"Reacting to the surging popularity of the Docker virtualization
technology, Red Hat has customized a version of its Linux distribution
to run Docker containers. The Red Hat Enterprise Linux 7 Atomic Host
strips away all the utilities residing in the stock distribution of
Red Hat Enterprise Linux (RHEL) that aren't needed to run Docker
containers. Removing unneeded components saves on storage space, and
reduces the time needed for updating and booting up. It also provides
fewer potential entry points for attackers."
-- source: http://hardware.slashdot.org/story/15/03/05/2240245
Cheers, Peter
--
Peter Reutemann, Dept. of Computer Science, University of Waikato, NZ
http://www.cms.waikato.ac.nz/~fracpete/ Ph. +64 (7) 858-5174
"Jeremy Allison - Sam writes with this excerpt from a news release
from the Software Freedom Conservancy:
Software Freedom Conservancy announces today Christoph Hellwig's
lawsuit against VMware in the district court of Hamburg in Hamburg,
Germany. This is the regretful but necessary next step in both Hellwig
and Conservancy's ongoing effort to convince VMware to comply properly
with the terms of the GPLv2, the license of Linux and many other Open
Source and Free Software included in VMware's ESXi products.
Serge Wroclawski points out the SFC's technical FAQ about the suit. One nugget:
This case is specifically regarding a combined work that VMware
allegedly created by combining their own code (“vmkernel”) with
portions of Linux's code, which was licensed only under GPLv2. As
such, this, to our knowledge, marks the first time an enforcement case
is exclusively focused on this type of legal question relating to GPL"
-- source: http://linux.slashdot.org/story/15/03/05/1721231
Cheers, Peter
--
Peter Reutemann, Dept. of Computer Science, University of Waikato, NZ
http://www.cms.waikato.ac.nz/~fracpete/ Ph. +64 (7) 858-5174
"For the nth time in the last couple of years, security experts are
warning about a new Internet-scale vulnerability, this time in some
popular SSL clients. The flaw allows an attacker to force clients to
downgrade to weakened ciphers and break their supposedly encrypted
communications through a man-in-the-middle attack. Researchers
recently discovered that some SSL clients, including OpenSSL, will
accept weak RSA keys–known as export-grade keys–without asking for
those keys. Export-grade refers to 512-bit RSA keys, the key strength
that was approved by the United States government for export overseas.
This was an artifact from decades ago and it was thought that most
servers and clients had long ago abandoned such weak ciphers. The
vulnerability affects a variety of clients, most notably Apple's
Safari browser."
-- source: http://it.slashdot.org/story/15/03/03/2036241
Cheers, Peter
--
Peter Reutemann, Dept. of Computer Science, University of Waikato, NZ
http://www.cms.waikato.ac.nz/~fracpete/ Ph. +64 (7) 858-5174
"Linux has been able do multipath routing for a long time: it means
being able to have routes with multiple gateways and to use them in a
(weighted) round-robin fashion. But Linux is missing a tool to
actively monitor the state of internet uplinks and change the routing
accordingly. Without it, from a LAN perspective, it's like having a
RAID-0: just one uplink goes down and all of your LAN-to-WAN traffic
goes down too. Documentation and examples on the subject are lacking;
existing solutions are few and deeply integrated in firewall/routing
specific distributions. To address these issues, a new standalone tool
was just released: Fault Tolerant Router. It also includes a complete
(iptables + ip policy routing) configuration generator."
-- source: http://linux.slashdot.org/story/15/03/03/1910206
Cheers, Peter
--
Peter Reutemann, Dept. of Computer Science, University of Waikato, NZ
http://www.cms.waikato.ac.nz/~fracpete/ Ph. +64 (7) 858-5174
Came across this article from a decade ago
<https://www.samba.org/samba/news/articles/low_point/tale_two_stds_os2.html>
about the evolution of the POSIX and Win32 standards from the viewpoint
of a veteran who earned his scars in the trenches.
While POSIX got one or two things spectacularly wrong (e.g. the
disaster that is file locking), it got a lot of things right (e.g.
abstracting data types for file offsets/sizes, timestamps etc).
Wonder why WINE has taken so long to get to where it is? It’s because
nobody can be quite sure they have flushed out every last wrinkle of
the behaviour of every Win32 API call.
"After two years of hard work (and much to the dismay of naysayers who
worried the project has been abandoned), the Xfce team has announced
the release of Xfce 4.12. Highlights include improvements to the
window switcher dialog, intelligent hiding of the panel, new wallpaper
settings, better multi-monitor support, improved power settings,
additions to the file manager, and a revamped task manager. Here is a
quick tour, the full changelog, and the download page. I have been
running it since Xubuntu 15.04 beta 1 was released two days ago. It is
much improved over 4.10, and the new additions are great."
-- source: http://linux.slashdot.org/story/15/03/01/0558259
Cheers, Peter
--
Peter Reutemann, Dept. of Computer Science, University of Waikato, NZ
http://www.cms.waikato.ac.nz/~fracpete/ Ph. +64 (7) 858-5174
Who knew? Android doesn't play nicely with a 2nd display. However
investigation continues. Some say the internal display should be
turned off, before the outside screen will go. Watch this space.
Meanwhile some may like to read an interview with English as not the
primary language featuring Chih-Wei Huang, main man of Android-x86.
Snip >
Why Android-x86?
Runs on PC(x86).
Original Android runs on ARM.
Android - Teoreticaly could run on every present and future device,
PS4 and Xbox one included (in pure theory).
Is everytime better develop for only one OS (even with some platform
differences), that for bunch of them.
Mac OS or iOS are too closed and fixed on Apple device and its
unlikely to change it.
Linux market is realy fragmented and its development is relatively slow.
Android - is without doubt OS with faster development speed and it counts.
Android is open and free.
Today, when i can buy good living room pc for 200$ i realy dont wan to
pay next 100 bucks to Microsoft for crippled OEM licence, or 200$ for
retail (HW independed licence) .... > How many of users know you think
that tried Android-x86, at least through live distro and how many
installed it into physical computer? Do you have some stats about
usage?
I don't have the stats and I don't really care about that. Just
checked. The 4.4-RC1 release has 584,441 downloads and the 4.3-test
release has 1,365,182 downloads.
> Are you in contact with Google? Do you know why Google isn't
developing Android-x86 for desktops itself? Is affair of Microsoft or
something else? ChromeOS looks like duplicity.
I have no official contact window of Google. But I have many friends
in Google including the android team. I'll also contact Google android
engineers directly for issues clarification or patches submission. I
don't know Google's plan. But as you said, ChromeOS is probably the
right one for its desktop roadmap.
This is a common guess. < stop snipping
http://www.gamasutra.com/blogs/RuthanielVandenNaar/20140612/219170/Current_…
For a while now, Debian has been running a project to try to allow
anyone to independently confirm that a particular Debian package was
indeed built from a particular set of sources, by being able to
reproduce the exact build steps themselves. (The security rationale for
wanting to do so should be obvious.) As you can imagine, this is
seriously non-trivial to achieve, since the least little difference in
the version of your compilers or libraries can cause the binaries to
differ, maybe not in any important way, but the idea is to end up with
no differences at all.
The Register has a report on the status of the project here
<http://www.theregister.co.uk/2015/02/23/debian_project/>.
More background here
<https://lists.debian.org/debian-devel-announce/2015/02/msg00007.html>.
"The Linux 3.x kernel family is no more. Long Live Linux 4!
The Linux 3.x kernel family first officially debuted
<http://www.datamation.com/open-source/linux-3.0-debuts-with-xen-integration…>on
July 22, 2011. Linux 3.0 was the first major version change for Linux since
the 2.6 kernel debuted in December of 2003. While Linux 2.6 was a major
milestone that signified a break with the past, Linux 3.0 really was just
the renumbered Linux 2.6.40 kernel. In the same manner the Linux 4.0 kernel
is the continuation of Linux 3.x and is the renamed Linux 3.20."
