Today I learned Turkey's Scientific and Technological Research Council has a subsidiary developing a GNU/Linux distro called Pardus, "redesigned to be used in accordance with the practices and habits of users in Turkey."
Slim.AI, via an early access program, has made available a version of its automated container security remediation platform that can now be more easily integrated within a DevOps workflow.
With the use of Kubernetes and cloud-native technologies, which are commonly used by enterprises today, McClellan is hopeful that it is now easier than it has been in the past to develop and operationalize machine learning workflows.
All systems need a plan for data backup and recovery. It doesn’t matter if your application’s running on the cloud, on-premises or in a refrigerator at the edge of a network—it will likely need to store and access data somewhere. But in our highly connected, distributed world, there’s always the chance for a ransomware attack or misconfiguration to put this persistent storage at risk. Therefore, every instance requires a plan to protect and restore data when something goes haywire.
In the thirty-fourth episode of the WordPress Briefing, hear WordPress Executive Director Josepha Haden Chomphosy discuss planning for the major release and how you can get involved in the WordPress 6.1 release cycle!
HP has released a Linux notebook! No, we aren't in an alternate dimension, the Dev One notebook from HP is here, and it's powered by Pop!_OS! Coverage of the HP Dev One continues in this follow-up video to the original, where we'll explore this Linux-powered computer even further. T
Converseen is an open source and cross-platform batch image processor that allows you to convert, resize, rotate and flip an infinite number of images with a mouse click.
You might underestimate your Chromebook's capability to provide quality apps. The main reason for this is its lower hardware specs. However, it offers many features and supports productivity, communication, graphic design, social, and many other applications.
For graphic designing tasks such as vector editing and drawing, Chromebook provides you with plenty of useful options. And as these apps are mostly lightweight, you can easily install them through the Chrome Web Store without worrying about storage and resources.
So, let’s explore some of the best vector editors and drawing apps available for your Chromebook that you can download and use for free.
Bitwarden is a great option for those looking to take advantage of strong and unique passwords. Bitwarden offers all the standard features that make using a password manager a must-have for modern convenience and a heightened level of security. Even better, Bitwarden has applications for most platforms, including Linux, macOS, Windows, Android and iOS.
But the fun doesn’t stop with the basic desktop and mobile apps. Bitwarden also offers a browser plugin for most web browsers. This add-on makes it even easier to use the service, as it exists in your browser toolbar, waiting to help fill in the many credentials necessary for your daily grind.
At this point, you’re probably thinking: “Hold on, my web browser already does that for me.” Yes, it does. But you should probably think twice about allowing a web browser, known for vulnerabilities, to save your passwords. Whenever I’m asked about this issue, I always suggest that users never let a browser save a password. Instead, make use of a password manager and its browser plugin. By going this route, the likelihood someone could steal your passwords from a browser vault is considerably less, while still keeping things efficient and convenient.
In this guide, we will see what is Docker, how to install Docker Engine in Ubuntu Linux. In addition, we will also see how to install Docker compose, a tool to define and run multi-container Docker applications.
This guide has been officially tested on Ubuntu 22.04 LTS. However, it should work on older versions such as 20.04 LTS, and 18.04 LTS. For better security and stability, I recommend you to use the most recent Ubuntu 22.04 LTS version.
If you’re a web developer looking to create cross-platform mobile apps, then you should check out the Ionic Framework. Ionic Framework is used by over 4 million developers worldwide, making it the fastest-growing app development framework on the market. This open-source development platform allows you to create apps with HTML, CSS, and JavaScript, which can then be deployed on iOS, Android, and Windows Phone devices.
In this article, we’ll show you how to install the Ionic Framework on Ubuntu 22.04 using Node.js and NPM. Let’s get started!
As per the official website, Metagoofil is an information-gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,docx,pptx,xlsx) belonging to a target company.
Metagoofil will perform a search in Google to identify and download the documents to local disk and then will extract the metadata with different libraries like Hachoir, PdfMiner?, and others. With the results, it will generate a report with usernames, software versions, and servers or machine names that will help Penetration testers in the information-gathering phase.
This tutorial will be helpful for beginners to install Clapper media player on Ubuntu 22.04 LTS, Ubuntu 20.04 LTS, Linux Mint 20.3, AlmaLinux 9, Rocky Linux 8, and Fedora 36
In this tutorial you will learn how to create shortcuts or edit the already existing shortcuts on Linux Mint.
Shortcuts are helpful commands when you need to launch an software, take a screenshot or do something custom when you press any key combination. For example, if you press CTRL + ALT + T it would open the terminal on Linux.
Let's say you want to create a shortcut to be able to take a screenshot via your preferred keys, without having to use the print screen button or if your keyboard doesn't have one then creating an shortcut to do this thing would be necessary to do.
Hello friends, Welcome again!
We are studying of Penetration Testing Tutorial This article will cover how to download, install, activate, and access the web interface of Nessus on Kali Linux.
This post is origin How to Install Nessus on Kali Linux Move forward and start your tutorial. In a previous post you have completed Nessus Vulnerability Scanner Tutorial If you did not read it, please read now.
Mounting disk in Linux is actually a process to access a partitioned and formatted hard disk in the system. Whatever data is stored in a hard disk can only be accessed or used after mounting that hard disk in Linux Operating System. As we know when a pen drive is inserted in the USB slot of Windows system, the pen drive will automatically be available for access in the windows home folder. This is only due to “plug and play” options installed in Windows operating system. But, in Linux, inserting or connecting a hard disk in the system, is not enough to access that disk. Before accessing it, the hard disk has to partitioned, formatted followed by mounting it in the system. However, the hard disk can be mounted with any of the single or multiple folder of Linux system. There is no restriction of mounting location of that hard disk. The following diagram is explained the basic difference between inserting a hard disk in Linux and Windows operating system.
MongoDB is a free, open-source, and one of the most popular NoSQL database systems. It stores data in JSON rather than the usual table style method found in SQL databases. In this tutorial, we will show you how to install MongoDB on Ubuntu 22.04.
In this tutorial, we are going to explore how to install go on Ubuntu 22.04
Golang is an open-source programming language that is easy to learn and use. It is built-in concurrency and has a robust standard library. It is reliable, builds fast, and efficient software that scales fast.
Its concurrency mechanisms make it easy to write programs that get the most out of multicore and networked machines, while its novel-type systems enable flexible and modular program constructions.
Go compiles quickly to machine code and has the convenience of garbage collection and the power of run-time reflection.
In this guide, we are going to learn how to install golang 1.19beta on Ubuntu 22.04.
Go 1.19beta1 is not yet released. There is so much work in progress with all the documentation.
Ansible Molecule is a project to help you test your ansible roles. I’m using molecule for automatically testing the ansible roles of geekoops.
In this tutorial, we will show you how to install MongoDB on AlmaLinux 9. For those of you who didn’t know, MongoDB is a high-performance, highly scalable document-oriented NoSQL database. Unlike in SQL databases where data is stored in rows and columns inside tables, in MongoDB, data is structured in JSON-like format inside records which are referred to as documents. The open-source attribute of MongoDB as a database software makes it an ideal candidate for almost any database-related project.
This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the MongoDB NoSQL database on AlmaLinux 9. You can follow the same instructions for CentOS and Rocky Linux.
Ghost is a very popular open-source content management system. Started as an alternative to WordPress and it went on to become an alternative to Substack by focusing on membership and newsletter.
The creators of Ghost offer managed Pro hosting but it may not fit everyone's budget.
Alternatively, you can self-host it on your own cloud servers. On Linux handbook, we already have a guide on deploying Ghost with Docker in a reverse proxy setup.
Instead of Ngnix reverse proxy, you can also use another software called Traefik with Docker. It is a popular open-source cloud-native application proxy, API Gateway, Edge-router, and more.
I use Traefik to secure my websites using an SSL certificate obtained from Let's Encrypt. Once deployed, Traefik can automatically manage your certificates and their renewals.
In this tutorial, I'll share the necessary steps for deploying a Ghost blog with Docker and Traefik.
After three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release.
Here's an update on recent KDE application development on KDE.news...
I have uploaded EasyOS version 4.2.1, but only the "delta" file, which is just 338KB.
Accessibility on a Linux desktop is not one of the strongest points to highlight. However, GNOME, one of the best desktop environments, has managed to do better comparatively (I think).
In a blog post by Christian Fredrik Schaller (Director for Desktop/Graphics, Red Hat), he mentions that they are making serious efforts to improve accessibility.
Starting with Red Hat hiring Lukas Tyrychtr, who is a blind software engineer to lead the effort in improving Red Hat Enterprise Linux, and Fedora Workstation in terms of accessibility.
The metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world.
Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility.
Revopoint MINI is a 3D scanner using high-resolution blue light that’s designed for smaller objects such as figurines, coins, jewelry, etc… that require a higher level of detail achievable thanks to the promised 0.02mm precision.
[...]
Sadly that means no Linux support, even though the (POP 2) scanner itself runs Linux, but some people have managed to run the host software on Linux through Wine.
A blog post calling for a boycott of the well-known 7-Zip compression app is attracting some discussion on Reddit.
However, it seems criticism for Igor Pavlov and his FOSS compression app 7-Zip is somewhat overblown and may reflect the anti-Russian sentiment of the times.
7-Zip has been around since 1999 and in that two-decade span there have been more widely used Windows compression tools (WinZip and WinRAR, in particular) they are shareware, so try-before-you-buy versus free.
There's absolutely nothing wrong with the shareware model. It has been around longer than the modern FOSS ecosystem, and there are some excellent shareware tools. However, a lot of people aren't really trying before a potential purchase: they never intend to pay. And if that's the case, then you might as well use free software and avoid nag screens.
Let's dissect the critical points around 7-Zip. The blogger, identified only as Paul, claims that 7-Zip isn't really open source because the code isn't on "Github, Gitlab, nor any public code hosting". That is not a requirement of the open source definition. 7-Zip's source is available on Sourceforge and is licensed under the GNU Lesser GPL.
Kiwi TCMS is happy to announce that we have been awarded a "Best Website 2022" award by Reviewbox.es, scoring 36/40 on their evaluation. The review criteria can be found at https://www.reviewbox.es/los-mejores-sitios-web/.
When it comes to choosing between open-source software options, it can easily become confusing. Organizations often find that rushing the decision and using software that doesn’t work for them can be a costly mistake. Therefore, choosing the right open-source software for your projects is important.
Happy Friday, everyone --let's review the Apache community's activities from over the past week...
A new version of Mozilla Firefox is available to download, ahead of its form release on June 28.
Mozilla Firefox 102 sees the browser bake-in support for GeoClue on Linux desktops, improve the PDF appearance when using high contrast mode, and gain the ability display subtitles and captions in Picture-in-Picture when playing content from HBO Max, DailyMotion, Funimation, and a number of other video streaming sites.
A clutch of Linux-specific bug fixes include patches to resolve issues with Amazon password length appearance, reduce PDF rendering artefacts, and massage video distortion with H.264 when using VAAPI. Additionally, mesa/crocus is appended to the list of Intel Mesa drivers supported by the browser.
Mozilla Firefox 102 is available to download now. See what’s new and how to install the browser package.
For Linux users, Firefox 102 now support Geoclue if available for geolocation. The release also added subtitles and captions display in Picture-in-Picture (pop-out video) for more websites, including HBO Max, Funimation, Dailymotion, Tubi, Disney+ Hotstar, and SonyLIV.
For those boring with the drop-down download panel, that automatically opens every time you start a download. User may now right-click on the download icon (before Hamburger menu button), and un-check “Show Panel When Download Begins” to disable it.
Here at Mozilla, we are the first to admit the internet isn’t perfect, but we are also quick to point out that the internet is pretty darn magical. The internet opens up doors and opportunities, allows for people to connect with others, and lets everyone find where they belong — their corners of the internet. We all have an internet story worth sharing. In My Corner of the Internet, we talk with people about the online spaces they can’t get enough of, what we should save in Pocket to read later and what sites and forums shaped them.
 GnuCash is a personal and small business finance application, freely licensed under the GNU GPL and available for GNU/Linux, BSD, Solaris, Mac OS X and Microsoft Windows. It’s designed to be easy to use, yet powerful and flexible. GnuCash allows you to track your income and expenses, reconcile bank accounts, monitor stock portfolios and manage your small business finances. It is based on professional accounting principles to ensure balanced books and accurate reports.
GnuCash can keep track of your personal finances in as much detail as you prefer. If you are just starting out, use GnuCash to keep track of your checkbook. You may then decide to track cash as well as credit card purchases to better determine where your money is being spent. When you start investing, you can use GnuCash to help monitor your portfolio. Buying a vehicle or a home? GnuCash will help you plan the investment and track loan payments. If your financial records span the globe, GnuCash provides all the multiple-currency support you need.
Ecma International recently approved the 2022 standard of ECMAScript. There is something new in this edition that hasn’t been part of prior editions, but this isn’t a new programming feature.
In March of this year, Ecma International accepted a proposal led by Mozilla for a new alternative license. On June 22nd, the first requests to adopt this license were granted to TC39 and applied to the following documents: ECMA-262 (ECMAScript, the official name for JavaScript) and ECMA-402 (the Internationalization API for ECMAScript).
The ECMAScript specification is developed at Ecma International, while other web technologies like HTML and CSS are being developed at W3C. These institutions have different default license agreements, which creates two problems. First, having different licenses increases the overhead of legal review for participants. This can create a speed bump for contributing across different specifications. Second, the default ECMA license contains some restrictions against creating derivative works, in contrast to W3C. These provisions haven’t been a problem in practice, but they nevertheless don’t reflect how we think Open Source should work, especially for something as foundational as JavaScript. Mozilla wants to make it easy for everyone to participate in evolving the Web, so we took the initiative of introducing an alternative license for Ecma International specifications.
The previous major stable version was OpenSSL 1.1 and there is no 2.0 in the middle. The OpenSSL team decided to make an explicit jump in numbering to highlight that this new version included major structural, and more importantly, application programming interface (API) and application binary interface (ABI) changes compared to previous OpenSSL versions.
These changes affect applications that use the library in direct ways, sometimes by breaking compilation, and often in subtle ways by changing how the library behaves in some situations.
Due to these differences, changing from OpenSSL 1.1 to OpenSSL 3.0 is not a simple upgrade.
In the Linux ecosystem, OpenSSL is generally considered a core OS library. It is linked directly or indirectly by the majority of the packages of any distribution and this means that the distribution needs to be fully rebuilt to make such a transition.
The upcoming Godot 3.5 is now considered feature complete, and has received a lot of bugfixes and improvements over the past weeks thanks to all the testers and developers who reported and fixed issues. We are now at the Release Candidate stage, finalizing everything so that we can release 3.5-stable for all users.
At this stage we need people to test this release (and potential follow-up RCs) on as many codebases as possible, to make sure that we catch non-obvious regressions that might have gone unnoticed until now. If you run into any issue, please make sure to report it on GitHub so that we can know about it and fix it!
For this RC 5, we decided to include two fairly important Android PRs which had recently been finalized, as they are important to fulfill Google Play requirements for the near future: full Android scoped storage support, and upgrading the buildsystem from NDK r21 to NDK r23. They're fairly big changes to include at RC stage but we think it's really worth having in 3.5, so we'll need your help to test Android export templates in this build and confirm that they work as expected.
The first in-person event in a long time happened last week. Some of the videos are already available for viewing, others may still come (overview, /r/rakulang comments).
[...]
Finally, Corona is still a thing, as at least one attendee tested positive for Corona after the conference. So please continue to look out for your health!
As some of you may know, on May 4th Jack Huey opened a PR to stabilize an initial version of generic associated types. The current version is at best an MVP: the compiler support is limited, resulting in unnecessary errors, and the syntax is limited, making code that uses GATs much more verbose than I’d like. Nonetheless, I’m super excited, since GATs unlock a lot of interesting use cases, and we can continue to smooth out the rough edges over time. However, folks on the thread have raised some strong concerns about GAT stabilization, including asking whether GATs are worth including in the language at all. The fear is that they make Rust the language too complex, and that it would be better to just use them as an internal building block for other, more accessible features (like async functions and [return position impl trait in traits][RPITIT]). In response to this concern, a number of people have posted about how they are using GATs. I recently took some time to deep dive into these comments and to write about some of the patterns that I found there, including a pattern I am calling the “many modes” pattern, which comes from the chumsky parser combinator library. I posted about this pattern on the thread, but I thought I would cross-post my write-up here to the blog as well, because I think it’s of general interest.
The Rust for Linux project aims to bring a new system programming language into the Linux kernel. Rust has a key property that makes it very interesting to consider as the second language in the kernel: it guarantees no undefined behavior takes place (as long as unsafe code is sound), particularly in terms of memory management. This includes no use-after-free issues, no double frees, no data races, etc.
Prossimo is an Internet Security Research Group (ISRG) project. Its goal is to improve the Internet's security-sensitive software infrastructure by addressing memory safety issues in C and C++ code via the use of memory safe languages. One critical example of such infrastructure is the Linux kernel, used in most servers in the world as well as in billions of devices.
Miguel Ojeda has posted an update on the Rust-for-Linux project.
Microsoft says that they love Linux and open-source, but we still do not have native support for a lot of its products on Linux.
At last week’’s Open Source Summit North America, Robin Ginn, Executive Director of the OpenJS Foundation, relayed a principle her mentor taught: “1+1=3”. No, this isn’t ‘new math,’ it is demonstrating the principle that, working together, we are more impactful than working apart. Or, as my wife and I say all of the time, teamwork makes the dream work.
This principle is really at the core of open source technology. Turns out it is also how I look at the Open Programmable Infrastructure project.
CISA has added eight new vulnerabilities to itsââ¬Â¯Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added vulnerabilities in the catalog, click on the arrow in the "Date Added to Catalog" column, which will sort by descending dates.ââ¬Â¯Ã¢â¬Â¯Ã¢â¬Â¯Ã¢â¬Â¯
ShiftLeft on Thursday released some rare positive news on the AppSec front by reporting that based on millions of scans on its customers, they found a 97% reduction in open source software (OSS) vulnerabilities.
The researchers said by identifying and prioritizing OSS vulnerabilities that are actually attackable, AppSec teams and developers can now fix what matters, ship code faster, and improve security with fewer, better fixes.
In other significant findings, ShiftLeft’s report said by focusing on attackability and reduced false positives, developers can make fixes faster and reduce mean-time-to-remediate (MTTR). ShiftLeft reported a 37% year-over-year reduction in MTTR, which they say improves overall security posture and reduces the likelihood of attacks by reducing the time that vulnerabilities are exposed.
Security updates have been issued by Debian (openssl), Fedora (dotnet6.0, mediawiki, and python2.7), Mageia (389-ds-base, chromium-browser-stable, exo, and libtiff), Oracle (httpd:2.4 and microcode_ctl), SUSE (dbus-broker, drbd, kernel, liblouis, mariadb, openssl, openssl-1_1, openSUSE kernel modules, oracleasm, php7, php72, python39, salt, and wdiff), and Ubuntu (linux, linux-hwe, mozjs91, and vim).
Adopting cloud computing services has helped many enterprises reduce costs, accelerate deployments, and develop at a larger scale. Today many businesses use cloud services as an alternative to traditional practices.
Access Now supports cybersecurity experts from around the world who are calling on the Indian Computer Emergency Response Team (CERT-In) to defer implementation of the contentious new Directions issued in April. The letter states the Directions will have a negative impact on cybersecurity and privacy, and public consultation must be undertaken to ensure that the views of all stakeholders, including subject matter experts, are taken into account.
“The Directions, as they stand, will have the unintended consequence of weakening cyber security, and its crucial component, online privacy,” the letter states, “we are cognisant of the need for a framework to govern cyber incident reporting, but the reporting timelines and excessive data retention mandates prescribed in the Directions, will have negative implications in practice and impede effectiveness, while endangering online privacy and security.”
In this panel discussion brought to you by Unlimited Hangout and OffGuardian, several panelists discuss the nature of the East-West dichotomy and whether the rise of Eurasia and the fall of the West were engineered by certain factions of global elites and for what purpose.
ublic Knowledge has the pleasure of inviting you to a multifaceted program focused on training and developing the next generation of tech policy experts and public interest advocates that reflects the diversity of voices and experiences in our society.
Please join us for our monthly Career Breakfast Series. This event is designed for students & recent graduates to learn about tech policy and public interest work, careers, and its community. This month you will have the opportunity of having a great conversation with Professor Laura Moy.
Staff members of the EPO have little confidence in the top management. They don’t think there is a clear and coherent strategy, there are big concerns about quality and also about the increasing work load. This is shown by the fifth Technologia Survey, the results of which have been shared with staff last week.
The survey, which was commissioned by trade union SUEPO, reveals deep divisions between management and staff. It was published just ahead of the meeting of the Administrative Council, 29 and 30 June 2022, in which a decision about the re-appointment of António Campines as EPO president for a second term until 2028 is on the agenda.
One sign of the lack of trust between staff and management is the fact that the Technologia survey could be held among SUEPO members only and those among EPO staff who actively opted in, since president Campinos refused SUEPO to use EPO emails*.
It has now been ten days since I first showed symptoms of COVID-19, and I've been cleared by a doctor to end my quarantine. Dealing with the symptoms itself was not so bad: the worst of it for me was a one-day fever and a lingering fatigue that makes exercise a little more difficult. The quarantine was much harder for me to handle; I succumb to cabin fever very quickly.
I decided to compile a list of interesting stuff I found on the web this week
This is a wordlog for the SpellBinding puzzle (in which you construct words using the specified letters; each word must contain the anchor letter).
Looking at the communist side, I sometimes see climate obstructionism too, opposing any plan that doesn’t also solve humanity’s millenia-old (albeit amplified in the industrial age) inequality issues. There was this anti geoengineering site that made the rounds a few months back that mixed some very good points vs some of the worst and least thought-through geoengineering proposals with a foundational opposition to all change that didn’t address inequality.
[...]
Don’t get me wrong, I’m not calling for anti-communism either or for capitalism. You know I rant and rave against that dumdumdadadadum on the daily. All I’m saying is that for me, the priority is pretty darn stark right now and it’s called Earth.
Gopher is OK, but it's an awkward protocol to write for. It has its quirks, to say the least. I do, however, particularly like seeing gopher pages that are left-and-right aligned. There's something just so neat about them.
I had been working on a Perl script called "nofer" ("no gopher") to work in conjunction with inetd on FreeBSD. It serves gmi pages as gopher pages, so if you have a Gemini capscule, you should be pretty much good to go. It is actually a shame that gopher has a weird layout. With the benefit of hindsight, we didn't really w