Visualised: 2021 Growth of Gemini Space (by Balázs Botond)

Posted in Free/Libre Software at 9:54 pm by Dr. Roy Schestowitz

This new page has just been announced by Balázs Botond. Here’s just one image (among many) from it:

Gemini capsules

Links 10/11/2021: Release of RHEL 8.5, Valve Delays Steam Deck, Sailfish OS 4.3 Released

Posted in News Roundup at 7:55 pm by Dr. Roy Schestowitz

  • GNU/Linux

    • Desktop/Laptop

      • Sick of Windows? How to test-drive Linux

        Linux is an operating system, similar to the one you use on your Windows and Apple computers. It runs software and allows you to access the various peripherals (printers, speakers, mice, keyboards, SD card readers, etc.) you attach to the system. Without an operating system, your computer would be of no use to you

        You may or may not have ever heard about Linux and that’s OK; either way, you’re in for a treat. Why? Because many of the headaches you have to deal with, when using Windows, won’t be an issue with Linux. Those surprise reboots to apply upgrades? Nope. The constant fear of malware or ransomware? Not on Linux. Costly software? Not an issue.

      • Christopher Davis: System76: A Case Study on How Not To Collaborate With Upstream

        Preface: the following post was written in the context of the events that happened in September. Some time has passed, and I held off on publishing in the hopes we could reach a happy ending with System76. As time has passed, that hope has faded. Attempts to reach out to System76 have not been productive, and I feel we’ve let the impression they’ve given the wider tech community about GNOME sit for far too long. Some things have changed since I originally wrote the post, so some bits have been removed.

        Recently there’s been some heated discussion regarding GNOME’s future. This has led to a lot of fear, uncertainty, and doubt being spread about GNOME, as well as attacks and hostility toward GNOME as a whole and toward individual contributors. This largely started due to the actions of one company’s employees in particular: System76.

        This is not the first time System76 has been at the center of a public conflict with the GNOME community, nor is it the first time it was handled poorly. At this point, I no longer feel comfortable working with System76 without some sort of acknowledgment and apology for their poor behavior, and a promise that this won’t happen again.

        You might be thinking: what sort of behavior are you talking about? What has System76 done to deserve this treatment? Well, it’s not any one incident – it’s a pattern of behavior that’s repeated multiple times over the past few years. I’ll share incidents I know of from the past, what their behavior has been like in the present, and my own thoughts on the future.

      • System76 accused of not collaborating with GNOME • The Register

        A core member of the GNOME team has accused System76 of being “a case study on how not to collaborate with upstream” following confirmation that the Linux PC vendor is working on a new desktop built with Rust.

      • The Framework Laptop Is Great For A Linux-Friendly, Upgradeable/Modular Laptop [Ed: Now Larabel... is this an ad?]

        While many Linux users were excited years ago around EOMA68 and in part the possibility of an open, upgradeable laptop design, it has yet to ship and looking like it never will — not to mention being very outdated specifications by today’s standards. Entirely unrelated to that prior upgradeable hardware effort but continuing in similar goals is The Framework Laptop. The Framework Laptop is a thin, upgradeable notebook that is Linux-friendly and allows the user to easily upgrade their own components. I was testing The Framework Laptop for a while and from the hardware perspective is a very nice device and running well under Linux.

    • Audiocasts/Shows

    • Kernel Space

      • OpenZFS 3.0 Could See macOS Support & DirectIO, While ZFS For Windows Continues – Phoronix

        The annual OpenZFS Developer Summit wrapped up yesterday with interesting talks on this open-source, cross-platform ZFS file-system implementation.

        ZFS co-creator Matt Ahrens kicked things off as usual, including touching on future work and possible expectations for OpenZFS 3.0. Given the annual major release cadence, OpenZFS 3.0 is up next for the project that currently has support for Linux and FreeBSD systems. Some of the possible features expressed for OpenZFS 3.0 include macOS support, DirectIO, RAIDZ expansion, Linux namespaces, ZFS on object store, FIEMAP, VDEV properties, async DMU, and more. We’ll see though next year ultimately what pans out for the next ZFS release.

      • DirectIO For OpenZFS Shows Very Promising Performance – Phoronix

        Running the past two days was the annual OpenZFS Developer Summit. One of the most interesting presentations from this virtual event was on the status of DirectIO (O_DIRECT) support for the OpenZFS file-system and the performance boost it can offer in relevant areas.

        Brian Atkinson of the Los Alamos National Laboratory presented at the developer summit around the DirectIO support for OpenZFS. The work ultimately boils down to the DirectIO merge request open for OpenZFS since February 2020. This support aims to allow bypassing ZFS’ ARC when issuing reads/writes with a particular focus on improving the performance for Zpools on NVMe solid-state drives as well as other cases where ARC just gets in the way.

      • Kernel 5.10.78 with legacy framebuffers

        I am having success with fixing Firefox, will post about that later. For now want to document a little experiment; the linux kernel configured to use efifb and vesafb.

      • Where Rust fits into Linux • The Register

        Opinion To become a Linux developer, you used to need C as your passport. Now Rust can let you be an OS programmer as well.

        The joke goes: “C combines the power and performance of assembly language with the flexibility and ease-of-use of assembly language.” Having programmed in both C and IBM 360 Assembler – it was a long time ago, OK – there’s something to that. Because of its power, performance, and portability, C became the operating system language of choice, including, of course, Linux.

      • Improved Retpoline Code In The Linux 5.16 Kernel – Phoronix

        Merged last week into the Linux 5.16 kernel is improved Retpoline “return trampoline” code.

        Phoronix readers should be very familiar with Retpolines by now as being used for Spectre Variant Two mitigations. This improved Retpoline code in Linux 5.16 as part of the “objtool/core” changes rewrites Retpolines to indirect instructions in situations where Retpolines are not enabled. There is also a change for rewriting an indirect LFENCE for the AMD handling. The x86 BPF code is also better handled around its Retpoline behavior.

      • Kernel 5.15: A small but mighty Halloween release

        It might be smaller than the last few kernels, but with well above 10,000 non-merge changes, the latest Linux kernel still packs a punch. Released on October 31, kernel 5.15 brings lots of exciting new features. For example, ksmbd has been merged, which provides a simple SMB3 server implementation, and a potential user for the case sensitive filesystem support code Gabriel upstreamed in the 5.2 kernel. Another noteworthy highlight is the real-time preemption locking code, which finally hit mainline after 17 years! Meanwhile, in the embedded space, we expect to soon see processors hitting the market that have CPU cores with asymmetric behaviour (e.g. some cores only support 64 bit and some cores only supporting 32 bit). Scheduling a 64 bit task on a 32 bit CPU core would be fatal and the new scheduler will avoid this thanks to Arm.

        As usual, our Collabora engineers haven’t been slacking either, so let’s have a look at their contributions to this kernel release.

      • Graphics Stack

        • Mike Blumenkrantz: Inline 2.0

          In the course of working on more CI-related things for zink, I came across a series of troublesome tests (KHR-GL46.geometry_shader.rendering.rendering.triangles_*) that triggered a severe performance issue. Specifically, the LLVM optimizer spends absolute ages trying to optimize ubershaders like this one used in the tests:

        • Mesa 22.0 Zink Speeds Up OpenGL-Over-Vulkan On CPUs – Phoronix

          While there is already LLVMpipe Gallium3D for software acceleration of OpenGL on CPUs within Mesa, if wanting to increase the layers of abstraction you could also use Zink for OpenGL over Vulkan and by way of Lavapipe have that software accelerated on the CPU. With Mesa 22.0-devel, that route of Zink on CPUs is now faster.

        • NVIDIA 470.86 Linux Driver Released With VRR/G-SYNC Fix – Phoronix

          While since the end of October there has been NVIDIA 495.44 as the stable 495 series driver beta for Linux users, out today is their v470.86 release for those using that older long-term support branch.

          The NVIDIA 495 driver series is being treated as their new feature branch series with GBM API support and other additions while the NVIDIA 470 driver series continues to serve as their production branch version.

          Today’s NVIDIA 470.86 driver release is a small one adding a new NVIDIA driver installer option and fixing a VRR/G-SYNC regression/. The variable refresh rate regression prevented DisplayPort and HDMI 2.1 VRR/G-SYNC compatible monitors from functioning correctly in the VRR mode. This yielded flickering and other problems but should now be cleared up with the NVIDIA 470.86 Linux driver.

    • Instructionals/Technical

      • How to Install Zoom on Ubuntu (the Easiest Way)

        Zoom works perfectly on Linux and supports variants of Linux distros. Here I will show you the simplest way to install Zoom client on Ubuntu.

        Zoom is a popular video conferencing software available for multiple operating systems including Linux. It has become a go-to software for hosting webinars, creating conference rooms, and organizing online meetings.

        Installing Zoom on Linux is as easy as installing it on Windows. Here’s a step-by-step guide how to do it easily and quickly.

      • Neil Williams: LetsEncrypt with Apache, Gunicorn and Debian Bullseye

        Upgrading an old codebase from Python2 on Buster to Python3 ready for Bullseye and from Django1 to Django2 (prepared for Django3). Everything is fine at this stage – the Django test server is happy with HTTP and it gives enough support to do the actual code changes to get to Python3. All well and good so far. The main purpose of this particular code was to support payments, so a chunk of the testing cannot be done without HTTPS, which is where things got awkward.

        This particular service needs HTTPS using LetsEncrypt and Apache2. To support Django, I typically use Gunicorn.

        All of this works with HTTP. Moving to HTTPS was easy to test using the default-ssl virtual host that comes with Apache2 in Debian. It’s a static page and it worked well with https. The problems all start when trying to use this known-working HTTPS config with the other Apache virtual host to add support for the gunicorn proxy.

      • Create a simple calculator using HTML, CSS and Javascript – DEV Community

        In this tutorial we will create a fully working calculator using only HTML, CSS and vanilla Javascript. You’ll learn about event handling, and DOM manipulations throughout the project. In my opinion this is a really good beginner project for those who want to become web developers.

      • Changing Grafana Legends – Small Dropbear

        I’m not sure if I just can search Google properly, or this really is just not written down much, but I have had problems with Grafana Legends (I would call them the series labels). The issue is that Grafana queries Prometheus for a time series and you want to display multiple lines, but the time-series labels you get are just not quite right.

      • Shaark: Keep your bookmarks and data in one place

        As every daily internet user, you have resources all around, which include posts, links, comments, passwords, images, and more.

        Some create a text file or a spreadsheet file to keep track of their data. Well, with Shaark, they do not need to do that.

      • How To Install Laravel on Linux Mint 20 – idroot

        In this tutorial, we will show you how to install Laravel on Linux Mint 20. For those of you who didn’t know, Laravel is a very popular open-source PHP framework aimed at the easy development of applications. It is based on the Symfony framework and follows the model–view–controller (MVC) architectural pattern.

        This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of a Laravel on a Linux Mint 20 (Ulyana).

      • How to Build and Install RethinkDB on Ubuntu 20.04

        In this article I will be guiding you on how to install RethinkDB on Ubuntu 20.04

        RethinkDB is an open-source, scalable JSON database built from the ground up for the realtime web. It inverts the traditional database architecture by exposing an exciting new access model, instead of polling for changes, the developer can tell RethinkDB to continuously push updated query results to applications in realtime. RethinkDB’s realtime push architecture dramatically reduces the time and effort necessary to build scalable realtime apps. It is a great option when you need real time feeds to your data.

        RethinkDB is very useful when your application needs real time feeds to your data. RethinkDB query-response database access model works well on the web because it maps directly to HTTPs response request.

      • How to Change the Hostname in Linux

        There are plenty of reasons why you may want to change the hostname of your Linux system. Unfortunately, changing your hostname is not exactly an intuitive process. Don’t worry, though, we’re going to show you how you can change your machine’s hostname in less than a minute with just a few clicks and commands.

        Although this guide uses Ubuntu to demonstrate the steps required to change the hostname, the commands should work on other Linux distributions as well.

      • How to install FL Studio 20 on a Chromebook in 2021

        Today we are looking at how to install FL Studio 20 on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

        This tutorial will only work on Chromebooks with an Intel or AMD CPU (with Linux Apps Support) and not those with an ARM64 architecture CPU.

        If you have any questions, please contact us via a YouTube comment and we would be happy to assist you!

      • Install and Setup i3 Windows Manager on Debian 11 – kifarunix.com

        Welcome to our tutorial on how to install and setup i3 Windows Manager on Debian 11. i3 is a tiling window manager for X11. “A tiling window manager is a window manager with an organization of the screen into mutually non-overlapping frames, as opposed to the more popular approach of coordinate-based stacking of overlapping objects (windows) that tries to fully emulate the desktop metaphor.”

      • PHP: How to fix the “Call to undefined function curl_init()” error – Anto ./ Online

        Are you using PHP’s curl_exec() function and getting a “call to undefined function curl_init()” error? If so, then let’s fix the undefined curl_init() function error for you on Linux.

      • How to Fix : Failed to install the Extension Pack on Linux Mint

        In this tutorial you will learn how to fix the error “Failed to install the Extension Pack” when installing the virtual box extension pack on Virtualbox.

        Virtualbox extension pack enables support for Support for USB 2.0/ USB 3.0 devices, VirtualBox Remote Desktop Protocol, disk encryption, NVMe and PXE boot for Intel cards, so this package should be installed in order to be able to use the above mentioned devices on your virtual machine.

        For example: You have an usb device which you want to plug into your virtual machine, then to do this you need to install the extension pack. However, you got the error below which doesn’t allow you to install the extension pack.

      • How to change the color of active windows in Plasma

        Alternatively, the title of this article is: how to change the color of active titlebars in Plasma. So what is this all about? In the Plasma desktop, the default theme is called Breeze. Until about Plasma 5.18, Breeze shipped with a light application theme, plus dark window borders. Excellent ergonomic choice, easy separation between foreground and background windows. None of the flat, modern nonsense.

        Recently, Plasma offers distinct all-light or all-dark themes, plus a mixed theme called Twilight, which gives you the old light-dark combo. Except … it no longer works correctly. The window borders for active windows are light-themed. This is an under-reported, not-well-understood issue. I even had people emailing me telling me how to change the colors. Which I did, and the change does nothing, as there seems to be an unresolved bug in Plasma. I’ve been talking about this for more than a year. It’s time for a dedicated article.

      • How to Mount Bitlocker Encrypted Windows Partition on Linux [Ed: A bit misleading as Bitlocker is not proper encryption; it’s back doored in the sense Microsoft steals the keys [1, 2]]

        Here’s the scenario. My system came with Windows 10 Pro and that came with BitLocker encryption. I installed Ubuntu in the dual boot mode even with the BitLocker encryption enabled for Windows.

        You can easily access the Windows files from within Linux. No hi-fi stuff here. Just go to the file manager and click on the Windows partition which is located usually under the “Other Locations” tab.

      • ssh to machine behind shared NAT – blackMORE Ops
      • What sysadmins need to know about Linux permissions | Enable Sysadmin

        Standard permissions in Linux are simple and direct, and they can be used to manage files and file shares on many different filesystems and file-sharing protocols. An access control list (ACL) adds even more functionality to Linux permissions. This article covers just a few permissions basics and provides links to other great Enable Sysadmin content that delves into permissions and ACLs in more detail.

      • Delete unused EBS (Elastic Block Storage) Volumes on AWS using a Lambda Function

        Amazon Elastic Block Store (EBS) is an easy-to-use, high-performance block storage service. It is like an external disk that can be attached to an EC2 Instance and used to store our data on it. If the EBS Volumes are not in use and not needed and still available in the account, then you will be charged by AWS for them unnecessarily. To save some cost, we will see the Lambda function which can be used to find and delete such unused EBS Volumes.

      • Create a Free Linux VM on Your Computer | Built In

        Skip the cloud. Create a Linux VM using VirtualBox and Ubuntu for your next data science project. Here’s how to get started.

    • Games

      • Axis & Allies 1942 Online from Beamdog is out now with full cross-play | GamingOnLinux

        Beamdog, known for their RPG revamps like Baldur’s Gate: Enhanced Edition and Neverwinter Nights: Enhanced Edition have finally pushed Axis & Allies 1942 Online out of Early Access as a finished game with full cross-play.

        With it based on the popular Axis & Allies 1942 Second Edition board game from Avalon Hill, you will be able to play online against others across Linux, macOS, Windows, Android and iPadOS. Now that’s the kind of broad support we like to see in a multiplayer title!

        “German tanks mobilize in the west, blitzing into France and pushing back the Soviet Union in eastern Europe. The United States rises in response to Japanese aggression in the Pacific. The United Kingdom rallies allies as bombers menace the skies. The year is 1942, and the world is at war!

      • RetroArch brings more emulator cores to Steam including PPSSPP | GamingOnLinux

        RetroArch, the free and open source application designed to help you manage emulators, media playback and more has a few additional emulator cores available now on Steam.

        Cores are essentially the modules that RetroArch runs to do things, like run different emulators. The Steam release for RetroArch is a little different to the normal version. Instead of grabbing these cores directly in the application, they’re being put up as individual DLC to download.

      • Relaxing tropical adventure Fishing Paradiso announced for 2022 | GamingOnLinux

        Fishing Paradiso is the next title from Japanese developer Odencat, who also created Bear’s Restaurant, with a release planned to arrive with Linux support in early 2022.

      • Silly platformer metroidvania Clunky Hero is now in Early Access | GamingOnLinux

        Chaosmonger Studio, developer of Encodya, has released their latest with the comedic platformer metroidvania Clunky Hero with it beginning life in Early Access.

        “Clunky Hero is a story-driven, platformer metroidvania, with a touch of RPG and tons of humor. If you’d love a platformer game where you have a funny storyline, can talk with characters, solve side quests, find and buy items, change weapons and wearables, with great hand-drawn-looking backgrounds, presented in a very comical way, then Clunky Hero might be the game of your dreams!”

      • Hacked Punch-Out Controlled With Actual Punches | Hackaday

        In a slightly safer departure away from jetpack roller-skating and flinging around bolts of lightning, [Ian Charnas] has been hacking retro video games. After a lot of hard work [Ian] has managed to add pose estimation to control the character is the NES boxing game “Punch-Out.” Surely he can’t get hurt doing that? No, but since it wasn’t fair to hurt the poor suffering characters, without taking any damage himself, he added electric-shock feedback to give the game a bit more, ahem, punch. See, you can get hurt playing video games!

        By starting with Google MoveNet, which is a pre-baked skeletal tracking model which can run in a browser using TensorFlowJS, he defined some simple heuristics for the various boxing moves usually performed with the game controller. Next, he needed to get the game. Being a all-round good guy, [Ian] bought an original copy of the game cartridge to obtain the license, then using the USB CopyNES from RetroUSB, dumped out the game binary for the next step.

      • Steam Deck Deposit – Steam Deck Shipping Update – Steam News
      • Steam Deck DELAYED! – Invidious
      • Steam Deck Release Pushed Back To February 2022 – Phoronix

        Valve just sent out an email to pre-order customers that the Steam Deck release is being delayed by two months.

        Due to the ongoing global supply chain crisis, Valve is needing to delay the Steam Deck ship date to February 2022 due to material/component shortages. Valve originally hoped to begin shipping their Steam Deck Linux-powered gaming handheld before the end of the calendar year.

      • Valve delays Steam Deck, now starts shipping February 2022 | GamingOnLinux

        Valve has announced today that their hotly anticipated handheld, the Steam Deck, has been delayed until 2022.

        Sadly, every company making computing hardware has been facing component shortages and various shipping delays and it seems that Valve has been unable to get around it. They said “The launch of Steam Deck will be delayed by two months. We’re sorry about this—we did our best to work around the global supply chain issues, but due to material shortages, components aren’t reaching our manufacturing facilities in time for us to meet our initial launch dates.”

      • You can grab a free to keep copy of Beholder on Steam | GamingOnLinux

        Beholder, a very well-reviewed game about being a state-installed landlord in a totalitarian country is currently available free for keeps on Steam. You might want to act fast on this one, as it seems the free to keep period ends tomorrow, November 11.

        “A totalitarian State controls every aspect of private and public life. Laws are oppressive. Surveillance is total. Privacy is dead. You are the State-installed manager of an apartment building. Your daily routine involves making the building a sweet spot for tenants, who will come and go.

      • Proton Experimental gets Age of Empires 4 working out of the box on Linux | GamingOnLinux

        Want to play Age of Empires 4 on Linux? Now you can. Another update for Proton Experimental has gone live. What is Steam Play and Proton? See our beginner’s guide for more if you’re unclear.

        As of November 9, Proton Experimental got fixes to allow Age of Empires 4 to work as well as Marvel’s Guardian of the Galaxy (although that only works on AMD GPUs currently). Additionally, a rare crash when starting up Baldur’s Gate 3 was also solved for this release.

      • System76 patches APT for Pop!_OS to prevent users breaking their systems | GamingOnLinux

        There’s been a huge amount of talk recently about switching to Linux for gaming, thanks to the challenge from Linus Tech Tips (YouTube) where two of their people tried the full-switch but it didn’t go so well for Linus and Pop!_OS. Now, System76 are trying to improve.

        It was pretty unfortunate that as Linus was going to install Steam, Pop’s packaging had some sort of breakage that wasn’t quite picked up and Linus ended up hosing the Pop desktop install. You can easily do some finger-pointing on where the real blame lies here from Pop not ensuring a major package like Steam works correctly before it’s pushed to users, to Linus ignoring the (what should be) pretty-clear warning message…

      • Hacking the Sony Playstation 5 – Schneier on Security

        I just don’t think it’s possible to create a hack-proof computer system, especially when the system is physically in the hands of the hackers.

      • A pair of PS5 hacks could be the first steps towards jailbreaking Sony’s latest console

        The two exploits are particularly notable due to the level of access they theoretically give to the PS5’s software. Decrypted firmware — which is possible through Fail0verflow’s keys — would potentially allow for hackers to further reverse engineer the PS5 software and potentially develop the sorts of hacks that allowed for things like installing Linux, emulators, or even pirated games on past Sony consoles.

    • Desktop Environments/WMs

      • 7 Things You Should Know Before Switching to a Window Manager

        The idea of creating a personalized desktop compels many Linux users to install a window manager. There are ample reasons to ditch your current desktop environment and switch to a window manager instead, but since everyone comes from a different mold, it’s not a “one-size-fits-all” case.


        A window manager is a program responsible for positioning and displaying windows in a GUI. These programs can be a part of a larger desktop environment or can be used as a standalone desktop.

        A desktop environment usually consists of a window manager, widgets, and other utilities that interact with the rest of the applications to provide an interactive user experience. Some widely-used desktop environments are KDE Plasma, GNOME, Xfce, LXQt, Cinnamon, etc.

        i3wm, bwspm, dwm, KWin (used in KDE), and Metacity (used in GNOME) are some examples of window managers.

      • GNOME Desktop/GTK

        • This Extension Adds Your Text as Watermark in Ubuntu 21.10 GNOME

          Want to display some text on your desktop as watermark? This extension makes it possible in Ubuntu 21.10, or Fedora 34/35 with GNOME 40+.

          As I know, only Fedora so far display system logo as watermark in the bottom right of its GNOME desktop, though it’s enabled only for the default wallpaper by default.

          ‘Activate Gnome’ is the extension, which adds semi-transparent text ‘Activate Gnome – Go to Settings to activate Gnome‘ in the bottom right corner of GNOME 40+ desktop.

    • Distributions

      • New Releases

        • Sailfish OS Suomenlinna brings increased security, stability and reliability

          Suomenlinna is a Fortress built spanning four islands in the Suomenlahti (Gulf of Finland) just South of Helsinki. While Jolla just celebrated its tenth year, Suomenlinna, which literally translates to Finnish Castle, is somewhat older. Construction was started 267 years ago, with many thousands of workers building for nearly ten years before it was completed. Nowadays it’s designated as a World Heritage Site and you can visit it by ferry all year round to see it for yourself.

          It’s an appropriate codename for the Sailfish OS 4.3.0 Suomenlinna release given the emphasis we’ve placed on security improvements for this version of the operating system.

          For while we saw a tranche of new features included in the Sailfish OS 4.2.0 Verla release, in 4.3.0 Suomenlinna it’s much more about stability, bug-fixes and security improvements.

          Deeper integration and improved security

          The headline improvement is one that was already trailed by Ville in his recent Sandboxing blog post. From now on, any app that defines an application profile will be automatically sandboxed. This is currently an opt-in process; any app that isn’t updated in this way will still run outside the sandbox. As a user this means you will start to see some third party apps bring up the sandboxing dialogue on first run. You should already be familiar with this from 4.2.0, in which the Jolla apps were already sandboxed. In 4.3.0 Suomenlinna you’ll start to see this more often. Users can of course still run apps however they want, but can feel more confident when running apps inside the sandbox.

          This is an important security advancement, and follows the roadmap Ville described towards having all apps sandboxed. We’ve been careful to increase security without compromising user-control, and we think you’ll appreciate the extra peace-of-mind that sandboxing brings.

        • Sailfish OS 4.3 Released With Better Android App Support – Phoronix

          For fans of Jolla’s Linux-based smartphone platform, Sailfish OS 4.3 “Suomenlinna” is out today.

          Sailfish OS 4.3 delivers on security improvements, including improved sandboxing support for applications. Jolla is still working towards having all Sailfish OS apps be sandboxed, among other ongoing security improvements.

      • SUSE/OpenSUSE

        • MicroOS Remote Attestation with TPM and Keylime

          During 2021 we have been starting to focus more in security for MicroOS. By default MicroOS is a fairly secure distribution: during the development all the changes are publicly reviewed, fixes (including CVEs) are integrated first (or at the same time) in Tumbleweed, we have read-only root system and a tool to recover old snapshots, and periodically the security team audit some of the new components. Also, the move from AppArmor to SELinux should help to standardize the security management.

          But we really want to rise the bar when it is possible. For example, we are starting to think on how to enable IMA/EVM properly in the distribution, or what alternatives we have for full disk encryption supported by a TPM. There are some evaluation on dm-verity inside the new Transactional Image Update installer.

          Another area where we make progress in MicroOS is how to measure the health of our systems, detect remotely when an unauthorized change has been made (remote attestation), and actuate over it globally and as fast as possible.

        • Accelerate Cloud Native DevOps with Erik Sterck FramES and SUSE Rancher

          Erik Sterck and SUSE deliver a “single button” approach to cloud native DevOps environments, making it easier than ever to achieve successful digital transformation and accelerate toward your cloud native goals.

        • Survey Results of Packagers, Maintainers Posted – openSUSE News

          The openSUSE Project has posted results from a recent survey that ran between Oct. 7 and Oct. 29.

          The aim was to gather more information from open-source developers, development teams, packagers and maintainers. The survey also aimed to determine the satisfaction level of contributors and better understand the complexities and challenges they encounter with the project’s development. The survey provided an area to comment and provide suggestions to improve relevant aspects of the project and its tools.

      • IBM/Red Hat/Fedora

        • What’s new in RHEL 8.5

          Red Hat Enterprise Linux (RHEL) 8.5 is now generally available (GA), and brings new features and improvements to help streamline deployments, optimize performance and help mitigate risk in your environments. Whether you’re deploying RHEL on-prem, in the public cloud, at the edge — or all of the above — RHEL 8.5 has improvements that users will be eager to dig into.

          RHEL 8.5 continues the tradition of new features and improvements for running Linux containers. This release brings tooling that will add flexibility and reduce friction in running Podman in a wider range of environments.

        • Red Hat Announces General Availability of Red Hat Enterprise Linux 8.5

          Red Hat, Inc., a leading provider of open source solutions, today announced the general availability of Red Hat Enterprise Linux 8.5, the latest version of a leading enterprise Linux platform. Red Hat Enterprise Linux offers a common, open operating system that extends across clouds, traditional datacenter operations and out to the edge. The platform enables IT teams to lean on existing skills while they use new and expanded capabilities to build the transformative applications and services required by their business, regardless of where these workloads may ultimately live.

        • RHEL 8.5: OpenJDK 17, .NET 6, and more

          At Red Hat Summit 2019, we announced that minor releases of Red Hat Enterprise Linux (RHEL) would be available every six months. Following the success of RHEL 8.4 in May 2021, we have completed yet another exciting release of Red Hat Enterprise Linux, and Red Hat Enterprise Linux 8.5 is now available. We recommend upgrading both your development and production systems to the new 8.5 release.

          Read on for an overview of the major highlights for developers in RHEL 8.5.

        • What Version of RHEL am I Using?

          RHEL or Red Hat Enterprise Linux is one of the many operating systems provided by Red Hat. Red Hat is a popular Linux OS and has started functioning ever since the mid-1990s. Red Hat earned a good reputation due to being stable, regularly updated, and reliable.

          If you are using RHEL and want to find its version, this article is for you. Now let’s check 7 useful methods to know what version of RHEL you are using.

        • Red Hat Satellite 6.9.7 has been released

          We are pleased to announce that Red Hat Satellite 6.9.7 is generally available as of November 10, 2021.

          Red Hat Satellite is part of the Red Hat Smart Management subscription that makes it easier for enterprises to manage patching, provisioning, and subscription management of Red Hat Enterprise Linux infrastructure.

        • Toolbox is now Toolbx | Debarshi’s den

          Toolbox is being renamed to Container Toolbx or just Toolbx.

          I had always been uncomfortable by the generic nature of the term toolbox and people keep complaining that it’s terribly difficult to search for. Recently, we have been trying to improve the online presence of the project by creating a website and a Twitter handle, and it’s impossible to find any decent Internet real estate with anything toolbox.

          It looks like dropping the penultimate character from words to form names is a thing these days, hence Toolbx.

        • Kafka Monthly Digest: October 2021 | Red Hat Developer

          Get the latest news from the Apache Kafka developer community, including new milestones for Kafka 3.1.0, Debezium 1.7, Strimzi 0.26.0, and more.

        • Leading from open: How military veterans view open culture at Red Hat

          Red Hat’s culture is built on the open source principles of transparency, collaboration and inclusion, where the best ideas can come from anywhere and anyone. You might not immediately think that this culture has a lot of overlap with that of the military, which may appear to be hierarchical and rely on command and control, but Red Hatters from our Military Veterans Diversity and Inclusion Community would disagree.

        • JNLP Access to BMC On Fedora | Adam Young’s Web Log

          I recently had to get in to a serial console on the machine. The IPMI address hosts a web console. From that you can get a serial console on the server, but you need JNLP, which stands for Java Net Launch Protocol. It is implemented by IcedTea in OpenJDK: icedtea-web is the name of the RPM on Fedora 34.

      • Debian Family

      • Canonical/Ubuntu Family

        • What To Do After Installing Ubuntu 21.10 Impish Indri

          Ubuntu 21.10, the latest release of the most popular desktop operating system from the GNU/Linux community, has been released this October and you perhaps have the system already on your computer. Once installed, you might want to know what to do after that for your daily purposes, with several configurations, additional apps and games. Enjoy Ubuntu computing!

        • Canonical Makes it Easy to Run a Linux VM on Apple M1

          Ever since Apple introduced its M1 chips, numerous efforts have been made to run Linux on it.


          It is convenient for most developers to spin up a Linux VM instance and continue working on their system without interruptions.

          Unfortunately, getting a Linux instance up and running on M1 devices is not a straightforward task.

          While you have tools like VMware and VirtualBox to create virtual machines, it does not work on ARM-based Apple M1 silicon.

          As of now, VMware is slowly adding support for its products to work on Apple M1. However, that is still in closed beta and not feasible for users.

        • Canonical’s new Multipass 1.8 runs Ubuntu Linux in a VM on M1 Macs
        • Canonical’s Multipass 1.8 brings instant Ubuntu VMs to M1 Macs
        • Canonical Is Bringing Ubuntu To M1 Macs With ‘Multipass’

          There’s no denying the fact that M1 Macs are the most revolutionary devices that we’ve seen in the past decade. However, one of the many things they lack is the ability to run Linux. The recent Linux Kernel releases have improved M1 support, but Linux is still not very usable on M1.

          As of writing this, the only way to install Linux on M1 Macbooks is by using a Virtual Machine software like Parallels. Canonical has also followed the same road and is now offering ‘Multipass,’ which it claims is the fastest and easiest way to install Linux on M1 Macs.

        • Linux finally has an impressive cloud-like OS in Ubuntu Web

          Linux powers the cloud. But for the longest time, the operating system that single-handily makes the cloud possible didn’t really have a desktop distribution that offered much in the way of applications that interacted well with the cloud. Yes, there’s a Dropbox app and a few third-party tools that can be installed to sync your desktop to cloud storage accounts … but not much more.


          And then comes Ubuntu Web. This new-ish distribution promises to be the Chrome OS for Linux and, wow, does it achieve just that. To be honest, when I first heard about the remix I was doubtful. I’d seen so many distributions attempt them and, for the most part, fail. So, with trepidation, I downloaded the latest version of Ubuntu Web, spun up a VM, and gave it the test.

          Upon completing the installation, I logged in and was greeted by a window I’d never seen before in a Linux distribution. Said window required I log in. But to what account? It didn’t take me long to realize it was requesting I log into an /e/ foundation account (which I already had). Logging into the /e/ account makes it possible for you to take advantage of a rather nifty trick Ubuntu Web has up its sleeve. Said trick is WayDroid, a port of Anbox which allows users to install Android apps from the /e/ store.

        • Linux overview | Xubuntu 21.10 – Invidious

          In this video, I am going to show an overview of Xubuntu 21.10 and some of the applications pre-installed.

        • SQL Server on Ubuntu Pro: bringing it all back home [Ed: Canonical sucking up to Microsoft again, instead of competing against its proprietary software]]
    • Devices/Embedded

      • Amlogic S905X based Pi lookalike starts at $35

        Geniatech’s Raspberry Pi like “XPI-S905X2/X3/X4” SBC runs Android on a quad -A53 Amlogic S905X2 or quad -A55 S905X3 or X4 with 2GB RAM, 8GB eMMC, GbE, HDMI, 4x USB, 40-pin GPIO, and optional WiFi/BT.

        Geniatech has previously used Amlogic SoCs on its feature-rich DB10 dev board, which is based on Amlogic’s hexa-core -A73 and -A53 A311D, and has now returned with a Raspberry Pi pseudo clone built with a choice of three quad-core Amlogic SoCs: the Cortex-A53 based S905X2 and the Cortex-A55 based S905X3 and S905X4. The Android-supported XPI-S905X2/X3/X4 SBCs, which are also referred to as the 4K Single Board ARM PCs, go for $35 for the S905X2 model and $42 for the S905X3 version. The S905X4 model is not yet available.

      • Geniatech Unveils New 4K-Capable Raspberry Pi Alternative

        Two new boards in the Raspberry Pi form factor have appeared from Geniatech. Equipped with Amlogic processors, the XPI-S905X2 and XPI-S905X3, as spotted by CNX Software, claim 4K video playback capability.


        All the new boards are capable of playing back 4K60 video in the VP9 Profile 2, HEVC MP-10, ACS2-P2, and H.264 AVC formats, while the most powerful (sporting an S905X4 chipset) can manage AV1 at 4K120 too.

        You get a power adapter and passive cooling fin in the box, and the boards use Android 9 as their OS, though it shouldn’t be too hard to get Linux up and running, as other Geniatech boards support that option.

      • Raspberry Pi inspired Intel SBC supports Myriad X AI accelerator, 5G connectivity

        Axiomtek KIWI310 may look like a Raspberry Pi SBC but it packs an Intel Celeron N3350 processor, an M.2 slot with support for Myriad X AI accelerator, and the company also offer a HAT with 5G cellular connectivity.

        The single board computer also comes with up to 4GB LPDDR4 memory, up to 64GB eMMC flash, a Micro HDMI port, two USB 3.0 and two USB 2.0 ports, as well as the ubiquitous 40-pin GPIO header. Power options are also an improvement over your typical Raspberry Pi board with USB-C PD as well as LiPo battery support.

      • CutiePi – a Raspberry Pi CM4 Linux Tablet

        It has an 8″ 1280×800 multi-touch display, a 5000 mAh battery, USB 2.0, USB-C power (you can use the tablet while charging), micro HDMI for an external monitor or TV, and a microphone, speaker, and 5MP 1080p rear-facing camera.

        But my favorite thing? The rear case pops off after removing eight #2 phillips-head screws! No pentalobe here. The entire design is made to be repairable (to a certain extent), and is also open source, including the custom CutiePi Shell UI, which is so far the best custom tablet UI I’ve played with on a Raspberry Pi (though… that’s not saying much!).

      • Lilbits: CutiePi Linux tablet, NXP i.MX 93 chips, Twitter Blue, and YouTube’s Dislike button – Liliputing

        The CutiePi tablet with a built-in handle, a Raspberry Pi for brains, and Linux-based software is nearing release. Twitter is charging people willing to pay for an Undo Tweet button (and a few other perks). Google hopes YouTube might be a friendlier place if it hides the number of times the dislike button has been clicked on videos. And NXP has unveiled a new processor family.

      • Time to put this DIY absolute position encoder to work as a clock | Arduino Blog

        Being able to derive the absolute position of an object is vital in countless applications, primarily for anything that uses a motor. Instructables user holybaf had the idea to build their own rotary encoder, which has 60 degrees of resolution and utilizes a CD to act as a precise clock.

        To accomplish this, they first laid down a single circular track featuring patterns of light and dark areas that each correspond to a single value. By reading these areas with a set of six infrared emitters/detectors and comparing their current reading to the previous one, an absolute position can be determined.

      • Raspberry Pi Unveils ‘Code Club World’: A Way for Kids to Learn Code at Home – FOSS Force

        On Tuesday, the Raspberry Pi Foundation announced Code Club World, a child-friendly website purposed with helping children aged 9 to 13 “learn to make stuff with code.”

        In a blog announcing the project, Laura Kirsop, the Raspberry Pi Foundation’s head of learning experience, said the project was one result of the foundation’s efforts to create tools to help parents with homeschooling efforts during the Covid-19 pandemic.

        “When we spoke to parents and children about learning at home during the pandemic, it became clear to us that they were looking for educational tools that the children can enjoy and master independently, and that are as fun and social as the computer games and other apps the children love,” she said.

      • MXM modules showcase Nvidia Ampere

        Adlink’s “EGM-MXM-A” modules for edge AI bring Nvidia’s high-end Ampere graphics to MXM 3.1. The modules include RTX A1000, A2000, and A4500 graphics, with the latter offering 5,120 CUDA, 40 RT, and 160 Tensor cores for up to 17.8 TFLOPS.

        In May, Adlink announced the first MXM 3.1 modules with Nvidia Turing GPUs, ranging from the Quadro T1000 to the RTX5000. The company has followed up with the industry’s first MXM modules equipped with Nvidia’s higher-end Ampere graphics.

      • NXP’s i.MX9 debuts with dual -A55, microNPU equipped i.MX93

        NXP unveiled a Linux-driven, energy-efficient “i.MX93” SoC for IoT with 1x or 2x 1.7GHz Cortex-A55 cores, 2D GPU, 250MHz Cortex-M33, NXP EdgeLock security, and options including a 1-TOPS Arm Ethos-U65 microNPU and Azure Sphere security.

        NXP announced the first of several i.MX9 processors, which offer improved security and power management and an optional 1-TOPS Arm Ethos-U65 microNPU. NXP’s first i.MX9 chip is a low-end i.MX93 model that focuses on energy efficient IoT applications, including battery-powered devices. The i.MX93 is equipped with 1x or 2x 1.7GHz Cortex-A55 cores, a 250MHz Cortex-M33, and an optional 1-TOPS, 256 MACs/cycle Arm Ethos-U65 microNPU.

        The i.MX93 is equipped with a 2D-only graphics GPU with support for up to 1080p60 encode and decode with MIPI-CSI and -DSI and 720p60 for LVDS and parallel interfaces. The GPU supports blending/composition, resizing, and color space conversion. Applications include voice-assisted smart home and building systems, low-power industrial gateways, and automotive driver monitoring systems.

      • NXP i.MX 93 processor combines Cortex-A55 cores with Ethos U65 microNPU – CNX Software

        NXP has unveiled the i.MX 93 processor family comprised of i.MX 935x, 933x, 932x, and 931x parts at this time with up to two Cortex-A55 cores, one Arm Cortex-M33 real-time core, as well as an Ethos U65 microNPU for machine learning (ML).

        We wrote about i.MX 9 family back in March with NXP telling us it would include an Arm Ethos U-65 microNPU and EdgeLock secure enclave, be manufactured with a 16/12nm FinFET class process, and includes the “Energy Flex” architecture to optimize power consumption by turning on/off specific blocks in the processor. The NXP i.MX 93 is the first family leveraging those new features, and we know have some more details.

      • Open Hardware/Modding

        • 3D Printed Absolute Encoder Is Absolutely Wonderful | Hackaday

          When you need to record the angle of something rotating, whether it’s a knob or a joint in a robotic arm, absolute rotary encoders are almost always the way to go. They’re cheap, they’re readily available, and it turns out you can make a pretty fantastic one out of a magnetic sensor, a ziptie, and a skateboard bearing.

        • James Bruton built a robot that moves like an earthworm | Arduino Blog

          Self-propelling robots come in a whole host of shapes, sizes, and capabilities, with some being able to fly while other can walk on just a couple or many legs. But YouTuber James Bruton wanted to innovate on this concept even further by designing and building a robot that mimics an earthworm through extending and contracting segments at certain times to slowly inch along the ground. This class of motion is called peristalsis, and it works by constricting a ring of muscles to propagate material, such as in the case of the digestive tract, or to move an entire body.

        • Ikea PM2.5 air quality sensor’s ESP8266 hack adds WiFi, MQTT, and Tasmota support – CNX Software

          Ikea VINDRIKTNING PM2.5 air quality sensor functionality can be augmented with an ESP8266 WiFi board or module, and open-source firmware adding MQTT, or the popular Tasmosta firmware for more features.

          Out of the box, Ikea air quality sensor simply shows green (good), yellow (ok), and red (not good) colors to indicate the level of pollution with PM2.5 levels. But Sören Beye (Hypfer), who also happens to have developed Valetudo firmware for smart vacuum cleaners, has added a Wemos D1 Mini board to his sensor and developed open-source firmware with MQTT support.

        • Streamline Your SMD Assembly Process With 3D-Printed Jigs | Hackaday

          Maybe it’s time to try Stencilframer, a 3D-printable jig generator created by [Igor]. This incredibly useful tool takes either a set of gerbers or a KiCad PCB file and generates 3D models of a jig and a frame to securely hold the board and associated stencil. The tool itself is a Python script that uses OpenSCAD for all 3D geometry generation. From there, it’s a simple matter to throw the jig and frame models on a 3D printer and voilà!– perfectly-aligned stencils, every time.

      • Mobile Systems/Mobile Applications

    • Free, Libre, and Open Source Software

      • Upcoming release – coreboot 4.15

        The 4.15 release is planned for November 5th, 2021.

        Since 4.14 there have been more than 2597 new commits by more than 219 developers. Of these, over 73 contributed to coreboot for the first time.

        Welcome to the project!

        Thank you to all the developers who continue to make coreboot the great open source firmware project that it is.

      • Coreboot 4.15 Released With New System76 Laptops, More ASUS Motherboards – Phoronix

        Coreboot 4.15 was tagged today as the latest advertised version of this open-source firmware implementation for systems. With this new version are 21 additional laptops and motherboards supported.

        With Coreboot 4.15 comes 21 new motherboard ports, 14 of which are for supporting different System76 laptops. System76 recently upstreamed a number of their laptop ports with the likes of the Oryx Pro 7 / 8, Galago Pro 2 / 3, Gazelle 14, and others being part of the growing upstream collection of supported System76 products by Coreboot.

      • Free and Online ’2021 State of the Onion’ Slated for November 17 – FOSS Force

        This event is aimed squarely at users and advocates of the TOR (short for The Onion Router) Project, which produces a Firefox-based browser that directs users internet traffic through a free global network of relays to conceal users’ locations from network surveillance or third party traffic analysis. This not only allows users to travel the web unseen, but the ability to conduct unmonitored confidential communications.

        Until last year’s arrival of Covid-19, the State of the Onion wasn’t a stand alone event, but consisted of a compilation of updates from different Tor projects that was disseminated at various conferences during the year. When Covid hit in 2020, resulting in mass cancellation of in-person events, the TOR project presented the State of the Onion as a standalone live streaming event.

      • Google Makes Some Major Changes To Summer of Code 2022 – No Longer Limited To Students

        Over the past nearly two decades Google Summer of Code (GSoC) has been known as an initiative for getting students involved with open-source software development over the course of a summer while receiving a stipend/grant from Google. Beginning next year, GSoC will no longer be limited to students but open to all adults. Additionally, other changes are also coming.

        This year Google shortened the GSoC length and cut the stipend amount. They made those changes this year in the name of COVID-19 while for GSoC 2022 there are even more changes.

      • Web Browsers

        • Mozilla

          • How to download the latest version of Firefox

            I am taming Firefox, getting it to run nicely on my Acer Aspire 1 laptop. Over the last couple of days I posted to the blog about issues with Firefox. It even froze the desktop when attempted to do an update.

            I have managed to completely disable updating, will document how that is achieved later.

            A different update strategy: Each release of EasyOS will have the latest version of Firefox. No need for users to use the auto-update feature in Firefox. You can turn it on if you want, but no need. I am bringing out new releases of EasyOS quite frequently.

          • Firefox Nightly: These Weeks in Firefox: Issue 101
          • Personalize Firefox with colorways

            Starting with Firefox version 94, you will be able to personalize your browsing experience with 18 exciting new colorways themes. Each limited edition colorway presents its own individual bespoke characteristic. Find a color that better fits you with our palette.

      • SaaS/Back End/Databases

      • FSFE

        • Software Freedom in Europe 2021

          Cancelling of large events, limitations in meetings, and travel restrictions: none of this stopped the FSFE from advancing software freedom in 2021. From Router Freedom to new podcast episodes to co-organising the Legal and Policy devroom at FOSDEM, we keep empowering people to control technology.

          ‘Public Money? Public Code!’ online workshops were offered to volunteers, and an online Legal and Licensing Workshop for legal experts was organised. The FSFE assisted software projects to become REUSE compliant with our new initiative, REUSE Booster. We created a monitoring map to demonstrate the developments of Router Freedom rights in Europe. The FSFE presented suggestions and demands to support sustainable software. Meanwhile, a two-year court case initiated by FSFE supporter Luca Bonissi successfully came to an end, unequivocally recognising the right to a Windows licence refund. Overall, significant accomplishments for software freedom marked 2021, the year FSFE is celebrating its 20th anniversary.

      • FSF

        • Public Invited to Today’s Online Community Planning Day for International Day Against DRM 2021 – FOSS Force

          Today the Free Software Foundation is having a community planning day today for the upcoming International Day Against DRM 2021 event, and the public is invited to attend.

          The annual event, started in 2006 by FSF’s anti-DRM initiative Defective by Design, seeks to be “a counterpoint to the pro-DRM message broadcast by powerful media and software companies,” as well as to draw attention to the anti-consumer aspects of DRM. This year, the worldwide event is scheduled to take place on December 10, 2021.

      • Programming/Development

        • Intel Updates Alder Lake Tuning For GCC, Reaffirms No Official AVX-512 – Phoronix

          Posted last year for introduction in the GCC 11 stable compiler released earlier this year was the initial Alder Lake “alderlake” target. Now that Intel 12th Gen Core “Alder Lake” processors are officially out, Intel engineers have updated their Alder Lake tuning for the GNU Compiler Collection to yield more efficient performance with GCC 12 due out in Q2’2022.

    • Standards/Consortia

      • 10 Image File Formats That Didn’t Make It

        From PCX to TGA to VRML, considering a number of image formats that the world forgot. Not every image standard is going to last, no matter how pretty it is.

        Around this time 30 years ago, two separate working groups were putting the finishing touches on technical standards that would come to reshape the way people observed the world. One technical standard reshaped the way that people used an important piece of office equipment at the time: the fax machine. The other would basically reshape just about everything else, becoming the de facto way that high-quality images and low-quality memes alike are shared on the internet and in professional settings. They took two divergent paths, but they came from the same place: The world of compression standards. The average person has no idea what JBIG, the compression standard most fax machines use, is—but they’ve most assuredly heard about JPEG, which was first publicly released in 1992. The JPEG format is awesome and culture-defining, but this is Tedium, and I am of course more interested in the no-name formats of the world. Today’s Tedium discusses 10 image formats that time forgot. Hope you have the right conversion tool.

  • Leftovers

    • Science

      • Faster IPA Recycling For Your Resin Print Workflow | Hackaday

        If you’ve printed with photopolymer resins, you know that you need alcohol. Lots of alcohol. It makes sense that people would like to reuse the alcohol both to be environmentally responsible and to save a little money. The problem is that the alcohol eventually becomes so dirty that you have to do something. Given time, the polymer residue will settle to the bottom and you can easily pour off most of the clean liquid. You can also use filters with some success. But [Makers Mashup] had a different idea. Borrowing inspiration from water treatment plants, he found a chemical that will hasten the settling process. You can see a video of his process below.

        The experimentation started with fish tank clarifier, which is — apparently — mostly alum. Alum’s been used to treat wastewater for a long time. Even the ancient Romans used it for that purpose in the first century. Alum causes coagulation and flocculation so that particles in the water wind up sinking to the bottom.

    • Hardware

      • IBM PCjr From 1984 Keeps Today’s Clocks Running In Sync | Hackaday

        We’ve gotten used to the fact that the clocks on our internet-connected computers and smartphones are always telling the right time. Time servers, provided by a variety of government agencies as well as tech giants, provide them with the exact time and date thanks to accurate atomic clocks and the clever Network Time Protocol (NTP). But it wasn’t always like this: back in the 1990s when many computers didn’t have an internet connection, we had to adjust our computers’ clocks manually. Go back one more decade, and many PCs didn’t even have a battery-backed clock at all; you either set the proper date and time when the computer booted, or just lived with the fact that all new files were timestamped 01-01-1980.

        [Michael Brutman] decided to mix today’s world of network time synchronization with the old world of batteryless PCs, and built an SNTP Time Server that runs on a DOS PC. He tried it with two different hardware setups: a 40 MHz 386 PC from 1993, and the (in)famous IBM PCjr from 1984. A standard GPS module serves as an accurate time reference; these units can often be directly connected to old hardware thanks to the eternal RS-232 standard.

      • Most FDM Printers Are Also Filament Dryers (with A Little Help) | Hackaday

        If you’ve printed with an FDM printer, you probably know there are many interrelated factors to getting a good print. One key item is the dryness of the filament. When you first crack your plastic open, it should be dry. Most filament is packed in a sealed bag with desiccant in it. But if you have the filament out for a while, it soaks up moisture from the air and that causes lots of problems. [Design Prototype Test] has built and bought filament dryers before, but now he would like to point out that every FDM printer with a heated bed can act as a filament dryer. You can see the details in the video below.

      • A Breathtaking Circuit Sculpture Clock | Hackaday

        Here at Hackaday, we pride ourselves on bringing you the very freshest of hacks. But that doesn’t mean we catch all the good stuff the first time around, and occasionally we get a tip on an older project that really should have been covered the first time around. This remarkable circuit sculpture clock is a perfect example of one that almost got away.

        [Gislain Benoit] creation is called “The Tower” for good reason: it’s built inside what amounts to a giant glass test tube. Inverted and adorned with MDF discs, the Pyrex tube stands 5 feet (1.5 meters) tall, and is absolutely stuffed with electronic goodness. There are more than 2,100 discrete components mounted inside on a helical framework of carefully bent wires, forming a vertical sculpture that displays the time on three separate pairs of seven-segment displays. All the diode-transitor logic circuits are built from discrete components; nary a chip was used, and to spice things up, [Gislain] used LEDs in place of regular diodes everywhere in the circuit. The result is a constant light show as the clock goes through its paces.

    • Health/Nutrition/Agriculture

    • Integrity/Availability

      • Proprietary

        • Chrome OS virtual keyboard gaining dark theme, Unicode 14 emoji, Linux apps support

          Google is working on improvements to Chrome OS’s virtual keyboard, including a new dark theme, Unicode 14 emoji, and the ability to type while using Linux apps.

          For over a year now, Google has been working on a light/dark toggle for Chrome OS, which would take the current default theme and make it even darker, while also offering a massively redesigned light theme that we first showcased last September. Given how long it’s been in progress, it’s clear that Google wants to perfect all of the minor details of both sides of this light/dark theme toggle before launching it to everyone.

          To that end, the next piece of Chrome OS to get a dark theme is the virtual keyboard — the touchscreen keyboard that appears when you’re using a tablet or when your convertible Chromebook has the keyboard flipped away. According to a new flag being added to chrome://flags, the virtual keyboard will be getting a new theme that won’t be as blindingly white as its current iteration.

        • Microsoft Nov. Patch Tuesday Fixes Six Zero-Days, 55 Bugs [Ed: It's even worse than this because Microsoft admitted that it plugs some security holes without ever announcing the corresponding bugs at all]

          Experts urged users to prioritize patches for Microsoft Exchange and Excel, those favorite platforms so frequently targeted by cybercriminals and nation-state actors.

          Microsoft reported a total of 55 vulnerabilities, six of which are rated critical, with the remaining 49 being rated important. The flaws are found in Microsoft Windows and Windows Components, Azure, Azure RTOS, Azure Sphere, Microsoft Dynamics, Microsoft Edge (Chromium-based), Exchange Server, Microsoft Office and Office Components, Windows Hyper-V, Windows Defender, and Visual Studio.

        • Pun-free Cylance vulnerability, fixed | Pen Test Partners

          A heap overflow resulting in a denial of service, low privilege arbitrary file delete and an elevation of privilege from limited service accounts to SYSTEM.

          It is recommended that the software is either upgraded to the latest 158x stream or version 1578 at the time of writing. Further information on the advisory can be found here.

        • Security

          • Younger generations care little about cybersecurity – Help Net Security

            According to SailPoint, 59% of workers use corporate email for personal use, but younger generations are the biggest cybersecurity offender.

          • Intel and Canonical to secure containers software supply chain

            Today, cloud-native developers benefit from an abundance of resources to compose their applications. With container images, packaging all these resources in a standard, easy-to-reuse format is now easier than ever. Unfortunately, container images also make it easier to package unneeded, vulnerable software or even malicious resources.

            Knowing which resources to use and what is a safe base layer when starting a cloud-native project is challenging. Extreme caution should go into picking these dependencies deliberately. Organisations need to provide their developers with “sane defaults”, trusted sources to underpin and support applications.

          • Security updates for Wednesday

            Security updates have been issued by Debian (openjdk-8 and samba), Fedora (community-mysql, firefox, and vim), openSUSE (binutils, kernel, and tinyxml), Red Hat (annobin, autotrace, babel, bind, binutils, bluez, compat-exiv2-026, container-tools:2.0, container-tools:3.0, container-tools:rhel8, cups, curl, dnf, dnsmasq, edk2, exiv2, file, file-roller, firefox, gcc, gcc-toolset-10-annobin, gcc-toolset-10-binutils, gcc-toolset-10-gcc, gcc-toolset-11-annobin, gcc-toolset-11-binutils, gcc-toolset-11-gcc, glib2, glibc, GNOME, gnutls and nettle, go-toolset:rhel8, grafana, graphviz, grilo, httpd:2.4, jasper, java-17-openjdk, json-c, kernel, kernel-rt, kexec-tools, kpatch-patch, lasso, libgcrypt, libjpeg-turbo, libsepol, libsolv, libssh, libtiff, libwebp, libX11, linuxptp, lua, mingw-glib2, mutt, ncurses, NetworkManager, openjpeg2, openssh, openssl, pcre, pcs, php:7.4, python-jinja2, python-lxml, python-pillow, python-pip, python-psutil, python27:2.7, python3, python36:3.6, python38:3.8 and python38-devel:3.8, python39:3.9 and python39-devel:3.9, qt5, resource-agents, rpm, rust-toolset:rhel8, spamassassin, sqlite, squid:4, tcpdump, tpm2-tools, vim, virt:rhel and virt-devel:rhel, and zziplib), and SUSE (binutils and kernel).

          • WordPress 5.8.2 Security and Maintenance Release

            WordPress 5.8.2 is now available!

            This security and maintenance release features 2 bug fixes in addition to 1 security fix. Because this is a security release, it is recommended that you update your sites immediately. All versions since WordPress 5.2 have also been updated.

            WordPress 5.8.2 is a small focus security and maintenance release. The next major release will be version 5.9.

          • Linux patching — the why and the how | TahawulTech.com

            Since the region’s governments initiated their economic-diversification initiatives, Middle East enterprises have been digitising at a robust pace, putting them squarely in the crosshairs of cybercriminals. But when COVID-19 struck, and businesses and governments flocked to the cloud for its promise of continuity, things got worse. In the UAE, for example, the nation’s top cybersecurity official revealed a 250% increase in attacks from 2019 to 2020. This is what bad actors do. They take advantage of circumstances, any circumstances, to pounce.

            And what a circumstance the pandemic turned out to be for digital malefactors. To settle quickly into their new homes in the cloud, regional organisations had to accept new, untested ecosystems. Multiple network domains that fell outside the control of IT, coupled with a mushrooming of Shadow IT, dumped alien environments on the heads of thousands of under-resourced tech teams.

          • Rust-proofing the internet with ISRG’s Prossimo

            You know the non-profit Internet Security Research Group (ISRG) for its Let’s Encrypt certificate authority, the most popular way of securing websites with TLS certificates. The group wants to do more. Its newest project, Prossimo, seeks to make many basic internet programs and protocols memory-safe by rewriting them in Rust.

          • Privacy/Surveillance

            • NFC Performance: It’s All In The Antenna | Hackaday [Ed: 'Chipping' people through cards you compel them to carry]

              NFC tags are a frequent target for experimentation, whether simply by using an app on a mobile phone to interrogate or write to tags, by incorporating them in projects by means of an off-the-shelf module, or by designing a project using them from scratch. Yet they’re not always easy to get right, and can often give disappointing results. This article will attempt to demystify what is probably the most likely avenue for an NFC project to have poor performance, the pickup coil antenna in the reader itself.

            • Civil society counters Big Tech in Massachusetts privacy debate – Access Now

              Today, Access Now and a coalition of civil society organizations are correcting the record regarding the Massachusetts Information Privacy Act (MIPA) — an important state initiative to protect people’s fundamental right to privacy and to hold Big Tech accountable, which is under fire from corporate lobbyists.

              “Massachusetts can set a standard by passing one of the strongest privacy frameworks in the country, and standing up to Big Tech,” said Willmary Escoto, U.S. Policy Analyst at Access Now. “As usual, the industry is attempting to confuse, delay, and stop any bill that would lead to real privacy protections. Our letter provides further evidence that industry’s arguments are hollow. Massachusetts should move full steam ahead with MIPA to help protect Massachusettsans’ privacy, and to influence a federal law.”

    • Defence/Aggression

    • Environment

    • Civil Rights/Policing

      • Portugal makes it illegal for your boss to text you after work in ‘game changer’ remote work law | Euronews

        Remote workers in Portugal could see a healthier work-life balance under new labour laws approved by the country’s parliament.

        The new rules approved on Friday are a response to the explosion of home working as a result of the COVID-19 pandemic, Portugal’s ruling Socialist Party said.

        Under the new rules, employers could face penalties for contacting workers outside of office hours. Companies will also have to help pay for expenses incurred by remote working, such as higher electricity and internet bills.

    • Internet Policy/Net Neutrality

      • Libya’s cybercrime law: A threat to freedom of expression

        Access Now and a coalition of civil society organizations call on the Libyan authorities to immediately rescind the new cybercrime law adopted by the Libyan House of Representatives on October 26, 2021.

        The new bill, which was leaked on social media by a number of MPs and experts, will significantly limit freedom of expression online and grant Libyan authorities the liberty to target and suppress human rights activists and defenders, and restrict press freedom. The cybercrime law will also hand Libyan authorities the power to monitor and censor content published on social media “and any other technical platform”, and to block websites without judicial orders.

        “The new cybercrime law is repressive and constitutes a real danger to fundamental rights and freedoms in Libya”, said Marwa Fatafta, MENA Policy Manager at Access Now. “Cybercrime cannot be combated by muzzling, blocking, and surveilling speech online based on broad and ambiguous definitions. We call on the Libyan authorities to rescind this law.”

      • Human rights organizations call on Libyan authorities to rescind the new cybercrime law – Access Now

        The undersigned organizations call upon Libyan authorities to rescind the cybercrime law recently adopted by the Libyan House of Representatives. The law would severely restrict freedom of expression, curtail press freedom, and legalize mass surveillance of speech online. Additionally, the law allows for warrantless blocking of websites and content.

        During the plenary session held on October 26, 2021, the Libyan House of Representatives ratified the Anti-Cybercrime Law. The vote comes at a pivotal moment for Libya with the presidential elections scheduled for December 24, 2021. In order to ensure these elections are free, fair, and transparent, it is imperative to guarantee freedom of opinion and expression as well as freedom of press, both offline and online.

        The draft bill was quickly passed, only one day after it was added to the parliament’s agenda and without public consultation with Libyan civil society, human rights defenders, or experts. This has prompted the undersigned organizations to examine the version available on social media, which was leaked by Members of Parliament and experts in the digital field.

    • Monopolies

      • Copyrights

        • Reborn Into a New Form (1849) – The Public Domain Review

          A second life? To live again? Fyodor Dostoevsky, famously, survived the uncanny pantomime of his own execution, and found himself, on the other side, “reborn into a new form”. These were Dostoevsky’s words, written to his brother in the wake of ordeal. Here below, those very words are themselves given a kind of second life: in this excerpt from Dostoevsky in Love: An Intimate Life (published earlier this year), Alex Christofi stitches primary source excerpts into a “reconstructed memoir” — the memoir that Dostoevsky himself never wrote. The dream of literature made entirely of quotations reaches back across more than a century of cut-ups, remixes, centos, and collages: from Octavian Esanu’s brilliant JFL, What Does “Why” Mean? (2002), through Guy Debord’s Mémoires (1958), and over the mountain of Walter Benjamin’s landmark “Arcades” project (1927–1940). In 1990, Richard Price’s pioneering history of slave rebellion in Suriname, Alabi’s World (1990), used four different typefaces, one for each of the “voices” being woven into a single work. Here, in this re-collected episode, Christofi, too, is weaving: weaving Dostoevsky’s autobiographical fiction together with his fantastic life. — D. Graham Burnett, Series Editor

        • Laughter in the Time of Cholera – The Public Domain Review

          Political instability, popular unrest, and an impending pandemic? Welcome to France in the early 1830s. Vlad Solomon explores what made Parisiens laugh in a moment of crisis through the prism of a vaudeville play.

Firefox ESR 91 Creating Massive Headache for Debian 11 (GNU/Linux)

Posted in Free/Libre Software at 5:19 pm by Guest Editorial Team

Guest post by Ryan, reprinted with permission from the original


ebian and Mozilla go way back, with endless troubles created by an incompetent upstream for Firefox, which is getting worse by the hour.

Debian tries to produce a stable OS that doesn’t change very much (although you can use backports and Flatpaks to strategically update packages), and this is very important for people who are happy with the way their computer works and don’t want to be on a bug treadmill, like Fedora.

However, you may have noticed that Firefox 78 ESR hasn’t been supported upstream now for over a week and has missed the latest round of security updates from Mozilla, and that Firefox 91.3 ESR is still stuck in the pipes, being packaged only in Experimental and Debian Unstable.

When I went to look at the reasons why, it appears that there are new problems related to Rust, build failures on various supported CPU architectures, and it also demands a newer version of Mesa3d than Debian 11 has, even though the entire OS is barely over a month old (and will be supported for five years).

Mozilla decided to migrate away from GLX and make EGL mandatory, _and_ blacklist the version of Mesa (20.3.5) which ships with Debian 11, demanding at least Mesa 21.

Mesa 21 would otherwise be fine as a Backport package, but now Debian has to choose between backporting a critical component of the OS directly into “Stable” updates (the OpenGL/Vulkan stack and Direct Rendering Interface drivers and libdrm), as well as newer Nvidia proprietary drivers in non-Free for the people who haven’t disembarked that clown car yet in favor of Intel and AMD cards that are truly supported on GNU/Linux, or forcing Firefox ESR 91 to use GLX again by overriding a default preference, which kicks the can down the road 1 year and creates the same problem again later, at which time Mozilla may have removed the GLX code anyway.

And reverting to GLX makes it impossible for users to enable Wayland and WebRender Compositing without knowing that they also need to set Firefox back to EGL and bring in a Backported Mesa package when one arrives.

In the mean time, there are 6 CVEs that are unpatched in Firefox 78.15, and one of those CVE numbers contains bugs (the details of which are still hidden by Mozilla) corresponding to four memory safety issues (which are often crash with potential arbitrary code execution). So really, at least 10 unpatched security issues, and maybe more (because not all patched issues get a CVE even though they may have security implications).

However Debian solves this problem will set more bad precedents and probably the least incorrect way to solve for it, assuming it’s even worth anything to keep Mozilla’s lawyers happy and use the official “branding”, which Mozilla is pissing down the drain these days anyway, is to bring in newer Mesa builds, which undermines the “feature freeze” that keeps Debian Stable running so well.

It’s definitely well past time to “IceWeasel” Firefox again and do whatever they need to do to keep it running securely without compromising the rest of the operating system.

What It’s Like to Work With Eight Monitors on the Cheap (Less Than $1,000 in Total)

Posted in GNU/Linux, Hardware at 3:43 pm by Dr. Roy Schestowitz

Video download link | md5sum 775441e5399d60277dfdd84f18872840

Summary: At the start of November I shuffled things around as my audio system (since 2013) had died; today I show the way I keep an eye on things while researching and producing articles/videos/short posts (it’s a very personal preference, which I’ve optimised for my needs over time)

The workstation I use is actually an aggregation of several low-cost ones; the cheapest one cost 35 pounds (brand new) and the other one, which is also ARM-based, cost 149 pounds more than 4 years ago in Argos; the screens are cheap, either second hand or low-priced as new, which brings the sum total to around 800 pounds (5 computers, 8 screens). When one device breaks down it’s easier to replace or repair with no downtime, just a shuffle on the desk — a routine I do every 1-3 months. 80% of the devices are laptops with batteries in them, so electric outages have no major impact except on the router and external screens. No need for UPS, which in its own right can be more expensive than a simple laptop.

“As it stands, KDE Plasma simply has the most features.”The set-up I have is very unusual (when I was a teenager I moved to dual-head, which back then was quite unusual in its own right). I don’t know anyone else with anything remotely similar to this current configuration, so I get asked questions about it. It’s hard to explain without showing a bunch of stuff, so I’ve been wanting to record/show this for a while, even if it’s done quite crudely given the practical limitations. I try to avoid proprietary things, especially anything with DRM. All the machines run only GNU/Linux, typically with KDE although the machines shown in the video also run GNOME, XFCE4, and LXDE (the machine behind me). As it stands, KDE Plasma simply has the most features.

The video shows the 7 screens before me (6 in front and one to the side of me). The largest monitor is behind me and not shown in this video, albeit in videos where the camera faces the other direction — and we make such videos every day — that monitor and the SBC it is connected to are clearly visible. It’s the eighth monitor, which carries out a bunch of different tasks.

“The screen recording software (be it either Free or proprietary) cannot feasibly work seamlessly across multiple, separate machines…”This video was done without preparation and it was very difficult to make, partly owing to the lack of a tripod or software-defined stablisers (some devices have them; even a decade and a half ago). The screen recording software (be it either Free or proprietary) cannot feasibly work seamlessly across multiple, separate machines (assuming they’re connected over Synergy/Barrier, as opposed to some other fashion), so an external camera is used instead. I don’t have a mobile phone, so this is a standard Linux driver with simple external camera; the quality of the picture is poor, but it doesn’t matter all that much when the key point is to show and explain things while personal information remains mostly blurred/obscured (for privacy’s sake).

Upon checking the first few minutes of the recording I noticed an issue with my hand covering my mouth for a bit, or sort of standing in the way between the microphone and all the other things, which means that the sound (noise-cancelled vocal audio) has a dual sort of ‘mode’ (less audible when the hand holding up the portable webcam is near the face). Maybe with a little preparation it could be done more properly. Despite all these limitations, I think I did manage to cover or at least mention almost all the activities, except for the machine behind me.

If You Don’t Control Your PC, Military-Connected Companies Control Your PC and It’s Not Even (Truly) Yours

Posted in GNU/Linux, Hardware, HP, Microsoft at 12:42 pm by Dr. Roy Schestowitz

Video download link | md5sum 418da0da8da82a54ffc0850be4ed4221

Summary: Many people wrongly assume that when they buy a PC and pay for it, that immediately means they own and control that PC; in reality, however, companies with connections to the American government (controlled by imperialistic ambitions) typically control every aspect of the operating system, so it needs to be replaced

THE notion of GNU/Linux “preloaded” or bundled is very important because many people do not know how to install an operating system, then make it compatible with all their hardware (printer, camera etc.) and it’s a lot harder with Microsoft Windows than with GNU/Linux. Many people wrongly assume that installing Windows is easy because the OEM already did all the work (and likely provided recovery media, akin to “factory reset”), whereas GNU/Linux had an uphill battle, so it needed to make installation a lot easier and more consistent/predictable than Windows. It’s widely known by now that Linux has vastly better and more extensive hardware support than Windows (this has been the case for over a decade), so why don’t more OEMs offer GNU/Linux by default? Is there something inherently wrong (technical) or sinister about it? Or is Microsoft still bribing OEMs (we’ve documented extensive evidence of it over the years)?

“It’s widely known by now that Linux has vastly better and more extensive hardware support than Windows (this has been the case for over a decade), so why don’t more OEMs offer GNU/Linux by default?”The video above alludes to something we don’t wish to link to (giving it attention it does not deserve), but instead it speaks of the underlying issues. In an age of back doors everywhere, plus military-connected subsidies (“contracts”) for large technology firms, we need to recognise that the available technology (readily available in the market) isn’t made to work for computer users but against them, at least some of the time. So we need to respond accordingly; it’s not something “revolutionary” or “activist” wanting to simply control one’s machine (which one paid for).

Links x/11/2021: Release of Samba 4.15.2, 4.14.10, 4.13.14; TDE Reviewed

Posted in News Roundup, Site News at 7:41 am by Dr. Roy Schestowitz

  • GNU/Linux

    • Audiocasts/Shows

      • mintCast 373.5 – App-Get Install

        1:39 Linux Innards
        28:54 Vibrations from the Ether
        35:16 Check This Out
        41:57 Announcements & Outro

        In our Innards section, we discuss the applications that we use most often

        And finally, the feedback and a couple of suggestions

      • Command Line Love | LINUX Unplugged 431

        Is the true path to mastering Linux fully embracing the command line? Why it’s time to change our mindset about the terminal.

    • Applications

      • Best Free and Open Source Alternatives to Microsoft Publisher

        Microsoft’s stance for decades was that community creation and sharing of communal code (later to be known as free and open source software) represented a direct attack on their business. Their battle with Linux stretches back many years. Back in 2001, former Microsoft CEO Steve Ballmer famously tarnished Linux “a cancer that attaches itself in an intellectual property sense to everything it touches”. Microsoft also initiated its “Get the Facts” marketing campaign from mid-2003, which specifically criticized Linux server usage, total cost of ownership, security, indemnification and reliability. The campaign was widely criticized for spreading misinformation.

      • Samba 4.15.2, 4.14.10, 4.13.14 security releases available

        There is a set of new Samba releases out there. They fix a long and intimidating list of security issues and seem worth upgrading to for any but the most protected of Samba servers.

        There’s sadly a regression that “allow trusted domains = no” prevents winbindd
        from starting, we’ll try to provide a follow up fix as soon as possible.

      • How Knative unleashes the power of serverless | Opensource.com

        Knative is an open source project based on the Kubernetes platform for building, deploying, and managing serverless workloads that run in the cloud, on-premises, or in a third-party data center. Google originally started it with contributions from more than 50 companies.

      • Transfer files between your phone and Linux with this open source tool | Opensource.com

        Are you looking for a way to quickly copy files from your iPhone or Android mobile device to your Linux computer or from your Linux computer to your devices? I recently discovered an open source application that’s easy to install and makes transferring files as simple as a QR code.

        The qrcp project provides a command that generates a QR code in your terminal that allows you to send or receive files to your computer over the network.

      • Must Read: 10 Cool Command Line Apps for Ubuntu

        Plus — as you’re about to discover — they can be a lot more fun to use too.

        Whether you want to search the web, stream music, or subtweet your secret crush: you can do it all from the comfort of the command line and the frame of your fave terminal emulator.

        In this post I run-through 10 of my favourite terminal apps. These command line tools aren’t the only ones available for each respective task, but they are are all a) easy to use, and b) easy to install.

        So scroll on to soak in a stellar assortment of the very best Linux terminal apps out there — and don’t forget to drop your own favourite down in the comments!

    • Instructionals/Technical

      • How to Install LAMP Stack with PhpMyAdmin in Arch Linux

        Technically, the LAMP stack consists of Linux, Apache, MySQL, and PHP modules. A LAMP stack environment is ideal for web software developers that want to experience how their web application(s) is likely to behave on a server-hosted/production environment.

        It is the perfect testing/debugging platform for your web app until you are confident enough to decouple it and host it on a dedicated server.

      • How to Install Cockpit Web Console on Debian 11 Bullseye – Linux Shout

        Install Cockpit Console on Debian 11 Bullseye or 10 Buster server, a Web graphical interface to control Linux server and run docker Image containers using Podman remotely using the browser.

        The cockpit is an open-source application light in weight and easy to install. In most popular Linux, the packages to install this application is available via the default repository of the operating system. It provides the real-time stats of RAM, processor, and disk directly on its web interface. Apart from this, we can manage services, accounts, users, storage, software, and also there is a Terminal app that lets the users issue all commands with root rights on the remote server.

      • Making an old USB printer support Apple AirPrint using a Raspberry Pi

        There are longer tutorials on how to connect a USB printer to a Raspberry Pi and make it accessible via AirPrint but here’s the minimal one that’s just a list of commands and simple instructions.

      • How to install the Olive Video Editor on Elementary OS 6.0 – Invidious

        In this video, we are looking at how to install the Olive Video Editor on Elementary OS 6.0.

      • How to Open Ports in Ubuntu / Debian – Unixcop the Unix / Linux the admins deams

        By default, the Linux firewall is IPTables. Although it is a very efficient and flexible application, the truth is that it is not easy to manage. Therefore, the community has created equally effective but easier to use alternatives such as UFW.

        In short, UFW stands for Uncomplicated Firewall and is a kind of Front-end for IPTables but dedicated to Ubuntu / Debian. With it, you can set up rules and open ports quickly and easily on the system.

        When you turn UFW on, it uses a default set of rules (profile) that should be fine for the average home user. In short, all ‘incoming’ is being denied, with some exceptions to make things easier for home users. However, all these settings can be changed and adapted to your needs.

        One of the basic and necessary operations we can do with UFW is to open ports. This is necessary when we want an application or service to be able to use our network, either for incoming or outgoing connections.

        So, let’s show you how to open ports in Ubuntu / Debian using UFW.

      • Unable to search for images in Cockpit Podman Container

        In case after installing Podman Container service in Cockpit you are not able to search container images from Docker or other libraries, then here is the solution to resolve this problem.

        We faced this issue after installing Podman Container on Debian 11 Bullseye, well even if you are using any other Linux operating system to run Cockpit and facing the same problem, still the solution given here will be the same.

        Podman Container service is similar to Docker even the command line but daemon less. It is easy to find, run, build, share and deploy applications using the Open Containers Initiative on it.

      • How To Start With WordPress CMS?

        WordPress is undoubtedly the most used and trusted content management system across the world. It’s famous due to its easy integration and user-friendly interface. Using a content management system for your website allows you to edit and publish the content with zero coding knowledge. You don’t need to enter those heading tags for formatting the content, just click on the button, and you are done. You also get access to several free plugins that can help you in formatting your content more efficiently.

      • How to Install and Run Lynis on Ubuntu Linux

        Lynis is an open-source and trusted security auditing tool designed for Linux, macOS, and UNIX derivatives such as FreeBSD and OpenBSD. It is used for a number of purposes including security auditing, vulnerability detection, and compliance testing. The aim of leveraging an auditing tool such as Lynis is to probe and resolve any underlying security vulnerabilities, and configuration errors such as weak user account passwords or inappropriate file permissions that might compromise the system in face of an attack.

      • How Do I Find the Maximum Value of a Column in PostgreSQL?

        PostgreSQL allows you to perform many functions including the built-in data types. You can use any function or operator according to what you need. The most basic used PostgreSQL functions are COUNT, MAX, MIN, AVG, SUM, ARRAY, NUMERIC and, STRING. You can use these functions suitably for retrieving the data from a created table. In this article, we will be discussing finding the maximum value of a column from a table. MAX function is a built-in function in PostgreSQL which returns the maximum value from a given set of values.

      • How to Dual Boot Arch Linux Windows 10

        rch Linux provides a compact platform to use a low-end operating system easily. On the other side, Windows offers impressive features in a great graphical interface. So if you are a fan of both operating systems and want to use both of them, then read this article completely.

        This article explains how to dual boot to install Arch Linux and Windows 10 simultaneously on the same system, enabling both to run on the same machine.

        It is a question of why you should install Arch Linux with Windows. Arch Linux is one of the most straightforward operating systems of Linux. Also, you can customize it according to your needs, and it is very easy to do. Therefore, it is very convenient to have Arch and Windows as operating systems since Windows can be used for gaming and Linux for coding.

      • How to Customize Arch Linux After Installing It

        Installing any system requires users to know how to use it and what functions should be performed within it to work smoothly. The same holds true for Arch Linux. Many Linux users are familiar with Arch Linux, as it is a variant of Linux that is very popular. This article will cover how to install Arch Linux as well as how to use it.

        After system installation in Arch Linux, a very good feature is seen that it works on the principle of (DIY) under which Arch Linux is installed with only a few things. All the other things have to be done according to the user. Which is the right quality with which the user can modify his system according to his own.

        What to do after installing Arch Linux? It just gives a black screen that has to proceed on its own. Although Arch Linux has many things to change or use according to your own, only a few of them are important, or because of this change, it becomes easier to use. Also, due to these changes, we can use it smoothly.

      • How to Install Arch Linux from USB

        Arch Linux emphasizes the specific modifications to the minimum distribution, known as the “keep it simple” principle. As a result, Arch Linux is very popular among Linux users, as it prevents the installation of new versions and only installs them when a new update is available. So if you want to install Arch Linux, then don’t worry because it is a very simple process. This article will give you a brief on the method to install Arch Linux from USB.

        Arch Linux’s special feature is that it requires a minimum system, which is why it is so popular. Judd Wynette introduced Arch Linux in 2002 with an update to the 64 bit x86 (2006) that is still in use today.

        Pacman is a tool used to remove software packages, update any software, and update Arch Linux. Before installing Arch Linux, the main thing to understand is that to install x86_64. First, you need 512 MB RAM, 10 GB free disk space, internet, and a blank DVD or flash drive for installation burn, which is the first step towards installation.

      • How Do I Duplicate a Page in WordPress?

        This tutorial explains how to duplicate or clone WordPress pages and posts, both manually and with the help of plugins.

        WordPress supports different ways to duplicate or clone pages. The manual method to duplicate a page or post in WordPress consists of page/post code copy paste. The alternative method consists of a plugin installation. Like always, WordPress offers different plugin alternatives for this task.

        This tutorial shows you different simple ways any WordPress level administrator can learn.

      • Can You Do Loops in PostgreSQL?

        Whenever we talk about database management systems, PostgreSQL always comes to mind. Data in PostgreSQL can be stored in many ways in the form of tables. To iterate through the stored data, we need a specific methodology that is looping. We use many looping statements and conditional statements to access data and apply different operations to it. This guide will help you in understanding the looping process in a PostgreSQL management system.

      • Bootstrap vs React.js

        If you are a web developer then you must have already heard about Bootstrap and React.js. However, if you are new to this world and want to become a front-end developer whose job is to design the visual features of a web page or web application, then Bootstrap and React.js will be very handy web technologies to learn.

        Front-end frameworks are very difficult to choose and I myself have been confused about which to choose. So in this post, we will discuss both Bootstrap and ReactJS, their noteworthy features, benefits, and drawbacks.

      • How to Install MySql Workbench on Arch Linux

        The MySql workbench for Linux includes data modeling, development, SQL settings administration tools, user administration, backup/restore, and other functions. The ease of use and all these features make it a great choice for managing MySql databases. On Linux, you can install MySql Workbench in a variety of methods, including through official packages. Installing Oracle’s official repositories, utilizing the operating system’s default repositories, or compiling the packages from the source are all options. So let’s have a brief look at the method to install MySQL workbench on Arch Linux.

      • How to Install GCC for Arch Linux

        GCC translates to GNU Compiler Collections, and it is primarily used to compile the C and C++ programming languages. In addition, it also compiles Objective C and Objective C++ programs. The GCC is a set of open-source compilers and libraries.

        On Linux, open the terminal to install GCC. The terminal receives user input in the form of commands and shows the results on the screen. As a result, we’ll need to run a few instructions to install GCC.

      • How to Install an Apache web Server on Arch Linux

        In general, a web server hosts web content and answers requests for it from web browsers like Internet Explorer, Google Chrome, and Firefox. The apache web server, IIS web server, Nginx web server, and LiteSpeed web server are all examples of web servers. Apache is an open-source and free platform that is used by more than half of the world’s web servers.

      • How to Install AWS CLI On Arch Linux

        Using AWS CLI, or Amazon Web Services Command-Line Interface, you can manage your AWS services. This tool allows users to control different AWS services via the command line. It’s a great tool for managing everything in AWS.

        The utility only requires Python to execute, so that’s the only requirement. In this tutorial, you will learn about how to install AWS CLI on Arch Linux step by step. You may quickly create shell scripts to control your resources on the AWS cloud using AWS CLI.

        The Bundled Installer approach is compatible with any Linux distribution; the only prerequisite is Python 2 version 2.6.5 or Python 3 version 3.3.

      • How to Install Flask for Arch Linux

        Flask-Migrate is a Flask addon that manages SQLAlchemy database migrations for Alembic-based Flask apps. The Flask-Script extension or flask command-line interface is used to access the database operations.

        Database abstraction layers, form validation, and other components that utilize third-party libraries are not available.

      • How to Install Debian 11 in Virtual Box

        Debian is a Unix-like operating system that comes in handy in devices that handle heavy tasks. An example can be servers responding to millions of requests. Installing an Operating System is similar to accessing a virtual machine over the cloud, except that this operating system will take space in your physical disk. We will first go through the introduction and features of Debian 11 and then see the steps to install this Operating System in VirtualBox completely. Let’s get started!

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • TDE: A Museum Piece or Modern Desktop Alternative?

          Compared to Gnome 2, KDE 3 has fared poorly since it was superseded. Gnome 2 was ported to Linux Mint and became MATE, which has always balanced tradition and modernization. In 2020, the LinuxQuestions poll listed MATE as the choice of 8.5 percent of users, and I suspect that a much higher percentage would list it as their second choice (the desktop used when your main one fails). By contrast, Trinity claimed only a 1.3 percent share.

          So why bother with such a minority choice? To start with, Trinity scored the same as Ubuntu’s defunct Unity, while elementary OS’s Pantheon desktop, which receives frequent coverage, received no votes at all. The point is not user share, but freedom of choice, a key value of free software. Trinity’s success lies in having fought the odds to provide a small group of users what it wants and in extending the choices for everyone.

    • Distributions

      • PCLinuxOS/Mageia/Mandriva/OpenMandriva Family

      • IBM/Red Hat/Fedora

        • Fedora Linux 35 is now available at Vexxhost

          I love using Fedora Linux on desktops and servers. Fedora Linux is also a great platform for cloud applications. Starting today, you can deploy Fedora Linux 35 at Vexxhost!

          Vexxhost offers an open-source cloud with OpenStack under the hood. You can deploy Fedora Linux on cloud infrastructure in Canada, the United States, and the Netherlands. They also deliver many other OpenStack-based services to provide load balancers, block storage, and object storage.

        • Haven’t switched from CentOS 8 yet? Here are your options – TechCrunch

          Red Hat promised that it would continue to support each CentOS release for about a decade. However, the company changed its mind and suddenly cut support for the latest CentOS release.

        • CIO role: How to move from gatekeeper to advisor

          he CIO role has been around for more than 40 years, and in that time, it has undergone various shifts to become what it is today. The growth of the internet, the switch to digital, the move to cloud, and the shift to remote and hybrid workforces have all challenged corporate leadership, and especially CIOs, to redefine how they align their technology and teams with emerging tech trends and changes in corporate priorities.

          During the pandemic, we’ve seen countless businesses, many of which had been relying on outdated technology with underfunded IT departments, invest in technology at breakneck speed in order to meet the challenges posed by the new work environment. Too often, however, these investments were made directly by departments, with a lack of oversight and control from central IT. It is now common to find staff members managing technology that the IT team may not even be aware of.

        • How to hire change-ready people: 8 signs

          IT leaders are all too familiar with the challenges of change resistance. The most skilled CIOs know what steps to take to understand and address fear, uncertainty, and doubt concerning IT-enabled change.

          As we settle into an era in which continual – and often, transformational – change is the rule rather than the exception, IT leaders are naturally eager to shift their focus to change readiness. “Change always makes people feel uncomfortable, but the employees that seem to thrive with frequent change tend to be open minded,” says Dennis Theodorou, managing director with executive search firm JMJ Phillip. “[They are] also constantly thinking about how to make the business better. These employees also tend to pivot quickly without much delay or dwelling.”

          This is especially true when it comes to the IT organization itself. As the technology function not only leads ongoing technology-enabled change but experiences ongoing transformation itself, the value of having change-ready folks on the team is clear. “Being principled, practiced, and prepared for change and innovation can accelerate one’s ability to consistently and reliably contribute in fast-paced and cutting-edge industries,” says Rick Simmons, co-author of Unleashed: Harnessing the Power of Liminal Space and CEO of the Telos Institute, which helps leaders optimize their business strategy.

      • Debian Family

        • New Raspberry Pi OS Includes Hidden Speed Boost and 64-Bit Option

          The latest Raspberry Pi OS has today been announced, and it sees a number of changes under-the-hood, and a few that will be noticeable by end users. Chiefly, a new window manager, “mutter” which requires Raspberry Pi models with 2GB of RAM of greater. In a hidden bonus, YouTuber Jeff Geerling has confirmed that some Raspberry Pi 4 owners may see a speed boost built-in to the latest release and a possible new 64-bit release.

          For its “Bullseye” release we mainly get a number of behind the scenes updates, including a speed boost for those of us lucky to have new BCM2711 SoC with a C0T model number. these chips appear on newer Raspberry Pi 4, Compute Module 4 and Pi 400 boards and it appears that for the Pi 4 and CM4 you get an extra 300 MHz performance boost, 1.8 GHz, vs the stock 1.5 GHz. Owners of older Raspberry Pi 4 with B0T model numbers can still manually overclock their Pi.

          The new Raspberry Pi OS is still based upon a 32-bit release, but it appears that there is also a 64-bit release, lurking in the shadows and spotted by Geerling. Whether this is still a beta or ready for release remains uncertain.

    • Devices/Embedded

    • Free, Libre, and Open Source Software

      • Events

        • You’re Invited: State of the Onion 2021

          Last year, we held our first 100% virtual State of the Onion, a compilation of updates from the Tor Project’s different teams discussing highlights of their work during the year and what we are excited about in the upcoming year. Our 2020 State of the Onion was our first time doing livestream iteration, and it was not only a great success because it allowed us to reach thousands of people all around the world, but also because it allowed for more projects from our community to participate, giving an opportunity for them to also share their updates.

          We are happy to announce that we will be hosting our 2021 State of the Onion livestream on November 17 from 17:00 – 19:00 UTC.

      • Web Browsers

        • Mozilla

          • Firefox is now available on the Microsoft Store and that’s a pretty big deal

            According to Mozilla, the change came as a result of Microsoft changing its policies on allowing third-party browser support. “Until recently, Microsoft’s store policies required that all web browsers use the engine that Microsoft had built into their platform, which meant we were unable to ship the Firefox you know and love in the Windows Store,” Mozilla said in a blog post.

      • CMS

        • [Old] First in Germany again

          Over a total of 20 weeks from spring to late summer 2021, readers of the individual insider portals were asked to vote for their favorite in each category. IT Awards got votes from over 60 000 readers this year and Nextcloud came out on top , chosen by the largest community of IT professionals. We’re very proud of this and we’d like to thank everyone who made this possible, that is, all of you! Especially all of you who voted, but also everyone else who helps spread the word or improve Nextcloud directly with code, documentation or helping other users on our forums. Every bit makes a difference!

      • FSF

        • Licensing/Legal

          • [Old] The Software Industry IS STILL the Problem: The time is (also) way overdue for IT professional liability

            If any science fiction author, famous or obscure, had submitted a story where the plot was “modern IT is a bunch of crap that organized crime exploits for extortion,” it would have gotten nowhere, because (A) that is just not credible, and (B) yawn!

            And yet, here we are.

            The good news is that the ransomware attack on Colonial Pipeline in May 2021 probably marks the beginning of the end. Comforting as that might sound, it tells us very little about how that ending will turn out.

            The first to react were the insurance companies. Some of them dropped the product, leaving their customers to their own devices; others were busy trying to come up with requirements and standards that would apply to their customers’ claims for coverage.

          • [Old] The Software Industry IS the Problem: The time has come for software liability laws.

            Some say the only two products not covered by product liability today are religion and software. For software that has to end; otherwise, we will never get a handle on the security madness unfolding before our eyes almost daily in increasingly dramatic headlines. The question is how to introduce product liability, because just imposing it would instantly shut down any and all software houses with just a hint of a risk management function on their organizational charts.

          • The GNU GPL violations aren’t the only reason not to buy a Vizio TV. They barely support their products and they spy.

            They had to revise the firmware in mine as part of a lawsuit settlement.

            The one where it spied on your TV watching, including sending them which networks you watched with a TV antenna.

            Whether they violate the GPL or not, and whether the GPL is a contract are very important issues that should be pressed in court, because we have nothing to lose and everything to gain vs. developers who won’t enforce their own licenses (mostly “Linux” kernel people).

            But like other devices that want to connect to the internet and call themselves “Smart”, it’s usually a bad idea to give the device what it wants.

  • Leftovers

    • On Writing History From Below

      Marcus Rediker: The oldest influence on my decision to write “history from below” was my grandfather, Fred Robertson, a Kentucky coal miner, and master storyteller. Unlike Harvey, who went to an archive of books, I had an archive of stories. My grandfather told me extraordinary stories, many of them just about working-class people – their triumphs, victories, defeats, their pain, and their glories. He was a brilliant storyteller; he made things come alive.

      It took years but I realized, finally, that a lot of the ways in which I write history goes directly back to what he taught me about how to tell a story. One of his ideas was that a good storyteller always tells a big story inside a little story. So, for me, in studying sailors, pirates and enslaved people, I tell the stories of their lives and struggles within the big story of the rise of capitalism. A storyteller has to create understandings on several different levels simultaneously.

    • Lament of a Lou Gehrig, Joe DiMaggio Yankee Fan

      Until recently, the Yankees’ management strategy has been self-defeating. For years they traded their minor league talent for over-the-hill, injury-prone MLB stars. Some trades worked out, but most loaded the Yankees’ treasury with huge financial obligations for very little return on the field. The result is that they strip-mined their farm teams and rejected the historic winning formula of growing their own talent that brought them 27 World Series championships until 2009. Joe DiMaggio, Yogi Berra, Derek Jeter, and scores of others made their way to the fabled stadium directly from Yankee Triple A teams.

      Although recently, the Yankees are respecting the importance of their farm team players – Aaron Judge is an example – their trading acumen is almost non-existent. Just this year, two players on the Boston Red Sox’s – Eovaldi and Whitlock – gave the Yankees fits. These former Yankees were traded to Boston for no talent in return.

    • Did the Squad Give Away Their Bargaining Power?

      Has the Progressive Caucus lost its bargaining power by giving in to President Biden’s promise of “Trust Me.” Suppose that he is indeed able to get the Blue Dog/New Democrat Thatcherite “centrist” House members (mercenary lobbyists for corporate America and the One Percent) on board. But what about the Senate? What in the negotiated agreement will prevent Manchin and Sinema from killing the bill there?

      If they really wanted to, the Democratic leadership could simply get the Senate to remove Manchin and Sinema from their committee positions. Schumer could bring matters to a head with a motion saying that taking money from lobbyists to introduce policies that result in bribes (campaign contributions) is a corrupt conflict of interest. It wouldn’t succeed, but would draw attention to how corrupt the campaign financing process really is in determining what candidates will be on the ballot and what issues they will support.

    • Hardware

      • Chip shortage creates new power players

        While Microchip normally lets customers cancel a chip order within 90 days of delivery, it began offering shipment priority to clients that signed contracts for 12 months of orders that couldn’t be revoked or rescheduled. These commitments reduced the chances that orders would evaporate when the scarcity ended, giving Microchip more confidence to safely hire workers and buy costly equipment to increase production.

        “It gives us the ability to not hold back,” said Ganesh Moorthy, president and CEO of Microchip, which Thursday reported that profit in the latest quarter tripled and that sales rose 26% to $1.65 billion.

    • Health/Nutrition/Agriculture

      • Toward a Revolution in the Cannabis Revolution: Marijuana 25 Years After Prop 215

        The celebration took place at the General’s Residence at Fort Mason in San Francisco, which is federal property. That meant that there were no signs for the event. Marijuana, whether medical or recreational, is still illegal with the feds, and so advertising for anything related to marijuana is also illegal. No signs of any kind were outside the building. Inside, I did not see anyone smoking marijuana and didn’t smell it either, though marijuana passed from hand to hand, quietly, surreptitiously. A woman I had never seen or met before, and who said she lived and grew weed in Humboldt gave me several ounces which I took home. I haven’t tried it yet. I will. It’s part of my research.

        The program for the event, which was sponsored by the National Organization for the Reform of Marijuana Laws (NORML), listed the names of 76 deceased opponents of the Drug War: activist Dennis Peron; lawyer  and SF D.A. Terence Hallinan; and Mary Rathbun famous for her pot-laced brownies.

      • [Old] What, Me Care? Young Are Less Empathetic

        Since the creation of the Interpersonal Reactivity Index in 1979, tens of thousands of students have filled out this questionnaire while participating in studies examining everything from neural responses to others’ pain to levels of social conservatism. Konrath and her colleagues took advantage of this wealth of data by collating self-reported empathy scores of nearly 14,000 students. She then used a technique known as cross-temporal meta-analysis to measure whether scores have changed over the years. The results were startling: almost 75 percent of students today rate themselves as less empathic than the average student 30 years ago.

      • Partisan Gap in Covid Deaths Growing Thanks to Right-Wing Vaccine Disinformation

        Last month in the United States, the per-capita rate at which people died of Covid-19 was more than three times higher in counties where former President Donald Trump won at least 60% of the vote compared with counties that President Joe Biden won by a similar margin—evidence, one public health expert said Monday, of the “deadly consequences” of “anti-science aggression on the right.”

        “Irrational fears about vaccine side effects have overwhelmed rational fears about a deadly virus.”

      • 95 percent of Covid treatment funds have gone to treat unvaccinated people

        95.1 percent (€53.8 million) of all the funds spent on coronavirus treatment has gone toward treating unvaccinated people. Vaccinations were made available in Estonia in the start of the ongoing year. The €56.6 million for coronavirus treatments is supplemented by another €50 million on personal protective equipment (PPE), hospital beds, vaccination preparation and additional costs.

    • Integrity/Availability

      • Proprietary

        • Apple says it will no longer punish those daring to repair their iPhone 13 screens
        • Microsoft patches two actively exploited zero-days in monthly fixes

          “Organisations that run Exchange Server on-premises should apply security updates in a timely manner to prevent future exploitation once proof-of-concept code becomes publicly available.”

          Fifteen of the bugs fixed could be used for remote code execution, the company’s list of vulnerabilities shows.

          The other actively exploited zero-day was a security feature bypass flaw in Microsoft Excel.

        • Microsoft Patch Tuesday, November 2021 Edition

          Microsoft Corp. today released updates to quash at least 55 security bugs in its Windows operating systems and other software. Two of the patches address vulnerabilities that are already being used in active attacks online, and four of the flaws were disclosed publicly before today — potentially giving adversaries a head start in figuring out how to exploit them.

        • Security

          • Microsoft Releases November 2021 Security Updates | CISA

            Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system.

          • Samba Releases Security Updates | CISA

            Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s November 2021 Security Update Summary and Deployment Information and apply the necessary updates.

          • Citrix Releases Security Updates | CISA

            Citrix has released security updates to address vulnerabilities affecting multiple versions of Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP. An attacker could exploit these vulnerabilities to cause a denial-of-service condition.

          • Major security issues found in top Linux program for embedded devices [Ed: BusyBox is BusyBox, not "Linux"]

            Cybersecurity researchers have discovered 14 critical vulnerabilities in BusyBox, marketed as the Swiss Army Knife of embedded Linux.

            BusyBox is one of the most widely used Linux software suites, and many of the world’s leading operational technology (OT) and Internet of Things (IoT) devices run BusyBox.

          • BusyBox security analysis reveals 14 minor vulnerabilities

            Researchers at Claroty and JFrog have published a security audit of BusyBox, a widely used embedded device that offers a set of standard UNIX utilities in a single executable file. During the check, 14 vulnerabilities were identified, which have already been eliminated in the August release of BusyBox 1.34 . Almost all problems are harmless and questionable from the point of view of their application in real attacks, since they require running utilities with arguments received from outside.

          • Privacy/Surveillance

            • Brazil’s Fake News Bill: Congress Must Stand Firm on Repealing Dangerous and Disproportionate Surveillance Measures

              The revised text of Brazil’s so-called Fake News bill (draft bill 2630), aimed at countering disinformation online, contains both good and bad news for user privacy compared to previous versions. In a report released by Congressman Orlando Silva in late October, following a series of public hearings in the Chamber of Deputies, the most recent text seeks to address civil society’s claims against provisions harmful to privacy.

              Regarding serious flaws EFF previously pointed out, the bill no longer sets a general regime for users’ legal identification. Second, it does not require social media and messaging companies to provide their staff in Brazil remote access to user logs and databases, a provision that would bypass international cooperation safeguards and create privacy and security risks. Most importantly, it drops the traceability mandate for instant messaging applications, under which forwarding information would be tracked. We hope all these positive and critical changes are preserved by Members of Congress in the upcoming debates. 

              However, the text of the bill also has significant downsides for privacy. Among them, Article 18 of the draft legislation will expose some users’ IDs, requiring providers to make publicly available, by default, the national ID number of natural persons paying for content that mentions political parties or candidates, as well as the name of the person who authorized the ad message. Besides the potential for harassment and retaliation based on users’ political leanings, the provision creates a trove of personal data for potential political profiling using a national and unique ID number.

            • Brazil’s Fake News Bill: Perils and Flaws of Expanding Existent Data Retention Obligations

              Following a series of public hearings in Brazil’s Chamber of Deputies after the Senate’s approval of the so-called Fake News bill (draft bill 2630), Congressman Orlando Silva released a revised text of the proposal. As we said in our first post, the new text contains both good and bad news for user privacy compared to previous versions. One piece of bad news is the expansion of existing data retention mandates.

              Brazil’s Civil Rights Framework for the Internet (known as “Marco Civil”, approved in 2014) already stipulates the retention of “connection logs” and “access to application logs” for the internet service providers (ISPs) and applications set by the law. Internet applications broadly refer to websites and online platforms. According to Marco Civil, application providers constituted as legal entities, with commercial purposes, must collect and retain the date and time the application is used, from a certain IP address, for a period of six months. Article 37 of the bill seeks to indirectly expand the definition of “access to application logs” to compel application providers to retain “logs that unequivocally individualize the user of an IP address.”

              Since the debates on the approval and further regulation of Marco Civil, law enforcement has pushed for including the information about users’ networking ports in the law’s data retention obligation. They have sought to influence legislation and courts’ understanding about the existing retention mandate, since Marco Civil doesn’t mention the storage of users’ ports. Such a push takes into account the current use of technical solutions (particularly those based on Network Address Translation (NAT)) that enable multiple users to simultaneously share a single public IP address. There is a shortage of public IPv4 addresses, and to help mitigate this issue, NAT allows us to use several private IPs for one public IP. NAT can do this by allocating a range of ports per private IP on the public IP. However, servers on the internet still need to correlate this information with the internet service provider logs.

            • China will advance development of digital yuan, central bank gov says

              China will continue to advance the development of its central bank digital currency and improve its design, the People’s Bank of China governor Yi Gang said on Tuesday.

              China is a front-runner in the global race to launch central bank digital currencies (CBDC) and is testing a digital yuan, or eCNY, in major cities including Shenzhen, Beijing and Shanghai but has not set a timetable for its official rollout.

            • Google’s Nest Hub gets more sleep tracking features

              Google’s second-gen Nest Hub already comes with the ability to help you track your sleep pattern, thanks to its Soli-powered Sleep Sensing feature, but now Google is rolling out an update that should help you get a more detailed look at the quality of your slumber. According an announcement post on the company’s Keyword blog, the Nest Hub will now display a Sleep Staging chart that shows your various stages of sleep, including how long you were awake or experiencing REM, light, or deep sleep.

            • IFF’s Statement on the Supreme Court Pegasus Committee

              On July 18, 2021, The Wire, as part of an international collaborative investigation titled “Pegasus Project”, revealed that the Israeli spyware firm NSO targeted “over 300 verified Indian mobile telephone numbers, including those used by ministers, opposition leaders, journalists, the legal community, businessmen, government officials, scientists, rights activists and others” through their spyware, Pegasus. Subsequent reporting by the Wire and the Washington Post revealed that forensic analysis conducted by Amnesty International’s Security Lab definitively showed that the Pegasus spyware had been used to target 37 phones, of which 10 belonged to Indians.

              Mr. Rupesh Kumar Singh and Ms. Ipsa Shatakshi are independent activists of repute, with over seven years of standing. Both of their phone numbers are in the leaked database. However, as of the date, it has not been verified whether their phones were attacked with the Pegasus Spyware. Mr. Singh and Ms. Shatakshi have approached the Supreme Court asking it to declare that the use of spyware such as Pegasus, is unconstitutional. The Supreme Court has pronounced a judgment regarding the use of Pegasus, constituting a committee of technical experts to examine the allegations of unauthorised surveillance using the Pegasus spyware. This is not the first time that the Supreme Court has taken such a measure, since earlier this year the Court had also constituted a four member expert committee on the controversial farm laws.

    • Defence/Aggression

      • It Doesn’t Pay to Be Right About America’s Wars

        I waited almost three months for some acknowledgement, but it never came. Not a bottle of champagne. Not a congratulatory note. Not an e-mail of acknowledgement. Not one media request.

      • Hypersonic Panic and Competitive Terror

        Undeterred by any rival capability, Trump claimed in May 2020 that the US military had come up with a “super duper”weapon that could travel at 17 times the speed of sound. “We are building, right now, incredible military equipment at a level that nobody has ever seen before.”  Ever adolescent in poking fun at his rivals, Trump also claimed that the missile dwarfed Russian and Chinese equivalents.  Russia, he claimed, had one travelling at five times the speed of sound; China was working on a device that could move at the same speed, if not at six times.  Pentagon officials were not exactly forthcoming about the details, leaving the fantasists to speculate.

        In 2019, Russia deployed its own intercontinental hypersonic missile, the Avangard strategic system, featuring a hypersonic glide vehicle astride an intercontinental ballistic missile. “It’s a weapon of the future, capable of penetrating both existing and prospective missile defence systems,” claimed Russian President Vladimir Putin at the time.  The President claimed to have reason to crow.  “Today, we have a unique situation in our new and recent history.  They (other countries) are trying to catch up with us. Not a single country possesses hypersonic weapons, let alone continental-range hypersonic weapons.”

      • Report Outlining How to Cut $1 Trillion From Defense Budget Is Just a Start
      • Opinion | The Pentagon Budget Should Be Cut by At Least $1 Trillion—But War Profiteers Won’t Go Quietly

        Even as Congress moves to increase the Pentagon budget well beyond the astronomical levels proposed by the Biden administration, a new report from the Congressional Budget Office (CBO) has outlined three different ways to cut $1 trillion in Department of Defense spending over the next decade. A rational defense policy could yield far more in the way of reductions, but resistance from the Pentagon, weapons contractors, and their many allies in Congress would be fierce.

      • Ex CIA analyst on hidden realities of Syria war and new novel ‘Damascus Station’
      • What Is France Hiding in the Sahel?

        On the 8th of October, Choguel Maïga, the prime minister of Mali, boldly informed the world that its former colonial power, France, was sponsoring terrorists in the country’s northern region. Standing before dozens of cameras and microphones, he provided details on how the French army had established an enclave in the northern town of Tidal and handed it over to well-known terrorist groups. The revelation was shocking not simply for the serious nature of the accusation but because in past times West African leaders have rarely sparred so openly with the French government. A chain of events simmering in the background for weeks triggered the latest spat.

      • 13 Trump Officials Violated Hatch Act Regulations, Special Counsel’s Office Says
      • Stephen Miller, Come on Down! Jan. 6 Committee Drops Another Round of Subpoenas on Trump World

        Here’s a rundown of everyone who was slapped with a subpoena on Tuesday: [...]

      • Policeman survives knife attack in French Riviera city of Cannes

        A policeman survived a knife attack in the French Riviera city of Cannes on Monday, with media quoting a police source as saying the assailant had said he was acting “in the name of the Prophet”.

        The policeman emerged from the attack unscathed, saved from serious injury or worse by his bulletproof vest, Interior Minister Gerald Darmanin said.

      • Cannes: Knifeman shot after attacking three police officers

        The attack in Cannes comes just one week after a knifeman was shot at a railway station in Paris after threatening security officers.

      • Poland Fears ‘Armed Escalation’ with Belarus as Migrants Mass on Frontier

        Poland and the European Union accuse Minsk of weaponizing migrants by inviting them to enter Belarus and shepherding them to the border, sometimes by force. Visiting the border area Tuesday, Polish Prime Minister Mateusz Morawiecki praised the work of the 12,000 troops the government has deployed to defend the border.

        “We know that this is a fully planned operation, which aims to disrupt the sovereignty of our country. That’s absolutely clear to us. We know for sure that there is a search for weak spots happening (on the border),” Morawiecki said.

        “(Belarusian President Aleksander) Lukashenko’s regime uses civilians as weapons of a hybrid war. What we can see today are new methods, and you are a key bastion there to defend against these new methods,” the prime minister added.

        Poland closed the main border crossing with Belarus Tuesday, the primary route for road traffic between northern Europe and Russia.

      • What is happening on the Poland-Belarus border?

        This summer Belarus began experimenting with a novel geopolitical tactic: importing would-be migrants from the Middle East, dumping them at the EU’s borders and urging them to cross. In August Iraqi Airways announced several direct flights from Iraqi cities to Minsk, the Belarusian capital. Migrants, promised a new life in the EU on social media, sought Belarusian visas from local consulates. Upon arrival in Minsk armed guards herded them to the border, first with Lithuania and then with Latvia and Poland. All three of these countries have annoyed Mr Lukashenko by sheltering Belarusian dissidents who have fled from the regime. The EU tried to stem the flow of migrants, persuading Iraqi Airways to cancel flights to Belarus. States sharing a border with Belarus each deployed patrols, put up makeshift fences and announced construction of sturdier, permanent ones.

      • Belarus migrants: Poland PM blames Russia’s Putin for migrant crisis

        Speaking on Tuesday at an emergency parliamentary session after visiting troops on the border, Mr Morawiecki said: “This attack which Lukashenko is conducting has its mastermind in Moscow, the mastermind is President Putin.”

        He accused the Russian and Belarusian leaders of trying to destabilise the European Union – which the two countries are not part of – by allowing migrants to travel through Belarus and enter the bloc.

        Mr Morawiecki described the situation as “a new type of war in which people are used as human shields”, and said Poland was dealing with a “stage play” which is designed to create chaos in the EU.

      • How Europe’s last dictator lured thousands of migrants from the Middle East for ‘hybrid war’ against West

        Ads placed on social media are designed to make the trip look legitimate and promise smooth travel, highlighting that travellers are issued seven day tourist visas for Belarus.

        In one recent Facebook post, a travel agent said that it was bringing people to Europe via “conventional ways”.

        “European airlines only, need 1.2 million refugees. Seize the opportunity. Pay us after arrival,” read the post, which was subsequently deleted after attracting media attention.

      • Harry says he warned Twitter boss ahead of Capitol [insurrection]

        “I warned him his platform was allowing a coup to be staged,” Prince Harry said at the RE:WIRED tech forum in the US.

    • Environment

      • East Coast Flooding, Rising Sea Levels and Climate Change: Why the Ocean Keeps Pouring In

        Since 1880, average global sea levels have risen by more than 8 inches (23 centimeters), and the rate has been accelerating with climate change.

        Depending on how well countries reduce their greenhouse gas emissions in the coming years, scientists estimate that global sea levels could rise by an additional 2 feet by the end of this century. The higher seas means when storms and high tides arrive, they add to an already higher water level. In some areas – including Charleston, South Carolina, where a storm and high tide on Nov. 5, 2021, sent water levels about 8 feet above normal– sinking land is making the impact even worse.

      • The View From Inside the Glasgow Climate Summit: A Focus on Faster Policy Changes as Talks Intensify, Amid Grandstanding and Anger Outside

        I’ve been involved in the climate negotiations for several years as a former senior U.N. official and I am in Glasgow now. At the start of the second week, here’s what I’m seeing and hearing, both inside the negotiations and outside.

        A shift from 2050 to 2030 goals

      • War Helps Fuel the Climate Crisis as U.S. Military Carbon Emissions Exceed 140+ Nations

        Climate activists protested outside the U.N. climate summit in Glasgow Monday spotlighting the role of the U.S. military in fueling the climate crisis. The Costs of War project estimates the military produced around 1.2 billion metric tons of carbon emissions between 2001 and 2017, with nearly a third coming from U.S. wars overseas. But military carbon emissions have largely been exempted from international climate treaties dating back to the 1997 Kyoto Protocol after lobbying from the United States. We go to Glasgow to speak with Ramón Mejía, anti-militarism national organizer of Grassroots Global Justice Alliance and Iraq War veteran; Erik Edstrom, Afghanistan War veteran turned climate activist; and Neta Crawford, director of the Costs of War project. “The United States military has been a mechanism of environmental destruction,” says Crawford.

      • His country is sinking. So he’s rolling up his pants to make the point at COP26.

        Waters around Tuvalu, whose highest point is about 15 feet above sea level, are rising about 0.2 inches per year — faster than the global average. Like many of its neighbors, Tuvalu is warning that without global action, its land will almost certainly be submerged entirely.

      • Obama Addresses Climate Activists in Glasgow, But Should They Listen?

        We are now in the post-speech era of climate crisis, where words don’t matter to the people who matter. Young activists have figured out that the older generation is fucked up, that they don’t care about their future. The climate fight is no longer about levels of CO2 in the atmosphere: It is now about the rich, greedy older generation killing off their young.

      • Opinion: Why we need a ‘long telegram’ about the climate crisis — not conflict with China or Russia

        George Kennan’s famous “long telegram” outlined the strategy of containment at the start of the Cold War with Russia. The establishment Atlantic Council think tank has issued a new version — a “longer telegram” — to outline a confrontation with China. What’s needed, however, is a long telegram to lay out the strategy for engaging China and Russia in facing the real and growing climate threat. If we don’t find a way to join in addressing it, the basic duty of the state — to defend the security of its citizens — will have been forfeited.

      • Ocean’s climate change ‘buffer’ role under threat

        It has revealed that – if global temperatures increase to levels predicted – the ocean will not be able to provide what is currently Earth’s largest long-term carbon store.

        One third of the carbon dioxide in our atmosphere dissolves in the ocean.

        It therefore acts as an important buffer against rising temperatures.

      • Who Is the World’s Greatest Climate Champion?
      • Opinion | Drill, Baby, Drill: Capitalism’s Only Plan for Climate Is Collapse

        This past week’s flurry of announcements over “ambitious action” by governments during the COP26 in Glasgow has been justly received with scepticism by climate justice activists and the general public (and enthusiastic support by the media in general). During this same period important revelations of the massive gap in terms of necessary emission cuts and country’s plans emerged, as the broader rejection of greenwashing became pervasive. The narrative of false solutions and green capitalism doesn’t work. Yesterday, the revelation that over 800 oil & gas wells are being planned for drilling still this year and in 2022, in the report “Drill, Baby, Drill”, makes it clear that the proceedings of COP26 are mostly propaganda, as the only real, mandatory and contractualized plan global capitalism has for the climate crisis is collapse.

      • At COP 26, Island Nations Demand Action on Funding and Emissions
      • Fiji PM Slams Rich Nations for Telling Poor to ‘Suck It Up and Wait’ for Climate Funding

        Fijian Prime Minister Frank Bainimarama castigated rich nations on Monday for reneging on their vow to provide developing countries with $100 billion in annual climate funding by 2020, a failure that’s been in the spotlight throughout the ongoing COP26 summit in Glasgow, Scotland.

        “No nation can claim inaction out of ignorance. We have known about this threat for decades.”

      • Why We Need a “Long Telegram” About the Climate Crisis—Not Conflict With China or Russia

        President Biden has repeatedly and rightly called climate change an “existential threat.” The White House, the Pentagon and the intelligence community have all issued reports detailing climate change’s “threat multiplier,” which will worsen food and water scarcity, spread diseases, destabilize countries, and exacerbate mass migration. Most Americans increasingly understand that the threat is critical—and getting worse.

      • COP26 Action Steps?
      • Opinion | Corruption and Environmental Damage: Chinese Fossil Fuel Investments in Africa

        China’s relationship with Africa is multifaceted. The People’s Republic of China (PRC) shares ideological bonds with many African countries because of early ties to anti-colonial struggles and through the Non-Aligned Movement. Every African country recognizes the PRC with the exception of eSwatini (Swaziland), which has diplomatic relations with Taiwan). Many African countries preserved trade relations with Beijing after the 1989 Tiananmen Square crackdown, and those commercial links have only grown stronger. China has been Africa’s leading trading partner since surpassing the United States in 2009.

      • US Military Is Fueling Climate Crisis — It Emits More Carbon Than 140 Nations
      • More Than Halfway Through COP26, World Leaders Accused of Delivering Empty Promises on a Sinking Ship

        With just four days left of the United Nations climate summit in Glasgow, Scotland, climate groups are demanding world leaders urgently change course by rejecting false solutions and committing to stop greenhouse gas emissions at the source to have any chance of limiting global warming to 1.5°C.

        “This conference has not been the climate game-changer promised by politicians and promoted by the media.”

      • Opinion | The Most Basic of All Human Rights: Clean Water

        As the UN Climate Change Conference (COP26) is swiftly moving to its conclusion on Friday, climate justice could not be more urgent or timely.

      • COP26 Report Reveals ‘Massive’ Credibility Gap Between Climate Commitments and 1.5°C Target

        “It’s all very well for leaders to claim they have a net-zero target, but if they have no plans as to how to get there, and their 2030 targets are as low as so many of them are, then frankly, these net-zero targets are just lip service to real climate action.”

        “Today’s leaders need to be held to account for this massive 2030 gap.”

      • Satirical Video Detailing Global Deceit of Net-Zero Pledges Shows ‘How F**ked We Are’

        Humanity is on a catastrophic global heating trajectory that will pass what scientists call the “net fucked by 2050″ point and is risking “irreversible chain reactions beyond our control” just so billionaires can grow even richer.

        “Being honest isn’t an option for us. Which is why we’ve come up with the next best alternative: net-zero by 2050.”

      • Opinion | A Major Copout: COP26 and the Infrastructure Bill Show the Slow Limits of “Moderate” Change

        This past week witnessed two supposedly historic events. Globally, leaders from around the world met at Cop 26 in Scotland to agree on landmark commitments to address climate change. In the US, Congress passed a $1 trillion infrastructure bill that President Biden hailed as a “monumental step forward” that was a “blue-collar blueprint to rebuild America and it’s long overdue.”

      • Energy

        • ‘This Must Not Happen’: If Unhalted, Permian Basin Fracking Will Unleash 40 Billion Tons of CO2 by 2050

          As activists at the COP26 summit continue to denounce the “massive” gap between wealthy governments’ lofty rhetoric and their woefully inadequate plans for addressing the climate emergency, a new analysis of projected extraction in the Permian Basin in the U.S. Southwest exposes the extent to which oil and gas executives’ refusal to keep fossil fuels in the ground puts humanity’s future in jeopardy.

          “While climate science tells us that we must consume 40% less oil in 2030, Permian producers plan to grow production more than 50%.”

        • Roadmap Details Just Transition Based on Sustainable Wind Energy for Nebraska

          The people of Nebraska “deserve a livable future with less water and air pollution, more sustainable jobs, and democratic control over their energy sources.”

          So declares a report released Tuesday by the Institute for Policy Studies (IPS) that urges the landlocked U.S. state to take full advantage of its vast wind energy potential and ditch its climate-wrecking reliance on coal.

        • Opinion | The Overrated Promise of a Carbon Tax

          Addressing global warming requires cutting carbon emissions by almost half by 2030! For the Intergovernmental Panel on Climate Change, emissions must fall by 45% below 2010 levels by 2030 to limit warming to 1.5°C, instead of the 2.7°C now expected.

        • As COP26 Host Glasgow Touts its Climate Leadership, a Stroll Through the City Reveals its ‘Toxic’ History

          Scotland’s second city has rolled out the green carpet to world leaders and thousands of delegates arriving for climate talks.

          The city and its leaders have been eager to present a green image of Glasgow over COP26, with advertisements and billboards across town promoting its climate-friendly projects and initiatives. 

        • General Motors Sponsors COP26 1.5C Pavilion Amid Summit Polluter ‘Greenwash’

          A U.S car giant with a history of funding climate denial and inaction is sponsoring a COP26 events space that showcases a “transition to a cleaner world”.

          General Motors, one of the world’s largest industrial corporations, is backing the “Pathways to 1.5” pavilion at the Glasgow summit, which explores how businesses can reach the Paris Agreement target of restricting global heating to 1.5°C by the end of the century.

        • Critics Say Behind-the-Scene Efforts by HSBC Prove Big Bank Climate Pledges ‘Cannot Be Trusted’

          “Time and time again we see banks launch voluntary climate initiatives which seem to be aimed purely at reaping PR benefits now, while postponing all concrete action as far into the future as possible.”

        • Hundreds of Groups Reject Greenwashing of Destructive Hydropower Industry at COP26

          As campaigners on the ground in the Scottish city of Glasgow continued to call out world leaders for delivering empty promises at COP26, hundreds of groups on Tuesday urged attendees of the United Nations climate summit to reject attempts by the hydropower industry to secure support for new projects and instead focus on real solutions to the planetary crisis.

          “Instead of damming the rivers that help sustain us, climate funds should be used to restore rivers and promote protecting river ecosystems and communities.”

        • Bitcoin inflows hit record high so far in 2021

          Inflows into bitcoin products and funds have hit a record $6.4 billion so far this year, data from digital asset manager CoinShares showed, as investors bought the cryptocurrency on more widespread government acceptance and positive momentum.

        • Bitcoin-mining power plant raises ire of environmentalists

          They fear a wave of resurrected fossil-fuel plants pumping out greenhouse gasses more for private profit than public good. Seeing Greenidge as a test case, they are asking the state to deny renewal of the plant’s air quality permit and put the brakes on similar projects.

          “The current state of our climate demands action on cryptocurrency mining,” said Liz Moran of Earthjustice. “We are jeopardizing the state’s abilities to meet our climate goals, and we set the stage for the rest of the country as a result.”

        • Bitcoin’s record-high price means its energy use is soaring again – just as the world tries to tackle climate change at COP26

          It uses as much electricity each year as the Netherlands, an uncomfortable fact as world leaders meet at COP26.

        • Mexico wins second place in ‘Fossil of the Day’ contest at climate conference

          Presented by the Climate Action Network (CAN), a global network of more than 1,500 civil society organizations in over 130 countries, “Fossil of the Day” awards are given to the countries that are “doing the most to achieve the least” in terms of the progress on climate change.

          Mexico was awarded second place “for pumping more, not less, money into the fossil fuel industry, building oil refineries, and delaying policies aimed at carbon emissions reductions.”

    • Finance

      • Can We Automate Inequality Out of Automation?

        But why? What explains the sinking incomes of so many American workers today? Globalization plays a role. So do the fading value of the minimum wage and the ever smaller share of workers with collectively bargained contracts. But another factor, says MIT economist Daron Acemoglu, may be the most potent driver of these shrinking wages: automation.

        Automation happens when machines or algorithms — essentially, instructions for computers — do the work real people used to perform. We’ve been seeing plenty of this substituting over recent decades, Acemoglu this past Tuesday told the House Select Committee on Economic Disparity and Fairness in Growth. The result: Americans who’ve been performing “routine tasks” in industries rapidly automating “have almost uniformly experienced large declines in their real wages.”

      • With Rising Wages and Record Job Openings, Do We Still Have to Ask If the Minimum Wage Kills Jobs?

        There has been a major national debate about raising the national minimum wage from its current level of $7.25 an hour in recent years. The last increase took effect in 2009. If we adjust for inflation over the last 12 years, the minimum wage has lost almost 30 percent of its purchasing power. If we wanted to restore the minimum wage just to its 2009 level of purchasing power, we would have to raise it to almost $9.50 an hour.

        Even a $9.50 minimum wage would leave it far below its 1968 peak level in terms of purchasing power. If the minimum wage today had the same purchasing power as it did in 1968, it would be roughly $12 an hour. Just in case people don’t remember, the unemployment rate averaged less than 4.0 percent in 1968.

      • Starbucks Requests Last-Minute Delay in Union Vote Set for This Week
      • Lifting From the Bottom So Everyone Can Rise

        For months, the nation has witnessed a debate taking place in Congress over how much to invest in this plan. What hasn’t been discussed, however, is the cost of notinvesting (or not investing sufficiently) in health-care expansion, early childhood education, the care economy, paid sick leave, living-wage jobs, and the like. Similarly missing have been the voices of those affected, especially the 140 million poor and low-income people who have the most to lose if a bold bill is not passed. By now, the originally proposed 10-year, $3.5 trillion reconciliation bill, which a majority of Americans support, has been slowly chiseled down to half that size. For that you can largely thank two Democratic senators, West Virginia’s Joe Manchin and Arizona’s Kyrsten Sinema, unanimously backed by Donald Trump’s Republican Party, which would, of course, cut everything.

        Because of them, the “reconciliation” process to pass such a bill has become so crucial and politically charged, given that the same obstructionist Democrats have continued to uphold the Senate filibuster. All year, Manchin, Sinema, and the Republicans have blocked action on urgent issues ranging from climate change and immigration reform to living wages and voting rights. For example, after months of resistance to the For the People Act, a bill that protects and expands voting rights, Manchin forced the Democrats to put forward a watered-down Freedom To Vote Act with the promise that he would get it passed. In late October, though, he failed to win a single Republican vote for the bill and so the largest assault on voting rights since the post-Civil War Reconstruction era continues, state by state, unabated.

    • AstroTurf/Lobbying/Politics

      • Opinion | Neoliberal Democrats Are Killing Party’s Chances With Working-Class Voters

        Democrats have an electability problem in America’s industrial heartland that could flip the Senate red for a decade to come.

      • Cruz Proposes Texas Secession If Democrats Pass Voting Rights Reforms
      • The Anatomy of a Dog Whistle

        The governor’s race in Virginia provided a preview of coming attractions for the GOP’s 2022 strategy on race. That preview looks much like Nixon’s “Southern strategy” in 1968, with its primary theme of racial division.

      • The Corruption of the Political Class

        On the same day Chris Bryant, chairman of the Commons’ standards committee, said that what the Boris Johnson government was trying to do in overturning Paterson’s suspension was “a perversion of justice” and is “not what we do in this country – it’s what they do in Russia when a friend or a foe is suddenly under the cosh in the courts”.

        But perhaps the government’s botched attempt to save Paterson’s skin – despite detailed evidence of him lobbying hard for the two commercial companies paying him £9,000 a month – is, on the contrary, exactly the way we now do things in the UK. Bryant’s analogy with Russia – he might have mentioned Iraq or Turkey or a score of other countries – may not be too far off the mark. Lord Evans is demonstrably correct about the slippage into corruption and wrong only about how far this process has gone.

      • Trumpism Without Trump

        If anything, it was an empty right-wing culture war meme and a lie about exposing schoolchildren to make-believe horrors of history if they learn about racism and slavery and possibly encountering a kid of a different gender when going to a restroom. It’s right out of racist Donald Trump’s playbook.

        There are stalls in restrooms.

      • GOP Candidate Refuses to Concede Race for New Jersey Governor
      • If Biden Doesn’t Govern Like FDR, Democrats Are Doomed

        Democratic US Representative Abigail Spanberger, a Virginia centrist who swept into office on an anti–Donald Trump wave in 2018 and who now fears she might be swept out on an anti–Joe Biden wave in 2022, says Democrats are in trouble because President Biden has been too ambitious.

      • Absent Any Proof, Israel Designates Palestinian Rights Groups “Terrorist”
      • The Corruption Is In Congress: When Your New Bill Exempts The Biggest Employers In Your State, Perhaps There’s A Problem

        Karl wrote a bit about how the new antitrust bill from Amy Klobuchar and Tom Cotton pretends that the only industry that has competition issues is the internet industry — despite evidence suggesting other industries are much worse off — and briefly mentioned the fact that their bill conveniently excludes Walmart and Target. But the setup of the bill and those particular exclusions are so nefariously done, and so obviously corrupt, that they deserve a second post to call it out.

      • Congress Pushed to Pass Fix After Watchdog Finds 13 Ex-Officials Illegally Campaigned for Trump

        As federal investigators announced Tuesday that at least 13 senior Trump administration officials violated the Hatch Act—a key law restricting campaign activities by government employees—a leading ethics advocacy group responded by calling on Congress to pass the Protecting Our Democracy Act.

        “There are significant enforcement challenges to enforcing the Hatch Act. Legislation like the Protecting Our Democracy Act would fix that.”

      • The ‘manufactured cynicism’ infecting our politics

        A more responsible news outlet might have noted these huge accomplishments, and puzzled over why folks such as Mr. Macey consider this “a standstill.” It would also have identified the obvious source of Washington’s division: the modern GOP, whose animating principal as a minority party is militant obstructionism.

        Ah, but why confront the ignorance of your audience when you can amplify it instead?

      • Facebook credits automated improvements for finding violent content

        Facebook’s parent company said in a report released Tuesday that it had taken action on 13.6 million pieces of content that depicted or incited violence on the platform during the third quarter of the year.

        Meta, the newly rebranded company that includes Facebook, Instagram, WhatsApp and Oculus, took similar actions against more than 3 million instances of content on Instagram, the company said in its Community Standards Enforcement Report.

    • Misinformation/Disinformation

      • Satan, Not Travis Scott, Is to Blame for Astroworld Tragedy, TikTok Geniuses Declare

        On TikTok, where some videos have gained millions of views, typing “Astroworld” into the search bar generates “astroworld festival demonic” as one of the top suggestions. People have said the stage was shaped like an inverted cross leading to a portal to Hell, which they believe was represented by the arch-shaped set onstage. They also point to a shirt Scott wore at the show that depicts human figures walking through a door and emerging with what look like horns as further evidence that Scott was leading fans to hell and sacrificing people’s lives intentionally. A representative from TikTok said this content violates community guidelines and the company is working on taking action against it, “including within search suggestions.”

      • Jan. 6 Committee Issues 6 Subpoenas, Including to Michael Flynn, John Eastman
      • Opinion | No Time for Complacency—January 6 Was a Dress Rehearsal

        Location, location, location. For good or evil, history often is made in the confines of a hotel room or suite: whether the first meeting of the post-revolution Soviet government at Moscow’s Hotel National in 1918, or the drafting in 1922 of Ireland’s constitution at the lovely Shelbourne Hotel in Dublin. 

      • Jan. 6 Panel Subpoenas Flynn and Eastman, Scrutinizing Election Plot

        The subpoenas reflect an effort to go beyond the events of the Capitol [insurrection] and delve deeper into what committee investigators believe gave rise to it: a concerted campaign by Mr. Trump and his network of advisers to promote false claims of voter fraud as a way to keep him in power. One of the people summoned on Monday was John Eastman, a lawyer who drafted a memo laying out how Mr. Trump could use the vice president and Congress to try to invalidate the election results.

        In demanding records and testimony from the six Trump allies, the House panel is widening its scrutiny of the mob attack to encompass the former president’s attempt to enlist his own government, state legislators around the country and Congress in his push to overturn the election.

        Mr. Flynn discussed seizing voting machines and invoking certain national security emergency powers after the election. Mr. Eastman wrote a memo to Mr. Trump suggesting that Vice President Mike Pence could reject electors from certain states during Congress’s count of Electoral College votes to deny Joseph R. Biden Jr. a majority. And Bernard Kerik, the former New York police commissioner who was also subpoenaed, participated in a planning meeting at the Willard Hotel in Washington on Jan. 5 after backing baseless litigation and “Stop the Steal” efforts around the country to push the lie of a stolen election.

    • Censorship/Free Speech

    • Freedom of Information/Freedom of the Press

      • No End to the Washington Post’s War on Whistleblowers

        Fortunately, a former deputy director of the Central Intelligence Agency’s Office of Inspector General, Carolyn McGiffert Ekedahl, a former whistleblower herself who filed a sworn affidavit thirty years ago against the confirmation of Robert Gates as CIA director, wrote a letter to the Post defending whistleblowing.  Ekedahl, who is my wife, noted that institutions, even religious ones, become loyal to themselves rather than to the missions they proclaim.  Ekedahl asked,  “Are victims of abuse by priests ‘betraying’ the Catholic Church when they become whistleblowers? Are civil servants who disclose corruption in their departments guilty of ‘lack of loyalty’?”

        Investigative reporters of the Washington Post often have their exposes because of whistleblowers.  Watergate and Deep Throat is the enduring example.  In his excellent new book, “Midnight in Washington,” Rep. Adam Schiff (D-CA) documents the necessity of whistleblowers to the Congress, particularly the congressional intelligence committees.  As Schiff states, without whistleblowers the congress “would be almost completely reliant on the intelligence agencies to self report any problems.”

      • The High Price of Doing Journalism in El Salvador

        On Dec. 10, 1981, an American-trained unit of the Salvadoran army stormed into a remote village near the country’s border with Honduras. In the days that followed, the soldiers killed nearly 1,000 civilians, most of them women and children. Raymond Bonner, a ProPublica and Retro Report contributor who was then working for The New York Times, traveled with photographer Susan Meiselas through rebel-held territory to report on the massacre. Their story about the atrocities and a similar account by The Washington Post’s Alma Guillermoprieto were fiercely attacked by the Reagan administration, which viewed El Salvador’s military as an essential ally in the fight against the country’s leftist rebels. Administration officials insisted El Mozote had been the site of a firefight between the army and rebels. After the war finally ended in January 1992, investigators began to dig up the bodies. Of the more than 140 remains first exhumed, more than 95% were children; the average age was 6 years old. Many had been rounded up and locked in a convent, then killed in a fusillade of fire before the building was burned. The reporters had been right all along.

        Four decades after he filed his first story on El Mozote, Bonner returned to El Salvador and teamed up with Nelson Rauda, a reporter with the independent news outlet El Faro, to track the country’s faltering efforts to hold the perpetrators accountable. The key to that inquiry was a Salvadoran judge who heard testimony from victims, families and some of the military officers involved. Taken together, the evidence indicated that the El Mozote attack was part of a pattern set by El Salvador’s military and political leadership. Bonner and Rauda’s reporting is traced in a documentary that airs on Wednesday and was produced by the nonprofit news organization Retro Report and the PBS program FRONTLINE. (Check your local schedules for airtimes.) The following story, by Rauda, details the personal costs of doing this work in a country whose populist president has handcuffed the judiciary and publicly attacked journalists who challenge the official line.

      • Julian Assange’s Fiancée: U.K. Blocking Our Attempt to Marry While He Is Tortured in Belmarsh Prison

        Stella Moris, partner of WikiLeaks founder Julian Assange, says British authorities have so far blocked attempts for her and Assange to marry while he is being held in Belmarsh prison. Supporters have also raised concerns Assange has become suicidal. “They are killing him. If he dies, it is because they are killing him,” Moris says. “They are torturing him to death.”

      • Julian Assange’s Fiancée Stella Moris: WikiLeaks Helped Expose Climate Change Hypocrisy & War Crimes

        Britain’s High Court is expected to decide in the coming weeks whether to extradite WikiLeaks founder Julian Assange to the United States, where he faces up to 175 years in prison under espionage charges for publishing classified documents exposing U.S. war crimes. We get an update from Assange’s partner, Stella Moris, who is in Glasgow as part of her campaign to free Julian and to highlight how WikiLeaks has also revealed evidence of how corporations and states have undermined the goals of prior climate summits. Moris says WikiLeaks is an “extraordinary tool … to understand the relationships between the states and the fossil fuel companies, [and] how these interests are intertwined.”

    • Civil Rights/Policing

      • The Request of the Doe

        The old doe wanted to be witnessed in pain for eternity. Cut and bandaged and then cut up again. Fine, they said. We’ll see how you fare. They took her into the sterile room and covered her in dirt. They smothered her in praise. They pulled out her teeth and replaced them with all gold caps over steel rod implants. They propped her up on an ancestor’s grave and told her to be still as a stone.

        The stone wanted to be witnessed for eternity. Carved as it was. Like a great mysterious henge. But it was clear who placed her there. And that wasn’t enough. No one wants to see that which they already see every day in the mirror. Tricked out and suffering. Cut up for no one. Those teeth shone in the night for no one. When she bore them at the moon.

      • The Counter-Intuitivist

        Support independent cartooning: join Sparky’s List—and don’t forget to visit TT’s Emporium of Fun, featuring the new book and plush Sparky!

      • The Parental Right

        The conservatives are always aiming to go to the past, rather than the future. One would think this would make them support children but it’s actually the opposite. They want to go back to their own childhoods and they can only do this by controlling children.

        Another factor for the political Right, at least in America where fascism is heavily merged with distorted Christianity, is an ideology of white supremacy, as children lack sin. This ideology plays nicely into notions of racial superiority as even a drop of a certain ethnicity can be viewed as impure.

      • Dave Chappelle’s Comedy of Bitterness

        Dave Chappelle often describes stand-up comedy in liberatory terms. In his 2018 appearance on Comedians in Cars Getting Coffee, Jerry Seinfeld’s talk show on the craft of comedy, Chappelle cast stand-up as a vehicle for unbridled self-expression: “The guy on the stage, that’s the real guy. The guy that’s off the stage, he’s the one that lies to people, or doesn’t say what he actually thinks, and all this other shit, just so that guy can exist uninterrupted.” The stage, in this parable, authorizes a freedom that the world restricts.

      • Students Have Rights: Court Dumps Evidence After Cops Rely On A Month-Old Anonymous Tip To Search A Minor

        As courts seemingly have to remind school administrators (and their partners in unconstitutional crime, school police officers), students — even minors — still have constitutional rights. The First and Fourth Amendments are the most frequently violated, despite there being no lack of precedent upholding students’ rights.

      • New control system: Frontex ends pilot project on facial recognition at EU borders

        Until now, only asylum seekers and visa applicants had to hand over their biometric data before entering the EU. With an Entry/Exit System, this will be extended to all other travellers from third countries. Border controls will be significantly delayed from 2022. Entry apps and automatic „eGates“ should save this time again.

      • Uber, DoorDash and similar firms can’t defy the laws of capitalism after all

        As the firms have discovered, their businesses are less perpetual motion machines than real-world flywheels that inevitably lose energy to friction, says Jonathan Knee of Columbia Business School and author of a book entitled “The Platform Delusion”. The network effect in fact has proved much weaker than expected. Many users switch between Uber and Lyft. Drivers also flit between them, or to delivery apps, depending on which model offers the best pay. This bargaining power from both sides means the system does not become self-reinforcing after all.

        Technology, too, has turned out to be less beneficial than anticipated. Data collected by the firms help optimise their operations, but are not the decisive factor some had hoped for. Regulators keep pushing back. In London they have forced Uber to pay drivers minimum wages and pensions. In San Francisco they capped the fees DoorDash can charge restaurants for delivering their meals.

      • This Antiwork Subreddit is Watching the Great Resignation

        The sub features a library of antiwork texts, such as Bullshit Jobs by the late anarchist academic David Graeber, and even a soundtrack (including, of course, the labor movement anthem “9 to 5” by Dolly Parton). Their Frequently Asked Questions seem prepared for backlash: Why do you want to end work? Why “antiwork”? But without work society can’t function! In their cheeky response to “You guys are just lazy, right?” they replied, “Some of us are lazy, sure. What’s wrong with that?” Perhaps most urgent is the question: I hate my job, what should I do?

      • Buy Nothing Day – November 26, 2021

        Originating in Canada in the early ’90s, National Buy Nothing Day occurs on the day after Thanksgiving each year in the U.S, on November 26 this year. In an effort to combat the unethical and sometimes even dangerous mob shopping behaviors of Black Friday, artist Ted Dave established this anti-consumerism holiday in 1992. The idea is to counteract the madness of holiday shopping by encouraging a mindful and environmentally friendly attitude toward post-feast purchasing. We’ve been looking for an excuse not to hit the mall so early on Thanksgiving weekend, and here it is!

      • Celebrate Buy Nothing Day on November 26th!

        Celebrate Buy Nothing Day on November 26th!

      • Buy Nothing Day on November 26, 2021

        Overconsumption leads us to using up too many resources. As a result, there are less available for those who need it.

        There’s also the environmental cost of businesses continuously producing these items to satisfy our overconsumption. More greenhouse gas emissions being produced by having to manufacture and ship new items.

        The less we consume, the less resources get used up, and the less greenhouse gas emissions damaging the Earth. Take a stand this year for the sake of our planet, and the sake of your own personal happiness.

      • Buy Nothing Day: Less is More

        Consumption is doing havoc on the environment. As the demand for products grows, so does the necessity to produce those goods. More pollutant emissions, higher land use and deforestation, and hastened climate change occur as a result of this. Buy Nothing Day is a 24-hour protest in which participants commit not to purchase anything in order to raise awareness of the harmful environmental, social, and political repercussions of excessive consumption. Every year on Buy Nothing Day, a message is sent out in support of less consumerism and increased environmental awareness. People that cut back on their consumption not only help the environment, but they also get to enjoy things more fully.

        Whatever day you pick to commemorate Buy Nothing Day, the goal is to raise awareness about the issue of excessive consumption. Whether or not this is a subject that you are passionate about, you can certainly look into it and contribute to a better understanding of it. You can express your support for the day in a variety of ways like: [...]

      • Schools Welcome Homeland Security Surveillance of Students
      • Schools welcome students’ Homeland Security monitoring.
    • Monopolies

      • Klobuchar, Cotton Competition Bill Latest To Pretend ‘Big Tech’ Is The Only Industry With Problems

        So we’ve noted a few times that the recent Congressional fixation on “big tech monopolies” is weirdly myopic. As in, the United States is absolutely jam-packed with heavily monopolized sectors including banking, telecom, energy, and air travel that simply aren’t seeing anywhere near the same level of hyperventilation. While it’s true that giants like Facebook, Google, and Amazon are engaged in dodgy behavior at unprecedented scale, most of the “solutions” bandied about so far are oddly selective, sometimes harmful, and routinely performative.

      • Patents

        • Moderna Slammed for ‘Cheating US Taxpayers’ in Covid-19 Vaccine Patent Dispute

          Moderna came under fire Tuesday in response to New York Times reporting about an ongoing dispute with a federal agency over whether government scientists should be credited as co-inventors of a key component of the U.S. company’s Covid-19 vaccine.

          Dr. Céline Gounder, an infectious diseases specialist at the New York University School of Medicine and Bellevue Hospital Center, tweeted that it is “amazing” Moderna “has the gall to claim it’s the sole inventor” given contributions from scientists at the National Institutes of Health (NIH).

        • Global Jurists Say International Law ‘Requires’ Rich Nations to Stop Blocking Patent Waiver

          A legal opinion published Monday by the International Commission of Jurists argues that the rich countries currently stonewalling a proposed patent waiver for Covid-19 vaccines are violating their “obligations to realize the rights to health, equality, life, and science.”

          “International law requires that States stop impeding the TRIPS waiver.”

      • Copyrights

        • US Court Orders 21 Pirate Site Operators to Pay $1 Million Each in Damages

          Media giant ABS-CBN has won a lawsuit against 21 pirate site operators. A district court in Florida granted a default judgment that orders the operators to each pay $1 million in damages. The domains in question, one of which used to be linked to a British MP, are mostly smaller streaming portals that offer access to ‘Pinoy’ content in the US and abroad.

        • Mangabank “Suffers DDoS Attack” & Disappears Following Legal Action

          Manga indexing site Mangabank and several linked storage platforms were recently targeted in a US court by Japanese publisher Shueisha. With around 80 million visits per month, Mangabank was a huge player in the piracy ecosystem but has now disappeared. While it’s likely the legal action played a part, the site has also been dealing with a huge DDoS attack.

        • CC Community Spotlight Series: Meet Tyler Green

          This #GivingTuesday — Tuesday, November 30th, Creative Commons invites you to join our 20th Anniversary celebration. In the weeks leading up to #GivingTuesday, we’ll be spotlighting leaders in the Open Movement and encouraging you to support our Better Sharing, Brighter Future campaign.

IRC Proceedings: Tuesday, November 09, 2021

Posted in IRC Logs at 2:34 am by Needs Sunlight

Also available via the Gemini protocol at:

Over HTTP:

HTML5 logs

HTML5 logs

#techrights log as HTML5

#boycottnovell log as HTML5

HTML5 logs

HTML5 logs

#boycottnovell-social log as HTML5

#techbytes log as HTML5

text logs

text logs

#techrights log as text

#boycottnovell log as text

text logs

text logs

#boycottnovell-social log as text

#techbytes log as text

Enter the IRC channels now

IPFS Mirrors

CID Description Object type
 QmVUL7VxufvuXJMoMHBWjNAQo4kehvomzqd5qeUcRBvy92 IRC log for #boycottnovell
(full IRC log as HTML)
HTML5 logs
 QmUHHj6jPiCLXvWQfj8bd34Bnka5sMzxBfoMRnYJR9pioU IRC log for #boycottnovell
(full IRC log as plain/ASCII text)
text logs
 QmZu1BBTxwFGmt9949rVDhJxn9jNoGwSZSmvRqftiEcG58 IRC log for #boycottnovell-social
(full IRC log as HTML)
HTML5 logs
 QmXQy8v2W5qMfYYBpasbgeeFVfF4EMJAW9UBSdN8PAtLRE IRC log for #boycottnovell-social
(full IRC log as plain/ASCII text)
text logs
 QmWtiZDMKpe94Z6thBuNiwRPq9aZAyrxUwW8PbotwwF5S4 IRC log for #techbytes
(full IRC log as HTML)
HTML5 logs
 QmZ8PUt9AARhokjCeUjujossrZbna5xiNnLrkKcAvi1jFB IRC log for #techbytes
(full IRC log as plain/ASCII text)
text logs
 QmQnxaxyD9tXAoDsX9C6kdSApYgwYT76F4psRmqMt2tuRU IRC log for #techrights
(full IRC log as HTML)
HTML5 logs
 QmYNPJK9yW7FBTqg8fV9ftfSWowjE3JTufAzRgt8ecnT5c IRC log for #techrights
(full IRC log as plain/ASCII text)
text logs

IPFS logo

Bulletin for Yesterday

Local copy | CID (IPFS): QmdEutfCAc7HzKtnLt7k7b2dajGSqfBSGnEPAuD2bontJM

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channels: Come and chat with us in real time

New to This Site? Here Are Some Introductory Resources




Samba logo

We support

End software patents


GNU project


EFF bloggers

Comcast is Blocktastic? SavetheInternet.com

Recent Posts