Show Notes/Links: linuxunplugged.com/250

The post Only The Best | LINUX Unplugged 250 first appeared on Jupiter Broadcasting.

RSS Feeds:

MP3 Feed | iTunes Feed | Video Feed | Torrent Feed

Become a supporter on Patreon:

Show Notes:

Chrome OS may soon be able to run Linux applications in a container

As mentioned in the comments, and pointed out by Chrome Unboxed, one Chrome OS developer uploaded two screenshots of what the container feature will look like. It shows a popup with the description, “Develop on your Chromebook. You can run your favorite Linux apps and command-line tools seamlessly and securely.”

Tusk Evernote Client Updated, Is Now Available as a Snap

Through the inclusion of optional themes, keyboard shortcuts, custom tweaks, a tray icon, and more, Tusk integrates the Evernote web app with the Linux desktop in ways a regular browser tab can’t.

Changes/ImprovedLaptopBatteryLife – Fedora Project Wiki

Improve Fedora (Workstation) Battery Life by enabling various hardware power-saving features by default.

TING

• Ting – mobile that makes sense

Ubuntu Software Will Soon Let You Install Beta, Bleeding Edge Snap Apps

Alex over at WOGUE noticed that the latest version of Ubuntu Software in the Bionic Beaver daily builds offers the ability to switch/select Snap channels through a GUI.

Where’s Xfce 4.14? Current Development, Roadmap & Future – FOSS Post

Xfce’s situation is a bit concerning because by the time Xfce 4.14 is out, GTK+ 4 could already be released as stable. Also, Xfce didn’t move a single step in the direction toward Wayland. And with the speed of the current development, the good DE could lack a lot behind.

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

New Kdenlive Beta is Available for Testing

A new public beta release of next-generation Kdenlive is available to for testing.

• KDE – Experience Freedom!

‘Satoshi’ Craig Wright Is Being Sued For $10 Billion For Stealing His Partner’s Bitcoin

Craig Wright, the nChain chief scientist who previously claimed to be the pseudonymous bitcoin creator Satoshi Nakamoto, is being sued for a whopping $10 billion for stealing $5 billion in bitcoin from a former business partner

Linux Academy

• Linux Academy | Linux and AWS Online Training

  crankshaft: raspberry pi + android auto + free software + love.

Crankshaft is a turn-key GNU/Linux distribution for the Raspberry Pi that transforms it to an Android Auto headunit. All you need is a RPi3 board and its official 7″ touchscreen.
Driving demo, Features demo.

The post It's All Wimpy's Fault | LINUX Unplugged 238 first appeared on Jupiter Broadcasting.

MP3 Feed | iTunes Feed | Video Feed | Torrent Feed

Become a supporter on Patreon:

Show Notes:

Happy New Year- Welcome to Linux Journal 2.0!

Talk about a Happy New Year. The reason: it turns out we’re not dead. In fact, we’re more alive than ever, thanks to a rescue by readers—specifically, by the hackers who run Private Internet Access.

This is exactly what we had hoped for in recent years, but hardly expected. Really and truly, I waited to put up our farewell post until all hope was lost. But hey, it turns out you don’t have to believe in miracles to experience one, because that’s exactly what happened here.

Second, they’re eager to support us in building Linux Journal 2.0 around the substantial core of devoted readers we had through the many years of Linux Journal 1.x. And, this means we need to hear from you!

Google’s experimental Fuchsia OS can now run on the Pixelbook

Google’s in-development operating system, Fuchsia, has a new development device: The Google Pixelbook. Google’s $1,000 laptop usually runs Chrome OS, but with the latest Fuchsia builds, you can swap out the browser-based OS for Google’s experimental operating system.

Fuchsia is still incredibly difficult to get running. Along with the Pixelbook, Fuchsia only supports two other obscure pieces of hardware: an Acer Switch Alpha 12 laptop and old Intel NUCs from 2015.

The extreme difficulty in getting Fuchsia to run reinforces the fact that Fuchsia is currently a secret, deep-in-development operating system that Google isn’t really ready to talk about or encourage people to try just yet.

TING

• Ting – mobile that makes sense

‘Kernel memory leaking’ Intel processor design flaw forces Linux, Windows redesign

A fundamental design flaw in Intel’s processor chips has forced a significant redesign of the Linux and Windows kernels to defang the chip-level security bug.

Crucially, these updates to both Linux and Windows will incur a performance hit on Intel products. The effects are still being benchmarked, however we’re looking at a ballpark figure of five to 30 per cent slow down, depending on the task and the processor model.

Details of the vulnerability within Intel’s silicon are under wraps: an embargo on the specifics is due to lift early this month, perhaps in time for Microsoft’s Patch Tuesday next week. Indeed, patches for the Linux kernel are available for all to see but comments in the source code have been redacted to obfuscate the issue.

AMD processors are not subject to the types of attacks that the kernel page table isolation feature protects against.

• The mysterious case of the Linux Page Table…

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

An introduction to Joplin, an open source Evernote alternative

Joplin is an open source cross-platform note-taking and to-do application. It can handle a large number of notes, organized into notebooks, and can synchronize them across multiple devices.The notes can be edited in Markdown, either from within the app or with your own text editor, and each application has an option to render Markdown with formatting, images, URLs, and more.

As such, its synchronization is designed without any hard dependency to any particular service. Most of the synchronization process is done at an abstract level, and access to external services, such as OneDrive or Dropbox, is done via lightweight drivers.

Joplin was designed as a replacement for Evernote, so it can import complete Evernote notebooks, as well as notes, tags, resources (attached files), and note metadata (such as author, geolocation, etc.) via ENEX files.

Valve: Linux Catbot VAC ban claims were hoaxed by hackers to ‘sow distrust among anti-cheat systems’

initially wrote that Valve was banning Linux users with Linux usernames that included the word ‘catbot’, but Valve has said those claims were a “tactic employed by cheaters to try and sow discord and distrust among anticheat systems”.

“Linux historically hasn’t been a problem for cheating–the base rate of cheating is significantly lower on Linux than it is on Windows. Unfortunately, a ‘healthy’ community of cheaters grew up around catbot on linux and their impact on TF became large enough that they simply could no longer be ignored. Those banned users are very annoyed that VAC has dropped the hammer on them.”

Linux Academy

• Linux Academy | Linux and AWS Online Training

2017 Best Practices

Bad predictions and plans for maintenance

All the Annoying Tech Chores You Need to Do When You Have Time

Like your car, or your kitchen, your tech devices will run best when they’re maintained properly—and that means finding time to do all those low-level maintenance tasks that aren’t much fun, but can keep everything stable and smooth, and avoid problems in the future.

• Update your Software
• Go through old files and free up some space
• Monitor for problems
• Get Organized
• Update router and other firmware
• Move to the cloud?

Linux resolutions for 2018

It’s always a good idea to start a new year with renewed intentions to be even better users and administrators of our Linux systems.

• Automate the boring stuff
• Learn a new language
• Try a new OS
• Focus on Security
• Restore those backups!
• Document, Document, Document
• Most importantly, have some fun!

The post Invest In Popcorn | LINUX Unplugged 230 first appeared on Jupiter Broadcasting.

We go back in time and take a look at what you missed at SELF 2016. Plus we’re 1% closer to the Linux Desktop, why Evernote sucks & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: Linux Academy

— PICKS —

Runs Linux

Fireworks RUNS LINUX

A test of the Raspberry Pi sprinkler controller which I’m working on. I’m borrowing it to use as a fireworks controller since it’s just a relay controller.

I’m using a 12V SLA battery to power everything. Battery goes into switch box so that fireworks has a master control safety switch. A cheap switching power supply is used to step down the 12V to 5V for the Pi. The relay boards are controlled by three 74hc595 shift registers.

Desktop App Pick

rambox.pro

Free and Open Source messaging and emailing app that combines common web applications into one.

• Notifications
• Sync Services
• Lock
• Don’t Disturb
• Add Custom Services
• Reorder and grouping
• Badges
• System Tray

Spotlight

K3b -Disk Burning

K3b is a full-featured, easy to use CD and DVD burner, copier, ripper and more.

— NEWS —

End of 32bit machines?

Linux Reaches 2%

Infinity:One is OLPC XO’s bigger, more responsible sibling

Evernote limits free tier to two devices, raises prices 40%

• Turtl – Find your private space

SELF 2016 coverage

• SouthEast LinuxFest

Mail Bag

• https://slexy.org/view/s2y1aGapyF
• https://slexy.org/view/s20lJgvN10
• https://slexy.org/view/s2BDxIvbpj

Call Box

• Chris’ call out for the community to help him with his background

Catch the show LIVE SUNDAY:

• Noon Pacific
• https://jblive.tv
• Network Calendar

— CHRIS’ STASH —

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

The post All By My SELF | LAS 424 first appeared on Jupiter Broadcasting.

We risk it all and toss our data into the new ownCloud 9 to give you our review. Find out about using ownCloud as an Evernote killer, Federated servers & the long-term commitment you’re making as an ownCloud user.

Plus Red Hat’s big news, the new Gnome & things go to the next level in our upcoming switch competition.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: Linux Academy

ownCloud 9 Review

Federated Sharing – What’s new in ownCloud 9.0

With ownCloud 9.0 we made it even easier to exchange the Federated Cloud IDs. Below you can see the administrator setting for the new Federation App, which will be enabled by default.

The option “Add server automatically once a federated share was created successfully” is enabled by default. This means, that as soon as a user creates a federated share with another ownCloud, either as a recipient or as a sender, ownCloud will add the remote server to the list of trusted ownClouds. Additionally you can predefined a list of trusted ownClouds. While technically it is possible to use plain http I want to point out that I really recommend to use https for all federated share operations to secure your users and their data.

What does it mean that two ownClouds trust each other? ownCloud 9.0 automatically creates a internal address book which contains all users accounts. If two ownClouds trust each other they will start to synchronize their system address books. In order to synchronize the system address books and to keep them up-to-date we use the well known and widespread CardDAV protocol. After the synchronization was successful ownCloud will know all users from the trusted remote servers, including their Federated Cloud ID and their display name. The share dialog will use this information for auto-completion. This allows you to share files across friendly ownClouds without knowing more than the users name. ownCloud will automatically find the corresponding Federated Cloud ID and will suggest the user as a recipient of your share.

Time to Upgrade to ownCloud 9.0!

Why Should I Upgrade?

• Read this blog post for 5 reasons to upgrade to a newer ownCloud. A summary:

1. ownCloud usage grew last year from 2.4 to 8 million so newer releases have far more users
2. Testing improves, benefiting newer releases more than older, in part because
3. Backporting is limited to security fixes for releases older than Latest-1
4. Clients take advantage of features only in newer server versions
5. We introduce features which improve reliability

• Bug#816376: Bug#816376: Unfit upstream
• Install Owncloud on Centos 7
  

  https://www.techtransit.org/setup-private-cloud-storage-owncloud-9-centos-rhel-7/

— PICKS —

Runs Linux

Maple Runs Linux

Dear Chris, I am writing to reply to your question in LAS episode 404 that Maine does in fact have WiFi. I have been working on a project at a local Sugar House to bring remote monitoring of a maple syrup operation run as a small family business.

I enjoy a lot of the content at Jupiter Broadcasting and now that I am deriving billable value from your content, I will be becoming a patron over at patreon.com. I also checked out teespring.com and found a JB polo, but unfortunately it is out of stock. If I were to find a JB, LAS, Tech SNAP, Tech Talk Today, BSD Now, or Linux Unplugged polo over there in the future, I would be sure to pick one up. Thanks for the great programming, please keep it up.

• https://imgur.com/a/8IiZN
• Full Text

Desktop App Pick

QOwnNotes – cross-platform open source plain-text file notepad

QOwnNotes is the open source (GPL) plain-text file notepad with markdown support and todo list manager for GNU/Linux, Mac OS X and Windows, that (optionally) works together with the notes application of ownCloud.

Weekly Spotlight

Newsbeuter

Newsbeuter is an open-source RSS/Atom feed reader for text terminals. It
runs on Linux, FreeBSD, Mac OS X and other Unix-like operating systems.
Newsbeuter’s great configurability and vast number of features make it a
perfect choice for people that need a slick and fast feed reader that can
be completely controlled via keyboard.

A summary of some of its features:

• Subscribe to RSS 0.9x, 1.0, 2.0 and Atom feeds
• Download podcasts
• Freely configure your keyboard shortcuts
• Search through all downloaded articles
• Categorize and query your subscriptions with a flexible tag system
• Integrate any data source through a flexible filter and plugin system
• Automatically remove unwanted articles through a “killfile”
• Define “meta feeds” using a powerful query language
• Synchronize newsbeuter with your bloglines.com account
• Import and exporting your subscriptions with the widely used OPML format
• Freely define newsbeuter’s look’n’feel through free color configurability and format strings
• Keep all your feeds in sync with Google Reader
• Newsbeuter is the Mutt of RSS feed readers.
• Not convinced? See for yourself.

— NEWS —

​Red Hat becomes first $2b open-source company

Just think: Some people still don’t believe that you can make money from Linux and open-source software. Fools! Red Hat just became the first open-source company to make a cool 2 billion bucks.

GNOME 3.20 Release Notes

GNOME 3.20 is the latest version of GNOME 3, and is the result
of 6 months’ hard work by the GNOME community. It contains major new
features, as well as many smaller improvements and bug fixes. In total, the
release incorporates 28933 changes, made by approximately 837
contributors.

11 Neat New Features in GNOME 3.20

To celebrate this milestone we’ve scoured the change-logs to pull out 11 GNOME 3.20 features we think you’re going to love…

• GTK+ 3.20

Feedback:

Brought to you by: System76

Mail Bag

• https://slexy.org/view/s2gqLQiKTD
• Configuration Management at DigitalOcean Past, Present, and the Future – YouTube
• https://slexy.org/view/s20OUukMC4
• https://slexy.org/view/s20WSIV0GC

Noah v. Emma: Switching People to Linux

• Noah vs Emma Card
• Can not already be running Linux.
• Must agree to install Linux, or have Linux installed
• Will take place Sat during Linux Fest NW (Location TBD)
• Come find Noah let him switch you to Linux and get a free SSD installed.

Call Box

• Chris’ call out for the community to help him with his background

Catch the show LIVE SUNDAY:

• Noon Pacific
• https://jblive.tv
• Network Calendar

— CHRIS’ STASH —

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

The post Floating on ownCloud 9 | LAS 410 first appeared on Jupiter Broadcasting.

Researchers develop an ultrasonic mesh network to extract data from computer networks, Feedly and Evernote get attacked, and something is amiss with Windows 7.

Then its a great batch of your feedback, our answers, and much much more!

Thanks to:

— Show Notes: —

Exfiltrating data using an ultrasonic mesh network

• Researchers at the Fraunhofer institute in Germany have developed a protocol based on an underwater communications protocol, to pass messages between laptops using their speakers
• Fraunhofer Institute is famous for having invented the MP3 audio codec and being a significant contributor to the H.264/MPEG-4 AVC video codec.
• The paper describes a ‘Covert Channel’ that can be used to circumvent firewalls and intrusion detection systems
• The system uses ultrasonic sound, emitted by laptop speakers and received by laptop microphones
• The range is about 20 meters and the provides about 20 bits/second of bandwidth
• The general principle is to create a mesh network of laptops in order to exfiltrate data from a protected network or location
• The proof of concept was created by installing a keylogger on a laptop, which would then send the data back to the attacker by emitting the ultrasonic (inaudible to the human ear) sounds, which would then be picked up by another infected machine and repeated, extending the transmission range
• Eventually the signal may be able to reach a machine outside of the protected area or network, and be received by the attack, or re-transmitted by regular means
• As a countermeasure, they suggest possibly disabling the speakers/microphone entirely
• As a more useful countermeasure, they suggest a low-pass filter that would either remove the ultrasonic frequencies from the output, or shift them down to audible range so they can be detected by humans
• The paper also discusses a host-based intrusion detection system that analyzes audio input and output for suspect signals
• Full PDF

Feedly And Evernote Go Down As Attackers Demand Ransom

• After restoring its services after Wednesday’s attack, the Feedly team reported in a blog post Thursday morning that it had been hit by a second DoS attack. As of late Thursday morning, Feedly is down again.
• On Thursday June 12th Feedly Posted to their Blog: “2:04am PST – Criminals are attacking feedly with a distributed denial of service attack (DDoS). The attacker is trying to extort us for money to make it stop. We refused to give in and are working with our network providers to mitigate the attack as best as we can.”
• In Evernote’s case, the company noted yesterday evening that it was unavailable, and that it was working to neutralize a denial of service attack. A few hours later, a message on Evernote’s Twitter account said its service was restored – but it’s not out of the woods yet. “There may be a hiccup or two for the next 24 hours,” the tweet warned.
• At least in Feedly’s case the attackers demanded a ransom to stop the attack.
• It’s unknown as of now if the hackers are demanding ransom from Feedly on day two of the attack. The company has not responded to a request for comment.
• Denial of service attack [Neutralized] – Feedly Blog
• Feedly, Evernote And Others Become Latest Victims Of DDoS Attacks
• BBC News – Feedly and Evernote struck by denial of service cyber-attacks
• EuroBSDCon 2013 — Allan Jude — Mitigating DDoS Attacks at Layer 7

Microsoft patching flaws in Windows 8, but not Windows 7?

• Researchers found the gaps after they scanned 900 Windows libraries and uncovered a variety of security functions that were updated in Windows 8 but not in 7. They said the shortcoming could lead to the discovery of zero day vulnerabilities.
• The missing safe functions were part of Microsoft’s dedicated libraries intsafe.h and strsafe.h that help developers combat various attacks.
• Researcher Moti Joseph and malware analyst Marion Marschalek (@pinkflawd) developed a capable diffing (comparison) tool dubbed DiffRay which would compare Windows 8 with 7, and log any safe functions absent in the older platform.
• In a demonstration of DiffRay, the researchers found four missing safe functions in Windows 7 that were present in 8.
• Including:
  • bcrypt.dll!ConvertRsaPrivateBlobToFullRsa
  • netlogon.dll!NlpAddResourceGroupsToSamInfo
  • twext.dll!EscapeField (possible unpatched interger overflow in Windows 7, fixed in 8)
• Slides
• Video – What happens in Windows 7, stays in Windows 7

Feedback:

• SSD read-caching at hardware RAID level?

• What would you do to make a SoHo server the most reliable?

• GPG and Email encryption

• Regarding secure FTP clients…

• MPLS or VPN

Round Up:

• Replicating NSA’s gadgets using open source
  
• iOS 8 strikes an unexpected blow against location tracking
• Cisco patches cross-site-scripting flaws in security appliances that allowed unauthenticated remote code execution
• Massive TweetDeck outage may have been ‘accident’ caused by teen’s experiment
• Google engineer: We need more Web programming languages
• Microsoft Protests Order to Disclose Email Stored Abroad
• Juniper Networks Partner caught selling beta and pre-release hardware to Cisco. Cisco reverse engineering Junipter products to try to blunt competitive edge, claims it was looking for IP infringment
• Cyberbullying law would let police ‘remotely hack into computers, mobile devices, or cars’
• NSF Researcher banned after caught using super computers to mine bitcoins
• Canada: 14-Year-Olds Hack ATM Using Default Password Available on the Internet
• Krebs — P.F. Changs latest victim in credit card breach, started in March

The post Demilitarized Tone | TechSNAP 166 first appeared on Jupiter Broadcasting.

We’ve warned against it for nearly 100 episodes, this week we’ll share the fallout from NBC.com getting hacked, Bit9’s whitelist technology is use against them and their customers.

Plus the bad news for Java users, a batch of your questions, and some big surprises.

Thanks to:

GoDaddy.com Use our code hostdeal4 to score economy hosting for $1 a month, for one year. 35% off your ENTIRE order just use our code go35off4 until the end of the month!
Ting.com Visit techsnap.ting.com to save $25 off your device or service credits.

Support the Show: