Bonum Certa Men Certa

Links 03/02/2023: WINE 8.1 and RapidDisk 9.0.0



  • GNU/Linux

    • Server

      • Kubernetes BlogKubernetes Blog: Spotlight on SIG Instrumentation

        Observability requires the right data at the right time for the right consumer (human or piece of software) to make the right decision. In the context of Kubernetes, having best practices for cluster observability across all Kubernetes components is crucial.

      • Container JournalIs Kubernetes Fit For Purpose?

        Are Kubernetes clusters fit to run many of the applications being deployed on them? That question became the focal point of a panel discussion yesterday in Seattle, Washington, hosted by Tetrate, a provider of an instance of the Istio service mesh. Kelsey Hightower, principal engineer for Google Cloud, said one

    • Kernel Space

      • LWNNolibc: a minimal C-library replacement shipped with the kernel [LWN.net]

        The kernel project does not host much user-space code in its repository, but there are exceptions. One of those, currently found in the tools/include/nolibc directory, has only been present since the 5.1 release. The nolibc project aims to provide minimal C-library emulation for small, low-level workloads. Read on for an overview of nolibc, its history, and future direction written by its principal contributor.

        The nolibc component actually made a discreet entry into the 5.0 kernel as part of the RCU torture-test suite ("rcutorture"), via commit 66b6f755ad45 ("rcutorture: Import a copy of nolibc"). This happened after Paul McKenney asked: "Does anyone do kernel-only deployments, for example, setting up an embedded device having a Linux kernel and absolutely no userspace whatsoever?"

      • LWNHiding a process's executable from itself [LWN.net]

        Back in 2019, a high-profile container vulnerability led to the adoption of some complex workarounds and a frenzy of patching. The immediate problem was fixed, but the incident was severe enough that security-conscious developers have continued to look for ways to prevent similar vulnerabilities in the future. This patch set from Giuseppe Scrivano takes a rather simpler approach to the problem.

        The 2019 incident, which came to be known as CVE-2019-5736, involved a sequence of steps that culminated in the overwriting of the runc container-runtime binary from within a container. That binary should not have even been visible within the container, much less writable, but such obstacles look like challenges to a determined attacker. In this case, the attack was able to gain access to this binary via /proc/self/exe, which always refers to the binary executable for the current process.

        Specifically, the attack opens the runc process's /proc/self/exe file, creating a read-only file descriptor — inside the container — for the target binary, which lives outside that container. Once runc exits, the attacker is able to reopen that file descriptor for write access; that descriptor can subsequently be used to overwrite the runc binary. Since runc is run with privilege outside of the container runtime, this becomes a compromise of the host as a whole; see the above-linked article for details.

        This vulnerability was closed by having runc copy its binary image into a memfd area and sealing it; control is then be passed to that image before entering the container. Sealing prevents modifying the image, but even if that protection fails, the container is running from an independent copy of the binary that will never be used again, so overwriting it is no longer useful. It is a bit of an elaborate workaround, but it plugged the hole at the time.

      • LWNKernel code on the chopping block [LWN.net]

        Code that is added to the kernel can stay there for a long time; there is code in current kernels that has been present for over 30 years. Nothing is forever, though. The kernel development community is currently discussing the removal of two architectures and one filesystem, all of which seem to have mostly fallen out of use. But, as we will see, removal of code from the kernel is not easy and is subject to reconsideration even after it happens.

    • Graphics Stack

      • LWNX clients and byte swapping [LWN.net]

        While there are still systems with both byte orders, little-endian has largely "won" the battle at this point since the vast majority of today's systems store data with the least-significant byte first (at the lowest address). But when the X11 protocol was developed in the 1980s, there were lots of systems of each byte order, so the X protocol allowed either order and the server (display side) would swap the bytes to its byte order as needed. Over time, the code for swapping data in the messages, which was written in a more-trusting era, has bit-rotted so that it is now a largely untested attack surface that is nearly always unused. Peter Hutterer has been doing some work to stop using that code by default, both in upstream X.org code and in downstream Fedora.

        A Fedora 38 change proposal to disable support for byte-swapped clients by default in the X server was posted in mid-December. It is owned by Hutterer, who proposed adopting the work he was doing for the X.org server into Fedora. At the time, it was unclear whether the upstream changes would land in time, so the Fedora proposal was contingent on that happening. It turns out that Hutterer merged the changes on January 5, so that would not be an impediment to Fedora being an early adopter of the feature.

    • Applications

      • Petros KoutoupisRapidDisk 9.0.0 now available

        RapidDisk is an advanced Linux RAM Disk which consists of a collection of modules and an administration tool.

    • Instructionals/Technical

      • ID RootHow To Install Brave Browser on Rocky Linux 9

        In this tutorial, we will show you how to install Brave Browser on Rocky Linux 9. For those of you who didn’t know, Brave is a free and open-source web browser developed by Brave Software, Inc.

      • UNIX CopDolphin Emulator on Centos

        It is easily the most popular and best-supported emulator for the console on Linux.

      • UNIX CopHow To Install Kodi Media Server on CentOS 9/ Rocky Linux 9/ AlmaLinux 9

        In this guide, we will show you how to install Kodi Media Server in AlmaLinux, CentOS and RockyLinux servers. Kodi€ (formerly€ XBMC) is a€ free and open-source media player€ software application developed by the XBMC Foundation, a€ non-profit€ technology€ consortium. Kodi is available for multiple operating systems and hardware platforms, with a software€ 10-foot user interface€ for use with televisions and€ remote controls.

      • UNIX CopHow To Install Mattermost Desktop onCentOS 9/ Rocky Linux 9/ AlmaLinux 9

        In this guide, we will show you how to install Mattermost Desktop on CentOS/AlmaLinux and RockyLinux systems.

      • UNIX CopHow do you install a pacemaker with Apache on RHEL 8?

        A pacemaker with apache high-availability€ cluster management tool in Red Hat Enterprise Linux 8 that monitors and manages services running on Apache servers. It provides failover capabilities for system failures. Pacemaker combines with httpd using a resource agent.

      • ZDNetWhat are VirtualBox guest snapshots and how do you take them?

        VirtualBox makes it easy to run multiple operating system guests on a single host. One feature you should be regularly using is snapshots. Here's what they are and how to use them.

    • WINE or Emulation

      • WINE Project (Official)WineHQ - Wine Announcement - The Wine development release 8.1 is now available.
        The Wine development release 8.1 is now available.
        
        

        What's new in this release: - Windows version set to Windows 10 for new prefixes. - Many code cleanups that were deferred during code freeze. - Various bug fixes.

        The source is available at:

        https://dl.winehq.org/wine/source/8.x/wine-8.1.tar.xz

        Binary packages for various distributions will be available from:

        https://www.winehq.org/download

        You will find documentation on https://www.winehq.org/documentation

        You can also get the current source directly from the git repository. Check https://www.winehq.org/git for details.

        Wine is available thanks to the work of many people. See the file AUTHORS in the distribution for the complete list.
  • Distributions and Operating Systems

  • Free, Libre, and Open Source Software

    • Events

      • Linux Plumbers Conference (LPC)Linux Plumbers Conference: Preliminary Dates and Location for LPC2023

        The 2023 LPC PC is pleased to announce that we’ve begun exclusive negotiations with the Omni Hotel in Richmond, VA to host Plumbers 2023 from 13-15 November. Note: These dates arenot yet final(nor is the location; we have had one failure at this stage of negotiations from all the Plumbers venues we’ve chosen). We will let you know when this preliminary location gets finalized (please don’t book irrevocable travel until then).

    • Programming/Development

      • ButtondownImprove your debugging by asking broad questions

        I recently had to help a friend debug a Word issue where fonts would randomly change to Greek symbols. It got me thinking about theories of debugging in general. At my last job, I was the Debugging Guy.

      • Python

        • LWNPython packaging, visions, and unification [LWN.net]

          The Python community is currently struggling with a longtime difficulty in its ecosystem: how to develop, package, distribute, and maintain libraries and applications. The current situation is sub-optimal in several dimensions due, at least in part, to the existence of multiple, non-interoperable mechanisms and tools to handle some of those needs. Last week, we had an overview of Python packaging as a prelude to starting to dig into the discussions. In this installment, we start to look at the kinds of problems that exist—and the barriers to solving them.

          Our overview just scratched the surface of the Python packaging world, so we will pick up some of the other pieces as we go along. The recent discussions seem to largely stem from Brett Cannon's mid-November post to renominate himself to the steering council (SC) for the 2023 term; that thread also served to highlight the role of the Python Packaging Authority (PyPA) and its relationship to the Python core developers. Up until relatively recently, the PyPA was an informal organization with a membership that was not well-defined; it had an ad hoc style of governance. That changed in 2019 with the advent of PEP 609 ("Python Packaging Authority (PyPA) Governance"); the PEP formalized the governance of the PyPA.

  • Leftovers

    • James GHappy Groundhog Day

      As of my starting to write this post, there are 25 minutes left until midnight here in the UK. This is the first year that I have actively thought about Groundhog Day throughout the day.

    • ⬆⬆⬆⬆⬆⬆⬆ Alert

      The history of everyone’s favorite attempt to keep the suspense going for just a little bit longer, the spoiler alert. People who spoil things are obviously evil. Obviously.


* Gemini (Primer) links can be opened using Gemini software. It's like the World Wide Web but a lot lighter.



Recent Techrights' Posts

Being Prevented From Accessing One's Own System Means Getting Locked Out, Not Security
a metaphor
3/4 (Three-Quarter) of Requests Seen by statCounter (Originating From Desktops/Laptops) Deemed to be "Linux" in San Marino
74% Linux, it says...
The Linux Foundation Does Not Work for Linux, Definitely Not for Free Software
works for its biggest sponsors, i.e. companies like Microsoft, IBM, and others
The European Patent Office's (EPO) Crisis Week Ends Today, the Rest of the Year Will be EPO Staff on Strike
The outcome of the two-day meeting won't change the fact that EPO staff is on strike for the whole year
 
Links 04/07/2026: 2026 Old Computer Challenge and Trying Gopher
Links for the day
SLAPP Censorship - Part 127 Out of 200: Lawsuits by Americans Filed in the UK a Burden on British Taxpayers, No Way to Recover the Funds When Americans Lose Their Cases
Are Garrett and Graveley 'pulling a 4Chan'?
Links 04/07/2026: USMCA (Covering Software Patents) Might Not be Renewed, Slop Bros Try to Pay Weird Al to Endorse Their Scheme
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, July 03, 2026
IRC logs for Friday, July 03, 2026
Gemini Links 03/07/2026: Mindfulness Practice and "Slop Is Killing the Human Spirit"
Links for the day
Links 03/07/2026: Openwashing of Slop in "Linux" Clothing and "Happy Birthday, America"
Links for the day
John Been (reallinuxuser.com) May Have Crossed Over to the 'Dark Side' of LLM Slop
It 'smells' like it, a scanner seems to concur
Who or What is "Nadeko"?
Fijxu's services make life a lot easier for Free software sticklers
10 Years Since the World Lost Ian Murdock
My wife and I still use Debian, as does this site
No, Microsoft is Not Laying Off 5,000-6,000 But a Lot More
There are "buyouts", "PIPs" (silence layoffs), pink slips, and future waves, not counting subsidiaries and contractors
The Cyber Show's Andy and Helen Confronting 'Upgrades'
the latest from Andy and Helen
statCounter Sees Almost 1 in 10 Desktops or Laptops in Egypt as GNU/Linux Workstations
10% "market share" (for GNU/Linux) was nearly attained last month
The March of GNU/Linux in the Russian Ally, Belarus
record high for GNU/Linux in Belarus
Technology is Getting Objectively Worse and Less Reliable
Something went horribly wrong
FOSS Force 2026 Independence Drive Lacks Independence From GAFAM's 'Linux' Foundation
We're not trying to 'bash' FOSS Force
News That Matters, News That's Exclusive, and News LLM Slop Will Never Get Right
Churning out blog posts just for quantity's sake was never our goal
Independence and Software Freedom
Much work remains to be done
European Patent Office (EPO) Series: Operation Monte Titano: Micro-State Diplomacy
On 28th May 2026 EPO President António Campinos paid a visit to the Most Serene Republic of San Marino where he was received with full diplomatic honours
Links 03/07/2026: Slop "Isn’t Replacing Lawyers", "App Fatigue"
Links for the day
Statement on This Week's DDoS Attacks
DDoS attacks are not a "badge of honour". They are a nuisance.
Skinnerboxes as Health Problems and Impediments (Against Happiness)
skinnerboxes are a form of addiction
Costa Ricans' Adoption of GNU/Linux Reaches New Highs
Windows is doing poorly in general
British Women Don't Want to Work for American Men Who Attack American Women
"[g]reeting clients and preparing beverages"
Mass Layoff Event on June 30 at Red Hat? Let Us Know...
We are looking for more Red Hat whistleblowers
Gaming on Windows is in Trouble, XBox is Practically Dead Already
It seems increasingly clear that Microsoft wants to get rid of XBox
New Record for GNU/Linux in the World's Largest Muslim-Majority Population (287,983,025)
Will Indonesians leave GAFAM behind?
SLAPP Censorship - Part 126 Out of 200: Becoming More Aggressive Against Us Only Proves Us Right
the police involved
IBM Red Hat Kicks Out the Community, Promotes Slop
It has gotten so bad
The Register MS Covers "AI" Because It Gets Paid to
A lot of noise "in the news" about "AI" is paid-for trash
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, July 02, 2026
IRC logs for Thursday, July 02, 2026
Gemini Links 02/07/2026: OpenBGPD, Newt and OpenBSD, Indieweb Theme for Ghost
Links for the day
Links 02/07/2026: China "Ethnic Unity" Law a Global Threat, "EU Imposes €3 Duty on Parcels From China"
Links for the day
Japan's Share of GNU/Linux Has More Than Doubled
GNU/Linux now sits around 3.5% compared to about 1% two years ago
'Largest Single Layoff Event In Gaming History' or 'Largest Single Layoff Event In Microsoft History'?
we need whistleblowers, not official or semi-official statements from Microsoft
Off-putting Terms or Behaviour That Keep Women Away From Areas of Technology (Not What IBM and GAFAM Tell Us)
the use of language
Microsoft Windows "Goes South" in South America, GNU/Linux Popularity Soaring
Brazil and its neighbours must have paid attention to what happened earlier this year in Venezuela
It's Not the Layoffs, It's the Debt
PIPs and/or "silent layoffs" are about the companies flouting obligations to staff, reducing or eliminating the compensation packages
European Patent Office (EPO) Series: Cutting Ribbons in Sintra While the EPO Burns
Like the Roman Emperor Nero, Campinos fiddles in Sintra while the EPO burns
In Spain, GNU/Linux Now Measured at 5.5%
Microsoft and Windows are generally shrinking
North America: GNU/Linux Leaps to 8% "Market Share"
the trend is clear
statCounter: GNU/Linux Has Risen to All-Time High of 6% Worldwide (July 2026)
GNU/Linux has massive gains
Not Tolerating Death Threats
Death threads are a serious matter
Silent Layoffs, 'Happy' Layoffs, and 'Buyouts' (Pretending to Voluntarily Retire)
We've been seeing lots of that at IBM and Microsoft
SLAPP Censorship - Part 125 Out of 200: Litigants in Person (LIPs) Handling American Lawfare Funded by Third Parties (About a Million Pounds for 100 Kilograms of Legal Papers)
An appeal to the Court of Appeal can be justified at one point
IBM HR "Process is Similar to Raising Farm Animals"
IBM "silent layoffs" won't stop
Attacks on the Sites
These are clearly censorship attempts
Links 02/07/2026: Microsoft May be Shutting Down 5+ Studios, Slop Got Too Expensive, "RAMpocalypse" Discussed
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, July 01, 2026
IRC logs for Wednesday, July 01, 2026
Gemini Links 02/07/2026: Kondo, Theological Thought, and X4
Links for the day