Bonum Certa Men Certa

Links 18/05/2022: Qt Company Loses Chief; OpenSUSE Leap Micro 5.2 and RHEL 9 Final



  • GNU/Linux

    • Audiocasts/Shows

      • Jupiter BroadcastingLuxury Emotional Manipulation | Coder Radio 466

        Why Mike feels like Heroku is in a failed state, what drove us crazy about Google I/O this year, how Chris botched something super important, and some serious Python love sprinkled throughout.

    • Applications

      • MedevelLufi is an open-source E2E encrypted file sharing software

        Looking for a simple web-based file sharing software, with a strong encryption? Then Lufi may be your answer.

        Lufi is a self-hosted drop file sharing solution that comes with E2E encryption. It also tested and proven great on Firefox, Google Chrome, Internet Explorer 11, Microsoft Edge, Safari and mobile browsers as iOS, and Android.

        It is an open-source, free alternative to Sharedrop.io, and jetdrop.net, but it puts you in control of your data.

        Lufi is an ideal solution for designers, creative teams, freelancers, and UI/ UX experts.

      • Linux LinksBest Free and Open Source Alternatives to Google Drawings

        Google has a firm grip on the desktop. Their products and services are ubiquitous. Don’t get us wrong, we’re long-standing admirers of many of Google’s products and services. They are often high quality, easy to use, and ‘free’, but there can be downsides of over-reliance on a specific company. For example, there are concerns about their privacy policies, business practices, and an almost insatiable desire to control all of our data, all of the time.

        What if you are looking to move away from Google and embark on a new world of online freedom, where you are not constantly tracked, monetised and attached to Google’s ecosystem.

        In this series we explore how you can migrate from Google without missing out on anything. We recommend open source solutions.

      • Ubuntu PitTop 5 Best Open Source Passive OS Fingerprinting Tools in 2022

        In the world of ethical hacking, OS fingerprinting is a very popular method to get an idea about the potential victim’s operating system. The hacker sends some packets and commands over the network to the target system to get the exact guess about the target’s operating system, architecture, and security details. In this way, the hacker can make his plan more efficient and more powerful. There are two types of fingerprinting which are; passive and active. Most expert hackers and network admins use passive OS fingerprinting tools to provide real-time results with a higher accuracy value.

        As I have already mentioned that OS fingerprinting is divided into two domains, which are passive and active. Most frequently, we talk so much about the passive method; in passive fingerprinting, the hacker or the attacker can hide his own identity from the victim.

        This method is more perfect and appropriate for hacking. Though passive fingerprinting is more secure and convenient, it is a bit slower than the active method. The active fingerprinting works as a handshake.

      • MedevelFilestash is an open-source web file manager and Dropbox alternative

        Filestash is a self-hosted open-source Dropbox alternative that supports multiple user collaboration and a dozen of storage modules.

        With Filestash, you can connect to Amazon S3, Dropbox, Google Drive, FTPS and add more storage modules.

      • MedevelPapermerge is a new Document Manager solution for enterprise

        Papermerge is an open source document management system (DMS) primarily designed for archiving and retrieving your digital documents. Instead of having piles of paper documents all over your desk, office or drawers - you can quickly scan them and configure your scanner to directly upload to Papermerge DMS.

        Papermerge DMS on its turn will OCR the document and index it. You will be able to quickly find any (scanned!) document using full text search capabilities.

      • Ubuntu HandbookWarp – Modern New GTK4 File Transfer App for both Local & Internet Networks | UbuntuHandbook

        Looking for a peer to peer file transfer app that works outside the local network? Warp is the stupid simple application to do the trick for Linux.

        There are a few applications for LAN file transferring, such as Warpinator and Dukto. For sending date all over the world, Warp is a new GTK4 app for transferring any arbitrary-sized files and directories without struggling with Linux command or using a cloud service.

        The app provides a stupid simple interface with 2 tabs: Send and Receive. Simply click on the “send file” (or folder) button and select your data, it will generate a transmit code.

    • Instructionals/Technical

      • HowTo GeekHow to List Users in Linux

        Linux is a multiuser operating system, so creating numerous user accounts is easy. Over time, it’s easy to lose track of which accounts are required. Listing user accounts helps you manage them.

      • How to manage Vim plugins natively

        Vim is definitely one of the most venerated text editors in the Unix world. Although its learning curve can be pretty steep when accustomed to more traditional text editors, its usage can dramatically improve productivity. A lot of plugins are available for the editor; almost always their source code is hosted on Github or similar platforms based on Git. To manage such plugins, several third-party plugin managers were developed in time, such as Pathogen or Vim-Plug, but since version 8 of the editor, a native way to manage plugins was introduced.

      • ByteXDHow to Install Jupyter Notebook on Ubuntu - ByteXD

        Jupyter Notebook is a Python package that lets you host an interactive computing platform.

        You can access that platform via a web browser where you can edit notes, run code and it shows you the output of your code.

        Jupyter is mainly developed to be used as a data science and scientific computing tool. Not only can you use Jupyter to write python programs, Jupyter actually supports many programming languages.

        Also you can write blocks of text in your notebooks using markdown format, as well as writing mathematics. Lastly you can also add plots, photos and rich media.

        Jupyter isn’t supported under old versions of Python, it is supported under Python 3.3 (or greater), or Python2.7 (or greater). There are two methods to install Jupyter in Ubuntu or, for that matter, any other OS that runs Python, and this article will show you how to install it in Ubuntu.

      • Wanted: How to set up a Gemini server, for complete idiots.

        I've never sys-admined or ran a public-facing server -- well, not in the last 30 years, anyway. So I have a healthy fear of forgetting to do something obvious and getting pawned immediately by some script-kiddie. Beyond my router, monsters roam, waiting for a crack in the fence.

      • Gemini Beginner Selfhosting Guide

        Stacksmith recently wanted a simple Gemini self hosting tutorial, so here I go.

        The guide contains everything from installing, to hardening with a Systemd service.

      • HowTo ForgeHow to use Screen Command on Linux [Ed: It's a GNU program, not "command on Linux"]
      • ByteXDOpenSSL Command Cheatsheet & Real World Examples - ByteXD

        OpenSSL is a set of crypto and hash tools that can be used to encrypt data and verify signatures. It’s a command line tool that can be used to generate keys, encrypt and decrypt data, sign and verify signatures, and generate and verify CSRs.

        In this tutorial we’ll cover some of the most common OpenSSL commands and how to use them. We’ll also discuss important terms and concepts related to encryption and digital signatures.

      • OpenSource.comA guide to Pipy, a programmable network proxy for cloud

        Pipy is an open source, cloud-native, network stream processor. It is modular by design and can create a high-performance network proxy. It's written in C++ and is built on top of the Asio asynchronous I/O library. Pipy is ideal for a variety of use cases ranging from edge routers, load balancers, proxy solutions, API gateways, static HTTP servers, service mesh sidecars, and more.

        Pipy also comes with built-in JavaScript support through PipyJS. PipyJS is highly customizable and predictable in performance, with no garbage collection overhead. Currently, PipyJS is part of the Pipy code base, but it has no dependency on it and in the future it may be moved to a standalone package.

      • How To Install Ubuntu 22.04 LTS with Dualboot, UEFI, and External Drive Methods

        This tutorial explains in step by step how you can install Ubuntu 22.04 LTS "Jammy Jellyfish" into your computer or laptop. We will use a USB flash disk drive storage instead of hard disk. By practicing, you will be able to adapt this tutorial to install Ubuntu into hard disk, external HDD, and also SSD. Please note that this will help you making dualboot with Windows, no matter if your computer features BIOS Legacy or UEFI. Start everything with the preparations below and now let's go. Happy installing!

      • Reset Sudo Password In Ubuntu 22.04 LTS - OSTechNix

        This brief guide explains how to reset sudo password in Ubuntu 22.04 and 20.04 LTS desktop and server editions from rescue mode.

      • Its FOSSInstall Specific Package Version With Apt Command in Ubuntu - It's FOSS
      • HowTo ForgeHow to Install ONLYOFFICE Docs on Ubuntu for ARM

        ONLYOFFICE Docs is an open-source office suite distributed under GNU AGPL v3.0. It comprises web-based viewers and collaborative editors for text documents, spreadsheets, presentations, and forms compatible with OOXML formats.

      • OSNoteHow to Install Webfs Web Server on Ubuntu – OSNote

        Webfs is a nice small web server that helps users to host static content immediately. The web server when installed is capable of hosting static websites and media. It is a better alternative to heavy-duty web servers that are more CPU hungry. You will see how to install Webfs on an Ubuntu server in the next steps, this guide is compatible with Ubuntu 20.04 to Ubuntu 22.04.

    • Games

      • Boiling Steam2900 Games On The Steam Deck with Chrono Cross and Star Wars Squadron Verified

        Valve and their partners are progressing well, with a steady pace now when it comes to validating games for the Steam Deck, with more than 2900 games validated. There are now 2902 games at the time of writing working on the Steam Deck – in two categories as usual...

      • Godot EngineGodot Engine - Release candidate: Godot 3.5 RC 1

        The upcoming Godot 3.5 is now considered feature complete, and has received a lot of bugfixes and improvements over the past weeks thanks to all the testers and developers who reported and fixed issues. It's now time to move to the Release Candidate stage so that we can release 3.5-stable for all users.

        At this stage we need people to test this release (and potential follow-up RCs) on as many codebases as possible, to make sure that we catch non-obvious regressions that might have gone unnoticed until now. If you run into any issue, please make sure to report it on GitHub so that we can know about it and fix it!

  • Distributions and Operating Systems

    • New Releases

      • Proxmox Backup Server 2.2 available

        We are excited to announce version 2.2 of our Proxmox Backup Server! It's based on Debian 11.3 (codename "Bullseye"), but using the newer Linux kernel 5.15, and including ZFS 2.1.4.

        We have a new namespace feature which allows you to simplify backup management from multiple sources on-premises, remotely, and in the cloud, by organizing backups into "namespaces" within a single datastore.

        The new “read-only” and “offline” maintenance modes allow for safer maintenance work on a datastore.

        Countless bugfixes and smaller improvements are included as well, see the full release notes for details.

        A big THANK YOU to our community! We are really grateful for all the support and feedback, testing, bug reporting and patch submitting.

    • SUSE/OpenSUSE

      • LWNopenSUSE Leap Micro 5.2 released

        Let me remind users that the main documentation source for Leap Micro is SLE Micro documentation referenced bellow. The same applies to Leap itself.

        We recommend to try our self-install image for VM and host deployments (see demo on download page).

        For security reasons images have no root password set so you'll have to use *ignition or combustion to set it up (unless you use the Offline installer).

        People who are interested in k3s use case should have a look at the recent *work of Atilla. the combustion should work on both SLE/Leap Micro and MicroOS. I would like to consider offering recommended combustion scripts as part of the image download/experience on get-o-o.

        Big thanks to all that participated!

    • Fedora Family / IBM

      • 9to5LinuxRed Hat Enterprise Linux 9 Is Finally Here, This Is What’s New

        This major release also introduces the ability to build both Red Hat Enterprise Linux 9 and Red Hat Enterprise Linux 8 images via a single build node, better support for customized file systems, and bare-metal deployments, Smart Card Authentication support via Web Console, new security profiles, support for IMA (Integrity Measurement Architecture) digital hashes and signatures, detailed SSSD login, OpenSSL 3 integration, and disablement of SSH root password login by default for better security.

      • Red Hat OfficialWhat's new in Red Hat Enterprise Linux 9 for edge computing
        Each release of Red Hat Enterprise Linux (RHEL) is an exciting time and establishes a ten-plus year foundation for the industry to build upon. RHEL 9 marks the next milestone and offers improvements across the board in areas of stability, performance, upgrades and security capabilities. With edge computing being a strategic target for many of our customers, this post takes an in-depth look at the most significant features targeted to remote deployments.

      • Red Hat OfficialHot Off the Presses: Red Hat Enterprise Linux 9
        We are excited to announce the availability of Red Hat Enterprise Linux 9 (RHEL 9), the latest release of the world’s leading enterprise Linux platform. RHEL 9 provides a more flexible and stable foundation to support hybrid cloud innovation and a faster, more consistent experience for deploying applications and critical workloads across physical, virtual, private and public cloud and edge deployments.

      • Red HatWhat's new in Red Hat Enterprise Linux 9

        Red Hat Enterprise Linux (RHEL) 9 is now generally available (GA). This release is designed to meet the needs of the hybrid cloud environment, and is ready for you to develop and deploy from the edge to the cloud. It can run your code efficiently whether deployed on physical infrastructure, in a virtual machine, or in containers built from Red Hat Universal Base Images (UBIs).

      • ByteXDWhat is Rocky Linux – Key Information and Overview

        Rocky Linux is a Linux distribution that is a 100% compatible rebuild of Red Hat Enterprise Linux (RHEL). Rocky Linux is maintained by the Rocky Linux Foundation.

        The Foundation and distribution are led by Gregory M. Kurtzer, one of CentOS’s original founders. Rocky Linux is now very popular both with individuals and large organizations and considered an unofficial successor of CentOS Linux.

        In this article, we’ll try to give you an overview of Rocky Linux and what you need to know about it.

      • Fedora ProjectBackwards-incompatible changes in Bodhi

        The 6.0 release of Bodhi — Fedora’s update gating system — will be published in a few days. We will deploy it to production a couple weeks after the Fedora release. It includes backwards-incompatible changes. Here’s what you need to know.

        [...]

        We reorganized the Bodhi source code to drop the hacks used in setup.py to support sub-projects. Instead, bodhi-server, bodhi-client and bodhi-messages are now actual Python package directories in the repo. The import path has not changed.

    • Debian Family

      • Linux MagazineTitan Linux is a New KDE Linux Based on Debian Stable

        Titan Linux is a new Debian-based Linux distribution that features the KDE Plasma desktop with a focus on usability and performance.

        With a foundation built on the Debian Stable Branch, Titan Linux takes a functional, yet a minimal approach to KDE Plasma to create an operating system that is as functional as it is performant. Titan Linux features a minimal KDE Plasma desktop, the stable LTS kernel, a wide range of hardware support, a large independent community of supporters, and a brand new management system, called the Titan Toolbox that makes it possible to manage the operating system with a single click.

    • Canonical/Ubuntu Family

      • UbuntuBring your multi-platform apps to Linux desktop with Flutter 3 | Ubuntu

        Google I/O 2022 took place last week and brought with it a host of exciting news from the world of Google, including the announcement of Flutter 3 with long-awaited Linux Desktop support!

        Flutter 3 is the next big step in Flutter’s journey to enable multi-platform application development across what is now six platforms: iOS, Android, Web, Windows, macOS and Linux. It features improved performance and additional profiling in Flutter DevTools, support for Material 3, Apple silicon, accessibility services and web app life-cycles on top of the snazzy new Flutter Casual Games Toolkit and much more

      • UbuntuCanonical at AWS Summit Washington 2022 | Ubuntu

        Our collaboration wth AWS has started in 2012 making 2022 the 10th year of working together to deliver premium open source solutions in the cloud. With Public Sector designation, our goal is to continue supporting AWS providing security and compliance for Government agencies and contractors on AWS Govcloud as and all AWS regions.

    • Devices/Embedded

      • CNX Software$349 AMD Kria KR260 Robotics Starter Kit takes on NVIDIA Jetson AGX Xavier devkit - CNX Software

        AMD Xilinx Kria KR260 Robotics Starter Kit features the Kria K26 Zynq UltraScale+ XCK26 FPGA MPSoC system-on-module (SoM) introduced last year together with the Kria KV260 Vision AI Starter Kit.

        Designed as a development platform for robotics and industrial applications, the KR260 is said to deliver nearly 5x productivity gain, up to 8x better performance per watt and 3.5x lower latency compared to Nvidia Jetson AGX Xavier or Jetson Nano kits. We’ll have a better look at the details below.

      • 128 Cores for AI Vision Projects, the reComputer Jetson-10 - The DIY Life

        The reComputer Jetson-10 is a new product by Seeed Studios, that consists of a palm-sized aluminium case that houses a passively cooled NVIDIA Jetson module. The module runs on their custom carrier board that is designed for AI application development and deployment. They have sent me their H0 model which runs a Jetson Nano module with 128 NVIDA CUDA cores that can deliver up to 0.5 TFLOPS of computing performance. It’s also got a Quad-core ARM A57 CPU running at 1.43 GHz, 4GBs of LPDDR4 RAM and 16GB of EMMC storage.

    • Open Hardware/Modding

      • CNX SoftwareExo Sense RP - A Raspberry Pi RP2040-based multi sensor module - CNX Software

        Sfera Labs Exo Sense RP is a multi-sensor module with a Raspberry Pi RP2040 microcontroller and various sensors to report temperature, humidity, air quality (VOC), light intensity, audio, and motion.

        The module can work as a standalone unit but can also communicate with a host through RS485 and USB interfaces, and supports expansion via surge-protected digital inputs and outputs. The Exo Sense RP is designed for indoor residential and commercial applications such as environmental monitoring and data logging, people and assets tracking, room management, access control, and more.

    • Mobile Systems/Mobile Applications

  • Free, Libre, and Open Source Software

    • Events

      • The Register UKPercona launches open-source database management system ● The Register

        Open-source database services biz Percona has confirmed general availability of a database management platform initially targeted at PostgreSQL, MySQL, and MongoDB.

        Dubbed Percona Platform, the company's first product will be available as a subscription service aiming to bring together the management of three open-source databases under a single system.

    • Web Browsers

      • Linux MagazineNot So Brave New World

        The Brave browser promises speed and privacy, but its quest for profit compromises security at every turn.

        I had thought that for-profit web browsers had died with the 20th century. Long since, I imagined, the web browser had become such an essential part of modern computing that there was no profit left in it. Brave Software, however, disagrees. Since 2016, the company has been developing its open source browser (Figure 1), attempting to fund it with a restricted marketplace for ads -- an idea compelling enough to convince venture capitalists to invest over seven million dollars. However, those with minimal knowledge of privacy and security are likely to think to otherwise. Based on Chromium and compatible with Chrome extensions, the Brave browser itself is functional enough, with an array of tools designed to appeal to modern users, especially those who want to dabble in cryptocurrencies. Yet again and again, Brave reveals itself as a battleground where privacy and security are at odds with the quest for profit.

      • Mozilla

        • MozillaManifest v3 in Firefox: Recap & Next Steps | Mozilla Add-ons Community Blog

          It’s been about a year since our last update regarding Manifest v3. A lot has changed since then, not least of which has been the formation of a community group under the W3C to advance cross-browser WebExtensions (WECG).

          In our previous update, we announced that we would be supporting MV3 and mentioned Service Workers as a replacement for background pages. Since then, it became apparent that numerous use cases would be at risk if this were to proceed as is, so we went back to the drawing board. We proposed Event Pages in the WECG, which has been welcomed by the community and supported by Apple in Safari.

          Today, we’re kicking off our Developer Preview program to gather feedback on our implementation of MV3. To set the stage, we want to outline the choices we’ve made in adopting MV3 in Firefox, some of the improvements we’re most excited about, and then talk about the ways we’ve chosen to diverge from the model Chrome originally proposed.

    • Productivity Software/LibreOffice/Calligra

      • Its FOSSONLYOFFICE 7.1 Release Adds ARM Compatibility, a New PDF Viewer, and More Features
        ONLYOFFICE, one of the best open-source Microsoft Office alternatives, has just released its new upgrade, i.e., version 7.1.

        If you didn’t know, you can use ONLYOFFICE with online integration on your self-hosted server (like Nextcloud) or the desktop.

        This release brings exciting new changes, notably initial support for ARM-based devices like the Raspberry Pi.

    • Content Management Systems (CMS)

    • Programming/Development

      • New Chief Maintainer

        As I’ve said in my other email, I am resigning from my position at The Qt Company to join a small startup in Norway that is working with things unrelated to Qt.

      • Leaving The Qt Company

        Hi all, Let’s take the big news first. I’ve resigned from my position at The Qt Company. More on that and what it means for the Qt Project further below.

        But as I’ve spent almost exactly 25 years in the Qt ecosystem, 22 of those working for the various companies owning Qt, I hope it’s ok if this gets a bit longer and I spend some paragraphs looking back into history. As said, it’s been almost exactly 25 years, since I first heard about Qt. At that time, I read an article in the German C’t computer magazine about a new Desktop project for Linux called KDE. The underlying technology being used was Qt. As a person that used Linux extensively during his studies, I immediately got interested and it didn’t take long until I started my first steps learning Qt. As some of you might know I got involved rather deeply about a year or two later, when I started the KHTML project to create a new HTML engine for KDE in 1998/1999. That project was later forked by Apple to form the basis for their WebKit project, the Safari browser and Google’s Chrome browser. It's cool to think that the browser engine(s) that most people use today started off as a Qt based project all those years ago. I remember getting to know some of the people working for Trolltech back then at KDE conferences. In the winter of 2000, they invited me over to Oslo to have a look at Qt. The company was at that time still tiny with 11 or 12 employees. I got a great tour of Oslo including the ski jumping tournament at Holmenkollen and signed up for the job. I was originally expecting to spend 2-3 years at Trolltech and then at some point move back to Germany. As you all can see, that’s not how it went though. I ended up staying in Norway and have been working with and for Qt ever since. Starting with Qt 1.0, Trolltech released the source code to Qt (at that time only for Linux/Unix), and the Open Source nature of Qt played a big part in its success. I’m very happy that we could continue on that path, by over time making all platforms Qt supports available as Open Source as well as moving over to more standard and freer licensing (first GPL, later LGPL). At the end of the Trolltech years, we started looking into how to make it easier for the community to contribute to Qt, and first had a model where our users could submit patches to us. That never really worked very well, and I’m really happy that we moved over to our current governance model in 2011. Since then Qt has truly been an Open Source project. When Qt got sold by Nokia in 2012, many people considered it a dead technology. But I and many of you believed in the technology, and together we’ve managed to turn this into a great success. As you all know, Qt is a dual licensed technology. That Qt has the backing of a commercial business behind it, is what made the required investments possible to keep the technology competitive. I’m extremely proud of what we achieved with Qt over the last 10 years. It happened because everybody on this list put in a lot of work into making Qt one of the best development frameworks on this planet. Qt is something that I care deeply about. I’ve been with it all the way and through all the ups and downs from when Trolltech got its first larger investment to now. But seeing what you all are doing, I know it’s in very good hands moving forward.

        Leaving The Qt Company and in the future spending most of my time outside the Qt ecosystem has been a difficult decision. But in the end, after those 25 years, it does feel very much like the right decision for me. I want to try out something else. So I will be joining a small Norwegian startup with one of the founders of Trolltech. While still in Software, it’ll be something rather different, not related to C++ or developer tools.

  • Leftovers

    • TediumCheapTickets.com History: A Failed Aviation Exec’s Hail-Mary Pass

      If you read up on the history of major startup air-based services like Federal Express or Southwest Airlines, you generally are aware of the story arc—at some point early in the airline’s life, before regulators got out of the way and allowed these businesses to soar, executives had to get creative to ensure that they were able to continue service with limited budgets and equipment. In the case of Southwest, it involved utilizing a “10-minute turn” to allow three planes to be used instead of four; with FedEx, founder Fred Smith literally gambled the last $5,000 the company had in Las Vegas to keep the company afloat. In both these cases, I naturally wonder—well, was there anyone else who won the airline deregulation lottery? And that led me to the story of an online travel website you’ve probably used many times, but had no idea it had roots in the analog age. Today’s Tedium tells the story of Cheap Tickets, and the unusual state of affairs that led to its existence.

    • Linux Foundation

      • Linux Foundation's Site/BlogAnnouncing the World of Open Source: 2022 Europe Spotlight Survey [Ed: No, Linux Foundation (LF) does not speak for "Open Source" and for "Linux". It speaks for Facebook, VMware, Microsoft etc. Linux Foundation (LF) is fast becoming little more than a pest and leech borrowed -- by money -- by enemies of Linux to discredit, badmouth, undermine Linux. Linux Foundation is a big bunch of overpaid buzzword slingers bossing and misrepresenting actual geeks.]

        Open source is a global phenomenon impacting all industries in all parts of the world. To better understand the regional dynamics of open source, Linux Foundation Research is conducting a series of new research projects under the World of Open Source umbrella to explore the state of open source, beginning with a European perspective, focusing on government, enterprise, and non-profit initiatives.

      • Techstrong GroupPrometheus Associate Certification will Demonstrate Ability to Monitor Infrastructure [Ed: The 'Linux' Foundation is pushing outright spam into Web sites for its 'diploma mills' (see bottom); Linux Foundation emulates Microsoft, including the calling of marketing "research" (because it sounds more professional)]
    • Security

      • LWNSecurity updates for Wednesday [LWN.net]

        Security updates have been issued by Debian (elog, needrestart, openssl, and waitress), Fedora (curl, libxml2, slurm, and vim), Scientific Linux (zlib), SUSE (e2fsprogs, nodejs10, php72, and thunderbird), and Ubuntu (apport, clamav, needrestart, and pcre3).

      • Bruce SchneieriPhone Malware that Operates Even When the Phone Is Turned Off

        The research is fascinating, but the attack isn’t really feasible. It requires a jailbroken phone, which is hard to pull off in an adversarial setting.

      • USCERTThreat Actors Exploiting F5 BIG IP CVE-2022-1388

        CISA and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have released the joint Cybersecurity Advisory Threat Actors Exploiting F5 BIG-IP CVE-2022-1388 in response to active exploitation of CVE-2022-1388, which affects F5 Networks BIG-IP devices. The vulnerability allows an unauthenticated actor to gain control of affected systems via the management port or self-IP addresses.

      • Surfshark Launches Linux App With Graphical User Interface

        And it isn’t all bad news: there are lots of other features including access to Surfshark’s list of MultiHop routes, WireGuard, DNS leak protection and CleanWeb (an ad-blocker).

        There’s also a tray menu with a quick-connect option and a list of three servers.

      • Naked SecurityPwn2Own hacking schedule released – Windows and Linux are top targets

        The 2022 edition of the famous (or infamous, depending on your viewpoint) Pwn2Own competition kicks off later today in Vancouver, British Columbia.

      • How to Spot the Warning Signs of Ransomware Attacks [Ed: Predominantly a Windows problem, based on the data]

        Learning the early signs of ransomware infection can help you detect an attack in the early stages. Here’s what to look out for on your IT systems.

      • Privacy/Surveillance

        • AccessNowHuman rights leaders at Davos 2022: spyware is a weapon€ — PRESS CONFERENCE - Access Now

          Surveillance technology is being weaponized to commit gross human rights violations across the globe. Scaling up their operations in the dark, developers like NSO Group (the company behind Pegasus) make their fortunes supplying this dangerous tech to governments seeking to intimidate and silence dissenting voices, undermine trust in digital systems, and expand their arsenal for digital authoritarianism.

    • Civil Rights/Policing

      • AccessNowCongratulations, Fanny Hidvégi! Access Now’s Europe Policy and Advocacy Director a POLITICO Europe tech Visionary [Ed: POLITICO is oligarchy owned. Is this a badge of honour?]

        Access Now congratulates Fanny Hidvégi, Europe Policy and Advocacy Director, who was today included in POLITICO Europe’s annual ranking of the 28 power players behind Europe’s tech revolution. The long-term advocate for human rights in the digital age was named a Visionary — a title hard fought for, and very much deserved.

        “Access Now is delighted to see Fanny Hidvégi being recognised by POLITICO Europe and others as the tech changemaker — Visionary — she is,” said Brett Solomon, Executive Director at Access Now. “Fanny and the whole team have spearheaded the fight for digital rights across Europe, laying the foundations for a safer, more open, and fairer future.”

        [...]

        Fanny has previously taken part in the Obama Foundation’s Europe Leaders program, was a member of the European Commission’s High Level Expert Group on Artificial Intelligence, and is a board member of the Hungarian Civil Liberties Union.

      • PoliticoFanny Hidvégi

        Since taking charge of Access Now in 2016, Fanny Hidvegi has honed the NGO into one of the most effective digital rights outfits in town. Despite being a relative newcomer — Access Now was founded in 2009 — the advocacy group enjoys the same kind of access as its more storied civil society brethren. Indeed, its relative youth has perhaps been to its advantage: As tech behemoths have come to dominate the digital policymaking narrative in Brussels, the startup NGO with roots on the U.S. West Coast has perhaps been well-placed to do battle with companies that promise to “move fast and break things.”

      • Al JazeeraActivist Alaa Abdel Fattah’s health worsens in Egyptian prison

        Egypt’s human rights body calls for the activist’s transfer to a better facility, as Abdel Fattah’s family calls for his release.

    • Internet Policy/Net Neutrality

      • A Hypothetical Capitalist Invasion of Geminispace

        Y'know, Geminispace probably won't be free of ads forever. Assuming we don't abolish capitalism within the next few years, eventually someone is gonna pay someone else to shill their stuff on their gemlog. It's just gonna happen.

        Gemini does, however, seem like it'll be uniquely resistant to capitalist invasion. Off the top of my head, here are a few possible ways it might go.

      • Scrawlspace

        Is having deeper and meaningful internet friendships the best use of your time, compared to deepening other relationships that might be available to you?

      • Re: I kind or resent blogs

        is it? there isn't really a built-in mechanism through which you would be made aware whether your work is being noticed or not, and that's by design. I don't know how common this is, but I don't find it to require much effort to keep up with everything that shows up on the main CAPCOM/spacewalk instances so I keep up with it regularly.

    • Digital Restrictions (DRM)



Recent Techrights' Posts

Techrights' Statement on Code of Censorship (CoC) and Kent Overstreet: This Was the Real Purpose of Censorship Agreements All Along
Bombing people is OK (if you sponsor the key organisations), opposing bombings is not (a CoC in a nutshell)
 
[Meme] Social Control Media Bliss
"My tree is bigger than yours"
Links 24/11/2024: More IMF Bailouts and Net Client Freedom
Links for the day
Gemini Links 24/11/2024: Being a Student and Digital Downsizing
Links for the day
[Meme] The Most Liberal Company
"Insurrection? What insurrection?"
apple.com Traffic Down Over 7%, Says One Spyware Firm; Apple's Liabilities Increased Over 6% to $308,030,000,000
Apple is also about 120 billion dollars in debt
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, November 23, 2024
IRC logs for Saturday, November 23, 2024
[Meme] GAFAMfox
Mozilla Firefox in a state of extreme distress
Google Can Kill Mozilla Any Time It Wants
That gives Google far too much power over its rival... There are already many sites that refuse to work with Firefox or explicitly say Firefox isn't supported
Free (as in Freedom) Software Helps Tackle the Software Liability Issue, It Lets Users Exercise Greater Control Over Programs
Microsofters have been trying to ban or exclude Free software
In the US, Patent Laws Are Up for Sale
This problem is a lot bigger than just patents
ESET Finds Rootkits, Does Not Explain How They Get Installed, Media Says It Means "Previously Unknown Linux Backdoors" (Useful Distraction From CALEA and CALEA2)
FUD watch
Techdirt Loses Its Objectivity in Pursuit of Money
The more concerning aspects are coverage of GAFAM and Microsoft in particular
Links 23/11/2024: Press Sold to Vultures, New LLM Blunders
Links for the day
Links 23/11/2024: "Relationship with Oneself" and Yretek.com is Back
Links for the day
Links 23/11/2024: "Real World" Cracked and UK Online Safety Act is Law
Links for the day
Links 23/11/2024: Celebrating Proprietary Bluesky (False Choice, Same Issues) and Software Patents Squashed
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, November 22, 2024
IRC logs for Friday, November 22, 2024
Gemini Links 23/11/2024: 150 Day Streak in Duolingo and ICBMs
Links for the day
Links 22/11/2024: Dynamic Pricing Practice and Monopoly Abuses
Links for the day
Topics We Lacked Time to Cover
Due to a Microsoft event (an annual malware fest for lobbying and marketing purposes) there was also a lot of Microsoft propaganda
Microsofters Try to Defund the Free Software Foundation (by Attacking Its Founder This Week) and They Tell People to Instead Give Money to Microsoft Front Groups
Microsoft people try to outspend their critics and harass them
[Meme] EPO for the Kids' Future (or Lack of It)
Patents can last two decades and grow with (or catch up with) the kids
EPO Education: Workers Resort to Legal Actions (Many Cases) Against the Administration
At the moment the casualties of EPO corruption include the EPO's own staff
Gemini Links 22/11/2024: ChromeOS, Search Engines, Regular Expressions
Links for the day
This Month is the 11th Month of This Year With Mass Layoffs at Microsoft (So Far It's Happening Every Month This Year, More Announced Hours Ago)
Now they even admit it
Links 22/11/2024: Software Patents Squashed, Russia Starts Using ICBMs
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, November 21, 2024
IRC logs for Thursday, November 21, 2024