Feed aggregator

Ubuntu and CentOS Are Undoing a GNOME Security Feature

Slashdot - Mon, 08/27/2018 - 12:41
An anonymous reader writes: Current versions of Ubuntu and CentOS are disabling a security feature that was added to the GNOME desktop environment last year. The feature's name is Bubblewrap, which is a sandbox environment that the GNOME Project added to secure GNOME's thumbnail parsers in July 2017, with the release of GNOME 3.26. In recent years, security researchers have proven that thumbnail parses can be an attack vector [1, 2, 3]. Ubuntu Security Tech Lead Alex Murray said the Ubuntu team chose to disable Bubblewrap inside Ubuntu because they did not have the time to perform a security audit. Murray blamed the many CPU bugs (Spectre, Meltdown, etc.), which kept the team busy and prevented them to audit the feature.

Read more of this story at Slashdot.

EMC adopts cloudy and VMware-friendly kit at VMworld Vegas shindig

TheRegister - Mon, 08/27/2018 - 12:31
Data Domain and VxRAIL to the fore against a multi-cloud backdrop

VMworld US EMC has been singing off a multi-cloud and hyper-converged songsheet at sibling VMware’s Glitter Gulch VMworld event.…

Smart Tags Add Touch Controls To Ordinary Objects

Slashdot - Mon, 08/27/2018 - 12:01
The idea of an inexpensive tag capable of transforming any object into a smart device is not necessarily new. But most cheap smart tags that lack batteries or complicated electronics can only perform simple functions, such as passively storing and sharing identifying information about an object. A new technology promises to change that. From a report: By comparison, new LiveTag technology allows for interactive controls or keypads that can stick onto objects, walls, or even clothing, and let people remotely operate music players or receive hydration reminders based on the amount of liquid remaining in a water bottle. "These tags can sense the status of everyday objects and humans, and also sense human interactions with plain everyday objects," says Xinyu Zhang, assistant professor in electrical and computer engineering at the University of California, San Diego. Zhang and his colleagues at the University of Wisconsin -- Madison developed the LiveTag technology after brainstorming about ways to easily incorporate ordinary objects into the Internet of Things without adding costly hardware and batteries. Their LiveTag designs and early prototypes are detailed in a paper [PDF] posted on the University of Wisconsin website. The basic LiveTag technology seems deceptively simple: copper foil printed onto lightweight paper-like materials without any batteries or discrete electronic components. The key is in the geometric copper foil patterns that are designed to absorb Wi-Fi signals of specific frequencies, even as the overall tag generally reflects 2.4/5 GHz signals from nearby Wi-Fi device transmitters.

Read more of this story at Slashdot.

How to Install Hubzilla on Ubuntu 18.04 LTS

LXer - Mon, 08/27/2018 - 11:33
Hubzilla is a free and open source platform for creating interconnected websites featuring a decentralized identity, communications, and permissions framework built using common web server technology. In this tutorial, I will explain how to install Hubzilla on Ubuntu 18.04 server.

Scientists Warn the UN of Capitalism's Imminent Demise

Slashdot - Mon, 08/27/2018 - 11:22
Capitalism as we know it is over, an anonymous reader writes. So suggests a new report commissioned by a group of scientists appointed by the UN Secretary-General. From a report: The main reason? We're transitioning rapidly to a radically different global economy, due to our increasingly unsustainable exploitation of the planet's environmental resources. Climate change and species extinctions are accelerating even as societies are experiencing rising inequality, unemployment, slow economic growth, rising debt levels, and impotent governments. Contrary to the way policymakers usually think about these problems, the new report says that these are not really separate crises at all. Rather, these crises are part of the same fundamental transition to a new era characterized by inefficient fossil fuel production and the escalating costs of climate change. Conventional capitalist economic thinking can no longer explain, predict, or solve the workings of the global economy in this new age, the paper says [PDF].

Read more of this story at Slashdot.

Top 10 Raspberry Pi blogs to follow

LXer - Mon, 08/27/2018 - 10:19
There are plenty of great Raspberry Pi fan sites, tutorials, repositories, YouTube channels, and other resources on the web. Here are my top 10 favorite Raspberry Pi blogs, in no particular order.

How to Enable/Disable Automatic Login in Ubuntu 18.04 LTS

LXer - Mon, 08/27/2018 - 09:04
This article shows you how to enable/disable automatic login to your Ubuntu system through the command line and through the graphical interface.

Org mode – Life in Plain Text

LXer - Mon, 08/27/2018 - 07:50
Org mode is a mode for the Emacs text editor. It’s designed to keep notes, maintain TODO lists, plan projects, and author documents with a fast and effective plain-text system. It’s particularly strong at scheduling tasks.

An introduction to diffs and patches

LXer - Mon, 08/27/2018 - 06:36
If you’ve ever worked on a large codebase with a distributed development model, you’ve probably heard people say things like “Sue just sent a patch,” or “Rajiv is checking out the diff.” Maybe those terms were new to you and you wondered what they meant. Open source has had an impact here, as the main development model of large projects from Apache web server to the Linux kernel have been “patch-based” development projects throughout their lifetime.read more

VMware AWS cloud goes down... under, launches in Asia-Pacific, touts devops-ish tools, etc

TheRegister - Mon, 08/27/2018 - 06:00
Your quick announcement summary

VMworld US The VMware world's VMecca – VMworld 2018 US – is upon us this week in Las Vegas.…

Everything You Need to Know about Linux Containers, Part II: Working with Linux Containers (LXC)

Linux Journal - Mon, 08/27/2018 - 05:30
by Petros Koutoupis

Part I of this Deep Dive on containers introduces the idea of kernel control groups, or cgroups, and the way you can isolate, limit and monitor selected userspace applications. Here, I dive a bit deeper and focus on the next step of process isolation—that is, through containers, and more specifically, the Linux Containers (LXC) framework.

Containers are about as close to bare metal as you can get when running virtual machines. They impose very little to no overhead when hosting virtual instances. First introduced in 2008, LXC adopted much of its functionality from the Solaris Containers (or Solaris Zones) and FreeBSD jails that preceded it. Instead of creating a full-fledged virtual machine, LXC enables a virtual environment with its own process and network space. Using namespaces to enforce process isolation and leveraging the kernel's very own control groups (cgroups) functionality, the feature limits, accounts for and isolates CPU, memory, disk I/O and network usage of one or more processes. Think of this userspace framework as a very advanced form of chroot.

Note: LXC uses namespaces to enforce process isolation, alongside the kernel's very own cgroups to account for and limit CPU, memory, disk I/O and network usage across one or more processes.

But what exactly are containers? The short answer is that containers decouple software applications from the operating system, giving users a clean and minimal Linux environment while running everything else in one or more isolated "containers". The purpose of a container is to launch a limited set of applications or services (often referred to as microservices) and have them run within a self-contained sandboxed environment.

Note: the purpose of a container is to launch a limited set of applications or services and have them run within a self-contained sandboxed environment.

Figure 1. A Comparison of Applications Running in a Traditional Environment to Containers

This isolation prevents processes running within a given container from monitoring or affecting processes running in another container. Also, these containerized services do not influence or disturb the host machine. The idea of being able to consolidate many services scattered across multiple physical servers into one is one of the many reasons data centers have chosen to adopt the technology.

Container features include the following:

Go to Full Article

Wi-Fi Not Working on Ubuntu? Here’s How to Fix it

LXer - Mon, 08/27/2018 - 04:41
You might have issues connecting to Wi-Fi in Ubuntu. This can be due to a hardware or software problem. Learn how to fix the Wi-Fi not working issue in Ubuntu.

Voting machine maker vows to step up security, Fortnite bribes players to do 2FA – and more

TheRegister - Mon, 08/27/2018 - 03:51
Plus: Feds break up another 'dark-net drugs op'

Roundup Summer rolls on, Reg vultures are making the most of their hols before the September rush hits, and in the past week, we saw Lazarus malware targeting Macs, Adobe scrambling to get an emergency patch out, and Democrats losing their minds over a simple training exercise.…

Linus Torvalds Kicks Off Development of Linux 4.19 Kernel, First RC Is Out Now

LXer - Mon, 08/27/2018 - 02:47
Linus Torvalds has officially kicked off the development cycle of the upcoming Linux 4.19 kernel series today by releasing the first Release Candidate (RC).

Experimental 'insult bot' gets out of hand during unsupervised weekend

TheRegister - Mon, 08/27/2018 - 02:03
Creators ticked off for running CPU flat out over the break

Who, Me? It's that time of the week again, where Reg readers 'fess up to IT errors and jokes that went awry, in the hope of some catharsis.…

Why Don't We Care About The Rotten Tomatoes Scores Of TV Shows?

Slashdot - Mon, 08/27/2018 - 01:00
Why do we never utter sentences like "'Cobra Kai' has been certified 100% fresh on Rotten Tomatoes?" or "'Stranger Things'" was rated 8.9 out of 10 on IMDb"? It's not because the reviews of TV shows aren't aggregated by these websites -- they are. Contrary to what you might think of IMDb, given that its name is Internet Movie Database, TV shows also occupy an essential, if relatively smaller, place than movies there. And the same thing goes for Rotten Tomatoes. An exploration: So if the lack of availability of TV rating sites isn't the issue, why is it that we hardly use critical or audience scores as a way to measure the quality of a TV show to our peers? Here are a few of my theories: There Are Too Many Good Shows Out There It's an odd dilemma to have, but it's true that when it comes to TV shows, there are so many high-quality programs for us to consume. People have been talking about Peak TV for a few years now, and a quick scroll through Rotten Tomatoes' website would seem to confirm that we've been offered an embarrassment of riches. [...] The Price Of Admission Is Higher For Movies Another reason why viewers might care less about a TV show's critical scores than a film's might be the high price of moviegoing. Tickets in metropolitan areas in the US can be extremely expensive, costing up to $25.49 if you're going for an IMAX screening in New York City unless you're subscribed to a service like Moviepass or AMC's new subscription program. Networks And Platforms Market Emmys More Than Critical Scores Compared to critical scores on review websites, networks and platforms seem to place more stock on the Emmys when it comes to the marketing of TV shows. Despite the fact that the Emmy, arguably the best TV award, might not offer shows as big of a ratings boost as it did decades ago, the awards still play a crucial part in helping create social buzz around television shows, especially for shows with smaller audiences.

Read more of this story at Slashdot.

Getting started with Sensu monitoring

LXer - Mon, 08/27/2018 - 00:53
Sensu is an open source infrastructure and application monitoring solution that monitors servers, services, and application health, and sends alerts and notifications with third-party integration. Written in Ruby, Sensu can use either RabbitMQ or Redis to handle messages. It uses Redis to store data.

How to create a hot standby with PostgreSQL

LXer - Sun, 08/26/2018 - 22:58
PostgreSQL is an open source RDBMS (Relational DataBase Management System), and with any databases, the need may arise to scale and provide HA (High Availability). A single system providing a service is always a possible single point of failure - and even with virtual systems, there may be a time when you can't add more resources to a single machine to cope with the ever-increasing load. There also may be a need to another copy of the database contents that can be queried for long-running analytics, that are not fit to be run on the highly transaction-intensive production database. This copy could be a simple restore from the most recent backup on another machine, but the data would be outdated as soon as it is restored.

Mass Shooting Reported at Madden Video Game Tournament in Florida

Slashdot - Sun, 08/26/2018 - 22:00
Multiple people on live streams and social media reported a mass shooting at a Madden NFL 19 tournament in Jacksonville, Florida, this morning. The Jacksonville County Sheriff's Office confirmed that law enforcement was en route to the scene but had no further information early this afternoon. From a report: In the video, two competitors are playing when someone starts screaming off camera. As the first of nine shots break out, they abandon their stations and others are heard fleeing. Then a man is heard crying out, "What did he shoot me with?" Three more shots are fired and screaming can be heard. This weekend at Jacksonville Landing downtown was the first of four qualifier events for the Madden Classic series sponsored by EA Sports. CNN: "Multiple fatalities at the scene, many transported. #TheLandingMassShooting," according to Jacksonville Sheriff's twitter page, which urged people to "stay far away from the area" as the area is not safe at this time. "One suspect is dead at the scene, unknown at this time if we have a second suspect. Searches are being conducted," according to another tweet from the sheriff's office In a statement issued moments ago, EA Sports Madden NFL said, "This is a horrible situation, and our deepest sympathies go out to all involved." Top competitor Drini Gjoka, who was at the event and reported the terrifying scene, said, "The tourney just got shot up. Im leavinng and never coming back. I am literally so lucky. The bullet hit my thumb. I will never take anything for granted ever again. Life can be cut short in a second. Update: LA Times reports that the shooter was a gamer who was competing in the tournament and lost, according to Steven "Steveyj" Javaruski, one of the competitors.

Read more of this story at Slashdot.

What was the most important moment in the history of Linux?

LXer - Sun, 08/26/2018 - 21:04
Getting to where it is today was no small feat for the little project that Linus Torvalds announced to the world on August 25, 1991, with this newsgroup post:Hello everybody out there using minix -read more
Syndicate content