Show Notes: linuxunplugged.com/449

The post Bugfix and Chill | LINUX Unplugged 449 first appeared on Jupiter Broadcasting.

Show Notes: linuxunplugged.com/442

The post Liberty Leaks and Lies | LINUX Unplugged 442 first appeared on Jupiter Broadcasting.

Show Notes: extras.show/59

The post Brunch with Brent: Brandon Bruce | Jupiter Extras 59 first appeared on Jupiter Broadcasting.

This week we take a look at what Noah’s using at Altispeed to provide remote assistance to his clients. We ponder over what Microsoft might have planned for Skype on Linux, cover why Android’s full disk encryption might not be as secure as you think, Mycroft’s collaboration with Canonical, the picks, your feedback & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: Linux Academy

— PICKS —

Runs Linux

Tim Hortan’s Runs LINUX

Tim Hortons dougnut shop – RUNS LINUX!

Desktop App Pick

pinger-indicator

Ping Indicator is an app that shows the ping speed of various services or addresses.

The application “pings” a given set of hosts (with configurable ping interval) and monitors the response time with logarithmic scale, displaying the results in the indicator menu.

For each host, the app shows the response time as a graph in the AppIndicator icon. On packet losses, the graph turns red, as you can see in the screenshot above, for the latest entry, which doesn’t exist.

Ping Indicator is useful in many situations, including to track your latency in various areas (by adding hosts from certain areas), monitor your website latency, track when a website that went down goes back up and so on.

According to its developer, Ping Indicator still has some rough edges and unimplemented parts from the old Link Monitor Applet, and asks its users to star and watch the project on GitHub, to encourage further improvements.

Spotlight

Open Broadcaster Software

Open Broadcaster Software is free and open source software for video recording and live streaming.

OBS Studio (formerly known as OBS Multiplatform) is a complete rewrite of the original OBS from the ground up, with the main goals being multiplatform support, a more thorough feature set, and a much more powerful API. While still in its early stages, releases are currently available for Windows, Mac and Linux.

OBS Studio will eventually support many of the advanced requested features not present in the original OBS, such as multiple stream outputs and scene previewing, the latter of which is now available in the current release.

— NEWS —

Skype May Be Back on Linux

If you’re a GNU/Linux user, then you’ll be very aware at just how horrible Skype is on the platform. Not only has it not been updated since June 2014, but the Skype team at Microsoft – perhaps when they were bored – added extra hoops and complications as time went on.

• Exciting news for Linux users

Encryption on Android just got weaker

Privacy advocates take note: Android’s full-disk encryption just got dramatically easier to defeat on devices that use chips from semiconductor maker Qualcomm, thanks to new research that reveals several methods to extract crypto keys off of a locked handset. Those methods include publicly available attack code that works against an estimated 37 percent of enterprise users.

A blog post published Thursday revealed that in stark contrast to the iPhone’s iOS, Qualcomm-powered Android devices store the disk encryption keys in software. That leaves the keys vulnerable to a variety of attacks that can pull a key off a device. From there, the key can be loaded onto a server cluster, field-programmable gate array, or supercomputer that has been optimized for super-fast password cracking.

The independent researcher that published the post included exploit code that extracts the disk encryption keys by exploiting two vulnerabilities in TrustZone. TrustZone is a collection of security features within the ARM processors Qualcomm sells to handset manufacturers. By stitching together the exploits, the attack code is able to execute code within the TrustZone kernel, which is an enclave dedicated for sensitive operations such as managing cryptographic keys and protecting hardware.
A third of enterprise Android phones exploitable

Both Google and Qualcomm are quick to note that both of the vulnerabilities involved—indexed as CVE-2015-6639 and CVE-2016-2431—have since been patched. The first was patched in January while the second was patched in May. Google also pointed out that it paid the researcher for his work through the company’s bug bounty program.

But researchers from two-factor authentication service Duo Security told Ars that an estimated 37 percent of all the Android phones that use the Duo app remain susceptible to the attack because they have yet to receive the patches. The lack of updates is the result of restrictions imposed by manufacturers or carriers that prevent end users from installing updates released by Google.

Mycroft: The Open Source Answer to Natrual Language

We’re thrilled to be working with Mycroft, the open source answer to proprietary natural language platform. Mycroft has adopted Ubuntu Core and Snaps to deliver their software to Mycroft hardware, as well as Snaps to enable desktop users to install the software regardless of the Linux distribution they are using! CEO of Mycroft, Joshua Montgomery, explains more within his piece below.

Mail Bag

• https://slexy.org/view/s2mb9BXVeZ

• https://slexy.org/view/s2WJ5IRiRm

Call Box

• Chris’ call out for the community to help him with his background

Catch the show LIVE SUNDAY:

• Noon Pacific
• https://jblive.tv
• Network Calendar

— CHRIS’ STASH —

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

The post Remotely Helpful | LAS 425 first appeared on Jupiter Broadcasting.

Liz is in service engineering at Microsoft working in a 20 person team of devs & program managers. She started her venture into technology at the age of 8 making websites.

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed

Become a supporter on Patreon:

Show Notes:

• Liz Hill (@lizbanderhill) | Twitter
• Prodigy Math Game – Learn Math for Free. Forever.
• Girls Who Code | Free Summer Programs & Clubs
• DigiGirlz Home

Are you looking for the transcription? Please let us know you use it and we may bring it back!

• WTR Transcription Poll

The post Starting At 8 | WTR 52 first appeared on Jupiter Broadcasting.

Megan works for Jama Software as manager of customer support & is the founder of PDX Women in Tech, a networking group to provide a platform for women to meet other women in tech.

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed

Become a supporter on Patreon:

Show Notes:

• Megan Bigelow (@meganfabulous) | Twitter
• Search
• PDX Women in Tech (@PDXWiIT) | Twitter
• Jama Software – Product Delivery & Requirements Management Solution

Are you looking for the transcription? Please let us know you use it and we may bring it back!
+ WTR Transcription Poll

The post PDX Women in Tech | WTR 51 first appeared on Jupiter Broadcasting.

OpenStreetMap might just be one of the most important open source projects in the world. We look at some of the amazing tools built around this open & free infrastructure. Then our tips for producing great content & podcasts under Linux, plus a live unboxing & demo of the new Steam Controller.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Pre-Show:

• Happy 11th Birthday, Ubuntu! – OMG! Ubuntu!

The Warty Warthog, better known to most as Ubuntu 4.10, was a rough and ready stab at bringing Linux to the masses.

Mark described his new Linux distribution as one bringing together: “…the extraordinary breadth of Debian with a fast and easy install, regular releases (every six months), a tight selection of excellent packages installed by default and a commitment to security updates with 18 months of security and technical support for every release.”

Feedback:

• Open FOSS Training | Indiegogo

The reason I’m doing the IndieGoGo is I have stage 4 esophageal cancer. Haven’t worked since January of 2014 and may not go back to work for a long time. I am on social security disability and have a very limited budget.

TING

• Ting – mobile that makes sense

Help with the Kubuntu Podcast

Hello,

I’m one of the hosts of the Kubuntu Podcast, and a big fan of your shows.

Currently we publish our shows only on Youtube (https://www.youtube.com/channel/UC-ChyPPcJSMUw2au2UyIKwQ) and Google+ (https://plus.google.com/u/0/112102796730023795852), and sometimes as audio using Google Drive.

Since we’re big fans of Jupiter Broadcasting, we look to you guys as mentors on how to organize our podcast. However, there are many things that we don’t know or are unsure how to do better.

Currently we use Google Hangouts to record our Podcast, and we’re looking into OBS.

Could you give use some feedback and tell us how do you organize your podcast? Maybe have a video call and discuss this in more detail.

Thank you.

• Linux Media Production | LAS 355 | Jupiter Broadcasting

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

Why OpenStreetMap is the Most Important thing in Geo

The OpenStreetMap community is maturing and the industry surrounding it is expanding. We have only seen the tip of the proverbial iceberg when it comes to the potential of OpenStreetMap and what it can do. I look forward to being apart of what’s next.

• OpenStreetMap

• Wheelmap.org

Wheelmap.org is an online map to search, find and mark wheelchair-accessible places. Get involved by marking public places like bars, restaurants, cinemas or supermarkets!

• mapsme/omim · GitHub

MAPS.ME – Offline OpenStreetMap maps for iOS/Android/Mac/Linux/Windows

• OSMTracker for Android – Android Apps on Google Play

Inspired by OSMTracker for Windows Mobile, allows you to track your journeys, mark waypoints with tags, voice record, and photos.

GPS traces can then be exported in GPX format for later use with OpenStreetMap tools like JOSM, or uploaded directly to OpenStreetMap.

Tracks can be displayed over an OpenStreetMap background or with no background if you don’t have a data plan.

• maps at DuckDuckGo

• MAPS.ME (MapsWithMe), detailed offline maps of the World for iPhone, iPad, iPod, Android, Amazon Kindle Fire and BlackBerry

MAPS.ME is beautifully designed, and the maps do load very quickly. It would be a good resource to have in your pocket.

• Open Source Mapping and Routing: Mapzen

We’re excited to announce Mapzen Search, our new search engine for places that takes our philosophy of open communities creating data and code to its heart. Mapzen Search will launch in the next week, and in the meantime, we wanted to share some background on why the time is right for a new, open search engine for places.

• uNav GPS Navigation – uApp Explorer

Linux Academy

• Linux Academy | Linux and AWS Online Training

Gamepad – ArchWiki

Runs Linux from the people:

• Send in a pic/video of your runs Linux.
• Please upload videos to YouTube and submit a link via email or the subreddit.

Support Jupiter Broadcasting on Patreon

The post Open Production | LINUX Unplugged 115 first appeared on Jupiter Broadcasting.

We finally share our getting started with Linux stories. And it turns out, it was nearly a freak happenstance for both of us & some great stories from our community.

Plus the Safe Wifi campaign you need to know about, we discuss the new elementaryOS, an update on the Munich situation & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: System76

We share how we got started with Linux

— PICKS —

Runs Linux

KIller Robot Runs Linux

Desktop App Pick

Bash Scanner – A fast way to scan your server for outdated software and potential exploits.

After an initial scan, you will be asked to create an account on the PatrolServer dashboard (which is totally optional, you are free to use the tool without an account). The benefit of creating a sustainable account is detailed reporting, together with documentation on how to secure your server.

• Submitted by SameerJubeh

Weekly Spotlight

Road Trip Playlist

Watch the adventures, productions, road trips, trails, mistakes, and fun of the Jupiter Broadcasting mobile studio.

• JB Road Trip Wishlist

• New name for the LAS mobile show…

• New Machine Tip

— NEWS —

Save WiFi/Individual Comments

Right now, the FCC is considering a proposal to require manufacturers to lock down computing devices (routers, PCs, phones) to prevent modification if they have a “modular wireless radio”[1][2]
or a device with an “electronic label”[3]. The rules would likely:

• Restrict installation of alternative operating systems on your PC, like GNU/Linux, OpenBSD, FreeBSD, etc.
• Prevent research into advanced wireless technologies, like mesh networking and bufferbloat fixes
• Ban installation of custom firmware on your Android phone
• Discourage the development of alternative free and open source WiFi firmware, like OpenWrt
• Infringe upon the ability of amateur radio operators to create high powered mesh networks to assist emergency personnel in a disaster.

• Prevent resellers from installing firmware on routers, such as for retail WiFi hotspots or VPNs, without agreeing to any condition a manufacturer so chooses.

• Save WiFi: Act Now To Save WiFi From The FCC | Hackaday

The folks at ThinkPenguin, the EFF, FSF, Software Freedom Law Center, Software Freedom Conservancy, OpenWRT, LibreCMC, Qualcomm, and other have put together the SaveWiFi campaign.

• Federal Register | Equipment Authorization and Electronic Labeling for Wireless Devices

Online comments end 09/08/2015.

Freya 0.3.1 is Here!

At the heart of this upgrade is the latest Hardware Enablement stack from Ubuntu 14.04.3. It includes version 3.19 of the Linux kernel and an updated Mesa that fixes the dreaded “double cursor” glitch. Workspaces in the Multitasking view also now work properly on Nvidia Optimus. The new hardware stack also brings better support for backlights and touchpads on certain laptops, a host of performance and power-related improvements, and support for 5th generation Intel processors. This release should also improve support for (U)EFI systems, especially when installing without an internet connection.

Munich Linux councillor: ‘We didn’t propose a switch back to Windows’

“There are several points of criticism concerning the notebooks of the councillors with very different reasons (not Linux in general). There are 80 councillors in the city. Their work and needs can’t be compared with the whole administration.”

Pfeiler denied that there was any kind of consensus towards a complete reverse migration, but rather suggests a retroactive fitting of Windows for certain specific purposes, adding that there was nothing to suggest that the Limux system was working anything other than well.

Feedback:

Mycroft Adds Linux Desktop Voice Controlled AI as Stretch Goal

• #VoiceOfMycroft

• New Machine Tip

• https://slexy.org/view/s2DJHp2hXG

Interoperable and Open
Optimized for the web
Scalable to any modern device at any bandwidth
Designed with a low computational footprint and optimized for hardware
Capable of consistent, highest quality, real-time video delivery; and
Flexible for both commercial and non-commercial content.

• https://slexy.org/view/s28zaxg5vu

• Support Jupiter Broadcasting on Patreon

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

— CHRIS’ STASH —

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

Catch the show LIVE Friday:

• https://jblive.tv
• Network Calendar

The post How We Got Started With Linux | LAS 381 first appeared on Jupiter Broadcasting.

Coming up this time on the show, we’ll be chatting with Antoine Jacoutot about how M:Tier uses BSD in their business. After that, we’ll be discussing the different release models across the BSDs, and which style we like the most. As always, answers to your emails and all the latest news, on BSD Now – the place to B.. SD.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

Optimizing TLS for high bandwidth applications

• Netflix has released a report on some of their recent activities, pushing lots of traffic through TLS on FreeBSD
• TLS has traditionally had too much overhead for the levels of bandwidth they’re using, so this pdf outlines some of their strategy in optimizing it
• The sendfile() syscall (which nginx uses) isn’t available when data is encrypted in userland
• To get around this, Netflix is proposing to add TLS support to the FreeBSD kernel
• Having encrypted movie streams would be pretty neat

Crypto in unexpected places

• OpenBSD is somewhat known for its integrated cryptography, right down to strong randomness in every place you could imagine (process IDs, TCP initial sequence numbers, etc)
• One place you might not expect crypto to be used (or even needed) is in the “ping” utility, right? Well, think again
• David Gwynne recently committed a change that adds MAC to the ping timestamp payload
• By default, it’ll be filled with a ChaCha stream instead of an unvarying payload, and David says “this lets us have some confidence that the timestamp hasn’t been damaged or tampered with in transit”
• Not only is this a security feature, but it should also help detect dodgy or malfunctioning network equipment going forward
• Maybe we can look forward to a cryptographically secure “echo” command next…

Broadwell in DragonFly

• The DragonFlyBSD guys have started a new page on their wiki to discuss Broadwell hardware and its current status
• Matt Dillon, the project lead, recently bought some hardware with this chipset, and lays out what works and what doesn’t work
• The two main show-stoppers right now are the graphics and wireless, but they have someone who’s already making progress with the GPU support
• Wireless support will likely have to wait until FreeBSD gets it, then they’ll port it back over
• None of the BSDs currently have full Broadwell support, so stay tuned for further updates

DIY NAS software roundup

• In this blog post, the author compares a few different software solutions for a network attached storage device
• He puts FreeNAS, one of our favorites, up against a number of opponents – both BSD and Linux-based
• NAS4Free gets an honorable mention as well, particularly for its lower hardware requirements and sleek interface
• If you’ve been thinking about putting together a NAS, but aren’t quite comfortable enough to set it up by yourself yet, this article should give you a good view of the current big names
• Some competition is always good, gotta keep those guys on their toes

Interview – Antoine Jacoutot – ajacoutot@openbsd.org / @ajacoutot

OpenBSD at M:Tier, business adoption of BSD, various topics

News Roundup

OpenBSD on DigitalOcean

• When DigitalOcean rolled out initial support for FreeBSD, it was a great step in the right direction – we hoped that all the other BSDs would soon follow
• This is not yet the case, but a blog article here has details on how you can install OpenBSD (and likely the others too) on your VPS
• Using a -current snapshot and some swapfile trickery, it’s possible to image an OpenBSD ramdisk installer onto an unmounted portion of the virtual disk
• After doing so, you just boot from their web UI-based console and can perform a standard installation
• You will have to pay special attention to some details of the disk layout, but this article takes you through the entire process step by step

Initial ARM64 support lands in FreeBSD

• The ARM64 architecture, sometimes called ARMv8 or AArch64, is a new generation of CPUs that will mostly be in embedded devices
• FreeBSD has just gotten support for this platform in the -CURRENT branch
• Previously, it was only the beginnings of the kernel and enough bits to boot in QEMU – now a full build is possible
• Work should now start happening in the main source code tree, and hopefully they’ll have full support in a branch soon

Scripting with least privilege

• A new scripting language with a focus on privilege separation and running with only what’s absolutely needed has been popular in the headlines lately
• Shell scripts are used everywhere today: startup scripts, orchestration scripts for mass deployment, configuring and compiling software, etc.
• Shill aims to answer the questions “how do we limit the authority of scripts” and “how do we determine what authority is necessary” by including a declarative security policy that’s checked and enforced by the language runtime
• If used on FreeBSD, Shill will use Capsicum for sandboxing
• You can find some more of the technical information in their documentation pdf or watch their USENIX presentation video
• Hacker News also had some discussion on the topic

OpenBSD first impressions

• A brand new BSD user has started documenting his experience through a series of blog posts
• Formerly a Linux guy, he’s tried out FreeBSD and OpenBSD so far, and is currently working on an OpenBSD desktop
• The first post goes into why he chose BSD at all, why he’s switching away from Linux, how the initial transition has been, what you’ll need to relearn and what he’s got planned going forward
• He’s only been using OpenBSD for a few days as of the time this was written – we don’t usually get to hear from people this early in on their BSD journey, so it offers a unique perspective

PC-BSD and 4K oh my!

• Yesterday, Kris Moore got ahold of some 4K monitor hardware to test PC-BSD out
• The short of it – It works great!
• Minor tweaks being made to some of the PC-BSD defaults to better accommodate 4K out of box
• PSA: This particular model monitor ships with DisplayPort set to 1.1 mode only, switching it to 1.2 mode enables 60Hz properly

Feedback/Questions

• Darin writes in
• Mitch writes in

Discussion

Comparison of BSD release cycles

• FreeBSD, OpenBSD, NetBSD and DragonFlyBSD

• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• We’re still looking for some new interviews, so let us know if you’re interested in coming on the show (or have someone you’d like us to approach)
• If we have any listeners in Poland, there’s a new Polish BSD users group that’s just started up
• If you’re closer to Germany, there’s a local BSD installfest happening on May 15th in the Landshut area
• If neither of those locations are close to you, but India is, there’s the brand new New Delhi BSD users group as well
• Check the show notes for the links to all of those
• Lastly, the EuroBSDCon 2015 call for papers has been extended due to the massive amount of last-minute submissions, so now you’ve got until May 22nd to send in your ideas

The post Business as Usual | BSD Now 86 first appeared on Jupiter Broadcasting.

Researches find an 18 year old bug in Windows thats rather nasty, we’ve got the details. A new perspective on the bug bounty arms race & the security impact of Wifi on a plane.

Plus great feedback, a bursting round up & much much more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | MP3 Audio | OGG Audio | YouTube | HD Torrent | Mobile Torrent

RSS Feeds:

HD Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Cylance finds “SPEAR” a new spin on an 18 year old Windows vulnerability

• In 1997 Aaron Spangler discovered a flaw in Windows
• By causing a user to navigate to a file://1.2.3.4/ url in Internet Explorer, the user’s windows credentials would be sent to the remote server, to attempt to login to it
• “Redirect to SMB is a way for attackers to steal valuable user credentials by hijacking communications with legitimate web servers via man-in-the-middle attacks, then sending them to malicious SMB (server message block) servers that force them to spit out the victim’s username, domain and hashed password”
• “It’s a serious issue because stolen credentials can be used to break into private accounts, steal data, take control of PCs and establish a beachhead for moving deeper into a targeted network.”
• “Software from at least 31 companies including Adobe, Apple, Box, Microsoft, Oracle and Symantec can be exploited using this vulnerability”
• “Redirect to SMB is most likely to be used in targeted attacks by advanced actors because attackers must have control over some component of a victim’s network traffic.”
• “Less sophisticated attackers could launch Redirect to SMB attacks on shared WiFi access points at locations such as coffee shops from any computer, including mobile devices. We successfully tested this attack on a home network using a Nexus 7 loaded with all required tools.”
• “While the user credentials sent over SMB are commonly encrypted, the encryption method used was devised in 1998 and is weak by today’s standards. A stronger hashing algorithm being used on these credentials would decrease the impact of this issue, but not as much as disabling automatic authentication with untrusted SMB servers. With roughly $3,000 worth of GPUs, an attacker could crack any 8-character password consisting of letters (upper and lower case) as well as numbers in less than half a day.”
• “Microsoft has yet to release a patch to fix the Redirect to SMB vulnerability. The simplest workaround is to block outbound traffic from TCP 139 and TCP 445 — either at the endpoint firewall or at the network gateway’s firewall (assuming you are on a trusted network). The former will block all SMB communication, which may disable other features that depend on SMB. If the block is done at the network gateway’s firewall, SMB features will still work inside the network, but prevent authentication attempts with destinations outside the network. See the white paper for other mitigation steps.”
• “Microsoft did not resolve the issue reported by Aaron Spangler in 1997. We hope that our research will compel Microsoft to reconsider the vulnerabilities and disable authentication with untrusted SMB servers. That would block the attacks identified by Spangler as well as the new Redirect to SMB attack.”
• Cylance Whitepaper (PDF)

Given enough money, all bugs are shallow

• Eric Raymond, in The Cathedral and the Bazaar, famously wrote: “Given enough eyeballs, all bugs are shallow.”
• “The idea is that open source software, by virtue of allowing anyone and everyone to view the source code, is inherently less buggy than closed source software. He dubbed this “Linus’s Law”.”
• “However, the Heartbleed SSL vulnerability was a turning point for Linus’s Law, a catastrophic exploit based on a severe bug in open source software. How catastrophic? It affected about 18% of all the HTTPS websites in the world, and allowed attackers to view all traffic to these websites, unencrypted… for two years.”
• “OpenSSL, the library with this bug, is one of the most critical bits of Internet infrastructure the world has – relied on by major companies to encrypt the private information of their customers as it travels across the Internet. OpenSSL was used on millions of servers and devices to protect the kind of important stuff you want encrypted, and hidden away from prying eyes, like passwords, bank accounts, and credit card information.”
• “This should be some of the most well-reviewed code in the world. What happened to our eyeballs, man?”
• “In reality, it’s generally very, very difficult to fix real bugs in anything but the most trivial Open Source software. I know that I have rarely done it, and I am an experienced developer. Most of the time, what really happens is that you tell the actual programmer about the problem and wait and see if he/she fixes it”
• “Even if a brave hacker communities to read the code, they’re not terribly likely to spot one of the hard-to-spot problems. Why? Few open source hackers are security experts”
• “There’s a big difference between usage eyeballs and development eyeballs.”
• “Most eyeballs are looking at the outside of the code, not the inside. And while you can discover bugs, even important security bugs, through usage, the hairiest security bugs require inside knowledge of how the code works.”
• Peer reviewing code is a lot harder than writing code.
• “The amount of code being churned out today – even if you assume only a small fraction of it is “important” enough to require serious review – far outstrips the number of eyeballs available to look at the code”
• “There are not enough qualified eyeballs to look at the code. Sure, the overall number of programmers is slowly growing, but what percent of those programmers are skilled enough, and have the right security background, to be able to audit someone else’s code effectively? A tiny fraction”
• “But what’s the long term answer to the general problem of not enough eyeballs on open source code? It’s something that will sound very familiar to you, though I suspect Eric Raymond won’t be too happy about it.”
• “Money. Lots and lots of money.”
• “Increasingly, companies are turning to commercial bug bounty programs. Either ones they create themselves, or run through third party services like Bugcrowd, Synack, HackerOne, and Crowdcurity. This means you pay per bug, with a larger payout the bigger and badder the bug is.”
• However, adding more money to the equation might actually make things worse
• “There’s now a price associated with exploits, and the deeper the exploit and the lesser known it is, the more incentive there is to not tell anyone about it until you can collect a major payout. So you might wait up to a year to report anything, and meanwhile this security bug is out there in the wild – who knows who else might have discovered it by then?”
• “If your focus is the payout, who is paying more? The good guys, or the bad guys? Should you hold out longer for a bigger payday, or build the exploit up into something even larger? I hope for our sake the good guys have the deeper pockets, otherwise we are all screwed.”
• I like that Google addressed a few of these concerns by making Pwnium, their Chrome specific variant of Pwn2Own, a) no longer a yearly event but all day, every day and b) increasing the prize money to “infinite”. I don’t know if that’s enough, but it’s certainly going in the right direction.
• “Money turns security into a “me” goal instead of an “us” goal“
• “Am I now obligated, on top of providing a completely free open source project to the world, to pay people for contributing information about security bugs that make this open source project better? Believe me, I was very appreciative of the security bug reporting, and I sent them whatever I could, stickers, t-shirts, effusive thank you emails, callouts in the code and checkins. But open source isn’t supposed to be about the money… is it?”
• “Easy money attracts all skill levels — The submitter doesn’t understand what is and isn’t an exploit, but knows there is value in anything resembling an exploit, so submits everything they can find.”
• “But I have some advice for bug bounty programs, too”:
• “You should have someone vetting these bug reports, and making sure they are credible, have clear reproduction steps, and are repeatable, before we ever see them.”
• “You should build additional incentives in your community for some kind of collaborative work towards bigger, better exploits. These researchers need to be working together in public, not in secret against each other”.
• “You should have a reputation system that builds up so that only the better, proven contributors are making it through and submitting reports”.
• “Encourage larger orgs to fund bug bounties for common open source projects, not just their own closed source apps and websites. At Stack Exchange, we donated to open source projects we used every year. Donating a bug bounty could be a big bump in eyeballs on that code.”

FAA Needs a More Comprehensive Approach to Address Cybersecurity As Agency Transitions to NextGen

• The Federal Aviation Administration (FAA) faces cybersecurity challenges in at least three areas:
• (1) protecting air-traffic control (ATC) information systems,
• (2) protecting aircraft avionics used to operate and guide aircraft
• (3) clarifying cybersecurity roles and responsibilities among multiple FAA offices
• “FAA has taken steps to protect its ATC systems from cyber-based threats; however, significant security-control weaknesses remain that threaten the agency’s ability to ensure the safe and uninterrupted operation of the national airspace systems”
• “Modern aircraft are increasingly connected to the Internet. This interconnectedness can potentially provide unauthorized remote access to aircraft avionics systems. As part of the aircraft certification process, FAA’s Office of Safety (AVS) currently certifies new interconnected systems through rules for specific aircraft and has started reviewing rules for certifying the cybersecurity of all new aircraft systems.”
• “FAA officials and experts we interviewed said that modern aircraft are also increasingly connected to the Internet, which also uses IP-networking technology and can potentially provide an attacker with remote access to aircraft information systems. According to cybersecurity experts we interviewed, Internet connectivity in the cabin should be considered a direct link between the aircraft and the outside world, which includes potential malicious actors. FAA officials and cybersecurity and aviation experts we spoke to said that increasingly passengers in the cabin can access the Internet via onboard wireless broadband systems.”
• “Four cybersecurity experts with whom we spoke discussed firewall vulnerabilities, and all four said that because firewalls are software components, they could be hacked like any other software and circumvented. The experts said that if the cabin systems connect to the cockpit avionics systems (e.g., share the same physical wiring harness or router) and use the same networking platform, in this case IP, a user could subvert the firewall and access the cockpit avionics system from the cabin. The presence of personal smartphones and tablets in the cockpit increases the risk of a system’s being compromised by trusted insiders, both malicious and non-malicious, if these devices have the capability to transmit information to aircraft avionics systems”
• One would hope that the cockpit avionics are separated from the onboard entertainment and wifi systems by more than just a firewall. Even if they are not, a properly configured firewall is very difficult to compromise.
• Additional Coverage – BatBlue
• It seems that the authors of this report were not experts on the subject, and when interviewing experts on the topic, they asked questions like “is there any way to get around a firewall”

Feedback:

• Why does Allan hate CloudFlare?

• Hardware for pfSense

• Best Virtualizer for a few Linux VMs?

• No www or Yes www

Round Up:

• Remote Code Execution Via HTTP Request In IIS On Windows
• Snowden explains why you should use passphrases instead of passwords
• Florida middle schooler arrested, charged with hacking cybercrimes .
• After patch, details emerge about a number of Apple flaws (OS X and iOS) including Darwin Nuke, nVidia driver vulnerabilities, and a kqueue bug
• IBM claims new areal density record with 220TB tape tech
• LA Schools seeking refund after iPad rollout fails miserably
• Hacked French network exposed its own passwords during TV interview
• OEM designs have big impact on Intel Core M performance
• briankrebs on Twitter: “RT @RichardKarash: @SwiftOnSecurity @briankrebs There’s no hope for retail security! At a retail checkout yesterday: https://t.co/mUr9tcw8nD”
• Design vs User Experience

The post SMBTrapped in Microsoft | TechSNAP 210 first appeared on Jupiter Broadcasting.

We follow the journey of users who have just made the switch to Linux. We document what went great & what hasn’t worked.

Plus a big announcement is made, great news for Ubuntu MATE, a quick look at Elementary OS Freya Beta & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: System76

— PICKS —

Runs Linux

Mall Kiosk Runs Linux

Sent in by sent by Ricardo R.

Walking through a mall I found a kiosk that is running Ubuntu

Desktop App Pick

Gramps Genealogical Research Software

Gramps is a free software project and community. We strive to produce a genealogy program that is both intuitive for hobbyists and feature-complete for professional genealogists. It is a community project, created, developed and governed by genealogists.

Sent by Adrian

Weekly Spotlight

BitPay’s Internal Mining Pool

At BitPay we are huge proponents of open source software and of course cool gadgets! To do some of our internal testing, we built a small pool of bitcoin miners that run raspbian. Those two miners each have a powered USB hub and a few usb miners each. They are cooled by a pair of simple USB fans. All of which sits neatly on the corner of my desk! Gotta love how easy it is to deploy something like this in such a small form factor on linux… It’s reliable, fast, and just plain looks awesome sitting on my desk!

Jupiter Broadcasting Meetup

Our Past Picks

These are the weekly picks provided by the Jupiter Broadcasting podcast, the Linux Action Show.

This site includes a separate picks lists for the “Runs Linux”, Desktop Apps, Spotlight Picks, Android Picks, and Distro Picks.

— NEWS —

Ubuntu MATE Inks First Hardware Deal

Entroware laptops __start from £379.99. __This bags an ‘Orion’ laptop powered by an Intel Pentium 3550M (Haswell) processor running at 2.3GHz, 4GB DRR3 RAM, a 500GB 5400RPM HDD and integrated Intel graphics. Desktops begin at £299.

• Ubuntu MATE hardware partnership with Entroware | Ubuntu MATE

Ubuntu MATE forges exciting partnership with Linux hardware startup Entroware.

elementary OS Freya Available For Download, See What`s New

For those not familiar with elementary OS, this is an Ubuntu-based Linux distribution (with Freya being based on Ubuntu 14.04 LTS, supported until April 2019) which ships with its own desktop environment, called Pantheon, and its own custom application for the most part, which look great, integrate very well with the desktop and ship with sane defaults so the user doesn’t have to tweak anything.

• to remember it..!!

• Special Live Hangout – YouTube

Evolve OS Changes Name due to Legal Warning

Thank you everyone for helping us in the naming process!
In that time, one name cropped up time and time again. A name we do own, and one indicative of our history and roots.

• Solus Project

Valve games for Mesa/DRI developers

Hi,
At Collabora (my lovely dayjob), we’ve been working with Valve on
SteamOS. Valve are keen to give back to the community, and we’ve been
discussing ways they can help do that, including providing free access
to Valve games on Steam to Debian developers last year.

We’re happy to say that this has been extended to Mesa developers as
well, to say thanks for all the great work. If you have 25 commits or
more (an arbitrary number) to Mesa0 in the past five years, please
drop me an email (with ‘Steam’ in the subject) with your freedesktop
username and Steam username. We can then get you access to all past
and future Valve-produced games available on Steam[1].
Thanks for all the great work, and enjoy.
Cheers,
Daniel

Gnome 3.16 Hits

• My Updated 3.16 Packages for GNOME Extensions by Michael Tunnell aka RottNKorpse

GNOME, desktop environment project, released their latest version of 3.16 recently so I decided to make an update to my previous extension package releases. I made a similar post last year for the GNOME 3.14 Release because some of my extension broke. Unfortunately, some of those extensions are still unmaintained and thus not updated for 3.16 either. So I am continuing to update some extensions for myself and anyone else who wants them.

• Making Gnome 3.16 Theme Consistent

• and gnome 3.16 is in arch’s repos.

Intel Compute Stick, world’s smallest PC, will cost $150 with Windows, $110 with Linux

Intel Atom quad-core processor, 2GB of RAM, 32GB of storage and 802.11b/g/n Wi-Fi. It plugs directly into a monitor or TV via HDMI, and is powered through a Micro USB jack on the side of the stick. There’s also a full-sized USB port, and Bluetooth 4.0 for connecting a mouse and keyboard.

— FEEDBACK —

• https://slexy.org/view/s22YoWUjOt

• https://slexy.org/view/s20bsAHlV9

• https://slexy.org/view/s206wSNobi

— CHRIS’ STASH —

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

Catch the show LIVE Sunday 10am Pacific / 1pm Eastern / 6pm UTC:

• https://jblive.tv
• Network Calendar

The post Chronicles of a Linux Switcher | LAS 360 first appeared on Jupiter Broadcasting.

Have you ever thought it’s better to create a job then apply for one? This week we dive into what it takes to build a business that runs on open source & supports open source.

Plus Microsoft’s surprise move, openSUSE jumps ahead, running just about any Android app under Linux & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Jump to Noah’s On Location Video

• https://youtu.be/xgVp2YM5CFE?t=44m43s

Best Enterprise Router for the Money

• Mikrotik

Best Autonomous Access Points For the Money

• EnGenius

Best Cloud Access Points for the Money

• UBNT – Ubiquiti Networks

Best Display for Internet Kiosk

• Asus VS248H-P 24-Inch Full-HD LED-lit LCD Monitor

Best PC for Internet Kiosk for Internet Kiosk

• Intel NUC DN2820FYKH with Intel Celeron N2820

Best USB Wifi Dongle

• Panda 300Mbps Wireless-N USB Adapter

Brought to you by: System76

• Ubiquiti Networks – Wireless networking products for broadband and enterprise

— PICKS —

Runs Linux

Bowling Alley Runs Linux

Sent in by douglascodes

I was at a work party at a bowling alley last night. There were some problems with the alley score system and they had to reboot, so I took some pics of the startup. I wasn’t able to catch it in these pictures. But it is running Ubuntu 10.10.

Desktop App Pick

ClipGrab – Free YouTube Downloader & Converter

ClipGrab is a free downloader and converter for YouTube, Vimeo, Metacafe, Dailymotion and many other online video sites.

It converts downloaded videos to MPEG4, MP3 or other formats in just one easy step.

Weekly Spotlight

Go For It!

Go For It! is a simple and stylish productivity app, featuring a to-do list, merged with a timer that keeps your focus on the current task. To-do lists are stored in the Todo.txt format. This simplifies synchronization with mobile devices and makes it possible to edit tasks using other front-ends, like my Todo.txt Kupfer Plugin. If you already use Todo.txt, beware of the fact, that Go For It! automatically archives completed tasks to the done list!

Project belong to community member mank319

Sent in by dardevelin

Jupiter Broadcasting Meetup

Our Past Picks

These are the weekly picks provided by the Jupiter Broadcasting podcast, the Linux Action Show.

This site includes a separate picks lists for the “Runs Linux”, Desktop Apps, Spotlight Picks, Android Picks, and Distro Picks.

— NEWS —

Microsoft Adopts ODF

Microsoft has confirmed it will start supporting the Open Documents Format (ODF) in the next update to Office 365, following a lengthy battle against the UK government.
In 2014, Microsoft went against the government’s request to support ODF, claiming its own XML format was more heavily adopted. The UK government refutes the claim, stating that ODF allows users to not be boxed into one ecosystem.

Gnome 3.16 systemd-journal coming in next Tumbleweed snapshot

It’s official, Gnome will be in the next Tumbleweed snapshot and the development experience is highly anticipated. A clean installation works, but the guys are working on one last test before its released. We’re not promising an early Easter gift, but Tumbleweed users won’t have to wait long for Gnome’s latest upgrade.

A small change to Linux can be seen in Tumbleweed with a change from the syslog to systemd-journal; the systemd-journal as a binary file needs special tools to look at it.

• systemd-journal has been in Fedora since Fedora 18

Audacity 2.1.0 Released

• For a long time, we have wanted Real-Time Preview for effects.
  It seemed nearly unachievable without major restructuring.
  But with Audacity 2.1.0, we have it in
  LADSPA, VST, and Audio Unit (OS X) effects!
  Thanks to Leland Lucius for these great new capabilities!
• Much improved
  Noise Reduction
  effect replaces Noise Removal. Thanks to new contributor Paul Licameli!
• Lots of other improvements to effects, also thanks to Leland, including:
  • VST: FXB preset banks, hosting multiple plugins
  • All effects can now be used in Chains, and can be sorted on name, publisher, or class.
  • Most Nyquist effects now have Preview button.
• Redesigned Meter Toolbars show a lot more information in smaller area. Thanks, Leland Lucius and James Crook!
• Spectral Selection
  in Spectrogram view. Thanks to Paul Licameli!

How to Install and Run Android Apps in a Linux OS

Basically, anyone with a computer will be able to get an APK file and get it running inside the Google Chrome browser with a minimum amount of effort. What’s even more interesting is that the app only needs Google Chrome installer, it doesn’t need it to run. If you check the background processes, you will notice that a Chrome one is running along with the Arc Welder.

• ARC Welder – Chrome Web Store

Gentoo, after 10 years, has a new website! – not April Fools this time!

Blender New Version 2.74 Is Out With New Tools And Improvements

• The Blenders Institute’s sixth open film

The Blender Institute’s sixth film project, codenamed Gooseberry, is in deep into the most open production from the Blender Institute yet. If you’ve been following the project so far, then you already have a sense of what Blender means by an “open production”—lots of sharing.

— FEEDBACK —

• https://slexy.org/view/s21U3xrhmC

• https://slexy.org/view/s21HV3g6cB

• https://slexy.org/view/s21o90indI

• op5 IT monitoring – eliminate time thieves on Vimeo

“Built on top of Nagios you say?”
Yes, with some added features like proper report generation, a sweet REST API, easy to use load-balancing/redundancy, a business logic engine and of course commercial support!

PS: I managed to sneak in a JB shout-out in one of our cheesy promo videos: https://vimeo.com/107821073

— CHRIS’ STASH —

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

Catch the show LIVE Sunday 10am Pacific / 1pm Eastern / 6pm UTC:

• https://jblive.tv
• Network Calendar

The post Get A Job, You Linux Bum! | LAS 359 first appeared on Jupiter Broadcasting.

We look back on some of the rants and events of 2014. Whether it’s systemd, mir, tox, ubuntu or anything else, we covered lots of major events this year!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

FU:

• Episode 63 – For Forks Sake
• Episode 30 – Talkin’ Tox
• Episode 60 – Calm Before the Storm
• Episode 66 – Firefox gets Unplugged
• Episode 33 – Graphical Civil War

Runs Linux from the people:

• Send in a pic/video of your runs Linux.
• Please upload videos to YouTube and submit a link via email or the subreddit.

New Shows : Tech Talk Today (Mon – Thur)

• Tech Talk Today Today | Jupiter Broadcasting

Support Jupiter Broadcasting on Patreon

The post Best of LUP 2014 | LINUX Unplugged 72 first appeared on Jupiter Broadcasting.

Mike discusses what his business has noted after using Xamarin and Xamarin.Forms. Plus we bust some myths, discuss use cases and advantages, the disadvantages.

Plus you great feedback, some follow up and more!

Thanks to:

Direct Download:

MP3 Audio | OGG Audio | Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | Video Feed | Torrent Feed | iTunes Audio | iTunes Video

Become a supporter on Patreon:

— Show Notes: —

Feedback / Follow Up:

• Glade

• How I learned to program Scala: The Nexus 5 Experiment

• Open Source Consulting in IT

Dev Hoopla:

• Xamarin Review | dominickm.com

Recently, we at Fingertip Tech, INC have been doing a lot of work in Xamarin and Xamarin.Forms. All in all, things have been going fairly well and the tooling seems to get better everyday!

The post The Xamarin Solution | CR 112 first appeared on Jupiter Broadcasting.

This week we\’re at BSDCan, ganging up on people and forcing them to give us interviews. Assuming we don\’t get arrested for harassment, we\’ll be back next week with your regularly scheduled programming.

For now, we\’ve got some feedback emails to catch up on, as well as a prerecorded talk Matt Ahrens gave about ZFS.

We\’ll be back to tell you all about the conference next week, on BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Presentation – Matthew Ahrens – matt@mahrens.org / @mahrens1

OpenZFS discussion

Feedback/Questions

• Remy writes in
• Darin writes in
• Steve writes in
• Pascal writes in

• All the tutorials are posted in their entirety at bsdnow.tv
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• If you\’ve got something cool to talk about and want to come on for an interview, shoot us an email
• Also if you have any tutorial requests, we\’d be glad to show whatever the viewers want to see
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)

The post BSDCanned Goods | BSD Now 37 first appeared on Jupiter Broadcasting.

XP support ends today and we’ll celebrate the occasion by debating what prevents technical users switching to Linux, address some common myths, and set a course for our new howto show.

Plus why Chase and Matt are wrong about DS9, blaming choice, your feedback, and more!

Thanks to:

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Show Notes:

FU

• Thoughts on Leo\’s Anti-Linux Spill

• Linux is easier for new users to use

How Hard Is It to Switch to Linux?

I was tired of things breaking from nowhere, or being frustrated with certain second-rate apps, and even though I learned a lot—and I LOVED the command line and package management—it just was too much trouble for me day-to-day. I never thought I\’d see Windows as an OS that \”just works,\” but compared to Linux, it really fit that bill in my experience.

What does a beginner need to know before switching to Ubuntu? – Ask Ubuntu

What are the first things I have to do when I completed the installation?

The post Windows eXPired | LINUX Unplugged 35 first appeared on Jupiter Broadcasting.

The co-founders of SoyldXK join us to discuss their origins, what they focus on, how they hope to make a profit, and what the future might hold.

Plus we have some “solid” AutoCAD replacements for Linux, your emails, and more!

Thanks to:

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Show Notes:

FU

• Mac user wants to switch to Linux

• AutoCAD Replacement

• Equistremo comments on Ubuntu Punching Bag

I used to do drafting for my family\’s business (civil engineering related) and I tried some of the solutions a while back while trying to find a cheaper alternative to AutoCAD (on Windows, but they apply here). I haven\’t used all the solutions that are present for Linux related to CAD, but I can certainly get you started.

• Home – Art of Illusion

SoyldXK Interview

• Is SolydXK based on LMDE or inspired by LMDE? SolydXK uses Mint Tools such as the Mint Software Manager, Mint Updater, etc but is it directly based on LMDE or is it based directly on Debian?

• What exactly is the difference between Business and Home…we can guess for the most part but the website is very obscure with the difference. For example: Business says \”Focus on Stability and Security\” and Home says \”Stable and Secure\”.

• How does SolydXK support the Cinnamon desktop environment? Does it use It\’s own repo, pull from Mint or pull from Debian.

• Do they offer MATE as an option and if so is it from their own Solyd Repo?

• Does SolydX or K have custom packages that are dependent on XFCE or KDE? For example: Lets say I want to use Cinnamon or MATE in Solyd, will there be any package breakage in doing that?

• Dat theme?

• Scaling with their user base?

• Revenue model

• And much more!

Follow SoldXK:

• SolydXK (solydxk) on Twitter
• SolydXK — Google+
• Solyd XK on Facebook
• SolydXK forums

Mark Shuttleworth » Blog Archive » ACPI, firmware and your security

ACPI comes from an era when the operating system was proprietary and couldn\’t be changed by the hardware manufacturer.

We don\’t live in that era any more.

• Mark Shuttleworth against ACPI **

The post Do Me a SolydXK | LINUX Unplugged 32 first appeared on Jupiter Broadcasting.

Experienced Linux users may soon be finding a new call on their talents to help new users switching to Linux. But with services like Stackexchange, Google+ Helpouts, and more is it time to reboot the way we provide support to new Linux users?

Thanks to:

• Help the DigitalOcean community by submitting articles and get paid $50 per published piece!

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Show Notes:

FU

• Usefulness of Lugs

• Not just a bunch of graybeards…

SteamOS for the Holidays

• Thermionix Builds an Arch Linux Steambox

I\’ve recently setup ArchLinux on the HTPC, and set it to boot into XBMC standalone. From XBMC there\’s a shortcut to close XBMC and launch steam. Of course one could easily boot straight into steam giving functionality similar to steamOS.

• SteamOS vs. Windows 8.1 NVIDIA Performance

• Video tour: The ins and outs of the SteamOS beta release

Mail Sack:

• starting a LUG

• Portaal :: Pingviini Web

The post Fixing Linux Support | LINUX Unplugged 19 first appeared on Jupiter Broadcasting.

We break down what has Linus so upset, and the Internet in an NSA induced fever. Plus GOG makes a public statement about Linux that has us scratching our heads, and your feedback.

Then if we had a format, we’d be breaking it with our review of Star Trek: Deep Space Nine’s first episode, Emissary.

Thanks to:

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

— Show Notes: —

Chat:

• Straw Poll

• Linus Torvalds Responds To Petition To Remove RdRand From /dev/random : LinuxActionShow

• N.S.A. Foils Much Internet Encryption

• No Linux support for GOG\’s \’foreseeable future\’

Mailsack:

• Is this a good service to use with BitTorrent Sync rather than spider oak? : LinuxActionShow

• What\’s Chris gonna wear on Monkey Suit day?

Deep Space Nine Challenge:

• Straw Poll

• Emissary (episode) – Memory Alpha, the Star Trek Wiki

• Star Trek Star Trek: Deep Space Nine – The Emissary (Pilot), Part 1

• Watch Star Trek: Deep Space Nine Online | Netflix

[asa]B000V5Y1SQ[/asa]

The post Wrath of Linus | LINUX Unplugged 5 first appeared on Jupiter Broadcasting.

We highlight the must try Linux games for casual, hardcore, and the thinker players. Also some of the best games coming out of Kickstarter, and resources to track future Kickstarter games with Linux support.

Plus we bust the Ubuntu rumors of the week, discuss future versions of Gnome and KDE, cover the great news for Linux pros, and the distro coming to a theater near you!

AND SO MUCH MORE!

All this week on, The Linux Action Show!

Use our code linux295 to get a .COM for $2.95.

Expires 1-31-13!

20% off your ENTIRE order just use our code go20off6.

Download:

HD Video | Mobile Video | Ogg Video | MP3 Audio | Ogg Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Feed | Ogg Feed | iTunes Feeds | Torrent Feed

Support the Show: