Show Notes: linuxactionnews.com/252

The post Linux Action News 252 first appeared on Jupiter Broadcasting.

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Follow Up / Catch Up

OpenShot Video Editor | Blog: OpenShot 2.1 Released!

• Avidemux 2.6.13 Open-Source Video Editor Gets AAC/ADTS Import and Export

Editorial: I ditched SteamOS in favour of a normal Linux distribution for my gaming

That was the final nail in the coffin for my time with SteamOS. I don’t have time to deal with such breakage.

• Broken promises: Games that never made it to SteamOS and Linux | PCWorld

Maru OS mixes a custom ROM with a dockable Debian desktop, and now it’s open source

• GitHub – maruos/maruos: Welcome to the Maru OS Project!
• Device Port Thread – Google Groups

TING

• Ting – mobile that makes sense

Fedora 24 review: The year’s best Linux distro is puzzlingly hard to recommend

In the end, despite how much I enjoyed using Fedora 24 for a couple of months, it hasn’t convinced me to give up Arch. That’s not a totally fair comparison since much of what I like about Arch is that it’s a rolling release, but I would be more inclined to embrace Fedora if it had either a long-term support type of release that would last several years or a rolling release that dealt out updates as they were ready. As it stands, Fedora sits somewhere in the middle and ends up with an often awkward update process happening all too frequently. It’s possible that the new tools in DNF (and GNOME Software) will make things easier on the update front, but for now that’s far from certain.

Purism announces the creation of its Advisory Board

Purism is pleased to announce the creation of its Advisory Board, comprised of top-tier experts from the Free Software community: Kyle Rankin, Matthew Garrett, Aaron Grattafiori, and Stefano Zacchiroli. Together, they bring their vision—with decades of experience in cybersecurity, privacy protection, and digital freedom—to Purism’s product development, as the company continues to create products that finally address privacy and digital rights by default, rights that 86% of computer users cite as a concern.

Linus Torvalds Announces Linux Kernel 4.8 RC4 with Skylake Power Management Fix

the biggest new feature being a fix for an Intel Skylake power management bug. However, there are also the usual updated drivers, arch improvements, and some KVM changes.

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

Grepping logs is terrible

You see, the main difference between me and proponents of text-based log storage is that I want my queries and their results to be human readable, and I don’t care how that is accomplished. They, on the other hand, want their raw data to be human readable, and would sacrifice convenience for the sake of being able to keep data textual.

• I’m really liking systemd : linux

• Wes’ new router build using systemd-nspawn container and all the networking being configured by systemd-networkd

  Container technologies in Fedora: systemd-nspawn

  
  https://www.freedesktop.org/software/systemd/man/systemd.network.html
  https://www.freedesktop.org/software/systemd/man/systemd-nspawn.html

• Re: Is missing SysV-init support a bug?

• #835222 – needs multiple restarts until network is fully up – Debian Bug report logs

Linux Academy

• Linux Academy | Linux and AWS Online Training

Kent Overstreet is creating bcachefs – a next generation Linux filesystem

Wimpy Goes All In on Ubuntu Touch

• PRO 5 – Summary – MEIZU

• Flyme

• Meizu PRO 5 – Full phone specifications

• The Meizu Pro 5 is close to perfect, except for one thing… [REVIEW]

How to install Ubuntu on Meizu Pro 5 that was originally with Android?

• XDA Developers: [TUTORIAL] Change region/ID to International in Meizu Pro 5

Note: If you are using the global version, you needn’t do this setup.

• XDA Developers: [TUTORIAL] Unlock the bootloader of Meizu PRO 5
• XDA Developers: [RECOVERY][M86][UNOFFICIAL] TWRP 3.0 for Meizu PRO
• Read these 3 articles about Ubuntu Touch:
• Hacking Ubuntu Touch, Part 1: ubuntu-device-flash
• Hacking Ubuntu Touch, Part 2: devices and images
• Hacking Ubuntu Touch, Part 3: How images are flashed

Post-Show:

• Is bleeding edge unstable? Considering Arch

The post Binary Decisions | LINUX Unplugged 160 first appeared on Jupiter Broadcasting.

We review Linux Mint 18 & our experience turns out to be a roller coaster ride from impressed glee to cautious concern. We’ve never felt more conflicted over a version of Linux Mint.

Plus we discuss the Ubuntu Forum hack, a Fedora bug that’s bricking some laptops & why we just can’t quit FreeNAS.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: Linux Academy

Mint 18 Review

​Linux Mint 18: The best desktop — period

I’ve been using Linux desktops since the leading desktop front-end was Bash. Things have changed in those 25 years. Today, the best Linux desktop is the latest version of Linux Mint: Linux Mint 18 Sarah with the Cinnamon 3.0 interface.

Linux Mint 18 Cinnamon: Quick Screenshot Tour

Linux Mint 18 improves security, but at a cost – TechRepublic

While this is a much-needed improvement, the explanation of this change on the Linux Mint website is baffling. The website claims that kernel updates “aren’t really updates, but the availability of packages for newer kernels.” Aside from the fact that this is literally the definition of an update, this appears to be an attempt at minimizing the importance of kernel updates. In Linux Mint 18, users are only notified of kernel updates, but they are not installed by default.

• How to upgrade to Linux Mint 18

As excited as we are about Linux Mint 18, upgrading blindly for the sake of running the latest version does not make much sense, especially if you’re already happy and everything is working perfectly.

• Bug#830624: ITP: xplayer — Simple media player based on GStreamer.

Given the history of Linux Mint with their weird view on security (Linux
Mint is the very definition of a FrankenDebian [1]) where they withhold
important security updates because their weird mixture of packages would
otherwise break too often or their hijacking of package names (mdm, for
example), I don’t really trust them to come up with a clean design for
desktop agnostic applications. Heck, the first thing they wanted to do
was naming their forked version of Pluma “xedit”.

— PICKS —

Runs Linux

Fors Fusion RUnS LINUX on a Raspberry Pi

Desktop App Pick

recalbox.com

Recalbox allows you to re-play a variety of videogame consoles and platforms in your living room, with ease! RecalboxOS is free, open source and designed to let you create your very own recalbox in no time! Raspberry Pi.

• RecalboxOS v4.0.0-beta4 release | Blog recalbox

Spotlight

Felony: Next Level PGP

Felony is an open-source pgp keychain built on the modern web with Electron, React, and Redux. Felony is the first PGP app that’s easy for anyone to use, without a tutorial. Security++ to the greatest extreme!

Coder Radio Coding Challenge

— NEWS —

Ubuntu Forums Hacked, 2 Million Users’ Details Stolen

Canonical CEO Jane Silber explains: “We were able to confirm there had been an exposure of data and shut down the Forums as a precautionary measure. Deeper investigation revealed that there was a known SQL injection vulnerability in the Forumrunner add-on in the Forums which had not yet been patched.”

The attacker was able to “download portions of the ‘user’ table which contained usernames, email addresses and IPs for 2 million users.”

• Notice of security breach on Ubuntu Forums | Ubuntu Insights

​Early Look at Skype for Linux and Chromebooks

Skype for Linux is no longer an afterthought for Microsoft as the company introduces new versions of Skype for Linux Chromebooks and the Chrome web browser.

GNOME Maps Hits A Dead End, Can No Longer Display Maps

As of this week the nifty desktop navigation app canno longer fetch maps tiles to display.

MapQuest, the application’s tile provider, has amended its usage policy and discontinued direct tile access. GNOME developers have the choice of paying to keep using the service or, ultimately, using a new one.

PSA: Failure to boot after kernel update on Skylake systems

So in the last couple of days a significant issue in all Fedora releases has come to our attention, affecting (so far) several systems that use the Intel ‘Skylake’ hardware platform.

• Virtualization Revelation | Linux Action Show 418

• Bug #1569479 “Graphics glitches with Skylake Intel HD Graphics 5…”

• Intel Skylake Graphics: Windows 10 vs. Ubuntu Linux Performance
• Well Known Linux Kernel Developer Recommends Against Buying Skylake Systems
• Early Intel Skylake Linux Users May Run Into A Silly Issue
• Screen flickering on Ubuntu 16.04 LTS

CrossOver For Android Now Running On Chromebooks

CodeWeavers confirmed today that it’s possible to run CrossOver on Chromebooks now via the Android support. CodeWeavers was even able to install Steam for Windows on the Chromebooks via the CrossOver support.

Mail Bag

• https://pastebin.com/jMJPAeXY

• https://pastebin.com/s9NWc85s

Call Box

• Chris’ call out for the community to help him with his background

Catch the show LIVE SUNDAY:

• Noon Pacific
• https://jblive.tv
• Network Calendar

— CHRIS’ STASH —

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

The post Mint 18: Convenience Over Security | LAS 426 first appeared on Jupiter Broadcasting.

We go behind the scenes & give you details on our new Linux rig builds, using OBS to stream to multiple services, the hard lessons we learned & our Linux powered production pipeline. After our year long skunkworks project this episode is living proof of how for media production under Linux has come.

Plus now we can all say ZFS is officially on Linux, Intel’s plans to make up for their Linux Skylake screw up, Ubuntu gets some snaps, Fedora “attempts” H.264 support, some games worth your time & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: Linux Academy

Hairpresenter

• Antergos
• Generates content such as web pages, videos, and music

Video Switcher

• Switches inputs between sources

OBS Streaming Rig

• Antergos
• Provides full length recording, stream to JB satcom1 & satcom2
• Provides for switching of streams (on location, In Studio)

Satcom 1

• Ubuntu 14.04
• Picks up initial stream and distributes to ALL streaming sources

Satcom 2

• Ubuntu 14.04
• Streams just to YouTube

ScaleEngine

• CentOS (becuase BSD couldn’t do it)
• Primary stream (in your web browser)

Problems

• Networking “issues” that took us a bit to track down
• ZFS module dkms builds AFTER the init image is created. No boot for root!
• ZFS breaks on kernel upgrades. · Issue #102 · Antergos/antergos-packages · GitHub

New Features

• Work in studio without having to reboot the stream before a show.
• Local recordings now possible.
• Many more streaming desntations, load taken off switcher box.

• Exclusive live stream recordings for our TodayToday Patonss.

• Airtime | Sourcefabric

• GitHub – savonet/liquidsoap: Audio and video streaming language
• ZFS breaks on kernel upgrades. · Issue #102 · Antergos/antergos-packages · GitHub
• Savonet / Liquidsoap :: Multimedia Stream Generation

— PICKS —

Runs Linux

Lightman Group – RUNS LINUX!

• https://imgur.com/wLhNFQy
• https://www.imdb.com/title/tt1235099/

Desktop App Pick

Kdenlive | Free and open source video editor for GNU/Linux

Kdenlive is an intuitive and powerful multi-track video editor, including most recent video technologies, released as a free software (GPL). Using Kdenlive is investing in a community driven project, which aims to establish relationships between people in order to built the best video tools.

Latest version is Kdenlive 16.04.0, released in April 2016.

Spotlight

A Telegram Snap Package Is Available on Ubuntu 16.04

The Snap has been packaged up by a Canonical employee and, in theory, is safer to use as it runs in a confined sandbox (usual X11 flaws still apply, however).

— NEWS —

ZFS for Linux has truly arived with Debian now with ZFS on Linux included

The package is called zfs-linux and is currently available to Debian unstable users. Package details via the Debian Tracker. Additional commentary about this achievement by Debian developer Petter Reinholdtsen on his blog.

• Petter Reinholdtsen: Debian now with ZFS on Linux included

Today, after many years of hard work from many people, ZFS for Linux finally entered Debian. The package status can be seen on the package tracker for zfs-linux. and the team status page. If you want to help out, please join us. The source code is available via git on Alioth. It would also be great if you could help out with the dkms package, as it is an important piece of the puzzle to get ZFS working.

• ZFS + dkms made it into Debian : LinuxActionShow

Basline H264 in Fedora Workstation… But what’s the point?

So after a lot of work to put the policies and pieces in place we are now giving Fedora users access to the OpenH264 plugin

UnitedRPMs – New RPMFusion Alternative for Fedora 24/25:

The UnitedRPMs repository provide the most popular multimedia packages for Fedora 24 and Rawhide: vlc, mpv, GNOME-mpv, smplayer, kdenlive, handbrake, deadbeef, foobnix, kdenlive and others.

• United RPMS by UnitedRPMs

• No GPG signatures, that’s a no no in our book.

• No separation of free and non-free packages. But that’s not really why your using something like UnitedRPMs.

• As an example, once the repo UnitedRPMs’ repo is setup, you can install gstream and the all the codecs for all the things:

dnf install gstreamer{1,}-{ffmpeg,libav,plugins-{good,ugly,bad{,-free,-nonfree}}} --setopt=strict=0

Intel Is Preparing A Major Restructuring Of Their Graphics Driver

Intel is brewing a makeover of their graphics driver stack through a large restructuring and consolidating initiative that will be formally announced in the coming weeks.

Stellaris on Steam

Explore a vast galaxy full of wonder! Paradox Development Studio, makers of the Crusader Kings and Europa Universalis series presents Stellaris, an evolution of the grand strategy genre with space exploration at its core.

• Civilization VI aka 6 announced, will support Linux & SteamOS | GamingOnLinux

@isosavi Civilization VI will be available on Mac and Linux too. We will have more info to share on those platforms in the coming months.

— Civilization (@CivGame) May 11, 2016

XDG-App renamed to “flatpak”

Mail Bag

• https://slexy.org/view/s20lbNtE5N
• https://slexy.org/view/s21OezXEY1
• https://slexy.org/view/s2MjreABS2

Call Box

• Chris’ call out for the community to help him with his background

Catch the show LIVE SUNDAY:

• Noon Pacific
• https://jblive.tv
• Network Calendar

— CHRIS’ STASH —

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

The post Penguin Powered Production | LAS 417 first appeared on Jupiter Broadcasting.

The future of Linux package management is here & there’s a lot of ideas on how to solve it. We discuss some of the more popular ones & how they might be impacting your Linux desktop much sooner than you expect.

Plus that awkward moment when a traditional desktop environment adopts a controversial UI modern element, the new generation of “perfect” Linux laptops & more!

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Follow Up / Catch Up

Western Digital makes a $46, 314GB hard drive just for the Raspberry Pi

The 314GB drive, which will normally cost $45.81 but is currently available for $31.42, is a 7mm-high drive based on the basic Western Digital Blue drives that still ship in many budget and mid-end laptops and PCs. The difference is the interface, which has been changed from SATA to USB and is designed to connect to the Pi directly without drastically increasing the footprint of the device.

Mozilla’s super speedy new browser will be available for testing in June

Servo is a browser engine that was built from the ground up in the Rust language to specialize in performance, security, modularity and parallelism.

Mycroft Announces The OpenSTT Project – YouTube

Mycroft is announcing that we are going after the Watson AI XPrize, and our first project aimed at achieving this goal is OpenSTT, an initiative to create an open source speech-to-text model that products and services, the world over, will be able to make use of.

• https://youtu.be/cDRDZng92Bs?t=41s

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

MATE in 16.04 to support Client Side Decoration (CSD) and Header Bars

The attached screenshot shows a number of applications that use Client Side Decoration and Header Bars. They are pictured here running on Ubuntu MATE 16.04 daily using the Marco window manager with software compositing enabled.

You may not be a fan of CSD applications, but there are a good number of them and undoubtedly there will be many more released over the coming years. It would be remiss of the Ubuntu MATE team to not provide first class CSD application support for the upcoming LTS release. With these changes, Ubuntu MATE can finally bridge the gap between traditional and contemporary applications.

• [What is Client Side Decoration?]](https://stackoverflow.com/questions/28650646/what-is-client-side-decoration)

TING

• Ting – mobile that makes sense

Is the Future Snappy?

Snappy are repackaged .deb packages, which bring its own libraries and therefore might be a bit bigger than usual debs.

• Advantages
• Developers can choose which version of libraries they want you to use
• If an update failed you can reverse to the last working one without any problems
• Apps are sandboxed and cannot modify or read files that they aren’t supposed to
• Cons
• Bigger files
• Developers have to update snaps if there is a security hole in a library
• Snaps are Ubuntu exclusive, afaik

The questions we have:

Its approach is nothing new: just bundled libs, as Windows does. This is a security nightmare.

• Could this lead to a security nightmare? All those linked libs?
• Why not bundle dependencies – Gentoo Wiki

How to create local repository for Ubuntu Snappy – Ask Ubuntu

You can “snappy install” a snap directly on a machine, but there isn’t an equivalent to the idea of a local repository.

Other Solutions:

• GNU’s advanced distro and transactional package manager — GuixSD

Dependable. The GNU Guix package manager, in addition to standard package management features, supports transactional upgrades and roll-backs, unprivileged package management, per-user profiles, and more.

• Nix:The Purely Functional Package Manage
• Limba Project – Home

Limba provides developers with a way to easily create software bundles for their applications which run
on multiple Linux distributions.
It provides atomic upgrades of software, simultaneous installation of multiple
software versions and a simple way to obtain and upgrade software.

• Projects/SandboxedApps – GNOME Wiki!

The sandboxing is done with a set of technologies, including:

• cgroups
• namespaces
• selinux (not currently used)
• kdbus (interesting for the future, currently uses userspace filtering)
• wayland (because X11 is inherently insecure)
• However, sandboxing requires a lot of changes to application and new APIs for sandboxed access to resources. So, in the short term we will focus on the first goal.
• AppImage | Linux apps that run anywhere

Download an application, make it executable, and run! No need to install. No system libraries or system preferences are altered.

Linux Academy

• Linux Academy | Linux and AWS Online Training

Skylake-based Dell XPS 13 with Linux arrives in the US

The fifth-generation XPS 13 developer edition ships with a Core i7 processor, up to 16 GB of memory, and Ubuntu Linux.

Support Jupiter Broadcasting on Patreon

The post There's a Snap for That | LINUX Unplugged 136 first appeared on Jupiter Broadcasting.

Has Entroware built the ultimate 13 inch Linux laptop? We put their Apollo through our battery of tests & review this good looking Skylake powered Linux portable.

Plus Microsoft buys the folks behind Mono, Canonical might have a ZFS fight on their hands & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: Linux Academy

Apollo by Entroware

Core I/O Details:

1 x HDMI
1 x USB 3.0 Port
1 x USB 3.1C Port
1 x USB 2.0 Port
1 x 2-in-1 Card Reader
1 x Audio Output

Dimensions (W x D x H):
325mm x 219mm x 18mm

Weight:
1.42Kg (inc. battery)

Battery:
4 Cell Lithium-Ion (6300mAh)

My research shows it’s built on top of the Topstar U931 kit.

Apollo as Configured

$991.29 US Dollars

lspci output:

00:00.0 Host bridge: Intel Corporation Sky Lake Host Bridge/DRAM Registers (rev 08)
00:02.0 VGA compatible controller: Intel Corporation Sky Lake Integrated Graphics (rev 07)
00:14.0 USB controller: Intel Corporation Device 9d2f (rev 21)
00:14.2 Signal processing controller: Intel Corporation Device 9d31 (rev 21)
00:16.0 Communication controller: Intel Corporation Device 9d3a (rev 21)
00:17.0 SATA controller: Intel Corporation Device 9d03 (rev 21)
00:1c.0 PCI bridge: Intel Corporation Device 9d14 (rev f1)
00:1f.0 ISA bridge: Intel Corporation Device 9d48 (rev 21)
00:1f.0 ISA bridge: Intel Corporation Device 9d48 (rev 21)
00:1f.2 Memory controller: Intel Corporation Device 9d21 (rev 21)
00:1f.3 Audio device: Intel Corporation Device 9d70 (rev 21)
00:1f.4 SMBus: Intel Corporation Device 9d23 (rev 21)
01:00.0 Network controller: Intel Corporation Wireless 3160 (rev 83)

— PICKS —

Runs Linux

• Soda Can Solar Collector

The SolarAir is a solar heat collector made DIY, with very low cost materials, mainly Soda Cans.
The hot air is used to to heat the house, everyday when there is some sun, even if it is freezing outside, thus lowering utility bills, and lowering CO2 footprint.

Sent in By: gigaoochelaar

Desktop App Pick

• N1 – The extensible, open source mail client.

Weekly Spotlight

• Password Generation on Linux

apg generates several random passwords. It uses several password generation algorithms (currently two) and a built-in pseudo random number generator.
Default algorithm is pronounceable password generation algorithm designed by Morrie Gasser and described in A Random Word Generator For Pronounceable Passwords National Technical Information Service (NTIS) AD-A-017676. The original paper is very old and had never been put online, so I have to use NIST implementation described in FIPS-181.

— NEWS —

Microsoft Is Buying Mobile Cross-Platform Development Company Xamarin

Microsoft announced today that it has acquired Xamarin, a company that allows developers to build fully native apps across several platforms from a single shared code base.

Linux users campaign after Microsoft ‘neglects’ Skype with a week of downtime-

The _open letter to Microsoft_said: “It was a shitty move to not update the client for three years, which resulted in this, mostly. It was annoying that you ignored almost every tweet to @SkypeSupport about issues with Skype for Linux. But it is absolutely disgraceful that you dropped the Linux client BEFORE any alternatives are available and without telling your users.”

GPL Violations Related to Combining ZFS and Linux

However, our conclusion is simple: Conservancy and the Linux copyright
holders in the GPL Compliance Project for
Linux Developers believe that distribution of ZFS binaries is a GPL
violation and infringes Linux’s copyright. We are also concerned that it may
infringe Oracle’s copyrights in ZFS. As such, we again ask Oracle to respect
community norms against license proliferation and simply relicense its
copyrights in ZFS under a GPLv2-compatible license.

TechSNAP Take on SFC ZFS Finding

• Canonical accused of violating GPL with ZFS-in-Ubuntu 16.04 plan

Canonical’s counter-argument is that “The CDDL cannot apply to the Linux kernel because zfs.ko is a self-contained file system module — the kernel itself is quite obviously not a derivative work of this new file system.”

• Report from the VMware GPL court hearing | LaForge’s home page

• VMware is using parts of the Linux kernel in their proprietary ESXi
  product, including the entire SCSI mid-layer, USB support, radix tree
  and many, many device drivers.
  • as is generally known, Linux is licensed under GNU GPLv2, a
    copyleft-style license.
  • VMware has modified all the code they took from the Linux kernel and
    integrated them into something they call vmklinux.
  • VMware has modified their proprietary virtualization OS kernel
    vmkernel with specific API/symbol to interact with vmklinux
  • at least in earlier versions of ESXi, virtually any block device
    access has to go through vmklinux and thus the portions of Linux
    they took
  • vmklinux and vmkernel are dynamically linked object files that are
    linked together at run-time
  • the Linux code they took runs in the same execution context (address
    space, stack, control flow) like the vmkernel.

• The Linux Kernel, CDDL and Related Issues – Software Freedom Law Center

When, in this mode of employment, the CDDL-licensed code implementing the filesystem is combined with the module-specific translation layer and the result is then statically or dynamically linked into the Linux kernel, the resulting binary is licensed to all users under the terms of GPLv2, and only GPLv2, as the license requires. This happens because CDDL gives permission for binary forms of the code it licenses to be released under any license, and the license terms in effect are those of GPLv2. The making of the binary itself does not result in infringement of the kernel copyrights, or a violation of GPLv2’s terms.

• Debian Devs Realized They Were Shipping Pre-Built Nvidia Module, Breaking GPL

“The Nvidia-graphics-modules provides pre-compiled non-free kernel modules. Several lawyers and people believe this to be a violation of the GPL license used by the kernel. This interpretation is consistent with our position on ZFS modules, which we also ship in source code only. As such, the work is not distributable and should be removed from the archive in all suites, ASAP,” Julian Andres Klode said.

• #815060 – RM: nvidia-graphics-modules — RoQA; Violates kernel license – Debian Bug report logs

Parse Shutdown Savings

If the Parse platform is still appropriate or your app, then the migration process is very doable and something we’d be happy to help with. In fact we are running a promotion from now until April 15th, 2016 to migrate your app for iOS and/or Android to a Parse-powered server for a flat one time fee of $500.

Feedback:

Brought to you by: System76

Mail Bag

• https://slexy.org/view/s20hEy8JcS
• https://slexy.org/view/s20FOyrAYr
• https://slexy.org/view/s20MPoco7r

Call Box

• [Chris’ call out for the community to help him with his background for the Linux Action ](https://www.reddit.com/r/LinuxActionShow/comments/40cw9x/chris_call_out_for_the_comm

Catch the show LIVE SUNDAY:

• Noon Pacific
• https://jblive.tv
• Network Calendar

— CHRIS’ STASH —

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

The post Entroware Apollo: Linux Macbook Killer | LAS 406 first appeared on Jupiter Broadcasting.

A Critical OpenSSH flaw can expose your private keys, a new WiFi spec for IoT devices, that has all the classic issues & Intel’s SkyLake bug.

Plus your feedback, our answers, a rockin’ round up & so much more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | MP3 Audio | OGG Audio | YouTube | HD Torrent | Mobile Torrent

RSS Feeds:

HD Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Critical OpenSSH flaw can expose your private keys and other client memory

• Two major issues have been identified in OpenSSH
• CVE-2016-0777: An information leak (memory disclosure) can be exploited by a rogue SSH server to trick a client into leaking sensitive data from the client memory, including for example private keys.
• Vendor contributed code for a feature called Roaming, was added in OpenSSH 5.4, that allowed broken SSH sessions to be resumed. The server side code for this was never activated, only the commercial SSH server supported it.
• However, the Roaming feature is on by default, and due to a but a malicious server can exploit the bug to read memory from the client when it tries to connect to the server
• This includes the ability to steal your SSH private keys
• “The authentication of the server host key prevents exploitation by a man-in-the-middle, so this information leak is restricted to connections to malicious or compromised servers.”
• Because OpenSSH checks the host key of the remote server, if you are connecting to trusted servers, there is no risk
• You can disable the feature by adding the following line to your /etc/ssh/ssh_config: UseRoaming no
• The feature can also be disabled on a per-user basis using: ~/.ssh/config
• The patch just disabled this feature by default
• CVE-2016-0778
• A buffer overflow (leading to file descriptor leak), can also be exploited by a rogue SSH server, but due to another bug in the code is possibly not exploitable, and only under certain conditions (not the default configuration), when using ProxyCommand, ForwardAgent or ForwardX11.
• Both of these vulnerabilities are fixed in OpenSSH 7.1p2
• It is not clear if the roaming support will be removed entirely
• Researcher Post

Bug in Intel Skylake CPUs means complex workloads can hang the machine

• Intel has confirmed that its Skylake processors suffer from a bug that can cause a system to freeze when performing complex workloads.
• The bug was reportedly discovered and tested by the the community at hardwareluxx.de and passed onto GIMPS (Great Internet Mersenne Prime Search), which conducted further testing. Both groups passed their findings onto Intel.
• Intel states:

“Intel has identified an issue that potentially affects the 6th Gen Intel Core family of products. This issue only occurs under certain complex workload conditions, like those that may be encountered when running applications like Prime95. In those cases, the processor may hang or cause unpredictable system behaviour.”

• Intel has developed a fix, and is working with hardware partners to distribute it via a BIOS update.
• No reason has been given as to why the bug occurs, but it’s confirmed to affect both Linux and Windows-based systems.
• While the bug was discovered using Prime95, it could affect other industries that rely on complex computational workloads, such as scientific and financial institutions.
• Recently, Intel’s Haswell and early Broadwell processors suffered from a TSX (Transactional Synchronization Extensions) bug. Rather than recall the parts, Intel disabled the TSX instructions via a microcode update delivered via new motherboard firmware.
• Additional Coverage

New WiFi spec for IoT devices, WiFi HaLow likely has all the classic issues

• “The new protocol is based on the 802.11ah standard from the IEEE and is being billed as Wi-Fi HaLow by the Wi-Fi Alliance. Wi-Fi HaLow differs from the wireless signal that most current devices uses in a couple of key ways. First, it’s designed as a low-powered protocol and will operate in the range below one gigahertz. Second, the protocol will have a much longer range than traditional Wi-Fi, a feature that will make it attractive for use in applications such as connecting traffic lights and cameras in smart cities.”
• There is also talk of using it for wearables, I suppose as a replacement for bluetooth
• “Wi-Fi HaLow is well suited to meet the unique needs of the Smart Home, Smart City, and industrial markets because of its ability to operate using very low power, penetrate through walls, and operate at significantly longer ranges than Wi-Fi today,” said Edgar Figueroa, president and CEO of Wi-Fi Alliance.
• “But, as with any new protocol or system, Wi-Fi HaLow will carry with it new security considerations to face. And one of the main challenges will be securing all of the various implementations of the protocol. Device manufacturers all implement things in their own way and in their own time, a practice that has led to untold security vulnerabilities and innumerable billable hours for security consultants. Security experts don’t expect Wi-Fi HaLow to be the exception.”
• “While the standard could be good and secure, implementations by different vendors can have weaknesses and security issues. This is common to all protocols,” said Cesar Cerrudo, CTO of IOActive Labs, who has done extensive research on the security of a wide range of smart devices and smart city environments
• Who could possibly be worse at implementing security, than the vendors and government contractors that would be used for a “smart city”
• “Many of the devices that may use the new protocol–which isn’t due for release for a couple of years–are being manufactured by companies that aren’t necessarily accustomed to thinking about threat modeling, potential attacks, and other issues that computer hardware and software makers have had to face for decades. That could lead to simple implementation problems that attackers can take advantage of.”
• This seems to call for a nice clean BSD licensed implementation, although even then, everyone using the same implementation could be just as risky
• Plus, as we have seen, most vendors will ship an old insecure version, rather than the latest, and won’t update the implementation as they iterate their product
• The extended range of HaLow also means that attackers can come from much further away, making it harder to physically protect devices
• “Each new iteration in technology brings with it fresh security and privacy considerations, and the proliferation of connected non-computing devices is no different. The concept of a voice-enabled hub that controls your home’s climate, entertainment, and other systems is now a reality, as is the ability to send an email from your refrigerator. That’s all well and good, until these smart devices start doing really dumb things.”

Feedback:

• Will ZFS work for me?
• HTTP/2 Thoughts?
• UK Government Web Portal Hijacked by Russian Casino Spammers – (I just discovered this)

Round Up:

• US Intelligence director’s personal e-mail, phone hacked
• Seagate announces 10TB helium hard drive, 7 platters, 14 heads
• Why Is Comcast Interrupting My Web-Browsing To Upsell Me On A New Modem?
• Police say they can decrypted Blackberry PGP encrypted emails
• Cisco patches more hard-coded passwords
• Ontario court rules that police “Tower Dumps” violate the Canadian Charter of Rights and Freedoms
• Fixstars Releases 13 TB SSD for Specific Application Workloads
• Apple OS X memory management bug means your porn lives in your video card
• Daily Telegraph Installs Workplace Monitors On Journalists’ Desks

The post Internet of Threats | TechSNAP 249 first appeared on Jupiter Broadcasting.

The tech headlines of the day, like Intel’s fully wireless PC, Sprint buying T-Mobile, and Reset the Net.

Then we’ll look at the convergence strategies of Apple, Microsoft, and Canonical and debate if Apple nailed the most practical implementation at this year’s WWDC.

Plus feedback, follow up, and more!

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed

Become a Tech Talk Today supporter on Patreon:

Show Notes:

Headlines

Reset the Net

First, get hundreds of sites & apps to add proven security (like
SSL).

Then on June 5, we\’ll run a splash screen everywhere to spread NSA-resistant
privacy tools.

Comcast plans to encrypt email exchanged with Google\’s Gmail | PCWorld

Comcast plans to work with Google to encrypt email exchanged between its own servers and Gmail, a Comcast spokesman said on Tuesday night.

Comcast supports Transport Layer Service encryption for email messages, and Comcast employees \”plan to ramp up with Gmail in next few weeks,\” a Comcast spokesman said via a Twitter message. More details will be revealed at the Messaging, Malware and Mobile Anti-Abuse Working Group meeting next week, he said, which will be held in Brussels. Comcast is a meeting sponsor.

UPDATE 3-Sprint agrees to pay about $40/shr to buy T-Mobile -source | Reuters

Sprint Corp has agreed to pay about $40 per share to buy T-Mobile US Inc, a person familiar with the matter told Reuters on Wednesday, signalling progress in a long-contemplated deal to merge the third- and fourth-largest U.S. wireless carriers.

At that price, about a 17 percent premium to the carrier\’s Wednesday close, T-Mobile would be worth more than $32 billion.

Deutsche Telekom owns 67 percent of T-Mobile and is expected to keep a 15 to 20 percent stake of the combined company as part of the deal, the source said on condition of anonymity because the discussions were private.

Intel aims to eliminate all PC cables in 2016 – CNET

On stage at the Computex, Intel\’s Kirk Skaugen, senior vice president and general manager of the PC Client Group, demonstrated wireless display, docking and charging features that will close the loop on the final few mandatory cables in the typical PC environment.

The high-speed WiGig standard will be used as the short range \”docking\” technology, instantly creating a connection to a screen and peripherals when a device is moved within range and then swapping back out to standalone usage by just picking up and walking away. WiGig delivers speeds of up to 7Gbps.

For power, Skaugen demonstrated Rezence, the magnetic resonance charging technology, promoted by the Alliance 4 Wireless Power (A4WP), that Intel is aligned with. The system can be installed under a table surface, with magnetic resonance capable of charging through 2 inches of wood.

With Skylake expected second half of 2015 it\’s likely devices based on Intel\’s reference designs would start to hit the market in 2016.

Microsoft: Software update unlocks more GPU bandwidth on Xbox One | Ars Technica

Microsoft says the new firmware will also help developers extract more power from the system\’s Graphical Processing Unit (GPU), even though the base hardware in the system is obviously staying the same.

\”In June we’re releasing a new SDK making it possible for developers to access additional GPU resources previously reserved for Kinect and system functions,\” a Microsoft spokesperson told Ars today. \”The additional resources allow access to up to 10 percent additional GPU performance. We\’re committed to giving developers new tools and flexibility to make their Xbox One games even better by giving them the option to use the GPU reserve in whatever way is best for them and their games.\”

Did Apple Nail Convergence?

• Apple Handoff lets Macs and iPhones share files, phone calls, and more

• A Closer Look at \’Handoff\’ and Other New iOS 8/Yosemite \’Continuity\’ Features

NSA-Mocking Easter Egg Found In Google’s New Email Encryption Plug-In

However, Google left a little easter egg in the code that is more than funny.

Feedback:

• Net neutrality explained better than anywhere else I\’ve found

• Who Should Pay for the Bandwidth?: Security Now 457

• skullplate aks… Why not music?

T3 lands in iTunes: iTunes – Podcasts – Tech Talk Today MP3

Unfilter Shirt: Unfilter Episode 100 Shirt! | Teespring

Hosts:

Guest:

• Twitter NAME

Chris:

• Twitter ChrisLAS
• Google+ +ChrisFisher

The post Getting a Handoff | Tech Talk Today 4 first appeared on Jupiter Broadcasting.