today's leftovers

posted by Roy Schestowitz on Dec 19, 2022

• Linux Weekly Roundup #214

  Welcome to this week's Linux weekly roundup.

  We had a full week in the world of Linux releases with ExTiX Linux 22.12, Debian Edu 11.6.0, Debian 11.6.0, PCLinuxOS 2022.12.

  Have a wonderful week, and merry Christmas! Remeber the meaning of the season!

• Chiselled Ubuntu: the perfect present for your containerised and cloud applications [Ed: Canonical has become a Microsoft reseller. Truly appalling. People join Canonical thinking they would promote GNU/Linux and instead they end up working on Microsoft projects. We need Ubuntu and Canonical whistleblowers.]

• Running in Place: Staying Afloat With Language-Level Vulnerability Management - CPO Magazine [Ed: This bizarre article obsesses over "Linux" and describes issues that are likely not even in Linux itself]

  For businesses working with operating systems like Linux, additional issues can arise. Historically, Linux has been considered one of the more secure operating systems. However, Linux attacks are becoming more attractive to threat actors because those systems tend to have a higher payoff value. Businesses operating with Linux are faced with increasingly dangerous Linux-based vulnerabilities, like those related to remote control execution (RCE) and local privilege escalation (LPE). RCE is considered the holy grail for attackers, given the level of control it offers over machines and systems. And if RCE isn’t possible, attackers can always rely on an LPE vulnerability.

  With Linux, traditional patching tools like apt, dnf, or yum (which are used for updating on-disk versions of vulnerable software), are problematic, since they don’t immediately apply to already running code, like the Linux kernel that is always running, or shared libraries already residing in memory as a dependency of multiple services. Changes occurring on disk will only translate to revisions in the running code when those services are restarted, or the whole system is restarted – something obviously disruptive to any workload. This means that some customer or user somewhere is going to experience a business disruption.

• LILYGO T-CAMERA S3 includes display and PIR sensor

  The T-CAMERA S3 is a compact embedded module based on the low power ESP32-S3 SoC supporting dual-band Wi-Fi and Bluetooth 5.2. The device is equipped with an OV2640 camera module, a 0.96” OLED display, a PIR sensor and a few JST connectors for additional devices.�

• Josh Bressers: Episode 354 – Jerry Bell tells us why Mastodon is awesome and MFA is hard

  Josh and Kurt talk about how hard multi factor authentication is. This all starts from a Mastodon thread, and Jerry Bell, the administrator of infosec.exchange joins us to discuss password security and all things Mastodon. Infosec.exchange is an incredible story and Jerry weaves a thrilling tale.

• World Order 491

  **kscreen** , **kscreenlocker** , **kservice** , **kshisen** from the Slackware KDE software set.

• Kubernetes 1.26: Device Manager graduates to GA | Kubernetes

  The Device Plugin framework was introduced in the Kubernetes v1.8 release as a vendor independent framework to enable discovery, advertisement and allocation of external devices without modifying core Kubernetes. The feature graduated to Beta in v1.10. With the recent release of Kubernetes v1.26, Device Manager is now generally available (GA).

  Within the kubelet, the Device Manager facilitates communication with device plugins using gRPC through Unix sockets. Device Manager and Device plugins both act as gRPC servers and clients by serving and connecting to the exposed gRPC services respectively. Device plugins serve a gRPC service that kubelet connects to for device discovery, advertisement (as extended resources) and allocation. Device Manager connects to the Registration gRPC service served by kubelet to register itself with kubelet.

• How I use my old camera as a webcam with Linux | Opensource.com

  This year after largely abandoning my MacBook in favor of a NixOS machine, I started getting requests to "turn my camera on" when video calling people. This was a problem because I didn't have a webcam. I thought about buying one, but then I realized I had a perfectly good Canon EOS Rebel XS DSLR from 2008 lying around on my shelf. This camera has a mini-USB port, so naturally, I pondered: Did a DSLR, mini-USB port, and a desktop PC mean I could have a webcam?

  There's just one problem. My Canon EOS Rebel XS isn't capable of recording video. It can take some nice pictures, but that's about it. So that's the end of that.

  Or is it?

  There happens to be some amazing open source software called gphoto2. Once installed, it allows you to control various supported cameras from your computer and it takes photos and videos.

• Setting up Fedora IoT on Raspberry Pi and rootless Podman containers - Fedora Magazine

  Fedora IoT is a foundation for Internet of Things (IoT) and Device Edge ecosystems. It’s a secure, immutable, and image-based operating system that supports the deployment of containerized applications. We’ll discuss how you can run Fedora IoT on a Raspberry Pi to deploy a rootless Podman container.

• TopTon TP-X4F mini PC with four 2.5GbE ports features up to AMD Ryzen 7 5825U processor - CNX Software

  TopTon TP-X4F is a mini PC and network appliance equipped with four 2.5GbE ports and powered by a choice of processors from the AMD Ryzen 5000U series up to the Ryzen 7 5825U octa-core-16-thread processor.

  The system supports up to 64GB RAM and up to five high-speed internal SATA or NVMe storage devices through M.2 sockets and SATA connectors and comes with three 4K display interfaces: HDMI, DisplayPort, and USB-C, as well as four USB ports.