Are treaties being burned in Hell?
Summary: The European Patent Convention (EPC) is constantly being violated by the EPO‘s “f***ing president” (in his own words) António Campinos; why doesn’t the European Commission step in to intervene?
Yesterday:
The hypocrisy of these people never ceases to astound
This is considered “normal” when Microsoft gives money to the Linux Foundation
Summary: Linux Foundation staff does not use Open Source, does not understand Open Source, and does not wish to adopt it; these people are just milking (or diluting) brands for a living…
Series parts:
In this part we take a look at Razik Menidjel’s Faustian pact with the EPOnian “deep state” and try to gauge the direction in which this may be leading.
Summary: António Campinos et al propelled Razik Menidjel to a position of greater authority, but what were the strings attached to such a promotion?
In his literary works the aspiring belletrist Razik Menidjel often refers to the writings of Johann Wolfgang von Goethe, regarded by many as one of the most influential writers in the German language.
For example, the publisher’s blurb for the play “Les Premiers Pas” contains a reference to Goethe’s magnum opus “Faust”:
“The Other is the Evil himself, the one we already saw at work in Faust, and who will try once again to take possession of the real world, thanks to Michel’s weakness and ambition.”
“Les Premiers Pas” was published in 2000, not long after the author had joined the EPO as an examiner. During the intervening years it would appear that Razik’s own “vaulting ambition” has led him to conclude a Faustian pact with the EPOnian “deep state”.
“In his role as COO, Razik has turned out to be a zealous and untiring advocate of the EPO’s managerial cult of “Excellence”. These days he is often to be found subjecting his foot-soldiers to never-ending harangues about “Quality” or whatever the latest managerial mantra-of-the-month happens to be.”In any event, following his appointment as COO ICT back in December 2019, he has shown himself to be adept at drinking deeply from the corporate “Kool-Aid”.
In particular, he has turned out to be a zealous and untiring advocate of the EPO’s managerial cult of “Excellence” and he is often to be found subjecting his foot-soldiers to never-ending harangues about “Quality” or whatever the latest managerial mantra-of-the-month happens to be.
In his role as COO, Razik has turned out to be a zealous and untiring advocate of the EPO’s managerial cult of “Excellence”. These days he is often to be found subjecting his foot-soldiers to never-ending harangues about “Quality” or whatever the latest managerial mantra-of-the-month happens to be.
Irrespective of whatever opinion one might have about this Faustian pact, it seems to be a well-remunerated contract.
“Irrespective of whatever opinion one might have about this Faustian pact, it seems to be a well-remunerated contract.”Razik’s net monthly income as a EPO COO is estimated to be around € 20,000, including various “allowances” available to EPO employees but not counting whatever additional (tax-free) managerial bonus that he might fortunate enough to pick up along the way.
A tip-off from well-informed Greek sources led to the discovery of official public documents which reveal that in 2018 Razik and his wife Nicola applied for planning permission for the construction of a luxurious holiday residence on the sunny Mediterranean island of Crete. [PDF]
In 2018 Razik (l.) and his wife Nicola Kipper (r.) submitted a planning application for the construction of a luxurious holiday residence on the sunny Mediterranean island of Crete.
From the application documents it emerges that this holiday domicile worthy of an EPO COO was to be built on a 1500 m² site in the municipality of Mariou, a picturesque mountain village in Rethymno Prefecture in the south of Crete. The planning permission was granted in April 2018 so it seems safe to assume that the holiday home has been built in the meantime.
The planning application from 2018 shows plans for a luxurious holiday residence on a 1500 m² site in the municipality of Mariou (Rethymno).
The approximate latitude and longitude coordinates for the site are, respectively, 35.200263 and 24.419400. This places it in a central location in Mariou close to the holiday accommodation Villa Mariou.
“Of course, it goes without saying that life at the EPO is not just about gourmet wining and dining and holidays in the Mediterranean sun. In addition to the generous material rewards, any Faustian pact also involves a price to be paid.”As far as can be determined from local sources, the site is on elevated terrain overlooking the main provincial road which connects the mountain villages of Asomatos and Myrthios and runs through Mariou. The road is known as Eparchiaki Odos (“Provincial Road”) Dichalostratou-Leukogias.
This location offers fantastic panoramic views of the surrounding landscape, in particular the southern coastline of Crete and the Libyan Sea.
View along the provincial road which runs through Mariou, the mountain village where Razik’s holiday home is located.
The site is on elevated terrain overlooking the Provincial Road Dichalostratou-Leukogias and it offers fantastic panoramic views of the surrounding landscape.
Razik’s holiday home is located just a stone’s throw away from the Taverne Mariou, a traditional Cretan restaurant, which offers spectacular views from its terrace and is reputed to serve great food. It is rumoured to be one of the EPO COO’s favourite eateries when he is enjoying the sunny side of life at his Mediterranean bolt-hole.
The Taverne Mariou which offers spectacular views from its terrace is rumoured to be one of Razik’s favorite eateries when he is enjoying la dolce vita at his Mediterranean bolt-hole.
Of course, it goes without saying that life at the EPO is not just about gourmet wining and dining and holidays in the Mediterranean sun. In addition to the generous material rewards, any Faustian pact also involves a price to be paid.
“In the next part we will turn our attention to a leaked E-mail which provides some clues as to what those “goods” might be in the present case.”There is plenty of work to be done back at “corporate headquarters” and, when duty calls, the “Algerian Skirmisher” is expected to “deliver the goods” demanded by his commanding officers.
In the next part we will turn our attention to a leaked E-mail which provides some clues as to what those “goods” might be in the present case. █
It’s time once again for The Weekender. This is our departure into the world of hedonism, random topic excursions, whimsy and (hopefully) knowledge. Thanks for listening and, if you happen to get a chance, feel free to call us or e-mail and send us some feedback. Tell us how we’re doing. We’d love to hear from you.
There was a time where Google relied on a fork of Ubuntu LTS called Goobuntu but those days are long gone and now they rely on gLinux Rodete a rolling release fork of Debian based on Debian testing of all things.
In this video, we are looking at how to install WPS Office 2019 on Pop!_OS 22.04.
Stephano Cetola, Director of Technical Programs for RISC-V International, returns to bring Doc Searls and Jonathan Bennett up to speed on the many new developments in and around RISC-V’s radically open and promising CPU architecture.
Hello, Twinimation Studios is back with a brand new course and a brand new website! If you love old timey, Fleischer’s style animations like Betty Boop and Koko the Clown, you can learn how to imitate these styles to create your own rubberhose work of art! Introducing Twinimation’s newest 22 lesson, 6 hour course! You will see the process of replicating rubberhose film through music, animation method, character design, and post production templates.
Once again, we’re using Krita for our film lesson, but we’re going even more in depth in this course. We’ll be showing off more of Krita’s features, such as how to color using the paint bucket tool and the benefits of changing frame colors. Additionally, in this course, you’ll see Krita not only used for animation, but also illustration as we design and color background environments.
Get started crafting your own brush presets! Join Ramon for the first of a set of comprehensive videos!
At the 2022 sambaXP conference, Jeremy Allison gave a talk titled “The UNIX Filesystem API is profoundly broken: What to do about it?”. LWN regulars may recall hints of these talks in a recent comment thread. He started his talk with the problems that symbolic links (“symlinks”) cause for application developers, then discussed how the solutions to the problems posed by symlinks led to substantial increases in the complexity of the APIs involved in working with pathnames.
Allison explained that hard links were the first “interesting addition” to the original Unix filesystem API; unlike symlinks, though, they are not dangerous, and are, in fact, easy to use. A hard link is simply the connection between a directory entry and the inode for the file (or directory) to which that entry refers. Unix systems allow multiple links to any file, but require that the inode and directory entries all reside on the same filesystem.
By contrast, symlinks contain another path as data, and the kernel transparently operates on the file at that path when system calls like open() or chown() are called on the symlink. This seemingly innocuous feature led to the addition of incredible amounts of complexity in the effort to fulfill the needs of programs that need to be aware of whether a pathname contains a symlink or not. Such programs include archival programs like tar, file synchronization and transfer programs such as rsync, network filesystem servers like Samba, and many more that suffer security problems as a result of not giving sufficient attention to symlinks in pathnames.
The variety of security problems resulting from symlinks can be seen in a search of CVE entries, which gave Allison 1,361 results when he ran it. These include vulnerabilities that facilitate information disclosure, privilege escalation, and arbitrary file manipulation including deletion, among other attacks. Without discussing any specific CVE in detail, he gave an example of the kind of security problem that can result from symlink-related vulnerabilities.
An application running as root may try to check that /data/mydir is a regular directory (not a symlink) before opening the file /data/mydir/passwd. In between the time the program does the directory check and the file open, an attacker could replace the mydir directory with a symlink to /etc, and now the file opened is, unexpectedly, /etc/passwd. This is a kind of race condition known as a time-of-check-to-time-of-use (TOCTOU) race.
Once upon a time, a simple stack overflow was enough to mount a code-injection attack on a running system. In modern systems, though, stacks are not executable and, as a result, simple overflow-based attacks are no longer possible. In response, attackers have shifted to control-flow attacks that make use of the code already present in the target system. Hardware vendors have added a number of features intended to thwart control-flow attacks; some of these features have better support than others in the Linux kernel.
Control-flow integrity (CFI) is a set of techniques intended to prevent control-flow attacks, or at least to reduce the ability of an attacker to hijack the program’s control flow. The general idea behind CFI is to label sources and destinations of indirect jumps (such as calls, branches, and return instructions) and verify at run time that the actual jump target matches the label. CFI can be implemented entirely in software, but there are also several hardware mechanisms from different vendors that assist in CFI implementation.
The schedule for the upcoming Embedded Linux Conference Europe 2022 has been published recently.
Bootlin CEO Thomas Petazzoni is again a member of the program committee for this edition of ELCE, and has helped with other members of this committee in reviewing and selecting the numerous talk submissions that have been received.
Directories on Linux let you group files in distinct, separate collections. The downside is it becomes tedious moving from directory to directory to perform a repetitive task. Here’s how to automate that.
How do you update your Ubuntu system in the command line? You use the apt update (to refresh the package cache) and apt upgrade commands.
Back in 2020, I wrote this article about using DKIM to sign outgoing debian.org mail. This worked well for me for a while: outgoing mail was signed with DKIM and somehow was delivered. Maybe. Who knows.
But now we have a relay server which makes this kind of moot. So I have changed my configuration to use that relay instead of sending email on my own. It seems more reliable that mail seems to be coming from a real debian.org machine, so I’m hoping this will have better reputation than my current setup.
In this tutorial, we are going to explain in step-by-step detail how to install Laravel on the latest Ubuntu 22.04 distribution.
Laravel is an open-source PHP framework developed for faster implementation and development of web applications along with many built-in features and many libraries. Laravel framework is based on Symfony and is following the MVC architectural pattern. The framework is created by Taylor Otwell and its source code is hosted on GitHub.
Installing Laravel on Ubuntu 22.04 is a very easy and straightforward process with the Composer package manager that can take up to 10 minutes. Let’s get this working!
This comprehensive guide explains what is Docker Desktop and how to install Docker Desktop in Linux and how to use Docker Desktop to create and manage Docker containers in Linux.
Installing Apache requires the installation of a complete LAMP package (Linux, Apache, MySQL and, PHP). To do development, users require a complete set of these open-source software and a locally set up machine before they can host their websites to test it out. We will go through the complete installation of the LAMP stack on Linux Mint 20.
“If you have installed CentOS Stream 9 on your computer and have an NVIDIA GPU installed on your computer, installing the NVIDIA GPU drivers on CentOS Stream 9 is the first thing you want to do.
In this article, I will show you how to install NVIDIA GPU drivers on CentOS Stream 9. So, let’s get started.”
The Escapists 2 is a strategy RPG developed by Toof Studios and published by Team17. Here’s how to play The Escapists 2 on Linux. Getting The Escapists 2 working on Linux The Escapists 2 works just fine on Linux out of the box, as it is a native game.
If you already tried to package ROS 2 Foxy applications into snaps, you might have encountered the following error regarding shared memory:
[RTPS_MSG_OUT Error] Domain name: fastrtps -> Function compute_per_allocation_extra_size [RTPS_TRANSPORT_SHM Error] Failed to create segment bed1660b134d4b19: Permission denied -> Function compute_per_allocation_extra_size [RTPS_MSG_OUT Error] Permission denied -> Function initThis log is stating that FastDDS (formerly known as FastRTPS) couldn’t create a file for the shared memory mechanism due to denied permission. Fortunately, FastDDS is smart enough to fallback to a non-shared memory-based option, allowing your program to run just fine.
In this post, we will review the shared memory mechanism in ROS 2, explain why this error is happening in snaps and propose different solutions to tackle it in strictly confined snaps. We therefore assume that you are familiar with both ROS 2 and snaps. If not, have a look at either (or both) the ROS 2 documentation and the snap landing page.
When working with git it is sometimes necessary to rename a git branch.
Nextcloud is a powerful productivity platform that gives you access to some amazing features, such as collaborative editing, cloud file sync, private audio/video chat, email, calendar, and more! Best of all, Nextcloud is under your control and is completely customizable. In this article, we’re going to be setting up our very own Nextcloud server on Linode. Alternatively, you can also spin up a Nextcloud server by utilizing the Linode marketplace, which you can use to set up Nextcloud in a single click. However, this article will walk you through the manual installation method. While this method has more steps, by the end you’d have built your very own Nextcloud server from scratch, which will be not only a valuable learning experience – you’ll become intimately familiar with the process of setting up Nextcloud. Let’s get started!
In order to install Nextcloud, we’ll need a Linux instance to install it onto. That’s the easy part – there’s no shortage of Linux on Linode, so what we’ll do in order to get started, is create a brand-new Ubuntu 20.04 Linode instance to serve as our base. Many of the commands we’ll be using have changed since Ubuntu 20.04, so while you might be tempted to start with a newer instance, these commands were all tested on Ubuntu 20.04. And considering that Ubuntu 20.04 is supported until April of 2025, it’s not a bad choice at all.
Today we are looking at how to install Sonic the Hedgehog Time Twisted on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.
In this guide, we will show you how to install qView on Ubuntu systems.
qview is an image viewer for viewing, No toolbars or distractions—pure space efficiency.
qView is a free, open-source image viewer designed from the very start to be as visually minimal and space efficient as possible. No cluttered interface, just your image and a titlebar.
In this guide, we will show you how to install Waterfox Browser on Ubuntu systems.
Waterfox is an open-source web browser for x64, ARM64, and PPC64LE systems. It is intended to be ethical and (in Waterfox Classic) maintain support for legacy extensions dropped by Firefox, from which it is forked.
There are official releases for Windows (including a portable version), macOS, Linux and Android in two versions: Classic (Year.Month) and Current (G.x.x.x).
Waterfox is based on Firefox (and uses Firefox’s engine) and is compiled using various compilers and using Intel’s Math Kernel Library, Streaming SIMD Extensions 3 and Advanced Vector Extensions. Linux builds are built with Clang on all architectures other than PPC64LE. It is compatible with extensions written for Mozilla Firefox, Google Chrome and Opera.
In this guide, we will show you how to install Krita on Ubuntu systems.
Krita is a free and open-source raster graphics editor designed primarily for digital painting and 2D animation. The software runs on Windows, macOS, Linux, Android, and Chrome OS, and features an OpenGL-accelerated canvas, colour management support, an advanced brush engine, non-destructive layers and masks, group-based layer management, vector artwork support, and switchable customization profiles.
Chromium is an open source web browser that you can use to browse the internet on your computer, a lot of modern browsers nowadays use Chromium’s source code on their browsers. For example: Google Chrome is based on Chromium, the difference between Chromium and Chrome is that Chromium is open source while Chrome it’s not.
If you want to develop or understand how a web browser works then chromium is the right choice to use for your projects as it is open source.
In this tutorial you will learn how to install Chromium web browser on Linux Mint.
Portmaster isn’t just a cross-platform network monitor — it’s also a very powerful security tool that can help to lock down your desktops and block things like ads, trackers and malware. I’ve been using Portmaster on my primary Linux desktop and I can attest to its ability to block incoming traffic.
I recently had an incident when, for whatever reason (probably because I was feeling lazy and didn’t want to make the trek to my office at the end of the house), I had to SSH into my desktop from another machine on the LAN. I’d forgotten Portmaster was running, and I hadn’t yet made a rule to allow that particular IP address through. No matter what I tried, I couldn’t get in. But after I added the allow rule, entrance through the required port was permitted and all was well.
Network File System has been around for a very long time and makes for a simple-to-use directory sharing system within your LAN. With this in place, users gain access to remote data as though it was on their local system.
One of the primary reasons why you might choose NFS over Samba is because NFS is much faster and more reliable when dealing with small- to mid-sized files. SMB offers better performance for larger files. In the end, a combination of the two would cover pretty much all of your basis for directory access across a LAN.
If you are a programmer, chances are you might already be familiar with the nuances and capabilities of Visual Studio Code.
Between 2022-07-14 and 2022-07-20 there were 23 New Steam games released with Native Linux clients. For reference, during the same time, there were 251 games released for Windows on Steam, so the Linux versions represent about 9.2 % of total released titles. Here’s a quick pick of the most interesting ones…
In eight testimonials, Cartesi delivers the first proof that it can empower millions of new startups and their developers to use The Blockchain OS, bringing Linux applications to the forefront of the Web3 revolution.
The last couple of days, have been working on a 32-bit Dunfell-series. Did a complete recompile in OE, for a i686 CPU target, compiled a 5.15.55 kernel, got it to boot on my old circa-2005 Acer laptop — or rather, it started to boot.
At the switch_root, got a kernel panic — the famous “tried to kill init” message. Should be fixable, but I can see this soaking up another week, and it is fragmenting my time too much. There are already lots of issues with the 64-bit version 4.2.7, so decided to get back on track, just do the one thing.
Although publicity is good, there is also a downside. It means more people will be trying Easy, and quite likely finding faults. Many of those people might not be aware that Easy is an experimental distribution, and almost every part of it is a work-in-progress.
Then there’s the small package repository, and some packages don’t work. Probably, when Easy Bookworm comes out, with access to the large Debian package repository, users who want lots of packages will be satisfied. But, that is probably a couple of months away.
Members of openSUSE had a visitor for a recent Work Group (WG) session that provided the community an update from one of the leaders focusing on the development of the next generation distribution.
SUSE and the openSUSE community have a steering committee and several Work Groups (WG) collectively innovating what is being referred to as the Adaptable Linux Platform (ALP).
SUSE’s Frederic Crozat, who is one of ALP Architects and part of the ALP steering committee, joined in the exchange of ideas and opinions as well as provided some insight to the group about moving technical decisions forward.
The vision is to take step beyond of what SUSE does with modules like in SUSE LInux Enterprise (SLE) 15. This is not really seen on the openSUSE side. On the SLE side, it’s a bit different, but the point is to be more flexible and agile with development. The way to get there is not yet fully decided, but one thing that is certain is containerization is one of the easiest ways to ensure adaptability.
Kasm Technologies is collaborating with SUSE to release SUSE Linux Enterprise Server (SLES) and openSUSE images within the Kasm Workspaces Containerized Desktop Infrastructure® platform for streaming remote workspaces directly to your web browser. The technical collaboration between Kasm Technologies and SUSE includes research and development on cloud orchestration and open-source technology for streaming desktops and applications to the browser.
Rocky Linux 9.0, the latest version of the open source enterprise OS designed to be fully bug-for-bug compatible with Red Hat Enterprise Linux (RHEL), is now generally available. The update includes new security and networking features, and a new open source build system called Peridot.
Released July 14, Rocky Linux 9.0 has all of the build chain infrastructure tools for developers to pick up Rocky Linux or extend or reproduce the OS, should a developer want to do something independently of the community or any upstream supporting organisation.
A primary goal behind developing the new, cloud-native build system was assuring that new versions of Rocky can be released within one week of new RHEL version releases, project representatives said.
Linux distributions have changed quite a bit over the last 30 years, but the way that they package software has been relatively static. While the .deb and RPM formats (and others) have evolved with time, their current form would not be unrecognizable to their creators. Distributors are pushing for change, though. Both the Fedora and openSUSE projects are moving to reduce the role of the venerable RPM format and switch to Flatpak for much of their software distribution; some users are proving hard to convince that this is a good idea, though.
A traditional binary package from a distribution contains the program of interest, of course, along with any supplementary files that it needs. The package also carries metadata describing, among other things, which other packages must be installed for the program to work. The distribution’s package manager uses that dependency information to ensure that every package is properly installed.
The Flatpak format has been described as “just another distribution format” and, to an extent, it is true. A Flatpak package (or, simply, “a flatpak”) has everything that a .deb or RPM package would have, but there are some significant differences. Perhaps at the top of the list is the way that dependencies are handled. A traditional package will have a (possibly long) list indicating every other package that is needed; a Flatpak package, instead, will list a single “runtime” containing the base set of libraries against which the package is built. If there are libraries or other dependencies that do not appear in the runtime of choice, they are simply bundled with the application in its flatpak.
This arrangement has a certain appeal to packagers. The “runtime plus bundling” approach simplifies dependency management, and the ability to bundle patched versions of system or runtime libraries is called out as a Flatpak feature. A package built against a given runtime can be installed on any system that has that runtime installed, making it possible to build a single package that can be installed on multiple distributions. Distributors can thus use this format to make their lives easier; purveyors of proprietary packages also see some obvious charm in this idea.
In a sense, Flatpak has set out to solve many of the same problems that the ill-fated Linux Standard Base effort addressed many years ago.
CNC machines (both CNC mills and CNC routers) are very useful to makers. With them, you can fabricate custom wood, plastic, or metal parts to the exact dimensions that you define in a CAD (computer-aided design) model. But CNC routers are expensive and CNC mills capable of cutting metal are even pricier—to the point where they are out of the reach of most makers. However, if you have a 3D printer, time, and a modest budget, you can build Ivan Miranda’s CNC mill from scratch.
Miranda designed several CNC routers and mills over the years. Like those, this is possible to build using common materials and doesn’t require any special tools except a 3D printer. Its frame is a combination of sturdy, yet affordable, aluminum extrusion and 3D-printed joints. The various hardware, like linear rails, belts, and bearings, is similar to what you would find on a 3D printer. That keeps costs down and makes the parts easy to find.
Measurement tools, like calipers and micrometers, are just as important as your soldering iron and side cutters. But if you’re still using a measuring tape for long parts, you are subjecting yourself to unnecessary frustration. Digital measuring wheels let you easily measure almost infinite lengths by rolling the device along. There are wheels like these on the consumer market, but you can also follow along with AGBarber’s Instructables tutorial to build your own multi-function digital measuring wheel.
In addition to distance measurements, this wheel has two other functions. You can roll it around the circumference of a round object, like a pipe, and the device will automatically calculate the diameter. You can also spin the wheel and it will tell you the RPM. We’re not quite sure what the RPM function’s application would be, but we’re sure that someone has a use for it. The unit is about the size of a typical measuring tape and has a big battery for portable use.
In 2020, for the first time since the ’80s, vinyl records outsold CDs. Digital music — particularly streaming — outpaced both by a wide margin, but the popularity of vinyl records increased while the popularity of CDs decreased. That’s because the analog sound of vinyl adds a dimension that many find pleasing and because there is something appealing about the tangible act of putting on a record. In a fun twist, students at LDLC School in France came up with a new way to put a record on: by inserting the record cover instead of the vinyl.
Students Ibrahima, Scott, Antoine and Arthur came across an old Arduino project that their teacher, Jean Noël, created years ago. He converted a “slot-in” record player to accept record sleeves instead of vinyl. But it would still play the correct music, thanks to RFID. An RFID tag on the record sleeve would trigger an Arduino inside the record player to queue up the correct playlist on an SD card. The Arduino would then play the music through an Adafruit Music Maker MP3 shield connected to a 7W mono amplifier.
One of the most unique security features we offer at Purism is our anti-interdiction service. This is a premium add-on service that aims to help you detect attempts to tamper with your hardware in shipment, so you can have peace of mind that the hardware you receive is the same as when it left our custody. While we mostly have discussed anti-interdiction in the context of laptops (and you can read more about anti-interdiction options for the Librem 14 here) many people don’t realize that we also offer anti-interdiction for our Librem 5 and Librem 5 USA phones.
Over the last five decades or so, free and open-source software (FOSS) has gone from an almost unknown quantity available to only the most technically savvy to underpinning much of the infrastructure we rely on today. Much like software itself, FOSS is “eating the world”. But that has changed—is changing—the role of the maintainers of all of that code; when “critical” infrastructure uses code from a FOSS project, suddenly, and perhaps without warning, that code itself becomes critical. But many maintainers of that software are volunteers who did not set out to become beholden to the needs of large companies and organizations when they released their code, they were just scratching their itch—now lots of others are clamoring for theirs to be scratched as well.
The supply-chain security problem is clearly a serious one that needs to be addressed. The Log4j incident provides a recent example of how a security vulnerability in a fairly small component can ripple out across the internet by way of dependency chains. Some projects depended directly on Log4j, but many others became vulnerable because they were using some other library or package that depended on Log4j—directly or indirectly.
Some of the places where dependency chains are often lengthy, and thus more vulnerable to the intentional injection of malware, are various language-specific repositories of packages. Sites like the Python Package Index (PyPI) provide a huge palette of components that can be used by applications or other libraries. The pip tool that comes with Python will happily install PyPI packages along with all of their dependencies, recursively. Many other languages have similar repositories and tooling.
Good evening, gentle hackfolk. Last time we talked about heuristics for when you might want to compact a heap. Compacting garbage collection is nice and tidy and appeals to our orderly instincts, and it enables heap shrinking and reallocation of pages to large object spaces and it can reduce fragmentation: all very good things. But evacuation is more expensive than just marking objects in place, and so a production garbage collector will usually just mark objects in place, and only compact or evacuate when needed.
When I (in spite of knowing better) talk to ordinary people about what I do for a living and the project I work on, one of the details about it that people have the hardest time to comprehend, is the fact that I really and truly don’t know a lot about who uses my code. (Or where. Or what particular features they use.)
I work on curl full-time and we ship releases frequently. Users download the curl source code from us, build curl and put it to use. Most of “my” users never tell me or anyone else in the curl project that they use curl or libcurl. This is of course perfectly fine and I probably could not even handle the flood if every user would tell me.
This not-knowing is a most common situation for Open Source authors and projects. It is not unique for me.
The not knowing your users is otherwise unusual in a world of products and software, and quite frankly, sometimes it is an obstacle for us as well since we lack a good way to communicate with users about plans, changes or ideas. It also makes it really hard to estimate our own success and the always-recurring question: how many users do you have?
Weaveworks today says container images of its open source Flux version control software have now been downloaded more than one billion times. Flux is at the core of Weaveworks’ GitOps platform.
In addition, the company claims that its enterprise customer base doubled in the first half of 2022, which led to a corresponding increase in revenue for the same period.
Weaveworks CEO Alexis Richardson says as more organizations deploy fleets of Kubernetes clusters, it’s clear GitOps is emerging as the preferred method for deploying cloud-native applications based on microservices.
The Perl sort built-in is mostly (at least by me) called as sort LIST or sort BLOCK LIST. But there is a third way to call it: sort SUBROUTINE LIST, which actually appears first in the documentation.
This is not a blog entry about using the sort SUBROUTINE LIST form of sort. It is more about the need to be aware of this form when writing (or trying to write) the sort LIST form.
Consider the following situation: you have a subroutine foo() which returns an un-ordered list. You need that list sorted. Perl has a sort built-in, so your (or at least my) first reaction is to write my @sorted = sort foo();, run it, and then wonder why @sorted is empty.
Back in April, there was an interesting discussion on the python-ideas mailing list that started as a query about adding support for custom literals, a la C++, but branched off from there. Custom literals are frequently used for handling units and unit conversion in C++, so the Python discussion fairly quickly focused on that use case. While ideas about a possible feature were batted about, it does not seem like anything that is being pursued in earnest, at least at this point. But some of the facets of the problem are, perhaps surprisingly, more complex than might be guessed.
With every Python release, there are new modules being added and new and better ways of doing things get introduced.
Martin Heinz encourages Python developers to move on to a number of newer modules.
Analytical web applications were a task for seasoned developers that required knowledge of multiple programming languages and frameworks. Unfortunately, that’s no longer the case. Nowadays, you can make data visualization interfaces using pure Python.
Python provides various libraries that come with different features for data visualization. In addition, all these libraries come with additional features and can support multiple graphs.
We will discuss these libraries individually and plot some most commonly used graphs.
How much is a pinch of sand worth? Well, that all depends on what you do with it.
If you get someone to pull the silicon from the oxygen and make quasi-glassy plates from it, then you can etch transistors into circuits on that wafer, cut it up into discrete chips, and sell those chips for a whole lotta money. In the case of Taiwan Semiconductor Manufacturing Co, the world’s biggest and most successful foundry, in the second quarter of 2022, we are talking about $18.16 billion in revenues (up 36.3 percent) across nearly 3.8 million 12-inch silicon wafer equivalents (up only 10.1 percent). But most amazingly, TSMC brought $8.06 billion of that – a staggering 44.4 percent of revenue and an increase of 67.6 percent from the year ago period – to the bottom line.
At the end of the quarter, TSMC was therefore sitting on nearly $48 billion in cash, even after shelling out $7.4 billion in capital expenses to keep advancing and expanding its foundries. That is probably enough money to build around two and a half fabs, and despite a slowdown in PC and smartphone sales, where is will take a few quarters to burn down inventories, the top brass at TSMC can be cool because there is so much pent-up demand for what it calls high performance components – a different kind of HPC that underlies the other kind of HPC simulation and modeling that we know so well at – that it will be able to meet more demand here and keep its revenue and profit engine chugging along into 2023.
The Russian hacking group Turla released an Android app that seems to aid Ukrainian hackers in their attacks against Russian networks.
Google’s Threat Analysis Group (TAG) continues to closely monitor the cybersecurity environment in Eastern Europe with regard to the war in Ukraine. Many Russian government cyber assets have remained focused on Ukraine and related issues since the invasion began, while Russian APT activity outside of Ukraine largely remains the same. TAG continues to disrupt campaigns from multiple sets of Russian government-backed attackers, some of which are detailed in our previous updates.
Similarly, Russian observed disinformation efforts are also focused on the war in Ukraine and TAG has disrupted coordinated influence operations from several actors including the Internet Research Agency and a Russian consulting firm as detailed in the TAG Bulletin. Most of these coordinated influence operations are Russian language efforts aimed at ensuring domestic support in Russia for the war.
Here is a deeper look at some campaign activity TAG has observed since our last update:
The popularity of web applications is constantly growing as businesses and corporations host several services through them. However, companies and businesses that do have web applications still face the threat of vulnerabilities. A vulnerability is a flaw in your system that hackers may exploit to obtain unauthorized access, run malicious code, install malware, and perhaps steal sensitive information. Remediating these attacks could be near impossible, especially since most small businesses, corporations, and even daily users lack the resources to fix several vulnerabilities at a time.
We have always made all our build-scripts public. These are the same set of tools which we use to generate Kali Linux (for each release, or our weekly images). You may have noticed that previously there wasn’t anything about Virtual Machines (VMs). This is because until recently it was a manually done process, which followed our guides (VMware & VirtualBox). We have now upped our DevOps game, and automated the build process! Enter build-scripts/Kali-VM.
Another positive outcome of this is that it allows us to generate weekly VMs now! These images are more up-to-date, meaning less packages need updates out of the box, but the only set of tests run are the automated ones. Our release images have an additional set of Quality Assurance (QA) smoke-tests run against them, with the knowledge of last-snapshot, meaning the packages are in a known state. You have a choice: Stable vs updates!
Let’s start with a quick introduction to the weekly VMs, then we’ll have a glimpse at the Kali-VM build script.
The microservice deployment and management stack is proving very effective for companies taking advantage of the cloud’s capabilities to scale and adapt. Containers (often alongside Kubernetes) sit on top of this elastic fabric with agile DevOps and CI/CD workflows that transition code from development to production in short timescales.
A significant problem with the speed of transition from home lab environments to production in just a few years is that container technology is generally DevOps, and not SecOps-focused. The collegiate atmosphere of trust in the broader development community has not so much turned a blind eye to bad actors, but simply not considered the implications of malevolent players’ potential activities.
I hit the ground running and I haven’t stopped since. Got a deadline for a new computer lab rollout that I need to finish — I think it’s going fine, actually, it’s just a lot — and with training in between April and now, everything has been A Lot. Also, Gemini’s port being blocked at work hasn’t helped at all.
4000 beagles rescued from the Envigo breeding factory in Cumberland, Virginia are up for adoption. These beagles survived Envigo’s numerous violations of the Animal Welfare Act. If you live in the Virginia, Maryland, or Washington D.C. areas and are in a position to adopt a beagle, please contact Homeward Trails or the Humane Society of the United States (HSUS).
Had their life at Envigo continued, the dogs could have reasonably expected dental disease, parasitic infections, food covered in mold, severe skin problems, and ambient temperatures consistently upwards of 90°F (32°C). All of these things were observed in the USDA’s July 2021¹ inspection. They could have then gone on to be one of the 196 dogs euthanized via intracardiac injection performed without an anesthetic, as USDA investigators observed in their November 2021² inspection.
Lucky and charitable readers of Max Stirner will remember that first moment in which they grasped (or felt as though they had grasped) Stirner’s process of inquiry, that feeling of complete exhilaration that comes from one’s first sustained encounter with Der Einzige und sein Eigentum.
This despite the fact that it’s a small miracle for a reader to there in the first place. There are few authors who have been so willfully misunderstood by their enemies and misinterpreted by their most vocal, would-be supporters. The former despise him because of his ferocious assault on their religious, philosophical, political, or moral “fixed ideas;” the latter would have Stirner be a kind of cantankerous old uncle who held to their political platform while being none the wiser, no matter that platform’s vintage.
Since the Italian peninsula has a mediterranean climate, summer is not just the hottest, but also the driest time of the year. Mediterranean climates experience extended droughts durring the warm season, and it’s possible that the effects of the drought were too obvious to ignore by July. It also may be that in ancient times, people feared that the drought would not end unless they prayed to Neptunus. In regions such as southern California, which has an extreme mediterranean climate, summer rain is extremely rare; San Diego rarely gets any rain from June to September. The Mediterranean itself, is actually less “mediterranean” in climate, but this pattern of warm or hot dry seasons existed in ancient Rome, much as it does today (erenow.net)
AuraGem Search has been updated to use Full-Text Searching (FTS) with indexed page metadata. This does not do Full-Text Searching on page contents, because AuraGem Search does not store page contents.
Previously a query with just one search term could take over 1 second. With this change, a one-term query will take up to 80ms.
Further improvements will be made in the future, including pagination for large result sets, and providing FTS optimized for languages other than English.
Documents have many positive aspects and forcing people to use an app (anything with Javascript) means that almost always the experience degrades: less accessibility, less freedom in layout, theming, archiving, printing, navigation, and so on.
This is my first Post in my new Gemlog. Four months ago I decided to enter Geminispace, three months ago I rented a VServer, After a slow and careful setup my site is finally ready for takeoff.
You see, I start things slowly and cozy. Nevertheless I have many plans here. But for now I enjoy the good feeling of having a step accomplished and learned new things. Afterwarts I might write a new text, which I will hopefully publish tomorrow. But this will be an exception since I probably won’t be able to publish on a daily basis.
Well over a year ago, one of the first things I did on AuraGem (previously Ponix) was write code that converted a Gemsub Feed to an Atom Feed. Everytime someone clicks on AuraGem’s Atom feed, it is automatically generated on-demand with the code below. It is extremely simple, and certainly can be improved, but it works for my uses. One thing that can be added is the subtitle line (marked by the second-level heading just under the feed title), as described in the Gemsub Feed companion spec.
* Gemini (Primer) links can be opened using Gemini software. It’s like the World Wide Web but a lot lighter.
In this video, I am going to show an overview of KDE neon 20220714 and some of the applications pre-installed.
Proxmox Virtual Environment is a powerful and easy to use virtualization platform with many features. Virtual machine templates help to minimize the amount of time spent building new instances, and in this video we’ll take a look at how you can utilize Ubuntu’s cloud images to automate the process of deploying new Linux instances.
Mike’s ready to make a case for Declarative UI, and Chris pulls back the curtain to reveal a spicy take.
Debian’s Package management is pretty old and archaic, so let’s fix it.
What are the top five free and open source web browsers in 2022?
Just months after getting Lotus 1-2-3 for UNIX running on modern Linux, Tavis Ormandy – a white-hat hacker and member of Google’s Project Zero team – has conjured the same trick with classic text-mode WordPerfect 7.
Immaculately complementing his port of Lotus 1-2-3 to Linux, Ormandy has now released a Linux version of the classic 1990s word processor WordPerfect – specifically, WordPerfect version 7 for Unix.
He has even wrapped it up in a .DEB package for easy installation on Ubuntu and Debian-family distros – and since it has few external dependencies, and since it’s a safe bet that we won’t see any updates to this 1997 program, you can probably install it on other distros using the alien command.
This is the original text-mode version, and it runs in a terminal window, or even on the Linux console. If you are one of the many admirers that WordPerfect had in its early days, you should enjoy this. If you’re not, prepare for a surprise – but we have what may be good news, too.
Unlike, say, Lotus 1-2-3, WordPerfect was not originally a DOS app. It was first written on and for a Data General minicomputer, and later ported to many operating systems, including DEC OpenVMS, OS/2, NeXTstep, the Atari ST and Commodore Amiga, and the Apple II, IIGS and classic MacOS. Alongside all of these, there were versions for various proprietary Unixes, including SCO Xenix. That’s what Ormandy has resurrected for Linux.
Cockpit is the modern Linux admin interface. We release regularly.
Here are the release notes from Cockpit 273 and cockpit-machines 272:
Metrics: Display CPU temperature
The metrics page now displays the CPU temperature and includes a warning icon when the system becomes too hot.
LinuxMint is a popular Linux distro alongside Ubuntu. There is not much difference between the functionalities and features of LinuxMint and Ubuntu. Hence, various apps compatible with Ubuntu work effortlessly on LinuxMint.
The advantage of using Linux distros and apps is that most of them are available for free and are open-source.
As LinuxMint is an alternative to Ubuntu, you can find alternatives to every popular and widely used app. Hence, there is no scarcity of apps in each category. But finding a reliable app is not easy because of so many options.
So, to ease this task for you, I’m going to give you a brief introduction to the ten best applications you can try on LinuxMint.
“Minikube is a program that is used to set up a local Kubernetes cluster very easily. It’s very helpful to learn Kubernetes and develop apps/products for Kubernetes.
In this article, I am going to show you how to install Minikube on Ubuntu 22.04 LTS. I will also show you how to start a local Kubernetes cluster with Minikube and the basics of Kubernetes as well. So, let’s get started.”
In this tutorial, we will show you how to install Moodle with LEMP Stack on Ubuntu 22.04 LTS. For those of you who didn’t know, Moodle is a free and open-source Learning Management System and CMS written in PHP. With Moodle, you can create a fully-featured website for education and training courses, suitable for fully online, hybrid, and in-person classroom experiences. The Moodle platform is highly customizable and takes a modular approach to features, so it is extensible and adaptable to your needs. Moodle comes in handy, particularly for Long-distance institutions across the globe in providing training material for their learners.
This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of Moodle with LEMP Stack on Ubuntu 22.04 (Jammy Jellyfish). You can follow the same instructions for Ubuntu 22.04 and any other Debian-based distribution like Linux Mint, Elementary OS, Pop!_OS, and more as well.
As part of the init scripts repackaging, elogind does no longer ship with its OpenRC init script.
Chromebook tips and tricks help you manage apps, improve input texts, simplify security and boost your productivity.
GNU-based operating systems like Linux rely on a command language interpreter or shell called Bash to accomplish most of their computing tasks and objectives.
The author behind Bash (Stephen Bourne) is also principally referenced in its acronym (Bourne-Again SHell). In terms of compatibility, Bash and sh are a perfect match. Useful features evident in the C shell (csh) and the Korn shell (ksh) are also incorporated in this shell language interpreter.
In terms of implementation, Bash is intended to conform to IEEE POSIX specification (IEEE Standard 1003.1) Tools portion and IEEE POSIX Shell. Therefore, as an interactive and programming tool, the functional improvements offered by Bash outshine the ones present in sh.
No doubt, Linux is one of the best operating systems, bundled with awesome and beautiful desktop environments like GNOME, KDE, XFCE, etc.
This desktop environment comes with its own file manager, like GNOME gives us Nautilius, KDE gives us Dolphin, and XFCE gives us Thunar, etc.
STRAY is currently one of the trending indie games and a unique one where you get to explore a cyberpunk-themed world as a stray cat.
It is a third-person adventure-puzzle game involving a lot of meows. Well, maybe because it gives you a “Meow” button that you can’t get to stop using throughout the game.
Hi, GNOME 43.alpha is now available. This is the first unstable release leading to 43 stable series. An GNOME OS install image is also available for testing and porting extensions. https://os.gnome.org/download/43.alpha/gnome_os_installer_43.alpha.iso This is meant to be installed in a virtual machine with EFI support (such as the GNOME Boxes version available on Flathub). You can also try to install it on bare metal but be warned that hardware support is very limited. If you want to compile GNOME 43.alpha, you can use the official BuildStream project snapshot. Thanks to BuildStream's build sandbox, it should build reliably for you regardless of the dependencies on your host system: https://download.gnome.org/teams/releng/43.alpha/gnome-43.alpha.tar.xz The list of updated modules and changes is available here: https://download.gnome.org/core/43/43.alpha/NEWS The source packages are available here: https://download.gnome.org/core/43/43.alpha/sources/
GNOME Radio 16.0.43 is the Public Network Radio Software for Accessing Free World Broadcasts on Internet running on GNOME 43.
GNOME Radio 16 is available with Hawaii Public Radio (NPR) and 62 British Broadcasting Corporation (BBC) live audio broadcasts for GNOME 43.
The latest GNOME Radio 16.0.43 release during GUADEC 2022 (between July 20-25, 2022) features 200 international radio stations and 110 city map markers around the world, including National Public Radio, 62 BBC radio stations broadcasting live from United Kingdom and 4 SomaFM radio stations broadcasting live from San Francisco, California. GNOME Radio 16 for GNOME 42 is developed on the GNOME 42 desktop platform with GNOME Maps, GeoClue, libchamplain and geocode-lib and it requires at least GTK+ 3.0 and GStreamer 1.0 for audio playback.
8 years before GNOME 43 occured I began writing GNOME Internet Radio Locator for GNOME 2 between 2014-2017 and 5 more years GNOME 3, after Norwegian Broadcasting Corporation (NRK) shut down its FM broadcasts. In 2022 we are going to build GNOME 43 support for further international as well as Norwegian radio stations with help from the GStreamer and the GNOME community.
The Yocto Project has won a big corporate backer and put out its fourth release in 12 years. But what does it do?
The Yocto Project released Yocto 4.0 “Kirkstone” recently, and now has announced that the BMW Group has joined, alongside a whole list of household names including Intel, Arm, Cisco, Meta, and Microsoft.
The headline addition in version 4.0 is support for building a Software Bill of Materials (SBOM) compatible with the SPDX standard. As The Reg described earlier this year, in the aftermath of Log4J and so on, SBOM support is an important feature.
There’s a good chance that you already own and use things built with Yocto, even if you’ve never heard of it. Although it’s widely used, it’s not widely known. The Reg FOSS desk is amused to note that since we started researching this article, the project has changed the strapline on its website to a potted explanation: “It’s not an embedded Linux Distribution, it creates a custom one for you.”
So, you’ve decided to give Red Hat Technical Account Management a try. Pretty cool. You’ve gained access to a very valuable Red Hat resource. Still, we’ve found that many customers fail to take full advantage of the services of their Red Hat Technical Account Manager (TAM), which can lead to customer confusion or, worse, resentment and dissatisfaction.
Let’s take a look at a few best practices that will help you to get the most out of your Red Hat TAM subscription.
Red Hat OpenShift Service Registry is a fully hosted and managed service that provides an API and schema registry for microservices. OpenShift Service Registry makes it easy for development teams to publish, discover, and reuse APIs and schemas.
Well-defined API and schema definitions are essential to delivering robust microservice and event streaming architectures. Development teams can use a registry to manage these artifacts in various formats, including OpenAPI, AsyncAPI, Apache Avro, Protocol Buffers, and more. Data producers and consumers can then use the artifacts to validate and serialize or deserialize data.
When sending a new PCB to a manufacturer, you may be confused about the number of options and settings required to produce it. For beginners, and guide to PCB manufacturing options may help in defining the settings to get your Printed Circuit Board produced
MicroscoPy is an open-source MICROSCOPE built using LEGO bricks, 3D-printing, Arduino and Raspberry Pi.
The project is started by Yuksel Temiz, an engineer and a designer from Switzerland, who later released it as an open-source for educational purposes.
It is released and hosted by IBM, with full instructions, video tutorials for anyone who wants to build a simple, usable digital microscope using affordable materials and resources.
We highly recommend this project for educational purposes for school, and university students, as it’s fun, but also carries a high educational value.
In the days following the Free Software Foundation Europe Legal Network Conference in Stockholm, an email discussion ensued that brought up challenging questions around cryptocurrency and blockchain distributed ledger technology and Open Source software. Andrew Wilson, retired Open Source strategist, brought together a group of experts (Georg Greve, James Bottomley, Luis Villa, Miriam Ballhausen and Robbie Morrison) who have varied perspectives on the issues for a public panel discussion.
We are happy to announce the release of Qt Creator 8!
C language does not directly allow error management but it does enable access at a lesser level via return values. In the event of inaccuracy, the majority of C or perhaps even Linux function calls yield -1 or Void and set the errno error code. It’s a universal constant that shows when a function call has failed. In the header file, you’ll find a list of different error codes. As a result, a C developer can examine the supplied values and, based on them, take necessary measures. There seem to be no trouble in the program if the result is 0. Within this article today, we will be discussing the use of the “errno” variable to get error codes and messages on our Linux environment (i.e., Ubuntu 20.0.4 system.) Let’s get started with the opening of a terminal shell in the Ubuntu 20.04 Linux operating system and installing the GCC compiler of C.
execvp() function belongs to the exec family. In today’s topic, we will discuss the characteristics and application of execvp() function under exec family.
The function of exec family in c language helps us execute other programs inside our program. To do that from within my program we use a set of function called exec family of function and these are in Linux program.
Your Git workflows are at the center of your GitOps deployments because workflows are the means of implementing your changes in your environment. When you adopt GitOps, Git is not only your source of truth (as it is for most projects) but also your interface into your environment. Developers have used Git workflows for their application delivery method for years, and now operations teams will have to adopt similar workflows.
But there are key differences between how you manage your code in Git and how you manage your GitOps configuration in Git. Here I will go over these differences and describe the best practices you should follow to make the best use of Git workflows for your GitOps deployments. We will see how to separate your configuration from your code, how to use branches, how to use trunk-based development workflows effectively, and tips for setting up policies and security for your Git workflows.
Find out the best Linux Distributions for developers to start developing in the Microsoft .Net Core development platform…
.NET has been considered one of the most popular software development frameworks for several years. .NET Core is an open-source platform developed by Microsoft. It replaces the old dot NET Framework and offers numerous advantages in comparison.
In Python, PySpark is a Spark module used to provide a similar kind of processing like spark using DataFrame. In this article, we will discuss several ways to create PySpark DataFrame.
Every online application must be able to work with files. Python offers a few file management features. It allows users to work with files and perform basic operations including accessing, updating, copying, and a variety of other file management functions. The open() function in Python will be used to open a particular file. The open() method has several modes, each one provides the file be opened with a set of options.
If the ‘if’ condition becomes False, the very next ‘elif’ portion’s condition is evaluated. The content of ‘else’ would be implemented when all of the requirements become False. As per the situation, just one of the numerous if…elif…else statements is evaluated. There would only be another clause in the ‘if’ section. This could, however, have several ‘elif’ statements. We are going to explain the ‘elif’ python in this article.
You might not be convinced and that’s because we’re all told it’s really hard to stop smoking. All the time. Even by people who want smokers to quit, as if it’s something that takes a run-up, an intake of bravery and team-cajoling. It’s not hard; just stop smoking the bloody things.
The rest is understanding your body and addiction, that smoking never made you feel better, it only made not smoking feel worse. As soon as you cut that cycle, your body recalibrates. As soon as you realise that, the infinitesimal cost of quitting seems worth it.
Raise your hand if you ever downloaded software by recording a series of tones onto a cassette tape as it was being broadcast over a radio station.
Patrick Debois did – back in the 1980s as a budding computer enthusiast. He recalled that Europe didn’t have the network of electronic BBSes that existed in the U.S. These radio broadcasts were one way to distribute software, although they were often thwarted “when your mom walked in the room saying something and ruined the recording.”
With today’s world racing faster and faster towards 3D technologies, the O3DF provides a home for artists, content creators, developers and technology leaders to congregate and collaborate, share best practices and shape the future of open 3D development. This thriving community is focused on making it easier to use and share 3D assets with its partners and the Open 3D Engine (O3DE), the first high-fidelity, fully-featured, real-time, open-source 3D engine, available to every industry.
Microsoft has performed a u-turn on its plans to prevent developers from selling open source software on the Microsoft store. It announced the policy that would essentially lead to this back in June, with the policy due to come into effect on July 16. Microsoft received plenty of pushback from the open source community though and has since deleted it. Everyone seems to be happy with the decision.
Security updates have been issued by Fedora (golang-github-gosexy-gettext, golang-github-hub, oci-seccomp-bpf-hook, and popub), Oracle (kernel and kernel-container), SUSE (python2-numpy), and Ubuntu (check-mk and pyjwt).
Today the White House convened the White House Cyber Workforce and Education Summit to gather government and private-sector leaders to discuss how to address the labor shortage and other challenges for U.S. cybersecurity. The meeting included the nation’s top cybersecurity and workforce policy decision makers, including the National Cyber Director and the Cabinet secretaries from the Departments of Commerce, Homeland Security, and Labor and the Under Secretary of Education.
So, here’s a bit of a mystery: Why does TeamViewer – the popular remote desktop program – install a font it doesn’t use on your computer? The abstract font (shown in the above image) doesn’t seem to serve any purpose in the software. Intentional or not, it enables websites to detect if you have TeamViewer installed on your computer.
While containers deliver speed and agility to software development and deployment, they also add a layer of complexity that invites unprecedented security concerns, including how to manage vulnerabilities in a dynamic container deployment environment. The question then becomes how to ensure the technologies you are using to secure software within containers are keeping pace with both business and security? This is a question DevOps teams have been tasked with as they continually rethink their approach to application security (AppSec) and how to build and ship software in a containerized world.
In addition to scanning container images before production, DevOps teams today also need to find and maintain continual visibility into their containers. Because containerized applications grow older, they are continually subject to new security vulnerabilities. Even though security patches are helpful, they do not guarantee the stability or security of a container. This must be handled through automation and better container management.
A new ransomware family dubbed Luna can be used to encrypt devices running several operating systems, including Windows, Linux, and ESXi systems.
The USA Network. The Home Shopping Network. MTV. Three networks that are synonymous with cable television. Three networks that have been active on cable and satellite tuners throughout the United States for at least 35 years. But despite this, each had a period where they were broadcast over the air in some way, shape, and form as over-the-air television channels. Despite the fact that these networks basically shaped modern cable, they each lived lives in a position to be tuned in, depending on your location, using a simple analog antenna. It sounds weird, I know, but it’s true. And in many ways, it reflects the strong pull of over-the-air television even today. Today’s Tedium talks cable channels’ broadcast misadventures.
On September 15, 1885, twenty-five years after his capture in Sudan, Jumbo the elephant tragically died when struck by a freight train. Ross Bullen takes us on a spectral journey through other collisions between elephant and machine — in adventure novels, abandoned roadside hotels, and psychic science — revealing latent anxieties at the century’s turn.
This article will explain how to make the flakes enabled nix commands reusing the nixpkgs repository used as input to build your NixOS system. This will regularly save you time and bandwidth.
Why I Want gemini on My feed Readers
I have a e-reader with the KOReader software on it. Part of that software is a RSS/atom aggregator/downloader. I currently read gemini on the ereader through the experemental browser and mozz’s proxy, but it would be nice to get those articles through the inbuilt feed downloader so I can read them offline in epub format.
[...]
First lets discuss the much more developed gemini-to-https proxies which exist in the wild today. These proxies take the associated gemini URL, parse the gemtext into a http markdown format, and send that converted data to your web-client.
[...]
As an outline, heres what needs to happen for the proxy to work. Lets say mozz.us implements this function to its atom interpeter.
* Gemini (Primer) links can be opened using Gemini software. It’s like the World Wide Web but a lot lighter.
Autodesk, Inc. is an American multinational software company that makes software products and services for the architecture, engineering, construction, product design, manufacturing, media, education, and entertainment industries. It bills itself as a “… leader in 3D design, engineering and entertainment software”.
The company was founded in 1982 by John Walker, who was a joint developer of the first versions of AutoCAD, the company’s best known software application. Autodesk is listed on the Nasdaq stock exchange, it has over 11,000 employees, and is headquartered in the San Francisco Bay Area.
While Autodesk develops many high quality applications they are proprietary software. And the vast majority of their products are not available for Linux. This series looks at the best free and open source alternatives.
Do you ever get tired of navigating directories back and forth? I am 100% sure that the answer will be yes, and at that point, you will launch multiple windows and operate them all at once.
Today on July 20 2022, curl turns exactly 8888 days old. It was born on March 20, 1998 when curl 4.0 was shipped.
The number 8 is considered a lucky number in several Asian cultures and I figure we can view this as a prequel to the planned curl version 8 release we intend to ship on curl’s 25th birthday.
I was involved in a demo of Red Hat Enterprise Linux (RHEL) for Edge, and I experienced some problems with the network driver for Raspberry Pi 4 in RHEL 8. To solve this problem, I decided to create a custom image based on RHEL 9 instead, where the Ethernet network driver works.
List of new features in GNOME 43 (Alpha), which brings new refinements, performance improvements, GTK4 port and many more.
This article will look at the three most underrated Linux distros, focusing on the three main categories: desktop, general-purpose, and server.
The Linux world has two main characteristics that set it apart from everything else: freedom and the wide variety of Linux distributions. However, the user has so many options and versions of the operating system to choose from that it can sometimes be complicated and confusing.
This diversity and freedom to choose attracts many supporters to the Linux cause. As a result, some Linux distros get a lot of attention, while others do not.
Names like Red Hat, Debian, Ubuntu, Arch Linux, and others are well-known outside the Linux community. However, this article will focus on three Linux distributions that we believe are unfairly underrated and do not get the attention and popularity they deserve.

Ubuntu and Manjaro are two distros often recommended to Linux beginners. Which one of these two is better overall? Let’s find out.When you first switch to Linux, there are certain distributions you’re likely to hear about first. Ubuntu has long been one, considering its widespread usage around the world. Many people will recommend starting with Ubuntu and leave it at that.
But Manjaro is another option you’re increasingly likely to come across. This distro takes Arch Linux (a DIY version of Linux) and turns it into a ready-to-go desktop that’s easy to install and learn. So, why might you consider Manjaro over Ubuntu?
In its latest quarter, IBM saw its hybrid-cloud revenue jump 18% to $5.9 billion. Along with this, IBM saw its highest sales growth in a decade. Much of that is due to its stand-alone Red Hat division. True, Red Hat sales increased by “only” 12%, which is low by Red Hat standards but darn good by any other standard. So what will Red Hat do now that it has a new CEO, Matt Hicks, and chairman, Paul Cormier?
We all have people around us, whom we hold dear. Some of them might even rely on you to keep them save. And since the world is constantly changing, that can be a challenge. No more is this apparent than with children, and Linux has long been lacking simple tools to help parents. But that is changing, and here we’ll talk about the new parental controls that Fedora Linux provides.
At Red Hat, we recognise the importance of implementing security measures early in the software development life cycle (SDLC), as breaches are becoming more evident in today’s society. Our work in Red Hat Product Security is to help minimize the software-based risks of enterprise open source from Red Hat , while affording the many benefits that only open source can provide.
Developing new solutions that make everyday life easier for blind and visually impaired people: That was the goal of the hackathon organised by the Swiss Association for the Blind and Visually Impaired and Red Hat. At the event, blind, visually impaired and sighted technology professionals worked together intensively on various projects — from obstacle detection to automatically determining the expiry date of products in the supermarket.
As IT teams around the world strive to keep their applications modern and their processes running smoothly, many organizations are still solidifying what the future of their workplace will look like. The shift toward remote work is no longer isolated to the tech industry and companies of all sizes and domains are making decisions that impact the experience of their employees.
Whether an organization chooses to welcome employees back in the office, allow full-time remote work, or somewhere in between, it is critical to ensure that your teams have the tools and training that they need to succeed and contribute toward the overall success of your business.
The rise of cloud-native opens the door to many opportunities for the enterprise but also introduces new challenges. Developers new to cloud-native must navigate the shift from traditional on-premise infrastructure to the cloud. Cloud-native development requires a modern approach to software development, including the ability to develop microservices and leverage serverless functions.
If one thing is certain for software developers, it is that change will always happen – and with new changes come new skill requirements. Upskilling is essential for developers to manage these changes.
IT automation has become a broad-based category spanning everything from infrastructure to application development to security to non-IT functions – think Robotic Process Automation (RPA) bots processing invoices in finance or resumes in HR, for example.
Put another way: Automation is everywhere.
IT automation specifically continues to grow as a budget priority for CIOs, according to Red Hat’s 2022 Global Tech Outlook. While it’s outranked as a discrete spending category by the likes of security, cloud management, and cloud infrastructure, in reality, automation plays an increasing role in each of those areas.
For most challenges businesses face, there’s usually more than one solution to explore. Rather than getting bogged down in analysis paralysis, leaders typically rely on tried and true strategy tips and advice to guide them to the next step in the right direction.
If you’re having trouble keeping track of a busy IT environment, you’re not alone — many organizations are in the same boat as you. But when you check out many observability tools, you’ll often find they don’t even know how to spell “IBM i.” That is not the case with Galileo Suite, a collection of IT monitoring and observability tools from Advanced Technology Service Group that supports a range of operating systems, including IBM i.
IT Jungle caught sight of Galileo Suite at the recent COMMON POWERUp conference in New Orleans, where the company behind the suite, ATS Group, had a booth in the expo. While ATS Group appears to offer a range of services for IBM i customers, including cloud hosting and modernization and migration offerings, it was Galileo Suite that was the headliner.
It was a “double i” acquisition day recently for Service Express, the IBM business partner that completed acquisitions of iTech Solutions and iInTheCloud on July 5. The moves give Service Express a much bigger presence for IBM i cloud services in the US after it completed a similar deal in the UK.
Many IBM i shops now find themselves in a situation where it’s time to modernize. Their existing business processes were created to match the environments that existed when the businesses were created. If the companies didn’t gradually adapt to change that occurred over years, they may now find themselves quite far behind, especially with the punctuated equilibrium created by COVID. To paraphrase Hemmingway, the technological debt built up gradually, then suddenly.
We’re always watching for the health of our ecosystem, and one of the easiest indicators on how thing are going is to watch the bottom line. This week, IBM reported a better-than-expected second fiscal quarter 2022 during its financial analyst conference call, and the analysts seem to agree the reasonable, although no one seems to be celebrating too hard as the worry of possibility of weakening IT spending looms in light of unprecedented inflation.
Please note that we will be moving V7R1M0 from weekly update to archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top of the story. Also, if you have any IBM i 7.1 requests going forward, we will do our best to provide responses for. Thank you for your readership and support!
The one single person within Debian who has worked for years to get me ostracized and thrown out of Debian is … Enrico Zini. Probably because I made a joke about him and his ridiculous statement “Debian is a relationship between multiple people” (how trivial can you be to be printed on a huge poster?), and me without knowing that his buddy Martina Ferrari is trans, criticizing them for spreading lies. Well … I should have known that doing this to a DAM (and back then also Anti-Harassment-Team member) could bring me into “devil’s kitchen”.
Funny to see what kind of head-banging creating concoction of talk Zini delivered to DebConf 2022. Obviously, no lesson learned, no reflection on their own failures to act properly. Always putting forth their private animosities over objective reasoning.
Another confirmation that Debian DAM (and CT) is as far from “data driven decision making” as …
Best greetings, one of your “troublesome people”
distinguish DAM decisions from decisions that are more about vision and direction, and would require more representation
Elive is one of the lesser-known Linux distributions but holds a special place in my heart because it uses the Enlightenment desktop. For years, Enlightenment was my default because it was one of the more unique and highly configurable desktops on the market. These days, very few distributions offer Enlightenment, so when Elive offers a new release, I pay attention.
This time around, the team has shifted to Debian Bullseye as their base. Bullseye was only recently released (July 9th, 2022), so it’s fairly remarkable that the Elive team was able to make the switch so quickly and seamlessly.

I’ve recently received an early sample of Radxa ROCK5 Model B (aka ROCK 5B) SBC part of the “Developer Edition” batch with 16GB RAM, and already showed the hardware and it booting successfully in Debian 11.I’ve now spent more time with the board, and as part of the “debug party” tested performance and features in Debian 11. As one would expect, some things work OK, but others still need improvement.
My wife and I had a conversation about what each of us really wanted to do with our lives. What are we passionate about? What roles do we see ourselves playing in the world? Are we interested in doing one thing for the entirety of our professional lives, or are there several things we want to do?
I think about and struggle with these question a lot, largely because I don’t know what I want to do professionally. There doesn’t seem to be any one topic or pursuit that so inspires me as to want to engage in it permanently. What I imagined doing as a career when I was six is not the same as what I imagined doing as a career when I was twelve. Ditto when I was sixteen, twenty, twenty-five, and today at thirty.
I am very fortunate to have a monumental amount of curiosity about the natural world and the *why’s* of things, a casual interest in entertaining/thought provoking stories, and a desire to communicate the most challenging of abstract concepts the universe has to offer, to normal people in easy-to-understand vocabulary. My desires to learn, understand, and communicate, blend perfectly into a wellspring of writing inspiration (even if few of my potential readers are as interested in the topics as myself).
[...]
Also notice that I try not fall into the trap of trying to stay on topic or have a global theme/motif across my stuff. There are definitely topical themes of math, science philosophy, theology, education, and abstraction across my writings. However there is no real consitency article to article, one day you can have a cooking recipe, the next a tangent on the nature of turbulence. Maybe anthological diversity is its own kind of theme.
So, I’ve made myself a gopher, spartan and gemini server. What next? I know, a BBS server.
I figured that with a BBS I’d get more interactivity, assuming anyone logs onto it. It’s amazing what people have been able to do with Amigas, C64s, and even the humble ZX Spectrum.
I’ll be using a Raspberry Pi for my server. What with the price of electricity these days it’s a good choice. I’ll be sticking with FreeBSD. I’m new to FreeBSD, but I think it’s a good system. I like to think of it as “Slackware done right”. Sorry, Slackers.
Did you ever wonder how many bytes a system service is daily receiving from the network? Thanks to systemd, we can easily account this.
This guide targets NixOS, but the idea could be applied on any Linux system using systemd.
I’ve been working on a Gridmapper edition that doesn’t require a browser to run. Now I have a version that needs a Common Lisp to build (I’ve been using SBCL), plus SDL and Cairo.
* Gemini (Primer) links can be opened using Gemini software. It’s like the World Wide Web but a lot lighter.
Video download link | md5sum 9a03c5fddcdc6726f08d0a5ffc5a80f1
Cementing Brain Drain at EPO
Creative Commons Attribution-No Derivative Works 4.0
Summary: Financialization of Europe’s largest patent office, the European Patent Office (EPO), is already destroying the EPO, at least internally; this isn’t sustainable, but those standing to profit from financialization don’t care (they only look a few years ahead)
We’ve only just published this new document [PDF] from the belly of the EPO. It reaffirms our strong suspicion, based on leaked presentations, that the EPO is quickly shrinking and António Campinos is failing to retain (let alone attract) talented patent examiners. Like Mr. “You’re Fired!” what we have here is a destructive force or a demolition team. They convert what’s left of the EPO (which they destroy) into a pile of cash for speculation. In the process they break a lot of laws, lose their status (which took over 40 years to earn!), and shame/harm Europe in general.
The video above goes through the document. Tomorrow and for 3 more days (until Sunday) we’ll cover the implosion of the EPO bubble — an implosion that already started a couple of years ago, just like SUEPO (the staff union) had warned more than half a decade ago. █
The EPO’s Very Own January 6th
Lukastelli and Trumpinos, renowned or notorious for their not-so-nonviolent coups
The bully’s inferiority complex or impostor syndrome
Summary: As the EPO ‘s “f***ing president” (in his own words), António Campinos compensates for his incompetence by threatening staff and adopting menacing policies
Dr. Roy Schestowitz
Guest Editorial Team
Community: Get involved
RSS Feed: subscribe to the RSS feed for regular updates
Site Wiki: You can improve this site by helping the extension of the site's content
Site Home: Background about the site and some key features in the front page
IRC Channels: Come and chat with us in real time
Design by Beccary and Weblogs.us · Valid XHTML · Valid CSS · Hosting by Schestowitz · Part of Bytes Media
 | |
Content is available under CC-BY-SA
Editors • About the Site • Comes vs. Microsoft • Using This Web Site • Site Archives • Credibility Index • OOXML • OpenDocument • Patents • Novell • News Digest • Site News • RSS
