11.01.22

Links 01/11/2022: Godot’s New Foundation and OpenSSL’s Bug Hype Debunked

Posted in News Roundup at 5:30 pm by Dr. Roy Schestowitz

  • GNU/Linux

    • HackadayLinux Fu: Easy VMs | Hackaday

      It wasn’t long ago that we looked at easily creating Docker containers from the command line so you could just easily spin up a virtual environment for development. Wouldn’t it be nice if you could do the same for virtual machines? You can. Using Multipass from Canonical, the makers of Ubuntu, you can easily spin up virtual machines under Linux, Mac, or Windows. Granted, most of the virtual machines in question are variations of Ubuntu, but there are some additional images available, and you can create your own.

      Once you have it installed, starting up a new Ubuntu instance is trivial. If you have a set configuration, you can even set up predefined setups using a YAML file.

    • Audiocasts/Shows

    • Applications

      • TechRepublic6 free alternatives to Microsoft Word | TechRepublic [Ed: Terrible list. Most of these are proprietary and Apache OpenOffice is listed before LibreOffice.]

        If you’re tired of paying for Microsoft Office features you don’t use, here are free alternatives to Word you can download and start using today.

    • Instructionals/Technical

      • Make Use OfHow to Force Linux Users to Change Password at Next Login

        Linux users must change their passwords from time to time to keep their accounts secure. And as a system administrator, it’s your responsibility to nudge them if they forget to change the password and continue using it for a long time.

        On Linux, user passwords are set to expire after 99,999 days by default. However, you can override the default settings and set the passwords to expire immediately.

        Here’s how to force Linux users to change their passwords at the next login.

      • DebugPointHow to Install Flatpak Apps in Ubuntu and Other Linux

        A beginner’s guide on how to install Flatpak in Ubuntu and other Linux distributions.

      • Make Tech EasierHow to Secure an SSH Server in Ubuntu – Make Tech Easier

        SSH (Secure Socket Shell) is a command line interface and protocol for securely getting access to a remote Linux server. It provides a secure and encrypted communication over a network and allows data to be exchanged over a secure channel between two servers. It is widely used by system admins to control and manage their web servers remotely. This tutorial shows you how to secure your SSH server.

      • VituxHow to Monitor Linux Server Health with Command Line Tools – VITUX

        If you work on Linux servers, you need to check the disk, CPU, and memory usage on your system.

      • SUSE’s Corporate BlogEnforcing Compliance of Container Environment Variables
      • It’s UbuntuHow To Fix “package Dependencies Cannot Be Resolved” Error In Ubuntu 22.04 LTS | Itsubuntu.com

        If you are having issues like “package dependencies cannot be resolved” while installing some packages in Ubuntu 22.04 LTS then this Ubuntu 22.04 LTS tutorial post is for you. We have the solution for the “package dependencies cannot be resolved” error In Ubuntu 22.04 LTS.

      • Make Use OfSet Up a Cloudflare Tunnel to Expose Local Servers to the Internet

        If you are running a local server at your home on an old laptop or PC—such as a Plex Media server, a file server, a web server, or any other server—you can expose it to the internet by using the port forwarding option in your router. However, it’s neither secure nor recommended to access a server that way in a production environment.

        We will show you how to expose your local servers securely with an HTTPS connection to the internet using the free Cloudflare Tunnel service—without disclosing your public IP.

    • Games

      • Godot EngineGodot Engine – Godot’s Graduation: Godot moves to a new Foundation

        When Godot was first open-sourced in 2014, it was a very small project mostly developed by Ariel and Juan. Even after open-sourcing, contributions to Godot were almost exclusively made by volunteers. Over time, and to our surprise, many users expressed a wish to contribute financially to the project to speed up development.

        Creating a foundation at the time would have been too costly and difficult, so we turned to Ton Roosendaal for advice. Ton introduced us to the Software Freedom Conservancy (SFC), which is a charity located in New York.

        The SFC was a fantastic fit for Godot. They work as a non-profit home for several high profile FOSS projects (such as Git, Samba, Wine, etc) and they have tested and proven rules to ensure that donations are only used for the benefit of projects, as well as rules to avoid conflicts of interest. They allow open-source projects to grow and prosper and focus on their project while the SFC handles non-profit governance, accounting, and legal issues (including successfully walking back on Non Disclosure Agreements to ensure that all our work can happen in the open); essentially aggregating the work required for the operation of a not-for-profit organization.

      • Announcing Godot’s Graduation from SFC! – Software Freedom Conservancy

        The Godot Game Engine joined Software Freedom Conservancy in 2015, and we’re incredibly proud of their growth and improvement since then, empowering people everywhere to make their own games. The team that they have in place funded by the project for this work and the level of resources that the project has grown to need, now means that it is time for them to start their own independent organization. Working with them has given us so much hope for the future of software freedom in the game design and creative space, in which they play such a vital role. We can’t wait to see their new organization thrive.

      • Ubuntu HandbookKart Racing Game SuperTuxKart 1.4 is out! How to Install in Ubuntu | UbuntuHandbook

        The free open-source kart racing game, SuperTuxKart, released the new stable 1.4 version. Here’s the new features and how to install guide for Ubuntu Linux.

        SuperTuxKart 1.4 fixed a dependency bug for MacOS user, meaning it’s now running again for macOS ranging from 10.9 to 10.14 (Mavericks to Mojave).

        The release also introduced experimental support for Vulkan renderer, for low CPU usage and better multi-platform support. User may try it out by either typing “/vulkan” in networking lobby and restart the game, or starting the game with –render-driver=vulkan argument.

        A new character Godette, the mascot of the Godot Engine, is introduced in the release. And, the Konqi now has a newer and maturer look.

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • Learnings from Building an AppImage

          For some time I am offering an AppImage of Kraft to make installations for users as easy as possible. Unfortunately real linux packages are big effort for the variety of distributions, and having one way to rule them all seems very appealing.

          My first AppImage versions were pretty faulty when looking into details. So I spent some time to improve it recently, with the great help of the friendly people from AppImage community.

          Here is my little report about what I have learned. If there is something I can do better, please let me know (unless it is use $OTHERTOOL).

        • Adriaan de GrootFosstodon!

          I may retire the Twitter handle I got in 2010, but as a label it’ll live on in my Mastodon handle.

          Insofar as I think about my “social media” profile at all, I’ve come to realise that the things I actually control are the most valuable.

        • Adriaan de GrootWork-work (in glass) | [bobulate]

          Huh, I realised I had written “farewell” to Blue Systems and Calamares back in may – Calamares is still trundling along at a much reduced pace – but have not yet written about where I went to work. So, let’s fill in a little of that. I work at Vimec, which makes glass inspection machines. I went to work there because I know nothing about glass inspection, but I do know about C++, Qt, and CMake. So I’ll learn about glass while doing my usual software things.

          One of the things I notice is how “Open-Source”-ish work is. Vimec is a small company, and I can best describe a work day as “like a KDE sprint, but only from 9 to 5”. I sit down at a Linux workstation, log into KDE Plasma (backed by Active Directory, that’s the corporate angle there), poke at GitLab to see what went down overnight, git pull to see what’s up, and then fire up the editor of my choice to get stuff done.

          [...]

          I suppose I should have learned this, from prior job changes, but I notice that at the end of a day of KDE-like programming, I don’t have much energy left over for more actually-KDE programming. I sit down to do a little light Python or Haskell more than C++ these days, for kicks.

      • GNOME Desktop/GTK

        • Making Rust attractive for writing GTK applications

          Rust, the programming language, has been gaining traction across many software disciplines – support for it has landed in the upstream Linux kernel, developers have been using it for games, websites, low-level OS components, and desktop applications.

          The gtk-rs team has been doing an impressive amount of work during the last few years to make the experience of using GObject-based libraries in Rust enjoyable by providing high-quality, memory-safe bindings around those libraries, generated with gir from the introspection data.

        • Trying out Zola

          For nearly two years I have been inactive on my blog despite spending time making a fancy website, but I can no longer afford the extra code to maintain and infrastructure work to keep it running. So I decided to move the posts I had on the old website to a statically generated one while waiting for the CI to pass during the gtk-rs hackfest.

          One of the annoyances I had with static websites generators is that they were too slow. Add to that Jekyll is written in Ruby and it was too difficult to get any rubygem installed on my machine.

  • Distributions and Operating Systems

    • Updates for October, 2022 ⋅ elementary Blog

      This month featured a slew of minor updates and translation updates on OS 6.1 as a side effect of preparing stable builds of OS 7, but the focus for the team is solidly on putting the finishing touches on the new major release.

      If you’ve been following along on the OS 7 Project Board, you’ll have noticed that all of the blocking window manager issues have now been resolved! Major shoutouts to Corentin Noël and David Hewitt here for finishing those off. I also want to give a special thanks to Bobby Rong, the maintainer of Pantheon on NixOS, for noticing a couple of regressions that slipped through the cracks and quickly reporting them upstream.

      At this point the outstanding tasks for releasing OS 7 largely have to do with builds, infrastructure, etc. We’re really in the home stretch now! But that doesn’t mean we can’t try to sneak in some last minute polish. I’ve been revisiting the App Icon Redesign Project and have several outstanding branches here that will hopefully make it into 7.0. Micah Ilbery and I have been working on modernizing the look of app icons on elementary OS, including increasing the border radius of tile icons, improving contrast and use of color, and adding a bit more dimensionality to icons that make use of overlaid glyphs.

    • New Releases

    • Screenshots/Screencasts

      • VideoLinux Lite 6.2 Updates – Invidious

        Today we look at Linux Lite to see what is up in the next release. This is the 6.2 RC1 which supports the Linux Kernel 5.15 by default but supports up to 6.0. We look at the system memory, default applications, and more.

      • VideoLinux Lite 6.2 Run Through – Invidious

        In this video, we are looking at Linux Lite 6.2.

      • Linux Made SimpleLinux Lite 6.2

        Today we are looking at Linux Lite 6.2. It comes with Linux Kernel 5.15, based on Ubuntu 22.04, XFCE 4.16, and uses about 900MB of ram when idling.

    • Fedora Family / IBM

      • Red Hat OfficialRed Hat Satellite 6.11.4 has been released

        We are pleased to announce that Red Hat Satellite 6.11.4 is generally available as of September 29, 2022.

        Red Hat Satellite is part of the Red Hat Smart Management subscription that makes it easier for enterprises to manage patching, provisioning, and subscription management of Red Hat Enterprise Linux infrastructure.

        The erratum for this release includes…

      • The Next PlatformOnly The Agile And Adaptable Survive [Ed: IBM puff piece from Red Hat/IBM sponsored publisher; disclosure conspicuously lacking, as usual]

        Red Hat is not just the top Linux software vendor and the driving force behind IBM’s hybrid cloud ambitions. It is by far the most agile part of Big Blue.

      • Red Hat OfficialSharing Red Hat Insights with your Technical Account Manager for better collaboration

        I have been working as a Technical Account Manager (TAM) with Red Hat for around a year now. I love interacting with my customers, working with them on shared goals and providing proactive tips on how to get the most out of the Red Hat products they are using.

        One of the Red Hat tools that I love to share with customers is Red Hat Insights. Red Hat Insights itself is a great tool, and is included in many Red Hat subscriptions (including Red Hat Ansible Automation Platform, Red Hat Enterprise Linux and Red Hat OpenShift). It can really help you understand risks within your environment and any areas you should be focusing on.

    • Canonical/Ubuntu Family

      • NeowinLinux Mint is getting a ‘show the desktop’ button just like Windows – Neowin

        The Linux Mint team has just shared what it has been working on through October. There are quite a few improvements it has been making, but one notable one is the corner bar, which is very similar to the ‘show the desktop’ button on Windows that lives in the bottom right of the taskbar. Other changes include fewer password prompts, Flatpak support in Update Manager, and some visual refinements.

        The new corner bar coming to Mint is less noticeable than the show the desktop button on Windows, however, it can be configured to be more powerful than the Windows implementation. Using customizable settings, you can choose the click action, the middle click action, and enable or disable peek at the desktop on hover. As the corner bar is in the lower right, you don’t even have to think about where to move the cursor.

        Password requests have also been worked on, so they’re less intrusive. They’re no longer needed when using Synaptic and Update Manager, nor when removing a Flatpak. These programs will instead ask pkexec to remember your password, so you don’t need to enter it more than once. This should make things a little more convenient.

      • The Register UKLinux Lite 6.2 is out • The Register

        Linux Lite 6.2 is the latest version of this increasingly inaccurately named distro. In effect, it’s a niftily customized remix of Xubuntu 22.04.1.

      • OMG UbuntuLinux Lite 6.2 Released, Based on Ubuntu 22.04.1 LTS – OMG! Ubuntu!

        A new version of the Linux Lite, an Ubuntu-based Linux distribution aimed at lower-spec’d computers, is available to download.

        Linux Lite 6.2 is based on the Ubuntu 22.04.1 LTS point release and Linux kernel 5.15, plus a tweaked version of the Xfce 4.16 desktop environment and its associated assembly of apps. Modern machines can run Linux Lite but the distro is tailored towards those on older and/or resource-limited hardware.

        “This release is mostly comprised of UI adjustments, up to date software and bug fixes,” Linux Lite creator Jerry Bezencon says in a release announcement posted on the Linux Lite forums.

        Updated versions of bundled software, including the latest update in the LibreOffice 7.3 series and the most recent release of Google Chrome, come as standard.

      • UbuntuWhat to Expect at the Ubuntu Summit 2022 [Ed: No more community and Canonical has quit pretending]

        As the Ubuntu Summit draws near, we have an update to share with you all. We have a new timetable that can help you plan your days. There are some pretty neat people coming too! If you can’t participate in-person this year, we completely understand. That is why we have remote participation in mind as well. So read on to check out the updates in more detail!

      • UbuntuPublic cloud for telco – Part 3: Microsoft Azure [Ed: Microsoft Azure is laying off its staff, but Canonical is still propping up those who attack Linux]
      • Elektrobit Partners with Canonical to Pave the Way to a New Era of Software-defined Vehicles

        As the industry transitions towards software-defined vehicles, the new partnership will make it easier than ever before for car makers, suppliers, and developers to create the next generation of vehicle applications, while meeting stringent automotive standards.

      • Install Firefox 106 on Ubuntu / Linux Mint – Tips On Unix

        This tutorial will be helpful for beginners to install firefox 106 on Ubuntu 22.04 LTS, Ubuntu 20.04, and Linux Mint 21.

    • Devices/Embedded

      • CNX SoftwareSystem-on-module combines NXP i.MX 8M Mini Arm CPU and Xilinx Artix-7 FPGA

        Based on the block diagram above, the FPGA and CPU are interfaced via PCIe x1, I2C, and interrupts.

        MYiR provides two Yocto-built Linux images based on Linux 5.10.72 and U-boot 2021.04 and all drivers for peripherals, one with Qt, and the other without. There’s no mention of specific software or sample code for the Artix-7 FPGA, so you’d probably be expected to use Xilinx tools like the ISE Design Suite.

    • Open Hardware/Modding

      • PurismYear-End Savings Start Now with $200 off on Librem 14 Laptop – Purism

        PCMag has highlighted our Librem 14 as one of the top gifts in the tech space. The article 8 Techie Gifts for the Security Expert in Your Life highlights:

        “All Linux computers aren’t created alike, though. Purism’s Librem 14 stands out from the pack in several ways. First, it runs PureOS, a security-focused Linux distro created by Purism that powers laptops and cell phones. The fact that it’s open-source means experts can comb through it and flag any flaws. It’s also (according to Purism) “designed chip-by-chip, line-by-line, to respect your rights to privacy, security, and freedom.”

      • ArduinoHuge LED globe becomes Halloween helmet | Arduino Blog

        Some Halloween costumes are creepy, others are racy, and a few, like this one, are just plain cool. LEDs have been common since the 1960s, but they can still stand out when done well. As it turns out, one way to achieve that is by arranging 378 of them around a big globe and wearing that globe on your head like Redditor HGRDOG14 did for Halloween this year.

        We’re hesitant to call this a “Halloween mask” because of its sheer size, but “enormous glowing Halloween helmet” doesn’t have the same ring to it. HGRDOG14’s creation started as a 24” beach ball. They then covered that in papier mâché to create a rigid shell and removed the original beach ball. After that, they covered the papier mâché sphere in strips of WS2812B individually addressable RGB LEDs. Those strips have 30cm spacing between LEDs and HGRDOG14 staggered each longitudinal strip in order to arrange the LEDs in the pattern you see.

      • ArduinoMaking a puppet ride an RC tricycle | Arduino Blog

        Inspired by a remote-controlled Radio Flyer tricycle in which Kermit pedaled around at Maker Faire New York 2018, Donald Bell wanted to create his own version that could bring similar magic to people who interact with it. It began with the same Radio Flyer tricycle as in the original video, except this one was modified a bit differently.

        An overarching goal that Bell wanted to achieve was keeping the tricycle as stock as possible, which meant placing all of the electronics underneath the rear axle. Movement is provided by a single DC motor just below one of the wheels that connects via a timing belt for added safety. Meanwhile, the trike is able to steer thanks to a 24V high-torque servo motor that rotates to push a rod back and forth, thus turning the front fork to either side. Controlling all of these parts is an Arduino Uno that receives information from an RC receiver module.

    • Mobile Systems/Mobile Applications

  • Free, Libre, and Open Source Software

    • Web Browsers/Web Servers

    • Productivity Software/LibreOffice/Calligra

      • Community support needed: We want to use our users personal data – LibreOffice Design Team [Ed: LibreOffice to become spyware under the guise of "telemetry"? Like Firefox?]

        While our proprietary competitors constantly (mis)use user data to improve the UX of their products, we are maneuvering in thick fog. And whenever we try to reach out to our users to decide about design directions, we mainly get feedback from white, male nerds [1]. You hopefully see the problems this implies.

        The only solution is: We need to be able to evaluate usage information from everyone else too. While preserving the privacy of our users of course.

    • Programming/Development

      • Python

        • DebugPoint6 Best Python IDE(s) and Code Editor(s) – Top List of 2022

          We list the six best Python code editor(s) for Ubuntu and other Linux distros and Windows in 2022.

          Python is everywhere today, and it is arguably the C programming language of the modern era. You can find Python everywhere, from websites, apps, data science projects, and AI to IoT devices. So being a popular programming language of this decade, it is essential to know the development environment of Python, where developers create applications, especially if you are starting afresh.

          Many Python development environments are available with features and utilities catering to your need. Some of them are useful for beginners learning Python by setting up the environment and other users for heavy Python development and complex setups.

          Here, in this post, I will touch upon the best of them that would help you pick one for your own need and use case.

  • Leftovers

    • Proprietary

    • Security

      • ZDNetOpenSSL dodges a security bullet | ZDNET [Ed: No, SJVN, it dodges a FUD campaign]

        At first, it looked like the OpenSSL 3.x security bug was going to be truly awful. While it was feared to be a critical error that could lead to remote code execution (RCE), upon a closer examination it turned out to be not so horrid after all.

      • CISAOpenSSL Releases Security Update | CISA

        OpenSSL has released a security advisory to address two vulnerabilities, CVE-2022-3602 and CVE-2022-3786, affecting OpenSSL versions 3.0.0 through 3.0.6.

        Both CVE-2022-3602 and CVE-2022-3786 can cause a denial of service. According to OpenSSL, a cyber threat actor leveraging CVE-2022-3786, “can craft a malicious email address to overflow four attacker-controlled bytes on the stack. This buffer overflow could result in a crash (causing a denial of service) or potentially remote code execution,” allowing them to take control of an affected system.

      • IT WireiTWire – OpenSSL patches released, UK sec expert’s judgment justified

        The OpenSSL Project has released fixes for two vulnerabilities in the open-source cryptographic library, with the severity of both rated “high”. The accompanying documentation has justified the advice of British security expert Kevin Beaumont not to get carried away by hype over the expected announcement, as iTWirereported.

        The project said it had released advisories about “CVE-2022-3786 (“X.509 Email Address Variable Length Buffer Overflow”) and CVE-2022-3602 (“X.509 Email Address 4-byte Buffer Overflow”)”.

      • LWNOpenSSL 3.0.7 released [LWN.net]

        The much-anticipated OpenSSL 3.0.7 release, which fixes some high-risk security problems, is available. The release notes list two vulnerabilities (CVE-2022-3786 and CVE-2022-3602) that have not yet been documented on the OpenSSL vulnerabilities page. LWN commenter mat2 has provided the relevant information, though. It is worth updating quickly, but many sites do not appear to be at immediate risk.

      • DebugPointOpenSSL 3.0.7 Fixes Two High-CVEs with Buffer Overflow

        The highly anticipated OpenSSL 3.0.7 is now released, fixing two high-severity CVEs. All the major Linux distributions across desktops and, most importantly, server admins have been waiting for this fix since it was reported last week by the OpenSSL team. Due to the criticality of this package, some distro releases got delayed (such as Fedora 37), and probably some patching activities across the industry.

        Both the high severity fixes are due to buffer overrun, which impacts the entire OpenSSL 3.0.0 series (i.e. from 3.0.0 to 3.0.6). Alarming, it may sound, but these two vulnerabilities have been out in the wild for almost a year since the 3.0.0 release in 2021.

        The first CVE-2022-3786 triggers when a malicious email address with arbitrary payload with character “.” (decimal 46). The second vulnerability, CVE-2022-3602, also deals with another payload with the same email address in name constraints, checking for X.509 certificates.

      • Hacker NewsOpenSSL Releases Patch for 2 New High-Severity Vulnerabilities

        The OpenSSL project has rolled out fixes to contain two high-severity flaws in its widely used cryptography library that could result in a denial-of-service (DoS) and remote code execution.

        The issues, tracked as CVE-2022-3602 and CVE-2022-3786, have been described as buffer overrun vulnerabilities that can be triggered during X.509 certificate verification by supplying a specially-crafted email address.

        “In a TLS client, this can be triggered by connecting to a malicious server,” OpenSSL said in an advisory for CVE-2022-3786. “In a TLS server, this can be triggered if the server requests client authentication and a malicious client connects.”

      • LWNSecurity updates for Tuesday [LWN.net]

        Security updates have been issued by Debian (python3.7), Gentoo (android-tools, expat, firefox, libjxl, libxml2, pjproject, sqlite, thunderbird, and zlib), Oracle (compat-expat1), Slackware (php8 and vim), SUSE (kernel, libtasn1, podman, and pyenv), and Ubuntu (libtasn1-6).

      • CISACISA Upgrades to TLP 2.0 | CISA

        Today, CISA officially upgraded to Traffic Light Protocol (TLP) 2.0, which facilitates greater information sharing and collaboration. CISA made this upgrade in accordance with the recommendation from the Forum of Incident Response and Security Teams to upgrade to TLP 2.0 by January 2023.

      • CISACISA Releases One Industrial Control Systems Advisory | CISA

        CISA released one Industrial Control Systems (ICS) advisory on November 1, 2022. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

      • Help Net SecurityDeepfakes: What they are and how to spot them – Help Net Security

        The term “deepfake” is used for photo, video or audio content that has been manipulated to make it seem that the subject is doing or saying something they never did or said. This content is created by using AI and machine learning techniques.

        Some deepfakes are obvious and we can detect them with the naked eye by looking for inconsistencies. With increased sophistication of deepfake technology, though, deepfake detection technologies had to be and have been developed in recent years.

      • XSAs released on 2022-11-01 | Qubes OS

        The Xen Project has released one or more Xen Security Advisories (XSAs). The security of Qubes OS is affected. Therefore, user action is required.

      • QSB-085: Xenstore: Guests can crash xenstored (XSA-414)
    • Freedom of Information / Freedom of the Press

      • IT WireiTWire – Ex-CIA head Pompeo served with lawsuit over alleged Assange spying

        Former US secretary of state and ex-head of the CIA Mike Pompeo has been formally served with a lawsuit which claims he provided oversight for a criminal conspiracy to violate Fourth Amendment rights of American lawyers and journalists inside the Ecuadorian embassy in London.

        Pompeo is one of the defendants in the case, which also names the CIA, security firm UC Global and UC Global director David R. Morales Guillen. They are accused of spying on WikiLeaks publisher and founder Julian Assange and his visitors while he took refuge in the embassy.

        A statement from the Assange Defence Committee said the suit was served on the former CIA head as he was posing for photographs at the John Ashbrook Memorial Dinner in Ohio on 29 October.

        The plaintiffs, who include renowned civil rights activist and human rights attorney Margaret Ratner Kunstler, attorney Deborah Hrbek and journalists Charles Glass and John Goetz, visited Assange while he was in the embassy.

        [...]

        Plaintiff Margaret Ratner Kunstler blasted the threat such surveillance poses to constitutional liberties.

        “If a foreign journalist can be prosecuted for publishing factual documents, then no journalist is safe,” she said. “And apparently Mike Pompeo believes that attorneys representing journalists should not be safe either. These actions are outrageous.”

        The suit claimed these actions were authorised and approved by Pompeo.

        Assange is currently being held in Belmarsh prison in the UK, pending an appeal against his extradition to the US which was approved by British Home Minister Priti Patel on 17 June.

    • Monopolies

      • Public KnowledgePublic Knowledge Welcomes Competition Win as Federal Judge Blocks Publishing Merger – Public Knowledge

        Yesterday, a federal judge blocked the merger of Penguin Random House and Simon & Schuster. The proposed merger would have created a publishing giant responsible for half of the top-selling books from the first- and fourth-largest publishing houses, further consolidating an already concentrated marketplace. The Department of Justice sued to block the merger last year in a complaint highlighting the potential harms to authors, other publishers, and readers. Public Knowledge celebrates this long overdue reinvigoration of antitrust law and enforcement in the all-important publishing industry, and looks forward to equally bold actions to free e-books and combat Big Tech dominance.

  • Gemini* and Gopher

    • Personal

      • Me Boot Sequence

        Traditionally speaking, October has been a time of shutting down, tuning out, and imploding. It has been this way for as long as I can remember and my symptoms have only worsened as time progresses. Recently Octobers have been almost unbearable.

        Towards the end of September every year I start to feel my psyche shift. I get what I have inaccurately been calling “stressed,” the symptoms of which include the following: I become more irritable, my muscles tense up and refuse to relax (especially in my neck and shoulders), my menstrual cycle goes awry, I don’t get any restful sleep, I develop an annoying twitch in my left eye, I hallucinate, my memory stops functioning, I am easily overwhelmed, I have bouts of confusion, and I have serious difficulties thinking and speaking properly. Halloween marks the grand finale. Then, November comes over me like a cool mist on a still early morning and I start to breathe normally again. Well, whatever normal means.

      • Settling in to the new house

        It’s pretty early in the morning for me as I write this, having grown accustomed to afternoon shift over the past five years. I’ve been up since about 7:30 local time sipping coffee, slicing vegetables and listening to a nice Jazz session featuring Danny Gatton and a young Joshua Redman. I’ve just finished filling the crocpot with Roma tomatoes, sweet yellow onion, green bell pepper and three varieties of beans. Browning some ground beef to add and in about 8 hours we’ll be eating bowls of chili on a fall day.

      • Extreme fortunes, Brevard, NC edition

        Last week, Bunny and I ate at the Twin Dragons Grand Buffet (and if there was a website, I’d have linked to it). After dinner I checked my fortune cookie and lo:

        [Fortune cookie fortune that says “Vous savez bien apprécier des belles choses.”] Maybe if we were eating in a Vietnamese restaurant, this would make sense. [1]…

      • Autumn in Small Town on West Coast

        The sky is cloudy grey that’s makes one wonder if today the day that the rain will finally come to this very dry land suffering from this summer’s harsh punishment. it’s have finally begun to feel more like Autumn, but the trees were delay charging their colors and slowly begin to shed some of their colors off. and all I can do is stay in my shelter and keep warm preparing for the weather to slowly get colder by each passing day. of course, there are dangers that occur in the colder months. mists that blind your field of view but touching your skin with chilly breezes hitting against your face and small water particles landing on your hands that are invisible. but you’re greeted by frost cover plants and tricky grey passageways waiting for you to fall. along with multiple color vehicles passing through the rocky black paths. living in a small town in west coast is full of unexpected surprise but at the same time can be a bit dangerous at night.

      • 🔤SpellBinding: UFHLOPE Wordo: ADMIN
    • Politics

      • Oxymoronist: Ministry of Truth

        The attempted launch of the Disinformation Governance Board, aka Ministry of Truth, met with a backlash, but the attempts to gain tighter control over public discourse are obviously ongoing. Although this predominantly concerns social media, the efforts are not limited to the largest ones. An Intercept article reports on some leaked DHS documents, commenting: “How disinformation is defined by the government has not been clearly articulated, and the inherently subjective nature of what constitutes disinformation provides a broad opening for DHS officials to make politically motivated determinations about what constitutes dangerous speech.” They provide some additional insight into the Hunter Biden laptop story, but fail to mention the embarrassing split up with Glenn Greenwald, who had wanted to report on it on the Intercept.

    • Technical

      • Give Me Your Best OpenTTD NewGRFs

        I’ve finished my NewGRF that adds tea to OpenTTD. It’s not publicly available yet, because I want to test it more and see if there’s anything that should be tweaked.

        Now I want to know which mods you all like! Specific vehicles, town names, scenarios, height maps, industries, etc. Anything that makes it fun to start earlier than 1900, or playing later than 2050? Anything that makes gameplay more interesting in general?

      • Internet/Gemini

        • Twitter and autonomy

          There’s space for disagreement and nuance (what do we mean by “the most” and “affected”? what happens when similarly-affected people disagree?); no two cultures that abided by this rule would look alike. But it’s completely incompatible with capitalist relations of production, even under the stewardship of liberal democracy.

          Since there seems to be a bit of an exodus from Twitter at the moment, many people have been confronted by the fact that a social media company’s owner (like Elon Musk) or majority shareholder (like Mark Zuckerberg) can unilaterally make decisions that affect millions of people. Since I don’t think the world should work that way, I decided that I would no longer voluntarily enter relationships that do. I may have no choice about needing a job or being a citizen of a state, but I can sure as hell quit Facebook and Twitter. So I quit them (along with a growing list of second-stringers), and have been getting my social media fix on the Fediverse. Here, I do have a say in what sort of behavior is moderated and blocked¹, and if I decide I don’t like my instance’s policies, the system is designed to make it easy for me to find a different instance or even start my own.

          But it’s not just social media, and for me this journey didn’t start there. Most political organizations, including the majority of leftist ones, use leadership and decision-making structures that don’t follow this principle². Democracy, as we’re taught to understand it, can lead to situations where a slim majority dictates the actions of a slim minority, even when those actions have a minimal effect on the majority. Delegated decision-making (electing “leaders”) also creates such situations, especially when leadership terms are long. I spent most of the past five years in such an organization, fighting bitter fights about the org’s projects and goals, and I eventually realized that the whole enterprise doesn’t align with my values.

        • Re: Mayan and Gemini Priests

          The barrier to entry is literally installing one of the many Gemini browsers.

          It’s not rocket science. Click a few times and voila, Gemini.

          If you are that stupid, stick to Windows with a pre-installed Microsoft Web browser, I guess. But how did you get on Mastodon anyway? That requires like, registering and passwords and stuff…

          If you can’t figure out where or how to post, gees, we will miss your brilliant ideas, I guess.


* Gemini (Primer) links can be opened using Gemini software. It’s like the World Wide Web but a lot lighter.

Red Hat (IBM) Hyped Up a Fair Pair of Flaws That Isn’t Critical, Isn’t Actively Exploited, and Even Red Hat’s Distro Isn’t Patching Yet

Posted in Deception, Free/Libre Software, FUD, GNU/Linux, IBM, Marketing, Microsoft, Red Hat, Rumour, Security, Servers, Standard at 3:14 pm by Dr. Roy Schestowitz

Video download link | md5sum 8de27c8022d55f728a4d1c5eb55026e0
Irresponsible Misinformation About OpenSSL
Creative Commons Attribution-No Derivative Works 4.0

Summary: Fuelling Microsoft-affiliated and sometimes Microsoft-funded “news” (noise) sites, Red Hat — and to a lesser extent Fedora — exaggerated the severity of bugs a week before their details’ release (long and purposeless suspense); it’s a case of a boy who cries “wolf!” to get “likes” in Twitter and media coverage that relies on nothing but lousy (inaccurate) "tweets", where fact-checking is impeded by NDAs/embargo

A few days ago we took note of the overhyped (mostly by Red Hat) impending patch for OpenSSL. Red Hat ended up slipping/changing the release date of Fedora, adding some more to the perceived danger, contributing to the scare, resulting in a week’s worth of media misinformation like calling it "zero day" (even in headlines!). This irresponsible hype turns out to be have been outright disinformation (or at best misinformation) about the severity and it’s worth noting that Red Hat is in no hurry to patch its most important products and there are no actively-exploited aspects; in other words, it is not “0-day” and there is no immediate rush to patch (in some cases there is no patch, either).

“We perceive this to be a bit of a media blunder, taking informal “tweets” at face value and trying to compete over who produces the most scary headline/s for about a week already.”The 8 URLs from the video are listed below in a logical order. To quote [4] below “Q: The 3.0.7 release was announced as fixing a CRITICAL vulnerability, but CVE-2022-3786 and CVE-2022-3602 are both HIGH. What happened to the CRITICAL vulnerability?”

We perceive this to be a bit of a media blunder, taking informal “tweets” at face value and trying to compete over who produces the most scary headline/s for about a week already.

Links from the video above

  1. OpenSSL 3.0 Series Release Notes
  2. Vulnerabilities list
  3. OpenSSL Security Advisory [01 November 2022]
  4. CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows
  5. Comments: OpenSSL Outlines Two High Severity Vulnerabilities
  6. OpenSSL 3.0.7 released
  7. OpenSSL Releases Patch for 2 New High-Severity Vulnerabilities
  8. OpenSSL 3.0.7 Fixes Two High-CVEs with Buffer Overflow

Links 01/11/2022: Nitrux 2.5 and Linux Mint’s Plans

Posted in News Roundup at 10:49 am by Dr. Roy Schestowitz

  • GNU/Linux

    • Applications

      • DebugPointBest Remote Desktop Clients for Ubuntu and Other Linux [2022]

        Remote desktop clients allow you to connect to any other desktop/server and perform tasks remotely. It’s one of the important aspects of IT support and other commercial use cases. In Linux, there are many remote desktop clients available. Some of them are free, while others are paid versions. All of these clients support popular remote desktop protocols (RDP) such as VNC, RDP and others.

        This article looks at some of the best free remote desktop clients for Ubuntu and other distros. The list includes free and open-source apps and some free-to-use but proprietary apps.

    • Instructionals/Technical

      • Manuel MatuzovicDay 26: using combinators in :has()

        It’s time to get me up to speed with modern CSS. There’s so much new in CSS that I know too little about. To change that I’ve started #100DaysOfMoreOrLessModernCSS. Why more or less modern CSS? Because some topics will be about cutting-edge features, while other stuff has been around for quite a while already, but I just have little to no experience with it.

      • 50 Useful Vim Commands

        Here are 50 useful Vim commands that work in normal mode. Many of these can be combined and modified to produce dozens more. Use these as inspiration for your own repeatable workflows. In no particular order: [...]

      • DJ AdamsMore Untappd data explorations with jq – my top ranking beer types (part 2)

        So now it’s time to pick out the data I need for the analysis, and that is, for each checkin, the beer’s category, and my rating. I’ll start by just mapping the array of checkin objects to an array of smaller objects just containing these two things: [...]

      • uni TorontoSilencing KDE application notification sounds under fvwm

        Although I don’t use KDE as a desktop, I use a few KDE applications from time to time, mostly kdiff3. Among other things, kdiff3′s what Mercurial prefers to use when resolving conflicts in a ‘hg pull -u’, which comes up from time to time as I have a custom copy of the Firefox development tree. For a while now, kdiff3 and the occasional other KDE applications I use have been making noises at me to notify me of various things. I’m very strongly against programs making noises at me and normally turn this stuff off, but this time around I couldn’t find an obvious way to do it in places like kdiff3′s own application settings. Normal people might reach for their desktop’s general settings, but for my sins I don’t use a desktop environment; I use a custom setup built around fvwm as my window manager.

      • Installing Linux Images on Toradex Verdin Boards

        In the post Setting Up Yocto Projects with kas, we built the Linux image for the Toradex Verdin iMX8M Plus. It’s time to flash the image on the board using the Toradex Easy Installer (TEZI). It’s a three-step procedure: wire up the board in a special way, install and run TEZI on the board, and flash our custom-built Linux image from a USB drive on the board.

      • VideoVim: How To Comment Multiple Lines – Invidious

        Vim has a visual block mode which lets you do multiline comments easily. In this video I show you how to comment out a function block using the visual block mode relatively quickly with minimal typing.

      • HowTo ForgeHow to Install Wiki.js on Rocky Linux 9
      • HowTo ForgeHow to Install MEAN Stack on Ubuntu 22.04

        The MEAN stack is a free and open-source JavaScript-based framework used for developing web applications.

      • It’s FOSSHow to Remove Snap Packages from Ubuntu and Other Linux

        Installed Snap package earlier and now you want to uninstall it?

      • Red Hat OfficialHow to work with lists and dictionaries in Ansible | Enable Sysadmin

        Learn how to analyze and use data in lists and dictionaries, a crucial skill for anything you want to do with Ansible.

      • H2S MediaCommand to view DNS records for a Domain in Ubuntu Linux

        The Domain Name System (DNS) is a central directory service that is responsible for name resolution on the Internet. If problems arise, it can sometimes be useful to take a look behind the scenes and, for example, to determine an IP address for a hostname. A useful tool for this purpose is nslookup, which we will introduce to you in more detail in this post.

    • Games

    • Desktop Environments/WMs

      • K Desktop Environment/KDE SC/Qt

        • It’s FOSSKate Editor is Getting Four New Awesome Features

          Kate Editor is a constantly evolving and powerful open-source text editor that acts as a viable alternative to Microsoft’s proprietary Visual Studio Code application.

          It is available for Linux, Windows, and macOS.

          The code editor received a significant upgrade in 2021 potentially making it KDE’s answer to Microsoft’s offering.

        • KDE Yocto Updates – cordlandwehr

          Time is running and already a couple of weeks passed since I have been at this year’s Akademy in Barcelona. It was great to (finally again!!!) meet people in person and talk about free software projects, while eating tapas our having nice beer.

          One of the topics on my agenda was the next iteration of our Yocto layers. At the moment we have two layers provided by KDE for downstream usage, “meta-kf5” and “meta-kde“. The first provides a simple integration of KDE Frameworks into Yocto projects and the second one is a set of KDE Plasma (Desktop, Mobile & Bigscreen) and KDE Gears applications, which is mostly focused on providing nice show cases of KDE software.

  • Distributions and Operating Systems

  • Free, Libre, and Open Source Software

    • Web Browsers/Web Servers

      • Jim NielsenWebsite Fidelity: Browser Perspective

        Website owners aren’t necessarily incentivized to start stripping stuff out of their websites in order to support lower fidelities (including a fidelity of zero JavaScript). What you need is like an agent: somebody who works on your behalf as a user and can do for you what site owners won’t — a user agent if you will 🥁.

    • SaaS/Back End/Databases

      • Phil EatonA minimal RocksDB example with Zig

        This post is going to be a mix of RocksDB explanations and Zig explanations. By the end we’ll have a simple CLI over a durable store that is able to set keys, get keys, and list all key-value pairs (optionally filtered on a key prefix).

    • Productivity Software/LibreOffice/Calligra

      • Document FoundationDo something awesome! Join the Month of LibreOffice, November 2022 – The Document Foundation Blog

        Love LibreOffice? ❤ You’re not alone – tens of millions of people use the software every day. And hundreds of people around the world collaborate to improve the suite, update its documentation and help to spread the word. Join them!

        In the coming four weeks, we’d love it if you get involved, join our community, and have fun. You can build up valuable skills for a future career – and you don’t need to be a programmer. There are many ways to help make LibreOffice awesome, as we’ll see in a moment.

      • Document FoundationLibreOffice and Google Summer of Code 2022: The results

        This year, LibreOffice was once again a mentoring organization in the Google Summer of Code (GSoC), a global program focused on bringing more student developers into free and open source software development. Two projects were finished successfully. Students and mentors enjoyed the time, and here we present some of the achievements, which should make their way into LibreOffice 7.5 in early February 2023!

    • Programming/Development

      • Python

      • Shell/Bash/Zsh/Ksh

        • Data SwampNushell: Introduction to a new kind of shell

          In a nutshell, nushell is non-POSIX shell, so most of your regular shells knowledge (zsh, bash, ksh, etc…) can’t be applied on it, and using it feels like doing functional programming.

          It’s a good tool for creating robust data manipulation pipelines, you can think of it like a mix of a shell which would include awk’s power, behave like a SQL database, and which knows how to import/export XML/JSON/YAML/TOML natively.

  • Leftovers

    • The NationWhy Did the Football World Reject Geno Smith?

      On this week’s episode of the Edge of Sports podcast, we spoke to sportswriter Chuck Modiano about shock NFL MVP candidate Geno Smith, quarterback for the Seattle Seahawks. Chuck predicted this for Smith when others did not. We talk about what he saw.

    • The NationThe Odyssey

      In the most trivial sense, books about being undocumented are about immigration. Dan-el Padilla Peralta’s Undocumented, Julissa Arce’s My (Undocumented) American Dream, Jose Antonio Vargas’s Dear America, Karla Cornejo Villavicencio’s The Undocumented Americans, and Qian Julie Wang’s Beautiful Country are all about how US immigration policies can sever family ties and categorically exclude populations deemed “undesirable.” These narratives are also about much more: They are about family, childhood, trauma, gender, loss, and joy. They are about the ways in which migrants are far more than the sum of what the United States puts hem through. They are agents in their own right, who define and shape their histories.

    • HackadayDropping Marbles With Millisecond Accuracy

      [Martin] of the band [Wintergatan] is on his third quest to build the ultimate musical marble machine, and that means dropping marbles with maximum reliability and precision timing. Working through several iterations, and returning to first principles, he engineered a marble gate that can drop marbles with a timing standard deviation of 0 ms.

    • MeduzaSquatters take over Amsterdam home of sanctioned Yandex founder Arkady Volozh — Meduza

      A group of squatters have taken up residence in a house in Amsterdam that belongs to Yandex founder Arkady Volozh, they told the publishing network IndyMedia.

    • Counter PunchWe Can’t Go On, We Must Go On

      Beckett’s story was unspeakably strange to me when I first read it in 1979. It seems very familiar to me now. Nothing seems to happen. Or perhaps everything that’s happening has already happened before. He’s stuck in a history that keeps repeating itself like a needle stuck in a lethal groove. If history won’t move, he must. This is our challenge, too, isn’t it? But not only must we move, we need to move others along with us.

    • Counter PunchAmerican Values or Christian Beliefs

      It is remarkable that United States citizens wrote this, for America, their nation, is a Constitutionally secular government, and through its 250-years it has not only “long endured,” it has thrived, to become in many ways the most successful nation in history.

    • Counter PunchThe Art of Protest: Selling Out van Gogh and 8 Billion Others

      In life, van Gogh was an impoverished painter, suffering for his unappreciated work. In death, he is anything we want him to be. Perhaps the soup-throwing protesters wanted to draw attention to the exploitation of art or how materialism devours the spirit, including a broken artist’s dreams. That is, along with the obvious plea emblazoned on their t-shirts for an end to oil. Is any work of art safe from such acts? Is any artist safe from exploitation?

    • Education

    • Hardware

      • Hackaday3D Printed Strain Wave Gearbox

        3D-printed gearboxes are always an interesting design challenge, especially if you want to make them compact. [ZeroBacklash] created a little strain wave gearbox (harmonic drive) for when you want to trade speed for torque on NEMA 17 stepper motors.

      • HackadayInfinitely Scrolling E-Ink Landscape Never Repeats

        Traditional Chinese landscape scrolls can be a few dozen feet long and require the viewer to move along its length to view all the intricate detail in each section. [Dheera Venkatraman] replicated this effect with an E-Ink picture frame that displays an infinitely scrolling, Shan Shui-style landscape that never repeats.

      • HackadayThe Best Threaded Holes For Resin Parts

        Threaded inserts are great for melting into FDM prints with a soldering iron. The process isn’t so simple for resin prints, since they don’t generally soften with heat. Off course, you can also print the threads directly, screw a bolt into an un-threaded hole, or tap a hole. Following his usual rigorous testing process, [Stefan] from CNC Kitchen investigated various ways of adding threaded holes to resin prints.

      • HackadayLighting Up Glue Stick Bicycle Tyres With RGB

        Being visible to motorists is a constant concern for cyclists, but we doubt [The Q] will have this problem with his RGB LED illuminated tires made from glue sticks.

    • Health/Nutrition/Agriculture

      • Eesti RahvusringhäälingAir pollution a matter of life and death

        Around Europe, air pollution is still the number one environmental cause of premature death, with hundreds of thousands of people dying early every year due to dirty air. In Estonia, the most recent figures show 500 people dying before their time every year. Millions more suffer from the effects of polluted air, with asthma, cardiovascular diseases and lung cancer, all of which are now linked to pollution beyond dispute.

    • Security

      • Krebs On SecurityAccused ‘Raccoon’ Malware Developer Fled Ukraine After Russian Invasion – Krebs on Security
      • Make Tech EasierFTC Orders Homework Help App Chegg to “Shore Up Security” [Ed: Fake security for stuff that ought to be banned (far more harms then benefits)]

        Chegg has offered various educational tools for high school and college students over the years. This includes a homework help app and a scholarship search service. While this sounds great initially, if it’s not protecting students’ personal information, then the help really isn’t … helpful.

      • Hacker NewsCritical RCE Vulnerability Reported in ConnectWise Server Backup Solution

        IT service management software platform ConnectWise has released Software patches for a critical security vulnerability in Recover and R1Soft Server Backup Manager (SBM).

        The issue, characterized as a “neutralization of Special Elements in Output Used by a Downstream Component,” could be abused to result in the execution of remote code or disclosure of sensitive information.

        ConnectWise’s advisory notes that the flaw affects Recover v2.9.7 and earlier, as well as R1Soft SBM v6.16.3 and earlier, are impacted by the critical flaw.

      • Privacy/Surveillance

        • Matt RickardFacebook’s Culture Book (2012)

          When Facebook hit one billion users in 2012, it started leaving little red books on everyone’s desk. These books contained stylized graphics of the company’s culture and what it aspired to. It’s an interesting snapshot of Mark’s thinking at the time and interesting to reflect on today, especially since the company is at an important crossroads. The full text is below: [...]

    • Defence/Aggression

    • Environment

      • Green Party UKRishi Sunak must show global leadership at COP27, say Greens

        “Despite being pushed into attending, if he does ultimately go to the COP27 climate talks, we should welcome this news. With the UK holding the COP26 presidency, attending to hand the baton on to Egypt is absolutely essential to demonstrate the UK’s commitment to building on last year’s climate talks. 

      • Counter PunchGuinea’s Plight Lays Bare the Greed of Foreign Mining Companies in the Sahel

        Boké, in northwestern Guinea, is the epicenter of the country’s bauxite mining. Guinea has the world’s largest reserves of bauxite (estimated to be 7.4 billion metric tons) and is the second-largest producer (after Australia) of bauxite, an essential mineral for aluminum. All the mining in Guinea is controlled by multinational firms, such as Alcoa (U.S.), China Hongqiao, and Rio Tinto Alcan (Anglo-Australian), which operate in association with Guinean state entities.

    • Finance

      • Counter PunchRevolutionary Marxism vs. Chomsky: Reflections on a Recent Interview

        The title of the interview is “The Class War Never Ends, the Master Never Relents’: An Interview with Noam Chomsky.” I find this a bit odd. That’s because Barsamian and Chomsky talk about what Chomsky calls the “proto-fascist” (more on that term below) attack on “what’s left of democracy” – an assault notable in Chomsky’s words for its “white supremacy, racism, misogyny, Christianity, anti-abortion rights” (Chomsky’s words).  Clearly, then, we are dealing also with race war, gender war, religious war, and culture war, and an overall war on democracy. These attacks are taking place in a class rule society and fuel divisions that serve the capitalist ruling class, of course, but they do not simply reduce to “class war.”

      • MeduzaCrimea set to nationalize property that belongs to people and organizations ‘tied to Kyiv’ — Meduza

        Sergey Aksyonov, head of government in the Russian-annexed Crimea, has ordered a nationalization of private property belonging to either people or organizations “tied to the Kyiv regime.” 

      • The NationThe Fed’s Ruinous Course

        The financial shamans at the Federal Reserve, America’s central bank, are hiking interest rates at a record rate, intent on slowing growth, throwing millions of workers out of work, and suppressing wage increases. If the Fed holds its course, it will drive the economy into a recession or worse, add to poverty and inequality in the United States, trigger a debt crisis amid growing hunger across the world—and quite likely help elect Donald Trump or whatever gelded MAGA stand-in Republicans end up nominating in 2024. Yet, faithful to the gospel of central bank independence, neither the president, nor Democratic congressional leaders, nor, with few exceptions, progressive legislators have questioned the Fed’s ruinous course.

      • TruthOutMore Churches Are Making Illegal Endorsements as IRS Fails to Enforce Law
      • Common DreamsOpinion | A Wealth Tax Won’t End Inequality But It Could Help Fund a Much Better Society

        Every time I hear that we as a nation cannot afford something—whether that might be assuring non-toxic water in Jackson and Flint or universal pre-K or an industrial policy with teeth—I have wondered how many dollars a national wealth tax might yield. So I looked the numbers up.

      • Common Dreams‘Could Be a Political Game Changer’: Biden to Float Windfall Profits Tax on Oil Giants

        Biden is set to float the popular tax proposal during a White House speech at 4:30 pm ET, days after oil companies in the U.S. and Europe reported massive—and, in the case of ExxonMobil, record-shattering—profits for the third quarter of this year.

    • AstroTurf/Lobbying/Politics

      • New York could become first state with a ‘Right to Repair’ law for electronic devices

        The bill has not been sent to the governor for her signature or veto but Fahy said her and her office have been in contact with the governor’s staff on the issue. However, Fahy said there has been opposition to this first in the nation bill becoming law making it a “David versus Goliath battle.”

      • senate Bill S4104A: 2021-2022 Legislative Session: Enacts the digital fair repair act

        This bill requires original equipment manufacturers (OEM) to make diagnostic and repair information for digital electronic parts and equipment available to independent repair providers and consumers if such parts and repair information are also available to OEM authorized repair providers.

      • RlangGetting acquainted with Mastodon — Instances

        This decentralised approach now also works with short messages. Via Mastodon. I can choose my server, or my instance as it is now called. But my messages can be read by all Mastodon users, no matter which instance they use. I find that convincing.

        Which instance is the right one for me? Who offers me a Mastodon account now?

        My research this weekend revealed 55 potential providers. I collected these manually, I did not find a central overview of providers. (EDIT: As is sometimes the case, after writing this I found the link to the Fediverse Observer. There is even an API there. I’ll take a closer look at that another time).

      • The NationCan the Midterm Elections Help Solve the Climate Crisis?

        Over the past 10 years, Gavin Healy, a senior at the University of California–Berkeley, has seen his hometown in the Lake Tahoe area of Northern California—once a lush, green place—turn brown. A nearby lake is completely drained from a decades-long drought, and uneven water restrictions have created a patchwork landscape. Most summers, fires have brought with them destruction and dangerous air quality. Just last year, a wildfire forced Healy and his family to evacuate their home. Recalling one fire season in 2018, he said, “I remember the sky being completely black, and you can’t breathe, and I’d be walking home for three or four miles, just casually going, and I’d be like, ‘OK, like this is like the most ridiculous thing ever.’”

      • GamingOnLinuxElon Musk completes Twitter takeover, Nextcloud to ship their own social network app

        Just a bit of big industry news to cover today, as an update to the previous article talking about Elon Musk and Twitter — as the sale has completed. Plus a reminder on Mastodon and Nextcloud doing some fun social stuff too.

      • Common DreamsBolsonaro Yet to Concede as Progressives Worldwide Celebrate Lula’s Win

        “Six years ago, the coup against Dilma Rousseff ushered in a dark period in Latin America’s largest country,” DiEM25, a pan-European pro-democracy movement, said in a statement Monday, referring to the 2016 ouster of Lula’s presidential successor and ally. “A darkness that deepened with the political imprisonment of Lula, and culminated with the election of Jair Bolsonaro and the disastrous—and criminal—acts perpetrated by him during his presidency.”

      • Common Dreams‘Lungs of the Earth Will Breathe Easier Tonight’: Amazon Defenders Cheer Lula Victory

        Da Silva, who is commonly called Lula, spoke directly in his victory speech about protecting the 1.5 million square miles that the Amazon spans in Brazil, saying, “Brazil and the planet need a living Amazon.”

      • TruthOutBolsonaro Has Yet to Concede After Lula Wins by More Than 2 Million Votes
      • Common DreamsOpinion | Lula’s Victory in Brazil Proves Transformative Change Is Won When We Are United

        “Those in power can kill one, two, or a hundred roses, but they’ll never be able to stop the arrival of spring.”

      • Scheerpost‘A Brazil of Hope’ as Leftist Lula Defeats Far-Right Bolsonaro in Presidential Runoff

        Brett Wilkins reports on reactions to Lula’s win against Jair Bolsonaro in Brazil’s presidential runoff elections.

      • Democracy NowLula Defeats Bolsonaro in Brazil in What Many See as a Victory for Democracy & the Earth

        Leftist presidential candidate Luiz Inácio Lula da Silva has won Brazil’s runoff election, ousting far-right President Jair Bolsonaro after just one term. Lula won with 50.9% of the vote, though Bolsonaro has yet to concede. Other world leaders, including U.S. President Joe Biden, were quick to congratulate Lula on his victory in an effort to forestall efforts by Bolsonaro and his allies to deny the results. Brazilian socialist organizer Sabrina Fernandes says Lula is trying to return “democratic normality” after four years of Bolsonaro’s environmental destruction, COVID denial and undermining of the country’s institutions. Lula’s victory is also a win for Indigenous peoples, whose sovereignty was disregarded under Bolsonaro amid rampant deforestation of the Amazon rainforest, says freelance journalist Michael Fox.

      • Common DreamsOpinion | Lula’s Win a Victory for Amazon Rainforest and Global Climate

        Luiz Inacio Lula da Silva was elected on Sunday to his second (non-consecutive) term as president, in a victory for the planet earth as well as for Brazil. He first served 2003-2010. Since 2019, Brazil’s president has been the far right demagogue Jair Bolsonaro, who just lost to the leftist da Silva, affectionately known by his nickname “Lula.”

      • The NationElon Musk’s Big Twitter Adventure Will End in Disaster

        On Thursday, Elon Musk completed his protracted and bumpy purchase of Twitter, a contentious business deal he himself had been working to terminate just a few months ago. Hours later, in the dark of Friday morning, an assailant broke into Nancy Pelosi’s house in San Francisco with the apparent intent of harming or killing her. The break-in ended with a hammer attack on Pelosi’s husband. The two events are linked together by chronological proximity. Reporting quickly made clear that the alleged attacker, David DePape, had imbibed a toxic stew of social media hate speech.1

      • TruthOutAfter Twitter Takeover, Elon Musk Tweets Far Right Conspiracy on Pelosi Attack
      • The NationThe Pelosi Attack Marks an Age of Political Violence

        Last week’s attack on Paul Pelosi, husband of House Speaker Nancy Pelosi, at the couple’s San Francisco home represents another in a long series of stress tests for American democracy. And as at past such inflection points—the January 6 insurrection, the mobilization of a vast corps of election-denying and conspiracy-mongering candidates in the GOP, the pillaging of social media platforms by feckless billionaires—the system is showing every sign of impending breakdown. An assassination attempt targeting the person third in line for the presidency—Paul Pelosi’s hammer-wielding assailant, David LePape, reportedly shouted, “Where is Nancy?”: the same refrain raised by January 6 rioters vandalizing the speaker’s office—largely registered within key segments of the American right as a regrettable and over-ardent case of propaganda-by-deed , if not indeed another conspiracy targeted at their movement.

      • Counter PunchElon Musk Takes Over Twitter, Can We Stop Wasting Time on Campaign Finance Reform?
      • TechdirtLet’s Talk About Twitter Verification!

        You may recall that, back in April, Elon Musk announced that one of his plans was to “authenticate all real humans” on Twitter. This was his plan to somehow magically get rid of spam. As we noted at the time, doing so would create some pretty serious questions regarding freedom of speech on the platform when it comes to protecting anonymous voices.

      • Pro PublicaElections Officials Facing Unprecedented Challenges

        The elections director, 47-year-old Michella Huff, who’d lived in the county since high school and knew many voters by name, considered it ludicrous that anyone could think the election had been rigged in Surry County. Donald Trump had received upward of 70% of the roughly 36,000 votes cast. Huff, a registered Republican for most of her adult life, had personally certified the vote.

      • Counter PunchThe NYT Loses Its Editorial Mind

        The DoJ ban on the seizure of records or notes from reporters is particularly noteworthy. Nevertheless, one of the Times’ editorials charged that Biden “rarely has set policy goals,” and as a result Biden’s appointees have “no idea how the president would want them to make key decisions.”  The new DoJ rules institutionalized a policy that President Biden put in place last year, which certainly qualifies as an example of Cabinet officials knowing what the president wanted as well as an example of Biden knowing what he wanted to do from the outset.  Yet, Yuval Lewin from the American Enterprise Institute, a contributing Opinion writer at the Times,  referred to Biden’s “presidential feebleness.”

      • Common DreamsAIPAC Super PAC Throws in Against Progressive Democrat Summer Lee

        According to new federal filings, the United Democracy Project (UDP) has dropped nearly $80,000 on mailers opposing Lee, who overcame millions in UDP spending to win the district’s May primary over corporate lawyer Steve Irwin.

      • TruthOutAIPAC Super PAC Ramps Up Spending Against Progressive Democrat Summer Lee
      • Common DreamsFetterman Calls on Dr. Oz to Fire ‘Multiple Insurrectionists’ on Staff

        Rolling Stone reported on Sunday that at least two people working on Oz’s campaign attended the rally former President Donald Trump held in Washington, D.C. on January 6, 2021 before thousands of his supporters waged an attack on the U.S. Capitol and tried to stop lawmakers from certifying the 2020 election results.

      • TruthOutRight-Wing Hostility to Elections Harkens Back to Jim Crow “Apartheid,” AOC Says
      • TruthOutAOC: McCarthy’s Relative Silence on Paul Pelosi Attack Shows “Who He Is”
      • TruthOutGOP Insiders Predict DOJ Will Indict Trump After Midterms
      • Common DreamsTrump Asks Supreme Court to Halt Release of IRS Records to House Dems

        Trump’s request comes after a federal appeals court paved the way last week for the Internal Revenue Service (IRS) to turn over his tax records to the Democratic-led House Ways and Means Committee.

      • Counter PunchThe Unspoken Label for America’s Growing Political Movement is “Reactionary”

        The easiest way to note the relative absence of using “reactionary” would be to watch liberal or conservative-oriented media. Think about how often you hear the word “reactionary” from news analysts and commentators on CNN, MSNBC, or Fox News describe politicians, policies, or organizations. It would fall into the range of seldom to almost never.

      • Craig MurrayA Real Plebiscite Election, or Fight the SNP

        A “plebiscite election” on Scottish Independence can only mean an election fought on that issue with the understanding that, if the election is won, Independence will be declared. It cannot mean anything else.

      • ScheerpostOh, Great Democracy!
      • The NationScary Times for Democracy
      • ScheerpostChris Hedges: Death of an Oracle

        We have very few oracles. The loss of the poet Gerald Stern means we have one less.

      • Counter PunchThe Democrats Murder Another Third Party
      • Counter PunchIndependent State Legislature: the New Pitch-Black

        Moore involves whether the Election Clause (Article I, section 4 of the Federal Constitution) validates the Independent State Legislature (ISL) theory.  Not surprisingly, ISL has been and is being promoted by Donald Trump as part of the Big Lie and his effort to subvert Joe Biden’s win of the 2020 presidential election (by both the popular and electoral college votes).

      • TruthOutSocialist and Centrist Visions for Housing Are at Center of LA City Council Race
      • Misinformation/Disinformation/Propaganda

        • DeSmogDeSmog Launches Project to ‘DeBunk’ Climate Misinformation

          This misinformation is being pumped out when, as UN climate science body the IPCC has said, we have “a brief and rapidly closing window of opportunity to secure a liveable and sustainable future for all”.

        • NPRRight-wing “zombie” papers attack Illinois Democrats ahead of elections

          Pri Bengani, a senior researcher at the Tow Center for Digital Journalism at Columbia University, counted more than 1,200 conservative local news outlets connected around the country in Timpone’s network.

          She considers them AstroTurf sites “laundering advocacy,” driven by the interests of their funders, not an interest in news or in making money from the conventional news business. And she says the Illinois papers served as a model for what’s mushroomed nationally. She first issued a study on the proliferation of the sites in 2019.

          In a new report, released today by the Tow Center in the Columbia Journalism Review, Bengani concluded the sites are providing services even beyond the publications.

        • New York TimesThe Latecomer’s Guide to TikTok

          TikTok is not just for viral dance videos — it’s also wildly complicated. Its algorithm, which makes it easy to consume videos, has been blamed for amplifying misinformation and other harmful content. The Biden administration is currently negotiating with ByteDance, TikTok’s Chinese parent company, over concerns about national security and the safety of Americans’ personal data on foreign servers. And there are ongoing concerns about the mental health harms the app may pose to teenagers and young people.

        • Pro PublicaDHS Has Pulled Back on Tracking Disinformation to Help Election Workers

          But the reality of the administration’s efforts has been less robust than its rhetoric. Instead, a ProPublica review found, the Biden administration has backed away from a comprehensive effort to address disinformation after accusations from Republicans and right-wing influencers that the administration was trying to stifle dissent.

    • Censorship/Free Speech

    • Freedom of Information / Freedom of the Press

      • ABCSedition trial begins for closed Hong Kong news site editors

        Stand News editor-in-chief Chung Pui-kuen and acting editor-in-chief Patrick Lam were arrested last December during a crackdown on dissent following widespread anti-government protests in 2019.

        Stand News was one of the city’s last openly critical voices after the closure of the pro-democracy Apple Daily newspaper, whose jailed founder Jimmy Lai faces collusion charges under a sweeping national security law enacted in 2020.

      • Counter PunchAnother Letter from London

        Not so long ago, my journalist friend dated a well known figure working in Hollywood. As a parakeet dramatically chased off a magpie above our heads, we discussed this person and he remembered me encouraging him to write about the experience of being out there at the time and how he now wished he had. He has some wonderful stories still to tell — and I implored him once again to do so — of busy sets and sideline parties interspersed with driving through burning landscapes. One particular story relates to an extremely well known actress upset during a particularly important outdoor shoot that everyone was suddenly diverting their attention from to study instead a giant and wonderful sea mammal breaking through the blue waters of the Pacific Ocean. Affronted the star was. She had been upstaged by a bloody whale. As I said goodbye to my friend, I noticed a long line of black 4x4s choking up the road, with only one person in each. The sun in the sky remained unseasonably warm, almost Californian, as it continued to reach planet earth, and all should really have been well in the world, but it so infuriatingly wasn’t.

    • Civil Rights/Policing

      • Pro PublicaColorado Suspends Custody Evaluator After ProPublica Investigation

        Jaime Watman, of the State Court Administrator’s Office, confirmed the audit of all custody evaluators and said that Mark Kilmer, who has served for decades as an evaluator in Colorado family courts, has been suspended while his “continued suitability” is reviewed. Kilmer was arrested and charged with assault in 2006 after his then-wife said he pushed her to the bathroom floor, according to police reports.

      • The NationHow to Talk About Public Safety

        As we approach the midterm elections, “defund the police” has become a zombie political slogan that just won’t die—thanks to Republican midterm candidates determined to keep it alive as an attack on Democrats, and Democrats who feel compelled to refute it on its own terms. Even President Biden, when he took the stage this summer to inoculate his party against soft-on-crime attacks, fell into the same trap, saying, “It’s based on a simple notion: When it comes to public safety in this nation, the answer is not ‘defund the police.’ It’s ‘fund the police.’”

      • The NationMeredith Tax, 1942–2022

        In her long life, relentless feminist organizer and writer Meredith Tax, who died on September 25 of breast cancer, battled for women and the working class wherever she went. She claimed to have honed her fighting skills during her childhood in Milwaukee, fighting with her mother.

      • Common DreamsRight-Wing Justices Appear Ready to Eviscerate Affirmative Action in College Admissions

        Referring to Students for Fair Admissions v. President and Fellows of Harvard and Students for Fair Admissions v. University of North Carolina—cases he contends were “manufactured to abolish affirmative action in higher education”—Slate’s Mark Joseph Stern argued that “all six conservative justices are poised to declare that colleges’ consideration of race violates the Constitution’s equal protection clause and the Civil Rights Act of 1964, which applies equal protection standards to private institutions.”

      • Project CensoredContextualizing the Events of the Past Month in Iran – The Project Censored Show
      • Counter PunchIran: A Nation With No Illusion

        The basic illusion that helped the Islamic Republic maintain its ideological edifice for decades has been rooted in its base coming from the downtrodden (Mostazafan) who call supposedly for an Islamization of the country and eradication of the Western culture. Understanding their social role and political allure for the regime helps elucidate why and how the 1979 Revolution that toppled a monarchic despotism turned into an Islamic one, a mere replacement of a crown with a turban.

      • ScheerpostUnder Rishi Sunak, Britons Are Set To Face More Austerity, Fewer Rights

        The former chancellor from the ruling Conservative Party is the UK’s third prime minister this year. Sunak’s policy history and present cabinet appointments have raised fears of even more austerity and a drastic curtailing of basic rights.

      • TechdirtFinally: Countries Start To Rebel Against Corporate Sovereignty, But Ten Years Too Late

        Back in 2013, Techdirt wrote about “the monster lurking inside free trade agreements”. Formally, the monster is known as Investor-State Dispute Settlement (ISDS), but here on Techdirt we call it “corporate sovereignty“, because that is what it is: a system of secret courts that effectively places companies above a government, by allowing them to sue a nation if the latter takes actions or brings in laws that might adversely affect their profits.

      • TechdirtIowa Appeals Court Affirms State Cops Can’t Use Their Ignorance Of The Law To Justify Traffic Stops

        In December 2014, the US Supreme Court extended its blessing of pretextual stops to cover imaginary moving violations. Ignorance of the law is the best excuse, cops were told in the Court’s Heien decision. All cops needed to do was make a “reasonable” error when interpreting the laws they enforce and that mistake could be converted into reasonable suspicion supporting the stop.

      • MeduzaSiberian schoolchildren in grades 6–10 stay after school to sew army clothing — Meduza

        After school, students in grades 6–10 in the northern-Siberian town of Labytnangi sew balaclavas and warm cardigans for the Russian troops.

      • MeduzaAnti-war activist and Greta-Thunberg-ally Arshak Makichyan stripped of Russian citizenship — Meduza

        A Russian court has stripped environmental activist and war critic Arshak Makichyan, as well as two of his brothers and his father, of their Russian citizenship, Makichyan has told Meduza. According to him, none of the men have citizenship in any other country.

      • The NationBecca Andrews’s New Book Captures the Final Days of Legal Abortion

        Reporter Becca Andrews’s book about the erosion of abortion rights was supposed to come out in January 2023, the 50th anniversary of Roe v. Wade. But in May, Andrews got a call from her editor: A draft of a Supreme Court opinion had been leaked showing that Roe was about to be overturned, and Andrews needed to get the book done ASAP. The result is a book that reads like the final days of legal abortion captured in amber. In the pages of No Choice, a patient awaits her abortion at a clinic in Tuscaloosa, Ala.; clinic defenders talk back to anti-abortion protesters outside the last clinic in Mississippi; a Tennessee abortion provider considers whether he will one day have to move to continue his life’s work. In all those states, legal abortion is now gone. “I saw the last of something,” Andrews told me. “I don’t really know how to wrap my head around that yet.” But No Choice looks ahead, too, at how the abortion rights movement must change in order to win access for all—and how activists on the ground are already doing this necessary work.

    • Internet Policy/Net Neutrality

    • Monopolies

      • Copyrights

        • Creative CommonsWebinars: AI Inputs, Outputs and the Public Commons

          Here at CC, we’ve been thinking about what AI means for the commons we support, both in our strategy for better sharing and for our collaboration for a better internet. Are all these new works generated by AI part of the open, public commons? Should they be? If someone does hold copyright for an AI work, who is it? The technologists who created the AI tool? The person who uses AI to generate a work? The countless creators whose works trained the AI? The machine itself? Or should works generated by AI live in the public domain, as they do in many interpretations of established law?

        • Torrent FreakTikTok Blocks Z-Library Hashtag Pending Piracy Investigation

          Publishers and authors are not happy with Z-Library, an online repository offering millions of pirated books for free download. The site’s userbase is growing rapidly, in part helped by TikTok users’ viral videos. Following a recent complaint from the Authors Guild, TikTok has banned the hashtag #zlibrary pending further review. But will that help?

        • Torrent FreakCourt Orders Kim Dotcom to Pay Costs After ‘Seized Device’ Challenge Failed

          During the 2012 operation to shut down Megaupload, 135 electronic devices were seized, mostly from founder Kim Dotcom. After the FBI cloned some of the devices and took them back to the U.S., a legal battle over the validity of the original search warrants and the devices ensued. More than a decade later, the matter appears to be over.


* Gemini (Primer) links can be opened using Gemini software. It’s like the World Wide Web but a lot lighter.

Links 01/11/2022: OBS Studio 28.1, SuperTuxKart 1.4, and Orc 0.4.33

Posted in News Roundup at 5:07 am by Dr. Roy Schestowitz

  • GNU/Linux

    • Audiocasts/Shows

    • Kernel Space

      • The Register UKLinux gains ability to repair exFAT drives • The Register [Ed: Describing Linux in Microsoft terms]

        In case you thought the FAT filesystem died out with Windows ME – and good riddance – we have bad news for you. Several versions of it are alive, well, and essential to modern PCs, cameras, phones, fondleslabs, and more. The good news is, you’ll soon be able to fix the FS with Linux.

    • Applications

      • 9to5LinuxOBS Studio 28.1 Released with Updated NVENC Presets, Virtual Camera Improvements

        OBS Studio 28.1 is here two months after OBS Studio 28.0 and introduces updated NVENC presets by splitting them into three different settings, namely Preset, Tuning, and Multipass mode. The Multipass mode comes with three settings itself, namely Disabled, Quarter Resolution, and Full Resolution, and it’s used to determine if a second pass is used in encoding.

        On the other hand, the Tuning mode is used to determine if latency or quality will be prioritized during encoding, and it also comes with three settings, namely High Quality, Low Latency, and Ultra Low Latency. In addition, NVENC presets are now marked as P1 to P7 from the lowest to highest quality.

      • Orc 0.4.33 release

        The GStreamer team is pleased to announce another release of liborc, the Optimized Inner Loop Runtime Compiler.

      • OpenSource.comGet started with Parseable, an open source log storage and observability platform | Opensource.com

        Log data is one of the fastest-growing segments across data storage. It’s also one of the most complicated spaces. There are several products and solutions with overlapping use cases and confusing marketing.

        This article looks at Parseable, a log storage and observability platform. Parseable is geared towards a better user experience, with an easy-to-deploy and use interface and a simple, cloud-native architecture. I’ll also show how to set up Parseable with FluentBit to store logs.

      • MedevelNext Share: Social Sharing Buttons For React Apps

        Next Share is a free library for React apps that allows developers to add social media sharing buttons for all popular networks with no effort.

      • MedevelRnote: Create Beautiful Handwritten notes and Sketches

        Rnote is an open-source vector-based drawing app for sketching, handwritten notes and to annotate documents and pictures. It is an ideal solution for students, teachers and those who own a drawing tablet, it provides features like PDF and picture import and export, an infinite canvas and an adaptive UI for big and small screens.

        [...]

        Rnote is a Free Libre Open-source Software (FLOSS), it is released under the GPL-3.0 License.

    • Instructionals/Technical

      • OpenSource.comTransfer files and folders from Windows to Linux with WinSCP [Ed: Covering Windows instead of Linux again]
      • NextGenTipsHow to Dockerize a Django Application – NextGenTips

        In this tutorial, we are going to learn how to dockerize a Django application so that it will be in a position to run on any platform.

        Docker is a set of platform-as-a-service products that uses OS-level virtualization to deliver software in packages called containers.

        Docker containers allow an application to carry all its dependencies and to take the container anywhere you want it to run reliably be it a laptop, local data center, or on the cloud. What makes Docker very useful in today’s production ecosystem is very efficient and takes away repetitiveness and mundane configuration tasks. So build, share and run it anywhere.

      • Linux NightlyHow to Remove a Package on Manjaro – Linux Nightly

        There are times when we’re not happy with the programs we download and install and want to completely remove them from the system. In this tutorial, we will learn how to remove a package from Manjaro using pacman and GUI method.

      • Linux NightlyGet Public and Private IP in Kali Linux – Linux Nightly

        In this tutorial, we will learn how to get the information of our private and public IP addresses on Kali Linux via command line terminal and GUI.

        If you’re wondering what the difference is between a private and a public IP address, the answer is very simple. A private IP address is one that is connected to a local network and interacts with other devices on the same network. Whereas a public IP is an address that can be only identified on the Internet.

      • TecMintHow to Install and Use VirtualBox 7.0 in AlmaLinux

        In this guide, we will explore how to install VirtualBox 7.0 in AlmaLinux 9 and AlmaLinux 8 distributions to create guest virtual machines using an ISO image file.

        Currently owned and maintained by Oracle, Oracle VM VirtualBox is one of the world’s most popular open-source virtualization platforms that enables users to create virtual machines from the underlying computer hardware.

      • TecMintHow to Install PostgreSQL and pgAdmin in RHEL 9

        In this article, you will learn how to install the PostgreSQL 15 database server and pgAdmin 4 in RHEL 9 Linux distribution.

        PostgreSQL is a powerful, widely-used, open-source, multi-platform, and advanced object-relational database system known for its proven architecture, reliability, data integrity, robust feature set, and extensibility.

        pgAdmin is an advanced, open-source, full-featured, and web-based administration and management tool for the PostgreSQL database server.

      • FOSSLinuxHow to navigate through panes in Tmux | FOSS Linux

        The quick and adaptable command terminal is one of the most defining aspects that distinguishes Linux distributions from other operating systems. The command terminal enables users to carry out complicated commands with only a few lines. That being said, there may be occasions when a single terminal screen is insufficient for your work. However, there are programs available for free to assist you in overcoming this obstacle.

        The ability to move between terminal windows is one of Tmux’s most noticeable features. Switching between Tmux windows and panes will help you handle your commands and shell scripts more effectively. This article will teach you how to browse via various panes in Tmux. Besides, we shall briefly cover this application’s installation and initialization. Therefore, continue reading this article guide to learn more about this subject matter.

      • UNIX CopHow To Install TradingView on Ubuntu 20.04 | 22.04 LTS

        TradingView is a social media network , analysis platform and mobile app for traders and investors . The company was founded in 2011 and today has offices in New York, London and Russia. In 2018, TradingView completed a $37 million Series B round led by Insight Partners, and in 2019 they acquired TradeIT . To date, the company ranks in the top 130 websites globally according to Alexa , and has over 10 million active monthly users.

      • UNIX CopHow To Install Photivo on Ubuntu 20.04 | 22.04 LTS

        In this guide, we will show you how to install Photivo on Ubuntu systems.

        Photivo is a free and open source (GPL3) photo processor. It handles your RAW files as well as your bitmap files (TIFF, JPEG, BMP, PNG and many more) in a non-destructive 16 bit processing pipe with gimp workflow integration and batch mode.

        So, Photivo tries to provide the best algorithms available; even if this implies some redundancy. So, to my knowledge, it offers the most flexible and powerful denoise, sharpen and local contrast (fake HDR) algorithms in the open source world. (If not, let’s port them Although, to get the desired results, there may be a quite steep learning curve .

      • FOSSLinuxHow to change colors in Tmux | FOSS Linux

        The open-source terminal multiplexer Tmux is designed for Unix-like operating systems. It enables the use of several terminal sessions in a single window simultaneously. It is handy for executing many command-line programs concurrently. The GNU screen can be replaced with the terminal multiplexer Tmux. A Tmux session may be created, and many windows can be opened inside of it. Each window occupies the entire screen and has two rectangular panes. Users can start a process, change to another, disconnect, and return to an ongoing process.

        Tmux makes it simple to move between several apps on one terminal and to detach and reattach them to another terminal. Because Tmux sessions are persistent, they will still run even if you are disconnected.

      • UNIX CopHow To Install Jupyter on Ubuntu 20.04 | 22.04 LTS

        Project Jupyter is a project with goals to develop open-source software, open standards, and services for interactive computing across multiple programming languages. It was spun off from IPython in 2014 by Fernando Pérez and Brian Granger. Project Jupyter’s name is a reference to the three core programming languages supported by Jupyter, which are Julia, Python and R. Its name and logo are an homage to Galileo’s discovery of the moons of Jupiter, as documented in notebooks attributed to Galileo. Project Jupyter has developed and supported the interactive computing products Jupyter Notebook, JupyterHub, and JupyterLab. Jupyter is financially sponsored by NumFOCUS.

      • RoseHostingUsing Top, Du, and Netstat as Tools to Monitor Server Resources – RoseHosting

        The du is a shortcut of disk usage, the top is used for showing the running processes, and netstat is for printing network connections, routing tables, interface statistics, masquerade connections, etc. We will explain these commands with real examples, and we will use Ubuntu 20.04 as OS in this tutorial, but you can choose any Linux distro per your choice. Let’s get started!

      • UNIX CopHow To Install Audacious on Ubuntu 20.04 | 22.04 LTS

        In this article, we will show you how to install Audacious on Ubuntu systems.

        Audacious is a free and open-source audio player software with a focus on low resource use, high audio quality, and support for a wide range of audio formats. It is designed primarily for use on POSIX-compatible Unix-like operating systems, with limited support for Microsoft Windows. Audacious is the default audio player in Ubuntu Studio, and was the default music player in Lubuntu until October 2018, when it was replaced with VLC.

      • UNIX CopHow To Install Ristretto on Ubuntu 20.04 | 22.04 LTS

        In this guide, we will show you how to install Ristretto on Ubuntu systems.

        The Ristretto Image Viewer is an application that can be used to view, and scroll through images. It can be used to run a slideshow of images, open images with other applications like an image-editor or configure an image as the desktop wallpaper.

        The image types supported by Ristretto are those supported by the gdk-pixbuf library. This library itself supports a number of basic image types (JPEG, PNG, TIFF, etc.), but then relies on optional libraries to extend the range of supported image types. This means that you will have to install these libraries yourself to extend the range of image types supported by Ristretto. Examples: libwmf, libopenraw, libavif, libheif, libjxl, librsvg, webp-pixbuf-loader.

    • Games

    • Desktop Environments/WMs

  • Distributions and Operating Systems

    • New Releases

      • OSMC’s October update is here – OSMC

        Last month, we released our September update with Debian Bullseye as well as a number of improvements in the process.

        It was a significant update, and despite the extensive testing, issues were reported and we’ve worked hard to get them solved and roll them up promptly. We planned to release this update on Sunday, but we experienced some infrastructure issues that prevented this.

      • It’s FOSSLinux Lite 6.2 Released

        Linux Lite is a popular lightweight Windows-like distro that gives users a familiar operating system.

        The latest release, Linux Lite 6.2, is based on Ubuntu 22.04 LTS and has brought forward a variety of changes to the UI along with various bug fixes.

      • It’s UbuntuLinux Lite 6.2 Officially Released | Itsubuntu.com

        Linux Lite 6.2 is now available for download. Based on Ubuntu 22.04.01 LTS, Linux Lite 6.2 is powered by a lightweight Xfce 4.16 desktop environment.

    • Fedora, CentOS, and Red Hat

      • Enterprisers ProjectEdge computing: 5 must-have career skills | The Enterprisers Project

        One unscientific way to track an IT trend’s growth: Keep tabs on hiring and recruiting. When a term seems to become a job market unto itself – DevOps is a fantastic recent example – it’s probably got staying power.

        Plug the term “edge computing” into sites like LinkedIn, Glassdoor, or Indeed and you’ll get a mix of different IT roles and titles, most of which don’t actually include the term “edge” in the title.

        That makes sense since edge computing is more of a distributed computing architecture than it is a job title. But like with some other big terms before it – DevOps (again) and cloud come to mind – it seems destined to eventually make its way into more job titles, a la “edge architect” or “edge IoT developer.”

      • Fedora ProjectCPE Quarterly Update Q3 2022 – Fedora Community Blog

        This is a summary of the work done on initiatives by the CPE Team. Each quarter CPE Team together with CentOS and Fedora community representatives chooses initiatives that will be worked on in this quarter. The CPE Team is then split into multiple smaller sub-teams that will work on chosen initiatives + day to day work that needs to be done.

        This update is made from infographics and detailed updates. If you want to just see what’s new, check the infographics. If you want more details, continue reading.

      • Red HatHow Kamelets simplify Camel integrations on Kubernetes | Red Hat Developer

        Learn about the advantages and types of Kamelets configuration files which simplify connections to external systems.

      • TecAdminUpgrade Fedora: A Step-by-Step Guide For Beginners – TecAdmin

        If you’re a new user of Fedora, you might not be aware that it comes in different versions. The latest version of Fedora is referred to as the ‘primary’ version and is called the ‘Current’ version. This means that there are previous versions released by the developers that users can upgrade to from a lower version. In this article, we look at how to upgrade your Fedora version. Read on for more information…

        [...]

        Nowadays, there is nothing better than using Linux because it has many benefits that are not available to users using other operating systems. One of the best things about using Linux is that you can easily upgrade the version of this operating system between different releases. Many users often wonder how they can upgrade the version of their Linux operating system because this process can be done easily. This article explains how you can upgrade the version of your Fedora Linux operating system.

    • Debian Family

    • Canonical/Ubuntu Family

    • Open Hardware/Modding

      • ArduinoInteractive Halloween costume lets passersby play Wordle | Arduino Blog

        You’re probably already familiar with the game Wordle — it was a hit in 2021 and then took the world by storm when The New York Times purchased it in 2022. The gameplay is simple to understand, but still challenging. Players have to identify a word through trial and error by making guesses to identify matching letters and letter positions. Ches’ Halloween costume called “Hallo Wordl” lets passersby play a physical version of the game.

        Hallo Wordl’s gameplay is similar to standard Wordle, except that the words are all spooky. Those can include words like “ghost” or “foggy.” There doesn’t seem to be any dictionary checking, so players can enter a string of characters that isn’t a real world. But that isn’t a big deal when this mostly acts as an icebreaker for Halloween parties. Players can enter their guesses using a small 12-button keypad through T9-style typing (though there is no predictive text). That might stop gen-z from playing Hallo Wordl, but it provides a much more compact and affordable interface than a full keyboard.

  • Free, Libre, and Open Source Software

    • UbuntuWhat is OpenSearch? | Ubuntu

      OpenSearch is an open-source search and analytics suite. Developers build solutions for search, data observability, data ingestion and more using OpenSearch.

      Another popular use case is log analytics. You take the logs from applications, servers and network elements, feed them into OpenSearch, and use the rich search and visualisation functionality to identify issues. For example, a malfunctioning web server might throw a 500 error 0.5% of the time, which can be hard to spot unless you have a real-time graph of all the HTTP status codes the server has thrown in the past twenty-four hours. You can use OpenSearch Dashboards to build these kinds of visualisations from data in OpenSearch.

      OpenSearch is offered under the Apache Software Licence, version 2.0, which means it’s free, open source software and maintained by the community. OpenSearch and Dashboards were originally derived from Elasticsearch 7.10.2 and Kibana 7.10.2.

      Open source projects frequently come with very active communities. OpenSearch has had over 1.4 million downloads and thousands of stars across the 70+ GitHub repositories. There are 19 open-source associated community projects and OpenSearch has nearly 6 thousand stars on GitHub. The OpenSearch project is also listed in the top 5 search engines in DB engine rankings.

    • The Register UKOpen source’s totally non-secret weapon: Staying relevant • The Register

      Last week, one fundamental problem for IT cropped up in three very different stories. One story was Google’s parent Alphabet doing an internal audit of all its products on the back of falling profits. One was a highly critical look at Meta’s efforts to put business into VR. And one was Linus Torvalds getting cranky that the i486 architecture was still in Linux’s first-class lounge when it should be packed off to the Old Codes’ Home.

      [...]

      It’s amazing how making money the motivator can break that down. One cost of being rich is that you can ignore the outside world, or see it as something to be bought. That shields against relevance to users. Meta wants everyone to work in the metaverse, and is denying the awkward fact that strapping shoeboxes to our heads is completely irrelevant to our day jobs. But guess how long a career at Meta will be for anyone who says so. Relevance is poison to big wrong projects, and the corporate immune system recognizes it as such.

      Another cost of plump revenues is that they become the only relevant things in your world. Google’s incoherent product strategy is the opportunity cost of management mindset soaking away into the sands of advertising revenue and the resulting wars with regulators and governments. Meta has the same besetting sin, it just minimizes proper strategic planning by declaring it a “vision” instead.

    • Content Management Systems (CMS)

      • MedevelYellow CMS: A Tiny PHP CMS for Fast Websites

        Yellow CMS or Datenstrom Yellow is a PHP based CMS solution for anyone who want to create a simple small website.

        It is easy to be installed either on a local machine or a web server. You can add features, languages, and themes. Datenstrom Yellow works as content management system and static site generator.

        Installing is unzipping one file, and you are ready to go. The most important things for small websites are included.

        [...]

        GPL-2.0 Only.

    • Programming/Development

      • Dirk EddelbuettelDirk Eddelbuettel: RcppRedis 0.2.2 on CRAN: Maintenance and Enhancement

        A new minor release 0.2.2 of our RcppRedis package arrived on CRAN this evening. RcppRedis is one of several packages connecting R to the fabulous Redis in-memory datastructure store (and much more). RcppRedis does not pretend to be feature complete, but it may do some things faster than the other interfaces, and also offers an optional coupling with MessagePack binary (de)serialization via RcppMsgPack. The package has carried production loads for several years now.

      • Shell/Bash/Zsh/Ksh

        • Linux HandbookUsing If Else Statements in Awk

          AWK is a powerful scripting language that comes baked into the bash shell.

          It is extremely versatile and can be used to write all kinds of data extraction scripts.

          Conditional statements are an integral part of any programming or scripting language and AWK is no different.

          In this tutorial, I’ll show examples of using if-else statements in AWK. Here’s the sample data on which I base my examples.

  • Leftovers

    • Security

      • CyberRisk Alliance LLCAttackers searching for more bugs, using documents less and exfiltrating more data | SC Media

        Deep Instinct on Monday released its report on cybercrime during the first half of 2022 and found at least three important trends: Threat actors are using documents less and using LNK, HTML and archived email attachments; the industry experiences continued vulnerabilities in Windows and Linux despite earnest attempts to fix them; and attackers are doing more data exfiltration attacks that target third parties.

      • IT WireiTWire – Optus says will not pay users’ licence costs, only admin expenses

        Telco Singtel Optus has indicated that it will pay only the administrative costs incurred by VicRoads in issuing new licences — and not the costs of the licences themselves — to the hundreds of thousands affected by the disastrous data leak suffered by the company.

        A spokesperson from the telco said in response to a query asking whether it would pick up the tab for the licences: “Optus will cover the incremental costs to VicRoads associated with replacing Victorian driver’s licences where customers had a valid license compromised as a result of the cyber attack.”

        When the company was asked for a more direct statement, the response was: “Sorry, but unfortunately this line is all we can provide at this time. We will be in contact should our situation change.”

        VicRoads issued a statement on Saturday, saying it would issue new driving licences to 342,000 people in the state who were affected by the massive data breach.

    • AstroTurf/Lobbying/Politics

      • Michael West MediaSNACC or NACC? What will be made public by the new anti-corruption commission? – Michael West

        Christian Porter’s blind trust, Barnaby Joyce’s $32,000 a day expenses as Drought Envoy, Angus Taylor’s Cayman Islands intrigue, Bridget McKenzie’s Sports Rorts, Scott Morrison’s suite of secret ministries, the Leppington Triangle Affair, tens of billions blown to smithereens in Defence spending. What will we get to see from a Federal ICAC, the National Anti-Corruption Commission (NACC)? Quite possibly none of that. Michael West talks with leading rortologist and former bureaucrat Jommy Tee.

        The government *is* the government. If it chose to investigate say Barnaby’s expenses or who got the $80m for the water rights from the company Angus Taylor kicked off in the Cayman Islands, it could demand information from the bureaucracy right now.


* Gemini (Primer) links can be opened using Gemini software. It’s like the World Wide Web but a lot lighter.

IRC Proceedings: Monday, October 31, 2022

Posted in IRC Logs at 2:57 am by Needs Sunlight

Also available via the Gemini protocol at:

Over HTTP:

HTML5 logs

HTML5 logs

#techrights log as HTML5

#boycottnovell log as HTML5

HTML5 logs

HTML5 logs

#boycottnovell-social log as HTML5

#techbytes log as HTML5

text logs

text logs

#techrights log as text

#boycottnovell log as text

text logs

text logs

#boycottnovell-social log as text

#techbytes log as text

Enter the IRC channels now


IPFS Mirrors

CID Description Object type
 QmdKezNnTwqRTWdTCvpoQJpBTCBweNvdXMxt4ysW382ikk IRC log for #boycottnovell
(full IRC log as HTML)
HTML5 logs
 QmZFMYvKP7aNpBKzQPgXPS1xUfokFZkp4VpTytj3zvm7aA IRC log for #boycottnovell
(full IRC log as plain/ASCII text)
text logs
 QmaLVQuoUcTLVeakbamVzRLjEqymd5yovX9dakr5nggey1 IRC log for #boycottnovell-social
(full IRC log as HTML)
HTML5 logs
 QmWUycomLBFRgiPscjpmWSVsDLtVSVW9pKv59FUBYa1iB4 IRC log for #boycottnovell-social
(full IRC log as plain/ASCII text)
text logs
 QmbHQrHfw3HGxiy6SMWdJcQJQ8HewiWVWyhvVa45vvjY1Z IRC log for #techbytes
(full IRC log as HTML)
HTML5 logs
 QmcQ3it7YjbghqEp3rSMuM9eUSTzEyL2BePVNg5KpkcBSo IRC log for #techbytes
(full IRC log as plain/ASCII text)
text logs
 QmWxbaiF29g4AbenScAfsT6foV8yAxSDkFabU5zrwNaiJB IRC log for #techrights
(full IRC log as HTML)
HTML5 logs
 QmNdwk1XRvYR4VFmWa7VTpJKPmzZUJUnre9Ree88jJDiBY IRC log for #techrights
(full IRC log as plain/ASCII text)
text logs

IPFS logo

Bulletin for Yesterday

Local copy | CID (IPFS): QmPYtqSLb1u1ZcxEizXSrp4b5VQ7gARTj185s8YHFAeMRk

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channels: Come and chat with us in real time

New to This Site? Here Are Some Introductory Resources

No

Mono

ODF

Samba logo






We support

End software patents

GPLv3

GNU project

BLAG

EFF bloggers

Comcast is Blocktastic? SavetheInternet.com



Recent Posts