Bonum Certa Men Certa

Links 18/08/2022: New Stable Kernels and Important Ruling From High Court of Australia on Linking

  • GNU/Linux

    • Videos/Shows

      • FLOSS Weekly 694: Icky Latency and the Dawn of IQI - Dave Taht, Network Speed vs Latency, Blackhat

        Dave Taht returns from the future to talk with Doc Searls and Jonathan Bennett about what's coming and going, plus a dozen other practical and important topics that revolve around freedom, openness (FOSS) and the Internet all of us need. Bufferbloat, latency and open source at this year's Blackhat conference.

      • VideoWin32 Is The Only Stable ABI on Linux (RIP Glibc) - Invidious

        If you're a Linux gamer you may have noticed a problem recently, every EAC suddenly stopped working well this is due to a very simple update made in GLIBC 2.26 with the removal of the standard DT_HASH table

      • Linux in the Ham ShackLHS Episode #477: Old Sol

        Hello and welcome to the 477th episode of Linux in the Ham Shack. In this short-topics episode, the hosts cover the latest solar cycle, the upcoming next instance of the QSO Today Virtual Ham Expo, Kali Linux, contributions to Open Source from large corporations, a new version of PREDICT and more. Thank you for listening and have a great week.

      • VideoLife without a Smartphone - Invidious

        I recently switched to a Dumb Phone from the smart phone and many asked why? This is my breakdown of the entire experience and recommendations. This certainly won’t be for everyone, but for those that attempt it, I can promise that it will be extremely rewarding for those that have the willpower to do it.

    • Kernel Space

      • LWNLinux 5.19.2

        I'm announcing the release of the 5.19.2 kernel.

        All users of the 5.19 kernel series must upgrade.

        The updated 5.19.y git tree can be found at: git:// linux-5.19.y and can be browsed at the normal git web browser:


        greg k-h

      • LWNLinux 5.18.18

        I'm announcing the release of the 5.18.18 kernel.

        All users of the 5.18 kernel series must upgrade.

      • LWNLinux 5.15.61

        I'm announcing the release of the 5.15.61 kernel.

        All users of the 5.15 kernel series must upgrade.

      • eSecurity PlanetNew Linux Exploit 'Dirty Cred' Revealed at Black Hat | eSecurityPlanet

        A new Linux kernel exploitation called Dirty Cred was revealed at last week’s Black Hat security conference.

        Zhenpeng Lin, a PhD student, and a team of researchers worked on an alternative approach to the infamous Dirty Pipe vulnerability that affected Linux kernel versions 8 and later.

    • Instructionals/Technical

      • H2S Media2 ways to Install Cassandra on Ubuntu 22.04 LTS Jammy

        This tutorial is to guide the steps used for the installation of Apache Cassandra database on Ubuntu 22.04 LTS Jammy JellyFish Linux.

        Cassandra is, along with MongoDB, one of the most popular NoSQL databases at the moment. Cassandra is designed as a scalable, fail-safe system for handling large amounts of data on distributed systems (clusters). Unlike CouchDB and MongoDB(C++), this one is written in Java like Apache HBase. Since version 0.8, the Cassandra Query Language has been introduced, a SQL-like query language that can serve as a simple interface.

      • ID RootHow To Install MariaDB on Rocky Linux 9 - idroot

        In this tutorial, we will show you how to install MariaDB on Rocky Linux 9. For those of you who didn’t know, MariaDB is a popular, free, and open-source database management system commonly used as an alternative for the MySQL portion of the popular LAMP. It uses MySQL as its primary storage engine, but it is also lightweight, secure, and features in-memory ACID transactions.

        This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the MariaDB 10 database on Rocky Linux. 9.

      • Robbie Harwood: Shim Ab Booting Poc

        I've implemented a proof-of-concept for "A/B booting" of shim itself. Concretely, this means that when a shim fails to boot, an older version will be tried as a fallback. This aims to increase the stability and reliability of shim updates. Booting the older shim is a stop-gap and not something we want systems to be regularly doing, so the situation is detected and reported for admin attention.

      • How I write blog posts €· Major Hayden

        During a mentoring meeting today at work, my mentee asked me how I make time to write blog posts. I hadn’t really thought about it before, so I joked that I needed to write a blog post on that. That’s so meta. After thinking about it more, a blog post felt like a good idea. Let’s get right to it.

      • Linux Made SimpleHow to install mGBA on a Chromebook

        Today we are looking at how to install mGBA on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

      • H2S Media2 ways to Install Cassandra on Ubuntu 22.04 LTS Jammy

        This tutorial is to guide the steps used for the installation of Apache Cassandra database on Ubuntu 22.04 LTS Jammy JellyFish Linux.

        Cassandra is, along with MongoDB, one of the most popular NoSQL databases at the moment. Cassandra is designed as a scalable, fail-safe system for handling large amounts of data on distributed systems (clusters). Unlike CouchDB and MongoDB(C++), this one is written in Java like Apache HBase. Since version 0.8, the Cassandra Query Language has been introduced, a SQL-like query language that can serve as a simple interface.

        Cassandra is written in Java and RubyGems and only runs on UNIX-like systems, such as Mac OS X and Linux. Especially with relational databases, familiar developers should take a closer look at the structure and the data model of Cassandra, as there are certain similarities in the data model in addition to fundamentally new terms also some familiar ones appear, which, however, have a completely different meaning with Cassandra.

      • TechRepublicHow to install that latest version of Docker on AlmaLinux | TechRepublic

        AlmaLinux is a Red Hat Enterprise Linux clone, which means it doesn’t ship with Docker installed. In fact, most RHEL-based distributions are now defaulting to Podman. Although Podman is a close drop-in for Docker, I still have a penchant for the original, so I prefer to use that technology over its replacement.

        The problem is that installing Docker on an RHEL-based distribution isn’t exactly straightforward. It’s not hard, but without knowing the right steps or flags to use, you’ll find it almost impossible to get Docker installed.

      • FOSSLinuxHow to install Yarn on Ubuntu | FOSS Linux

        Yarn is an npm-compatible JavaScript manager that aids in the automation process of setting up, updating, configuring, and removing npm packages. NPM is an abbreviation for Node Package Manager. It is an install manager for the Node JS platform. NPM is well-known as the world’s most extensive software registry. And as such, open-source DevOps across the globe utilize it to publish and share their source code.

        The NPM package comprises three components; The first is the website that permits you to look up third-party packages, set up profiles, and manages your packages. The second is the command-line interface or npm CLI that runs from a command-line/terminal to permit your interaction with npm. The third is the registry, an extensive public database of Javascript.

        Ideally, what Yarn does is parallelize the system operations to boost resource utilization, and cache downloaded packages to save bandwidth. It is secure, and verifies each installed package’s integrity using checksums before executing its code. As such, it is very reliable because of its detailed but concise lock file format; it also ensures that a setup that works on a machine will explicitly perform in the same way on a different device.

      • TechRepublicHow to deploy the Bitwarden self-hosted server with Docker | TechRepublic

        Jack Wallen walks you through the process of deploying a Bitwarden vault server with the help of Docker containers.

        Bitwarden is one of the best open-source password managers on the market. I might even go so far as to say it’s the best password manager period. One of the many reasons why this is so is because of the tool’s flexibility, and a perfect illustration of that is the ability to deploy your very own Bitwarden server using Docker.

      • ELinuxBlock wp-login and xmlrpc brute force attacks with CSF / DirectAdmin | Linux Webhosting blog

        xmlrpc wp-login are common attacks for WordPress installations, with CSF firewall we can block them.

      • HowTo GeekHow to Compare Binary Files on Linux

        Linux is rich in ways to compare and analyze text files. The diff command will compare two files for you, and highlight the differences. It can even provide a few lines on either side of the changes to provide some context around the changed lines. And the colordiff command adds color to make visually parsing the differences even easier.

        Developers and authors use diff to highlight the differences between different versions of program source code files, or draft texts. It’s fast and easy, and you don’t need any technical skills to see the differences between strings of text.

        In the world of binary files, things aren’t so simple. Binary files are not composed of plain text. They’re made up of many bytes containing numeric values. If it’s a compressed file such as a TAR archive or a ZIP file, those values represent the compressed files that are stored inside the archive file, along with the tables of symbols that are required for the decompression and extraction of the files.

      • RoseHostingHow to Install Django Web Framework on Ubuntu 22.04 - RoseHosting

        In this blog post, we are going to show you how to install Django Web Framework on Ubuntu 22.04 OS.

        Django is a free and open-source web framework written in Python that follows the MVT(Model-View-Template) architectural pattern. The framework is written for developers to make complex and database-driven websites using predefined administrative actions like create, update, delete, and read. In this tutorial, we are going to install Django Web Framework in an isolated and encapsulated environment called python virtual environment.

        Installing Django Web Framework is a straightforward process that can take up to 15 minutes. Let’s get things working!

      • Unix MenA Guide to Using Bash Arrays: Examples

        The Bourne Again Shell is the default shell on virtually every Linux distribution. While it’s not as fleshed out as most programming languages, it is considered a programming language by many.

        Software engineers are accustomed to using the Linux command line to navigate several aspects of development. Linux administrators rely on it fully to complete their tasks.

        However, Bash arrays tend to remain one of the more obscure features of the CLI. Besides, the questionable syntax results in many developers turning away from using the arrays.

        Bash arrays are primarily utilized to store data in an indexed manner. You can compare it to storing data in variables, with the difference being that Bash arrays allow you to call back the data using predictable indexed numbers. Furthermore, Bash arrays also allow you to create associations.

        Bash arrays are an often-overlooked aspect of Bash scripting, mastering which can enable you to customize administrative tasks, run several tasks simultaneously, and even automate tasks. They are an invaluable tool to any Linux power user since using the arrays is necessary when working with scripts that store a large volume of information.

    • Desktop Environments/WMs

      • GNOME Desktop/GTK

        • OMG UbuntuThese are the Best New Features in GNOME 43 - OMG! Ubuntu!

          The all-new GNOME 43 is fast approaching, with a stable release due next month. As you’d expect, it brings a barrage of new features and cool capabilities with it.

          And this post? Why, it only goes and spoils the surprise by spotlighting the most notable improvements on offer in GNOME 43 — but I’ve a feeling you don’t mind!

          GNOME 43 continues to build out from the design direction laid in GNOME 40. There’s a major redesign of the system menu, a slew of new GTK4/libadwaita app ports, and further effort to improve the small-screen usability of several of this leading free desktop’s core apps.

          Do keep in mind that GNOME 43 is in beta. It’s possible that some things you read about below will be revised, altered, or maybe even axed —!— by the time GNOME 43 is released in mid-September. This list is also not exhaustive; if there’s something really cool I’ve missed let me know about it in the comments!


          GNOME 43 is scheduled for release in mid-September. The GNOME 43 beta is out and available to test, though how you get tit will vary from distro to distro. Ubuntu 22.10 is due for release in October and will likely feature most of the changes mentioned in this article, but not all.

  • Distributions and Operating Systems

    • Screenshots/Screencasts

      • VideoSparkyLinux 6.4 Run Through - Invidious

        In this video, we are looking at SparkyLinux 6.4.

      • Linux Made SimpleSparkyLinux 6.4

        Today we are looking at SparkyLinux 6.4. It is based on Debain 11, Linux Kernel 5.10, LXQt 0.16.0, and uses about 300MB of ram when idling

    • Debian Family

      • Daniel PocockDid Charles Plessy and I predict the death of Lucy Wayland?

        Here is the message exchange from 28 December 2018, ironically, the anniversary of Ian Murdock's death, when Charles Plessy warned about monster threads on debian-private and I replied that cyberbullying is nothing less than a risk to human life.


        Frans Pop decided to resign from Debian in May 2007. In October 2007 he decided to come back from retirement and continue participating. Here is a chart showing the number of messages per month on debian-private up to the death of Frans Pop in August 2010.

        What we see here is that the last three months are really intense. It is a lot more than the average over previous months. There are over 300 messages in June 2010. That is 10 messages per day.

        If something is on debian-private then it is usually unpleasant and stressful in some way. Charles Plessy and I called out this phenomena in December 2018. Lucy Wayland died four weeks later.

    • Canonical/Ubuntu Family

      • .NET 6 Support Comes to Linux [Ed: Is is worth noting that this is being celebrated by Microsoft sites. This is something Microsoft, not Linux, stands to gain from.]
      • Canonical/Microsoft Partnership Puts .NET 6 into Ubuntu Linux
      • Redmond MagazineCanonical and Microsoft Add .NET 6 Support to Ubuntu Linux [Ed: You search for Ubuntu an get Microsoft's proprietary stuff instead]
      • The Register UK.NET 6 comes to Ubuntu 22.04 ● The Register

        Ubuntu and Microsoft have brought .NET 6 to the Ubuntu repositories, meaning that you can install it without adding any extra sources to the OS.

      • 9to5LinuxUbuntu Is Now Officially Supported on StarFive’s VisionFive RISC-V Single-Board Computers - 9to5Linux

        Canonical today announced official support for its popular Ubuntu operating system on StarFive’s VisionFive RISC-V single-board computers.

        The RISC-V hardware is becoming more and more popular, and Canonical has partnered with StarFive, the leader in RISC-V technology in China known for developing a wide range of RISC-V-based products, including CPU IP, SoC, development boards, etc., to offer Ubuntu on the VisionFive SBC (single-board computer).

        Powered by StarFive’s JH7100 vision processing SoC, which is equipped with a high-performance 64-bit RISC-V dual-core processor with a 2 MB L2 cache and 1.0 GHz clock speeds, the VisionFive board comes with no less than 8 GB RAM, a 40-pin GPIO header, as well as end-to-end hardware and software infrastructure.

      • UbuntuCanonical enables Ubuntu on StarFive’s VisionFive RISC-V boards

        In the last decade, open source and open standards have reshaped our world. Such technologies have produced long-lasting results, and the RISC-V consortium has extended open source to develop a standard open-source processor architecture. The release of RISC-V to the open community marked the first time the hardware community embraced open-source standards and collaboration at this level.

        This free and open Instruction Set Architecture (ISA) can enable a new era of processor innovation through open-standard collaboration with rapid industry-wide adoption. The RISC-V ISA delivers a new level of free, extensible software and hardware freedom on architecture. The architecture can be applied to a broad range of processors, from low-end microcontrollers to high-end server-grade processors.

      • PhoronixOfficial Ubuntu RISC-V Images Released For StarFive's VisionFive Board - Phoronix

        Earlier this summer I wrote about Canonical working to provide good support for StarFive's VisionFive low-cost RISC-V board. That work has now culminated with an Ubuntu 22.04.1 LTS image for use on this Chinese RISC-V single board computer.

      • UbuntuCharmed Kubeflow 1.6 Beta is out: try it today!

        We are happy to announce that Charmed Kubeflow 1.6 is now available in Beta. Kubeflow has evolved into an end-to-end MLOps platform for optimised complex model training. We’re looking for data scientists, ML engineers and developers to take the Beta release for a drive and share their feedback! Read on to learn more.

    • Open Hardware/Modding

      • ArduinoMake your own motorcycle monitor for the race track with a Nano 33 IoT | Arduino Blog

        If you’ve ever had the pleasure of riding a motorcycle on a track, then you know that it quickly becomes competitive — even if the competition is yourself. You want to cut your lap times, increase your lean angle, brake later after a straight, and accelerate harder as you come out of a turn. But the only way to get objective data on your improvement is to monitor your real performance. This device designed by Jesus Soriano collects that data so that you can track your progress from one track day to the next.

        There are commercial products on the market that provide similar functionality, but they’re expensive and give you little control over operation. This project utilizes open hardware, so you can hack it to your heart’s content and save some money that is better spent on tires. The important components include: an Arduino Nano 33 IoT board, a TinyCircuits GPS shield, a SparkFun Power Supply Stick, a Bitcraze Micro SD Card Deck, and a 1000mAh lithium-ion battery. Soriano simply stuffed those components in his motorcycle’s tail storage area under the seat, but you could always 3D-print a dedicated enclosure if your bike doesn’t have tail storage.

      • MakeTech EasierESP32 vs Arduino Uno: Which One Should You Get? - Make Tech Easier

        When you’re starting out with microcontrollers, you might end up reading stuff about ESP32 vs Arduino Uno. One is a fancy board filled with functionality to the brim. The other is an iconic tool that’s inspired countless roboticists around the world. Here we will look at both ESP32 and Arduino Uno and let you know which one you should choose.


        We’re at the important part now. Should it be the Arduino Uno? Or should it be the ESP32? Here’s to help you decide.

        Despite its price and lack of extra pins and features, every electronics student should at least invest in an Arduino Uno. It’s a board meant for students who’d probably break something along the way.

        On the other hand, the more experienced ones should try the ESP32 for its extra features. It’s a no-no to anyone who can’t read schematics, let alone a freshman who doesn’t know how Ohm’s law works.

      • Tom's HardwareRaspberry Pi Pico Powers Pocket Gaming Console | Tom's Hardware

        If you grew up in the 90s, you might remember the excitement of the Game Boy Pocket and how satisfying it was to finally fit your favorite handheld console in your pocket. Maker and developer Grgo Mariani has recreated that excitement for Raspberry Pi enthusiasts with his custom Raspberry Pi Pico-powered pocket-sized gaming console.

      • Tom's HardwareRaspberry Pi Drives Tiny CNC Drawing Machine | Tom's Hardware

        Maker and developer Pheux9558, as they’re known on Reddit, has developed a custom CNC drawing machine from scratch using a Raspberry Pi. This tiny CNC machine (opens in new tab) is much smaller than your average plotter and uses some recycled hardware from old PCs, including parts from a CD drive and even components of an old floppy drive.

        In addition to the Raspberry Pi, it works with an Arduino Uno to process the image details into workable commands for the CNC machine to print with. Finally, to bring everything together, Pheux9558 designed and 3D printed a few pieces for mounting the hardware.

      • Tom's HardwareHow To Make A Raspberry Pi Pico W Web Server | Tom's Hardware

        If you’re not looking to set up a major website on a hosting service, you can easily run a web server in your home. We’ve previously explained how to set up a Raspberry Pi web server using a regular Pi 3, 4 or Zero, but you don’t even need a full Pi to get the job done. With the Raspberry Pi PIco W, a Wi-Fi enabled micro controller that costs just $6, you can do some basic web serving.

        The Raspberry Pi Pico W isn’t the most obvious choice, but with a little MicroPython code, and some HTML, we can serve basic, static web pages from a Pico W. There are two parts to this project. The HTML and the MicroPython code. The HTML is what our browser will see, and MicroPython acts as the means to serve the code.

        For this project we will host a basic web page from a Raspberry Pi Pico W. We will also demonstrate how to add a little more sparkle to your pages with CSS and JavaScript. Finally we will serve the content to the world by learning how to forward external requests to our Raspberry Pi Pico W.

      • Tom's HardwareElephant Robotics Release Raspberry Pi Dual-Armed Robot | Tom's Hardware

        Elephant Robotics has released its latest Raspberry Pi (opens in new tab)-powered robot, its first to have dual arms. The bot’s six-jointed appendages can move a 250g (9oz) weight through a radius of 11 inches (280mm), and can be outfitted with grippers, hands making various gestures, and even a suction pump.

      • CNX SoftwareElecrow's Raspberry Pi Pico Advanced Kit ships with 32 electronics modules, 32 project tutorials - CNX Software

        We’ve just reviewed the Raspberry Pi 4-powered CrowPi L laptop and Crowtail Starter kit used to teach programming and electronics, but Elecrow has now launched the “Raspberry Pi Pico Advanced Kit” with 32 electronics modules, a smart kit car, and 32 tutorials that should be a more affordable way of teaching electronics and programming.

        However, it does so in a different way, as instead of using visual programming and Python, the Raspberry Pi Pico Advanced Kit’s lessons rely on MicroPython, and the projects are different with for example parts to build an obstacle avoidance, line tracking, or remote controlled car.

    • Mobile Systems/Mobile Applications

      • Help Net SecurityGoogle releases Android 13 with improved privacy and security features

        Google released Android 13, and it is already rolling out to eligible Pixel smartphones. In this Help Net Security video, you’ll learn more about the latest privacy and security features of Google’s mobile operating system.

      • LiliputingLilbits: iPhone 14 announcement imminent, UE Wonderboom 3 has a micro USB port, don't count out Netflix games just yet, and Linux phone news - Liliputing

        Meanwhile in Linux phone land, there have been some exciting developments recently… but also some friction between one of the companies that helped spur development of Linux for phones in recent years and developers who are actually working on the software that makes those phones work.

      • Notebook CheckThe Fairphone 4 can now run Ubuntu Touch - News

        The Fairpohone 4 now supports Ubuntu Touch. The smartphone, which is known for its high level of repairability, can install the operating system using the latest version of UBPorts' installer. (UBPorts is the team that picked up maintenance and development of Ubuntu Touch after Canonical dropped the project.)

        This update makes the Fairphone 4 the first smartphone running Android 11 that supports Ubuntu Touch.

        The Fairphone 4 is a solid mind-ranger with a Qualcomm Snapdragon 750G SoC, up to 8 GB of RAM, and up to 256 GB of storage. The main draw, however, is its spectacular hardware support; the Fairphone 4's design allows users to open it up and replace any of the parts inside. Fairphone sells spare parts directly to consumers and makes repair manuals and guides available.

  • Free, Libre, and Open Source Software

    • Programming/Development

      • Barry KaulerlibXaw3dXft compiled in OE

        I was reading Peter's work creating GUIs with libXaw, linked from here:

        And it was mentioned that libXaw3dXft could be used. This is based on libXaw3d, which is based on libXaw (Athena widgets), and adds freetype (truetype) aliased font support and UTF8 support.

      • The New StackBrain.js Brings Deep Learning to the Browser and Node.js – The New Stack

        Brain.js is a JavaScript library for deploying a neural network in the browser or on Node.js. It uses a computer’s GPU (graphics processing unit) for calculations, or pure JavaScript when GPU isn’t available.

      • Barry KaulerBaCon has a new integrated GUI framework

        That link describes HUG, Highlevel Universal GUI, which is a very simple way to create little GUI apps. One shortcoming is that widgets can only be placed by fixed coordinates (relative to the window).

        One utility that uses HUG and is still in EasyOS is 'popup'. Open a terminal, and type "popup" to see the required parameters. It does what the name suggests, very handy in scripts, and I use it a lot.

      • Java

        • FOSSLifeGetting Started with Jenkins Java Client

          Jenkins is an open source automation server that reliably builds, tests, and deploys software. Jenkins also comes with its own intuitive UI that allows you to create new jobs, schedule the execution of existing jobs, navigate into defined jobs on the system, and more.

  • Leftovers

    • TediumAn Actor’s Actor and Beyond: The Creators That Inspire Other Creators

      Recently, I rewatched a movie I hadn’t seen in years, Willy Wonka and the Chocolate Factory. It’s still a classic but, by the end, I felt differently about it than I remembered. When Gene Wilder says, “But Charlie, don’t forget what happened to the man who suddenly got everything he always wanted … he lived happily ever after,” I felt like I saw Wonka for the real trickster that he is. Charlie is a child, unlikely to know what he really wants. And Wonka doesn’t seem especially happy with his “ever after.” This might be a leap but, this led me to think about the nature of what it means to be successful on different terms. Especially in the creative fields, where fame and fortune are often elusive, many are left to define their success without either. Today’s Tedium is looking at a number of different professional fields to see what we can glean from the blank’s blank (actor’s actor, comedian’s comedian, writer’s writer, and even the pilot’s pilot and lawyer’s lawyer), a phrase template used to describe a certain type of success and achievement.

    • Hardware

      • The Next PlatformNvidia Shows What Optically Linked GPU Systems Might Look Like

        We have been talking about silicon photonics so long that we are, probably like many of you, frustrated that it already is not ubiquitous. But the good news is that advances in electrical signaling, after hitting a wall a decade ago when the talk of practical silicon photonics interconnects first really got going, continued to evolve and we have not really had to resort to silicon photonics yet.

        With electrical interconnects between components being far less expensive, this has been a boon for the price numerator part of the price/performance equation, even though silicon photonics has an advantage in the denominator performance part of that equation. Over time, electrical signaling is getting shorter and shorter as the bandwidth goes up, and it is getting noisier and noisier, too. The day will inevitably come where we will shift from electrons to photons as electromagnetic signaling method and from copper to fiber optic glass as signaling media.

        This curve, from a presentation that Nvidia chief scientist Bill Dally gave at the Optical Fiber Communication conference way back in March, makes the case pretty well:

    • Security

      • LWNSecurity updates for Wednesday []

        Security updates have been issued by Debian (epiphany-browser, net-snmp, webkit2gtk, and wpewebkit), Fedora (python-yara and yara), Red Hat (kernel and kpatch-patch), SUSE (ceph, compat-openssl098, java-1_8_0-openjdk, kernel, python-Twisted, rsync, and webkit2gtk3), and Ubuntu (pyjwt and unbound).

      • LinuxSecurityOpen-Source VPN Protocols Compared: Why WireGuard is on the Rise! |...

        WireGuard is built to be more efficient than OpenVPN and IKEv2, but that doesn’t necessarily mean it will always perform better. Here, we will discuss how WireGuard holds up against OpenVPN and IKEv2.

      • Wladimir PalantWladimir Palant: Impact of extension privileges

        As we’ve seen in the previous article, a browser extension isn’t very different from a website. It’s all the same HTML pages and JavaScript code. The code executes in the browser’s regular sandbox. So what can websites possibly gain by exploiting vulnerabilities in a browser extension?

        Well, access to extension privileges of course. Browser extensions usually have lots of those, typically explicitly defined in the permissions entry of the extension manifest, but some are granted implicitly. Reason enough to take a closer look at some of these permissions and their potential for abuse.

      • Red Hat OfficialStreamlining IT security operations with Red Hat Insights and Red Hat Satellite

        In this article, we explore what Red Hat Insights and Red Hat Satellite have to offer individually, and then we will look at how you can have a heightened experience of the two products with the use of Cloud Connector. We then evaluate both offerings by performing a feature-by-feature comparison of the tools for a better understanding of how they compare.

        Insights and Satellite are frequently used by customers for a myriad of use cases — some similar and some vastly different — including managing their IT estate. Ultimately, customers are able to proactively streamline the security posture of their IT estate with both or either of these products.

    • Environment

      • AccessNowSEC must demand greater transparency on digital and human rights issues in ESG ratings - Access Now

        For too long, greenwashing and opacity have let the true environmental and human rights impacts of information and communications technology (ICT) companies’ actions fly under the radar. Investors seeking reliable data about the environmental, social, and governance (ESG) performance of these companies deserve more, and better, information about the societal impact of their technologies.

        Open MIC, Heartland Initiative, and Access Now submitted comments urging the U.S. Securities and Exchange Commission (SEC), which is weighing rules and forming amendments on ESG practices, to help investors access accurate data about the ESG performance of the companies they back, in turn making more informed decisions.

        “Many ICT companies have poor governance practices and fall short on digital rights, labor rights, and other human rights issues,” said Audrey Mocle, Deputy Director at Open MIC. “Yet, ICT stocks are overrepresented in ESG funds due to the industry’s relatively low carbon footprint and high returns for shareholders. Investors need transparency into how ESG funds weigh each of the ‘E,’ ‘S,’ and ‘G’ criteria and the methods used to measure them.”

    • Finance

      • dues (or blues)

        After I wrote hledger, I got some good feedback, both from a friend in-person and also on Twitter.

        My in-person friend asked, frankly, do I really try to manage money like this: tracking every single expense? Which affirms my suspicion, that many people don't, and that it perhaps isn't essential to do so.

        Combined with the details below, 3/4 of the way through my experiment with using hledger, I'm not convinced that it has been a good idea.

    • Monopolies

      • Copyrights

        • Public KnowledgeHigh Court of Australia Finds Google Not a Publisher for Linking Articles - Public Knowledge

          Today, the High Court of Australia ruled that Google is not a publisher of the websites it links to in the case, Google LLC v Defteros. The ruling overturns a previous ruling in which the Supreme Court of Victoria determined Google was a publisher for linking to newspaper articles.

          In its ruling, the High Court explains that “a hyperlink is merely a tool which enables a person to navigate to another webpage” and, thus, facilitates access, but does not disseminate or publish the material. In a concurrence to the opinion, two of the High Court justices noted that the case did not involve material that was promoted by Google as part of a search result. These justices indicated that it could be a more closely argued case for attaching liability if Google and a third party have an agreement to promote content on the third party’s webpage.

          This ruling aligns with our 2021 principles on protecting free expression online in that it affirms the importance of 230-like protections for entities that provide access to user-generated content. Public Knowledge supports the decision.

  • Gemini* and Gopher

    • Technical

      • Re: How Many Computers Do You Have?

        HiFive Unmatched --- Debian unstable riscv64; 4 cores, 16 GiB RAM, 500 GB NVMe disk. This miniITX motherboard is mounted in a stone age LianLi "box". Its clearly not a rocket, but it's good enough for most of what I do. I am very impressed by the degree of integration of all the fiddly bits (bootloaders, kernel, devicetree, etc.). So clearly a lot of work has already gone into this platform. Thanks folks! I do use this machine as a development system for coding AVR microcontrollers in assembly and Forth. So git, make, emacs, perl, and avra are running to my liking.

      • I want the time wasted from solving captchas back

        Recaptcha is infamous for being the most user hostile captcha implementation. I feel like I spend up to 5 minutes wasting my time solving the same intractable street sign puzzles over and over, and if your browser is so much even slightly configured to be privacy conscious at all, you will be hit with the most difficult captchas and have to do it all over again.

        This is a multi-faceted problem that isn't completely all on recaptcha. Many sites for example use Cloudflare, which is known to be hostile to Tor users, and browsing any site using Tor tends to present you with high difficulty captchas. It's particularly egregious if captchas are sent on certain requests, meaning that you will have to solve it ALL OVER AGAIN even if you successfully solved the last one. Granted, this is configurable by the webmaster, but the fact that it's encouraged or so prevalent at all discourages legitimate users from visiting your site.

      • Shrink a Virtual Box disk image (dynamic).
      • Internet/Gemini

        • Launch of Omloppsbanan, an Orbit for Swedish Geminauts

          I've hosted a Gemini capsule for a month now. I'd like to add something to my capsule that is not just static text, so I decided to make an orbit. An orbit is a bunch of Gemini capsules linking to each other in a ring. Each page has a link to the next and the previous page in the ring. This was popular on the early web under the name "webrings". To make the orbit resilient to link rot, each navigation link goes via a central orbit service.

        • Sleepless Nights, Busy Days

          It has been nearly 12 weeks since I managed to do any programming. My head is brimming with coding ideas.

          It has been 2.5 weeks since the baby was born. I haven’t had more than three hours of sleep per night since then. Some days I manage to take a nap, allowing me to feel somewhat normal for a while. Of course, the daily schedule is so filled with frequent baby feeding and diaper changing, not to mention dog walks and cooking food, that I wouldn’t be able to sit down at a computer anyway.

          It feels like having constant jet lag. In a way, the arrival of a baby changes the daily rhythm completely, like traveling to a faraway foreign continent. It was the same way three years ago when my first child was born, although those times have already faded from memory, unsurprisingly. That’s what the “baby lag” does to you. The old muscle memory remains, though, with certain routines feeling very familiar.

* Gemini (Primer) links can be opened using Gemini software. It's like the World Wide Web but a lot lighter.

Recent Techrights' Posts

For the First Time Since May (Linux Foundation) Published Something. It's All Spam.
Can we trust the Linux Foundation to look after anything at all? Look what it turned this once-thriving site into.
Honduras: Windows Down, Android Peaking Again
Honduras does not have many stakes in Microsoft
Why the Media is Dying (It Sucks, No Mentally Healthy People Will Tolerate This for Long)
linking to actual news articles helps fuel the spam, too
Something is Happening at OFTC
It looks like it shrank by 20,000 users
GNU/Linux Usage in Guadeloupe Rises Closer to International Average, Based on Web Data Collected by statCounter
It should be noted that the estimates of GNU/Linux usage are now in 4.5% territories
[Meme] The Latest in the Microsoft Windows Blame Game
Microsoft found the culprit and came to everyone's rescue!
Links 22/07/2024: Overworking and Performance Issues From Europe
Links for the day
Microsoft Eliminates 67% of the Building Occupancy - That's Some Truly Massive Layoffs
Half a dozen floors? Microsoft cuts that down to two.
[Meme] Signs of a Dying Patent Office
"Bribe the media to say you excel"
This Month's General Consultative Committee (GCC) Webchat ('Meeting') Covered the European Patent Office's Attacks on Its Own Interpreters
The Central Staff Committee is currently circulating a report with appendices about the GCC meeting [sic] (webchat) that took place less than a fortnight ago
A Byzantine European Patent Office Where Staff Must Beg for Help With Contraception (Worse Than the Rest of Europe)
The Central Staff Committee (EPO staff representation) has just circulated a report
[Teaser] EPO Run by Children
"Daddy, why was I born?"
Let's Encrypt About to Fall Below 100 (Capsules) in Geminispace, It's Basically in a Freefall
The "self-signed" portion keeps growing
Gemini Links 22/07/2024: Spacewalk Dies and Old Computer Challenge in the Rear View
Links for the day
[Meme] Twitter (X) Will Reject the Concept of a Female President
Twitter (X) is controlled by misogynists, who socially control (or socially-engineer) their fake concept of "media"
Second Family Photo of Julian Assange Since His Release (First Since His Birthday)
His wife shows the 4 of them for the first time (2 hours ago)
Protesters in Kenya Need Software That is Free (Libre) and Supports Real Encryption in Order to Avoid Capture and Torture (Sometimes Execution)
There's more to fight over than economic issues
The Ludicrous Idea That GNU/Linux is a "Poor Man's" Operating System
Seeing the trends in countries such an Norway, it ought to be abundantly clear that adoption of GNU/Linux has nothing to do with poverty
Links 22/07/2024: Internet Optimism and Kamala Harris Policies Debated
Links for the day
The Impact of OFTC's Latest Changes on the Perceived Scale of IRC Globally
IRC is still one of the more potent alternatives to the social control media conglomerates
New: Why They Really Went After Assange
Uploaded by Chris Hedges
Links 21/07/2024: Health, Politics, and Kamala Harris in Focus
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, July 21, 2024
IRC logs for Sunday, July 21, 2024
A Drop in Half (From 208 to 104): Sharp Decline in Number of Gemini Capsules That Use Let's Encrypt CA Since December
Gemini is increasing its independence from Certificate Authorities (CAs)
Gemini Links 21/07/2024: Last of Old Computer Challenge and Forth Language
Links for the day
Links 21/07/2024: Climate, Politics, and More Squashed Patents
Links for the day
Only a Quarter of Web Requests in Micronesia Traced Back to Microsoft Windows (It Used to be Well Over 95%)
Micronesia has over half a million people in it
Your F.U.D. is Already Showing, Microsoft
That talking point is quickly spreading so that CrowdStrike discussions become about "Linux" instead of Windows
Andrew Feinstein on Why Freeing Julian Assange is About the Freedom of the Press in General
Feinstein points out that truth itself is being challenged by people who value power, not truth, and typically seek to do things like sell arms and start proxy wars
In Palau, Windows Has Fallen to 16%
15 years ago Windows was at 98%
Gemini is Blossoming and More Capsules Are Self-Signing, Rejecting the Defunct and Falsely-Marketed Certificate Authority (CA) Model
Gemini is still very fast, not only because objects are lightweight but the protocol itself - i.e. the underlying logic - is as simple as it needs to be and only as complex as it must be
Gemini Links 21/07/2024: New Garden and New Gemini Arrivals
Links for the day
Links 21/07/2024: Extreme Heat and Fortescue Layoffs
Links for the day
GNU/Linux Lifted Up 0.03% Closer to 4.5% "Market Share" (or 50% More Than a Year Ago)
How many businesses and homes are permanently giving up on Windows after recent days' events?
Giving the False Impression That the R blogosphere is Microsoft's Microcosm
Curation that culls "astroturfing" isn't censorship but quality control for relevance
High Adoption Rates for GNU/Linux in Albania, According to statCounter
Albania has been a central point of some GNOME and diversity scandals
It'll Soon Be Half a Decade Since COVID-19's Breakout, We Still Need Verified Facts (Not Corporate Dogma) and Proper Media Reporting
COVID-19 has meant different things to different people
For the First Time, Microsoft's "Market Share" in North Macedonia Falls to Only a Quarter
Microsoft only has Windows
Evan Versus Julian
Published by Julian Assange's wife some hours ago
What The Internet Can Achieve When Put in the Hands of the Good People and Not Censored by the People Who Already Control the Mass Media
albeit Wikileaks put that in social control media owned and controlled by oligarchs
IRC Proceedings: Saturday, July 20, 2024
IRC logs for Saturday, July 20, 2024
Over at Tux Machines...
GNU/Linux news for the past day
[Meme] Hate Speech
This is also what makes TikTok so dangerous
Shark-infected Water on the Web
Don't turn Gemini into another "Web"
OpenHarmony, HarmonyOS Next, Deepin, Kylin, and openKylin: How China's Various Manoeuvres Away From Windows Get Covered in the West
Kylin was openly based on Ubuntu
WikiLeaks Wonders: Major Leaks That Shook the Worlds
Published 14 hours ago
No Outage Here
Microsoft seems to have lost control of the narrative
Links 20/07/2024: Tesla's UK Lawsuit for 5G Patents Licence Thrown Out by UK Court, Censorship Examples Surface
Links for the day
Gemini Links 20/07/2024: Why Sleep Is So Important, Bot Problems Online
Links for the day
[Meme] Truth Hurts
"Saying that I physically assaulted women is 'defamation'"
Techrights Turns 18 in About 3 Months
Nothing can stop us
When (Software) Freedom is the Goal
Freedom of thought also
Expect Many More Microsoft Layoffs After the Latest Windows Outages (Bonus: More Media Says Microsoft Has Cut Half the Staff in Nigeria)
after the latest worldwide blunder we can expect many businesses to gradually ditch Windows
Microsoft Has Managed to Make GNU/Linux Users Scared of Updating Their GNU/Linux PCs (Thanks to UEFI 'Secure' Boot's Boosters!)
How many people know who's responsible for this mess?
Today GNU/Linux Broke All-Time Record in statCounter Again
Expect more people to hop over to GNU/Linux after the Windows fiasco
Joab Jackson and "The New Stack" Publishing Microsoft Spam (E.E.E. Against Linux) for a Payment From Microsoft
It's not a real news site
Links 20/07/2024: Patents on Software Squashed, Further Attacks on Independent News Sites
Links for the day
Links 20/07/2024: Shopping Mall in Southwestern China and New Health Crises
Links for the day
Microsoft/Windows Has Fallen Well Below 1% (Now 0.7%) in American Samoa
statCounter Sees Microsoft Windows at Below 1% in American Samoa
The Thelio Mega Is a Dual-GPU Linux Supercomputer
System76 sells many desktops and laptops built to run Linux. The company has now revealed its new high-powered Linux desktop, the Thelio Mega
[Meme] "System of a Down"
The latest international catastrophe kills people
Geminispace Growing and Getting More Free (Independent)
Because self-signed certificates are the way to go
Why Microsoft is Laying Off So Many People in Nigeria
Nigeria is a place Microsoft has lost
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, July 19, 2024
IRC logs for Friday, July 19, 2024
Gemini Links 20/07/2024: Gopher Catchup and Old Computer Challenge
Links for the day