Other Sites

9to5Linux

GParted Live 1.7 Launches with Experimental Bcachefs Support, Linux 6.12 LTS

Coming almost a year after GParted 1.6, the GParted 1.7 release is here to introduce experimental support for the Bcachefs file system (for single device file systems only), support for recognizing NBDs (Network Block Devices), and a new mechanism that prevents GParted probe from starting LVM volume groups.

NVIDIA 570 Linux Graphics Driver Promises VRR Support on Multi-Monitor Setups

Some of the highlights of the NVIDIA 570 graphics driver series include VRR (variable refresh rate) support on multi-monitor setups, support for querying Dynamic Boost status, 32-bit compatibility support for the NVIDIA GBM backend, and a new conceal_vrr_caps kernel module parameter to the nvidia-modeset kernel module.

GCompris 25.0 Open-Source Educational Suite Released with Five New Activities

GCompris 25.0 introduces five new activities including “Sketch”, an activity for drawing freely with multiple tools to let children explore their creativity, and “Calculate with ten’s complement”, the continuation of the existing ten’s complement activities to help the children to swap the numbers to easily compute a sum.

LinuxGizmos.com

Adafruit CLUE: A Sensor-Packed nRF52840 Development Board in a micro:bit Form Factor

The Adafruit CLUE is a development board with a built-in display, multiple sensors, and Bluetooth Low Energy connectivity. It follows the form factor of the BBC micro:bit while incorporating additional processing power and expanded functionality. The board is designed for applications involving data visualization, sensor-based measurements, and wireless communication.

Internet Society

Fostering Digital Literacy in Nicaragua

The small community of Reparto La Virgen Nueva lies at kilometer 111 on the León-Chinandega highway in Nicaragua. Its inhabitants, mostly agricultural and domestic workers, face limited mobile Internet access, characterized by restrictive data plans and poor coverage. There’s no fiber Internet option and it’s a 20-kilometer commute to León by bus to access the nearest computer and Internet facilities.

Security: Microsoft Failures, Patches, Fakes, and More

posted by Roy Schestowitz on Oct 21, 2022

Microsoft leaked 2.4TB of data belonging to sensitive customer. Critics are furious | Ars Technica

Microsoft is facing criticism for the way it disclosed a recent security lapse that exposed what a security company said was 2.4 terabytes of data that included signed invoices and contracts, contact information, and emails of 65,000 current or prospective customers spanning five years.

The data, according to a disclosure published Wednesday by security firm SOCRadar, spanned the years 2017 to August 2022. The trove included proof-of-execution and statement of work documents, user information, product orders/offers, project details, personally identifiable information, and documents that may reveal intellectual property. SOCRadar said it found the information in a single data bucket that was the result of a misconfigured Azure Blob Storage.
10 Best Free and Low-Cost SSL Certificate Authorities

Implementing an SSL certificate on your website is no longer considered a luxury. It not only boosts your website security by encrypting communication exchanged between site visitors and your website, but also improves your site’s SEO ranking. In addition, it helps you in PCI/DSS compliance if you are hosting a platform that accepts payment card data.
Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedIn

On October 10, 2022, there were 576,562 LinkedIn accounts that listed their current employer as Apple Inc. The next day, half of those profiles no longer existed. A similarly dramatic drop in the number of LinkedIn profiles claiming employment at Amazon comes as LinkedIn is struggling to combat a significant uptick in the creation of fake employee accounts that pair AI-generated profile photos with text lifted from legitimate users.
Security updates for Friday [LWN.net]

Security updates have been issued by Fedora (poppler), Oracle (firefox and thunderbird), Red Hat (firefox, java-1.8.0-openjdk, java-11-openjdk, and java-17-openjdk), SUSE (bind, clone-master-clean-up, grafana, libksba, python3, tiff, and v4l2loopback), and Ubuntu (libreoffice).
Effecting positive change in the Internet of Things | Pen Test Partners

We started our journey back in the day when the IoT was in its infancy. Our first published research was in June 2015 with a post about extracting the Wi-Fi PSK from Fitbit’s Aria weighing scales. This led to a challenging disclosure process with Fitbit, though it ended positively and constructively, with Fitbit supporting our efforts to educate and improve cyber security. This included us delivering workshops and briefings at the world-famous DEFCON and BlackHat hacking conferences.

Seven years on and the security challenges that IoT device manufacturers, IoT platform providers and API coders fail to handle have not gone away. The growth in the market for smart ‘things’ and the persistence of poor practice has amplified the problems. Our ever increasing catalogue of IoT security research (160+ posts and counting) is anecdotal evidence of this. That’s not to say that some responsible manufacturers haven’t listened. There are many great examples of secure smart devices but it’s not ubiquitous.
Cisco Releases Security Update for Cisco Identity Services Engine� | CISA

Cisco has released a security update to address vulnerabilities affecting Cisco Identity Services Engine (ISE). A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing high and low severity vulnerabilities, see the Cisco Security Advisories page.
Adversarial ML Attack that Secretly Gives a Language Model a Point of View

Machine learning security is extraordinarily difficult because the attacks are so varied—and it seems that each new one is weirder than the next. Here’s the latest: a training-time attack that forces the model to exhibit a point of view: Spinning Language Models: Risks of Propaganda-As-A-Service and Countermeasures.”
High-Tech Cars Are Killing the Auto Repair Shop

Over the past decade, cars have gotten more complex and computerized. Each vehicle is now studded with sensors, packed with hundreds or thousands of computer chips, and controlled by software. Auto industry insiders have waxed poetic about the safety benefits of the “software-defined vehicle”—which also enables revenue-boosting data collection and subscriptions that make it safer to be an auto executive too.

Less talked about are the consequences of computerized cars at the auto shop. Fixing complex vehicles requires increasingly expert and expensive knowledge, and tools that are in limited supply. It’s part of the same trend that has driven some farmers to hack their own tractors and triggered legal fights over what rights consumers have over their own vehicles.

Other Recent Tux Machines' Posts

Let’s Encrypt Phases Out Certificates Expiry Notifications: Let’s Encrypt is updating its Subscriber Agreement and ending expiration reminders
Facebook Censors GNU/Linux Advocacy: a pair of reports
GParted Live 1.7 Launches with Experimental Bcachefs Support, Linux 6.12 LTS: GParted 1.7 and GParted Live 1.7 have been released today for this open-source and free partition manager that lets you resize, copy, and move partitions without data loss.
GStreamer 1.24.12 Improves Performance Across Platforms: GStreamer 1.24.12 multimedia framework is a bug-fix release that resolves crashes, improves compatibility, and enhances reliability across platforms
Wine 10 Released with Experimental Bluetooth Driver, New HID Pointer Driver: Wine 10 has been released today as the latest version of this free and open-source compatibility layer that lets you run apps and games developed for Windows systems on Unix-like operating systems.
Android Leftovers: LineageOS 22 review: Android’s biggest software sustainability project improves again [Video]
Windows TCO and Security Leftovers: Security with Windows blunders
Programming Leftovers: Development picks
IBM and Red Hat Leftovers: Lots of paid fluff unfortunately
Kernel and Graphics: NTSYNC and NVIDIA Beta Driver 570.86.16: some Linux news
Collabora Outsources to Microsoft, Microsoft LF ('Linux' Foundation) Making Excuses For Nationalistic and Racist Policies: bad news
today's howtos: Instructionals/Technical posts
Year of the GNU/Linux desktop: this was all thanks to a Linux desktop
5 Best Lightweight Linux Distros Without a GUI: runs faster
Games: A.D. Alpha 27, Batography, and More: 8 stories from GamingOnLinux
Not one of us: A howling insanity overtook Facebook this week as they "banned discussion of Linux", the very operating system on which their whole operation runs
Android Leftovers: Google Photos finally adds this basic editing feature, but only for Android
Alpine Linux Expands Funding Model with Open Collective Support: Alpine Linux is now on Open Collective
Organize a community meetup in your area: Let's claim the month of May as LibreLocal month
Free and Open Source Software: This is free and open source software
Seeking Opportunities: Building a Career in Software Engineering and Beyond: My journey in CS has always been driven by curiosity, determination, and a deep love for understanding software solutions at its tiniest, most complex levels
News About Linux Kernel Space: 4 stories
Intel Adds In Three New Battlemage PCI IDs At Linux Driver, Hinting Towards Release of New dGPU Models: Intel has reportedly added three new Battlemage PCI IDs to the Intel Linux kernel driver, hinting at the future release of new dGPU variants
Today in Techrights: Some of the latest articles
GNU/Linux and Free Software Leftovers: today's leftovers
Programming Leftovers: Development leftovers
Security Leftovers: Security centric leftovers
Audiocasts/Shows: mintCast, FLOSS Weekly, and More: some new episodes
Applications: Snap vs Flatpak, GNU/Linux Digest, and FOSS Weekly: Free software and blobs
Devices/Embedded/Open Hardware: Raspberry Pi, ESP32, and More: hardware news
today's howtos: many howtos, second batch today
KaOS Linux 2025.01 Released with Linux Kernel 6.12 LTS and KDE Plasma 6.2: KaOS Linux 2025.01 independent distribution is now available for download with the KDE Plasma 6.2 desktop environment and Linux kernel 6.12 LTS.
NVIDIA 570 Linux Graphics Driver Promises VRR Support on Multi-Monitor Setups: NVIDIA published today the beta version of the upcoming NVIDIA 570 graphics driver for Linux, FreeBSD, and Solaris systems promising several new features and performance improvements.
EasyOS Daedalus-series version 6.5.7 and EasyOS Scarthgap-series version 6.6: two releases
Confirmed: Ubuntu Dev Discussions Moving to Matrix: Ubuntu’s key developers have agreed to switch to Matrix as the primary platform for real-time development communications involving the distro
Incus 6.9 Container & Virtual Machine Manager Released: Incus 6.9 introduces VM memory dumps, improved QEMU hooks, uplink addresses in OVN state
Latest From Red Hat: From redhat.com
GCompris 25.0 Open-Source Educational Suite Released with Five New Activities: GCompris 25.0 has been released today as a major update to this open-source and cross-platform educational software suite suitable for children aged 2 to 10 with new activities and updated translations.
Android Leftovers: iPhones finally catch up to Android in Netflix binging ease
OPNsense Celebrates 10 Years with the 25.1 “Ultimate Unicorn” Release: OPNsense 25.1 open-source firewall and routing platform rolls out powered by FreeBSD 14.2, with a revamped UI, ZFS snapshot support, and more
GNU: Free Software Directory meeting on IRC and gprofng-gui 2.0 released: some FSF/GNU news
Debian is Ditching X (Twitter) Citing These Reasons: The Debian Publicity Team is stepping away from X/Twitter, citing concerns over values and diversity
Open Hardware/Modding/Retro: Pebble, Arduino, and More: some hardware news
Security Leftovers: Security news and more
Programming Leftovers: Development picks
Thunderbird Moves to Monthly Updates from March 2025: The Thunderbird email client is making its monthly ‘release channel’ builds the default download starting in March
Windows TCO Leftovers: things breaking and having holes
postmarketOS in 2025-01: systemd in edge, mobile-config-thunderbird and Lomiri: One of the best ways to end the year is to visit the Chaos Communication Congress
LibreOffice project and community recap: January 2025: LibreOffice 25.2 – our next major release – is due to arrive next week
Best Free and Open Source Software: We recommend the best free and open source alternatives for Linux
Linux Distros Debian-Based and Xfce4 Centric: Armbian is a highly optimized base operating system specialized for single board computers
Games: F1 Arcade Experience, PS, DOOM, and More: mostly from GamingOnLinux
System76 Meerkat goes Meteor Lake (Linux mini PC spec bump): The System76 Meerkat is a mini PC that ships with either Ubuntu or Pop!_OS software pre-installed
Kubuntu 24.04 third review - It's shaping up nicely: My first encounter with Kubuntu 24.04 was not very successful
today's howtos: many howtos
Kernel Space: Making Linux Energy-Efficient, Kernel 6.13, 6.12.x in EasyOS, and More: linux news
Here's the easiest thing Linux developers can do to win more users: Many Linux distribution development teams overlook this issue, and by considering it
Plank-Reloaded - The Simplest Dock that's Fully Functional: free open-source fork to make it fully functional in recent GNU/Linux Distributions
Decelopment and Free Software: FOSS picks
Python and Linux Kernel Stories in LWN: 4 new articles outside the paywall
Security Leftovers: Security incidents and more
A mouseless tale: trying for a keyboard-driven desktop: PaperWM solves both problems by providing a scrollable tiling interface for GNOME with a virtual viewport larger than the screen
Today in Techrights: Some of the latest articles
Games, GNOME Maps, BSD, and Software Freedom: today's leftovers
Security Leftovers: Security links, only 3 for now
Programming Leftovers: Development picks, not many
Red Hat Official Fluff: lots of Red Hat buzzwords
today's howtos: a batch for the morning
Raspberry Pi Projects and News: 3 stories for today
Krita 5.2.9 Released!: Today we're releasing Krita 5.2.9
Games: Antimatter, Chernobylite, and More: 8 of the latest stories from GamingOnLinux
Windows 10's demise nears, but Linux is forever: If you want a desktop that's secure and reliable, forget about Microsoft
Development: Debiab, EasyOS, and More: Programming and more
Document Freedom Day: Empowering the Digital World with Open Standards: the Document Freedom Day will happen on March 26, and will be driven by the LibreOffice community
Android Leftovers: ‘Google Play Store keeps stopping’ on Android
Pinta 3.0 Beta Released with New GTK4/Libadwaita UI: A new beta release of open source graphics editing app Pinta is available for testing
KaOS Linux 2025.01 Released with Linux Kernel 6.12 LTS and KDE Plasma 6.2: KaOS Linux 2025.01 has been released today as the latest ISO snapshot for this independent Linux distribution built on top of the latest KDE software and featuring Arch Linux’s pacman package manager.
Best Free and Open Source Software: Only free and open source software is eligible for inclusion here
Great-OS – Linux distribution: Great-OS (Grat-OS) is an independent Linux distribution made in France
GNOME 48 Alpha Is Now Available for Public Testing, Here’s What’s New: Today, the GNOME Project announced the alpha version of the upcoming GNOME 48 desktop environment series for public testing, giving us a first taste of the new features and improvements.
today's howtos: only a few more for now
Proprietary Coding, LLMs, and Violations: Using slop to pretend to be building applications without possessing skills or obeying licences
Today in Techrights: Some of the latest articles