🎁 NetBSD turns 30 and releases version 10
「 Among the highlights are improved SMP performance, faster virtual memory, an improved scheduler, which is aware of performance and efficiency cores, much improved cryptography and security including WireGuard VPN support and support for ARMv8-A security features, and wide-ranging improvements to the system's code sanitizers, testing, and QA 」
https://www.theregister.com/2024/04/17/30yo_netbsd_releases_v10/
🍁 Registration for #BSDCan 2024 is now open!
The 20th BSDCan will include tutorials on PF, running your own email, TLS, BGP, and NSH, as well as two days of talks on everything from systems administration, networking, and programming.
Register here: https://www.bsdcan.org/2024/registration.php
#FreeBSD #RunBSD #opensource #softwaredevelopment
This weekend we are doing our annual FrOSCon planning workshop. As in previous years, it will take place at @linuxhotel in Essen.
We'll be using the weekend to discuss the FrOSCon in a larger group (spoiler: there are exciting construction sites in the H-BRS again) and work on todos in small groups.
If you have any questions, information or suggestions for this FrOSCon, just write us a message!
Dieses Wochenende halten wir unseren jährlichen FrOSCon Planungsworkshop ab. Dieser findet wie auch die letzten Jahre im @linuxhotel in Essen statt.
Wir nutzen das Wochenende um in größerer Runde Diskussionspunkte (Spoiler: Es gibt wieder spannende Baustellen in der H-BRS) um die FrOSCon zu klären und in kleinen Gruppen Todos abzuarbeiten.
Wenn ihr Fragen, Tipps oder Anregungen für diese FrOSCon habt, schreibt uns einfach eine Nachricht!
Our first weekly will start on the 25th, April 2024 at 7 PM (GMT+2).
You can find all the details on the #BSDCafe wiki:
https://wiki.bsd.cafe/docs:weekly-bsdpub
For the first one, I already created a small agenda (https://wiki.bsd.cafe/docs:weekly-bsdpub-meeting-minutes-2024-04-25). You are highly encouraged to modify and extend this, as well as upcoming agendas!
Overview:
Day: Thursdays (weekly)
Time: 7 PM - 8 PM (GMT +2)
Where: https://meet.gyptazy.ch/BSDPub (Jitsi)
Infos: https://wiki.bsd.cafe/docs:weekly-bsdpub
Agenda: https://wiki.bsd.cafe/docs:weekly-bsdpub-meeting-minutes-2024-04-25
Info: No recordings, no deep tech dives (keep it simple, we have calls for the details, no pressures to anyone, have fun and enjoy)
When I started the poll to ask for interests in such a meeting I wasn’t sure that even more than 5 people would be interested. I’m happy to see this amount of interested BSD users. I’m aware of the different timezones and it might make sense to have a second timeslot. This one mostly covers the European and near-east users. I’m happy to hear suggestions regarding preferred timeslots for the US, Asia,… so far, I’m happy to see at least a few of you next Thursday in the call!
#FreeBSD #OpenBSD #NetBSD #helloSystem #BSDCafe #BSDNetwork #OpenSource #Solaris #illumos #openindiana #community #meeting #havefun #fun #BSDPub
#Flatpak has been patched today against the CVE-2024-32462 security issue, preventing a sandbox escape where a malicious or compromised app could ask xdg-desktop-portal to generate a .desktop file with access to files outside the sandbox. Update now to the 1.14.6, 1.12.9, or 1.10.9 releases https://github.com/flatpak/flatpak/releases/tag/1.14.6
"How it all began"
I saw an ad for this CD set at a very low price in a computer magazine. I decided to give it a try, enticed by the low cost and this 'alternative solution to Windows', and in late 1996 I ordered this set.
When it arrived, I was fascinated (having never used a Unix or Unix-like system before) but a bit daunted by the lack of support for the main applications I knew. A few months later, though, I decided to give it another go and from that point, I never looked back. Whether it was Linux, one of the BSDs, or something similar (but Unix or Unix-like), I was not going back to systems like Windows.
My #ThrowbackThursday today is probably one of the most significant in my computing life.
#Linux #TechHistory #OpenSource #Unix #TechNostalgia #ComputingMemories #BSD #TechnologyEvolution #OldSchoolComputing #1996 #ITLife
I've expanded the #FreeBSD handbook with a section about #zeroconf and #Avahi. (#mdns/#dnssd).
https://docs.freebsd.org/en/books/handbook/network-servers/#network-zeroconf
Feedback welcome!
#Linux 6.8.7, 6.6.28, 6.1.87, and 5.15.156 kernels are now available for download at https://kernel.org
Look! A #LibreOffice feature you may not know about 😉 When exporting a #PDF the "Hybrid PDF" option embeds the original file. Then anyone with a PDF reader can view the file – and LibreOffice users can edit it too: https://wiki.documentfoundation.org/Faq/Writer/PDF_Hybrid#What_is_a_hybrid_PDF_file? #foss #OpenSource
To reaffirm my #ThankYouTuesday today - following my post earlier about FreeBSD freezing if a laptop doesn't have the battery installed (https://mastodon.bsd.cafe/@stefano/112280720122710027), @jeffpc has prepared a patch and suggested I try it (https://reviews.freebsd.org/P636).
I did, and it worked.
This is the spirit that characterizes the open-source community and the fantastic members who comprise it.
Reminder that you have until April 21 to submit your proposal for a talk at Flock 2024! That's this Sunday! 🏃
Our contributor conference is a great space to present new ideas, show performance, and talk about difficult and nuanced problems.
➡️ https://communityblog.fedoraproject.org/flock-2024-cfp-until-april-21st/
For today's #ThankYouTuesday, I want to express my gratitude to the entire open-source community. Past, present, and future. I owe so much to what many developers, sysadmins, enthusiasts have built and maintained. I've always believed that culture should be free and accessible to all, and the OSS community has made it possible to study, learn, and implement complex and professional solutions without the need for closed systems, licenses, or expensive "certification" courses.
To the Open Source community, heartfelt thanks!
#KDE Plasma 6.0.4 Is Out Now to Improve Plasma #Wayland, System Monitor, Discover, Overview Effect, and More https://9to5linux.com/kde-plasma-6-0-4-is-out-now-to-improve-plasma-wayland-system-monitor-and-more
Descent 3 has been made open source https://www.gamingonlinux.com/2024/04/descent-3-has-been-made-open-source/
Every version of the PuTTY tools from 0.68 to 0.80 inclusive has a critical vulnerability in the code that generates signatures from ECDSA private keys. Tthe effect of the vulnerability is to compromise the private key https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-p521-bias.html #infosec #security #ssh #opensource #linux #unix #windows
Back door xz vulnerability has been officially reverted for @fedora 40 https://www.linux-magazine.com/Online/News/XZ-Gets-the-All-Clear #malare #XZBackdoor #Fedora #Ubuntu #ArchLinux #Linux #OpenSource #security #patch #Rawhide #FOSS
@therealstujr nice! A lot of people here liked #linux and #opensource
#Linux 6.9-rc4 is now available for public testing at https://kernel.org and Linus Torvalds says that there's "nothing particularly unusual going on this week." Happy testing!
Today, I’m attending the great pandas’ workshop at the #2024Analytics INFORMS Business Analytics Conference. #opensource rocks! #orms #Analytics @pandas_dev #pandas
🫠 iXsystems: No one is being 'marooned' by Debian focus | Chris Mellor
「 BSD aficionados don’t like this change. Moore said: “Talk is cheap and complaints are free. You know, everyone loves to complain about it. But … if people wanted to push FreeBSD forward for the last 15 years, they would have.” 」
https://blocksandfiles.com/2024/04/08/ixsystems-no-one-is-getting-marooned/
🐡 OpenBSD is a Cozy Operating System | Bradley Taunt
✅ Incredibly secure operating system (No xz drama here...)
✅ Detailed documentation. Probably one of the best of any OS
✅ Much smaller codebase and small core team
✅ Complete operating system (kernel, userland utilities, libraries, applications combined)
#BND sucht offenbar xz #Backdoor Nachfolger Entwickler:
"Für uns ist es vor allem wichtig, dass dein Projekt innovativ ist, einen Beitrag zur #OpenSource-Community und nicht zuletzt auch für uns als BND leistet. Dies kann beispielsweise ein neues Feature sein, das dabei hilft unseren Auftrag besser zu erfüllen."
https://www.bnd.bund.de/DE/Karriere/SummerOfCode/SummerOfCode_node.html
✈️ The Travel Grant Application for BSDCan 2024 is now open. The Foundation can help you attend BSDCan and other technical events through our travel grant program.
BSDCan 2024 applications are due April 22, 2024.
https://freebsdfoundation.org/blog/bsdcan-2024-travel-grant-application-now-open/
#FreeBSD #BSDCan2024 #opensource
News from #LibreOffice's Quality Assurance (#QA) and Development communities: in March, they resolved 429 bug reports. Learn more, and give them a hand: https://qa.blog.documentfoundation.org/2024/04/11/qa-dev-report-march-2024/ #foss #OpenSource
i approve this message :) #linux #opensource #linuxmint Kid got a good future https://www.tumblr.com/penguinspy2435/728497670424002560/i-got-a-new-laptop-for-college-hmm-somethings
NEW VIDEO - How can I slow down the attacks on my FreeBSD Server?
#FreeBSD #Opensource #SSH #unix #garyhtech
https://youtu.be/Jh_roKrqGiU?si=cCa9CK1utw2m30zs via @YouTube
We're excited to announce the release of SecBSD 1.5's latest snapshot! This update brings significant changes inherited from #OpenBSD
Goodbye msyscall: In this snapshot, we say farewell to the msyscall stub. Now, none of the calls involve msyscall anymore.
Update xserver: This release includes the xserver version 21.1.12.
Protected pool_get() with kernel lock in sys_ypconnect().
Removed GOST and STREEBOG support from libressl.
Removed Softdep.
Tools:
* brutespray 1.8.1.
* cloudfox 1.12.2.
* enum4BSD 0.9.1.
* feroxbuster 2.10.2.
* metasploit 6.3.55.
* mlmmj 1.4.5.
* nuclei 3.2.4.
* pwntools 4.13.0.
* rustscan 2.1.1.
* sn0int 0.26.0.
* social engineer toolkit 8.0.3.
* solidity 0.8.21.
* spiderfoot 4.0.
* theHarvester 4.5.1.
* zaproxy 1.14.0.
and more!
You can download the latest SecBSD snapshot from:
https://mirror.secbsd.org/pub/SecBSD/snapshots/amd64/
https://mirror.laylo.nl/pub/SecBSD/snapshots/amd64/
http://zqsjg25lnx7zratmne3dhbcqt5paehitom3qp2rjmwttuy7gzbzqwayd.onion/pub/SecBSD/snapshots/amd64
#SecBSD #Infosec #cybersecurity #hacking #OpenSource
Love ❤️ #LibreOffice? Come and meet the worldwide community that makes it, at local events! For instance, we were recently at the InstallFest 2024 conference in Prague: https://blog.documentfoundation.org/blog/2024/04/10/insights-from-the-installfest-2024-conference-in-prague/ #foss #OpenSource
「 PumpkinOS is a re-implementation of PalmOS that runs on modern architectures (x86, ARM, etc). It is not your average PalmOS emulator (it does NOT require a PalmOS ROM), but it can run m68K PalmOS applications 」
With so many #OpenSource projects offering #Docker as their primary way to use the app/service, it seems that the time will soon be upon me that I actually start to learn it. 🤔
Thanks to Srini R Inaganti of #KloudDB for inviting me to discuss #PostgreSQL #partitioning topics!
Partitioning tips and tricks -
1) How to partition properly?
2) Partitioning with minimal downtime
3) Partitioning strategies
BoxyBSD just started!
#BoxyBSD is a non-profit VM & service provider for the open-source community with a focus on BSD based Systems like #FreeBSD, #OpenBSD and #NetBSD. BoxyBSD also provides additional services like webhosting, git, email and DNS solutions for #opensource projects to give valuable things back to the community.
You can find out more on https://boxybsd.com or in Matrix #BoxyBSD:bsd.cafe
Lots happening in the #LibreOffice project! In March, we had updates to the software, new user guides, Document Freedom Day, reports from meetups and more: https://blog.documentfoundation.org/blog/2024/04/02/libreoffice-project-and-community-recap-march-2024/ #foss #opensource
📦 Fedora thinking about switching to a new package manager | @linuxiac
「 Its usage can test a user’s patience, as its performance lags notably behind Debian’s speedy APT. And comparing it to the swift efficiency of Arch’s Pacman is, frankly, not even a fair contest. However, this could all change in Fedora 41 」
The Fedora Project will be at Texas Linux Fest! We'll have a booth and some Fedora related talks. And we'll be accompanied by @centos as well. Looking forward to connecting with you at the event!
Texas Linux Fest is a week away, on April 12-13. 🤠
Learn more: https://2024.texaslinuxfest.org/
I have no personal experiences with it, but it is on my watch list.
@grunfink I submitted a PR to update MacPorts' snac to 2.51 here:
https://github.com/macports/macports-ports/pull/23357
CI checks are queued. Hopefully they'll go smoothly?
Assuming they do, it will still be up to someone else with commit access to merge it.
Thank you for your continued improvements! On my mental ToDo list I keep on meaning to create a snac Port for OpenBSD, and it looks as if the unveil and pledge support continues to be refined, cool!
#snac #MacPorts #OpenSource #ActivityPub #Mastodon #NoDatabaseNeeded #NoJavaScript #NoCookiesEither #NotMuchBullShit #snacAnnounces
Summing it up:
* I like Radicale for its simplicity, but it seems to be tailored for small-scale deployments. More, it lacks calendar invite sending capabilities but supports IMAP authentication.
* Baikal offers calendar invite functionalities and seems better suited for larger installations but doesn't support IMAP authentication.
* Nextcloud ticks all the boxes, but I'm in search of providing a dedicated mail system, not a file storage and sharing solution.
Still on the quest to find the most convincing solution...
#opensource #tech #email #calendar #IMAP #Nextcloud #Radicale #Baikal #softwarechoices
Yay! German state moving 30,000 PCs to LibreOffice https://blog.documentfoundation.org/blog/2024/04/04/german-state-moving-30000-pcs-to-libreoffice/ Taxpayers money should go towards FLOSS and not the proprietary vendors. #opensource
How to exclude and ignore files when using find command https://www.cyberciti.biz/faq/find-command-exclude-ignore-files/ 👇 #linux #unix #macos #freebsd #opensource
🎉 Qt 6.7 Released!
「 With Qt 6.7, we are adding support for 2D bar, line, and scatter graphs, in addition to the 3D visualizations that have already been available since Qt 6.6. The module integrates with Qt Quick animations and effects, and provides theming, and handler-based interaction APIs 」
NEW VIDEO - GhostBSD - a look at the latest release 2024
#GhostBSD #FreeBSD #UNIX #OpenSource #garyhtech
https://youtu.be/J3ufu-_MIFc?si=z-HbyBg9s3QuZ18f via @YouTube
「 The FreeBSD Foundation is making significant strides in wireless development, led by Cheng Cui and Bjoern Zeeb. Their primary goals are to fix bugs, stabilize the system, and improve iwlwifi for 802.11ac transfer speeds. Zeeb’s recent contributions have brought stability fixes to native and LinuxKPI-based wireless drivers in FreeBSD 13.3 」
https://freebsdfoundation.org/blog/march-2024-software-development-update/
#OpenSource is a fact. #OpenSource is a megatrend.
#Firefox 124.0.2 is out now to fix an issue where some users experienced difficulties loading web pages due to changes made to the default AppArmor configuration in #Ubuntu 24.04 LTS, a crash that affected #Linux AArch64 builds, a Netflix issue, and an issue where users with a large amount of bookmarks would be unable to restore a bookmarks backup https://www.mozilla.org/en-US/firefox/124.0.2/releasenotes/
The PSF is pleased to announce our participation in co-starting a new Open Initiative for #Cybersecurity Standards collaboration with @TheASF and @EclipseFdn to establish common specifications for secure #opensource development based on open source best practices #python
https://pyfound.blogspot.com/2024/04/new-open-initiative-for-cybersecurity.html
No April's fools jokes from VerneMQ this year. No rewrites in Rust or Elixir ;)
Just continuing the old & great VerneMQ mission for an open-source #MQTT system.
Oh, and... please support #OpenSource software!
NetBSD 10.0 released with improved performance and scalability on multiprocessor and multicore systems, improved ARM support, Argon2id as default password hashing algorithm, new and improved drivers, Xen and HyperV support improvements, support for POSIX.1e ACLs in FFS
The recent news about #xz has further demonstrated how vigilant eyes are present within open-source software communities. That's why, in the upcoming years, I'll strive even harder to detach myself from closed solutions.
It's also time to reinstall #GrapheneOS on my Pixel 7 - even if it's not my daily driver, I'm using it.
This is one of the best explanations of the xz matter I have seen so far:
https://lcamtuf.substack.com/p/technologist-vs-spy-the-xz-backdoor
and it leads in with a quote to remember -
"This dependency existed not because of a deliberate design decisionby the developers of OpenSSH, but because of a kludge added by some Linux distributions to integrate the tool with the operating system’s newfangled orchestration service, systemd."
Enjoy!
🙀🚂🐧I suppose everyone and their grandmother is now using the xz/sshd exploit to further their own agenda, so I am going to take this opportunity to further mine as well.
1. #Autotools are a bad build system. If configure scripts are completely unreadable, there should be no surprise that people won't notice obfuscated malicious code in there, provided that everything else is obfuscated by design.
2. Static linking and vendoring is bad. Do you know why the prompt #security response was possible? Because we just had to revert to older liblzma. We didn't have to check, patch and re-release hundreds of projects. It wouldn't be this easy with #RustLang and cargo.
3. You can blame #OpenSource for being underfunded and open to abuse in core system packages. However, no IT project can be resilient to a sufficiently powerful bad actor, and that it happened to xz is just an incident. Corporate projects aren't resilient to it, neither is proprietary, closed-source software.
So, embrace #Meson, embrace dynamic linking, embrace distribution packaging and donate to open source developers.
🚨 ⚠️ Emergency PSA: A critical security exploit was discovered in the xz package recently, used for compression and decompression on nearly all Linux distributions.
Rawhide users ARE impacted and should immediately STOP using Rawhide until the package update is fully rolled back. (1/3)
Security Advisory: https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
The vulnerability may be present in Fedora 40 but it is not believed to be activated. Fedora 40 users are advised to use caution and update their systems soon when the rolled-back version is available, for more certainty.
Fedora 39 and 38 users are not impacted. (2/3)
Security Advisory: https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
Sharing this about #Redis
I believe I saw someone suggesting KeyDB to someone.👩💻
Informing graduates at the job fair about studying “Data Science for Business” at Ghent University, Belgium. #opensource #python #ugent #orms https://www.mma.ugent.be
In light of the recent news about Vultr and its new (absurd) TOS, I'm seriously considering relaunching an email hosting service. I already have several hundred mailboxes in hosting and everything's fine, but I've always thought that with the big players in the game, it wasn't worth extending this service anymore.
Now I see potential, and it will be based exclusively on open-source technologies, accompanied by technical explanations on the setup and security of the entire system.
A new opensource model, DBRX. Better then GPT 3.5.
https://www.databricks.com/blog/announcing-dbrx-new-standard-efficient-open-source-customizable-llms
#AI #LLM #Opensource
🌐 Our new #FreeBSD cluster in Chicago is live with two CI servers, package mirrors in the US, and robust admin systems for better global service. A big leap forward in automating and streamlining our operations! Thanks to all involved! 🙌 #opensource
📖 ow.ly/PofR50R3vSP
The Fedora Linux 40 Beta has released! Please help us with testing your favorite spin (if you're able too)!
➡️ https://fedoramagazine.org/announcing-fedora-linux-40-beta/
I'm seriously starting to consider going back to using Poudriere and creating my own repositories with the packages I need. This way, I can move away from binary packages (and their fixed options) and fine-tune what I need (for example, Dovecot with MySQL support, for a future setup). Flexibility above all.
Of course, a well-crafted .vimrc is critical. How else would you maintain that aura of superiority vital for deflecting questions from less-enlightened coworkers? Everyone knows you must have a perfect Vim configuration file before writing any production code. #unix #linux #vim #neovim #opensource
@stefano Customers are willing to pay for not having to deal with upgrades.
Sounds sensible for B2B at first, it's just cheaper than paying for the employee time.
It's also short-sighted:
* Most upstream projects provide much shorter support periods, so this involves the distributor backporting security fixes. We've seen this go horribly wrong in the past
* Upgrading can't be avoided forever, and the trouble with it just keeps adding up to a point where it becomes ridiculously expensive to finally do it.
That's an issue beyond #Linux, beyond #Opensource in general, it's more related to "#Enterprise thinking" of the worse kind....
@stefano Customers are willing to pay for not having to deal with upgrades.
Sounds sensible for B2B at first, it's just cheaper than paying for the employee time.
It's also short-sighted:
* Most upstream projects provide much shorter support periods, so this involves the distributor backporting security fixes. We've seen this go horribly wrong in the past
* Upgrading can't be avoided forever, and the trouble with it just keeps adding up to a point where it becomes ridiculously expensive to finally do it.
That's an issue beyond #Linux, beyond #Opensource in general, it's more related to "#Enterprise thinking" of the worse kind....
New blog post! "SCaLE 21x — Recovering from Data Loss Despite Not Having a Backup: A Postgres True Story"
I just came back from my first Southern California Linux Expo (@socallinuxexpo #SCaLE21x) where I shared a true story about a remarkable #PostgreSQL data recovery.
#postgres #conference #talk #database #databases #OpenSource
#FOSS #FLOSS #DBA #DataRecovery #Backup #DisasterRecovery
SDL 3 has a first preview release out with HDR and Vulkan for the 2D rendering API https://www.gamingonlinux.com/2024/03/sdl-3-has-a-first-preview-release-out-with-hdr-and-vulkan-for-the-2d-rendering-api/
#SDL #OpenSource #FOSS #GameDev
NEW VIDEO - Submitting a Bug to FreeBSD
#FreeBSD #Unix #opensource #garyhtech
https://youtu.be/vLC1w6ziAUw?si=FyITP0pQDIoiESjP via @YouTube
🔐 Linux 6.9 Adds New RISC-V Vector-Accelerated Crypto Routines - Phoronix
「 RISC-V with Linux 6.9 implements support for more vector-accelerated crypto routines. Among the work is RISC-V vector accelerated AES-{ECB,CBC,CTR,XTS}, ChaCha20, GHASH, SHA-256, SHA-384, SHA-512, SM3, and SM4 algorithms 」