How To Deploy a PHP Application with Kubernetes on Ubuntu 16.04

2019-01-18 17:35:37

today's howtos and Mozilla leftovers

2019-01-18 17:03:40

Debian as Universal Operating System and Outreachy Update

2019-01-18 17:02:19

Graphics: Nouvea, NVIDIA RTX "Turing", KDE Plasma 5.15 Beta Wayland Session, Qt5 GUIs With Spying

2019-01-18 17:00:43

Nouveau Open-Source Driver Will Now Work With NVIDIA RTX 2080 Ti On Linux 5.0 Among the many Linux 5.0 kernel features is initial open-source NVIDIA driver support for the latest-generation Turing graphics processors. Missed out on during the Linux 5.0 merge window was "TU102" support but now that is coming down as a fix for the 5.0 kernel. Back in December, Ben Skeggs of Red Hat posted the initial Turing support for Nouveau in the form of the TU104 (RTX 2080) and TU106 (RTX 2060/2070) but was lacking coverage of the TU102, which is for the flagship RTX 2080 Ti and TITAN RTX. He wasn't able to test the support at the time and thus left it out. Skeggs has now been able to verify the TU102 support is working and that patch is now on its way to the mainline kernel tree. Quake 2 Gets Real-Time Path Tracing Powered By NVIDIA RTX / VK_NV_ray_tracing For those Linux gamers with a NVIDIA RTX "Turing" graphics card, there's finally an interesting open-source workload to enjoy that makes use of the RTX hardware and NVIDIA's VK_NV_ray_tracing extension... A real-time path tracing port of the legendary Quake 2 game. While Quake II recently saw a Vulkan port, university students have now done an "RTX" port for Quake 2 with the new Q2VKPT project. KDE Plasma 5.15 Beta Wayland Run Through In this video, we look at KDE Plasma 5.15 Beta the Wayland Session. Please keep in mind that it is still in development and the Xorg session is perfect. Qt 5.13 Might Add QTelemetry For Opt-In Anonymous Data Collection The next release of the Qt5 tool-kit might introduce a potentially controversial module to facilitate anonymous data collection of Qt applications.  The addition of Qt Telemetry has been under code review since last September. There was some reviews taking place and code revisions happening but since November that review dried up.  read more

Pseudo-Open Source (Openwashing)

2019-01-18 16:55:14

Red Hat drops MongoDB over SSPL; MDB -3% Amazon responded by launching DocumentDB, a managed database that's compatible with existing MongoDB applications and tools. DocumentDB works with MongoDB version 3.6, which predates the SSPL license. Governance without rules: How the potential for forking helps projects The speed and agility of open source projects benefit from lightweight and flexible governance. Their ability to run with such efficient governance is supported by the potential for project forking. That potential provides a discipline that encourages participants to find ways forward in the face of unanticipated problems, changed agendas, or other sources of disagreement among participants. The potential for forking is a benefit that is available in open source projects because all open source licenses provide needed permissions. In contrast, standards development is typically constrained to remain in a particular forum. In other words, the ability to move the development of the standard elsewhere is not generally available as a disciplining governance force. Thus, forums for standards development typically require governance rules and procedures to maintain fairness among conflicting interests. Oracle exec: Open-source vendors locking down licences proves 'they were never really open' MoltenVK Sees Big Update To Jump-Start Vulkan On macOS In 2019 Facebook 'Likes' (And Open Sources) Better Mobile Image Software Open source Spectrum library enables edge processing of images for faster performance Spectrum, an open source image processing library from Facebook, aims to give developers the ability to perform image transformation client-side, with predictable, repeatable results on different platforms. The library can be integrated into Android or iOS apps, and uses C/C++ code for higher performance with Java and Objective-C wrapper APIs for integration ease. Spectrum's API is declarative, allowing developers to define the target output characteristics, leaving the work of formulating settings to achieve that goal to the library itself. read more

The Best Open Source Software in 2018 (Users’ Choice)

2019-01-18 16:49:21

LibreOffice is a free and open source office suite written in C++, Java, and Python. It was first released in January 2011 by The Document Foundation and has since known to be the most reliable open source office suite. read more

MellowPlayer – multi-platform cloud music integration

2019-01-18 16:49:15

MellowPlayer offers a web view of various music streaming services with integration with your desktop. It was developed to provide a Qt alternative to Nuvola Player.

How Do You Fedora: Journey into 2019

2019-01-18 16:42:15

Jose plans on continuing to push open source initiatives such as cloud and container infrastructures. He will also continue teaching advanced Unix systems administration. “I am now helping a new generation of Red Hat Certified Professionals seek their place in the world of open source. It is indeed a joy when a student mentions they have obtained their certification because of what they were exposed to in my class.” He also plans on spending some more time with his art again. Carlos would like to write for Fedora Magazine and help bring the magazine to the Latin American community. “I would like to contribute to Fedora Magazine. If possible I would like to help with the magazine in Spanish.” Akinsola wants to hold a Fedora a release part in 2019. “I want make many people aware of Fedora, make them aware they can be part of the release and it is easy to do.” He would also like to ensure that new Fedora users have an easy time of adapting to their new OS. Kevin is planning is excited about 2019 being a time of great change for Fedora. “In 2019 I am looking forward to seeing what and how we retool things to allow for lifecycle changes and more self service deliverables. I think it’s going to be a ton of work, but I am hopeful we will come out of it with a much better structure to carry us forward to the next period of Fedora success.” Kevin also had some words of appreciation for everyone in the Fedora community. “I’d like to thank everyone in the Fedora community for all their hard work on Fedora, it wouldn’t exist without the vibrant community we have.” read more

Mastodon is crumbling—and many blame its creator

2019-01-18 16:38:21

It’s 9am on a Tuesday, early morning by cybre.space’s standards. Few have logged on to the microblogging social network, and it shows: A follower feed filled with more than 31 users updates at a snail’s pace. It’s much slower than one would expect on Twitter. But then again, cybre.space isn’t Twitter. It runs off a decentralized social media software called Mastodon, and is part of a much larger network of Mastodon communities. Over on Twitter, users post jokes about President Donald Trump, this time of a fast food feast he prepared for the Clemson Tigers football team amid the ongoing government shutdown. But the words “Trump” and “shutdown” only appear once each on cybre.space’s “local timeline,” which shows posts on the site and any other connected “instances,” or Mastodon communities. It’s even more barren on this reporter’s home timeline: No one is talking about hamberders. Posting works differently on cybre.space than Twitter. It’s much more like living in a queer house, one that prefers to talk about political theory over current events. Some users chat about democratic socialism and queer identity, while others talk about games, music, fandom, or their difficulties navigating trans healthcare. One user posts a message that reads “re: hrt” with a few lines about their hormone replacement regimen hidden underneath, accessible only via the “show more” content warning (CW) button next to it. Another boosts a post praising Tallahassee by the Mountain Goats, calling it a “visceral experience.” Cybre.space has just over 2,000 users. Over on Mastodon’s flagship community, Mastodon.social, there are over 300,000 users. But despite the larger userbase, discussions are even less political. On the community’s local timeline, one user troubleshoots installing a Linux distribution. Another shares a news story about a man who tried to turn his home into a restaurant. A third links to an article about Gearbox Software’s Randy Pitchford. Here, Trump is not the sun; tech, gaming, and the occasional NSFW post largely prevail. It’s as if the outside world doesn’t exist. read more

Secure Email Service Tutanota Has a Desktop App Now

2019-01-18 16:33:45

There are plenty of free, ad-supported email services available online. However, the majority of those email services are not exactly secure or privacy-minded. In this post-Snowden world, Tutanota offers a free, secure email service with a focus on privacy. read more

Tumbleweed Starts Year with New Plasma, Applications, VIM, curl

2019-01-18 16:31:08

This new year has brought several updated packages to users of openSUSE’s rolling release Tumbleweed. Three snapshots have been released in 2019 so far and among the packages updated in the snapshots are KDE’s Plasma, VIM, RE2, QEMU and curl. The 20190112 snapshot brought a little more than a handful of packages. The new upstream Long-Term-Support version of nodejs10 10.15.0 addressed some timing vulnerabilities, updated a dependency with an upgrade to OpenSSL 1.1.0j and the versional also has a 40-seconds timeout that is now applied to servers receiving HTTP headers. The changelog listed several fixes for the highly configurable text editor with vim 8.1.0687, which should now be able to be built with Ruby 2.6.0 that was released at the end of December. Google’s re2 20190101 offered some performance tweaks and bug fixes. The fast real-time compression algorithm of zstd 1.3.8 has better decompression speed on large files. There was a change in the yast2-firewall package, which arrived in the the 20190110 snapshot, that allows new ‘forward_ports’, ‘rich_rules’ and ‘source_ports’ elements in zone entries with yast2-schema 4.1.0. read more

Steam Play versus Linux Version, a little performance comparison and more thoughts

2019-01-18 16:25:22

Tags: Steam Play, BenchmarkNow that Steam has the ability officially to override a Linux game and run it through Steam Play instead, let's take a quick look at some differences in performance. Before I begin, let's make something clear. I absolutely value the effort developers put into Linux games, I do think cross-platform development is incredibly important so we don't end up with more lock-in. However, let's be realistic for a moment. Technology moves on and it's not financially worth it to keep updating old games, they just don't sell as well as newer games (with exceptions of course). As the years go on, there will be more ways to run older games better and better, of that I've no doubt. I'm not a zealot for any one particular method of gaming either and as a fan of all things gaming, software and technology, I thought it might be interesting and hopefully you do too. First up, let's take a look at Tomb Raider (2013) which arrived on Linux back in 2016. Since Tomb Raider has a handy built-in benchmark tool, we will start off simply by showing the results: Benchmarks also only tell one part of the story. In the case of Tomb Raider, through Steam Play it needed to run through entirely at least once or there was quite a lot of stuttering which wasn't the case in the Linux version. However, the Linux version has parts of the game where performance dives a lot and the Steam Play version is better there. To Feral Interactive's credit (who ported it to Linux), their later ports are miles ahead of this. In the case of Cities: Skylines which released on Linux back in 2015 at the same time as the Windows version, testing out the "Benchmark" map from the Steam Workshop resulted in something I didn't expect. The performance was very close but the Linux version was noticeably smoother with a couple of extra FPS. Watch video on YouTube.com As you can see, both versions work quite well. I've completed the game more than once and I was actually happy enough with the performance of the Linux version, it was good enough and playable. However, the Steam Play version with Vulkan is at times around double the performance of the Linux version which is quite striking. The testing in this article was going to be longer, I had some grand plans for doing a lot of comparisons. However, Steam Play is still in beta and it has an uphill battle ahead of it. Civilization VI, Deus Ex: Mankind Divided and BioShock Infinite didn't work at all in Steam Play across both Proton 3.16 and 3.7 but the Linux versions do work. Sad about not being able to test more, but it's an example of how a supported release is the better option for certain games (especially multiplayer games like Darwin Project) and not the answer to everything as some claim. Great as an option but not quite ready for prime time overall, it will be fun to watch it evolve over this next year. As I've said before though, with Steam Play it's not just a case of squeezing out extra performance. It's also a question of support and features of the Linux version (gamepad support, fullscreen issues, missing graphics options and so on). From a performance standpoint though, it shows clearly Linux can be a gaming platform that performs well. The biggest question in my mind is: do you really get any true support with games you purchase to play in Steam Play? What exactly are you paying for? I don't really have an answer for that. For a purchased game, the developer (you would think) would be focused on it and fix issues as they come up. With Steam Play though, it covers such a massive list you could end up waiting a while for a fix (if it's possible at all). Thankfully, Valve has made a good step towards stopping Steam Play updates breaking games, since the latest Steam client beta no longer overrides the Proton version for a game in the whitelist. I may do more tests in future, if readers want me to you will need to let me know what games you want to see tested (they have to have a benchmark mode in the Linux version). We still don't have a decent amount of Linux games that actually do have a benchmark mode, so it does make such a thing rather tricky to get a lot of value out of it and comparison videos eat a huge amount of time for even the most basic rough editing. If you wish to support GamingOnLinux, we have many options available see here.

The best Linux apps for Chromebooks

2019-01-18 16:09:36

Being able to install Linux apps on Chrome OS opens up some fascinating new possibilities — particularly if you're an advanced user. After all, while a Chromebook's standard combo of web apps, Chrome apps, and Android apps is more than sufficient for most folks' needs, some of us still require (or maybe just prefer) traditional local programs for certain specific purposes. The presence of Linux apps on Chrome OS means we can have our cake and eat it, too — by enjoying the speed, simplicity, and security of a Chromebook while also embracing the occasional heavy-duty desktop app. read more

Pixelbook and 'Nami' Chromebooks the First To Get Linux GPU Acceleration in Project Crostini

2019-01-18 16:07:00

Kevin C. Tofel, writing for About Chromebooks: I've been following the bug report that tracks progress on adding GPU acceleration for the Linux container in Chrome OS and there's good news today. The first two Chrome OS boards should now, or very soon, be able to try GPU hardware acceleration with the new startup parameter found last month. The bug report says the -enable-gpu argument was added to the Eve and Nami boards. There's only one Eve and that's the Pixelbook. Nami is used on a number of newer devices, including: Dell Inspiron 14, Lenovo Yoga Chromebook C630, Acer Chromebook 13, Acer Chromebook Spin 13, and HP X360 Chromebook 14. Read more of this story at Slashdot.

Easily Set CPU Governor (Performance / Powersave) And Monitor CPU Frequency In Gnome Shell With CPUFREQ Extension

2019-01-18 16:00:00

LinuxUprising: CPUFREQ Power Manager (or just CPUFREQ) is a Gnome Shell extension that makes it easy change the CPU governor (powersave / performance) and monitor the CPU frequency.

Ten of the most innovative robotics developments of the past year

2019-01-18 15:56:58

Guang-Zhong Yang, an editor at Science Robotics, with help from an international team of contributors, has highlighted ten notable robotics developments that occurred over the past year in the journal's most recent issue.

Top 5 Linux Server Distributions

2019-01-18 15:56:29

However, in the name of opening your eyes to maybe something a bit different, I’m going to approach this a bit differently. I want to consider a list of possible distributions that are not only outstanding candidates but also easy to use, and that can serve many functions within your business. In some cases, my choices are drop-in replacements for other operating systems, whereas others require a bit of work to get them up to speed. Some of my choices are community editions of enterprise-grade servers, which could be considered gateways to purchasing a much more powerful platform. You’ll even find one or two entries here to be duty-specific platforms. Most importantly, however, what you’ll find on this list isn’t the usual fare. read more

How connected vehicles' windshield wipers could prevent flooding

2019-01-18 15:47:19

One of your car's oldest features has been put to a new, high-tech use by University of Michigan researchers.

WLinux & WLinux Enterprise Benchmarks, The Linux Distributions Built For Windows 10 WSL

2019-01-18 15:46:48

Making the news rounds a few months back was "WLinux", which was the first Linux distribution designed for Microsoft's Windows Subsystem for Linux (WSL) on Windows 10. But is this pay-to-play Linux distribution any faster than the likes of Ubuntu, openSUSE, and Debian already available from the Microsoft Store? Here are some benchmarks of these different Linux distribution options with WSL.

PCI Council Releases New Software Framework for DevOps Era

2019-01-18 15:45:00

The PCI Software Security Framework will eventually replace PCI DA-DSS when it expires in 2022.

The Rx for HIPAA Compliance in the Cloud

2019-01-18 15:30:00

For medical entities, simply following HIPAA cloud service provider guidelines is no longer enough to ensure that your practice is protected from cyber threats, government investigations, and fines.

openSUSE Announces Three New Tumbleweed Snapshots for 2019, Malware in Google Play Using Motion Sensors to Avoid Detection, Leaked Android Q Features, deepen 5.9 Released and ZFS On Linux 0.8 Coming Soon

2019-01-18 14:51:40

News briefs for January 18, 2019. openSUSE announces three new Tumbleweed snapshots to start of 2019, which include updates for KDE Plasma, Vim, RE2, QEMU, curl and much, much more. The openSUSE blog post notes that, "all snapshots have either logged or are treading as moderately stable with a rating of 83 or above, according to the Tumbleweed snapshot reviewer. There are more than 300 packages in staging that will likely be released in several snapshots over the coming weeks." Malware in Google Play used motion sensors in phones to hide itself, triggering only when the phones moved. According to Ars Technica, the malicious apps avoid detection by monitoring "the motion-sensor input of an infected device before installing a powerful banking trojan to make sure it doesn't load on emulators researchers use to detect attacks. The thinking behind the monitoring is that sensors in real end-user devices will record motion as people use them. By contrast, emulators used by security researchers—and possibly Google employees screening apps submitted to Play—are less likely to use sensors. Two Google Play apps recently caught dropping the Anubis banking malware on infected devices would activate the payload only when motion was detected first. Otherwise, the trojan would remain dormant." Trend Micro found the malware in two apps: BatterySaverMobi and Currency Converter. XDA Developers got their hands on a Google Pixel 3 XL with a leaked version of Android Q, giving them a first look at what Google has been working on. First is a system-wide Dark Theme. In addition, it has a huge permissions revamp "in the Settings app that allows you to get an overview of permission access by apps and restrict certain permissions like location only while the app is in use". It also includes new Developer Options, accessibility settings and other miscellaneous changes. deepin 5.9 has been released. This release fixes several bugs and "adds support for touchscreen gestures and onscreen keyboard, optimizes the using frequency algorithm for application sequence in Launcher mini mode, and introduces a new function - Smart Mirror Switch, hoping to bring users more stable and efficient experiences." You can download the ISO from here. ZFS On Linux 0.8 is coming soon, and it's expected to be a huge release. Phoronix reports that this update will include "native encryption support, device removal, direct I/O, sequential scrub, pool checkpoints, and a lot of other new features for the first time with this Linux port of the Sun/Oracle ZFS file-system." News openSUSE Google Mobile Android Security Deepin ZFS

How to replace Windows 7 with Linux Mint

2019-01-18 14:40:00

Windows 7 has less than a year of supported life left. If you really, really don't like Windows 10, it's time to consider running Linux Mint instead.

Linux 4.20 Allows Overclockers To Increase The Radeon TDP Power Limit

2019-01-18 14:35:29

The AMDGPU Linux kernel driver for a while has now offered command-line-driven OverDrive overclocking for recent generations of Radeon GPUs. This has allowed manipulating the core and memory clock speeds as well as tweaking the voltage but has not supported increasing the TDP limit of the graphics card: that's in place with Linux 4.20..

A new smartphone user authentication system based on gait analysis

2019-01-18 14:30:01

A team of researchers at the University of Pretoria and City University of Hong Kong has recently developed a continuous smartphone user authentication system based on gait analysis. This system, outlined in a paper presented at the 44th annual conference of the IEEE Industrial Electronics Society, takes advantage of a device's pre-existing hardware, authenticating smartphone users based on their gait patterns.

Linux 5.0 Will Allow Overclockers To Increase The Radeon TDP Power Limit

2019-01-18 14:28:29

The AMDGPU Linux kernel driver for a while has now offered command-line-driven OverDrive overclocking for recent generations of Radeon GPUs. This has allowed manipulating the core and memory clock speeds as well as tweaking the voltage but has not supported increasing the TDP limit of the graphics card: that's now changing with Linux 5.0...

Quake 2 now has real-time path tracing with Vulkan

2019-01-18 14:06:32

Tags: Open Source, FPS, VulkanIf you have one of the more recent NVIDIA RTX graphics cards, here's an interesting project for you to try. Q2VKPT from developer Christoph Schied implements some really quite advanced techniques. As the developer describes: Q2VKPT is the first playable game that is entirely raytraced and efficiently simulates fully dynamic lighting in real-time, with the same modern techniques as used in the movie industry (see Disney's practical guide to path tracing). The recent release of GPUs with raytracing capabilities has opened up entirely new possibilities for the future of game graphics, yet making good use of raytracing is non-trivial. While some games have started to explore improvements in shadow and reflection rendering, Q2VKPT is the first project to implement an efficient unified solution for all types of light transport: direct, scattered, and reflected light (see media). This kind of unification has led to a dramatic increase in both flexibility and productivity in the movie industry. The chance to have the same development in games promises a similar increase in visual fidelity and realism for game graphics in the coming years. Watch video on YouTube.com It requires the VK_NV_ray_tracing extension, looking over recent NVIDIA driver releases it looks like you would need at least 410.57 which added support for it. See more on the official site with the source code on GitHub. I will admit, this is all going a little bit over my head, but the idea of it sounds very interesting.

8 Tips for Monitoring Cloud Security

2019-01-18 14:00:00

Cloud security experts weigh in with the practices and tools they prefer to monitor and measure security metrics in the cloud.

Dicey Dungeons, the new unique roguelike from Terry Cavanagh and co introduces quests

2019-01-18 13:31:17

Tags: Indie Game, Roguelike, Itch.ioWe have a lot of roguelikes available on Linux (seriously, we do) yet Dicey Dungeons from Terry Cavanagh, Marlowe Dobbe, and Chipzel still remains fresh due to the rather unique game mechanics. I still can't get over how fun the dice mechanic is, as you slot dice into cards to perform actions. It's different, clever and works really well. Update 0.15 was actually released at the end of the last year, which I missed since they didn't put out an update post on it. The itch client also decided to keep me on an older version, for some reason that is unknown to me. They also recently showed off a new trailer: Watch video on YouTube.com Recently, it was updated to include a new quest system, as Cavanagh describes: The heart of this update is the game’s new quest system. Quests are alternate game modes for each character, evolved from the old guild system. They’re about showing you a new side of each character, making you think differently about them, while providing some interesting challenges on the way! Each quest is a tweak to the basic rules - there’s one for the Warrior that makes you lose max HP when you level up, one for the thief that lets you keep enemy equipment, one for the Witch that gives you a predictable sequence of dice, and lots more. I’m eventually planning to have 36 of them, six for each character (this build has 20). Not just that, enemy AI has also been improved. They make better decisions, they're a little more menacing and so there's more of a challenge give it that essential fun factor to make you want to have another run. There's plenty of new artwork too, it's actually starting to look like a more complete game. This includes a lot more actually being animated, so the game feels properly alive and less like you're moving bits of paper around. Keeping a close eye on it, however I still think it's a lot of fun even in the unfinished state. Do take a look, you can even play some really old versions free here as a basic taste test. However, it's come a long way since those. Currently only available on itch.io while it's in development, it's also heading to Steam sometime this Spring.

The Beta of Zombie Panic! Source was updated recently, should work better on Linux

2019-01-18 13:15:31

Tags: Free Game, Source Engine, SteamZombie Panic! Source is currently going through an overhaul, as part of this it's coming to Linux with a version now in beta and the latest update should make it a better experience. For starters, the first beta was missing some options meaning you would have been unable to join any servers. That's now been fixed! There's plenty of other bugs fixed across all platforms too, so it should be more stable. Additionally, they've been reworking melee to improve how it feels including hit detection and how it actually works, so you shouldn't feel like you have super long arms any more. You can also now hold your secondary mouse button, to do a more powerful charged melee attack with weapons like the sledgehammer, chair, and shovel. To join in, they will be hosting some 3.1 beta multiplayer events on the 19th, 20th, 26th, and 27th at 7PM UTC. More info on the events as they change available here. I personally haven't been able to make any of the events yet, so I have no real thoughts on the game. Once it's out of beta and all servers are updated, I will be taking a proper look as it looks fun. No idea when this version will leave beta, might be a while yet. See the news post here. Available free on Steam.

Some Thoughts on Open Core

2019-01-18 13:00:00

by Kyle Rankin Why open core software is bad for the FOSS movement. Nothing is inherently anti-business about Free and Open Source Software (FOSS). In fact, a number of different business models are built on top of FOSS. The best models are those that continue to further FOSS by internal code contributions and that advance the principles of Free Software in general. For instance, there's the support model, where a company develops free software but sells expert support for it. Here, I'd like to talk a bit about one of the more problematic models out there, the open core model, because it's much more prevalent, and it creates some perverse incentives that run counter to Free Software principles. If you haven't heard about it, the open core business model is one where a company develops free software (often a network service intended to be run on a server) and builds a base set of users and contributors of that free code base. Once there is a critical mass of features, the company then starts developing an "enterprise" version of the product that contains additional features aimed at corporate use. These enterprise features might include things like extra scalability, login features like LDAP/Active Directory support or Single Sign-On (SSO) or third-party integrations, or it might just be an overall improved version of the product with more code optimizations and speed. Because such a company wants to charge customers to use the enterprise version, it creates a closed fork of the free software code base, or it might provide the additional proprietary features as modules so it has fewer problems with violating its free software license. The first problem with the open core model is that on its face it doesn't further principles behind Free Software, because core developer time gets focused instead of writing and promoting proprietary software. Instead of promoting the importance of the freedoms that Free Software gives both users and developers, these companies often just use FOSS as a kind of freeware to get an initial base of users and as free crowdsourcing for software developers that develop the base product when the company is small and cash-strapped. As the company get more funding, it's then able to hire the most active community developers, so they then can stop working on the community edition and instead work full-time on the company's proprietary software. Go to Full Article

The Top 4 Ways Your Linux Computer Can Earn You Money

2019-01-18 13:00:00

 DarkDuck: Computers, whether they run Linux or not, as a rule, don't tend to be cheap.

How to Install HandBrake Video Converter on Ubuntu

2019-01-18 12:02:34

The Handbrake trans-coder is a free, open source and cross-platform solution for you to convert common media files from one format to another. In this article, we will show two ways to install the Handbrake on a Ubuntu system.

New Android Malware Apps Use Motion Sensor to Evade Detection

2019-01-18 11:37:55

Even after so many efforts by Google for preventing its Play Store from malware, shady apps somehow managed to fool its anti-malware protections and get into its service to infect Android users with malware. Two such Android apps have recently been spotted on the Google Play Store by security researchers with the Trend Micro malware research team, infecting thousands of Android users who have

Nouveau Open-Source Driver Will Now Work With NVIDIA RTX 2080 Ti On Linux 5.0

2019-01-18 11:00:00

Among the many Linux 5.0 kernel features is initial open-source NVIDIA driver support for the latest-generation Turing graphics processors. Missed out on during the Linux 5.0 merge window was "TU102" support but now that is coming down as a fix for the 5.0 kernel...

Fedora Classroom: Getting started with L10N

2019-01-18 10:48:14

Fedora Classroom sessions continue with an introductory session on Fedora Localization (L10N). The general schedule for sessions is available on the wiki, along with resources and recordings from previous sessions.

Kubernetes: Tools for Operability

2019-01-18 10:18:44

In this presentation, Bridget Kromhout discusses what containers and Kubernetes clusters are at a high level, looks into the practical application of open source tools to simplify cluster management, and shows how to deploy Kubernetes clusters in a repeatable and portable fashion.

New Release of HardenedBSD, New Show About BSDs and mintCast

2019-01-18 10:16:55

Stable release: HardenedBSD-stable 11-STABLE v1100056.12 EPYC Server Battle | BSD Now 281 SCP client vulnerabilities, BSDs vs Linux benchmarks on a Tyan EPYC Server, fame for the Unix inventors, Die IPv4, GhostBSD 18.12 released, Unix in pictures, and more. mintCast 300.2 interview 2 Rothgar read more

Clear Linux's make-fmv-patch Eases The Creation Of GCC FMV-Enabled Code Paths

2019-01-18 10:16:49

One of the GCC compiler features unfortunately not taken advantage of by most Linux distributions is FMV - Function Multi-Versioning. FMV is what allows for the compilation of different tuned code paths depending upon the processor and for the particular code-path to be chosen at run-time, i.e. optimizing to your heart's content with AVX, SSE4, and other instruction set extensions and compiling all of that into a single binary and for the preferred code path to be taken depending upon the CPU running the binary so it will still run on older CPUs as well as today's most powerful processors...

Finders spot Dark Mode in Android Q leak

2019-01-18 10:15:06

The early Android Q build has a dark theme and it is system wide. XDA Developers picked up the leaked Android Q build with February's security patches and flashed it on a Pixel 3 XL. The results: A video showing the changes in action and a flurry of techie headlines quoting a much-quoted story in XDA Developers about the find.

EVOC on Back Doors (ME) and Newt on an Arduino

2019-01-18 10:14:17

Touch-panel PCs offer a choice of Skylake or Bay Trail chips EVOC’s P15 and P17 panel PCs provide Intel Skylake-U or Bay Trail CPUs with IP66 protected 15- or 17-inch resistive displays, plus 2x to 4x GbE ports, up to 8x USB and 6x COM ports, and HDMI, VGA, mini-PCIe, and SATA. Like EVOC’s 15.6-inch PPC-1561 touch-panel PC from May 2008, EVOC’s fanless P15/P17 touch-panel PCs run on 6th Gen Skylake-U or Bay Trail Celeron J1900 processors. The 15-inch P15 and 17-inch P17 offer 5-wire resistive touch and a “next generation design” with “true flat display surface and narrow bezel,” says China-based EVOC. The front aluminum alloy panel offers IP66 waterproofing, dustproofing, and anti-vibration support, as well as over 7H-mohs hardness to prevent scratches, oil, dust, metal chip, and water mist damage. Newt-Duino: Newt on an Arduino Here's our target system. The venerable Arduino Duemilanove. Designed in 2009, this board comes with the Atmel ATmega328 system on chip, and not a lot else. This 8-bit microcontroller sports 32kB of flash, 2kB of RAM and another 1kB of EEPROM. Squeezing even a tiny version of Python onto this device took some doing. read more

Server: OpenShift, Containers, SUSE, IBM and Kubernetes/Heptio

2019-01-18 10:06:36

Modern web applications on OpenShift: Part 3 — Openshift as a development environment Welcome back to the final part of this multipart series about deploying modern web applications on Red Hat OpenShift. In the first post, we took a look at how to deploy a modern web application using the fewest commands. In the second part, we took a deeper look into how the new source-to-image (S2I) web app builder works and how to use it as part of a chained build. This third and final part will take a look at how you can run your app’s “development workflow” on OpenShift. Survey Indicates Container Security Concerns Limit Adoption A new survey indicates that 60 percent of IT pros working with containers experienced at least one container security incident in the last year. SUSE teams with Intel & SAP on persistent memory in the datacentre SUSE has announced support for Intel Optane DC persistent memory with SAP HANA. Persistent memory is typically defined as any method or apparatus for storing data structures such that they can continue to be accessed using memory instructions or memory APIs even after the end of the process that created or last modified them – and that often means ‘when the power is off’. Running on SUSE Linux Enterprise Server for SAP Applications, SAP HANA users can now use Intel Optane DC persistent memory in the data centre. Red Hat Shareholders Greenlight $34B IBM Acquisition IBM's $34 billion deal to acquire Red Hat took a big step closer to completion, as Red Hat shareholders nearly unanimously approved the deal on Wednesday. How VMware Is Advancing Kubernetes Cloud-Native Technology With Heptio read more

Linux Foundation: Upcoming Events and Hyperledger

2019-01-18 10:04:29

Check Out the 2019 Linux Foundation Events and Expand Your Open Source Experience The Linux Foundation just recently announced its 2019 events schedule, featuring all your favorite events as well as some brand-new ones to cover the latest technologies. Make plans now to speak or attend and expand your experience with open source. The Role of Hyperledger in the Development of Smart Contracts Businesses constantly look to improve. A great part of that improvement is optimizing the costs-to-revenue ratio, which obviously favors revenue. Developing decentralized applications (dApps) with smart contracts has opened exciting avenues for businesses. Blockchain developers are exploring this practical aspect of smart contracts to create dApps that solve several issues current businesses struggle with: too many intermediaries, too much time, and too many conditions attached to executing a business transaction. The sum of these issues comes down to spending too much money on completing business contracts. Expectedly, the solution would be to reduce most of the complicated aspects to do business in a more affordable way than ever before. [...] The Hyperledger is different from other blockchain endeavors. It not only offers a dApp platform for creating practical solutions but it also provides collaborative partnership and unique smart contract technology as well as rich resources such as plug-in tools and frameworks that businesses can use in the process of dApp development. In the spirit of Linux, it also features a very active online community. Despite the permissioned blockchain model, it’s important to keep in mind Hyperledger’s open-source software orientation, which means the platform offers its newly developed code to partners for free. Apart from the membership fee, there are no additional fees for licenses and royalties. In a way, seeing blockchains as completely open or partially open networks is similar to the conundrum associated with the different benefits of open-source and proprietary software. read more

Programming: GCN, Python, Rust, RcppArmadillo

2019-01-18 09:58:37

Radeon GCN Compiler Backend Merged Into GCC 9 - To Allow OpenMP/OpenACC Offloading The long-in-development AMD "GCN" back-end for the GNU Compiler Collection that allows targeting recent generations of Radeon GPUs for compute offloading has been merged into the upcoming GCC 9 release. This AMD Radeon GCN back-end is what has been in development for many months by Code Sourcery / Mentor Graphics with the ultimate goal of allowing Fortran/C/C++ compute work to be offloaded Radeon graphics processors via the OpenMP and OpenACC APIs, similar to the NVPTX offload support within GCC already for NVIDIA GPUs as well as Xeon Phi offloading on the Intel front. Getting Started with MySQL and Python For any fully functional deployable application, the persistence of data is indispensable. A trivial way of storing data would be to write it to a file in the hard disk, but one would prefer writing the application specific data to a database for obvious reasons. Python provides language support for writing data to a wide range of databases. Webinar Recording: “Live Development of a PyCharm Plugin” with Joachim Ansorg How to implement Download Manager in python "It's not a bug, it's a feature." - Differentiating between bugs and non-bugs using machine learning Beyond the “hello, world” of Python’s “print” function Leaving Mozilla and (most of) the Rust project RcppArmadillo 0.9.200.7.0 read more

Games: Lost in Sky: Violent Seed, Steam and PlayOnLinux 5.0 Alpha 2

2019-01-18 09:56:08

Lost in Sky: Violent Seed Bringing Co-Op Puzzle Platforming to Linux & Windows While action-platformers aren't in short supply in today's gaming market, there is a definite lack of co-op games in the genre despite that being a natural fit. Thankfully, the team behind List in Sky: Violent Seed saw that and is setting out to bring a new IP into the industry alongside a merging of numerous gaming concepts. In a sci-fi setting, you and a partner will team up and not only battle a ton of nasty-looking mutants, but also team up to solve puzzles. Puzzle-platformers have seen an upswing in popularity, but co-op ones haven't really been done before. That sub-genre is an even more natural fit than a co-op action-platformer since it's much easier to solve puzzles when you put your minds together. Steam Beta Update Now Allows Per-Game Enabling Of Steam Play, Other Improvements It was just yesterday that Valve dropped a big Steam client update including several long sought improvements for Linux gamers. Today that's been succeeded by another rather nice beta upgrade. It was just yesterday that Valve dropped a big Steam client update including several long sought improvements for Linux gamers. Today that's been succeeded by another rather nice beta upgrade. [...] This update also fixes the incorrect scroll offset for the in-game overlay with Steam on Linux. Outside of the Linux-specific work are some Big Picture fixes and on Steam Input is support for the HORI Battle Pad and HORI Wireless Switch Pad. Phoenicis PlayOnLinux 5.0 - Alpha 2 has been released We have rewritten from scratch our winebuild platform. To make it short, it is more reliable, more transparent, easier to setup and cross-platform compatible. Any project that needs to use wine could now potentially use it and take advantage of the 1828 different builds. (We admit that some of them are outdated, though). The winebuild project is open source, uses containers. You can install it on your machine in no time if you want to build wine by yourself. read more

Android: Android Q, Fossil and Deprecating 32-Bit Android Apps

2019-01-18 09:52:04

Android Q Leak Confirms System-Wide Dark Theme, Experimental Desktop Mode It's been confirmed many times that Google is working on a system-wide dark theme for a future version of its Linux-based Android mobile operating system, but the latest leak of Android Q gives a first look at the new dark mode and other upcoming features. Just two weeks ago, a Google engineer revealed the fact the a dark mode is now in development at Google for the upcoming Android Q release, which should see the light of day later this year, but while some of us are still waiting impatiently for Google to release the first Android Q Developer Preview, XDA Developers managed to get their hands on an early build of the mobile OS. Google is Going to Buy Fossil’s Smartwatch Tech for $40 Million Google Just Paid $40 Million To Buy Fossil’s Secret Smartwatch Tech We all have only been hearing rumors about a Google Pixel watch. It seems like it would soon be turning into a reality. Today, Fossil announced that it would sell some of its “intellectual property” to Google, in a whopping $40 million deal. Google Will Deprecate 32-Bit Android Apps on 64-Bit Devices Starting August 2021 Google To End 32-Bit App Support In 2021; Shifts Focus To 64-Bits Apps read more

Quake 2 Gets Real-Time Path Tracing Powered By NVIDIA RTX / VK_NV_ray_tracing

2019-01-18 09:33:22

For those Linux gamers with a NVIDIA RTX "Turing" graphics card, there's finally an interesting open-source workload to enjoy that makes use of the RTX hardware and NVIDIA's VK_NV_ray_tracing extension... A real-time path tracing port of the legendary Quake 2 game...

North Korean Hackers Get Access To Chile's ATM After Employee Falls For Fake Job Interview Over Skyp

2019-01-18 08:54:46

LinuxSecurity.com: North Korean hackers fooled a Redbanc employee into a fake job interview over Skype and then tricked him into downloading malware onto his work computer to get access to the company's interbank network, according to a report by Chilean news site trendTIC.

Security: Jenkins, Polyverse, Rootkits, Cryptojacking and Kali Linux

2019-01-18 08:33:39

“In the history of the Jenkins project, we’ve had 8 vulnerabilities reported with co-ordinated disclosure deadlines – all in the second half of 2018.” Polyverse Donates “Moving Target Defense” Cybersecurity Technology to Open Source Projects How to write a rootkit without really trying This cryptocurrency mining malware now disables security software to help remain undetected Cryptojacking campaign targets Linux servers that haven't had patches for known vulnerabilities applied. Kali Linux 2018 for testing and maintaining Windows security – Wolf Halton and Bo Weaver [Interview] Kali Linux is the premier platform for testing and maintaining Windows security. Kali is built on the Debian distribution of Linux and shares the legendary stability of that OS. This lets you focus on network penetration, password cracking, and using forensics tools, and not the OS. read more

Server Side Public License (SSPL) Fallout

2019-01-18 08:31:08

Red Hat drops MongoDB over concerns related to its Server Side Public License (SSPL) It was last year in October when MongoDB announced that it’s switching to Server Side Public License (SSPL). Now, the news of Red Hat removing MongoDB from its Red Hat Enterprise Linux and Fedora over its SSPL license has been gaining attention. The Need for Sustainable Open Source Projects The point of the article is a lot of companies that support open source projects, like RedisDB, are moving to more closed source solutions to survive. The cloud providers are called out as a source of a lot of problems in this article, as they consume a lot of open source software, but do not really spend a lot of time or effort in supporting it. Open source, in this situation, becomes a sort of tragedy of the commons, where everyone thinks someone else is going to do the hard work of making a piece of software viable, so no-one does any of the work. Things are made worse because the open source version of the software is often "good enough" to solve 80% of the problems users need solved, so there is little incentive to purchase anything from the companies that do the bulk of the work in the community. MongoDB’s licensing changes led Red Hat to drop the database from the latest version of its server OS After MongoDB decided last year that it was changing the license for its open-source database to a more restrictive version, Red Hat decided it would no longer include MongoDB in the latest version of its flagship Red Hat Enterprise Linux operating system. The change apparently went unnoticed until a Hacker News thread took off earlier today, but it was included in the release notes for RHEL 8.0, which was released in beta last November. In those notes, Red Hat states “note that the NoSQL MongoDB database server is not included in RHEL 8.0 Beta because it uses the Server Side Public License (SSPL).” read more

How to Use Tail Command in Linux

2019-01-18 08:19:33

Tail command prints last N number of lines from the given file. Tail command is complimentary of head command. This command mostly used to monitor log files which are changing continuously in real time.

MariaDB Platform X3

2019-01-18 08:03:28

Unlock Hybrid Everything with MariaDB Platform X3 As customers, we expect businesses to provide us with useful information. And as our expectations rise, so too must the usefulness of the information. For example, it’s useful to know a product is on sale. It’s more useful to know that it will be sold-out within hours. It’s also useful to know the balance on my credit card. But it’s even more useful to know if it’s going be higher than the automated payment I scheduled. MariaDB Platform X3 combines transaction processing and analytics With MariaDB Platform X3, an organization may use a single database both for conventional customer-facing workloads (transactional, or OLTP) and internal business-intelligence workloads (analytical, or OLAP). The same data is available for either kind of work and is kept automatically in sync between the two sides. MariaDB Platform is priced at a flat per-node cost, regardless of whether nodes are OLTP or OLAP. This allows for more flexible deployments, where the number of nodes in a given deployment can be moved freely between OLTP and OLAP workloads as demand changes. read more

Get started with WTF, a dashboard for the terminal

2019-01-18 08:03:00

There seems to be a mad rush at the beginning of every year to find ways to be more productive. New Year's resolutions, the itch to start the year off right, and of course, an "out with the old, in with the new" attitude all contribute to this. And the usual round of recommendations is heavily biased towards closed source and proprietary software. It doesn't have to be that way. Here's the sixth of my picks for 19 new (or new-to-you) open source tools to help you be more productive in 2019. read more

The definitive guide to MongoDB security

2019-01-18 08:02:00

Picture this: you are all ready to pack up and head home after a tiring day at work, but just as you are about to shut down, this pops up: read more

CNC milling with open source software

2019-01-18 08:01:00

I'm always looking for new projects to create with my 3D printer. When I recently saw a new design for a computer numeric code (CNC) milling machine that mostly uses 3D printed parts, I was intrigued. When I saw that the machine works with open source software and the controller is an Arduino running open source software, I knew I had to make one. read more

Governance without rules: How the potential for forking helps projects

2019-01-18 08:00:00

The speed and agility of open source projects benefit from lightweight and flexible governance. Their ability to run with such efficient governance is supported by the potential for project forking. That potential provides a discipline that encourages participants to find ways forward in the face of unanticipated problems, changed agendas, or other sources of disagreement among participants. The potential for forking is a benefit that is available in open source projects because all open source licenses provide needed permissions. read more

Bash shell utility turns 5.0

2019-01-18 07:05:13

A few months prior to celebrating the 30th birthday of the Bash command language interpreter, the GNU Project has released Bash 5.0, featuring bug fixes and new shell variables. As we look forward to the release of Linux Kernel 5.0 in the coming weeks, we can enjoy another venerable open source technology reaching the 5.0 […]

How to Install ClipBucket and Nginx on CentOS 7

2019-01-18 07:01:01

ClipBucket is an open source media and video management system, available in both free and paid versions. With ClipBucket, you can launch your own multi-screen branded Video-On-Demand (VOD) content. ClipBucket has LDAP integration through which you can setup your Ad credentials. A revenue sharing system in ClipBucket also allows you to manage RPM (revenue per thousand impressions) by regions. ClipBucket does not restrict its installation to any specific operating system (OS). You can use any operating system (OS) of your choice; however, the installation steps would vary according to the choice of operating system.In this tutorial, we will be installing and configuring ClipBucket and Nginx on an Alibaba Cloud Elastic Compute Service (ECS) instance with CentOS 7.

How to Mount Windows Partitions in Ubuntu

2019-01-18 07:00:00

Tecmint: If you are running a dual-boot of Ubuntu and Windows, sometimes you might fail to access a Windows partition (formatted with NTFS or FAT32 filesystem type), while using Ubuntu

A Twitter Bug Left Android Users' Private Tweets Exposed For 4 Years

2019-01-18 06:49:45

Twitter just admitted that the social network accidentally revealed some Android users' protected tweets to the public for more than 4 years — a kind of privacy blunder that you'd typically expect from Facebook. When you sign up for Twitter, all your Tweets are public by default, allowing anyone to view and interact with your Tweets. Fortunately, Twitter also gives you control of your

MoltenVK Sees Big Update To Jump-Start Vulkan On macOS In 2019

2019-01-18 06:00:00

Next month MoltenVK will celebrate one year since being open-sourced for allowing the Vulkan API to function on Apple's macOS/iOS by mapping the Vulkan calls to the Apple Metal graphics/compute API. Just in time for that first birthday, a big MoltenVK update is now available...

Open Source Startup ‘Tidelift’ raises $25m in series B funding

2019-01-18 05:44:44

Open Source startups are also booming with the rise of open source usage in the enterprise world. Tidelift is one such startup making it big with multi-million dollar fundings. read more

Inkscape 1.0 Alpha Released For This Leading Open-Source Vector Graphics Program

2019-01-18 05:04:39

Inkscape on Thursday announced their 0.92.4 release that brought many stability and bug fixes but also some performance improvements and other enhancements. Most exciting though is the debut of Inkscape 1.0 alpha...

Facebook, Instagram, WhatsApp pose privacy risks, warns free software guru Richard Stallman

2019-01-18 04:59:03

Think twice before posting anyone’s photo on Facebook, WhatsApp or Instagram, says free software guru Richard Stallman. As a few among the strongest centralised surveillance mechanisms in the world, even with a picture of the back of head, they would be able to track where you go and what you do, he added. The software guru’s lecture titled Education Freedom Day lecture, organised by International Centre for Free and Open Source Software and Society for Promotion of Alternate Computing and Employment (SPACE) in Thiruvananthapuram, had first bewildered information technology professionals and academicians when he asked them to “switch-off the geo-location feature of your smartphone, if you are taking my photos”. He said that 90% of the 1,000 free applications in Google Play stores can spy, according to the latest studies and asked why should the fleshlight application be linked to the server. Even the data on the sex toy go to the server, with its thermometer readings sharing the time of contact. He argued that owners of the firms who spy on a user’s personal data should be jailed. Richard Matthew Stallman, according to Wikipedia, “is an Amercian freedom activist and a computer programmer. He campaigns for software to be distributed in such a manner that a user receiving it, likewise receives with it the freedom to use, study, distribute and modify that software”. read more

Hands-On Cloud Training Courses | New January Releases

2019-01-18 04:50:53

Cloud computing has become ubiquitous in modern business, with 93% of organizations using some form of cloud service. The post Hands-On Cloud Training Courses | New January Releases appeared first on Linux Academy Blog.

How to Install Matomo Web Analytics on Ubuntu 18.04 LTS

2019-01-18 04:36:32

Matomo (formerly Piwik) is a free and open source web analytics application for web servers. This tutorial will show you how to install Matomo on a Ubuntu 18.04 LTS system using Nginx as the web server and we will secure the website with a Let's Encrypt SSL certificate.

Security: Updates, Leaks, Kubernetes and Let's Encrypt

2019-01-18 04:08:20

Security updates for Thursday Oracle Releases First Critical Patch Update of 2019, Red Hat Enterprise Linux and Fedora to Drop MongoDB, The Linux Foundation Announces Its 2019 Event Lineup, Firefox Closing Its Test Pilot Program and GoDaddy to Support AdoptOpenJDK Oracle released its first Critical Patch Update of the year this week, which addresses 284 vulnerabilities. eWeek reports that "Thirty-three of the vulnerabilities are identified as being critical with a Common Vulnerabilities Scoring System (CVSS) score of 9.0 or higher." Over 1 Billion Login Credentials Leaked, Here’s How to See if You Were Compromised Good morning! A whole slew of usernames and plaintext passwords were leaked for a number of different sites—at 772 million and 21 million respectively, it’s the largest data leak in history. Here’s how to make sure your information is still safe. This collection of email address and passwords—dubbed “Collection #1”—groups together several smaller breaches into a larger master file of sorts. This huge collection of data comes from several different sites, so your personal info may have been compromised from multiple different sources. That means your information could’ve been compromised multiple times—the same email address with different passwords. Kubernetes security: 4 tips to manage risks Kubernetes has one of the liveliest (if not the liveliest) communities around. Getting involved is one of the best ways to get up to speed and stay abreast of best security practices. That community values the same thing you’re seeking: Making the most of Kubernetes’ power while minimizing any risks that come with its increasing adoption. “This community clearly cares deeply about security, and it emphasizes education and inclusion, so security staff can look forward to a helpful, educational community from whom they can learn,” Dang says. “Get educated and follow industry best practices, like the CIS Kubernetes Benchmark,” advises Amir Jerbi, CTO at Aqua Security. “Kubernetes is a complex system with many configuration options, any of which, if done wrong, could leave clusters open to attacks.” Plugging into the vibrant Kubernetes community is a great step toward ensuring your organization’s implementation isn’t creating unnecessary vulnerabilities. Protect Your Websites with Let's Encrypt Back in the bad old days, setting up basic HTTPS with a certificate authority cost as much as several hundred dollars per year, and the process was difficult and error-prone to set up. Now we have Let's Encrypt for free, and the whole thing takes just a few minutes. read more

Programming: Django, PHP, Polonius and More

2019-01-18 03:59:48

Django 2.2 alpha 1 released Django 2.2 alpha 1 is now available. It represents the first stage in the 2.2 release cycle and is an opportunity for you to try out the changes coming in Django 2.2. Django 2.2 has a salmagundi of new features which you can read about in the in-development 2.2 release notes. Eliminating PHP polyfills The Symfony project has recently created a set of pure-PHP polyfills for both PHP extensions and newer language features. It allows developers to add requirements upon those functions or language additions without increasing the system requirements upon end users. For the most part, I think this is a good thing, and valuable to have. We've done similar things inside MediaWiki as well for CDB support, Memcached, and internationalization, just to name a few. But the downside is that on platforms where it is possible to install the missing PHP extensions or upgrade PHP itself, we're shipping empty code. MediaWiki requires both the ctypes and mbstring PHP extensions, and our servers have those, so there's no use in deploying polyfills for those, because they'll never be used. In September, Reedy and I replaced the polyfills with "unpolyfills" that simply provide the correct package, so the polyfill is skipped by composer. That removed about 3,700 lines of code from what we're committing, reviewing, and deploying - a big win. Polonius and region errors Now that NLL has been shipped, I’ve been doing some work revisiting the Polonius project. Polonius is the project that implements the “alias-based formulation” described in my older blogpost. Polonius has come a long way since that post; it’s now quite fast and also experimentally integrated into rustc, where it passes the full test suite. Serious Python released! Well, Serious Python is the the new name of The Hacker's Guide to Python — the first book I published. Serious Python is the 4th update of that book — but with a brand a new name and a new editor! read more

Ditching Out-of-Date Documentation Infrastructure

2019-01-18 03:37:23

Long ago, the Linux kernel started using 00-Index files to list the contents of each documentation directory. This was intended to explain what each of those files documented. Henrik Austad recently pointed out that those files have been out of date for a very long time and were probably not used by anyone anymore. This is nothing new. Henrik said in his post that this had been discussed already for years, "and they have since then grown further out of date, so perhaps it is time to just throw them out." He counted hundreds of instances where the 00-index file was out of date or not present when it should have been. He posted a patch to rip them all unceremoniously out of the kernel. Joe Perches was very pleased with this. He pointed out that .rst files (the kernel's native documentation format) had largely taken over the original purpose of those 00-index files. He said the oo-index files were even misleading by now. read more

Mozilla: Rust 1.32.0, Privacy, UX and Firefox Nightly

2019-01-18 03:35:24

Announcing Rust 1.32.0 The Rust team is happy to announce a new version of Rust, 1.32.0. Rust is a programming language that is empowering everyone to build reliable and efficient software. Rust 1.32 Released With New Debugger Macro, Jemalloc Disabled By Default For fans of Rustlang, it's time to fire up rustup: Rust 1.32 is out today as the latest feature update for this increasingly popular programming language. The Rust 1.32 release brings dbg!() as a new debug macro to print the value of a variable as well as its file/line-number and it works with more than just variables but also commands. Julien Vehent: Maybe don't throw away your VPN just yet... At Mozilla, we've long adopted single sign on, first using SAML, nowadays using OpenID Connect (OIDC). Most of our applications, both public facing and internal, require SSO to protect access to privileged resources. We never trust the network and always require strong authentication. And yet, we continue to maintain VPNs to protect our most sensitive admin panels. "How uncool", I hear you object, "and here we thought you were all about DevOps and shit". And you would be correct, but I'm also pragmatic, and I can't count the number of times we've had authentication bugs that let our red team or security auditors bypass authentication. The truth is, even highly experienced programmers and operators make mistakes and will let a bug disable or fail to protect part of that one super sensitive page you never want to leave open to the internet. And I never blame them because SSO/OAuth/OIDC are massively complex protocols that require huge libraries that fail in weird and unexpected ways. I've never reached the point where I fully trust our SSO, because we find one of those auth bypass every other month. Here's the catch: they never lead to major security incidents because we put all our admin panels behind a good old VPN. Reflections on a co-design workshop Co-design workshops help designers learn first-hand the language of the people who use their products, in addition to their pain points, workflows, and motivations. With co-design methods [1] participants are no longer passive recipients of products. Rather, they are involved in the envisioning and re-imagination of them. Participants show us what they need and want through sketching and design exercises. The purpose of a co-design workshop is not to have a pixel-perfect design to implement, rather it’s to learn more about the people who use or will use the product, and to involve them in generating ideas about what to design. We ran a co-design workshop at Mozilla to inform our product design, and we’d like to share our experience with you. [...] Our UX team was tasked with improving the Firefox browser extension experience. When people create browser extensions, they use a form to submit their creations. They submit their code and all the metadata about the extension (name, description, icon, etc.). The metadata provided in the submission form is used to populate the extension’s product page on addons.mozilla.org. Firefox Nightly: These Weeks in Firefox: Issue 51 read more

Mesa 18.3.2

2019-01-18 03:33:16

Mesa 18.3.2 is now available. In this release candidate we have added more PCI IDs for AMD Vega devices and a number of fixes for the RADV Vulkan drivers. On the Intel side we have a selection ranging from quad swizzles support for ICL to compiler fixes. The nine state tracker has also seen some love as do the Broadcom drivers. To top it all up, we have a healthy mount of build system fixes. Alex Deucher (3): pci_ids: add new vega10 pci ids pci_ids: add new vega20 pci id pci_ids: add new VegaM pci id Alexander von Gluck IV (1): egl/haiku: Fix reference to disp vs dpy Andres Gomez (2): glsl: correct typo in GLSL compilation error message glsl/linker: specify proper direction in location aliasing error Axel Davy (3): st/nine: Fix volumetexture dtor on ctor failure st/nine: Bind src not dst in nine_context_box_upload st/nine: Add src reference to nine_context_range_upload Bas Nieuwenhuizen (5): radv: Do a cache flush if needed before reading predicates. radv: Implement buffer stores with less than 4 components. anv/android: Do not reject storage images. radv: Fix rasterization precision bits. spirv: Fix matrix parameters in function calls. Caio Marcelo de Oliveira Filho (3): nir: properly clear the entry sources in copy_prop_vars nir: properly find the entry to keep in copy_prop_vars nir: remove dead code from copy_prop_vars Dave Airlie (2): radv/xfb: fix counter buffer bounds checks. virgl/vtest: fix front buffer flush with protocol version 0. Dylan Baker (6): meson: Fix ppc64 little endian detection meson: Add support for gnu hurd meson: Add toggle for glx-direct meson: Override C++ standard to gnu++11 when building with altivec on ppc64 meson: Error out if building nouveau and using LLVM without rtti autotools: Remove tegra vdpau driver Emil Velikov (13): docs: add sha256 checksums for 18.3.1 bin/get-pick-list.sh: rework handing of sha nominations bin/get-pick-list.sh: warn when commit lists invalid sha cherry-ignore: meson: libfreedreno depends upon libdrm (for fence support) glx: mandate xf86vidmode only for "drm" dri platforms meson: don't require glx/egl/gbm with gallium drivers pipe-loader: meson: reference correct library TODO: glx: meson: build dri based glx tests, only with -Dglx=dri glx: meson: drop includes from a link-only library glx: meson: wire up the dispatch-index-check test glx/test: meson: assorted include fixes Update version to 18.3.2 docs: add release notes for 18.3.2 Eric Anholt (6): v3d: Fix a leak of the transfer helper on screen destroy. vc4: Fix a leak of the transfer helper on screen destroy. v3d: Fix a leak of the disassembled instruction string during debug dumps. v3d: Make sure that a thrsw doesn't split a multop from its umul24. v3d: Add missing flagging of SYNCB as a TSY op. gallium/ttn: Fix setup of outputs_written. Erik Faye-Lund (2): virgl: wrap vertex element state in a struct virgl: work around bad assumptions in virglrenderer Francisco Jerez (5): intel/fs: Handle source modifiers in lower_integer_multiplication(). intel/fs: Implement quad swizzles on ICL+. intel/fs: Fix bug in lower_simd_width while splitting an instruction which was already split. intel/eu/gen7: Fix brw_MOV() with DF destination and strided source. intel/fs: Respect CHV/BXT regioning restrictions in copy propagation pass. Ian Romanick (2): i965/vec4/dce: Don't narrow the write mask if the flags are used Revert "nir/lower_indirect: Bail early if modes == 0" Jan Vesely (1): clover: Fix build after clang r348827 Jason Ekstrand (6): nir/constant_folding: Fix source bit size logic intel/blorp: Be more conservative about copying clear colors spirv: Handle any bit size in vector_insert/extract anv/apply_pipeline_layout: Set the cursor in lower_res_reindex_intrinsic spirv: Sign-extend array indices intel/peephole_ffma: Fix swizzle propagation Karol Herbst (1): nv50/ir: fix use-after-free in ConstantFolding::visit Kirill Burtsev (1): loader: free error state, when checking the drawable type Lionel Landwerlin (5): anv: don't do partial resolve on layer > 0 i965: include draw_params/derived_draw_params for VF cache workaround i965: add CS stall on VF invalidation workaround anv: explictly specify format for blorp ccs/mcs op anv: flush fast clear colors into compressed surfaces Marek Olšák (1): st/mesa: don't leak pipe_surface if pipe_context is not current Mario Kleiner (1): radeonsi: Fix use of 1- or 2- component GL_DOUBLE vbo's. Nicolai Hähnle (1): meson: link LLVM 'native' component when LLVM is available Rhys Perry (3): radv: don't set surf_index for stencil-only images ac/nir,radv,radeonsi/nir: use correct indices for interpolation intrinsics ac: split 16-bit ssbo loads that may not be dword aligned Rob Clark (2): freedreno/drm: fix memory leak mesa/st/nir: fix missing nir_compact_varyings Samuel Pitoiset (1): radv: switch on EOP when primitive restart is enabled with triangle strips Timothy Arceri (2): tgsi/scan: fix loop exit point in tgsi_scan_tess_ctrl() tgsi/scan: correctly walk instructions in tgsi_scan_tess_ctrl() Vinson Lee (2): meson: Fix typo. meson: Fix libsensors detection. Also: Mesa 18.3.2 Released With Many Fixes As Users Encouraged To Upgrade read more

Games: Valve, Gravel, Meeple Station

2019-01-18 03:26:26

Another Steam Client Beta is out, adds the ability to force Steam Play Valve are working fast to improve the Steam client this year, with another beta now available including an option that was highly requested. Firstly, Steam Input gained support for the HORI Battle Pad and HORI Wireless Switch Pad. Additionally, Big Picture mode had two bugs fixed. The usual stuff there and nothing major, that is until you get to the Linux section of the beta changelog. Gravel, the 'ultimate off-road experience' is now officially supported on Linux The second racing game from Milestone has arrived on Linux with Gravel, what they claim is the 'ultimate off-road experience'. Much like the previous port of MXGP3, Milestone once again teamed up with the porting company Virtual Programming to bring it to Linux. Space station building sim 'Meeple Station' is now on Steam, with the new publisher Modularity Meeple Station from Vox Games officially arrives on Steam today in Early Access, backed up by the new publisher Modularity from the folks behind Indie DB, Mod DB and most recently mod.io. read more

Uploading 15 GB of new Slackware Live Edition ISO images

2019-01-18 03:17:53

The squashfs modules in the XFCE ISOs are compressed with ‘xz’ to keep them as small as possible (so they will fit on a CDROM medium). All of the other ISOs are compressed with ‘zstd’ which gives the Live OS a speed boost of ~20% at the cost of 10% increase in the ISO size. read more

Fedora 29: perl-Email-Address Security Update

2019-01-18 02:14:00

LinuxSecurity.com: Update to 1.912, fixes CVE-2015-7686 and CVE-2018-12558.

How to Install Blender 3D on Ubuntu 18.04

2019-01-18 02:07:52

This article describes how to install and launch the Blender application on your Ubuntu 18.04 Desktop. The tutorial covers the installation by download, from Ubuntu repository, and on the command line by using Snap or a third-party PPA repository.

Fedora 28: perl-Email-Address Security Update

2019-01-18 01:38:00

LinuxSecurity.com: Update to 1.912, fixes CVE-2015-7686 and CVE-2018-12558.

Survey Indicates Container Security Concerns Limit Adoption

2019-01-18 00:53:31

A new survey indicates that 60 percent of IT pros working with containers experienced at least one container security incident in the last year.

Mageia 2019-0039: gthumb security update

2019-01-18 00:52:00

LinuxSecurity.com: An issue was discovered in gThumb through 3.6.2. There is a double-free vulnerability in the add_themes_from_dir method in dlg-contact-sheet.c because of two successive calls of g_free, each of which frees the same buffer. (CVE-2018-18718)

Purism Announces "PureOS Store" As Software Store For Their Smartphone & Laptops

2019-01-18 00:42:20

Adding to the platter of tasks for Purism as they prepare to ship their Librem 5 Linux smartphone in just a few months, they announced their plans to introduce the PureOS Store for not only their mobile initiative but also their laptops running the Debian-based PureOS operating system...

openSUSE: 2019:0058-1: moderate: live555

2019-01-18 00:39:00

LinuxSecurity.com: An update that fixes two vulnerabilities is now available.

openSUSE: 2019:0064-1: important: zeromq

2019-01-18 00:38:00

LinuxSecurity.com: An update that fixes one vulnerability is now available.

openSUSE: 2019:0054-1: moderate: gitolite

2019-01-18 00:38:00

LinuxSecurity.com: An update that fixes one vulnerability is now available.

Steam Beta Update Now Allows Per-Game Enabling Of Steam Play, Other Improvements

2019-01-18 00:26:19

It was just yesterday that Valve dropped a big Steam client update including several long sought improvements for Linux gamers. Today that's been succeeded by another rather nice beta upgrade...

openSUSE: 2019:0061-1: libunwind

2019-01-18 00:12:00

LinuxSecurity.com: An update that solves one vulnerability and has one errata is now available.

openSUSE: 2019:0053-1: important: LibVNCServer

2019-01-18 00:09:00

LinuxSecurity.com: An update that fixes 9 vulnerabilities is now available.

openSUSE: 2019:0057-1: important: wget

2019-01-18 00:09:00

LinuxSecurity.com: An update that fixes one vulnerability is now available.

openSUSE: 2019:0063-1: important: krb5

2019-01-18 00:08:00

LinuxSecurity.com: An update that fixes one vulnerability is now available.

Another Steam Client Beta is out, adds the ability to force Steam Play

2019-01-18 00:01:10

Tags: Steam, Valve, BetaValve are working fast to improve the Steam client this year, with another beta now available including an option that was highly requested. Firstly, Steam Input gained support for the HORI Battle Pad and HORI Wireless Switch Pad. Additionally, Big Picture mode had two bugs fixed. The usual stuff there and nothing major, that is until you get to the Linux section of the beta changelog. Users have been asking Valve pretty much since Steam Play arrived, to add a method to force a native game to use Steam Play instead. So now, if you've opted into the Steam beta client you will see this on the properties of a game (the bottom option): Why is that so interesting and important? Well, honestly, some Linux ports get left behind for months and years and some really just aren't good. Additionally, some Linux games have multiplayer that's not cross-platform, this could also help with that. Not to downplay the effort a lot of developers put in, it's just how it is. The ability for users to control between the version from the developer and running it through Steam Play is a nice to have option. Linux changes: Added the ability to force-enable Steam Play in per-title properties, including for native games Fixed incorrect scroll offset in the in-game overlay Reworked global Steam Play enable settings to only override the Proton version used by unsupported games Fixed a bug where the global Steam Play enable setting wouldn't prompt for a Steam client restart See the announcement here. One of the next big stages for Steam Play, will be actually showing it for whitelisted titles on store pages. I'm still very curious to see how Valve will be handling that. Valve might also want to update the Steam support page too, it's rather outdated.

Purism Announces PureOS App Store for Its Upcoming Librem 5 Linux Phone

2019-01-17 23:47:00

Purism surprised everyone today by announcing that it works on an app store for its Linux-based operating system, PureOS, in order to be able to deliver apps to its laptops and the upcoming Librem 5 Linux phone. Envisioned as a hub for delivering apps to both mobile and desktop ecosystems in a secure manner, Purism’s upcoming PureOS Store promises to respect the privacy and freedom of users while make it easier for them to download well-tested software on their Librem laptops, as well as the Librem 5 privacy-focused mobile phone that the company plans to release worldwide in April 2019. “We envision PureOS Store as the primary community interface for app developers to contribute to the wider ecosystem, without having to understand the underlying technology like packaging or the mechanism of pushing apps upstream. We want to incentivize developers to create software that meets community values with the ultimate goal of incorporation into PureOS itself,” said Purism....

Purism Announces PureOS App Store for Its Upcoming Librem 5 Linux Phone, Laptops

2019-01-17 23:47:00

Purism surprised everyone today by announcing that it works on an app store for its Linux-based operating system, PureOS, in order to be able to deliver apps to its laptops and the upcoming Librem 5 Linux phone. Envisioned as a hub for delivering apps to both mobile and desktop ecosystems in a secure manner, Purism’s upcoming PureOS Store promises to respect the privacy and freedom of users while make it easier for them to download well-tested software on their Librem laptops, as well as the Librem 5 privacy-focused mobile phone that the company plans to release worldwide in April 2019. “We envision PureOS Store as the primary community interface for app developers to contribute to the wider ecosystem, without having to understand the underlying technology like packaging or the mechanism of pushing apps upstream. We want to incentivize developers to create software that meets community values with t...

Android Q Leak Confirms System-Wide Dark Theme, Experimental Desktop Mode

2019-01-17 23:39:11

It's been confirmed many times that Google is working on a system-wide dark theme for a future version of its Linux-based Android mobile operating system, but the latest leak of Android Q gives a first look at the new dark mode and other upcoming features.

773 Million Email Addresses, 21 Million Passwords For Sale on Hacker Forum

2019-01-17 22:45:00

Data appears to be from multiple breaches over past few years, says researcher who discovered it.

Simple guide to configure Nginx reverse proxy with SSL

2019-01-17 22:24:51

A reverse proxy is a server that takes the requests made through web i.e. http & https, then sends them to backend server (or servers). A Backend server can be a single or group...

Debian: DSA-4370-1: drupal7 security update

2019-01-17 21:43:00

LinuxSecurity.com: Two vulnerabilities were found in Drupal, a fully-featured content management framework, which could result in arbitrary code execution. For additional information, please refer to the upstream advisories

Facebook Shuts Hundreds of Russia-Linked Pages, Accounts for Disinformation

2019-01-17 21:30:00

Facebook says the accounts and pages were part of two unrelated disinformation operations aimed at targets outside the US.

Inkscape 1.0 Open-Source Vector Graphics Editor Is Finally Coming After 15 Years

2019-01-17 21:23:00

After being in development for the last 15 years, the Inkscape open-source and free vector graphics editor is finally reaching the 1.0 milestone, proving its maturity with new and exciting features and improvements. Inkscape is quality SVG editor that runs on Linux, Mac, and Windows systems and can be used to create or edit vector graphics like logos, diagrams, illustrations, charts, and anything else in between. Inkscape 1.0 is a major release that all fans of the open source software have expected for so long, and it finally brings long-anticipated features and improvements. Highlights of Inkscape 1.0 include an updated user interface that offers better support for 4K/HiDPI screens and theming support, the ability to rotate and mirror canvases, new options for exporting to the PNG image format, variable fonts (requires pango 1.41.1 or higher), as well as much faster path operations and deselection of a large amounts of paths. “The user interface has been changed...

Microsoft Launches New Azure DevOps Bug Bounty Program

2019-01-17 21:15:00

A new program will pay bounties of up to $20,000 for new critical bugs in the company's Azure DevOps systems and services.

Red Hat gets heebie-jeebies over MongoDB's T&Cs squeeze: NoSQL database dropped from RHEL 8B over license

2019-01-17 21:09:34

'The Server Side Public License v1 does not meet standards' MongoDB justified its decision last October to shift the free version of its NoSQL database software, MongoDB Community Server, from the open-source GNU Affero General Public License to the not-quite-so-open Server Side Public License (SSPL) by arguing that cloud providers sell open-source software as a service without giving back.…

Attackers Take New Approach To Install Cryptominers, Palo Alto Reports

2019-01-17 21:00:00

eWEEK: An attacker group known as Rocke is taking a new approach to install un-authorized cryptocurrency mining software on cloud servers, they're taking control of systems and un-installing existing cloud security software.

Rust 1.32 Released With New Debugger Macro, Jemalloc Disabled By Default

2019-01-17 20:40:46

For fans of Rustlang, it's time to fire up rustup: Rust 1.32 is out today as the latest feature update for this increasingly popular programming language...

New Attacks Target Recent PHP Framework Vulnerability

2019-01-17 20:30:00

Multiple threat actors are using relatively simple techniques to take advantage of the vulnerability, launching cryptominers, skimmers, and other malware payloads.

Google Will Deprecate 32-Bit Android Apps on 64-Bit Devices Starting August 2021

2019-01-17 20:00:00

Starting with August 1st, 2019, Google will require all application developers to distribute a 64-bit version of their apps

Qt 5.13 Might Add QTelemetry For Opt-In Anonymous Data Collection

2019-01-17 19:34:44

The next release of the Qt5 tool-kit might introduce a potentially controversial module to facilitate anonymous data collection of Qt applications...

The Security Perimeter Is Dead; Long Live the New Endpoint Perimeter

2019-01-17 19:30:00

The network no longer provides an air gap against external threats, but access devices can take up the slack.

7 Tips to Declutter Your Work Life

2019-01-17 19:28:42

Could decluttering your work life make you more productive and happy in 2019? Considering the fact that millions of people have bought into Marie Kondo's organization method, as described in her book “The Life-Changing Magic of Tidying Up,” and in her popular new Netfilx series, it's an idea worth exploring.

Ubuntu 3862-1: Irssi vulnerability

2019-01-17 18:49:00

LinuxSecurity.com: Irssi could be made to crash or execute arbitrary code if it received a specially crafted input.

How to install networked HP printer and scanner on Fedora Linux

2019-01-17 18:43:32

How to Install Spotify on Linux

2019-01-17 18:41:51

Spotify is easily the most popular music streaming service in the world, and they support Linux! Learn now to install the Spotify client on your Linux PC.

SUSE: 2019:0113-1 important: krb5

2019-01-17 18:15:00

LinuxSecurity.com: An update that fixes one vulnerability is now available.

SUSE: 2019:0112-1 moderate: soundtouch

2019-01-17 18:14:00

LinuxSecurity.com: An update that fixes two vulnerabilities is now available.

openSUSE: 2019:0052-1: important: mutt

2019-01-17 18:10:00

LinuxSecurity.com: An update that solves 16 vulnerabilities and has 6 fixes is now available.

SUSE: 2019:0111-1 important: krb5

2019-01-17 18:09:00

LinuxSecurity.com: An update that fixes one vulnerability is now available.

SUSE: 2019:0110-1 important: zeromq

2019-01-17 18:09:00

LinuxSecurity.com: An update that fixes one vulnerability is now available.

Kubernetes security: 4 tips to manage risks

2019-01-17 18:00:00

 EnterprisersProject: Use these strategies to avoid missteps in work with containers and orchestration

Gravel, the 'ultimate off-road experience' is now officially supported on Linux

2019-01-17 17:58:03

Tags: Racing, Humble Store, Steam, Virtual ProgrammingThe second racing game from Milestone has arrived on Linux with Gravel, what they claim is the 'ultimate off-road experience'. Much like the previous port of MXGP3, Milestone once again teamed up with the porting company Virtual Programming to bring it to Linux. More about it: Take a tour around the world to discover the range of extreme and wild environments that will offer you a fully off-road experience. There are four disciplines where you can compete with the most powerful cars. Cross Country: Huge areas with different layouts, perfect for competing in checkpoint races in the most evocative landscapes. Run through a waterfall with the aurora borealis as backdrop or try the right grip in the largest deserts in the world. Wild Rush: The wildest locations where you can compete in lap races. Unique environments with natural obstacles that will force you to race your way through the slopes of a mountain, on paradise islands, and through masses of debris and quarry rocks. Speed Cross: Races set in the most beautiful tracks in the world. Real-world tracks, from Europe to America, where you can show your skills in incredible jumps and chicanes. Stadium: Real and fictional arenas, full of jumps and spectacular layouts! It's worth noting, that on Steam user reviews don't paint a very good picture overall. It's sat on Mixed overall, with the most recent being Mostly Negative. As always, take it with a pinch of salt. We may take a look at it sometime soon, depending on receiving a review key. I've reached out to Milestone, so hopefully we can have a proper look. You can find Gravel on Humble Store (on sale) and Steam.

Mesa 19.0 RADV vs. AMDVLK 2019.Q1.2 vs. Radeon Software 18.50 Linux Vulkan Performance

2019-01-17 17:40:00

With the latest AMDVLK Vulkan driver improvements back to coming out on a weekly basis by AMD and Mesa 19.0 development progressing ahead of its feature freeze later this month, here is a fresh Linux gaming benchmark comparison of the AMD Radeon Vulkan driver options on Linux. Tested this round with a Radeon RX 590 and RX Vega 64 was the latest Mesa 19.0 development state for RADV, this week's new AMDVLK 2019.Q1.2 driver snapshot, and the Radeon Software 18.50 proprietary driver while running a slew of Vulkan-powered Linux games and DXVK.

Space station building sim 'Meeple Station' is now on Steam, with the new publisher Modularity

2019-01-17 17:30:10

Tags: Steam, Itch.io, Early Access, Simulation, StrategyMeeple Station from Vox Games officially arrives on Steam today in Early Access, backed up by the new publisher Modularity from the folks behind Indie DB, Mod DB and most recently mod.io. Meeple Station is a cooperative simulation set on a (dis)functional space station you build, inspired by Dwarf Fortress and Rimworld. Meeple are simple creatures. They're not human, nor are they incredibly intelligent. They're a race of space fairing beings who enjoy industry, work, and exploration. But they need a lot of guidance, YOUR guidance, in fact. Build everything from simple furniture, like bedding and seating, to complex machinery, life support and power grids. You choose where and how to build it all, and your Meeple will have to adjust to your changes. Watch video on YouTube.com Features: Open ended campaign objectives Explore the universe with your space station (and scout ships) Discover new artifacts and explore new Meeple stuff Research new and exciting Meeple Technologies Manage and accommodate many Meeple with a mind of their own Custom design and build your very own Meeple Space Station Space Pirates, Clowns and Squids Highly moddable Up to 12-player co-op gameplay (coming soon) I've had access to it for a little while now and I must say, I'm impressed at the rate they're churning out updates to it. Even so, the current status of the game is extremely rough and I'm being pretty kind here. The tutorial doesn't guide you very well to build a station, but thankfully at the click of a button it will build a random station design for you (which is actually pretty sweet). It's quite limited as it is right now, after an hour or two you've seen most of what it has to offer. I like the idea, I like the style (apart from the horrible UI) and they do seem to be going in a decent direction with it overall. It certainly has some similarities with Spacebase DF-9, hopefully it won't go the same way. Their current plan is to remain in Early Access for 6-9 months. Find Meeple Station on Steam or itch.io. As for the new publisher, Modularity, they're going to be pushing for developers to use their mod.io service, a Steam Workshop-like service that works across platforms (including Linux). You can also find out more about Modularity here.

Servers: Puppet on DevOps, Docker and Kubernetes, SUSE server (SLES) and More

2019-01-17 17:28:49

Puppet on DevOps: practitioners (not managers) are the new champions With a foundation in open source, Puppet is championing a world of what it calls ‘unconstrained software change’… presumably an even more intense version of Continuous Integration (CI) and Continuous Delivery (CD). Architectural learning curve for the private cloud Just about everybody is familiar with Docker; about half as many know Kubernetes. But how about Istio? Docker and Kubernetes may be the foundation of your private cloud, but it turns out they might not be enough. Here are some very interesting and easily accessible numbers from Twitter: Docker has 304,000 followers and Kubernetes has 121,000. On the other hand, Helm, Istio and Prometheus Monitoring have fewer than 15,000 followers each. SUSE Server for Arm Becomes Generally Available The SUSE server (SLES) for Arm processors is now available directly from SUSE with a new price structure that counts cores and sockets. The curious case of the Raspberry Pi in the network closet I asked him to unplug it, store it in a safe location, take photos of all parts and to make an image from the SD card (since I mostly work remote). I have worked on many Raspberry Pi projects and I felt confident I could find out what it does. At this point nobody thought it was going to be malicious, more like one of our staffers was playing around with something. read more

How to Update/Change Users Password in Linux Using Different Ways

2019-01-17 17:27:31

2DayGeek: This tutorial helps you to change user password in multiple servers using Shell script.

Desktop: Google Chromebook, Distros, Coin Mining and What We Should Expect From Linux in 2019

2019-01-17 17:23:17

What is a Google Chromebook? You’ve probably seen the term Chromebook mentioned on the internet, and you might be wondering what they are, and how they differ from regular laptops. In this guide we’ll explain what a Chromebook is, list the pros and cons of the devices, and help you decide whether or not a Chromebook is right for you. If you’re after in-depth buying advice on specific models, check out our Should I Buy a Chromebook? and Best Chromebook guides. What's your favorite desktop Linux distribution? So, for our annual poll, we pulled the top 15 distributions according to DistroWatch over the past 12 months. It's not scientific—but it's something to start with, and we had to cull it down somehow. Did your favorite distribution fall short of the cut-off point? Let us know what it is in the comments. And no matter what distro you choose, be sure to let us know why it's your favorite. What's so great that makes it your distribution of choice? The Top 4 Ways Your Linux Computer Can Earn You Money Computers, whether they run Linux or not, as a rule, don't tend to be cheap. However, what if I was to tell you that you can offset at least some of that cost by using the machine itself? Well, you can, and below you can find out exactly how to do this. What Should We Expect from Linux in 2019? There are a lot more questions about what the open source community will do this year like would Ubuntu finally have stable support for fractional scaling? Will snap apps finally blend in perfectly with the UI of the distros they run on by default? Which distros will be the most innovative? Which features will you like to see any Linux distros and open source apps this year? Do you have any hints or inside information on the cool improvements to come? Tell us all about it below in the comments section. read more

Wear OS 2.3 begins rolling out to some smartwatches

2019-01-17 17:22:46

Google is still in the process of updating some of its smartwatches to Wear OS 2.2 H, but in a bid to stay ahead of the curve, or totally confuse us, version 2.3 of the wearable operating system is also being rolled out. Go figure! As part of the update, the Home app has been updated from version 2.20 to 2.21, which has a number of improvements including a slight change of design, improved health coaching and what they call more “proactive” help from Google Assistant. read more

Stable kernels 4.20.3, 4.19.16, 4.14.94, 4.9.151 and 4.4.171

2019-01-17 17:13:31

Linux 4.20.3 Linux 4.19.16 Linux 4.14.94 Linux 4.9.151 Linux 4.4.171 read more

'We Want IoT Security Regulation,' Say 95% of IT Decision-Makers

2019-01-17 17:00:00

New global survey shows businesses are valuing IoT security more highly, but they are still challenged by IoT data visibility and privacy.

GNOME Software 3.31.2 Debuts With Flatpak Improvements, Many Fixes

2019-01-17 16:35:39

Now available for testing ahead of GNOME 3.32 in March is GNOME Software 3.31.2, the first development release for this "app store" / software center seeing its first release since v3.31.1 last October...

KDE Plasma 5.15 Desktop Environment Enters Beta, Promises Numerous Improvements

2019-01-17 16:35:00

The KDE Project announced today the general availability of the beta version of the upcoming KDE Plasma 5.15 desktop environment for Linux-based operating systems. More than three months in development, the KDE Plasma 5.15 desktop environment sees a public beta release today, allowing users to get an early taste of the huge number of improvements and new features implemented by the hard-working people behind this Open Source project before the final release next month. "Plasma 5.15 brings a number of changes to our configuration interfaces, including more options for complex network configurations. Many icons have been added or redesigned. Our integration with third-party technologies like GTK and Firefox has been made even more complete," reads today's announcement. Here's what's new in KDE Plasma 5.15 While no major feature stands out, the KDE Plasma 5.15 release includes dozens...

Install R Shiny Server on CentOS 7

2019-01-17 15:50:42

The shiny server is a web server which provides you with a platform to host R-powered shiny applications on the server. You can host multiple shiny applications on a single server without getting HTML, CSS, and other stuff involved. It enables you to support non-web socket-enabled browsers like Internet Explorer 10. Some of the features of the Shiny server are listed below:

Programming: Panda 3D Game Project, Skills in 2019, Golang Mastery, Python and Mozilla

2019-01-17 15:31:03

Create Panda 3D Game Project Hello, do you still remember that I have mentioned to you before that I will start another game project alongside the new pygame project? Well, I have not decided yet which game framework should I use to build the python game. Yesterday I had just came across Panda 3D which is a very attractive game framework that we can use to create the python game. Top technical skills that will get you hired in 2019 Landing the perfect IT job is never easy, but certain technical skills can smooth the way, especially if they’re in high demand. Job search platform Indeed has analyzed the fastest-growing terms used by job seekers when searching for tech jobs in 2019, and the results represent some significant changes over last year. “When people look for new jobs, they often use search terms that describe cutting-edge skills associated with the jobs they want,” says Daniel Culbertson, economist at Indeed. “On the employer side, the highly specialised tech talent who have these proficiencies are in great demand.” 5 open source Go tools for tuning up your Golang mastery Love programming in Go? It’s hard not to fall in love with it, we know! Today we browsed through some Golang tools on GitHub and picked some of our favorites from the list. Far from exhaustive, this list highlights some of the best in show. Executing Shell Commands with Python Introduction to Python Convert video from one format to another with python L10n report: January edition read more

Simulating Lateral Attacks Through Email

2019-01-17 15:30:00

A skilled attacker can get inside your company by abusing common email applications. Here are three strategies to block them.

Reinforcement learning expedites 'tuning' of robotic prosthetics

2019-01-17 15:29:46

Researchers from North Carolina State University, the University of North Carolina and Arizona State University have developed an intelligent system for "tuning" powered prosthetic knees, allowing patients to walk comfortably with the prosthetic device in minutes, rather than the hours necessary if the device is tuned by a trained clinical practitioner. The system is the first to rely solely on reinforcement learning to tune the robotic prosthesis.

Games: HyperRogue, Warhammer, Dis Pontibus, Guard Duty, LandTraveller

2019-01-17 15:22:04

HyperRogue, the unique roguelike with a non-Euclidean world has been updated Probably one of the most unique roguelikes around, HyperRogue has such a mind-bending world it's really quite something. See my previous thoughts here. Taking place in a non-Euclidean world it can be a little confusing and it certainly is a difficult game. I've never managed to get very far from it, but it's so incredibly interesting it's a game I regularly come back to just to explore some more. The Tyranids have arrived in Warhammer 40,000: Gladius Things are about to get a little more intense on Gladius Prime as the Tyranids have arrived to consume everything in their path. Warhammer 40,000: Mechanicus updated, fixes a few Linux issues and it's looking great Warhammer 40,000: Mechanicus update 1.1.1 is out and the Linux beta has seen some nice fixes making it in. While the Linux version still remains in a "soft" launch phase (not officially advertised), it's good to see Bulwark Studios and Kasedo Games give it some attention. Dis Pontibus will have you solve puzzles and connect islands together in a procedurally-generated archipelago Who would have thought something as simple as connecting blocks together could be so good? Dis Pontibus will keep you going for hours. Comedy point and click adventure 'Guard Duty' to arrive on Linux this Spring, looks awesome If you need a sprinkle of comedy in your life, the comedic point and click adventure Guard Duty looks like it could hit the spot. Not one I had heard of until today, I will be honest. Looking over it, Guard Duty was funded on Kickstarter back in March of 2017. Linux was noted as a platform back then and they're still very clearly advertising Linux support—awesome! LandTraveller, the really sweet 2D RPG had a pretty huge update recently LandTraveller from WolfCoder Workshop is a sweet 2D RPG that combines elements from traditional action-RPGs with sandbox building options and it continues to grow. read more

Sailfish OS Sipoonkorpi is now available

2019-01-17 15:10:07

The release of Sailfish 3 has been a gratifying milestone for Jolla. Each new update completes the circle of the Sailfish 3 era, step by step, delivering new features and adding value to Sailfish OS. This time, our name pick fell upon the woodlands of Sipoonkorpi. Sipoonkorpi is a 19 km² Finnish National park located in the municipalities of Helsinki, Vantaa and Sipoo. Sipoonkorpi is well known for its peaceful settings that combine nature and small villages to create an astonishing view. Also: Sailfish OS "Sipoonkorpi" Brings Firewall Improvements, Redesigned Image Editing read more

FOSS Licensing: Sirocco and MongoDB

2019-01-17 14:59:32

HMD released the source code for Nokia 8 Sirocco The Open source releases webpage was refreshed once more, now with the source code files for beautiful Nokia 8 Sirocco. AWS mixes toxic cocktail for open source There is currently a crisis unfolding in the open source world, with a number of companies changing their licensing to protect revenue. This has arisen due to a potentially toxic situation where public cloud providers have introduced managed services based on free open source products. MongoDB "open-source" Server Side Public License rejected MongoDB is open-source document NoSQL database with a problem. While very popular, cloud companies, such as Amazon Web Services (AWS), IBM Cloud, Scalegrid, and ObjectRocket has profited from it by offering it as a service while MongoDB Inc. hasn't been able to monetize it to the same degree. MongoDB's answer? Relicense the program under its new Server Side Public License (SSPL). Open-source powerhouse Red Hat's reaction? Drop MongoDB from Red Hat Enterprise Linux (RHEL) 8. Amazon Ditches MongoDB, Launches Rival The rationale given by Amazon is that customers find it challenging to build performant, highly available applications on MongoDB that can quickly scale to multiple Terabytes because of the complexity that comes with setting up and managing MongoDB clusters. Amazon DocumentDB implements the Apache 2.0 open source MongoDB 3.6 API by emulating the responses that a MongoDB client expects from a MongoDB server, allowing customers to use their existing MongoDB drivers and tools with Amazon DocumentDB. However, there's a lot that's not included in that view of the situation. Amazon and AWS has in the past been criticized for taking open-source software, doing some work on it then rebranding it without necessarily playing fair with the original developers. The thinking seemed to be that just having Amazon using your software was enough of a reward. AWS has broken open source software Amazon Web Services (AWS) and other infrastructure as a service companies have broken the standard open source revenue model. The former model was that you wrote software to solve a problem you were having. This was usually a problem being experienced by many people. You could earn a decent living supporting the software you created since you were the creator of the software. People would come to you with questions or pay you to create additional functionality. Let’s say you created software to store lots of information in computer memory and retrieve it quickly. This is something that many other people would like to do too. Rather than write their own software they will use the software and pay you for support when they have questions or issues. If Amazon Web Services (AWS) or other infrastructure as a service companies decide to use your software, suddenly users of your software have a decision: do they pay Amazon to support the software or do they pay you for support. In general, most companies will choose Amazon since they are a well-known commodity and that is the decision with the least risk. Why I Just Sold Most of My MongoDB Stake The "Death Star" has reared its head for MongoDB. Not the Death Star from Star Wars , but the company that cable mogul John Malone once compared to that ominous space station: Amazon (NASDAQ: AMZN) . Amazon Web Service's huge cloud infrastructure has allowed the company to expand into databases over time, but its efforts had been limited to the Aurora SQL database and the DynamoDB database. Dynamo is a nonrelational database closer to MongoDB; however, DynamoDB was not open-source, like MongoDB. Open Source Software At A Crossroads Last week, AWS announced on its blog the launch of DocumentDB, a MongoDB-compatible database. As some pundits have pointed out, this is clearly a reaction to MongoDB, Inc.’s new and highly-restrictive license called the Server Side Public License (SSPL)—a move which the publicly-traded MongoDB made in order to protect its revenue position. Earlier last year, Redis Labs learned a hard lesson in community relations management when it took a less dramatic step: while offering its Redis database under a permissive license, it changed the licensing on its add-on modules to the “Commons Clause”, so service providers would need to pay for their use. While communication could have been clearer, the action itself is similar in intent to what MongoDB did, and to what many other open source companies have attempted or plan to attempt to do. read more

Pseudo-Open Source (Openwashing) and PR Stunts

2019-01-17 14:57:14

Telefónica Validates Wind River’s Cloud Platform for its Unica Project The testing included work on the functional components of the Wind River virtualization platform. It also included interoperability testing of the Titanium Cloud with Open Source MANO (OSM) orchestration. OSM is the open source group hosted by ETSI that’s working on management and network orchestration. The validation testing was conducted at Telefónica’s NFV Reference Lab in Madrid, Spain. The operator requires all vendors that want to provide virtual network functions (VNFs) to its Unica project to prove their products in the lab. An open-source rocket could reshape society in “A Theory of Flight” In Justina Ireland's original short story, a daring plan to build an open-source rocket could help more people escape Earth. Banco Carregosa goes open with PaymentComponents FoundationDB opens Apple's database sauce Global Technology Provider Profesia Becomes a WSO2 Value-Added Reseller Partner in Italy WSO2 reveals plans to support open-source communities in 2019 Apple’s FoundationDB open sources the database layer behind CloudKit Apple's FoundationDB to use new Record Layer Open Source Apple's FoundationDB takes new Record Layer open source, confirms tech underpins CloudKit FoundationDB open-sources FoundationDB Record Layer with schema management, indexing facilities and more Embedded System Security Solutions Expanded with New Commits To Open Source seL4 Community Baidu Announces Open-Source Edge Computing Platform OpenEdge Baidu introduces Apollo 3.5, Apollo Enterprise in major advancements to Apollo autonomous driving ecosystem Baidu open sources ‘OpenEdge’ to create a ‘lightweight, secure, reliable and scalable edge computing community’ ECS Taps Elastic’s Open Source Technology for Big Data Services; George Wilson Quoted Elastic: Steer Clear Amid Steep Valuation Alfresco and Tech Mahindra Extend Partnership, Reimagine Business Processes by Delivering New Machine Learning Solutions for the Digital Customer Alibaba Group Holding Limited (NYSE:BABA) isn't selling cloud infrastructure, but unique AI services built on open source Umbraco Apps Launches with ‘Best of Breed’ Extensions for Open Source Content Management System read more

Security: Amadeus, Kubernetes, WordPress and More

2019-01-17 14:53:34

Major Security Breach Discovered Affecting Nearly Half of All Airline Travelers Worldwide According to ELAL, the bug stems from their supplier Amadeus’ (https://amadeus.com/en/industries/airlines) online booking system, which controls a staggering 44% market share of airlines operating worldwide, including United Airlines, Lufthansa, Air Canada, and many more. While booking a flight with ELAL, we received the following link to check our PNR: https://fly.elal.co.il/LOTS-OF-NUMBERS-HERE. By simply changing the RULE_SOURCE_1_ID, we were able to view any PNR and access the customer name and associated flight details. Kubernetes flaw shows API security is no ‘set & forget’ deal When a report surfaced last month detailing a ‘severe vulnerability’ in Kubernetes, the popular, open-source software for managing Linux applications deployed within containers, many of us will have wondered what the deeper implications of this alleged flaw could mean. Although the flaw was quickly patched, it allowed any user to escalate their privileges to access administrative controls through the Kubernetes API server. WordPress to show warnings on servers running outdated PHP versions Top 10 app vulnerabilities: Unpatched plugins and extensions dominate This Clever New Ransomware Attempts To Steal Your PayPal Credentials Meanwhile, PayPal offers two factor authentication which, when turned on, can offer a vital extra layer of security should your password and username be compromised, Moore says. A deep dive into the technical feasibility of Bloomberg's controversial "Chinese backdoored servers" story These denials also don't add up: Bloomberg says it sourced its story from multiple (anonymous) sources who had direct knowledge of the incidents and who had been employed in the named organizations while they were unfolding. Bloomberg stood by its reporting, and implied that the idea that all these sources from different organizations would collude to pull off a hoax like this. Faced with the seemingly impossible task of sorting truth from hoax in the presence of contradictory statements from Big Tech and Bloomberg, technical experts began trying to evaluate whether the hacks attributed to the Chinese spy agencies were even possible: at first, these analyses were cautiously skeptical, but then they grew more unequivocal. Last month, Trammell Hudson -- who has developed well-regarded proof-of-concept firmware attacks -- gave a detailed talk giving his take on the story at the Chaos Communications Congress in Leipzig. read more

Researchers mimic crystal lattices to make stronger 3-D printed objects

2019-01-17 14:36:32

A team of researchers from Imperial College London and the University of Sheffield has developed a way to mimic the attributes of crystal lattices to make stronger 3D printed materials. In their paper published in the journal Nature, the group describes how they transferred characteristics of microscopic structures to 3D printed polymer and stainless-steel lattices with nodes and struts analogous to the atoms and bonds of crystals. Gang Seob Jung and Markus Buehler with MIT offer a News and Views piece on the work done by the team in Great Britain in the same journal.

A two-view network to predict depth and ego motion from monocular sequences

2019-01-17 14:30:02

Researchers from the Embedded Systems and Robotics group at TCS Research & Innovation have recently developed a two-view depth network to infer depth and ego-motion from consecutive monocular sequences. Their approach, presented in a paper pre-published on arXiv, also incorporates epipolar constraints, which enhance the network's geometric understanding.

KDE Plasma 5.15 Beta Released With Some Grand Improvements

2019-01-17 14:22:10

KDE Plasma 5.15 is scheduled for release on 12 February while for a round of preliminary testing, KDE Plasma 5.15 is out today...

Oracle Releases First Critical Patch Update of 2019, Red Hat Enterprise Linux and Fedora to Drop MongoDB, The Linux Foundation Announces Its 2019 Event Lineup, Firefox Closing Its Test Pilot Program and GoDaddy to Support AdoptOpenJDK

2019-01-17 14:04:06

News briefs for January 17, 2019. Oracle released its first Critical Patch Update of the year this week, which addresses 284 vulnerabilities. eWeek reports that "Thirty-three of the vulnerabilities are identified as being critical with a Common Vulnerabilities Scoring System (CVSS) score of 9.0 or higher." Red Hat Enterprise Linux and Fedora are dropping MongoDB. ZDNet reports that the decision is due to MongoDB's new Server Side Public License (SSPL), which, according to Red Hat's Technical and Community Outreach Program Manager Tom Callaway, is "intentionally crafted to be aggressively discriminatory towards a specific class of users." ZDNet explains that "specific objection is that SSPL requires, if you offer services licensed under it, that you must open-source all programs that you use to make the software available as a service." The Linux Foundation has announced its event schedule for 2019. New events for this year include include Cephalocon and gRPC Conf. See the full lineup here. Firefox is closing its Test Pilot program and moving to a new model. From the announcement: "Migrating to a new model doesn't mean we're doing fewer experiments. In fact, we'll be doing even more! The innovation processes that led to products like Firefox Monitor are no longer the responsibility of a handful of individuals but rather the entire organization. Everyone is responsible for maintaining the Culture of Experimentation Firefox has developed through this process. These techniques and tools have become a part of our very DNA and identity. That is something to celebrate. As such, we won't be uninstalling any experiments you're using today, in fact, many of the Test Pilot experiments and features will find their way to Addons.Mozilla.Org, while others like Send and Lockbox will continue to take in more input from you as they evolve into stand alone products." GoDaddy recently announced support for AdoptOpenJDK, which provides prebuilt open-source OpenJDK binaries. Charles Beadnall, GoDaddy CTO, says "GoDaddy supports an open access Internet because our 18 million customers depend on the open and equal nature of the Internet to compete with enterprises and corporations with more resources. With this sponsorship, we're proud to provide further support for open-source software and our community of entrepreneur customers." News Oracle Security Red Hat Fedora MongoDB licensing The Linux Foundation Firefox GoDaddy AdoptOpenJDK

How VMware Is Advancing Kubernetes Cloud-Native Technology With Heptio

2019-01-17 14:00:00

eWEEK:  Craig McLuckie, co-founder of Heptio and Paul Fazzone SVP of Cloud-Native Apps at VMware discuss the future of Kubernetes.

Go Hands-On with New Security Tricks at Black Hat Asia

2019-01-17 14:00:00

Get up close and personal with the latest tools and techniques for testing (and breaking) everything from HTTPS to deep neural networks to Microsoft Office!

Using a machine learning technique to make a canine-like robot more agile and faster

2019-01-17 13:54:45

A team of researchers with Robotic Systems Lab in Switzerland and Intelligent Systems Lab in Germany and the U.S. has found a way to apply machine learning to robotics to give such machines greater abilities. In their paper published in the journal Science Robotics, the group describes how they applied machine learning to robotics and in so doing gave a canine-like robot more agility and speed.

Plasma 5.15 Beta

2019-01-17 13:40:21

KDE Plasma 5.15 Beta Today KDE launches the beta release of Plasma 5.15. For the first release of 2019, the Plasma team has embraced KDE's Usability & Productivity goal. We have teamed up with the VDG (Visual Design Group) contributors to get feedback on all the papercuts in our software that make your life less smooth, and fixed them to ensure an intuitive and consistent workflow for your daily use. Plasma 5.15 brings a number of changes to our configuration interfaces, including more options for complex network configurations. Many icons have been added or redesigned. Our integration with third-party technologies like GTK and Firefox has been made even more complete. Discover, our software and add-on installer, has received a metric tonne of improvements to help you stay up-to-date and find the tools you need to get your tasks done. Please test this beta release and send us bug reports and feedback. The final release will be available in three weeks' time. Browse the full Plasma 5.15 Beta changelog to learn more about other tweaks and bug fixes included in this release: New in Plasma 5.15 Beta Plasma Widgets Bluetooth Battery StatusBluetooth devices now show their battery status in the power widget. Note that this cutting-edge feature requires the latest versions of the upower and bluez packages. It’s now possible to download and install new wallpaper plugins straight from the wallpaper configuration dialog. Filenames on desktop icons now have enough horizontal space to be legible even when their icons are very tiny, and are easier to read when the wallpaper is very light-colored or visually busy. Visually impaired users can now read the icons on the desktop thanks to the newly-implemented screen reader support for desktop icons. The Notes widget now has a 'Transparent with light text' theme. It's now possible to configure whether scrolling over the virtual desktop Pager widget will “wrap around” when reaching the end of the virtual desktop list. The padding and appearance of notification pop-ups have been improved. KRunner has received several usability improvements. It now handles duplicates much better, no longer showing duplicate bookmarks from Firefox or duplicate entries when the same file is available in multiple categories. Additionally, the layout of the standalone search widget now matches KRunner's appearance. The Devices Notifier is now much smarter. When it's configured to display all disks instead of just removable ones, it will recognize when you try to unmount the root partition and prevent you from doing so. Settings Redesigned Virtual Desktop SettingsSystem Settings Virtual Desktops page has been redesigned and rewritten for support on Wayland, and now sports greater usability and visual consistency. The user interface and layout for the Digital Clock and Folder View settings pages have been improved to better match the common style. Many System Settings pages have been tweaked with the goal of standardizing the icons, wording, and placement of the bottom buttons, most notably the “Get New [thing]…” buttons. New desktop effects freshly installed from store.kde.org now appear in the list on the System Settings Desktop Effects page. The native display resolution is now indicated with a star icon in the System Settings Displays page. The System Settings Login Screen page received plenty of visual improvements. The image preview of the default Breeze theme now reflects its current appearance, the background color of the preview matches the active color scheme, and the sizes and margins were adjusted to ensure that everything fits without being cut off. The System Settings Desktop Effects page has been ported to QtQuickControls 2. This fixes a number of issues such as bad fractional scaling appearance, ugly dropdown menu checkboxes, and the window size being too small when opened as a standalone app. Cross-Platform Integration Firefox with native KDE open/save dialogsFirefox 64 can now optionally use native KDE open/save dialogs. This is an optional, bleeding-edge functionality that is not yet included in any distribution. However, it can be enabled by installing the xdg-desktop-portal and xdg-desktop-portal-kde packages and setting GTK_USE_PORTAL=1 in Firefox's .desktop file. Integration modules xdg-desktop-portal-kde and plasma-integration now support the Settings portal. This allows sandboxed Flatpak and Snap applications to respect your Plasma configuration - including fonts, icons, widget themes, and color schemes - without requiring read permissions to the kdeglobals configuration file. The global scale factor used by high-DPI screens is now respected by GTK and GNOME apps when it’s an integer. A wide variety of issues with the Breeze-GTK theme have been resolved, including the inconsistencies between the light and dark variants. We have also made the theme more maintainable, so future improvements will be much easier. Discover Distro Release Upgrade NotificationOptions for upgrading your distribution are now included in Discover’s Update Notifier widget. The widget will also display a “Restart” button if a restart is recommended after applying all updates, but the user hasn’t actually restarted yet. On Discover’s Updates page, it’s now possible to uncheck and re-check all available updates to make it easier to pick and choose the ones you want to apply. Discover’s Settings page has been renamed to “Sources” and now has pushbuttons instead of hamburger menus. Distribution repository management in Discover is now more practical and usable, especially when it comes to Ubuntu-based distros. Discover now supports app extensions offered with Flatpak packages, and lets you choose which ones to install. Handling for local packages has been improved, so Discover can now indicate the dependencies and will show a 'Launch' button after installation. When performing a search from the Featured page, Discover now only returns apps in the search results. Add-ons will appear in search results only when a search is initiated from an add-on category. Discover’s search on the Installed Apps page now works properly when the Snap backend is installed. Handling and presentation of errors arising from misconfigured add-on repos has also been improved. Discover now respects your locale preferences when displaying dates and times. The “What’s New” section is no longer displayed on app pages when it doesn't contain any relevant information. App and Plasma add-ons are now listed in a separate category on Discover’s Updates page. Window Management The Alt+Tab window switcher now supports screen readers for improved accessibility, and allows you to use the keyboard to switch between items. The KWin window manager no longer crashes when a window is minimized via a script. Window closing effects are now applied to dialog boxes with a parent window (e.g. an app’s Settings window, or an open/save dialog). Plasma configuration windows now raise themselves to the front when they get focus. Wayland More work has been done on the foundations - the protocols XdgStable, XdgPopups and XdgDecoration are now fully implemented. Wayland now supports virtual desktops, and they work in a more fine-grained way than on X11. Users can place a window on any subset of virtual desktops, rather than just on one or all of them. Touch drag-and-drop is now supported in Wayland. Network Management WireGuard VPN Tunnels Plasma now offers support for WireGuard VPN tunnels when the appropriate Network Manager plugin is installed. It’s now possible to mark a network connection as “metered”. Breeze icons Breeze Icons are released with KDE Frameworks but are extensively used throughout Plasma, so here's a highlight of some of the improvements made over the last three months. Icon Emblems in BreezeA variety of Breeze device and preference icons have been improved, including the multimedia icons and all icons that depict a stylized version of a Plasma wallpaper. The Breeze emblem and package icons have been entirely redesigned, resulting in a better and more consistent visual style, plus better contrast against the icon they’re drawn on top of. In new installs, the Places panel now displays a better icon for the Network place. The Plasma Vault icon now looks much better when using the Breeze Dark theme. Python bytecode files now get their own icons. Other KSysGuard’s optional menu barIt’s now possible to hide KSysGuard’s menu bar — and it reminds you how to get it back, just like Kate and Gwenview do. The plasma-workspace-wallpapers package now includes some of the best recent Plasma wallpapers. Live Images The easiest way to try out Plasma 5.15 beta is with a live image booted off a USB disk. Docker images also provide a quick and easy way to test Plasma. Download live images with Plasma 5Download Docker images with Plasma 5 Package Downloads Distributions have created, or are in the process of creating, packages listed on our wiki page. Package download wiki page Source Downloads You can install Plasma 5 directly from source. Community instructions to compile itSource Info Page Feedback You can give us feedback and get updates on Facebook or Twitter or Google+. Discuss Plasma 5 on the KDE Forums Plasma 5 board. You can provide feedback direct to the developers via the #Plasma IRC channel, Plasma-devel mailing list or report issues via bugzilla. If you like what the team is doing, please let them know! Your feedback is greatly appreciated.

Debian LTS: DLA-1635-1: sssd security update

2019-01-17 13:34:00

LinuxSecurity.com: A vulnerability was found in sssd. If a user was configured with no home directory set, sssd would return '/' (the root directory) instead of '' (the empty string / no home directory). This could impact services that

LandTraveller, the really sweet 2D RPG had a pretty huge update recently

2019-01-17 13:29:01

Tags: Indie Game, Steam, RPG, Early AccessLandTraveller from WolfCoder Workshop is a sweet 2D RPG that combines elements from traditional action-RPGs with sandbox building options and it continues to grow. Note: This game is currently in Early Access. Become a kemonomimi and thrive in this action RPG! See a constructive world from a new perspective. Customize, battle, and grow with deep action RPG elements. Play through a story or explore with friends. Search for lost knowledge and rare material to craft powerful equipment. Challenge the powerful enemies waiting for you deep inside the dungeons. Invite NPC citizens to join your cave or village. Discover your inner beast and realize your full potential! LandTraveller is a hybrid between a traditional action RPG and a modern indie sandbox combining interesting randomized environments with hand crafted world building. With different modes of play and online multiplayer, there's lots to explore. Earlier this month, the Chapter 3 update was released adding in a substantial amount of new content in the form of quests, a new area to explore, multiple new types of enemies to encounter, new items and so on. Watch video on YouTube.com After not playing it in quite some time, I came back to take another look and came away even more impressed than I was before. It feels a lot more polished now, including it no longer crashing when going into fullscreen—hooray. The Linux version has been running very nicely now, good performance and no crashes at all for me. I tend to find these types of exploration RPGs a little addictive personally, time just seems to melt away as you explore, gather and craft. I'm a sucker for the progression system too, that has abilities level up the more you use them so I end up going off on long expeditions just to increase my skills and totally forget what quest I was supposed to be doing. If you enjoy games like Stardew Valley, you might find this to your liking too. A rather cute throwback to some of the earlier action RPGs in style, while still having plenty of modern elements. It can be played in both single-player and online with servers. Find LandTraveller on Steam.

Radeon GCN Compiler Backend Merged Into GCC 9 - To Allow OpenMP/OpenACC Offloading

2019-01-17 13:25:10

The long-in-development AMD "GCN" back-end for the GNU Compiler Collection that allows targeting recent generations of Radeon GPUs for compute offloading has been merged into the upcoming GCC 9 release...

What’s New in MX Linux 18 Continuum

2019-01-17 13:15:50

MX Linux 18 codename Continuum has been released, this release features Xfce 4.12 as default environment include xfce4 component, based on Debian 9.6 scratch and powered by Linux Kernel 4.19 series, which means that it offers support for the latest hardware components available on the market.

Phoenicis PlayOnLinux 5.0 Alpha 2 has been released

2019-01-17 13:00:00

Wine-reviews: To make it short, it is more reliable, more transparent, easier to setup and cross-platform compatible

Cortana and Search to innovate separately in an amicable Windows 10 Insider split

2019-01-17 12:32:51

Microsoft introduces the Schrödinger Linux Subsystem. (It might work. It might not.) Hot on the heels of a patch for the version of Windows 10 that Microsoft hopes will undo the woes of 2018 comes a fresh insider build to break stuff just a few days before the company's bug bash.…

Ditching Out-of-Date Documentation Infrastructure

2019-01-17 12:30:00

by Zack Brown Long ago, the Linux kernel started using 00-Index files to list the contents of each documentation directory. This was intended to explain what each of those files documented. Henrik Austad recently pointed out that those files have been out of date for a very long time and were probably not used by anyone anymore. This is nothing new. Henrik said in his post that this had been discussed already for years, "and they have since then grown further out of date, so perhaps it is time to just throw them out." He counted hundreds of instances where the 00-index file was out of date or not present when it should have been. He posted a patch to rip them all unceremoniously out of the kernel. Joe Perches was very pleased with this. He pointed out that .rst files (the kernel's native documentation format) had largely taken over the original purpose of those 00-index files. He said the oo-index files were even misleading by now. Jonathan Corbet was more reserved. He felt Henrik should distribute the patch among a wider audience and see if it got any resistance. He added: I've not yet decided whether I think this is a good idea or not. We certainly don't need those files for stuff that's in the RST doctree, that's what the index.rst files are for. But I suspect some people might complain about losing them for the rest of the content. I do get patches from people updating them, so some folks do indeed look at them. Henrik told Jonathan he was happy to update the 00-index files if that would be preferable. But he didn't want to do that if the right answer was just to get rid of them. Meanwhile, Josh Triplett saw no reason to keep the 00-index files around at all. He remarked, "I was *briefly* tempted, reading through the files, to suggest ensuring that the one-line descriptions from the 00-INDEX files end up in the documents themselves, but the more I think about it, I don't think even that is worth anyone's time to do." Paul Moore also voiced his support for removing the 00-index files, at least the ones for NetLabel, which was his area of interest. The discussion ended there. It's nice that even for apparently obvious patches, the developers still take the time to consider various perspectives and try to retain any value from the old thing to the new. It's especially nice to see this sort of attention given to documentation patches, which tend to get left out in the cold when it comes to coding projects. Note: if you're mentioned above and want to post a response above the comment section, send a message with your response text to ljeditor@linuxjournal.com. Go to Full Article

Comedy point and click adventure 'Guard Duty' to arrive on Linux this Spring, looks awesome

2019-01-17 12:09:27

Tags: Adventure, Point & Click, Comedy, Coming Soon, SteamIf you need a sprinkle of comedy in your life, the comedic point and click adventure Guard Duty looks like it could hit the spot. Not one I had heard of until today, I will be honest. Looking over it, Guard Duty was funded on Kickstarter back in March of 2017. Linux was noted as a platform back then and they're still very clearly advertising Linux support—awesome! While it has obvious retro inspirations, complete with hand-crafted pixel art that looks right out of the 90's it does actually look really damn good. Watch video on YouTube.com It will feature (according to the developer): A full stand-alone game spanning across two drastically different time zones – Past or future, choose your actions wisely. This is not a tale for the faint of heart. Full voice acting - Over 6000 lines of fully voiced dialogue. Hundreds of detailed animations – Be it the flicker of candlelight, leaves blowing in the wind or the jaws of a giant Wrinkleworm you can be sure those pixels will be pulling their weight. Bespoke music and sound – Guard Duty features over 30 unique musical compositions with hundreds of sound effects created in-house specifically for this project. Cross-platform support of cloud saves. Integrated 'to-do list' keeps track of current goals and objectives – Never lose sight of your goal, Guard Duty features a familiar RPG styled quest tracking system. Streamlined inventory and puzzle design – The feel of a classic, without all the faff. Puzzles are logical with an intuitive interface, Guard Duty features a modern mentality to game design whilst retaining a classic aesthetic. The actual release is currently being said as sometime this Spring, however they said a final date should be given out sometime soon. Find out more and wishlist on Steam.

Mesa 18.3.2 Released With Many Fixes As Users Encouraged To Upgrade

2019-01-17 12:00:00

With the Mesa 18.2.8 release at the end of December being the last release of that driver series, users should really consider upgrading to Mesa 18.3. Fortunately, Mesa 18.3.2 is out this morning with dozens of fixes...

Warhammer 40,000: Mechanicus updated, fixes a few Linux issues and it's looking great

2019-01-17 11:42:35

Tags: Steam, Humble Store, StrategyWarhammer 40,000: Mechanicus update 1.1.1 is out and the Linux beta has seen some nice fixes making it in. While the Linux version still remains in a "soft" launch phase (not officially advertised), it's good to see Bulwark Studios and Kasedo Games give it some attention. In this update, they've fixed the intro video being black and also the game should no longer be capped to 30FPS if you had that issue. Additionally, it seems you no longer need to opt into any beta to access the game. Watch video on YouTube.com For someone who hasn't been a Warhammer fan for very long, even I will admit that the design work in Mechanicus is really something. There's quite a lot of Warhammer games out now, a number of them not particularly good but Mechanicus really sets itself apart. Take control of one of the most technologically advanced armies in the Imperium - The Adeptus Mechanicus. As Magos Dominus Faustinius, you’ll lead the expedition on the newly rediscovered Necron planet of Silva Tenebris. Customize your team, manage resources, discover long-forgotten tech, and control your Tech-Priests’ every move. Your every decision will shape the missions ahead and ultimately decide the fate of the troops under your command in over 50 hand-crafted missions. Choose your path carefully - the Imperium depends on it. Mixing in some engrossing story-telling, exploration and XCOM-like battle mechanics it certain has a fantastic overall atmosphere to it. The ability to scan enemies to reveal any information on them certainly keeps it interesting, as does the need to acquire resources as you progress through each battle. I'm really not surprised it seems to have reviewed well overall by users and other critics, as I've been greatly enjoying my time with it. If you like turn-based tactics (even if you're not a Warhammer fan) I think it's a good one to pick up. You can find Warhammer 40,000: Mechanicus on Humble Store and Steam.

Sailfish OS "Sipoonkorpi" Brings Firewall Improvements, Redesigned Image Editing

2019-01-17 11:40:29

The Finnish developers persevering with the Sailfish OS Linux-based mobile operating system have announced their new "Sipoonkorpi" operating system feature release...

OpenBSD install MariaDB database server

2019-01-17 11:39:36

ZFS On Linux Landing Workaround For Linux 5.0 Kernel Support

2019-01-17 11:17:31

Last week I reported on ZFS On Linux breaking with Linux 5.0 due to some kernel symbols sought by this out-of-tree file-system driver no longer being exported and the upstream developers not willing to adjust for the ZoL code. That's still the case but the ZFS On Linux developers have a patch so at least the file-system driver will be able to build on Linux 5.0...

Dis Pontibus will have you solve puzzles and connect islands together in a procedurally-generated archipelago

2019-01-17 10:57:36

Tags: Indie Game, Puzzle, Steam, Itch.ioWho would have thought something as simple as connecting blocks together could be so good? Dis Pontibus will keep you going for hours. Note: Key provided by the developer to our Steam Curator, give us a follow! The idea is simple, to get to each new island you need to build a bridge by walking over blocks and moving them around. It's not a lot to look at, the graphics and presentation are about as simple as it gets but it gives off a huge amount of charm in such a small package. Have a peek: Watch video on YouTube.com Some of the puzzles are really surprisingly clever, requiring you to give them a good few attempts before you get the blocks in the right order to cross over. I think the developer Marcos Donnantuoni managed to make something really quite unique here. There's only really one downside, which is that the puzzles do end up getting a little repetitive. I would love to see the idea expanded, to include a couple more mechanics. It's already pretty good but even two more mechanics would expand the possibilities dramatically. Just a note for those on a notebook with a lower screen resolution: The Unity launcher has a rather large logo on it for the game, pushing the controls off the screen. I've let the developer know. You can grab it now from itch.io and Steam.

How AI could help you learn sign language

2019-01-17 10:56:45

Sign languages aren't easy to learn and are even harder to teach. They use not just hand gestures but also mouthings, facial expressions and body posture to communicate meaning. This complexity means professional teaching programmes are still rare and often expensive. But this could all change soon, with a little help from artificial intelligence (AI).

SUSE Server for Arm Becomes Generally Available

2019-01-17 10:47:09

The SUSE server (SLES) for Arm processors is now available directly from SUSE with a new price structure that counts cores and sockets.

GNOME's Builder IDE Goes Through Its Biggest Code Refactoring Ever

2019-01-17 10:46:47

The lead developer of the GNOME Builder integrated development environment, Christian Hergert, has just led his project through its largest code re-factoring yet. Builder 3.32 coming out in March with GNOME 3.32 features more than 100k lines of code changed with various underlying improvements as well as some new features for developers...

The Tyranids have arrived in Warhammer 40,000: Gladius

2019-01-17 10:14:02

Tags: DLC, Strategy, Steam, GOG, Humble StoreThings are about to get a little more intense on Gladius Prime as the Tyranids have arrived to consume everything in their path. The Tyranids are an extremely original and unique race. Their playstyle is rather different compared to the other factions: they field large numbers of cannon-fodder infantry which is best employed to cover for very powerful heavy infantry. They have access to highly specialised units (more on them in a units diary later this week) as well as flying monstrous creatures! They are an aggressive, expansionist race. If you play against a Tyranid AI and you find yourself bordering a ‘nids infestation, best to prepare your defenses. If you are playing as Tyranids, don’t refrain from going on the offensive and don’t worry about losing a few units. It’s not a faction for the faint of heart. Trailer: Watch video on YouTube.com I have to admit, the addition of the Tyranids sounds like it will make Warhammer 40,000: Gladius a vastly more interesting game with their unique mechanics. Their focus on expansion especially will mix games up rather a lot, since they literally feed on the planet and leave nothing but a wasteland behind. Find the game and the expansion on Humble Store, GOG and Steam.