Show Notes: linuxunplugged.com/404

The post You've Got Mail | LINUX Unplugged 404 first appeared on Jupiter Broadcasting.

Show Notes: linuxunplugged.com/402

The post Our Worst Idea Yet | LINUX Unplugged 402 first appeared on Jupiter Broadcasting.

Show Notes: linuxunplugged.com/401

The post Own Your Mailbox | LINUX Unplugged 401 first appeared on Jupiter Broadcasting.

HD Video Feed | MP3 Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

Show Notes:

SQUIRRELMAIL REMOTE CODE EXECUTION VULNERABILITY

• improperly santized parameters

• Invoking sendmail binary from with PHP

• Dawid Golunski disclosed the vulnerability

• FreeBSD version is newer than articles states is latest release

Anonymous domain purchases

• Anonymity has long been practiced for activism. Many famous authors have published under a pseudonym.

• Domain name is from Laos, but company is based in St Kitts.

• What are the risks with trusting this group?

Net Neutrality Alive and Well in Canada: CRTC Crafts Full Code With Zero Rating Decision

• Very strong decision and very postive for Canadian consumers.

Feedback

• Advice on a virtualization server

• Short oveview of DNS – phone book analogy

Round Up:

• reverse engineer of the Apple File System

• How Swat.io migrated from MySQL to PostgreSQL in 2 yearsPosted

• And this is why you secure ssh on web facing servers…

• Dan’s switch replacement turned into a rewire

• Used this for WIFI until things worked

• Nearly done

• Cable Comb

• The Cuckoo’s Egg: Tracking a Spy Through the Maze of Computer Espionage

The post PHP Steals Your Nuts | TechSNAP 316 first appeared on Jupiter Broadcasting.

We take a look at some of the coolest technologies coming out of the Plasma desktop & finally a open source router you and your family can use. Then we share some of our favorite ncurses terminal based applications, you might just be surprised at how modern these terminal apps are!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Pre-Show:

• New subreddit chronicles the most public “blue screens of death”

• Linus Torvalds wants to see a Linux-based ARM laptop

Feedback:

• KDE Ships KDE Applications 15.08.2

October 13, 2015. Today KDE released the second stability update for KDE Applications 15.08.

This release contains only bugfixes and translation updates, providing a safe and pleasant update for everyone.

More than 30 recorded bugfixes include improvements to ark, gwenview, kate, kbruch, kdelibs, kdepim, lokalize and umbrello.

This release also includes Long Term Support version of KDE Development Platform 4.14.13.

• Does LAS hate KDE? :

TING

• Ting – mobile that makes sense

Using KDE Connect to Sync your Android Device with Your Linux Computer :

It is a great app that does not require you to use KDE. There is an indicator applet to make KDE Connect work with every DE. This makes it even more awesome.

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

Turris Omnia

Home router is necessary to connect you to the Internet but it is idle most of the time,
just eating electricity. Why not use it for more tasks?
With powerful hardware, Turris Omnia can handle gigabit traffic and still be able to do much more.
You can use it as a home server, NAS, printserver and it even has a virtual server built-in.

• Gargoyle Router Management Utility
• Gargoyle Shop – Gargoyle Pocket Router

Linux Academy

• Linux Academy | Linux and AWS Online Training

Episode Idea – Ncurses everything :

• Ncdu Screenshots

• Tox/toxic · GitHub

Toxic is a Tox-based instant messenging client which formerly resided in the Tox core repository, and is now available as a standalone application.

• Pipecut Project Home

Pipecut tries to facilitate the development of pipelines by letting you see your data and your shell commands at the same time, eliminating the back and forth editing cycle of entering and quitting more(or less), then recalling and editing the command line. Since pipecut has an AST view of the Unix command line, it can provide shortcuts, optimizations, and do code generation that would not be possible otherwise.

• rtv

RTV is an application that allows you to view and interact with reddit from your terminal. It is compatible with most terminal emulators on Linux and OSX.

• C* Music Player

cmus is a small, fast and powerful console music player for Unix-like operating systems.

• The Tilde Text Editor – ghalkes:~#

Tilde is a text editor for the console/terminal, which provides an intuitive
interface for people accustomed to GUI environments such as Gnome, KDE
and Windows. For example, the short-cut to copy the current selection is
Control-C, and to paste the previously copied text the short-cut Control-V can
be used. As another example, the File menu can be accessed by pressing Meta-F.

Runs Linux from the people:

• Send in a pic/video of your runs Linux.
• Please upload videos to YouTube and submit a link via email or the subreddit.

Support Jupiter Broadcasting on Patreon

The post KDE Connect All the Things | LINUX Unplugged 114 first appeared on Jupiter Broadcasting.

After the last straw Noah dumps Gmail, shares his battle and solution & Chris runs down five great open source Gmail alternatives.

Plus why Dell stopped shipping the XPS 13 in Europe, a big update to a Linux video editor, the news of the week & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: System76

Open source webmail clients for browser-based email

Gmail has enjoyed phenomenal success, and regardless of which study you choose to look at for exact numbers, there’s no doubt that Gmail is towards the top of the pack when it comes to market share. For certain circles, Gmail has become synonymous with email, or at least with webmail. Many appreciate its clean interface and the simple ability to access their inbox from anywhere.

But Gmail is far from the only name in the game when it comes to web-based email clients. In fact, there are a number of open source alternatives available for those who want more freedom, and occasionally, a completely different approach to managing their email without relying on a desktop client.

Let’s take a look at just a few of the free, open source webmail clients out there available for you to choose from.

FastMail: Fast, reliable email

FastMail is the choice of over 100,000 individuals, families and businesses. We deliver the highest standards of security, privacy and reliability for your email, calendars and contacts, backed up by our exemplary 15-year track record.

• How to set up a photo gallery | FastMail

• How to set up chat (instant messaging) | FastMail

KolabNow

With over 108 billion business emails sent daily, email is the backbone of professional communication. Kolab provides the email, contact and file sharing functionality that empowers enterprise communication.

Looking for a fully featured collaboration and communication platform? Seeking the convenience of the cloud, without having to worry about who else might have access? Want to ensure that your data is stored only in a single legislation, with highest barriers to data disclosure? Kolab Now is that service.

Safeguard your professional and personal data with Kolab Now. Enjoy the world’s world’s best privacy legislation and terms of service that put you first. All of this with a feature set that is complete to allow you to run your entire business collaboration.

DarkMail

Silent Circle and Lavabit are developing a new way to do email with end-to-end encryption. We welcome like-minded organizations to join our alliance.

To bring the world our unique end-to-end encrypted protocol and architecture that is the ‘next-generation’ of private and secure email. As founding partners of The Dark Mail Technical Alliance, both Silent Circle and Lavabit will work to bring other members into the alliance, assist them in implementing the new protocol and jointly work to proliferate the world’s first end-to-end encrypted ‘Email 3.0’ throughout the world’s email providers. Our goal is to open source the protocol and architecture and help others implement this new technology to address privacy concerns against surveillance and back door threats of any kind.

— PICKS —

Runs Linux

Shanghai Subway Runs Linux

Hi guys, For 5 years I’m living in Shanghai and I suddenly discover that ubuntu is running the streaming tv in the Shanghai’s subway ! Here’s few links for the pictures

https://i.imgur.com/DFynJVU.jpg

View post on imgur.com

View post on imgur.com

https://i.imgur.com/EBbfytP.jpg

a link to the incredible expansion of the shanghai’s subway
https://upload.wikimedia.org/wikipedia/commons/thumb/9/9f/SHM_evolution_mid.gif/400px-SHM_evolution_mid.gif

Sent in by Dasti

Desktop App Pick

Lighttable

• Connects you to your creation with instant feedback and showing data values flow through your code.

• Easily customizable from keybinds to extensions to be completely tailored to your specific project.

• Try new ideas quickly and easily. Ask questions about your software, to give you a more profound understanding of your code.

• Embed anything you want, from graphs to games to running visualizations.

• Everything from eval and debugging to a fuzzy finder for files and commands to fit seamlessly into your workflow.

• An elegant, lightweight, beautifully designed layout so your IDE is no longer cluttered.

LightTable in Action

Weekly Spotlight

Flowblade 1.2

Flowblade 1.2 is the ninth release of Flowblade.

• Flowblade has now been ported to GTK3.

• The process was not as straight forward as one might think but eventually everything worked out. There always seemed to be just one more little change in API that required all instances to be fixed by hand. Luckily there was a conversion script available that did most of the grunt work to get things going.

• We did get something in return. A small but percipteble responsiveness improvement was gained probably because GTK3 provides a Cairo widget for creating custom widgets that is now used instead of the project specific Cairo widget that was used before. GTK3 also seems to render widgets a bit crispier.

• I really hope that major API breaking version jumps for widget toolkits are avoided as much as possible. Projects with large interface and small man power can really suffer here.

• There were some other major developments during the cycle too:

• All rendering was moved out of process as the in-process rendering was found to not work correctly in same cases.

• Dark theme support was improved. It is now possible to use a dark theme just by setting a preference if the GTK3 theme used has a dark variant available.
• Small screen support has been upgraded. The application now works better on 768px height screens.

Spokane Roadtrip Meetup

— NEWS —

Dell XPS 13 Developer Edition No Longer Available for Sale in Europe

“Unfortunately Europe has already run through their forecasted inventory (they sold better than we expected). The US still has inventory on hand. Because there will be a next gen coming out we won’t be getting any more of this model. Thanks for the support!” wrote Dell’s Barton George on his website. He’s the same guy who announced that the XPS 13 was brought back to the shop a while back.

Mozilla: data stolen from hacked bug database was used to attack Firefox

Mozilla added that the attacker accessed 185 non-public Firefox bugs, of which 53 involved “severe vulnerabilities.” Ten of the vulnerabilities were unpatched at the time, while the remainder had been fixed in the most recent version of Firefox at the time.

Attack code exploiting Android’s critical Stagefright bugs is now public

The critical flaws, which reside in an Android media library known as libstagefright, give attackers a variety of ways to surreptitiously execute malicious code on unsuspecting owners’ devices. The vulnerabilities were privately reported in April and May and were publicly disclosed only in late July. Google has spent the past four months preparing fixes and distributing them to partners, but those efforts have faced a series of setbacks and limitations.

We Did It!! (Mycroft was successfully funded!) – YouTube

We have successfully funded our Kickstarter campaign! Let us thank you and learn about whats in store for they Mycroft team! Remember to check out our Kickstarter at: https://mycroft.ai/kickstarter

• Mycroft: An Open Source Artificial Intelligence For Everyone by Joshua Montgomery

Feedback:

• Vote on the Mobile Studio Name

• https://slexy.org/view/s290nhkjD6

• https://slexy.org/view/s20iHMJWRL

Road Trip Playlist

Watch the adventures, productions, road trips, trails, mistakes, and fun of the Jupiter Broadcasting mobile studio.

• Support Jupiter Broadcasting on Patreon

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

— CHRIS’ STASH —

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

Catch the show LIVE Friday:

• https://jblive.tv
• Network Calendar

The post Gmail in the Black Tank | LAS 382 first appeared on Jupiter Broadcasting.

Google is re-thinking email and launches Inbox, a new gmail that’s not gmail, but is connected to your gmail. We’ll explain. Apple Pay hits a few glitches & PC World takes a bold step.

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed

Become a supporter on Patreon:

Show Notes:

Inbox is a total reinvention of email from Google | The Verge

The new Gmail app from the Gmail team isn’t technically just an email app, at least if you ask them. It’s called “Inbox,” and it’s being released as an invite-only system that works on the Chrome browser, Android phones, and iPhones. It feels completely native and fast on all of those systems. But it’s a native and fast app that does something 10 degrees away from what you’d expect an email app to do. My first impression of Inbox is that it’s really great, but a little weird.

The basic idea is this: it’s still a Gmail app, but instead of giving you the traditional list of emails, it tries to intelligently give you more information so you don’t have to even open them. Google Now-style info cards appear right in line with your message list, including things like flight times, package tracking, and photos.

It also tries to intelligently “bundle” emails into groups that you can quickly dismiss.

Apple Pay glitch sees some early adopters hit with duplicate charges

APPLE PAY has got off to a shaky start in the US after some shoppers reported that the NFC mobile payments service had charged them twice for purchases.

The Apple Pay problem largely affects Bank of America customers, according to a report on Bloomberg.

The report claims that around 1,000 Bank of America debit transactions on Apple Pay were mistakenly duplicated, seeing some people charged twice.

The problem was blamed on a processing error that occurred between the bank and at least one payments network, according to Bloomberg‘s inside source, who added that the glitch is likely to be fixed today.

Chromebook shipments leap by 67 percent | ZDNet

ABI Research found that, in the most recent quarter, Chromebook shipments increased by 67 percent quarter over quarter. The research company expects that year over year, Chromebooks shipments will double.

Specifically, ABI found that Acer is continuing to maintain its lead over other vendors in the market, including Samsung, HP, and Dell. By ABI’s count, the top three leading vendors, Acer, Samsung, and HP, accounted for 74 percent of all Chromebooks shipped during the first half of 2014. ABI doesn’t see the top three changing in the waning months of 2014.

ABI also found that vertical markets — especially education — are a driving force. In emerging markets, especially in Asia-Pacific and Eastern Europe, business-purchasing entities account for 75 percent of Chromebook sales. Google is also making an enterprise push for Chromebooks with its Chromebooks for Work initiative.

PCWorld begins weekly column on Linux and other non windows OSes.

https://www.pcworld.com/article/2825493/meet-world-beyond-windows-the-new-pcworld-column-dedicated-to-linux-chrome-os-and-anything-but-wind.html

The post Gmail isn't Gmail: it's gmail | Tech Talk Today 80 first appeared on Jupiter Broadcasting.

A mobile provider is hacked, customer records are breached, and the authorities suspect it was an inside job, we’ll share the details.

Then we’ll discuss the NSA induced crisis of trust we now collectively share, plus your questions, our answers, and much much more!

On this week’s TechSNAP!

Thanks to:

— Show Notes: —

Vodafone Germany breached, possibly by insiders

• The internal servers of Vodafone Germany were compromised, and data for over 2 million customers was stolen
• The breach only disclosed information on German customers, who will be notified by mail
• The way the attackers managed to compromise the servers suggest they had help from an insider
• Vodafone turned their evidence over to German police, “An individual has been identified by the police and their assets have been seized.”
• Compromised data:
• customer names
• address
• gender
• birth date
• bank account numbers and bank sort codes
• Other data including phone numbers, credit card numbers and passwords are currently thought to be safe. “No personal call information or browsing data was accessed by the attacker”
• The attack was originally discovered on September 5th, however Police asked the company to withhold the notification while they executed their investigation and made arrests and seizures
• “German news agency DPA reported that the suspect had worked for a contractor of the company and was not a Vodafone employee”
• Additional Coverage
• Vodafone is advising customers to be on the lookout for targeted Phishing scams that might use the personal information gained from this attack to make successful attacks against the victims and their banking and credit card accounts
• eu data breach notification law

Trust

• to believe that someone is good and honest and will not harm you, or that something is safe and reliable
• Bruce Schneier – Trust in Man/Machine Security Systems
• Colin Percival – Don\’t trust me: I might be a spook
• Kevin Mitnick – Use a VPN
• Bruce Schneier – The US Government Has Betrayed the Internet. We Need to Take It Back
• TechRepublic – Escaping the dragnet of surveillance
• Kurt Roeckx – State of encryption
• Bruce Schneier – How Advanced Is the NSA\’s Cryptanalysis—And Can We Resist It?
• The Guardian – How to foil NSA sabotage: use a dead man\’s switch
• Matthew Green – On the NSA
• BoingBoing – Firsthand account of NSA sabotage of Internet security standards
• BBC – \’Money reduces trust\’ in small groups, study shows – Bruce Schneier – The Effect of Money on Trust
• Ed Felton – NSA Apparently Undermining Standards, Security, Confidence
• Bruce Schneier – Americans Must Sacrifice Some Security to Reform the NSA

You can buy a 2 letter domain name like IG.com sells for $4.7 million – Or you can buy your .com from GoDaddy for $1.99

Feedback

• Thoughts on fingerprint scanners?

• Syncing of contacts?

• Home Fileserver

• Question about fail2ban

• TechSnap is on Halloween this year…

Round Up:

• NSA surveillance: how to stay secure | Bruce Schneier
• ISC looking for help tracking a new adaptive botnet, possibly related to Blackhole malware toolkit
• LastPass : The last password you\’ll have to remember: LastPass and the NSA Controversy
• Intel announces new Atom Z3000 series
• Google’s plan to make it harder for the NSA to spy on users
• Seagate announces new ‘Shingled Magnetic Recording’, layers tracks on top of each other to increase bit density.
• Researchers find flaws in the installation mechanism of of the GameHouse platform
• New paper details keylogged that stealthily runs on your GPU
• Google, Yahoo and Facebook ammend requests to publish transparency reports
• The challenges of running a PriateBay Proxy to defeat Censorship
• New zeroday exploit for USB internet modem puts millions of PCs at risk

The post NSA SSLeaze | TechSNAP 127 first appeared on Jupiter Broadcasting.

Bodhi Linux grabbed our attention with the stable release of E17. We’ll tell you what makes this scrappy distribution standout, and why E17 could be an XFCE killer.

Plus: Our meta review of Fedora 18, Gnome 3 forked again, the awesome game coming to Linux next week, and Ubuntu’s possible BIG gamble.

Then your emails, our picks of the week, and MUCH MORE!

All this week on, The Linux Action Show!

Use our code linux295 to get a .COM for $2.95.

Expires 1-31-13!

20% off your ENTIRE order just use our code go20off6.

Download:

HD Video | Mobile Video | Ogg Video | MP3 Audio | Ogg Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Feed | Ogg Feed | iTunes Feeds | Torrent Feed

Support the Show: