Show Notes: extras.show/44

The post Brunch with Brent: Joe Ressington | Jupiter Extras 44 first appeared on Jupiter Broadcasting.

Show Notes: linuxunplugged.com/316

The post Self Hosted Secrets | LINUX Unplugged 316 first appeared on Jupiter Broadcasting.

Show Notes/Links: linuxunplugged.com/285

The post Pain the APT | LINUX Unplugged 285 first appeared on Jupiter Broadcasting.

Show Notes/Links: linuxunplugged.com/263

The post Updates from the Source | LINUX Unplugged 263 first appeared on Jupiter Broadcasting.

RSS Feeds:

HD Video Feed | MP3 Feed | iTunes Feed

Become a supporter on Patreon:

Episode Links

• GNOME turns 20 — There have been 33 stable releases since the initial release of GNOME 1.0 in 1999.
• Debian turns 24
• Raspbian Stretch has arrived for Raspberry Pi — PulseAudio is therefore no longer installed by default, and the volume plugin on the taskbar will no longer start and stop PulseAudio.
• Work on Debian for mobile devices continues — Work on Debian for mobile devices, i.e. telephones, tablets, and handheld computers, continues. During the recent DebConf17 in Montréal, Canada, more than 50 people had a meeting to reconsider opportunities and challenges for Debian on mobile devices.
• Lineage summer survey — The survey is really simple and we won’t collect any sensitive information.
• Solus 3 Released — On behalf of the Solus team and community, we’re extremely proud to announce the immediate availability of Solus 3. This is the third iteration of Solus since our move to become a rolling release operating system.
• ZFS On Linux Adds Encryption Support — This support allows creating and managing natively-encrypted datasets. There have been ZOL patches going back months for encryption
• Bitcoin Is Forking. Again. — Three months from now, there will likely be three different versions of bitcoin all attempting to prepare the currency for more traffic in different ways.
• Henry Brade Call for a Fight Against SegWit2x on Twitter — The SegWit2X hard fork scheduled for Nov is an attempted hostile corporate takeover of the #Bitcoin protocol.

The post Linux Action News 15 first appeared on Jupiter Broadcasting.

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Follow Up / Catch Up

GNU founder Richard Stallman's famous quote resonates with today's @WikiLeaks publication on the CIA's #Vault7 https://t.co/h5wzfrReyy pic.twitter.com/aPk2CK2DbN

— WikiLeaks (@wikileaks) March 7, 2017

Vault7 – HIVE Targets Linux

The CIA has developed automated multi-platform malware attack and control
systems covering Windows, Mac OS X, Solaris, Linux and more, such
as EDB’s “HIVE” and the related “Cutthroat” and “Swindle” tools, which are
_described in the examples section below._

• Vault7 – Home

HIVE

HIVE is a multi-platform CIA malware suite and its associated control
software. The project provides customizable implants for Windows, Solaris,
MikroTik (used in internet routers) and Linux platforms and a Listening
Post (LP)/Command and Control (C2) infrastructure to communicate with
these implants.

The implants are configured to communicate via HTTPS with the webserver of a
cover domain; each operation utilizing these implants has a separate cover
domain and the infrastructure can handle any number of cover domains.

Each cover domain resolves to an IP address that is located at a commercial
VPS (Virtual Private Server) provider. The public-facing server forwards all
incoming traffic via a VPN to a ‘Blot’ server that handles actual connection
requests from clients. It is setup for optional SSL client authentication: if
a client sends a valid client certificate (only implants can do that), the
connection is forwarded to the ‘Honeycomb’ toolserver that communicates with
the implant; if a valid certificate is missing (which is the case if someone
tries to open the cover domain website by accident), the traffic is forwarded
to a cover server that delivers an unsuspicious looking website.

The Honeycomb toolserver receives exfiltrated information from the implant; an
operator can also task the implant to execute jobs on the target computer, so
the toolserver acts as a C2 (command and control) server for the implant.

Similar functionality (though limited to Windows) is provided by the RickBobby
project.

See the classified user and
developer guides for HIVE.

What time period is covered?

The years 2013 to 2016. The sort order of the pages within each level is determined by date (oldest first).

WikiLeaks has obtained the CIA’s creation/last modification date for each page but these do not yet appear for technical reasons. Usually the date can be discerned or approximated from the content and the page order. If it is critical to know the exact time/date contact WikiLeaks.

What is “Vault 7”

“Vault 7” is a substantial collection of material about CIA activities obtained by WikiLeaks.

When was each part of “Vault 7” obtained?

Part one was obtained recently and covers through 2016. Details on the other parts will be available at the time of publication.

Setting Up a Linux Build Environment for EFI

This page will walk you through building a build environment for a Linux machine. Specifically, this tutorial is focused on Ubuntu/Linux Mint.

If you're writing about the CIA/@Wikileaks story, here's the big deal: first public evidence USG secretly paying to keep US software unsafe. pic.twitter.com/kYi0NC2mOp

— Edward Snowden (@Snowden) March 7, 2017

Linux Academy

• Linux Academy | Linux and AWS Online Training

“Linux Sucks… For the Last Time” – 2017

“Linux Sucks”. 2017 edition. The very last “Linux Sucks”. Ever. Recorded live at the Southern California Linux Expo (SCaLE) on March 2nd, 2017.

The Story of Firefox OS

Well, I’m Ben and I’m a Mozillian. I’m a Software Engineer who worked on the “Boot to Gecko” project full time for five years and I have a story to tell.

The Endless Mission One is a gorgeous Linux-powered desktop with a tempting price tag

But the Endless Mission One, which is the subject of this review, is significantly more expensive, costing $250. It also packs more capable hardware, and a gorgeous wood finish that wouldn’t look out of place in a home office. P

OggCamp 17 – Aug 19th & 20th 2017 | Canterbury, UK

OggCamp 17 is on! Canterbury Christ Church University, 19th-20th August 2017 https://t.co/nYNbYBTO6l pic.twitter.com/AK3ZeRBK1X

— OggCamp (@oggcamp) February 26, 2017

OggCamp is a Free Culture Unconference.

TING

• Ting – mobile that makes sense

Gnome and Endless at SCaLE 15x

• The Endless Mission One is a gorgeous Linux-powered desktop with a tempting price tag

View post on imgur.com

The Endless Mission One comes in two variants — one with 320GB of storage, and one with 500GB. I reviewed the latter.

• Get the most out of GNOME notifications – Fedora Magazine

For many users, GNOME 3, also known as Gnome Shell, is the definitive desktop interface. It’s clean and simple, without too many twinkles or distractions. That said, this article describes some tricks to change the GNOME notifications experience.

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

Litebook is a $249 Linux laptop – Liliputing

You can order the 2.9 laptop from the Litebook website. A model with a 512GB hard drive is priced at $249. Or you can pay $20 more for a version with a 32GB mSATA solid state disk and a 512GB hard drive.

• Litebook – Slim, Light, Elegant — Take Back Control of your Digital Life

k. Litebooks are the perfect combination of beautiful hardware and software. Fast and intuitive the Litebook offers a computing experience like no other. Unlike Windows laptops, Litebooks are highly optimized, come without performance hogging bloatware, are designed to ensure your privacy, and are entirely free of malware and viruses, while unlike macs Litebooks are affordable, customizable, and are backwards compatible with windows software.

The post CIA's Dank Trojans | LINUX Unplugged 187 first appeared on Jupiter Broadcasting.

New Desktop Environment updates grab our attention & the trend to move open source projects towards Slack has us concerned.

Plus how the VW emissions issue is great for hackers, an OggCamp recap & we light a candle for Fedora 23.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Pre-Show:

• Alien: Isolation Released For Linux, Prepare Your Spare Pants, Port Report, Review & Sale

Alien: Isolation has officially been released for Linux, and continues our trend of great AAA games. I would recommend playing this from behind a pillow, with emergency pants nearby.

Feedback:

• OggCamp

• LXDE – Lightweight X Desktop Environment / Mailing Lists

This release, we focused on cleanup, polishing and quality-of-life
improvements, with over 400 issues fixed and dozens of new
translations. We have also gained two new frameworks: Solid, which
replaces liblxqt-mount and some custom power management code and
libkscreen, which replaces system xrandr calls and is wayland
forward-compatible.

• Notes in plain text files

QOwnNotes was my answer.
https://www.qownnotes.org

Linux Academy

• Linux Academy | Linux and AWS Online Training

Cinnamon 2.8 released!

On behalf of the team and all the developers who contributed to this build, I am proud to announce the release of Cinnamon 2.8!

This new version will be featured in Linux Mint 17.3 “Rosa” planned for the end of November and in LMDE 2 “Betsy”.

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

The EPA says Volkswagen cheated on emissions testing again – YouTube

What route does someone who cares about this kinda stuff take. Do we just avoid all this stuff until its sorted out? I mean seriously, why not

• VW Diesel Crisis Illustrates Downside of Proprietary Vehicle Software

The Volkswagen diesel crisis is an ongoing reminder of the dilemma that proprietary auto software and hardware is presenting for automakers and consumers. In September, VW disclosed that alleged “defeat devices” were installed in 2009-15 VW and Audi diesel cars. How was VW able to get away with this for so long? Because the automaker’s onboard software is protected against outside inspection.

• Defendants should be able to inspect software code used in forensics.

But as shocking as Volkswagen’s fraud may be, it only heralds more of its kind. It’s time to address one of the most urgent if overlooked tech transparency issues—secret code in the criminal justice system. Today, closed, proprietary software can put you in prison or even on death row. And in most U.S. jurisdictions you still wouldn’t have the right to inspect it. In short, prosecutors have a Volkswagen problem.

• Volkswagen’s Diesel Fraud Makes Critic of Secret Code a Prophet – The New York Times

Mr. Moglen, a lawyer, technologist and historian who founded the Software Freedom Law Center, has argued for decades that software ought to be transparent. That would best serve the public interest, he said in his 2010 speech.

“Software is in everything,” he said, citing airplanes, medical devices and cars, much of it proprietary and thus invisible. “We shouldn’t use it for purposes that could conceivably cause harm, like running personal computers, let alone should we use it for things like anti-lock brakes or throttle control in automobiles.”

On Tuesday, Mr. Moglen recalled the elevator in his hotel.

“Intelligent public policy, as we all have learned since the early 20th century, is to require elevators to be inspectable, and to require manufacturers of elevators to build them so they can be inspected,” he said. “If Volkswagen knew that every customer who buys a vehicle would have a right to read the source code of all the software in the vehicle, they would never even consider the cheat, because the certainty of getting caught would terrify them.”

• Hacking your car is cool with us, says U.S. copyright authority – The Washington Post

But on Tuesday, the Library of Congress issued exemptions to DMCA that pleased many auto enthusiasts. In a ruling that also freed those who wish to modify tablets and smart TVs, the LOC said, more or less, monkey away.

TING

• Ting – mobile that makes sense

Fedora 23 released – Fedora Magazine

It’s (approximately) Halloween, so you know what that means — new Fedora! The Fedora 23 release is here, and it’s better than ever before. We’re pleased to bring you the latest incarnations of the three main Fedora editions — Fedora Workstation,Fedora Cloud, andFedora Server, each built with love by the Fedora community to custom-fit your needs in different areas. Fedora 23 is also available in alternate desktop Spins, curated software Labs, and special images for the ARM processor architecture.

If that’s all you need to hear, download from https://getfedora.org/, or if you already use Fedora, follow the simple upgrade steps. Otherwise, read on for details.

• What’s new in Fedora 23 Workstation – Fedora Magazine

Fedora 23 Workstation is now released. It’s a reliable, user-friendly, and powerful operating system aimed at home users, hobbyists, students, and software developers. Fedora 23 Workstation features the latest GNOME 3.18 release courtesy of the GNOME community. This release of GNOME includes updates to the Files browser, and the new Calendar and Todo applications. Fedora 23 Workstation is the first release of Fedora to include LibreOffice 5.

• Upgrading from Fedora 22 to Fedora 23 – Fedora Magazine

Support Jupiter Broadcasting on Patreon

The post Does Slack MatterMost? | LINUX Unplugged 117 first appeared on Jupiter Broadcasting.