New episode of the Reality 2.0 podcast is uploaded and out today: Reality 2.0 Episode 95: What Was Web 2.0? Tune in to our new episode! Doc Searls and Katherine Druckman talk to Petros Koutoupis about Air Tags and the generations of the web.
While the MIPS CPU architecture itself is at the end of the road, kernel developers still are busy with MIPS considering the Loongson hardware that is popular in China and lots of older MIPS hardware out there lacking mainline Linux kernel support. For Linux 5.17 several more older, consumer-grade network routers are seeing mainline support.
With MIPS-specific code for Linux 5.17 the Loongson 2K1000 reset driver has been merged, support for the TX4939 SoC and RBTX4938/RBTX4939 boards removed with no known users remaining, MIPS support for the Broadcom BRCMSTB PCIe controller, and other fixes and clean-ups. Plus there is support for more MIPS-based devices (routers) using the Broadcom BCM47xx MIPS-based SoCs.
In addition to Intel's open-source Linux graphics driver developers being quite busy preparing for upcoming Intel Arc "Alchemist" (DG2) graphics cards on the consumer side, they have concurrently been preparing for Xe HP "Ponte Vecchio" hardware too. One of the big undertakings on that side from the driver perspective is bringing up multiple tiles.
For Ponte Vecchio's multi-tile / chiplet design, Linux driver work for multi-tile support has been going on for months. The driver needs to adapt to support multiple GT instances and the multiple memory regions off a single PCI Express device.
It turns out Ubuntu 22.04 LTS is planning to use the Linux 5.15 kernel as its default kernel. It makes sense in that Linux 5.15 is also a long-term support kernel, but unfortunate in that Ubuntu LTS releases haven't always used LTS kernel versions and v5.15 will be a half-year old already by the time the "Jammy Jellyfish" ships in April. This is a choice particularly unfortunate for those with recent hardware but at least there is the Ubuntu Mainline Kernel PPA and other non-default options available.
Ubuntu 22.04 LTS will come with the Linux 5.15 kernel by default.
That’s the current plan according to Canonical’s Sebastien Bacher, who says “the plan is to use 5.15 for the LTS but the oem and hwe variants will get 5.17 as some point”.
It’s not a heavily guarded secret that I have an undying love for Inkscape. For me, it’s one of those applications I’m really excited to use every time I have some silly need for a vector graphics editor. Which is why everyone actively involved with the project is my personal hero, and I’m only happy to chat with them every once in a while about how the project is doing.
This time, I spoke to Chris Rogers (Vectors team, i.e. PR and communication), Tavmjong Bah (developer), Martin Owens (developer), and Adam Belis (UX guy).
Q: So, first off, I love a lot of things going on with Inkscape lately. There was a, well, not a moment, but quite a long period of time, actually, when I was a bit scared for the project. Long dev cycles, not enough developers etc. Things seem to be so much better these days. What would you attribute it to? What did you have to change?
CRogers: better organisation internally helped. A move to RocketChat and Gitlab to track issues and multiple groups for different parts of the project seem to really have helped. Also, sharing successes and mutual respect and gratitude creates motivation, and it’s easier to do that with organised chat and group structures.
Writers are always looking for some exciting tools to compile their written pieces. Despite the various options in the market, there is always an ongoing need to look for open-source options, which won’t burn a hole in the pocket.
If you are a Linux user, you are in luck, for there are plenty of excellent open-source apps that you can use on your machine. A majority of these apps offer premium-grade type features for free.
If you’re raring to go, then check out these top open-source writing tools enlisted below.
Bash shell refers to Bourne Again Shell which can be found as the default shell in most of the Linux distributions. A Bash Script is a file where multiple shell commands are scripted to perform a particular task. If you are familiar with bash script then this article is for you, in this demonstration I have included 12 best practices to write a bash script to enhance the efficiency of the bash script and make it more readable.
One common use case for CI pipelines is building the Docker images you’ll use to deploy your application. GitLab CI is a great choice for this as it supports an integrated pull proxy service, meaning faster pipelines, and a built-in registry to store your built images.
In this guide, we’ll show you how to set up Docker builds that use both the above features. The steps you need to take vary slightly depending on the GitLab Runner executor type you’ll use for your pipeline. We’ll cover the Shell and Docker executors below.
OpenLiteSpeed is a fast open-source web server application that comes with a built-in fast PHP module. This guide will show you how to install and configure OpenLiteSpeed on Rocky Linux 8 and CentOS 8.
Podman is an open-source tool for managing containers, images, volumes, and pods (group of containers). It's used the libpod library APIs for managing container lifecycles and supports multiple container image formats, including OCI (Open Container Initiative) and Docker images.
Podman is OCI (Open Container Initiative) compliance container engine. It's compatible with the Docker CLI interface and allows you to run container rootless (running container without root privileges). Podman was released as part of Red Hat Enterprise Linux, designed to be the next generation of Linux container tool with faster experimentation and development of features.
For this tutorial, you will learn how to install Podman on the Ubuntu 20.04 system. You will be installing Podman and learn the basic usages of podman for managing Docker containers, images, and volumes.
In this article, we will see how to create an RDS MySql Instance. Before proceeding, I assume that you are familiar with the basics of Terraform and AWS RDS Service. If you want to learn to create an RDS MySql instance from the AWS console then search for "How to setup an RDS MySql (Relation Database MySql ) instance on AWS"
Neos is a free and open-source content management system (CMS) that allows you to build complex websites easily without needing to code. You can create a blog, news website, portfolio page, or a company website using it. It offers a rich set of features such as inline editing, supports multiple websites on a single installation, built-in SEO tools, human-readable URLs, plugin manager, device preview, and supports multiple templates. It supports modern-day technologies such as REST API, JSON, GraphQL, and oEmbed.
In this tutorial, you will learn how to install Neos CMS on a server running Rocky Linux 8 OS.
Linux Kernel 5.16 was released a few days ago. Here’s how to install it in Ubuntu 20.04, Ubuntu 21.10, and/or Linux Mint 20.x.
In this guide, we will learn how to install and configure Elasticsearch on Rocky Linux 8. This guide will also work on other RHEL 8 based distros like Alma Linux 8 and Oracle Linux 8.
Elasticsearch is a distributed search and analytics engine built on Apache Lucene. It provides a distributed, multitenant-capable full-text search engine with an HTTP web interface and schema-free JSON documents. Elasticsearch has quickly become the most popular search engine and is commonly used for log analytics, full-text search, security intelligence, business analytics, and operational intelligence use cases.
In this guide, we will learn how to install and configure Kibana in Rocky Linux 8. This guide will also work on other RHEL 8 based distros like Alma Linux 8 and Oracle Linux 8.
Kibana is a proprietary data visualization dashboard software for Elasticsearch, whose open source successor in OpenSearch is OpenSearch Dashboards. It is a data visualization and exploration tool used for log and time-series analytics, application monitoring, and operational intelligence use cases. It offers powerful and easy-to-use features such as histograms, line graphs, pie charts, heat maps, and built-in geospatial support. Kibana also acts as the user interface for monitoring, managing, and securing an Elastic Stack cluster — as well as the centralized hub for built-in solutions developed on the Elastic Stack.
While it’s usually pretty clear if your system is running out of memory or using too much CPU time, disk usage is another key metric that can sneak up on you over time if you leave your server unattended. You’ll want to regular check your disk usage using these commands.
LAMP is a collection of open-source software commonly used to serve web applications that have been around since the late 1990s. LAMP is an acronym that stands for Linux, Apache, MySQL/MariaDB, and PHP and provides the components needed to host and manage web content and is still arguably the most utilized stack deployment for developers and web applications today.
In the following tutorial, you will learn how to install the LAMP stack (Apache, MariaDB, PHP) on Debian 11 Bullseye using the most up-to-date packages instead of the default Debian 11 repository versions.
Note, you can install LAMP on Debian 11 using this method without the newer repositories; use the same commands without importing any third-party repositories.
Zoom, a.k.a. Zoom Meeting, is video conferencing software that is available for all major platforms, including Linux. It is very popular among working professionals and students.
And I believe you all are familiar with zoom features. That’s why we are directly moving to the Download and Installation step for Zoom in Linux.
In this following guide, you will see the download and installation steps for Zoom, which include steps for all major Linux distributions and removing steps.
WordPress is the most dominant content management system written in PHP, combined with MySQL or MariaDB database. You can create and maintain a site without prior web development or coding knowledge. The first version of WordPress was created in 2003 by Matt Mullenweg and Mike Little and is now used by 70% of the known web market, according to W3Tech. WordPress comes in two versions: the free open source WordPress.org and WordPress.com, a paid service that starts at $5 per month up to $59. Using this content management system is easy and often seen as a stepping stone for making a blog or similar featured site.
In the following tutorial, you will learn how to install self-hosted WordPress using the latest LAMP Stack – Apache, MariaDB, and PHP versions available on Debian 11 Bullseye.
Nmap, Wireshark, and tcpdump are helpful tools for troubleshooting your network. This article shows you how to use them with a real-world example, because when you're trying to learn a new technology or technique, sometimes the best way is to walk through a scenario.
In this tutorial, we will show you how to install Liquorix Kernel on Ubuntu 20.04 LTS. For those of you who didn’t know, Liqourix Kernel is a free, open-source general-purpose Linux Kernel alternative to the stock kernel with Ubuntu 20.04. Liquorix Kernel is popular amongst Linux Gaming, multimedia, and ultra-low latency requirements and often boasts the latest Linux Kernels, having multiple branches to choose from the stable, edge, and development.
This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of Liquorix Kernel on Ubuntu 20.04 (Focal Fossa). You can follow the same instructions for Ubuntu 18.04, 16.04, and any other Debian-based distribution like Linux Mint.
Suppose you have an emergency situation and need an internet connection badly, but you don’t have any cellular data or Wi-Fi connection nearby. And noticed that some of your friends or colleagues are with you at this moment who are having cellular data on their phones. The thing is, you have to use your Android device to complete the task. So what to do now? Turn on your friends’ or colleagues phones’ cellular data and hotspot and Wi-Fi of your phone. Just connect your device to their hotspot. The setup and limit hotspot data procedure on your Android is as easy as pie.
Similarly, you can set up your hotspot on your Android device and also limit the users according to your requirements. Normally, if you’re giving your cellular data to another user through a hotspot, then the rate of data consumption is huge.
As a result, you need to limit your users at a time, though there’s an option called Unlimited users that will be in the hotspot setting. Let’s start with the setup and limit hotspot data on your Android easily.
Good news, following the previous delay and even with the pandemic and global shortages Valve has announced that the Steam Deck is still on track to ship by the end of February.
Writing in a fresh post, Valve said that testing for the Steam Deck Verified program is underway, which we already knew since Portal 2 got recently officially verified. It's also currently still the only one.
While Discord continues to not support Linux with their official overlay, there is at least Discover, which helpfully gives you some options to show chatters on your screen. Useful for those of you with a single-screen who want to see who is chatting, plus good for videos / livestreams for viewers to see it too.
A quiet survival adventure about perception and discovery in an alien ocean. The crowdfunded game Aquamarine is now confirmed to be launching on January 20. According to the official announcement on Steam that includes "Windows, Mac and Linux".
"You play as a lone space traveler known only as The Seeker, whose starcraft is intercepted by a malicious signal while orbiting an uncharted planet covered in water. Forced to eject from her malfunctioning starcraft, The Seeker is marooned on a tiny island surrounded by an endless alien ocean, with nothing but her amphibious survival pod. Throughout her underwater journey to reach her crashed starcraft, she'll uncover the lost history of this planet reclaimed by the elements, and learn the true nature of why she ended up here."
Humble, the bundle-centric games retailer that launched with expansive Mac and Linux support in 2010, will soon shift a major component of its business to Windows-only gaming.
The retailer's monthly subscription service, Humble Choice, previously offered a number of price tiers; the more you paid, the more new games you could claim in a given month. Starting February 1, Humble Choice will include less choice, as it will only offer a single $12/month tier, complete with a few new game giveaways per month and ongoing access to two collections of games: Humble's existing "Trove" collection of classic games, and a brand-new "Humble Games Collection" of more modern titles.
Xfce is a rather humble desktop environment. It has been around for decades, but it has existed largely in GNOME's shadow as a more lightweight option that just so happens to also be based on GTK. Fewer developers work on Xfce and hence, there are fewer apps made with Xfce in mind.
Yet year after year, people continue to use Xfce. It receives updates, and numerous Linux-based operating systems ship Xfce as the default interface.
So, despite the other options available, why might you want to use Xfce?
KDE finally announced the KDE Plasma 5.24 beta version. This release brings a vast array of exciting new improvements, many of which we will be looking at here.
The last release, KDE Plasma 5.23 marked the 25th anniversary of KDE. And, KDE Plasma 5.24 will be their first release for 2022, let’s dive in!
Version 3.2 was released only a few days ago:
https://bkhome.org/news/202201/easyos-version-32-released.html
A few minor tweaks, plus one big change; lives video editor replaced with flowblade.
Release notes here:
https://distro.ibiblio.org/easyos/amd64/releases/dunfell/3.2.1/release-notes.htm
Download:
https://distro.ibiblio.org/easyos/amd64/releases/dunfell/3.2.1/ Feedback welcome on the forum:
https://forum.puppylinux.com/viewforum.php?f=63
I would like to know what you guys think of flowblade!
Easy 3.2 has LiVES video editor; however, it still has bugs. The developer is working on it, but in the meantime I do need something that works in Easy. So, I looked at the alternatives, and eventually settled on Flowblade.
Flowblade is written in python, and I had initially rejected it as it requires python2. It also has two dependencies that I really didn't want to include, 'frei0r' and 'gmic', as I thought the number of dependencies was getting a bit too high. Besides, gmic seems very similar to 'imagemagick' that is already in Easy and required by 'lives' and 'obs'.
openSUSE’s rolling release Tumbleweed finished off 2021 with multiple snapshots and 2022 is starting off the same by producing nine snapshots so far this year.
The latest Tumbleweed snapshot, 20220112, updated Mozilla Firefox to major version 96.0 and addressed almost 20 Common Vulnerabilities and Exposures. The browser added a new feature for printing that allows users to choose to print only the odd/even pages.The browser now defaults all cookies to having a SameSite=lax attribute to helps defend against one-click attacks. While gnome-desktop had a version bump to 41.3, gnome-shell 41.3 fixed some crashes, improved window tracking and updated translations. GNOME’s window manager mutter 41.3 fixed a mixed up refresh rate in multi-monitor setups and fixed orientation changes on devices with 90 degree adjustments. Command line utility hdparm 9.63 added a patch and has a new --sanitize-overwrite-passes flag. Other packages to update in the snapshot were rdma-core 38.1, libpipeline 1.5.5, rdma-core 38.1, vim 8.2.4063 and wayland 1.20.0.
As of January 4, 2022, openSUSE Leap 15.2 will no longer receive security and maintenance updates as the version is now EOL (End-ofLife).
openSUSE Leap 15.2 was released 18 months ago (July 2, 2020) and is based on the SUSE Enterprise Linux 15 operating system family.
The openSUSE Project recommends that Leap 15.2 users should upgrade to the latest version of openSUSE Leap 15.3 as soon as possible, which will be supported by software updates and security patches until November 2022.
Dear Tumbleweed users and hackers,
The holidays are over and people are returning to their computers, submitting a lot more than during the last weeks. Out of the 6 snapshots built and tested,5 made it out to the mirrors (0107, 0109, 0110, 0111, and 0112).
The first CentOS Dojo of 2022 is scheduled for February 3rd and 4th, immediately before the first day of FOSDEM 2022. We expect to publish the schedule to the event wiki page by the time you read this newsletter. The event will be held online, and registration is free! Join us for two days of CentOS content and networking.
Throughout 2021, Red Hat recognized an increased demand for virtual training and testing options as much of the IT workforce continued to adjust to working from home. We expect that to continue, so here's what we're doing to meet demand and help organizations train up their existing staff and identify qualified professionals with open source skills.
IT leaders report skills gaps as the top barrier to digital transformation, ranking technology skills training as their number one non-technical funding priority for 2022. Industry leaders recognize that training and certification will be a critical component to the success of organizations in the coming year. As a result, we expect to see continued focus on virtual training and transformational learning, particularly focused on the three areas we’ll outline in this blog post..
This is a weekly report from the CPE (Community Platform Engineering) Team. If you have any questions or feedback, please respond to this report or contact us on #redhat-cpe channel on libera.chat (https://libera.chat/).
The New York Institute of Technology is collaborating with an IBM software subsidiary to introduce new curricula centered on the Linux open-source operating system.
North Carolina-based Red Hat – the world’s leading supplier of open-source enterprise solutions, including “turnkey curriculum materials” designed to help academic institutions launch and sustain Linux curriculum programs – is lending its expertise to the New York Institute of Technology Red Hat Academy. Instructors will initially offer Red Hat System Administration 1 and 2 courses, preparing New York Tech students to become Red Hat Enterprise Linux system administrators.
Linux has become what New York Tech calls “the de facto standard for running critical workloads in the cloud,” aligning the Red Hat Academy with the Old Westbury-based New York Tech’s mission to “provide career-oriented education to future makers, doers and innovators,” according to College of Engineering and Computing Sciences Dean Babak Beheshti. “Our collaboration … provides yet another opportunity for our students to gain practical, real-world experience to help secure sought-after and industry-recognized skills and certifications,” Beheshti added.
Happy Christmas and New Years everyone! I hope you are all ready for a well deserved break.
The Web and design team at Canonical run two-week iterations building and maintaining all of the Canonical websites and product web interfaces. Here are some of the highlights from our final iteration of the year.
Pine64, makers of popular single-board computers (SBCs) and the Pine Phone KDE edition, is gearing up to ship the Explorer Edition of its PinePhone Pro, reports Liam Tung.
The extra processing power in this case comes from a Raspberry Pi Pico which is small enough to easily fit inside of a donor NES case and also powerful enough to handle the VGA directly. For video data input, the Pico is connected to the video pins on the Game Boy’s main board through a level shifter. The main board is also connected to a second Pico which handles the controller input from an NES controller. Some fancy conversion needed to be done at this point because although the controller layouts are very similar, they are handles by the respective consoles completely differently.
Nexcom’s Linux-ready, 3.5-inch “X200” SBC runs on an 11th Gen U-series CPU and offers triple and 4Kp60 support, 2x GbE, 4x USB 3.2 Gen2, SATA, M.2 M- and E-key slots, and -20 to 70€°C support.
Nexcom announced a 3.5-inch SBC that runs Linux or Win 10 on an 11th Gen Tiger Lake-U processor, which it previously adopted for its NDiS B360 signage player. Other 3.5-inch Tiger Lake-U boards include Commell’s LE-370, Ibase’s IB953, Aaeon’s GENE-TGU6, and Kontron’s 3.5”-SBC-TGL.
Nexcom pitches the X200 board as an ideal solution for visual inspection or imagery analysis in the healthcare field, noting its triple independent display and 4Kp60 support. Other cited applications include signage and security, which Nexcom also promotes for use in hospitals. The board offers an ISO 13485 medical device certification.
Start the year with a new Arduino hardware component. Or two, or three! Dozens of our products are currently discounted at 20% for our annual winter sale. Just head over to the Arduino store and pick out all the modules, shields and carriers that fit your needs.
We even have the MKR IoT Carrier and full MKR IoT Bundle on sale, to help you make 2022 the year of your first Internet of Things project. There are all kinds of connectivity available, from LoRa to GSM and NB communication, so you can get to work on a connected project that hooks straight up to Arduino Cloud, too.
We’ve already seen the newly announced Intel Alder Lake-S desktop IoT processors in some COM Express and COM HPC modules, and quickly mentioned Vecow ECX-3000 rugged computer, and now, OnLogic has just announced the Karbon 800 Series, a family of Alder Lake-S embedded computers.
There will be four Karbon 800 models at launch, equipped with up to an Intel Core i9 16-core processor, 64 GB of DDR4 ECC or non-ECC memory, as well as single and dual PCIe Gen 4 slots, and optional “ModBay” hot-swappable bays to add connectivity and storage option up to a six 2.5-inch SSD RAID array or 14 Ethernet ports.
GitEye is a graphical Git client for Windows, OSX, and Linux available in both 32-bit and 64-bit versions. Here we learn the steps and commands to install GitEye on Ubuntu 22.04 Jammy JellyFish and Ubuntu 20.04 Focal Fossa.
CollabNet is the developer behind GitEye to offer a desktop application for easily but graphically managing Git projects with functions of distributed version control in a graphical interface. Apart from GitEye, CollabNet also offers products related to cloud and ALM (Application Lifecycle Management).
This is not a comprehensive encyclopedia, but these are patterns we have met in the past for identifying user agent strings which are broken or future fail.
Do not use these ! and if your code is using one form of these, please change it. Tell me if you found new ones.
One thing that I’ve seen confuse newcomers to writing GObject-based Rust code is the glib::clone!() macro. It’s foreign to people coming from writing normal Rust code trying to write GObject-based code, and it’s foreign to many people used to writing GObject-based code in other languages (e.g. C, Python, JavaScript, and Vala). Over the years I’ve explained it a few times, and I figure now that I should write a blog post that I can point people to describing what the clone!() macro is, what it does, and why we need it in detail.
SpiderMonkey is the JavaScript engine used in Mozilla Firefox. This newsletter gives an overview of the JavaScript and WebAssembly work we’ve done as part of the Firefox 96 and 97 Nightly release cycles.
You can find initial list of new features in the Qt 6.3.0 from What's New in Qt 6.3 documentation. But please note the documentation is still under construction and will be updated until we are ready for the final release.
As usual, you can add the Qt 6.3 Alpha to the existing online installation by using the maintenance tool. Or you can do a clean installation by using the Qt Online Installer. Qt 6.3 Alpha source packages can be downloaded from the Qt Account portal and the download.qt.io as well.
The Qt Company just announced Qt 6.3 Alpha as the first formal test release for this next Qt6 toolkit update. The Qt Company also lifted the lid on their new Qt Quick Compiler where they are aiming for QML to run at "a speed close to native" for that interpreted language.
Qt 6.3 has been working on a new "Qt Language Server" module, there are a number of new functions in the Qt Core module, Qt Quick has added a MessageDialog that will provide a native dialog message box on supported platforms, "qmltc" as the new QML type compiler, the Qt Wayland Compositor module adds a Qt Shell that supports all windowing system features handled by Qt, Qt Wayland can now support creating custom shell extensions, support for Wayland's Presentation Time protocol, and a variety of other additions.
As most of you know, QML is an interpreted language. The flexibility of any interpreted language always comes with a potential decrease in performance. As we are very convinced of many other potentials of QML, we strive to reduce - if not to completely eliminate - this unpleasant potential. We implemented changes in the last Qt5 releases and especially in Qt6 helping to take a significant step towards our long term goal: make QML run at a speed close to native. This blog post explains what is new. The upcoming two blog post will elaborate the technology and its development history.
More information on "captured identifiers" (the ability to use in-scope variables directly in format strings) can be found on this page.
In this tutorial, we will show you how to install Apache NetBeans on Fedora 35. For those of you who didn’t know, The NetBeans (also known as Apache Netbeans) is an open-source and award-winning IDE (integrated development environment) application for Windows, Linux, and Mac. It offers excellent debugging capabilities, coding, plugins, and extensions with multiple out-of-the-box features.
This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the Apache NetBeans IDE on a Fedora 35.
[NightHawkInLight] has been developing his design for a vacuum canon for a while now, so it seems fitting to drop in check out the progress. The idea is pretty straightforward, take a long rigid tube, insert a close fitting piston, magnetically attached to a projectile, and stopper the open end with something easily destroyed. The piston needs to be pulled into the tube with some force, to pull a vacuum against the stopper. The interesting bit happens next, when the piston exits the other end of the tube, with the vacuum at its maximum, there is a sudden inrush of air. Apparently this inrush of supersonic velocity, and the momentum of the mass of air is sufficient to eject the projectile at considerable velocity, smashing through the plug and demolishing the target. So long as the target is of the soft and squishy variety anyway.
[Robert Murray-Smith] wanted to recreate how some ancient microscopes worked: with a drop of water as a lens. The idea is that the meniscus of a drop of water will work as a lens. This works because of surface tension and by controlling the attraction of the water to the surface, you can actually form convex and concave surfaces.
What’s interesting is that this doesn’t require a lot of equipment. Some plastic, a hole punch, some pens, a flashlight, and some other odds and ends. Then it’s just a matter of grabbing some puddle water and examining the critters inside. Of course, with a single lens, these are more properly magnifying glasses. Some claim that people in China built such instruments thousands of years ago. [Robert] mentions [Antonie van Leeuwenhoek] as the father of the microscope, although he wasn’t the first to build such a device. He did create amazing glass lenses using a method he kept secret but has been worked out using modern science.
Even if you'd never buy a Tesla, electric vehicles (EVs) are the future. There's only one big problem. Unlike a gas-based car, where you can always find a gas station when you need to top off, there's nothing like enough electrical charging stations. One big reason for this is that there's no standardization to speak of behind those chargers. The Linux Foundation (LF) plans on changing this with the new LF Energy EVerest project.
I don’t even know what I think about this. Researchers have developed a malware detection system that uses EM waves: “Obfuscation Revealed: Leveraging Electromagnetic Signals for Obfuscated Malware Classification.”
The diffoscope maintainers are pleased to announce the release of diffoscope version 200. This version includes the following changes:
* Even if a Sphinx .inv inventory file is labelled "The remainder of this file is compressed using zlib", it might not actually be. In this case, don't traceback, and simply return the original content. (Closes: reproducible-builds/diffoscope#299) * Update "X has been modified after NT_GNU_BUILD_ID has been applied" message to, for instance, not duplicating the full filename in the primary diffoscope's output.
Microsoft has pulled the January Windows Server cumulative updates after critical bugs caused domain controllers to reboot, Hyper-V to not work, and ReFS volume systems to become unavailable.
Ivanti has updated its Log4j Advisory with security updates for multiple products to address CVE-2021-44228. An unauthenticated attacker could exploit this vulnerability to take control of an affected system.
Security updates have been issued by Debian (firefox-esr), Fedora (cockpit, python-cvxopt, and vim), openSUSE (libmspack), Oracle (webkitgtk4), Scientific Linux (firefox and thunderbird), SUSE (kernel and libmspack), and Ubuntu (firefox and pillow).
In conjunction with a White House meeting on Thursday at which technology companies discussed the security of open source software, Google proposed three initiatives to strengthen national cybersecurity.
The meeting was arranged last month by US national security adviser Jake Sullivan, amid the scramble to fix the Log4j vulnerabilities that occupied far too many people over the holidays. Sullivan asked invited firms – a group that included Amazon, Apple, Google, IBM, Microsoft, and Oracle – to share ideas on how the security of open source projects might be improved.
Google chief legal officer Kent Walker in a blog post said that just as the government and industry have worked to shore up shoddy legacy systems and software, the Log4j repair process – still ongoing – has demonstrated that open source software needs the same attention as critical infrastructure.
We’ve covered quite a few stories about malware sneaking into the NPN and other JavaScript repositories. This is a bit different. This time, a JS programmer vandalized his own packages. It’s not even malware, perhaps we should call it protestware? The two packages, colors and faker are both popular, with a combined weekly download of nearly 23 million. Their author, [Marak] added a breaking update to each of them. These libraries now print a header of LIBERTY LIBERTY LIBERTY, and then either random characters, or very poor ASCII art. It’s been confirmed that this wasn’t an outside attacker, but [Marak] breaking his own projects on purpose. Why?
It seems like this story starts back in late 2020, when [Marak] lost quite a bit in a fire, and had to ask for money on Twitter. Two weeks later, he tweeted that billions were being made off open source devs’ work, citing a FAANG leak. FAANG is a reference to the big five American tech companies: Facebook, Apple, Amazon, Netflix, and Google. The same day, he opened an issue on Github for faker.js, throwing down an ultimatum: “Take this as an opportunity to send me a six figure yearly contract or fork the project and have someone else work on it.”
The mobile phones of dozens of journalists and activists in El Salvador have been hacked since at least early 2020 and implanted with Israeli-made Pegasus spyware typically available only to governments and law enforcement, according to a new report by a watchdog group.
The University of Toronto’s Citizen Lab said on Wednesday it had identified an operator of the spyware working exclusively in El Salvador and targeting journalists and activists, many of whom were investigating alleged state corruption.
While the researchers could not conclusively determine the hacks came from El Salvador’s government, the report said “the strong country-specific focus of the infections suggests that this is very likely”.
The University of Toronto's Citizen Lab along with Access Now have found the Pegasus spyware developed by the now-sanctioned NSO Group was used to target journalists and non-government organisations operating in El Salvador.
In total, the investigation found 35 individuals were targeted across 37 devices, with Citizen Lab having a high degree of confidence that data was exfiltrated from devices belonging to 16 targets.