Show Notes: linuxactionnews.com/216

The post Linux Action News 216 first appeared on Jupiter Broadcasting.

Show Notes: linuxunplugged.com/355

The post Chris' Data Crisis | LINUX Unplugged 355 first appeared on Jupiter Broadcasting.

Show Notes: linuxunplugged.com/354

The post Microsoft FINALLY Gets It | LINUX Unplugged 354 first appeared on Jupiter Broadcasting.

Show Notes: linuxunplugged.com/322

The post Just Enough VPN | LINUX Unplugged 322 first appeared on Jupiter Broadcasting.

Show Notes/Links: linuxunplugged.com/287

The post Clean up After Yourself | LINUX Unplugged 287 first appeared on Jupiter Broadcasting.

A new trick up Fedora’s sleeve might be worth trying on your own Linux install, the new mini-pc revolution is here & the Raspberry Pi Zero brings it for $5. Adobe announces the death of Flash… Kind of. But we’ll share how to finish the job & truly banish flash from your Linux rig.

Plus open source gaming just got an upgrade, GIMP has some fancy & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Pre-Show:

• Offline Media solution for the Rover / Bandwidth challenged.

• Emby? tablet/PC?

• Plex and Plex Pass on a tablet?

• rsync and vlc on a laptop?

• Amazon.com: Kingston Digital 5-in-1 Mobile Companion, Expanded Storage, 4640 mAh Battery Charger, and more for iOS and Android devices (MLWG2): Computers & Accessories

Follow Up / Catch Up

Warsow 2.0 Released With Better Graphics, CC-Licensed Game Assets

Warsow 2.0 adds a tutorial level to help new gamers, many graphical effects were revamped, weapon parameters were tweaked, new HUDs, and many other changes.

The Warsow 2.0 renderer is reported to be 30~50% faster for overall performance, reduced vRAM footprint for textures, KTX texture format support, support for the GLSL binary cache, multi-threading to speed-up map loading, and many other interesting changes.

GIMP 2.9.2 Released

with 2.9.2, you can already benefit from certain aspects of the new engine, such as:

• 16/32bit per color channel processing
• Basic OpenEXR support
• On-canvas preview for many filters
• Experimental hardware-accelerated rendering and processing via OpenCL
• Higher-quality downscaling

Additionally, native support for PNG, TIFF, PSD, and FITS files in GIMP has been upgraded to read and write 16/32bit per color channel data.

• GIMP 2.9.2 Released, How About Features Trivia?

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

F24 System Wide Change: Default Local DNS Resolver – devel-announce – Fedora List Archives

Plain DNS protocol is insecure and therefore vulnerable from various
attacks (e.g. cache poisoning). A client can never be sure that there
is no man-in-the-middle, if it does not do the DNSSEC validation
locally.

We want to have Unbound server installed and running on localhost by
default on Fedora systems.

• Against DNSSEC — Quarrelsome

Linux Academy

• Linux Academy | Linux and AWS Online Training

The Mini PC Roundup

Raspberry Pi Zero: the $5 computer – Raspberry Pi

Today, I’m pleased to be able to announce the immediate availability of Raspberry Pi Zero, made in Wales and priced at just $5. Zero is a full-fledged member of the Raspberry Pi family, featuring:

• A Broadcom BCM2835 application processor
  • 1GHz ARM11 core (40% faster than Raspberry Pi 1)
• 512MB of LPDDR2 SDRAM
• A micro-SD card slot
• A mini-HDMI socket for 1080p60 video output
• Micro-USB sockets for data and power
• An unpopulated 40-pin GPIO header
  • Identical pinout to Model A+/B+/2B
• An unpopulated composite video header
• Our smallest ever form factor, at 65mm x 30mm x 5mm

Raspberry Pi Zero runs Raspbian and all your favourite applications, including Scratch, Minecraft and Sonic Pi. It is available today in the UK from our friends at The Pi Hut and Pimoroni, and in the US from Adafruit

Kodi on the $5 Raspberry Pi Zero

Omega – Onion

Omega is an invention platform for the Internet of Things. It comes WiFi-enabled and supports most of the popular languages such as Python and Node.JS. Omega makes hardware prototyping as easy as creating and installing software apps.

Dimensions: 28mm x 42mm
OS: OpenWRT Linux
Processor: 400MHz
RAM: 64MB DDR2
Flash: 16MB
Wireless: 802.11 b/g/n
Ports: 18 GPIO
Language: Python, Node.JS, PHP, Ruby, Lua and more…

Wireless Raspberry Pi speaker | Linux User & Developer – the Linux and FOSS mag for a GNU generation

AirPlay uses Apple technology that was reverse-engineered in 2011, which means that third-party devices can now participate in the fun. AirPlay allows any Apple device to broadcast whatever is coming out of its speakers to an AirPlay receiver (which will be our Pi in this case). There is a way to send audio from PulseAudio to AirPlay receivers

GeekBox | by geekbuying the Pioneering Versatile Open Source TV Box

The RK3368 is an Octa Core 64bit, ARM Cortex-A53 processor with PowerVR G6110 graphics chip, 28nm processing design, Support OPENGL ES 3.1. RK3368 with super video capabilities, 4K×2K, H.265 and HDMI 2.0@60Hz output support.

TING

• Ting – mobile that makes sense

Adobe kills the ‘Flash’ name after twenty years

Adobe revealed that the Flash product will be called Adobe Animate CC from January’s update of the Creative Cloud suite. There’s no explicit mention of what the browser plug-in will be called, but presumably it will mirror the change of name.

Support Jupiter Broadcasting on Patreon

The post Raspberry Pi Does What? | LINUX Unplugged 121 first appeared on Jupiter Broadcasting.

Coming up this week on the show, we’ll be talking to Matt Ranney and George Kola about how they use FreeBSD at Voxer, and how to get more companies to switch over. After that, we’ll show you how to filter website ads at the gateway level, using DNSMasq. All this week’s news and answers to your emails, on BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

NetBSD’s EuroBSDCon report

• This year’s EuroBSDCon had the record number of NetBSD developers attending
• The NetBSD guys had a small devsummit as well, and this blog post details some of their activities
• Pierre Pronchery also talked about EdgeBSD there (also see our interview if you haven’t already)
• Hopefully this trend continues, and NetBSD starts to have even more of a presence at the conferences

Upcoming features in OpenBSD 5.6

• OpenBSD 5.6 is to be released in just under a month from now, and one of the developers wrote a blog post about some of the new features
• The post is mostly a collection of various links, many of which we’ve discussed before
• It’ll be the first version with LibreSSL and many other cool things
• We will, of course, have all the details on the day of release
• There are some good comments on hacker news about 5.6 as well

FreeBSD ARMv8-based implementation

• The FreeBSD foundation is sponsoring some work to port FreeBSD to the new ThunderX ARM CPU family
• With the potential to have up to 48 cores, this type of CPU might make ARM-based servers a more appealing option
• Cavium, the company involved with this deal, seems to have lots of BSD fans
• This collaboration is expected to result in Tier 1 recognition of the ARMv8 architecture

Updating orphaned OpenBSD ports

• We discussed OpenBSD porting over portscout from FreeBSD a while back
• Their ports team is making full use of it now, and they’re also looking for people to help update some unmaintained ports
• A new subdomain, portroach.openbsd.org, will let you view all the ports information easily
• If you’re interested in learning to port software, or just want to help update a port you use, this is a good chance to get involved

Interview – Matt Ranney & George Kola – mjr@ranney.com & george.kola@voxer.com

BSD at Voxer, companies switching from Linux, community interaction

Tutorial

Adblocking with DNSMasq & Pixelserv

News Roundup

GhostBSD 4.0 released

• The 4.0 branch of GhostBSD has finally been released, based on FreeBSD 10
• With it come all the big 10.0 changes: clang instead of gcc, pkgng by default, make replaced by bmake
• Mate is now the default desktop, with different workstation styles to choose from

Reports from PF about banned IPs

• If you run any kind of public-facing server, you’ve probably seen your logs fill up with unwanted traffic
• This is especially true if you run SSH on port 22, which the author of this post seems to
• A lot can be done with just PF and some brute force tables
• He goes through some different options for blocking Chinese IPs and break-in attempts
• It includes a useful script he wrote to get reports about the IPs being blocked via email

NetBSD 6.1.5 and 6.0.6 released

• The 6.1 and 6.0 branches of NetBSD got some updates
• They include a number of security and stability fixes – plenty of OpenSSL mentions
• Various panics and other small bugs also got fixed

OpenSSH 6.7 released

• After a long delay, OpenSSH 6.7 has finally been released
• Major internal refactoring has been done to make part of OpenSSH usable as a library
• SFTP transfers can now be resumed
• Lots of bug fixes, a few more new features – check the release notes for all the details
• This release disables some insecure ciphers by default, so keep that in mind if you connect to legacy devices that use Arcfour or CBC modes

Feedback/Questions

• Andriy writes in
• Karl writes in
• Possnfiffer writes in
• Brad writes in
• Solomon writes in

• All the tutorials are posted in their entirety at bsdnow.tv
• We want to give a special thanks to our viewer CJ for writing today’s tutorial
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv – we always love hearing from viewers, even if you don’t have a question
• While it’s not directly related to BSD, the videos from illumos day 2014 are online, if you’re interested in that
• The EuroBSDCon 2014 videos are being uploaded, we’ll have all the links to share (hopefully) soon
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)

The post Behind the Masq | BSD Now 58 first appeared on Jupiter Broadcasting.

The amazing open source projects we love that will take your Linux box to the next level! It’s our tips, tricks, and software we love that make our Home Linux server perfect!

Plus: Is Mark Shuttleworth moving Ubuntu’s future development behind closed doors? The fundamental issues between Nvidia and the Kernel devs, the big features coming to Gnome 3.8…

AND SO MUCH MORE!

All this week on, The Linux Action Show!

Thanks to:

GoDaddy.com


Limited time offer:
SPECIAL OFFER! SPECIAL OFFER! .COMs just $5.99* per year up to 3 domains! Additional .COMs just $7.99* per year! – code: 599linux

BONOUS ROUND PROMO:

Save 20% off your order!
Code: go20off6

Expires 10/31/12

Download:

HD Video | Mobile Video | Ogg Video | MP3 Audio | Ogg Audio | YouTube | Torrent File

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Feed | Ogg Feed | iTunes Feeds | Torrent Feed

Support the Show:

[asa]B008EEARHU[/asa]

Purchase anything at Amazon.com Purchase anything at Think Geek using this link Purchase anything at Newegg using this link Contribute directly on our donation page or check out our advertising options and reach millions of amazing people! Grab our Chrome Extension and auto-tag your shopping session for us!

Show Notes:

Perfect Linux Home Server:

Brought to you by: System76

What makes for a good server OS? A few important things to look for:

• A deep repository of packages, that are reasonably current.
• Good online support/community for howto’s and guides.
• Good security.

I was not happy with my big storage options for Linux, I want a native kernel level implementation of ZFS, but I want the cutting edge software options of Linux.

I bought a FreeNAS Mini from iXsystems that I use as my backend storage apliance. In front of that I have an Ubuntu 12.04 that has an NFS mount to the ZFS storage on the FreeNAS Mini box.

Home Network Essentials:

• Proxmox – Proxmox VE
• Dnsmasq – a DNS forwarder for NAT firewalls.
• xrdp | Free software downloads at SourceForge.net

File Syncing:

• Dropbox – CLI
• CLI Control Script for Dropbox

Future Syncing Plans:

• ownCloud’s Latest Community Edition Adds Video Streaming, and Easy Mounting of Third-Party Storage
• Sync Clients
• Gnome 3.8 Features: Integrate ownCloud in Gnome!

Usenet:

• Spotweb.nu
• spotweb/spotweb · GitHub
• Thanks to LeonBo in our subreddit
• Alternative to Spotweb: Newznab – Download

Giganews Afiliate referal: https://bit.ly/gigalas

Video/Picture Streaming

• PS3 Media Server
• PS3 Media Server – Easy setup guide for Ubuntu / Debian
• How to Stream Media Files From any PC to Your PlayStation 3 – How-To Geek

Music and Podcasts:

• Subsonic » Free Music Streamer
  • You can generate Podcast subscription feeds from Subsonic playlists

Keep things healthy:

• SmokePing – About SmokePing

• Logcheck: Keep an eye on your Linux server logs | Stackful.io

• Home Server Ideas Thread

[asa]B006WEHNCQ[/asa]

Runs Linux:

• Bento Laptop Tablet Hybrid, Runs Linux

Android Pick:

• CalDAV-Sync beta
• CardDAV-Sync free beta
• Android Picks so far thanks to Madjo in the IRC Chat room!

Desktop App Pick:

• Hotot – A microblogging client
• Picks so far
• Madjo

Distro Of The Day

• Cinnarch

Search our past picks:

• Linux Action Show Lookup
• Thanks to sakuramboo!

Git yours hands all over our STUFF:

• Jupiter Broadcasting Afiliate Extensions
• Callisto-app – Google Project Hosting
• Quick Update to the Jupiter Broadcasting Android App

News:

• Canonical’s Mark Shuttleworth Tires Of Critics, Moves Key Ubuntu Developments Out Of Public Eye

• Mark Shuttleworth » Blog Archive » “in addition to”

• Ubuntu’s Raring Ruckus Much Ado About Nothing

• GNOME 3.8 and beyond

• Gnome to Require systemd for the gnome-settings-daemon power plugin?

• Gnome Whiteboards: App Store Sandboxing

• Lennart Poettering’s Notes about GNOME OS sandboxing
  discussion

• Plasma Active Three

• Bickering Continues About NVIDIA Using DMA-BUF

• Intel On Haswell Under Linux: “We’ve Screwed Up”

Feedback:

• Best Buy pushin’ that Windows 8!

• Getting a list of all the packages installed?

• 12.04 – How to get a list of installed software packages?

• What distro to switch from Windows?

• Long time listener’s buddy releases an App

Chris’ Stash:

• Unfilter is looking for foreign correspondents!

What’s Matt Doin?

• Lost Ubuntu Password Recovery Tips
• Writing about Linux, sometimes, even asking tough questions
• Offering newbie centric advice, in my articles

Find us on Google+

• Chris
• Matt Hartley
• Jupiter Broadcasting’s Page

Find us on Twitter:

• Chris – ChrisLAS
• Matt – matthartley

Follow the network on Facebook:

• Jupiter Broadcasting on Facebook

Catch the show LIVE Sunday 10am Pacific / 1pm Eastern / 5pm UTC:

• https://jblive.tv
• Network Calendar

The post Perfect Linux Server | LAS | s24e02 first appeared on Jupiter Broadcasting.

]]> https://original.jupiterbroadcasting.net/11948/rooted-trust-techsnap-22/ Thu, 08 Sep 2011 20:46:40 +0000 https://original.jupiterbroadcasting.net/?p=11948 DigiNotar's beach was far worse than originally known, and a recent DNS hack took many popular sites off-line. Plus we'll cover why a home DNS can be great!

The post Rooted Trust | TechSNAP 22 first appeared on Jupiter Broadcasting.

]]>

Remember the Man in the Middle attack on google from last week? Turns out it was far worse than though, we now have more details on the DigiNotar compromise, and a number of other important sites have had their DNS hijacked.

Plus we cover the advantages of running your own DNS server at home, and how Allan and Chris got their start in the world of IT!

All that and more, in this week’s TechSNAP!

Direct Download Links:

HD Video | Large Video | Mobile Video | MP3 Audio | OGG Audio | YouTube

Subscribe via RSS and iTunes:
Subscribe... --RSS-- TechSNAP HD TechSNAP Large TechSNAP Mobile TechSNAP MP3 TechSNAP OGG --iTunes-- TechSNAP iTunes HD TechSNAP iTunes Mobile TechSNAP iTunes Large TechSNAP iTunes MP3

[ad#shownotes]

Show Notes:

DigiNotar Hack Details

• A company spokesman said that “several dozen” certificates had been acquired by the attackers.
• The confirmed count of fraudulently-issued SSL (secure socket layer) certificates now stands at 531.
• The first known-bad certificate, for Google.com, was created by attackers on July 10, 2011. Between July 19 and July 29, DigiNotar began discovering bad certificates during routine security operations, and blocking them.
• But the attack didn’t come to light until August 27
• Comodohacker said the attack against DigiNotar was payback for the Srebrenica massacre.
• He also suggested that he wasn’t operating under the auspices of Iranian authorities, but that he may have given them the certificates.
• Comodohacker also posted additional proof that he had the private key for the invalid google.com certificate, by using it to sign a copy of calc.exe, a feature a regular website SSL certificate should not have.
• The DigiNotar hack has already had wide-ranging repercussions for the 9 million Dutch citizens–in a country with a population of 17 million–that use DigiD , a government website for accessing services, such as paying taxes.
• According to news reports, the country’s lawyers have been forced to switch to fax and mail, to handle many activities that were supported by an intranet.
• The Netherlands has also indefinitely extended the country’s tax deadline until DigiD can again be declared secure.
• Mozilla has made this public statement: “This is not a temporary suspension, it is a complete removal from our trusted root program.”. Such harsh action was taken because DigiNotar did NOT notify everyone when the breech was discovered.
• F-Secure Weblog says they were hacked by someone who was connected to “ComodoGate” — the hacking of another Certificate Authority earlier this year, by an Iranian attacker.

Removing the DigiNotar Root CA certificate : Ubuntu

Microsoft out-of-cycle patch to fix DigiNotar bogus certificates

Hacker claims to have compromised Other SSL Cert Authorities

• Soon after the Comodo forged certificates hack an Iranian using the handle Comodohacker posted a series of messages via Pastebin account providing evidence that he carried out the attack.

• The hacker boasted he still has access to four other (unnamed) “high-profile” CAs and retains the ability to issue new rogue certificates, including code signing certificates.

• ComodoHacker also claims to have compromised StartSSL, however issuance of invalid certificates was prevented by a policy change that required the CEO to manually offline approve each issued certificate. The HSM (Hardware Signing Module) being offline seems like the only way to be entirely sure that invalid certificates are not issued. A proper policy, more than just rubber stamping any certificate that doesn’t say google.com on it should be required.

• GlobalSign on Tuesday announced that it would temporarily cease issuing any new certificates.
  “GlobalSign takes this claim very seriously and is currently investigating,” according to a statement released by the company

• Is the fifth-largest CA

• GlobalSign Suspends Issuance of SSL Certificates

• BBC Article

DNS hack hits popular websites: Telegraph, Register, UPS, etc

• Further websites which have been affected by the DNS hack include National Geographic, BetFair, Vodafone and Acer.
• Instead of breaching the website itself, the hackers have managed to change the DNS records for the various sites affected.
• Because of the way that DNS works, it may take some time for corrected DNS entries for the affected websites to propagate worldwide – meaning there could be problems for some hours even after the fix.
• The attack was against the domain registrars Ascio and NetNames, both owned by the same parent company.
• Apparently the attacker managed to use an SQL injection attack to gain access to the domain accounts, and change the name servers.
• BBC Article

Feedback:

Home DNS Software:

• Simple DNS Plus
• DNSMasq
• OpenDNS
• B3 Server Review

A different kind of question for TechSNAP! : techsnap

Round-Up:

• Sex and Plugs and Geek Patrol
• EveryDNS/EditDNS Nameservers shutting down on Sep 9, 2011
• Facebook pays out $40K to hackers in three weeks
• Judge Decimates BitTorrent Lawsuit With Common Sense Ruling

Bitcoin-Blaster:

• The 800 pound gorilla in the room? The price of bitcoin is going down because miners are printing 50 BTC per 10 minutes
• Mt.Gox – FAKE!
• Bitcoin-wp-e-commerce
• Bitcoinica – Advanced Bitcoin Trading Platform
• Bitcoin Watch: $49,489,880 USD

The post Rooted Trust | TechSNAP 22 first appeared on Jupiter Broadcasting.

]]>