As anticipated in public comments, the Linux Foundation is already beginning a campaign to rewrite history and mislead Linux users. Their latest PR release can be found at: https://www.linux.com/news/greg-kh-update-linux-kernel-46-next-week-new-security-features, which I encourage you to read so you can see the spin and misleading (and just plain factually incorrect) information presented. If you've read any of our blog posts before or are familiar with our work, you'll know we always say "the details matter" and are very careful not to exaggerate claims about features beyond their realistic security expectations (see for instance our discussion of access control systems in the grsecurity wiki). In a few weeks I will be keynoting at the SSTIC conference in France, where a theme of my keynote involves how little critical thinking occurs in this industry and how that results in companies and users making poor security decisions. So let's take a critical eye to this latest PR spin and actually educate about the "security improvements" to Linux 4.6.
A misconfiguration in the PAM subsystem in CoreOS Linux Alpha 1045.0.0 and 1047.0.0 allowed unauthorized users to gain access to accounts without a password or any other authentication token being required. This vulnerability affects a subset of machines running CoreOS Linux Alpha. Machines running CoreOS Linux Beta or Stable releases are unaffected. The Alpha was subsequently reverted back to the unaffected previous version (1032.1.0) and hosts configured to receive updates have been patched. The issue was reported at May 15 at 20:21 PDT and a fix was available 6 hours later at 02:29 PDT.
By now, most of you have heard about the "Let's Encrypt" initiative. The idea being that it's high time more websites had a simple, easy to manage method to offer https encryption. As luck would have it, the initiative is just out of its beta phase and has been adding sponsors like Facebook, Cisco, and Mozilla to their list of organizations that view this initiative as important.
In this article, I want to examine this initiative carefully, taking a look at the good and the bad of Let's Encrypt.
The iPhone is the most popular smartphone in the United States, but globally, folks globally prefer Android phones like the Samsung Galaxy, Google Nexus and LG’s G series.
I recently acquired an ODROID XU4. Despite being 32-bit, it's currently at the upper end of cheap SoC-based devboards; it's based on Exynos 5422 (which sits in Samsung Galaxy S5), which means 2 GHz quadcore Cortex-A15 (plus four slower Cortex-A7, in a big.LITTLE configuration), 2 GB RAM, USB 3.0, gigabit Ethernet, a Mali-T628 GPU and eMMC/SD storage. (My one gripe about the hardware is that you can't put on the case lid while still getting access to the serial console.)
Google, unfortunately, hasn’t given a specific date for its UK Android Pay launch. However, the company did announce that the service would arrive in the “upcoming months” back in March. And with Google I/O scheduled for Wednesday, May 18, we wouldn’t be surprised to hear more on the matter.
Interestingly, UK coffee chain Pret A Manger has already started putting up Android Pay tags in at least one of its London stores, suggesting the launch may be imminent.
ChaletOS' attractive design was targeted specifically at Windows 7 and Vista users who wanted to migrate to an open-source operating system based on the Linux kernel.
FreeBSD is a venerable operating system, often deployed on servers due to the project's focus on performance and stability. At the beginning of April the FreeBSD project released version 10.3 of their operating system. The release announcement for FreeBSD 10.3 mentioned several features and improvements which caught my attention. Specifically the availability of ZFS boot environments, 64-bit Linux compatibility and jail improvements were of interest to me. I was especially eager to try out FreeBSD's new jails technology using the iocage front-end. The iocage software has been presented as an improvement on (and replacement for) Warden, a friendly front-end for handling jail environments.
I already reviewed FreeBSD 10.0 when it was launched and so I plan to skip over most aspects of the new 10.3 release and focus on the key features I listed above, along with the notable changes I encounter. The new release is available in many different builds, ranging from x86 and ARM, to SPARC and PowerPC. For the purposes of my trial I downloaded the 2.6GB DVD image of FreeBSD's 64-bit x86 edition.
Datamation: Let's Encrypt isn't all good...
Google's Android smartphone operating system has reported impressive growth as competition with Apple intensifies in the months before the release of the iPhone 7.
Android's market share increased 7.1 per cent across Europe in the first three months of the year, where it now holds 75.6 per cent of the market to Apple's 18.9 per cent, which fell from 20.2 per cent.
In Great Britain, France, Germany, Italy and Spain, Android grew largely at the expense of Windows Phone, whose sales fell 5 per cent, while close to 7 per cent of first time Android users were migrating from Windows, according to research from analysts Kantar Worldpanel.
Geary is an email application built for GNOME 3. It allows you to read and send email with a simple, modern interface.
One of the hardest parts of actually doing something is the action to do it. I spend quite a while saying to myself “I’ll start learning QML”, then I discovered that there is a Qt version of Transmission, the one used on Windows and also a few linux flavors. Unfortunately it’s not polished as I hoped to run unmodified on Mac, Gnome and such (it runs fine on Plasma, my DE of choice, but I wanted to make it work nice anywhere).
The GTK+ project has a development blog.
I know it may come as a shock to many of you, and you’d be completely justified in thinking that I just made that link up — but the truth is, the GTK+ project has had a development blog for a long while.
While I was going through news.gnome.org, a piece of news flashed on my screen stating that GNOME.Asia summit 2016 is to be held in Delhi, India which is my own place. Though at that time I was completely unaware about what happens in a summit, what it is meant for and all that sort of questions. But for once, I decided to atleast attend it, if not participate. I told about this news to my mentors Jonas Danielsson and Damian Nohales. Initially i was quite reluctant to participate there, but Jonas pushed me a lot to present a lightning talk about my outreachy project in the summit. Damian too motivated me to go for the summit. Therefore I decided to submit a lightning talk proposal about my project : "Adding print route support in GNOME-Maps". Within few days i got the confirmation regarding the acceptance of my talk and also the approval of travelling sponsorship.
The first release candidate to the upcoming Manjaro 16.06 "Daniella" release is now available.
Manjaro's flagship desktop continues to be built upon Xfce 4.12, for which they've worked on more polishing and improvements this release cycle. Manjaro 16.06 for the KDE spin will feature Plasma 5.6 and KDE Applications 16.04.
I’ve been running my personal blog on rootco.de for a few months now. The server is a minimal install of openSUSE Leap 42.1 running on a nice physical machine hosted at the awesome Hetzner, who offer openSUSE Leap as an OS on all of their Physical and Virtual server hosting. I use the standard Apache available in Leap, with Jekyll to generate this blog. You can actually see the source to this Jekyll blog on GitHub. And to manage it all I use the awesome SaltStack and keep all of my Salt configuration in GitHub also so you can see exactly how my system is setup.
Recently, I was asked to fly to India to help some new teams at Red Hat learn a bit more about how to approach the ideas underpinning Agile effectively. Impulsive me wanted to respond, "Yes, I will absolutely travel to India to meet people and share what I know." However, reasonable me followed up with, "OK, so you are going to fly to India. That's almost a two-day trip, you will only be there for around a day, and then you have to fly back for two days. You have a class that week, are teaching the following week, and somewhere in between all of that you are supposed to organize a yard sale. Oh, and in case you didn't know, you need a visa."
Today I tested teh Twine open-source tool with Fedora 24 alpha. I used virtual box software the last version.
The traditional core of the mobile industry still runs shy of open source. Qualcomm may have made some concessions to the new world with activities like AllSeen, but in general, mobile technologies are still run by traditional standards bodies and industry alliances with complex patent sharing deals and strictly controlled development processes. But the new giants of the mobile world have a very different view of open source, seeing it as a way to drive innovation, accelerate development and share costs.
Slaves have no doubt they are slaves when the slave-master beats them out of spite. M$ is clarifying the situation by increasing the number of ads displayed in “10”.
Microsoft has spelled out its aim of doubling the space it allocates in the Start menu for promoting the Microsoft Store.
One last thing. I would like to give a heartfelt (no pun intended) "Thank you" and my admiration for Dr. Berry and the entire staff of St. Joseph's Hospital in Nashua, New Hampshire. How do you thank people for saving your life?
I mentioned to you recently that it was nearing release and it's good to see it finally happen. Moebius: Empire Rising is the adventure game written by Jane Jensen.
Windows has long been the undisputed king of computer operating systems when it comes to gaming. But is Linux getting to the point where it can take on Windows in PC gaming?