problem is a lot bigger than just patents
ESET Finds Rootkits, Does Not Explain How They Get Installed, Media Says It Means "Previously Unknown Linux Backdoors" (Useful Distraction From CALEA and CALEA2)
FUD watch
Techdirt Loses Its Objectivity in Pursuit of Money
The more concerning aspects are coverage of GAFAM and Microsoft in particular
Links 23/11/2024: Press Sold to Vultures, New LLM Blunders
Links for the day
Links 23/11/2024: "Relationship with Oneself" and Yretek.com is Back
Links for the day
Links 23/11/2024: "Real World" Cracked and UK Online Safety Act is Law
Links for the day
Links 23/11/2024: Celebrating Proprietary Bluesky (False Choice, Same Issues) and Software Patents Squashed
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, November 22, 2024
IRC logs for Friday, November 22, 2024
Gemini Links 23/11/2024: 150 Day Streak in Duolingo and ICBMs
Links for the day
Links 22/11/2024: Dynamic Pricing Practice and Monopoly Abuses
Links for the day
Topics We Lacked Time to Cover
Due to a Microsoft event (an annual malware fest for lobbying and marketing purposes) there was also a lot of Microsoft propaganda
Microsofters Try to Defund the Free Software Foundation (by Attacking Its Founder This Week) and They Tell People to Instead Give Money to Microsoft Front Groups
Microsoft people try to outspend their critics and harass them
[Meme] EPO for the Kids' Future (or Lack of It)
Patents can last two decades and grow with (or catch up with) the kids
EPO Education: Workers Resort to Legal Actions (Many Cases) Against the Administration
At the moment the casualties of EPO corruption include the EPO's own staff
Gemini Links 22/11/2024: ChromeOS, Search Engines, Regular Expressions
Links for the day
This Month is the 11th Month of This Year With Mass Layoffs at Microsoft (So Far It's Happening Every Month This Year, More Announced Hours Ago)
Now they even admit it
Links 22/11/2024: Software Patents Squashed, Russia Starts Using ICBMs
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, November 21, 2024
IRC logs for Thursday, November 21, 2024