Bonum Certa Men Certa

Links 19/05/2022: Rust 1.61.0 and Lots of Security FUD



  • GNU/Linux

    • Desktop/Laptop

      • OMG UbuntuYou Can Upgrade Framework, the Modular Laptop, with 12th Gen Intel CPUs
        So when I heard they’d announced an upgraded Framework laptop I was intrigued. Given the nature of the product, I wondered if the upgraded components provided would be backwards-compatible with the first generation device?

        To quench any intrigue you may have the answer is a big fat yes.

    • Audiocasts/Shows

    • Kernel Space

    • Applications

      • ByteXDWhat Is Inkscape and What Can You Do With It?

        The first time I heard the word Inkscape, I thought it was Ink-escape, alluding to the ease of use of the software, just like an imaginary ink escaping from your mind to the software to bring forth the magnificent design ideas from your imagination.

        I was disappointed to know it wasn’t the idea behind the name, but fortunately the software is as easy to use as I imagined. And the name is combined from two words “ink” and “scape”; ink is used for final products in design, so suggesting the practical aspect of the software that it is used for creating ready-for-use illustrations and designs, and scape denoting a scene of a large number of objects, thus alludes to the object-oriented nature to vector graphics.

        Inkscape is an open-source vector graphics editor.

        What are vector graphics? Vector graphics, opposing to raster graphics, use mathematical equations to describe paths and objects instead of pixels, which leads to unlimited resolution, yes! No matter how you zoom in; these don’t pixelate. Inkscape is free of charge, meaning that you don’t pay a dime to download and use Inkscape.

        Now you may think that most open-source applications are counter-productive; because they don’t have enough features. But I am telling you, that is not the case with Inkscape.

      • MedevelDocspell is a machine learning powered document management system (DMS)

        Docspell is a personal document organizer. Or sometimes called a "Document Management System" (DMS). You'll need a scanner to convert your papers into files. Docspell can then assist in organizing the resulting mess .

        It can unify your files from scanners, emails and other sources. It is targeted for home use, i.e. families, households and also for smaller groups/companies.

        To summarize, Docspell assists you in organizing your piles of documents, resulting from scanners, e-mails and other sources with miminal effort.

        [...]

        Docspell is free software, distributed under the AGPLv3 or later.

      • MedevelOrganize is an open-source file management automation tool

        Organize is a unique and amazing software package that helps you organize your messy desktop, downloads, documents, and keep track of all of your important files.

        It is built with the Python programming language and runs smoothly on Windows, Linux, and macOS.

        Organize allows you to setup automated rules that works to copy and organize your files in a snap. As an example, let's say you are taking many screenshots by day, Organize will copy and mark the screenshots in certain directly according to the rule you set.

        Organize is created by Thomas Feldmann a software engineer from Germany.

    • Instructionals/Technical

      • Install VeraCrypt on Debian 11 - kifarunix.com

        In this guide, we are going to learn how to install VeraCrypt on Debian 11. VeraCrypt, a fork of TrueCrypt, is a free and open source on-the-fly disk encryption (OTFE) tool.

      • Make Use OfUnderstanding Linux System Calls With the strace Command

        Every process running on your desktop uses system calls to communicate with the OS. Using strace, you can track such system calls easily.

      • GNU Linux (Debian) – how to shrink-resize lvm2 luks encrypted root partition – how to enlarge SWAP space
      • Linux Made SimpleHow to install FL Studio 20.9.2.2907 on a Chromebook

        Today we are looking at how to install FL Studio 20.9.2.2907 on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

      • How to install WineHQ on Ubuntu 22.04 | Mark Ai Code

        Learn how to install WineHQ on Ubuntu 22.04 LTS using the steps below. JellyFish Jammy If you’re unfamiliar with Wine, it stands for Wine Is Not an Emulator and is a tool that enables us to utilize Windows applications on Linux. Wine does not need a Windows installation on your computer to run applications written for Windows.

      • AddictiveTipsHow to play The Long Dark on Linux

        The Long Dark is an FPS survival video game developed and published by Hinterland Studios. The game was released on Linux, Windows, MacOS, Xbox One, PS4, and Nintendo Switch. Here’s how to play it on your Linux desktop or laptop.

      • AddictiveTipsHow to manage your Debian install with Smxi

        The Smxi script is an excellent tool for Debian users. Users can automatically install GPU drivers (and patches), install desktop environments, software, system-clean up, and more with ease.

        If you’re looking to simplify the maintenance on your Debian Linux workstation, personal computer, or home server, this app is for you. Follow this guide to learn how to manage your Debian install with Smxi.

      • GNU Linux (Debian 11) – Brother HL-5450DN reliable Black and White Laser printer – that works out of the box with cups – filter those laser printers
      • AddictiveTipsHow to play Don’t Starve Together on Linux

        Don’t Starve Together is a free multiplayer expansion to the survival game “Don’t Starve.” Players work together to survive in the game so they “don’t starve.” Here’s how to play Don’t Starve Together on your Linux PC.

      • How to Add Comments to IPTables Rules

        Most distro's have made firewalld, UFW, or some other fancy program their default firewalls. However, in my opinion IPTables/Netfilter still reigns supreme. I find it to be the best tool for the job on 90% of systems I work on. Although a firewall configuration with a lot of rules can still be difficult to read. Just like a long script, it is helpful to put comments. These comments allow others to easily identify what the rules do, especially if you are using specific source IP addresses. So in this Linux quick tip we will show you how to easily add comments to IPTables rules.

        If you are unfamiliar with IPTables, you can read "Basics of IPTables".

      • Install and Setup VeraCrypt on Rocky Linux

        In this guide, we are going to learn how to install and setup VeraCrypt on Rocky Linux. VeraCrypt, a fork of TrueCrypt, is a free and open source on-the-fly disk encryption (OTFE) tool.

      • LinuxiacHow to Install Google Chrome on AlmaLinux / Rocky Linux

        This tutorial will cover installing the Google Chrome web browser on AlmaLinux / Rocky Linux in a few easy-to-follow steps.

        Google Chrome is a modern web browser that is fast, simple, and safe. However, because it is not an open-source browser, it is rarely included by default on any Linux distribution and is usually not available for installation from official repositories.

        This is also true for AlmaLinux and Rocky Linux. If you have either distribution installed, you will not find the Google Chrome browser in their official repositories.

      • ByteXDLinux Tail Command (With Examples) - ByteXD

        The tail command is native to Unix-like operating systems, BSD and FreeDOS. It is even now ported to Windows as a part of the unxutils package.

        In Linux, it is shipped as a part of the package GNU coreutils.

        The tail command outputs the “tail” (end) of a file or piped data. By default, it prints out the last ten lines of what gets passed to it. You can use other options instead of the default behavior.

        This article will explain how to use tail command, both the default behavior of tail and the options. Why tail in the first place? Many programs write their recent status at the end of what’s called a log file, so it is great to have a shortcut to view the end of the file instead of scrolling down a huge file.

  • Distributions and Operating Systems

  • Free, Libre, and Open Source Software

    • Programming/Development

      • Daniel Stenbergcase insensitive string comparisons in C

        Back in 2008, I had a revelation when it dawned on me that the POSIX function called strcasecmp() compares strings case insensitively, but locale dependent. Because of this, “file” and “FILE” is not actually a case insensitive match in Turkish but is a match in most other locales. curl would sometimes fail in mysterious ways due to this. Mysterious to the users, now we know why.

        Of course this behavior was no secret. The knowledge about this problem was widespread already then. It was just me who hadn’t realized this yet.

      • Perl / Raku

      • Rust

        • Joerg Jaspert: Rust? Munin? munin-plugin…

          Sooo, some time ago I had to rewrite a munin plugin from Shell to Rust, due to the shell version going crazy after some runtime and using up a CPU all for its own. Sure, it only did that on Systems with Oracle Database installed, so that monster seems to be bad (who would have guessed?), but somehow I had to fixup this plugin and wasn’t allowed to drop that wannabe-database.

          A while later I wrote a plugin to graph Fibre Channel Host data, and then Network interface statistics, all with a one-second resolution for the graphs, to allow one to zoom in and see every spike. Not have RRD round of the interesting parts.

          As one can imagine, that turns out to be a lot of very similar code - after all, most of the difference is in the graph config statements and actual data gathering, but the rest of code is just the same.

        • The Rust Programming Language Blog: Announcing Rust 1.61.0

          The Rust team is happy to announce a new version of Rust, 1.61.0. Rust is a programming language empowering everyone to build reliable and efficient software.

        • LWNRust 1.61.0 released [LWN.net]

          Version 1.61.0 of the Rust language has been released. Changes this time around include more flexibility in main-program exit codes, a number of new features for const functions, a number of newly stabilized APIs, and more.

  • Leftovers

    • Pseudo-Open Source

    • Security

    • Finance

      • CNN stops bothering to hide that the economy has turned sour. – BaronHK's Rants

        CNN was one of the last few holdouts insisting that we were in a “strong economy” with “robust growth” and “record job creation levels” and that high inflation would be “transitory” in America.

        Sometime around yesterday, they changed their minds and finally started reporting what investment magazines and CEOs were saying for months, that a dire recession is coming. (It’s already here, though.)

        I’ve said over the last few years, repeatedly, that we were in a “second tech bubble”, with the first big one of course being the Dotcom Bubble of the late 1990s and early 2000s where investors were willing to throw at and lose money on anything vaguely tech related that sounded like it might have a business plan, no matter how insane.

        But even I didn’t see what’s happening now coming. We’re in uncharted territory on gasoline prices (for the United States….Europe has always had very decadent and corrupt politicians who subscribed to this green new deal insanity, but it’s a pretty new concept here).

        There’s a shortage of baby formula, and the president of the United States refuses to do what current law authorizes him to, in order to get it under control. Because he doesn’t want to go too hard on the oligopoly that produces it all.

        [...]

        And streaming companies like Netflix are seeing record cancellations and the end to subscriber growth, and admit it will accelerate.

        Walmart has had its worst trading days since the 1980s this week, losing 19% of its share price in three days. Target and Amazon got hammered much worse.

        The whole thing is an epic disaster. And where is the news? Trying to tell people that “this millennial in their 20s just bought a $700,000 house….so why don’t you have one?”. (CNBC bullshit)

        I’m just so sick and tired and goddamned disgusted by it all. I’ve tuned out advertising completely. I don’t have any streaming disservices in my house. I watch movies and stuff on discs. Usually ones I borrowed at the library, which I have to pay taxes for whether I use it or not.

        I’ve blocked advertisements from appearing in my Web browser since 1998, when I got on the Web and found out there were ads and that they were slowing my browsing down a lot (images on a 56k modem….and now videos on my cable that I didn’t consent to watching).

        [...]

        The Democrat Party and the Republican Party that let laissez-faire Crapitalism dictate trade policy, who bankrupted us as a nation, who convinced us all we could “just go shopping” to cure what ails you, have no answers for how to fix anything, because they’re the ones who don’t really want to fix it.

        [...]

        I believe that economists will eventually call this the “app” or “smartphone” bubble, because it seems like everything involving those is shit hitting the fan, but there are lots of other bubbles too, like “cryptocurrencies”.

    • AstroTurf/Lobbying/Politics

      • Re: The Disappearence of Sincere Conversations

        Trust, however, will not just appear out of the blue. Trust needs to be achieved somehow. Can algorithm suggested "friends" a la Linkedin, Xing, facebook etc. be trusted? Nope. Can members of smaller groups like the mailing list of a project be trusted? Maybe.

    • Internet Policy/Net Neutrality

      • Re: A Call for a Gemini Without TLS



        Occasionally there have been arguments along the lines that tranport layer security (TLS) is too complicated and should be removed from gemini (and other sites, too).

        I disagree.

        One can definitely build a gemini server, which does not deal with TLS, like vger for example. However, vger is a filter: it accepts input on stdin and produces a response on stdout. It has no notion of the network. In order to make a running vger instance accessible from the network, one must add inetd to it, and configure it to route network requests to vger and back. This works nicely as I have detailed elsewhere, thanks to Solene for this interesting approach. If you need just that, by all means, use it.

      • This and That

        There is chit chat on gemini on several topics, so I'll try to comment on the ones I find interesting. While writing it so happened that these fragments grew enough to deserve their own post. So this post just turns into shameless self advertisement, it seems.



Recent Techrights' Posts

Turns Out LLMs for Code Don't Save Time and Don't Improve Quality
Neither legal nor useful
 
Firing Away With Nonsense
Or fighting fire with fire
Links 13/07/2025: Climate Crisis, GAFAM Poisoning the Water
Links for the day
The Microsofters Will Have an Obligation to Compensate Us
This story isn't just about Microsoft. It's also about corruption, there are many women victims, there is abject "abuse of process", and many more scandals to be illuminated in years to come.
Reproducing at the EPO Instead of Producing Monopolies for Foreign Monopolies With Their Price-Fixing Cartels
Does the EPO recognise the need of well-educated Europeans to bear kids?
Valnet Inc. Dominates Real (Not LLM Slop) GNU/Linux Coverage in 2025
And likely in prior years, too
Free Software Foundation (FSF) Fund Raiser Goes on
Later this month we'll expose another OSI scandal
EPO Staff Representatives Issue a Warning About Staff's Health and Inadequate Care
Even the EPO's own stakeholders (money sources) are openly protesting against what the EPO became
Links 13/07/2025: Partly Assorted News From Deutsche Welle and CBC
Links for the day
Gemini Links 13/07/2025: Board Games and Battle Styles
Gemini Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, July 12, 2025
IRC logs for Saturday, July 12, 2025
Plunder at the Second-Largest Institution in Europe
cuts, neglect, health problems, even early deaths
Links 12/07/2025: Political Developments, Attack on Opposition, Climate Actions
Links for the day
Gemini Links 12/07/2025: Melodic Musings and Small Web July
Links for the day
Links 12/07/2025: Jail in China for Homoerotica, South Korea Discriminates Against Old Workers
Links for the day
If Only Everything Was Rewritten in Rust, We'd Have No More Security Issues?
Nope.
Links 12/07/2025: Birdwatching and Fake/Misleading Wall Street 'Valuation' Figures
Links for the day
Gemini Links 12/07/2025: How to Avoid Writing, Apps for Android
Links for the day
Using SLAPPs to Cover Up Sexual Abuse and Strangulation
The exact same legal team of the Serial Strangler from Microsoft and Garrett already has a history fighting against "metoo"
EPO Staff Committee on Harassment in the Workplace
slides
Adding the Voice of Writers to UK SLAPP Reform
The journey to repair antiquated (monarchy era) laws will likely be long
EPO Takes More Money From Staff for Speculation (Pensions), Actuarial Study Explains the Impact
"The key change in this year’s Actuarial Study, due to cascading the new “risk appetite” from the financial study, is a significant increase of the total pension contribution rate of 5.7 percentage points, up to a total of 37.8%. This is driven by an unprecedented decrease in the discount rate of 105 bps down to 2.2%."
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, July 11, 2025
IRC logs for Friday, July 11, 2025
Microsoft - Like IBM - Does the "Relocation" Tricks (Start Over Elsewhere, Then Get Sacked by Microsoft)
It is a "low blow" or a "dick move"
After the Free Software Foundation's Campaign to Raise Money Let's See Campaigns to Finish Off Microsoft (Vista 11, GitHub etc.)
Microsoft is in effect collapsing
Your Publications Have No Major Impact Unless or Until You "Get Some Heat"
we're on the right track
Slopwatch: A Cause for Hope, the Hype is Dying
For about a month we showed that becoming a slopfarm - for several weeks - resulted in utter failure and ruin for BetaNews
Links 11/07/2025: Censorship Worsening, 3D Printing Success Stories, UK and France Unite Around Nukes
Links for the day
Gemini Links 11/07/2025: Zorin OS and Scriptonite Updates
Links for the day
Links 11/07/2025: Hardware, Russia, and China
Links for the day
Links 11/07/2025: Intel Collapsing and Microsoft Resorts to Bribery to Push Slop Via Obligatory Education
Links for the day
The EFF Sided With the Team That Strangles Women and Tells Women to Kill Themselves
They say that apathy and inaction are a form of a "stance"
"Nat [Friedman] and [the Serial Strangler From Microsoft] Were Always Exceptionally Close," Says Former Housemate and Colleague
Now Alex (hiding behind another name when that suits him) not only attacks women but also people who merely report what he did to women
Exemplary List of Things That Are Not Artificial Intelligence or Even Intelligence
The "age of AI" or "era of AI" or "AI revolution" mostly boils down to rebranding, just like "the cloud"
New Letter From the European Patent Office Explains How the Office Plots to Grant Many Illegal Patents, a Self-Fulfilling Prophecy of 'Growth'
Open letter to Mr Rowan (VP1) and Mr Aledo Lopez (COO)
Abuse of Process
5RB is employing people who help violent men
What Microsoft's Nat Friedman and Microsoft Lunduke Have in Common
"Get in da car; No time to explain, loser"
Microsoft and IBM Don't Have Much of a Future (They Mostly Pretend at This Point)
IBM and Microsoft are in some ways alike but in many ways different
It's Not Just Twitter (or X.com) That's Dying, Microsoft's Equivalent is Dying Also
Unable to find a business model
GitHub Copilot Can Cause the Bankruptcy of GitHub to Come Sooner and GitHub to be Shut Down Just Like Skype
Some publicly available information suggests that even for each paid subscriber for plagiarism (LLM 'coding') GitHub Copilot still loses more money than it makes
Wayland is Bad for the Planet
If you use Wayland, it'll take you longer to accomplish tasks and you will consume more energy (or battery life)
Legitimising Those Who Sabotage You
Microsoft is a very malicious company
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, July 10, 2025
IRC logs for Thursday, July 10, 2025
On Microsoft Layoffs
we might be looking at about 60,000 Microsoft layoffs since 2023
EPO Management Already Breaks Its Own Promise (Lie) on "Bringing Teams Together"
This gut-punching move happened just 2 days ago
Gemini Links 11/07/2025: Occupation of 2025 and "Old Man Yells At Soundcloud"
Links for the day
Our Lawsuits Against the 'Cancel Mob' (Ringleaders) Helped Reduce Anti-Free Software Online Abuse
That's not to say that lawsuits are the best way to handle terrible people. But that can help.