TuxMachines

Subscribe to TuxMachines feed
Your source for Linux and Open Source news, reviews, and howtos.
Updated: 55 min 4 sec ago

today's howtos

Sat, 2018-10-13 09:02
  • Connecting Multiple OpenShift SDNs with a Network Tunnel
  • How to Use Dig Command to Query DNS in Linux
  • How to create missing favicons for your bookmarks in Firefox Quantum for Linux
  • Adventures with coreboot and NVM Express storage

    Let me tell you how I made NVMe SSD support work on the first generation Librem laptops. This story is pretty old, from before the Librem 13 version 2 was even released, so it has been simplified and brought back to the current state of things as much as possible. The solutions presented here have been implemented a long time ago in our coreboot ports, but the technical insights you may derive from this post today should prove interesting nonetheless.

    During internal beta testing of the install script a while ago, we realized that coreboot didn’t work with our NVMe SSDs, as all my testing had been done with a SATA M.2 SSD. I spent some time fixing coreboot so that it would initialize the NVMe SSD, and SeaBIOS so it can boot from the NVMe drive, and then I’ve figured out how to fix the NVMe issues I’ve been having after linux boots.

    The story began with my blog post about the interference of the AMI BIOS with coreboot. What I didn’t mention back then is that after I figured out the issue and managed to unbrick Francois’ Librem, he wasn’t able to boot into his SSD from coreboot because it wasn’t getting detected. I then realized that he had an NVMe SSD and not a SATA SSD.

read more

Security: Electric-Scooter 'Hacking', Facebook Cracked, National Security Agency (NSA) Looks Into Fuchsia/Android and More

Sat, 2018-10-13 08:57
  • Inside the Lawless New World of Electric-Scooter Hacking

    If major corporations and voting infrastructure can be hacked, then it stands to reason that one could also, and much more easily, hack a $400 electric scooter. And in their rush to make dockless, app-enabled two-wheelers a way of life across every urban neighborhood worldwide — while throttling the competition — startups Bird, Lime, Scoot, Skip and Spin have caused localized backlashes while putting their tech at risk of both clever and stupid exploits.

    What’s funny is that the companies tend to dismiss these vulnerabilities as insignificant. Lime’s director of government relations and strategic development, Sam Sadle, told the Dallas Observer this summer that theft and vandalism of scooters is rare because they’re so often in use. Reacting to complaints that hacking has become common, he added: “It hasn’t in any way limited our ability to operate in the markets in which we do operate.”

  • How to Find Out if You Were Affected by the Recent Facebook Hack [Ed: Facebook is almost certainly lying/lowballing the number and far more people got cracked]

    Facebook has now confirmed that hackers stole access tokens for “only” 30 million people, not 50 million. For 15 million of those people, the hackers were able to get phone number, email address, or both. And for 14 million more people, the hackers were able to get a lot more information, like username, gender, relationship status, religious, birthday, and a ton of other information including things you’ve searched for.

  • Facebook Revises Data Breach Impact Downward, Provides New Details
  • Google Fuchsia: Here's what the NSA knows about it

    A while back, Google told us Fuchsia is not Linux. There have also been endless rumors, with little hard proof, it will eventually replace Android. Other than that, we don't know much. But the National Security Agency (NSA), of all groups, has been checking into Fuchsia and revealed its findings at the recent North American Linux Security Summit in Vancouver, B.C.

  • Course Review: Adversarial Attacks and Hunt Teaming

    At DerbyCon 8, I had the opportunity to take the “Adversarial Attacks and Hunt Teaming” presented by Ben Ten and Larry Spohn from TrustedSec. I went into the course hoping to get a refresher on the latest techniques for Windows domains (I do mostly Linux, IoT & Web Apps at work) as well as to get a better understanding of how hunt teaming is done. (As a Red Teamer, I feel understanding the work done by the blue team is critical to better success and reducing detection.)

read more

New Wine With Graphics Work/Latest Changes, NVIDIA's GPU Work, and Intel's Work on Mesa

Sat, 2018-10-13 08:54
  • Wine Announcement
  • Wine 3.18 Brings FreeType Subpixel Font Rendering, Wine Console DPI Scaling

    A new bi-weekly Wine development release is out for those wanting to try the latest Windows gaming on Linux experience (outside of Steam Play / Proton) or running other Windows applications on Linux and other operating systems.

    The key features of Wine 3.18 include sub-pixel font rendering in conjunction with FreeType 2.8.1+, support for the OAEP algorithm within the RSA encryption code, array marshalling fixes in DCOM, improved DPI scaling for the Wine console, and various bug fixes.

  • NVIDIA Accelerates Server Workloads with RAPIDS GPU Software

    GPUs, or Graphics Process Units, are somewhat of a misnomer in the modern age for many of the applications where there are deployed. While GPUs are an important component for graphics, high-end gaming and design, they are also being widely used to accelerate High Performance Computing (HPC) and Artificial Intelligence (AI) workloads.

    This week, NVIDIA announced its RAPIDS open source software for GPUs, alongside multiple partners, including Oracle, HPE and IBM.

  • Intel Whiskey Lake Support Formally Added To Mesa 18.3

    The recently posted patch for Intel Whiskey Lake support in Mesa has now been merged for Mesa 18.3.

    Intel announced Whiskey Lake and Amber Lake in late August. While Intel is usually many months or even years ahead of schedule with their open-source driver enablement for new graphics generations, Whiskey Lake basically comes down to re-branded Coffeelake UHD Graphics... Some of the PCI IDs in fact have already been present in the Intel Linux driver as reserved Coffeelake PCI IDs.

read more

Ubuntu: Ubuntu 18.10 Cosmic Cuttlefish , Ubuntu Podcast from the UK LoCo, OpenStack Summit Berlin 2018

Sat, 2018-10-13 08:49
  • Ubuntu 18.10 Brings Cosmic Cuttlefish to the Linux Desktop
  • Ubuntu Podcast from the UK LoCo: S11E31 – Thirty-One Dates in Thirty-One Days

    This week Ubuntu Podcast debuts on Spotify and re-embraces Mastodon. We’ve been unboxing the GPD Pocket 2 and building a Clockwork Pi. We discuss Plex releasing as a Snap, Microsoft joining the OIN, Minecraft open-sourcing some libraries, Google axing Google+, Etcher (allegedly) not honouring privacy settings, plus we also round up community news and events.

  • OpenStack Summit Berlin 2018

    Canonical, the company behind Ubuntu, is excited to reveal that it will be a headline sponsor at the OpenStack Summit in Berlin.

    The OpenStack Summit has proven itself to be the leading event in open infrastructure, bringing together the builders and operators for sessions and workshops on containers, CI/CD, telecom & NFV, public cloud, multi-cloud and much more.

    Ubuntu is at the heart of the world’s largest OpenStack clouds, in key sectors such as finance, media, retail and telecoms. With Ubuntu the number one platform for OpenStack and public clouds, Canonical is a leader in building and operating multi-clouds.

read more

Ubuntu Touch OTA-5

Sat, 2018-10-13 08:45
  • Ubuntu Touch OTA-5

    Right on the heels of UBport's OTA-4 release comes the official 16.04 version of Ubuntu Touch for mobile devices. This will be the fifth Over The Air update (OTA-5), and it will also be the first of many updates that now adhere to a regular release roadmap.

    While many have already joined the community on 16.04 with OTA-4, in addition to the long-term support of upstream Ubuntu development, OTA-5 will include a more stable experience, new tweaks, and new features to show off this next stage of Ubuntu Touch development.

  • Ubuntu Touch OTA-5 Is Being Prepped With New Browser, Qt Auto Scaling

    The UBports community that continues to maintain Ubuntu Touch for a range of mobile devices will soon be rolling out Ubuntu Touch OTA-5.

    Ubuntu Touch OTA-5 is bringing its new "Morph" web-browser powered by Qt WebEngine to replace the old Oxide-based browser application, support for Qt automatic scaling, Kirigami 2 support, and new community artwork.

  • Ubuntu Touch OTA-5 Is Out for Ubuntu Phones with New Morph Browser, Improvements

    The UBports community announced today that they begin work on the next OTA (Over-the-Air) update for the Ubuntu Touch mobile operating system for Ubuntu Phone devices.

    With the Ubuntu Touch OTA-4 finally rebasing the mobile OS on the Ubuntu 16.04 LTS (Xenial Xerus) operating system series, the UBports team can now concentrate their efforts on bringing more new features and improvements, which will land in the upcoming Ubuntu Touch OTA-5 release.

    "While many have already joined the community on 16.04 with OTA-4, in addition to the long-term support of upstream Ubuntu development, OTA-5 will include a more stable experience, new tweaks, and new features to show off this next stage of Ubuntu Touch," reads today's announcement.

read more

Red Hat: Open Source Is A Great Business

Sat, 2018-10-13 00:12

For years I've heard enthusiasts talking about the open source potential: “It will take over the proprietary code.” Others argued that open source was a value destroyer for businesses relying on intellectual property.

The years went by, and in my mind, open source remained more of a hobbyist thing than anything else. However, the state-of-affairs seldom remains unchanged for long, and the truth is the open source development model, during the last fifteen years, silently morphed by focusing on enterprise IT services.

In my opinion, that was the way to go. Enterprises were more willing to experiment in new IT solutions. And in some cases, they desperately needed those advances to survive. Some companies, with critical systems, needed the flexibility to patch adapt or correct code in-house. On the other end of the spectrum, the regular user that freaks out when an error message pops-up, was never going to mass-adopt something that is far from being a final polished product. Linux and open source are not for them, as Apple explored through gorgeous plug-and-play solutions.

read more

Red Hat News and Views

Sat, 2018-10-13 00:09

read more

Happy birthday, KDE: 11 applications you never knew existed

Fri, 2018-10-12 21:50

The Linux desktop environment KDE celebrates its 22nd anniversary on October 14 this year. There are a gazillion* applications created by the KDE community of users, many of which provide fun and quirky services. We perused the list and picked out 11 applications you might like to know exist.

Also: LaKademy 2018 – First Day (October 11th)

read more

Mozilla: Pocket, Rust and MDN Updates

Fri, 2018-10-12 21:43
  • Pocket’s Updated Listening Feature Effectively Turns Web Pages into Podcasts

    The read-it-later service has been focused on convenience and entertainment since Mozilla acquired it last year. Previous updates to the app introduced sponsored and recommended content based on a user’s interest. The new “listen” feature mimics the button layout and usability of podcast and music apps, encouraging users to treat Pocket like a source of entertainment, rather than a glorified bookmark app.

  • Announcing Rust 1.29.2

    The Rust team is happy to announce a new version of Rust, 1.29.2. Rust is a systems programming language focused on safety, speed, and concurrency.

  • Payments, accessibility, and dead macros: MDN Changelog for September 2018

    We’ve been thinking about the direction and growth of MDN. We’d like a more direct connection with developers, and to provide them with valuable features and benefits they need to be successful in their web projects. We’ve researched several promising ideas, and decided that direct payments would be the first experiment. Logged-in users and 1% of anonymous visitors see the banner that asks them to directly support MDN. See Ali Spivak’s and Kadir Topal’s post, A New Way to Support MDN, for more information.

read more

Security: Chinese Crackers, Microsoft's Botched New Updates, Latest FOSS Updates

Fri, 2018-10-12 21:39
  • Hackers [sic] Are Using Stolen Apple IDs to Swipe Cash in China

    Ant Financial’s Alipay and Tencent Holdings Ltd. warned that cyber-attackers employed stolen Apple IDs to break into customers’ accounts and made off with an unknown amount of cash, in a rare security breach for China’s top digital payments providers.

  • Hackers [sic] loot digital wallets using stolen Apple IDs

    Two Chinese companies are warning customers that [crackers] used stolen Apple IDs to get into their digital payment accounts and steal money.

  • Microsoft October 2018 Patch Slightly Flawed and Unable To fully Rectify Jet Database Engine Vulnerability

    On the 20th of September, Trend Micro’s Zero Day Initiative (ZDI) went public with the information of a remove code execution vulnerability that would allow attackers to use the flawed Jet Database Engine to run macros through Microsoft Office programs and cause malicious activities in the targets computer. We covered this previously, you can read it here.

    Regarding this issue, ZDI released a micro-patch on the 21st September which fixed the vulnerability and urged Microsoft to correct this in the following patch. ZDI then did a review of the October 2018 update by Microsoft and found out that the security flaw while addressed has only limited the vulnerability rather than eliminating it.

  • Security updates for Friday

read more

today's howtos

Fri, 2018-10-12 21:35

read more

Community backed Kaby Lake SBC ships with downloadable Ubuntu image

Fri, 2018-10-12 21:31

DFRobot has fulfilled KS orders for its Kaby Lake based LattePanda Alpha SBC, and is shipping a model with 8GB RAM and 64GB eMMC without OS that supports Windows 10 or Ubuntu 16.04 LTS.

DFRobot’s LattePanda project has fulfilled its Kickstarter orders for its community-backed, Intel 7th Gen Core based LattePanda Alpha after several months of delays, and public sales have switched from pre-order to in-stock fulfillment for at least one model. Like the earlier, Intel Cherry Trail based LattePanda, the LattePanda Alpha is notable for being a community backed (but not fully open source) hacker board loaded with Windows 10. Yet with the LattePanda Alpha, you can also choose a more affordable barebones version without a Windows 10 key that supports an optimized, downloadable Ubuntu 16.04 LTS image.

read more

Stretchly – An Open-Source, Customizable Time Reminder App

Fri, 2018-10-12 21:25

We have covered several time apps including Chronobreak, Gnome P0modoro, and Thomas. Today’s featured timer app goes by the name of Stretchly and it is among the most customizable timer apps on the free market.

Stretchly is an open-source project that reminds its users to take breaks from working on the computer. It runs in the system tray and displays a prompt for you to take a 20-second break every 10 minutes by default.

Its app window uses a minimalist design UI with informative text, and tons of customization options including break duration, alert tones, and strict mode. Stretchly allows you to cut breaks short and return to work, enabling strict mode will disable that feature.

read more

Sysget – A Front-end For Popular Package Managers

Fri, 2018-10-12 21:22

Are you a distro-hopper who likes to try new Linux OSs every few days? If so, I have something for you. Say hello to Sysget, a front-end for popular package managers in Unix-like operating systems. You don’t need to learn about every package managers to do basic stuffs like installing, updating, upgrading and removing packages. You just need to remember one syntax for every package manager on every Unix-like operating systems. Sysget is a wrapper script for package managers and it is written in C++.

read more

10 Reasons to Use Manjaro Linux

Fri, 2018-10-12 21:10

Manjaro Linux has been trending in Linux communities and even beyond for over a year now. One, for its beauty, and two, for its success at simplifying many of the overly-technical aspects in Arch Linux e.g. installation.

If you are among those on the fence and aren’t sure of why you should switch to using Manjaro Linux then here are 10 reasons to convince you.

read more

Four Web Browsers for the Linux Command Line

Fri, 2018-10-12 21:00

Remember the days when the web was as simple as searchable text. The terminals and low powered personal computers were enough to access the text-based web over snail-paced internet connections. Of course, people then used the command-line web browsers to visit the web; these included the famous Lynx browser as well. Times have changed now, the browser technology has shifted to the graphical and more powerful web-browsers such as Chrome, Firefox and, Safari. Still, there are people who are more Terminal savvy and prefer accessing to-the-point information from the web through Terminal based browsing. Even Terminal based computers also exist and for them, command-line browsers are sometimes the only way to connect to the web. So how do we install and use these text-based browsers through our Linux command-line, the Terminal?

read more

Kdenlive 18.08.2 released

Fri, 2018-10-12 20:40

Kdenlive 18.08.2 is out bringing usability improvements and a crash fix. The Windows version is also becoming more stable with every release and this version brings fixes to the translation installation and the introduction of a crash report.

In other news, the Refactoring is moving steadily ahead and we will release a wider test beta version soon, stay tuned. Also the refactoring branch is now building automatically on KDE’s automated integration system (CI), and all the regressions tests pass. This means that after each change to the source code, the CI will run the tests to check that no regression happens. On the sysadmin front we are cleaning up our bug tracker in preparation for the 18.12 release.

read more

GCC 6.5 Status Report

Fri, 2018-10-12 20:37
  • GCC 6.5 Status Report (2018-10-12)

    It is now time to release GCC 6.5 and close the 6.x branch. If you have regression bugfixes or documentation fixes that should be still backported to the branch, please test them and check them in before Friday, October 19th, when I'd like to create a Release Candidate of 6.5.

  • GCC 6.5 Is Being Prepared As The Last GCC6 Compiler Release

    Version 6.5 of the GNU Compiler Collection will soon be released to end out the GCC6 series.

    GCC8 remains the latest stable series and GCC9 is in development for release in early 2019. For those still relying upon the two-year-old GCC6 stable series, GCC 6.5 is being prepared with a last serving of bug/regression fixes before closing off that branch.

read more

Games: Vintage Story, Steam Client, Helium Rain, Neverwinter Nights: Enhanced Edition, Farm Together, SEUM: Speedrunners from Hell, Sudden Strike 4

Fri, 2018-10-12 20:08
  • Vintage Story, a beautiful survival and building game on Linux

    Vintage Story is a beautiful survival game that started as an idea for a mod for Minecraft, based on the popular modpack, Terra Firma Craft. It is developed by Anego Studios.

    The game is currently still in early access. Development is happening rapidly, with a stable update coming out more or less every other week, with plenty of experimental builds available in between.

  • A new stable Steam Client update is out, with fixes for Steam Play and more

    Valve continue their usual polishing of the Steam Client, with the latest stable update including some fixes for Steam Play. That's not all of course, there's quite a bit to this update.

    They've adjusted the new Steam Chat system, so now you can test your microphone in the Friends Voice settings dialog, a mute on/off toggle hot-key support for when using open microphone mode, it shouldn't try to open the friends and chat system if you're in offline mode and some bug fixes.

    Steam Link gained the ability to do co-op by streaming to multiple devices and the ability to use an Android phone as a touch controller. There's also various Big Picture fixes and plenty of fixes for Steam Input too, Steam Input also had a Linux-specific fix when using Steam Input for generic gamepads.

  • Space sim 'Helium Rain' has left Early Access, code is open source

    Helium Rain, the space simulation and strategy game from Deimos Games has left Early Access as a rather impressive game.

    I really love what they did with it too, while you can purchase the game to support the developer, the source code is also available under an open source license on GitHub.

  • Neverwinter Nights: Enhanced Edition levels up and arrives on GOG

    Grab your sword, shield and helmet as Neverwinter Nights: Enhanced Edition has arrived on GOG for DRM free gaming goodness.

  • The peaceful casual farming game 'Farm Together' has left Early Access

    For those who're looking to run their very own farm, with a rather sweet visual style Farm Together has now left Early Access.

    Disclosure: Key provided by the developer to our Steam Curator.

  • Get your shoes and headphones ready for SEUM: Speedrunners from Hell, now on GOG

    SEUM: Speedrunners from Hell, a heavy metal first-person platformer that's all about speed is now on GOG.

    Like all good speedrunners, it's not just about being the absolutely quickest. You also need to be smart, there's a few ways to do some little fancy tricks in each level to give you that extra second of time.

  • Sudden Strike 4 heads to Africa in the new DLC out now, cross-platform multiplayer not coming

    Strategy game Sudden Strike 4 has another DLC today with the release of the Africa: Desert War expansion.

    This new expansion has two "mini-campaigns" with six new singleplayer missions from the North African campaign of World War 2. Africa – Desert War introduces over 30 new vehicles including an all-new medical truck, the Marder II Tank Destroyer, the British Bishop SPG, as well as the Italian Semovente da 105/25 Assault Gun.

read more

Pages