AlmaLinux OS Foundation, the nonprofit that stewards the community owned and governed open source CentOS replacement AlmaLinux, today announced four new members have joined. Sine Nomine Associates has joined at the Gold Member level and three more are joining at the Silver Member level: Advanced Micro Devices (AMD), BlackHOST and Knownhost. New members are contributing resources that have enabled AlmaLinux to inch closer to full parity with Red Hat Enterprise Linux (RHEL).
In this video, I am going to show an overview of SparkyLinux 2022.03 and some of the applications pre-installed.
Do you know where your most-used files and directories are? Sure, there's more than a few commands you can run to find out, but ncdu is a great tool for this purpose. Using ncdu, you can scan your entire hard disk (or any mounted filesystem) and determine where your storage pain points are - and take action!
Apple's M1 processor has been turning heads since its launch in late 2020, and now there's a Linux distro designed exclusively for the chip that's already wowing people with its performance.
MySQL is an open-source, powerful, and widely used relational database management system (RDBMS) that organizes the data into single or multiple data tables where data types may be related to each other. Structured Query Language (SQL) works with RDBMSes, and when someone wants to store or manage a massive volume of data, they will acquire the service of relational database and SQL.
This article shows how to configure MySQL on your Ubuntu 18.04 server. It also shows you how to enable authentication, followed by service management. In the end, you will also learn how to test the service to verify the successful configuration.
Slackware is one of the oldest linux distributions active today. Back in my days Slackware was considered “hard” and “difficult” (read that sentence with an old lady voice). But after this article where I’ll show how to install Slackware 15 – with KDE desktop – you’ll judge that by yourself.
Follow through this guide to learn how you can integrate Linux Malware Detect with ClamAV. Linux Malware Detect (LMD), can be configured to use ClamAV as scanner engine for improved performance on large file sets. The clamscan engine is used in conjunction with native ClamAV signatures updated through freshclam along with LMD signatures providing additional detection capabilities.
Tutorial to install the Geany using command terminal on Ubuntu 22.04 Jammy JellyFish to start writing code.
Text editors are plentiful in the Linux world, IDEs (Integrated Development Environments) for programming are fewer, but still enough. It becomes difficult if you are looking for a mixture of both, ie a small and fast IDE that can also be used as a text editor. This is where Geany com
Not everyone is a fan of GUI interfaces. But some tasks really lend themselves to something over a bare command line. Very few people enjoy old command line text editors like edlin or ed. Debugging is another task where showing source files and variables at all times makes sense. Of course, you don’t absolutely have to have a GUI per se. You can also use a Text User Interface (TUI). In fact, you can build gdb — the GNU Debugger — with a built-in TUI mode. Try adding –tui to your gdb command line and see what happens. There are also many GUI frontends for gdb, but [cyrus-and] has an easy way to get a very useful TUI-like interface to gdb that doesn’t require rebuilding gdb or even hacking its internals in any way.
In this video, we are looking at how to install Microsoft Fonts on Zorin OS 16.
When you think Linux gaming you think of general Linux systems like PopOS, Arch, Manjaro, etc but soon that will change and Chromebooks will also have support for Steam and Proton
The latest update to Proton Experimental has rolled out pulling in a bunch of bug fixes, plus added support for multiple more games. A special testing version of Proton you can switch to and test, before everything rolls out to the main version of Proton. Need more info on Steam Play? Check out our page.
For the update to Proton Experimental on March 24, these are newly listed Windows games as playable: Fall in Labyrinth, King of Fighters XIII, Montaro, Metal Slug 2, Metal Slug 3, Double Dragon Trilogy, Baseball Stars 2, Saint Seiya: Soldiers' Soul, ATRI -My Dear Moments-.
Acid Man Games and Fire Plant Games continue building up their retro-styled fast-paced FPS with a major update available. Still in Early Access so it's a free upgrade for players.
It brings with it a whole second chapter to the game with 7 levels, 8 new types of enemies, 2 new weapons, loadout customization when replaying a finished level. Plus a ton of other tweaks and an assortment of bug fixes.
Did you miss the itch.io bundle? Perhaps the Humble Bundle doing the same just isn't for you? Well, Fanatical have their own Stand With Ukraine Charity Bundle. Another way to help while getting a little something back with all proceeds being donated to the Red Cross in Ukraine.
At GDC the NVIDIA team had plenty of announcement, most of them not interesting to us but Kickstart RT definitely jumps out. A new SDK under the open source MIT license allowing game engine developers and games to integrate Ray Tracing a lot easier.
If you both enjoy playing video games and drawing, telling stories, or creating art, you may have wondered how to make a video game yourself. The good news is that the internet's array of free, open-source game engines have made this easier than ever before!
We last left off with the beta versions of the wallpaper that were created in Krita, which can be found here with their design process explained.
We received a lot of great feedback including suggestions for a strictly night version with the moon glowing instead of a sunset, adding butterflies to the day version, as well as shifting some of the clouds around so they didn’t stack and make the right side of the wallpaper too heavy. The previous version is below in Day, Sunset, and Night mode.
We review the recently released Linux Mint Debian Edition 5 (LMDE 5) in terms of performance, stability & user-friendliness. Here's what we have found.
Free, Open Source and Cross Platform messaging and emailing app that combines common web applications into one.
Smart home technology has long been the subject for futurists predicting robot butlers and the like. While we may not have “The Jetsons” style tech available to us just yet, smart home technology has come a long way in recent years.
Let’s take a look back at the journey of smart home technology, uncover some of the trends in this industry’s development, and take stock of where we are now.
Arduino will soon launch a $239 “Portenta X8” module that combines a quad -A53 i.MX8M Mini with an STM32 Cortex-M7 and -M4 SoC and runs Linux in a Foundries.io container stack. A $335 “Portenta Max Carrier” will add GbE, USB, COM, CAN, and mini-PCIe.
Arduino Pro, the recently launched professional business unit of Arduino, announced the Portenta X8 module, its first hybrid Linux/Arduino board since the 2018 Arduino Yún Rev 2. (See farther below for a brief history of Linux-ready Arduino boards.)
Arduino is a company that’s best known for making small, programmable microcontroller boards. But the new Arduino Pro Portenta X8 is a full-fledged, Linux-friendly computer with a compact design.
The board measures just 2.6ââ¬Â³ x 1ââ¬Â³ but features a quad-core ARM Cortex-A53 processor, 2GB of RAM, 16GB of eMMC storage, a USB-C port, WiFi and Bluetooth support, a Gigabit Ethernet interface, and a microcontroller.
Foundries.io and Arduino are joining forces to make embedded Linux-powered internet of things and edge computing devices more secure. Foundries.io announced the partnership Thursday.
The deal will combine technological innovations with Foundries’ cloud-native development and deployment enterprise solutions for secure IoT and edge devices. Those solutions will integrate with the Arduino Pro Portenta X8 release, also announced Thursday.
Purism announced key leadership roles to support its growth plans. Chief Security Officer, Kyle Rankin, will step up to hold the responsibilities of Purism as its President. Chief Technology Officer, Nicole Faerber will serve as Vice- President (VP) in addition to her CTO role. Todd Weaver, the Founder and CEO of Purism will maintain his position.
After a lifetime of work as a software developer, architect, and technology advocate, Todd Weaver founded Purism to make high quality, safe, and secure hardware that respects civil liberties, freedoms, and privacy. In 2014, Weaver started Purism with crowdfunding a 15-inch Librem laptop for a quarter million-dollar funding goal. Purism has grown substantially and now has a sophisticated portfolio of digitally responsible, high-quality, and safe products, software, and services that allow people the default position of complete freedom with the choice to ‘opt’ into features they desire.
Over on the Collabora blog, Jason Ekstrand has a detailed look at writing a Vulkan graphics driver in today's world. "Not only has Vulkan grown, but Mesa has as well, and we've built up quite a suite of utilities and helpers for making writing Vulkan drivers easier." The blog post takes the form of a tutorial of sorts, though the end result is not a functioning Vulkan driver the framework of one is shown.
This is a recorded online presentation about curl that I did today, March 24 2022. How it started, grew, where it is today, how we make it and where it perhaps might go in the future.
Join us next week for Open Source 101, a one-day conference where we'll dive into the latest around FOSS virtual & augmented reality, and look at the implications of enabling automated testing upstream!
Designed for developers, technologists, students and decision makers alike, this educational event will touch on different tools and processes that are integral to navigating different aspects of open source. It's an excellent opportunity for novice learners but also for those more experienced to reinforce any insights that they might have,
If you’re in search of open-source web browsers that are lesser-known to you, this article is written for you. This article takes you through 5 amazing open-source web browsers that are readily available for your Linux system. Let’s find out the options to choose from in 2022.
And we have reached the conclusion. Open-source web browsers can make your browsing super comfortable while taking complete care of your internet presence. Tor and Pale Moon would be recommended in that case. To go with a web browser that’s developed by the Linux distros and for using Linux distros, GNOME Web and Konqueror are must-try. With Konqueror, you’re also able to do the file management-related work in a better way. If you want your web browser to be speedy, select NetSurf. NetSurf is simple and efficient to be used on various hand-held hardware, such as mobile phones, cable TV boxes, etc.
I hope this article is useful for you and it helps you make a suitable choice of open-source web browser for your Linux operating system in 2022.
If you have Chrome or Edge on a Windows 10 machine with an updated software package and great graphics support, you can probably run the AV1 video codec. As far back as 2020, Google and Microsoft were officially supporting hardware acceleration in their flagship browsers, but the Mozilla Foundation didn't make including AV1 video support in Firefox a priority because it requires powerful PCs with current software. According to Mozilla, that was just a small percentage of PCs.
Mozilla plans to release a new stable version of the organization's Firefox web browser today. Firefox 98.0.2 includes four fixes, one of which resolves a crash issue on Windows.
Firefox is known for its numerous add-ons that enhance the browsing experience on desktops, but many are also available on mobile. Mozilla initially added add-on support to the Android version of Firefox in 2020. Now, there are many available add-ons for Firefox on Android, including many of the favorites on desktop. The best part about it is that the user can install the add-ons from within the browser itself, which means they don't have to search for them online.
MDN is one of the most trusted resources for information about web standards, code samples, tools, and everything you need as a developer to create websites. In 2015, we explored how we could expand beyond documentation to provide a structured learning experience. Our first foray was the Learning Area, with the goal of providing a useful addition to the regular MDN reference and guide material. In 2020, we added the first Front-end developer learning pathway. We saw a lot of interest and engagement from users, and the learning area contributed to about 10% of MDN’s monthly web traffic. These two initiatives were the start of our exploration into how we could offer more learning resources to our community. Today, we are launching MDN Plus, our first step to providing a personalized and more powerful experience while continuing to invest in our always free and open webdocs.
A sharp-eyed search marketer noticed that Yoast was generating duplicate sitemaps. It’s not known how long this has been happening, but the head of SEO at Yoast acknowledged the bug and noted that Yoast is aware of the problem and says it is working on a fix.
I recently discovered a race condition (https://crbug.com/project-zero/2247) in the Linux kernel. (While trying to explain to someone how the fix for CVE-2021-0920 worked - I was explaining why the Unix GC is now safe, and then got confused because I couldn't actually figure out why it's safe after that fix, eventually realizing that it actually isn't safe.) It's a fairly narrow race window, so I was wondering whether it could be hit with a small number of attempts - especially on kernels that aren't built with CONFIG_PREEMPT, which would make it possible to preempt a thread with another thread, as I described at LSSEU2019.
This is a writeup of how I managed to hit the race on a normal Linux desktop kernel, with a hit rate somewhere around 30% if the proof of concept has been tuned for the specific machine. I didn't do a full exploit though, I stopped at getting evidence of use-after-free (UAF) accesses (with the help of a very large file descriptor table and userfaultfd, which might not be available to normal users depending on system configuration) because that's the part I was curious about.
This also demonstrates that even very small race conditions can still be exploitable if someone sinks enough time into writing an exploit, so be careful if you dismiss very small race windows as unexploitable or don't treat such issues as security bugs.
Jann Horn describes in great detail the process he went through to exploit a tiny race window in the kernel.
Redis has introduced RedisJSON 2, an enhanced version of the Redis module that implements the JSON Data Interchange Standard as a native data type. The module can be used to store, update and fetch JSON values from Redis documents.
Redis is an open source, BSD licensed, advanced key-value store where the keys can contain strings, hashes, lists, sets and sorted sets. It’s popular for web development as a session state store because of its simplicity and rich data structure support.
Quite a few people asked me recently how I deal with anxiety. I seem to be less anxious than people around me. First of all: I also have anxiety, just like anybody else. The recent company acquisition & reorganization, the COVID-19 pandemic, the upcoming general elections, or the Russian attack all make sure that once a problem is over, there is a new problem already to worry about. However, sport, music and spending less time reading the news all help to keep my anxiety at bay.
Yesterday afternoon - after I wrote about my negative COVID test in the morning - my wife called that she is sick. I only had 20 minutes of work left then I drove home to her.
She had fever and we did another COVID test in the evening which also turned out to be negative. As the fever did not go away at night, she called in sick this morning. I also opted to work from home today should she be seriously ill. However around noon she already felt better. Nonetheless we'll do a couple of tests just to be sure.
CISA, the Federal Bureau of Investigation, and the Department of Energy have released a joint Cybersecurity Advisory (CSA) detailing campaigns conducted by state-sponsored Russian cyber actors from 2011 to 2018 that targeted U.S. and international Energy Sector organizations. The CSA highlights historical tactics, techniques, and procedures as well as mitigations Energy Sector organizations can take now to protect their networks.
Slack has fallen over for a subset of users, as the messaging platform admitted that "something's not quite right" with a number of its critical services.
The outage coincides with the return to work from a three-day weekend for many of the company's US users.
ZenHub, the leading productivity management solution for software teams, today announced that it has joined the Cloud Native Computing Foundation€® (CNCF€®), which builds sustainable ecosystems for cloud native software. This collaboration gives ZenHub the ability to increase its participation in and give back to the Kubernetes ecosystem that ZenHub’s entire production and CI/CD infrastructure runs on. Additionally, this news reaffirms ZenHub’s commitment to supporting the open source model and the communities that make it the most powerful engine for innovation in the world today.
Exploitable remotely/low attack complexity
[...]
Successful exploitation of this vulnerability could allow arbitrary operating system commands injection.
CENTUM and Exaopc have a DLL injection vulnerability and a DLL planting vulnerability using the DLL search order vulnerability. See this link for further details on this exploit type.
VMware has released security updates to address multiple vulnerabilities in VMware Carbon Black App Control software. A remote attacker could exploit these vulnerabilities to take control of an affected system.
Many of its other findings will come as no surprise for the enterprise technology world: cut down on the siloed quick-fixes and focus instead a modularity and integration.
Gartner reckons the 10 trends to look out for include "Anything as a Service" (XaaS), with 95 per cent of new IT investments being made in XaaS over the next three years.
It helpfully includes IT infrastructure and software services under the XaaS banner as well as cloud subscriptions. An acceleration in the modernization of legacy systems is also predicted (already rolling thanks in part to the COVID-19 pandemic) as well as "Data Sharing as a Programme" rather than a knee-jerk reaction "driven by high-profile incidents."
Whitney joined Ryan to discuss the connection between January 6th, the Azov Battalion, Ukraine, and the “War On Domestic Terror”.
If you've been wondering about the fate of Ukraine's nuclear power stations amid Russia's full-on invasion of the nation, you're not alone. Here's an update from the International Atomic Energy Agency (IAEA).
The Chernobyl plant, which is being held by Russian troops, lost its connection to Ukraine's power grid on March 9, and since then it's been running its systems on power from diesel generators.
[Radio Nowy à šwiat] with about 30 000 patrons and income of more than 3 000 000 euros, and [Radio 357] with about 40 000 patrons and income of about 2 500 000 euros. It is said that two radio stations, which were created from bottom to up by people, with so much money collected by people, it's a unique thing in the world. I am contributing monthly to one of them also.
So I am listening to the like-traditional radio (on the Internet) which has an all-day schedule. With professional radio editors, many music genres, types of radio programs. There are also some Polish radio stars, which have recognizable and had an impact on the radio market in Poland. With original content produced by them. But without advertisements. It can spoil you. This situation could go on forever.
Luigi Russolo (1885–1947) was well into a successful painting career when he turned to music in his 1913 manifesto The Art of Noises (L’arte dei rumori). Announcing an intention to “enlarge and enrich the field of sound”, the Futurist polymath waxed poetic about the modern city’s sonic landscape — “the throbbing of valves, the bustle of pistons”, and “the shrieks of mechanical saws”. For Russolo, the noisy nature of everyday, industrializing Europe offered new ways of perceiving the acoustic world and a means of shaking concert music loose from its stagnant orchestral roots. With significant help from his assistant, Ugo Piatti, Russolo set out to put these ideas into practice, working day and night to “achieve the great ideal of a complete orchestra of noise instruments [intonarumori]”. Within three months, they had built their first creation, a “burster” (scoppiatore), and premiered it before an audience of two thousand at Teatro Storchi in Modena, Italy. Meant to mimic a car engine’s sputter, the instrument, by all appearances a simple wooden box with an enormous speaker cone attached, had a playable range between two octaves, modulated by a crank and lever. This “burster” was soon followed by a “hummer”, a “rubber”, which evoked spatulas scraping rusty pans, and the “crackler” — a sonic chimera sounding like something between a mandolin and a machine gun.
Little remains today of Russolo’s instruments beyond scattered diagrams and photographs, which have been used on multiple occasions to create playable replicas. Aside from a fragment of the score for Risveglio di una città, none of Russolo’s compositions for the intonarumori survive. Yet, miraculously, two gramophone recordings were produced by Russolo and his brother Antonio in 1921 and have been successfully preserved. In these grainy time-capsules, the intonarumori seem to be in conflict with one another, battling for sonic space alongside traditional instruments at what sounds like the end of a long tunnel. In Corale, an asinine, plodding orchestral score is rendered unsettling by the violent roar of an unidentifiable machine. Serenata features even less of the intonarumori, but their occasional presence turns a sentimental serenade of strings and woodwinds into a carnivalesque nightmare. Tempered by the presence of instruments from the past and by the limits of contemporary technology, the “noise intoners” nevertheless make their intense energy felt through Russolo’s soundscapes.
