Other Sites

LinuxGizmos.com

Cost-Effective DART-MX91 SoM with 1.4GHz NXP i.MX 91 Processor Available from $35

Variscite has introduced the DART-MX91 System on Module, a compact and cost-effective solution within the DART Pin2Pin family, targeting edge devices for IoT, smart cities, industrial applications, and more.

Celeron Powered Fanless Mini PC with Dual 4K Display Support and M.2 2280 Slot

The EMP-100 is a compact, fanless mini PC built for versatile applications, including digital signage, industrial control, and retail environments. Designed with an aluminum chassis and VESA mounting support, it provides silent performance, dual 4K display support, and storage expansion via an M.2 2280 slot.

Radxa Introduces the Palmshell SLiM X4L with Intel N100 Processor and 2.5GbE RJ45 Port

The Radxa X4L, also known as the Palmshell SLiM X4L, is a compact device powered by Intel’s quad-core N100 processor. With features like a 2.5GbE LAN port, Wi-Fi 6E, and dual 4K@30Hz display support, it’s well-suited for multimedia and general-purpose use.

9to5Linux

PeaZip 10.1 File Archiver Improves Resilience to Password Guessing Attacks

PeaZip 10.1 is here only two weeks after PeaZip 10 and updates the backend to Pea 1.21, which introduces scrypt KDF as the default option instead of PBKDF2 to improve resilience to password-guessing attacks. This change alone increases the memory cost up to 1GB per instance. KDF was supported since Pea 1.5.

DXVK 2.5 Improves Memory Management in God of War and Other Video Games

DXVK 2.5 is here one and a half months after DXVK 2.4.1 to improve memory management for God of War and other video games by periodically performing memory defragmentation to return some unused memory to the system. However, this feature is currently disabled on Intel’s ANV Vulkan driver.

9to5Linux Weekly Roundup: November 10th, 2024

I want to thank all the people who sent us donations. You guys are awesome and your help is very much appreciated! I also want to thank you all for your continued support by commenting, liking, sharing, and boosting the articles, following us on social media, and last but not least thank you for sending us feedback.

Ubuntu Buzz !

Kubuntu 22.04 with Legacy Oxygen Theme

This tutorial will help you using silver, metallic theme "Oxygen" that was popular in the era of KDE 4 on the modern Kubuntu 22.04 "Jammy Jellyfish". In short, we will use Elarun as wallpaper and Oxygen as the rest of the whole themes including application style, colors, icons, Plasma style, and splash screen. All in all, we want to offer the best visual experience we had in the past to new generation of Kubuntu users as well as the long time users themselves especially those who appreciate nostalgia. Finally, we hope you will enjoy this!

Security and FUD (UPDATED)

posted by Roy Schestowitz on Jan 02, 2023,
updated Jan 03, 2023

WordPress Security Alert: New Linux Malware Exploiting Over Two Dozen CMS Flaws [Ed: This is a WordPress plugins issue (not WordPress, not Linux); calling this Linux is like calling an Adobe Photoshop bug a "Windows bug"; WordPress runs not only on Linux]

WordPress sites are being targeted by a previously unknown strain of Linux malware that exploits flaws in over two dozen plugins and themes to compromise vulnerable systems.
Reproducible Builds Summit Venice 2022

The sixth Reproducible Builds Summit took place exactly two months ago in Venice, Italy. These three days of workshops were filled with a succession of interactive sessions, where everyone attending had the opportunity to present or learn about anything related to Build Reproducibility. This included the status of specific Open Source projects, techniques to locate, analyse, and understand issues, or also how to explain and communicate better around this topic.
Can we encrypt data using Elliptic Curves? - Andrea Corbellini

From time to time, I hear people saying that Elliptic Curve Cryptography (ECC) cannot be used to directly encrypt data, and you can only do key agreement and digital signatures with it. This is a common misconception, but it's not actually true: you can indeed use elliptic curve keys to encrypt arbitrary data. And I'm not talking about hybrid-encryption schemes (like ECIES or HPKE): I'm talking about pure elliptic curve encryption, and I'm going to show an example of it in this article. It's true however that pure elliptic curve encryption is not widely used or standardized because, as I will explain at the end of the article, key agreement is more convenient for most applications.

[...]

I wrote an in-depth article about elliptic curve cryptography in the past on this blog, and here is a quick recap: points on an elliptic curve from an interesting algebraic structure: a cyclic group. This group lets us do some algebra with the points of the elliptic curve: if we have two points $A$ and $B$, we can add them ($A + B$) or subtract them ($A - B$). We can also multiply a point by an integer, which is the same as doing repeated addition ($n A$ = $A + A + \cdots + A$, $n$ times).

We know some efficient algorithms for doing multiplication, but the reverse of multiplication is believed to be a "hard" problem for certain elliptic curves, in the sense that we know efficient methods for computing $B = n A$ given $n$ and $A$, but we do not know very efficient methods to figure out $n$ given $A$ and $B$. This problem of reversing a multiplication is known as Elliptic Curve Discrete Logarithm Problem (ECDLP).
Security updates for Monday [LWN.net]

Security updates have been issued by Debian (cacti, emacs, exuberant-ctags, libjettison-java, mplayer, node-loader-utils, node-xmldom, openvswitch, ruby-image-processing, webkit2gtk, wpewebkit, and xorg-server), Fedora (OpenImageIO, systemd, w3m, and webkit2gtk3), Mageia (curl, freeradius, libksba, libtar, python-ujson, sogo, thunderbird, and webkit2), Red Hat (bcel), and SUSE (ffmpeg, ffmpeg-4, mbedtls, opera, saphanabootstrap-formula, sbd, vlc, and webkit2gtk3).
Compromised PyTorch-nightly dependency chain between December 25th and December 30th, 2022. | PyTorch

If you installed PyTorch-nightly on Linux via pip between December 25, 2022 and December 30, 2022, please uninstall it and torchtriton immediately, and use the latest nightly binaries (newer than Dec 30th 2022).
Nightly PyTorch builds compromised [LWN.net]

Anybody who installed a nightly release from the PyTorch machine-learning library between December 25 and 30 will want to uninstall it immediately...

UPDATE

One more update:

PyTorch: Machine Learning toolkit pwned from Christmas to New Year - Naked Security

Unfortunately, the project was compromised by means of a supply-chain attack during the holiday season at the end of 2022, between Christmas Day [2022-12-25] and the day before New Year’s Eve [2022-12-30].

The attackers malevolently created a Python package called torchtriton on PyPI, the popular Python Package Index repository.

Other Recent Tux Machines' Posts

DXVK 2.5 Improves Memory Management in God of War and Other Video Games: DXVK 2.5 Vulkan-based implementation of D3D9, D3D10, and D3D11 for Linux / Wine is now available for download as a significant update that improves support for multiple games.
CachyOS ISO Release for November Improves Support for AMD and NVIDIA Users: The development team behind the Arch Linux-based CachyOS distribution released today a new ISO snapshot that brings various improvements for AMD and NVIDIA GPUs, as well as other changes.
Security and Windows TCO: round 2 for today
today's howtos (and Google starts spewing out fake howtos made by LLMs): The WWW is getting worse
PeaZip 10.1 File Archiver Improves Resilience to Password Guessing Attacks: PeaZip 10.1 has been released today as a new update to this open-source, free, and cross-platform file compression and encryption software featuring GTK and Qt interfaces for Linux, macOS, and Windows.
Fedora 42 to Port the Anaconda Installer to Wayland, Default to Anaconda WebUI: The upcoming Fedora Linux 42 release, due out in late April or early May 2025, promises to port the Anaconda system installer as a native Wayland application and also default to the long-awaited Anaconda WebUI installer for the Fedora Workstation edition.
Games: Proton Experimental, Karate Survivor, Dungeon Clawler, and More: 8 new articles from GamingOnLinux
Valve Releases Steam Client Update to Further Improve Native Linux Gaming: Valve released today a new Steam Client update to the stable channel to further improve native Linux gaming, the newly introduced game recording feature, as well as Steam VR and Steam Input.
Android Leftovers: Nothing OS 3.0 gets a second beta as Android 15's stable release nears
QNX 8 Goes Free for Learning and Personal Projects: BlackBerry offers free access to QNX 8, its powerful real-time OS
See How It's Made: Denver Computer Manufacturer Opens Doors for Free Tours: If you’ve ever wondered what goes into making a computer from scratch, Denver’s own System76 has the answer
Best Free and Open Source Software: We recommend the best free and open source alternatives for Linux
Expirion Linux – distro based on Devuan: Expirion Linux is a distro based on Devuan and uses the Refracta Installer
Why Can EU Citizen’s Petition for Software Freedom, but We Can’t?: Somebody from Austria has petitioned the European Parliament to start using Linux and open-source apps instead of Microsoft stuff
Today in Techrights: Some of the latest articles
Red Hat is acquiring AI optimization startup Neural Magic: Red Hat, the IBM-owned open source software firm, is acquiring Neural Magi
Programming Leftovers: Development related links
Raspberry Pi With Proprietary Spyware, Steam Deck (DRM), and Handheld Replica Sound Voltex Game: 3 leftovers stories
Free Software and Web Leftovers: mostly Web
Ubuntu and BSD Leftovers: Some GNU/Linux and BSDs
Audiocasts/Shows: Linux User Space, Late Night Linux, and LINUX Unplugged: 3 new episodes
Software Leftovers: 3 misc. posts about FGSS
It's FOSS Series on openEuler: 5 introductory articles
today's leftovers: Canonical and more
Security Leftovers and Windows TCO: a pair of Windows TCO tales
Linux Kernel: Magic Trackpad and NVIDIA Support: Some kernel news
Devices/Embedded and Open Hardware/Modding: Raspberry Pi and More: But mostly Raspberry Pi stories
Latest From Red Hat's Official Site: From redhat.com
today's howtos: many howtos for today
GNOME 48 Release Schedule & Potential New Features: GNOME 47 ‘Denver’ proved a decent update to the GNOME desktop
Fedora KDE Plasma Spin Gains Equal Footing With Gnome Edition: Fedora has made a major change to its project, elevating the version running KDE Plasma from an Spin to an official Edition, alongside Fedora Workstation with Gnome
Android Leftovers: Here's How I Find Great Android Games on the Play Store
Reimagining the Fedora Linux installer: Anaconda’s new “Web UI”: The Fedora Linux installer, Anaconda, has been around for 25 years
Games: Rogue Point, ColdRidge, and More: 8 new stories from GamingOnLinux
Debian 12.8 “Bookworm” Released with 68 Bug Fixes and 50 Security Updates: The Debian Project announced today the release and general availability of Debian 12.8 as the seventh ISO update to the latest Debian GNU/Linux 12 “Bookworm” operating system series.
This Linux Timer Tool Uses MPRIS in an Unexpected Way: MPRIS is something most of us associate with music apps and movie players
A sit-down with Ubuntu founder Mark 'SABDFL' Shuttleworth: Talking to the distro's self-appointed benevolent dictator for life about 20 years of Ubuntu
Engineering Thelio Astra: We sat down with System76 Mechanical Engineer, Britain and Product Manager
Free and Open Source Software: PairDrop offers local file sharing in your web browser
Of Color and Software: We have been hard at work making sure our design system keeps moving forward
RIP Jérémy Bobbio (Lunar): Longtime Debian and Tor developer, Jérémy Bobbio—perhaps better known as "Lunar"—died on November 8
5 Linux commands you need to have ready - just in case: Why keep a first aid kit or fire extinguisher in your home
Ubuntu Unity still has one of my favorite PC interfaces of all time: If you're looking for an efficient desktop, Unity is hard to beat, and there's an official spin ready to make your life a bit easier
WordPress’s Mullenweg Puts Lipstick on His WP Engine Argument: “I want to jump back two months ago,” Jolo said. “What happened?”
399 Days... [original]: On my main workstation
Today in Techrights: Some of the latest articles
Speed, Not Complexity, is What Visitors Need [original]: he database of new pages is being populated but not accessed by site visitors, to whom only static pages are accessible
Microsoft Windows at All-Time Lows [original]: The way things sway, Microsoft will just go deeper and deeper into debt
Security Leftovers: Security related picks, for now...
GNU/Linux Leftovers: Games, Gentoo, and more
Free, Libre, and Open Source Software Leftovers: Free software and sharing
Radxa, Raspberry Pi, and More Hardware: Some hardware news
Programming Leftovers: only a few for today
Audiocasts/Shows: Open Source Security Podcast and This Week in Linux: 2 new episodes
today's howtos: many howtos for Monday
Celebrating our top contributors on Firefox’s 20th anniversary: Firefox was built by a group of passionate developers, and has been supported by a dedicated community of caring contributors since day one
Streamlining openSUSE Translations Upstream: Managing localization of desktop menus and applications takes a specific tool and approach that fills a gap but leaves inconsistent upstream translations
Fedora Linux Elevates KDE to Edition Status: Fedora Linux 42 elevates KDE to Edition status alongside GNOME
9to5Linux Weekly Roundup: November 10th, 2024: The 213th installment of the 9to5Linux Weekly Roundup is here for the week ending on November 10th, 2024.
Android Leftovers: Android 15 adds support for Wi-Fi Ranging to improve indoor navigation
Putting Linux on a Tablet? 7 Distros to Try: As convertible laptops gain popularity, many users seek to replace Windows with a Linux-based tablet experience
Pop!_OS: One of the Best Linux Distros For Creators of All Types: After a few days of using System76's Linux distribution
Habits to Keep Linux Resource Usage Low: Linux is great at using your computer efficiently, but sometimes you might find yourself on a slower or older machine
5 Linux Features That Make It More Productive Than Windows or Mac: Most people think of Windows or macOS for productivity, but Linux desktops offer powerful customization that can boost your efficiency
Auto-Match Ubuntu’s Accent Colour to Your Wallpaper: For a pinch more personalisation of Ubuntu 24.10 check out Auto Accent Colour
veraPDF – industry supported PDF/A validation: veraPDF is a purpose-built, open source, file-format validator covering all PDF/A and PDF/UA parts and conformance levels
Review: Bazzite 40, Playtron OS Alpha 1, Tucana Linux 3.1: This week I decided to take a look at a few gaming-focused distributions on the DistroWatch waiting list
This Week in KDE Apps: Adopt an App: Welcome to a new issue of "This Week in KDE Apps"! Every week we cover as much as possible of what's happening in the world of KDE apps
Linux 6.12-rc7: No big surprises
Hyprland 0.45: Smoother Rounding, New Configs, and Key Fixes: Hyprland 0.45, a tiling Wayland compositor, has been released with smoother edges, bug fixes, and breaking changes to optimize your experience
Today in Techrights: Some of the latest articles

Tux Machines

Other Sites

Security and FUD (UPDATED)

WordPress Security Alert: New Linux Malware Exploiting Over Two Dozen CMS Flaws [Ed: This is a WordPress plugins issue (not WordPress, not Linux); calling this Linux is like calling an Adobe Photoshop bug a "Windows bug"; WordPress runs not only on Linux]

Other Recent Tux Machines' Posts