Recent Changes - Search:
NTLUG

Linux is free.
Life is good.

Linux Training
10am on Meeting Days!

1825 Monetary Lane Suite #104 Carrollton, TX

Do a presentation at NTLUG.

What is the Linux Installation Project?

Real companies using Linux!

Not just for business anymore.

Providing ready to run platforms on Linux

Show Descriptions... (Show All) (Single Column)

LinuxSecurity - Security Advisories





  • Mageia 2020-0389: freetype2 security update>
    A heap buffer overflow has been found in freetype2 before 2.10.4. Malformed TTF files with PNG sbit glyphs can cause a heap buffer overflow in Load_SBit_Png as libpng uses the original 32-bit values, which are saved in png_struct. If the original width and/or height are greater than 65535, the allocated buffer won't be able to fit the


  • Mageia 2020-0388: tigervnc security update>
    In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception. (CVE-2020-26117)


LXer Linux News

  • Dual-GbE mesh networking board features 802.11ax
    Wally’s “DR6000” mesh router board runs on Qualcomm’s quad -A53 IPQ6000 SoC with 2x GbE ports, dual-band concurrent 802.11ax (WiFi 6), and micro-USB and serial connections. Wally’s Communications, which has launched router boards such as the DR6018, based on the Qualcomm-Atheros IPQ6018, has returned with a DR6000 model based on a similarly quad-core, Cortex-A53 IPQ6000 […]



  • How to Install Roundcube Webmail on Ubuntu 20.04
    In this tutorial, we will be showing you how to install the Roundcube Webmail email client on our latest Ubuntu 20.04 VPS, LTS release (Focal Fossa). Roundcube is a free and open source webmail client.


  • Manage your Linux backups with Rdiffweb
    The Rdiffweb app offers a simplified web interface for easy management of rdiff-backup, software that offers robust automatic backups from one Linux computer (client) to another Linux computer (server) using secure shell (SSH), thus maximizing your disk space. The free, open source online tool helps save time when accessing rdiff-backup archives, recovering data, and managing administrators.read more



  • Customizable carrier boards showcase Raspberry Pi CM4
    Gumstix has launched six carriers featuring the Raspberry Pi CM4, some of which offer Google’s Edge TPU. A CM4 Dev Board is joined by boards for robotics, Pixhawk drones, PoE smart imaging, and conversion to CM3-based carriers. Long-time embedded Linux vendor Gumstix, which is now owned by Altium, has jumped all over the new Raspberry […]


  • Install Lutris on Manjaro
    Lutris is a game manager that can be run on Manjaro and other Linux distributions, and it does its job incredibly well. It has thousands of games in its catalog and works with very little fuss, allowing you to install games from the cloud and keep them up to date. Most games are "one click install" titles, meaning that you shouldn't have to worry about fiddling with extra configuration to get a Windows game working on Linux. It just works.


  • Top 10 Features of Ubuntu 20.10 Groovy Gorilla
    It's finally the time for the release of Ubuntu 20.10 Groovy Gorilla this week. And here I put together a list of the top 10 features of Ubuntu 20.10 which you could read before you try your hands on the actual iso.


  • My top 7 functions in Rust
    I've written a few articles about Rust now, including (most recently) My top 7 keywords in Rust, in which I promised a follow-up article. The keywords article talked about keywords from the std library, and in this article, I'm going to look at some functions from the Rust prelude.read more


  • mpz – open source music player
    mpz is a music player that’s designed for large, locally stored, music collections. Here’s our take on this open source software.


Digg Top Stories





  • Bruce Springsteen Is Living In The Moment
    "Letter to You," his new album with the E Street Band, is built on lessons and skills accumulated in the past. But the Boss is focused on where he stands now — and where he's going next.







Slashdot

  • Google Locks In Search Monopoly With $1 Billion To Carriers
    Google doled out more than $1 billion last year to U.S. mobile carriers to distribute its search engine, according to the landmark antitrust lawsuit from the Justice Department. From a report: The DOJ suit, filed Tuesday, details several methods Google uses to make its search the default service on browsers, smartphones and other devices. That includes deals with Apple and Android manufacturers such as Samsung Electronics. Google also cut hefty revenue sharing agreements with major mobile carriers to box out competing search engines and browsers, the Justice Department said. In exchange for placing Google search as the default on phones, carriers received a portion of search advertising revenue. "If a carrier or manufacturer does not renew its revenue sharing agreement with Google, the distributor loses out on revenue share not only for new mobile devices but also for the phones and tablets previously sold and in the hands of consumers," the Justice Department said in the suit. "This provision is punitive to the carrier or manufacturer and helps to ensure that carriers and manufacturers will not stray from Google."
          

    Read more of this story at Slashdot.


  • Backblaze Hard Drive Stats Q3 2020
    Backblaze's Q3 2020 hard drive stats: As of September 30, 2020, Backblaze had 153,727 spinning hard drives in our cloud storage ecosystem spread across four data centers. Of that number, there were 2,780 boot drives and 150,947 data drives. This review looks at the Q3 2020 and lifetime hard drive failure rates of the data drive models currently in operation in our data centers and provides a handful of insights and observations along the way. [...] There are several models with zero drive failures in the quarter. That's great, but when we dig in a little we get different stories for each of the drives.   The 18TB Seagate model (ST18000NM000J) has 300 drive days and they've been in service for about 12 days. There were no out of the box failures which is a good start, but that's all you can say.  The 16TB Seagate model (ST16000NM001G) has 5,428 drive days which is low, but they've been around for nearly 10 months on average. Still, I wouldn't try to draw any conclusions yet, but a quarter or two more like this and we might have something to say. The 4TB Toshiba model (MD04ABA400V) has only 9,108 drive days, but they have been putting up zeros for seven quarters straight. That has to count for something.  The 14TB Seagate model (ST14000NM001G) has 21,120 drive days with 2,400 drives, but they have only been operational for less than one month. Next quarter will give us a better picture.  The 4TB HGST (model: HMS5C4040ALE640) has 274,923 drive days with no failures this quarter.
          

    Read more of this story at Slashdot.


  • Mysterious Hackers Donating Stolen Money
    A hacking group is donating stolen money to charity in what is seen as a mysterious first for cyber-crime that's puzzling experts. smooth wombat writes: Darkside hackers claim to have extorted millions of dollars from companies, but say they now want to "make the world a better place." In a post on the dark web, the gang posted receipts for $10,000 in Bitcoin donations to two charities. One of them, Children International, says it will not be keeping the money. The move is being seen as a strange and troubling development, both morally and legally. In the blog post on 13 October, the hackers claim they only target large profitable companies with their ransomware attacks. The attacks hold organisations' IT systems hostage until a ransom is paid. They wrote: "We think that it's fair that some of the money the companies have paid will go to charity. No matter how bad you think our work is, we are pleased to know that we helped changed someone's life. Today we sended (sic) the first donations." The cyber-criminals posted the donation along with tax receipts they received in exchange for the 0.88 Bitcoin they had sent to two charities, The Water Project and Children International.
          

    Read more of this story at Slashdot.


  • NASA's OSIRIS-REx Will Land On an Asteroid To Bring Home Rocks and Dust
    Imagine parallel parking a 15-passenger van into just two to three parking spaces surrounded by two-story boulders. On Oct. 20, a University of Arizona-led NASA mission 16 years in the making will attempt the astronomical equivalent more than 200 million miles away. A NASA mission called OSIRIS-REx will soon attempt to touch the surface of an asteroid and collect loose rubble. bobbied writes: OSIRIS-REx is the United States' first asteroid sample return mission, aiming to collect and carry a pristine, unaltered sample from an asteroid back to Earth for scientific study. The spacecraft will attempt to touch the surface of the asteroid Bennu, which is hurtling through space at 63,000 miles per hour. If all goes according to plan, the spacecraft will deploy an 11-foot-long robotic arm called TAGSAM -- Touch-and-Go Sample Acquisition Mechanism -- and spend about 10 seconds collecting at least two ounces of loose rubble from the asteroid. The spacecraft, monitored remotely by a team of scientists and engineers, will then stow away the sample and begin its return to Earth, scheduled for 2023. You can watch this sample collection "Touch-And-Go" maneuver Oct. 20 at 5 p.m. EDT/ 2 p.m. PDT on NASA Television and the agency's website. As senior vice president for research and innovation at UArizona and a mechanical engineer with a long career in space systems engineering, I believe this milestone for OSIRIS-REx captures perfectly the spirit of research and innovation, the careful balance of problem-solving and perseverance, of obstacle and opportunity.
          

    Read more of this story at Slashdot.


  • Seven Mobile Browsers Vulnerable To Address Bar Spoofing Attacks
    In a report published today by cyber-security firm Rapid7, the company said it worked with Pakistani security researcher Rafay Baloch to disclose ten new address bar spoofing vulnerabilities across seven mobile browser apps. From a report: Impacted browsers include big names like Apple Safari, Opera Touch, and Opera Mini, but also niche apps like Bolt, RITS, UC Browser, and Yandex Browser. The issues were discovered earlier this year and reported to browser makers in August. The big vendors patched the issues right away, while the smaller vendors didn't even bother replying to the researchers, leaving their browsers vulnerable to attacks. "Exploitation all comes down to 'JavaScript shenanigans'," said Rapid7's Research Director, Tod Beardsley. The Rapid7 exec says that by messing with the timing between when the page loads and when the browser gets a chance to refresh the address bar URL, a malicious site could force the browser to show the wrong address.
          

    Read more of this story at Slashdot.


  • Sweden Bans Chinese Telecoms Huawei and ZTE From 5G Networks
    Sweden banned Chinese telecom giants Huawei and ZTE from its 5G mobile networks on Tuesday, citing China's "extensive intelligence gathering and theft of technology." From a report: Since the Trump administration announced its own ban last year, the U.S. government has increasingly pressured allies to follow its lead amid growing tensions between the West and China. In July, the United Kingdom became the first European country to announce plans to exclude Huawei from its networks by 2027. The Swedish government has given telecom companies until 2025 to remove Huawei and ZTE equipment from their infrastructure. "China is one of the biggest threats to Sweden," said Klas Friberg, head of Sweden's security services. He said Beijing's "extensive intelligence gathering and theft of technology, research and development" is key to its economic and military development, according to the Financial Times. "This is what we must consider when building the 5G network of the future. We cannot compromise with Sweden's security."
          

    Read more of this story at Slashdot.


  • Google Photos Revives Its Prints Subscription Service
    Google Photos is reviving its photo printing subscription service and introducing same-day prints. The company earlier this year had briefly tested a new program that used A.I. to suggest the month's 10 best photos, which were then shipped to your home automatically. But Google ended the test on June 30. From a report: During the trial, Google had offered users a $7.99 per month subscription that would automatically select 10 photos from one of three themes, including people and pets, landscapes, or "a little bit of everything" mix. The 4x6 photos were printed on matte, white cardstock with a 1/8-inch border. The new subscription, launching soon, leverages feedback from the early tests to now give users more control over which prints they receive and how they look. It also drops the price to $6.99 per month, including shipping and before tax. With the new Premium Print Series, as the subscription is called, Google Photos will use machine learning techniques to pick 10 of your recent photos to print. But users can edit the photo selection and they can choose either a matte or glossy finish or add a border before the photos ship.
          

    Read more of this story at Slashdot.


  • Impossible Foods Is Now Developing a Plant-Based Alternative To Cow's Milk
    From a report: There's a myriad of reasons to replace cow's milk with alternatives like nut milks, oat milk, or soy milk, but for those who enjoy the experience of consuming animal-sourced dairy products, the alternatives just aren't the same. So Impossible Foods, makers of the Impossible Burger and other plant-based meat alternatives, are working on another food replacement that looks, tastes, and behaves like cow's milk. During a virtual press conference this morning where Impossible Foods revealed it was doubling the size of its Silicon Valley-based research and development team over the next year while also launching what it calls the "Impossible Investigator project" to entice leading scientists to contribute to its cause, the company also gave the world its first look at its new plant-based cow's milk alternative that hasn't yet been dubbed with a catchy marketing name. (Although you can probably safely assume that Impossible Milk is an option being considered.) Like the company's flagship Impossible Burgers, Impossible Foods' new milk alternative is made with stable proteins sourced from plants. The idea is that it not only properly mixes with other liquids (like hot coffee) without forming precipitates that can alter the texture and drinking experience, but that it can also be whipped into a foam and used as an ingredient in other food products without having to modify a recipe as is often required with other substitutes.
          

    Read more of this story at Slashdot.


  • Intel Agrees To Sell Storage Unit To SK Hynix for $9 Billion
    Intel has agreed to sell its Nand memory unit to South Korea's SK Hynix for about $9 billion, a deal that allows the U.S. chipmaker to concentrate on its main business while shoring up the Asian company's position in a booming market. From a report: The chipmaker will pay 10.3 trillion won for the Intel unit, which makes flash memory components for computers and other devices. The acquisition, which will take place in stages through 2025, includes Intel's solid-state drive, Nand flash and wafer businesses, as well as a production facility in the northeastern Chinese city of Dalian. The deal should shore up Hynix's position in a business that's boomed after Covid-19 drove demand for the chips used in everything from Apple's iPhones to data centers. It whittles down another player in an industry the Korean company dominates alongside Samsung Electronics and Micron Technology, potentially buoying Nand flash prices.
          

    Read more of this story at Slashdot.


  • NASA and Nokia To Install 4G on Lunar Surface
    With competition among Earth's telecoms providers as fierce as ever, equipment maker Nokia has announced its expansion into a new market, winning a deal to install the first cellular network on the moon. From a report: The Finnish equipment manufacturer said it was selected by NASA to deploy an "ultra-compact, low-power, space-hardened" wireless 4G network on the lunar surface, as part of the US space agency's plan to establish a long-term human presence on the moon by 2030. The $14.1m contract, awarded to Nokia's US subsidiary, is part of Nasa's Artemis programme which aims to send the first woman, and next man, to the moon by 2024. The astronauts will begin carrying out detailed experiments and explorations which the agency hopes will help it develop its first human mission to Mars. Nokia's network equipment will be installed remotely on the moon's surface using a lunar hopper built by Intuitive Machines in late 2022, Nokia said. "The network will self-configure upon deployment," the firm said in a statement, adding that the wireless technology will allow for "vital command and control functions, remote control of lunar rovers, real-time navigation and streaming of high definition video."
          

    Read more of this story at Slashdot.


The Register











Page last modified on November 02, 2011, at 09:59 PM