TuxMachines

Subscribe to TuxMachines feed
Your source for Linux and Open Source news, reviews, and howtos.
Updated: 1 min 25 sec ago

Red Hat and Fedora Leftovers

Thu, 2018-04-19 14:35
  • Enterprise Node.js on OpenShift, April 19th, 12 p.m. EDT

    The next online DevNation Live Tech Talk is Thursday, April 19th at 12pm EDT. The topic is “Enterprise Node.js on Red Hat OpenShift” presented by Lance Ball, and hosted by Burr Sutter. The popularity of JavaScript on the front end and the JSON format for data has led to a “JavaScript Everywhere” movement with Node.js at the center. Node.js offers developers an event-driven, non-blocking I/O model that is perfect for high concurrency, low-latency applications that run across distributed devices. Its reactive architecture makes it an ideal technology for containerized microservices architectures you’ve been hearing so much about.

  • President to President with Luc Villeneuve, Red Hat Canada

    ITWC President Fawn Annan gets to the point with Red Hat’s general manager for Canada. Villeneuve speaks about building the open source technology firm in the country, the unique differences when dealing with the Quebec market, and how he fosters a positive culture in the workplace. Plus, he dishes on how his experience in journey hockey taught him how to build a successful sales team.

  • Be mindful of jumping into an open source project too soon: RedHat CTO

    Open source software has long been seen as a movement towards collaborative development. In a conversation with BusinessLine, Chris Wright, Vice-President & CTO at RedHat, talks about some of the challenges the open source community is facing and why it is important to set expectations right when it comes to promoting open source software. Edited excerpts:

  • DevOps Tool Market Global Manufacturers: Chef, Atlassian, Saltstac, Red Hat and Docker Inc.
  • Two sizzlers stock’s are not to be missed: Red Hat, Inc. (RHT), Navient Corporation (NAVI)
  • Fedora Community Blog: Fedora meetup at Pune – March 2018

    Long time we did not had any meetup at Pune, Maharashtra, India, so we decided to get started again. Details about this meetup are available at Fedora Wiki page.

    Planning for meetup started 1 month before. Initially Ompragash proposed to have meetup.com account for Fedora Pune to get more awareness. Later dropped this plan, since this is not only Fedora Pune level topic but applicable for all Fedora events.

  • Fedora 28 Beta – dnf system-upgrade

    Used DNF to remove duplicate rpms, reinstalled the new kernel and libwbclient, and corrected GNOME’s right-click behaviour, and all is well.

read more

Security Leftovers

Thu, 2018-04-19 14:26

read more

Devices Leftovers

Thu, 2018-04-19 14:25

read more

‘No Company Is So Important Its Existence Justifies Setting Up a Police State’

Thu, 2018-04-19 13:55

You’re talking about very — about specific manifestations, and in some cases in ways that presuppose a weak solution.

What is data privacy? The term implies that if a company collects data about you, it should somehow protect that data. But I don’t think that’s the issue. I think the problem is that it collects data about you period. We shouldn’t let them do that.

I won’t let them collect data about me. I refuse to use the ones that would know who I am. There are unfortunately some areas where I can’t avoid that. I can’t avoid even for a domestic flight giving the information of who I am. That’s wrong. You shouldn’t have to identify yourself if you’re not crossing a border and having your passport checked.

With prescriptions, pharmacies sell the information about who gets what sort of prescription. There are companies that find this out about people. But they don’t get much of a chance to show me ads because I don’t use any sites in a way that lets them know who I am and show ads accordingly.

So I think the problem is fundamental. Companies are collecting data about people. We shouldn’t let them do that. The data that is collected will be abused. That’s not an absolute certainty, but it’s a practical, extreme likelihood, which is enough to make collection a problem.

A database about people can be misused in four ways. First, the organization that collects the data can misuse the data. Second, rogue employees can misuse the data. Third, unrelated parties can steal the data and misuse it. That happens frequently, too. And fourth, the state can collect the data and do really horrible things with it, like put people in prison camps. Which is what happened famously in World War II in the United States. And the data can also enable, as it did in World War II, Nazis to find Jews to kill.

In China, for example, any data can be misused horribly. But in the U.S. also, you’re looking at a CIA torturer being nominated to head the CIA, and we can’t assume that she will be rejected. So when you put this together with the state spying that Snowden told us about, and with the Patriot Act that allows the FBI to take almost any database of personal data without even talking to a court. And what you see is, for companies to have data about you is dangerous.

And I’m not interested in discussing the privacy policies that these companies have. First of all, privacy policies are written so that they appear to promise you some sort of respect for privacy, while in fact having such loopholes that the company can do anything at all. But second, the privacy policy of the company doesn’t do anything to stop the FBI from taking all that data every week. Anytime anybody starts collecting some data, if the FBI thinks it’s interesting, it will grab that data.

And we also know that the FBI and other such agencies are inclined to label protesters as terrorists. So that way they can use laws that were ostensibly adopted to protect us from terrorists to threaten a much larger number of us than any terrorist could.

Also: Numerical Analysis Software Global Market Analysis & Forecast: Analytica, Matlab, GNU Octave, Plotly, FlexPro

read more

3 tips for organizing your open source project's workflow on GitHub

Thu, 2018-04-19 10:56

Managing an open source project is challenging work, and the challenges grow as a project grows. Eventually, a project may need to meet different requirements and span multiple repositories. These problems aren't technical, but they are important to solve to scale a technical project. Business process management methodologies such as agile and kanban bring a method to the madness. Developers and managers can make realistic decisions for estimating deadlines and team bandwidth with an organized development focus.

read more

How will the GDPR impact open source communities?

Thu, 2018-04-19 10:54

The General Data Protection Regulation (GDPR) was approved by the EU Parliament on April 14, 2016, and will be enforced beginning May 25, 2018. The GDPR replaces the Data Protection Directive 95/46/EC which was designed "to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy."

The aim of the GDPR is to protect the personal data of individuals in the EU in an increasingly data-driven world.

read more

Trisquel 9.0 Development Plans and Trisquel 8.0 Release

Thu, 2018-04-19 06:40
  • Trisquel 9.0 development plans

    Just as we release Trisquel 8.0, the development of the next version begins! Following the naming suggestions thread I've picked Etiona, which sounds good and has the fewest search results.

    We currently do our development in a rented dedicated server in France, and although it is functional it has many performance and setup issues. It has 32 gigs of RAM, which may sound like plenty but stays below the sweet spot where you can create big enough ramdisks to compile large packages without having to ever write to disk during the build process, greatly improving performance. It also has only 8 cores and rather slow disks. The good news is that the FSF has generously decided to host a much larger dedicated build server for us, which will allow us to scale up operations. The new machine will have fast replicated disks, lots of RAM and two 12 core CPUs.

    Along with renewing the hardware, we need to revamp the software build infrastructure. Currently the development server runs a GitLab instance, Jenkins and pbuilder-based build jails. This combination was a big improvement from the custom made scripts of early releases, but it has some downsides that have been removed by sbuild. Sbuild is lighter and faster and has better crash recovery and reporting.

  • Trisquel 8.0 LTS Flidas

    Trisquel 8.0, codename "Flidas" is finally here! This release will be supported with security updates until April 2021. The first thing to acknowledge is that this arrival has been severely delayed, to the point where the next upstream release (Ubuntu 18.04 LTS) will soon be published. The good news is that the development of Trisquel 9.0 will start right away, and it should come out closer to the usual release schedule of "6 months after upstream release".

    But this is not to say that we shouldn't be excited about Trisquel 8.0, quite the contrary! It comes with many improvements over Trisquel 7.0, and its core components (kernel, graphics drivers, web browser and e-mail client) are fully up to date and will receive continuous upgrades during Flidas' lifetime.
    Trisquel 8.0 has benefited from extensive testing, as many people have been using the development versions as their main operating system for some time. On top of that, the Free Software Foundation has been using it to run the Libreplanet conference since last year, and it has been powering all of its new server infrastructure as well!

read more

FOSS Events in Europe: Rust, foss-north, KubeCon + CloudnativeCon Europe 2018

Wed, 2018-04-18 21:58
  • Rust loves GNOME Hackfest: Day 1

    This is a report of the first day of the Rust loves GNOME Hackfest that we are having in Madrid at the moment. During the first day we had a round of introductions and starting outlining the state of the art.

  • Madrid GNOME+Rust Hackfest, part 1

    I'm in Madrid since Monday, at the third GNOME+Rust hackfest! The OpenShine folks are kindly letting us use their offices, on the seventh floor of a building by the Cuatro Caminos roundabout.

    I am very, very thankful that this time everyone seems to be working on developing gnome-class. It's a difficult project for me, and more brainpower is definitely welcome — all the indirection, type conversion, GObject obscurity, and procedural macro shenanigans definitely take a toll on oneself.

  • Five days left

    I use to joke that the last week before foss-north is the worst – everything is done, all that is left is the stress.

  • KubeCon + CloudnativeCon Europe 2018

    The Cloud Native Computing Foundation’s flagship conference will be taking place in Copenhagen from May 2-4. It will cover Kubernetes, Prometheus OpenTracing, Fluentd, Linkerd, gRPC, CoreDNS, and other key technologies in cloud native computing.

read more

Programming: Taxonomy of Tech Debt, Python and More

Wed, 2018-04-18 20:59
  • A Taxonomy of Tech Debt

    Hi there. I’m Bill “LtRandolph” Clark, and I’m the engineering manager for the Champions team on LoL. I’ve worked on several different teams on League over the past years, but one focus has been consistent: I’m obsessed with tech debt. I want to find it, I want to understand it, and where possible, I want to fix it.

    When engineers talk about any existing piece of technology - for example League of Legends patch 8.4 - we often talk about tech debt. I define tech debt as code or data that future developers will pay a cost for. Countless blog posts, articles, and definitions have been written about this scourge of software development. This post will focus on types of tech debt I’ve seen during my time working at Riot, and a model for discussing it that we’re starting to use internally. If you only take away one lesson from this article, I hope you remember the “contagion” metric discussed below.

  • 6 Python datetime libraries

    Once upon a time, one of us (Lacey) had spent more than an hour staring at the table in the Python docs that describes date and time formatting strings. I was having a hard time understanding one specific piece of the puzzle as I was trying to write the code to translate a datetime string from an API into a Python datetime object, so I asked for help.

  • Getting started with Anaconda Python for data science
  • How to install the Moodle learning management system
  • Anatomy of a JavaScript Error
  • Is DevOps compatible with part-time community teams?

read more

Linux Foundation: Embedded Linux Conference, Xen and Cloud Foundry Foundation

Wed, 2018-04-18 20:54

read more

Wayland's Weston Development and Mesa 17.3.9

Wed, 2018-04-18 20:33
  • Wayland's Weston Begins Switching To Head-Based Output API

    Following last week's release of Wayland 1.15 / Weston 4.0, the development gates are once again open for new feature activity to land for Wayland and the reference Weston compositor. Weston has alrea

  • mesa 17.3.9
  • Mesa 17.3.9 Released To End Out The Series

    For those still using the Mesa 3D release that debuted in Q4'2017, the Mesa 17.3.9 point release is now available while it's the last planned update for the series.

    Mesa 17.3.9 has about two dozen fixes affecting the Intel drivers, RADV / RadeonSI, GLSL / SPIR-V / NIR, and other minor fixes/improvements. The list of Mesa 17.3.9 fixes can be found via this morning's release announcement.

read more

Some DragonFly HAMMER2 / FreeBSD ZFS / Linux EXT4 Benchmarks

Wed, 2018-04-18 20:31

With the recent release of DragonFlyBSD 5.2 one of the prominent changes is HAMMER2 now being considered stable for most use-cases. I've been running some benchmarks of this file-system compared to alternatives on other operating systems and have some FreeBSD / Linux reference points to share.

Complementing my earlier HAMMER vs. HAMMER2 benchmarks, I ran a set of I/O tests on TrueOS and FreeBSD 11.1 as well as Ubuntu and Clear Linux. All tests were done using the same Intel Xeon E3-1280 v5 Skylake system with 256GB Toshiba RD400 NVMe SSD, same default CPU clock frequencies, etc.

read more

OSS and Security Leftovers

Wed, 2018-04-18 20:07
  • Open-source library for improving security of AI systems

    Attacks against neural networks have recently been flagged as one of the biggest dangers in our modern world where AI systems are increasingly getting embedded in many technologies we use and depend on daily.

    Adversaries can sometimes tamper with them even if they don’t know much about them, and “breaking” the system could result in very dangerous consequences.

    [...]

    The library is written in Python, as it is the most commonly used programming language for developing, testing and deploying Deep Neural Networks.

  • IBM launches open-source library for securing AI systems

    On Tuesday at the RSA conference in San Francisco, IBM announced the launch of the Adversarial Robustness Toolbox to support developers and users of AI that may become the victims of attacks against AI systems including Deep Neural Networks (DNNs).

    According to the tech giant, threat actors may be able to exploit weaknesses in AI systems through very subtle means. Simple, small, and often undetectable alterations in content including images, video, and audio recordings can be crafted to confuse AI systems, even without a deep knowledge of the AI or DNN a cyberattack is targeting.

  • IBM releases new toolbox to protect AI from adversarial attacks

    IBM is releasing an open-source software library to combat against adversarial attacks in deep neural networks (DNNs). DNNs are machine learning models that are capable of recognizing patterns.

  • Build a serverless framework at home: Go on, bit of open sourcey hijinx won't hurt

    First unveiled at SpringOne Platform in December, riff is still an early project. It emerged from the Spring Cloud Data Flow, a data integration project to run Java code as microservices created under Pivotal's open source Java-focused Spring framework.

    "Riff is the next step in that evolution," says Jürgen Leschner, a riff organiser who works at Pivotal. Instead of running microservices that persist in containers, serverless models hide the containers from the developers and operations teams entirely. Instead, when a developer calls a software function, the container orchestration system (in riff's case, Kubernetes) spins one up and then kills it off silently.

    [...]

    The benefits of open source serverless

    What do these open source serverless options bring to the party? Unless you're using them to slurp services on the AWS platform and minimise container fees by weeding out idle compute power, why bother?

    Efficiency for developers is one driver, says Leschner. "Developers don’t have to worry about building the connectors and boilerplate stuff into their code. They can package a simpler project and the boilerplate is already in the platform."

  • Failure to secure open source code spurs DevSecOps boom [Ed: Yet another one of those 'journalists' who help marketing from anti-FOSS entity because it's disguised as 'research']

    A survey of over 2,000 IT pros shows that fear of data breaches is increasing investments in DevSecOps tools, particularly automated security tools and oversight of open source software.

  • Security updates for Wednesday

read more

More on Nextcloud in Germany

Wed, 2018-04-18 20:05
  • German government moves to open source private cloud

    The German federal government is moving to an open source, self-hosted cloud platform from Nextcloud for file sync and sharing and collaboration, in order to protect the data of its citizens.

    The Federal Information Technology Center (ITZBund), which takes care of IT services for the entire federal government, has been running a pilot of 5000 users with Nextcloud since October 2016 and after a successful tender this will now be rolled out everywhere.

  • German government chooses Nextcloud for open-source files

    Nextcloud has revealed its new three-year contract which will consist of supplying the German federal government with its private, on-premises cloud platform.

  • Open source's big German win: 300,000 users shift to Nextcloud for file sharing

    The German federal government has chosen local private cloud and open-source file-sync operator Nextcloud as its collaboration and file-sharing platform for 300,000 government users.

    Nextcloud arrived on Germany's tech scene in 2016 after Frank Karlitschek, co-founder of the open source infrastructure-as-a-service (IaaS) cloud program OwnCloud, forked the software to create a more open-source model.

  • German Government Chooses Open Source For Its Federal Cloud Solution

    It’s not hidden that apart from costing tons of money, the use of proprietary software also brings along hidden security caveats. These are the two primary reasons why the usage of open source software is being pushed in public agencies all around the world, especially in European countries.

read more

openSUSE Leap 15 Release Scheduled for May 25

Wed, 2018-04-18 19:41

The release of openSUSE Leap 15 is scheduled to be release during the first day of this year’s openSUSE Conference in Prague, Czech Republic on May 25.

The package submission deadline for non-bug fix package updates is April 24 as Leap enters the release candidate phase. The scheduled release for Leap 15 is May 25 at 12:00 UTC.

Leap has been using a rolling development model for building Leap 15 beta versions. Bug fixes and new packages have been released via snapshots to users testing the beta versions. The snapshots for the test version will stop and maintenance and security updates for Leap 15’s release will begin next month. Linux professionals and anyone looking to use Leap 15 are encouraged to test the beta versions as there is still snapshots being released and announced on the openSUSE Factory Mailing List. A list of items to test is available here.

Also: OpenSUSE Leap 15 Planned For Release At The End Of May

read more

Pages