Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Nextcloud’s Big new Customer — After a silent migration of millions of users, Telekom and Nextcloud are now unveiling the first feature of the new MagentaCloud: a free office.
• Last Minute GNOME Awesome — GNOME Shell and Mutter 44 have reached their release candidate milestone ahead of the official release in just two weeks, all is going to plan, and to our surprise, there have been several last-minute additions.
• GNOME 44 Mutter Adds fractional_scale_v1 Wayland Support
• GNOME Shell & Mutter Complete Their Migration Away From GTK3
• wp-fractional-scale-v1: New protocol for fractional scaling — This protocols allows for communicating preferred fractional scales to surfaces, which in combination with wp_viewport can be used to render surfaces at fractional scales when applicable.
• Asahi Linux Rust Drivers — This is my first take on the Rust abstractions for the DRM subsystem.
• Flathub in 2023 — It’s been quite a few months since the most recent updates about Flathub last year. We’ve been busy behind the scenes, so I’d like to share what we’ve been up to at Flathub and why—and what’s coming up from us this year
• Flathub in 2023 - Flathub Discourse

Plus Pwned Passwords goes open source, the public release of Fuchsia, and Valve's rumored Linux handheld.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• After staff revolt, Freenode management takes over hundreds of IRC channels for ‘policy violations’ — All told, it appears something like 700 Freenode channels have been seized and re-permissioned, supposedly because the channels mentioned Libera Chat in violation of Freenode's advertising policy.
• Freenode IRC staff resign en masse after takeover by Korea’s “crown prince”
• IRC Announcement - Fedora Magazine
• Ubuntu, Wikimedia jump ship to the Libera Chat IRC network after Freenode channel confiscations
• One week of Libera Chat — It’s been an exciting first week, and we’d like to say a massive thank you for your support, enthusiasm, and patience as we continue to work to bring Libera.Chat up to full capacity. In these first few days, we’ve been able to reach 16,500 simultaneous connections and 20,000 registered accounts.
• kline󠁧󠁢󠁳󠁣󠁴󠁿 on mastodon: “andrew lee just seized over 700 channels on freenode”
• PSA: Ubuntu’s IRC Channels Have Moved from Freenode to Libera Chat
• Gentoo Freenode channels have been hijacked — Today (2021-05-26) a large number of Gentoo channels have been hijacked by Freenode staff, including channels that were not yet migrated to Libera.chat. We cannot perceive this otherwise than as an open act of hostility and we have effectively left Freenode.
• Pwned Passwords, Open Source in the .NET Foundation and Working with the FBI
• Pwned Passwords is now open source!
• Troy Hunt on Twitter RE: the news
• The FBI will feed compromised passwords to Have I Been Pwned — As Hunt explained, the FBI is involved into all sorts of investigations into digital crimes, such as botnets, ransomware, online child sexual exploitation and terrorism. The compromised passwords they find are often being used by crime rings, so the passwords' quick addition to the HIBP database would be extremely helpful. That said, the website doesn't have a way for the feds to quickly feed passwords into its database yet.
• Google is releasing Fuchsia OS, starting w/ 1st-gen Nest Hub — Google’s long-in-development, from-scratch operating system, Fuchsia, is now running on real Made by Google devices, namely, the first-generation Nest Hub.
• Here’s an easier way to try Fuchsia OS on your computer
• Linux Action Show 431
• Valve is making a Switch-like portable gaming PC — On Tuesday, SteamDB operator Pavel Djundik spotted the change in Steam's code, which pointed to a new device named "SteamPal".
• New Audacity Owners Want a CLA — For those not yet aware, we are introducing a Contributor License Agreement (CLA), which contributors to Audacity will need to sign in order to contribute code to the project.
• Information About Our New Contributor License Agreement
• Nextcloud iOS app Open Sourced
• GitHub: nextcloud/ios/COPYING.iOS
• Nextcloud iOS app License Guidelines
• List of Open-Source iOS Apps
• Jami on the Mac App Store
• mediaU on the App Store
• Linux Game Development at Tesla? — Some of you might have heard, our dear technoking is bullish on games and making an awesome platform for all gamers in Tesla vehicles. The latest Model S on our website can give you a hint of what we're aiming for in terms of platform capability (sorry, can't divulge much more for now). The Tesla infotainment OS and platform software are based on a standard Linux, so of course, we're interested in helping the gaming community make Linux gaming excellent.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Element suspended on Google Play Store — At 2021-01-29 at 21:35 UTC Google suspended Element from the Play Store without warning or notification
• Element sees fivefold increase in signups after Whatsapp privacy debacle — After Whatsapp’s announcement, rival app Telegram reported a 500% increase in users and Signal saw an 18-fold increase in download numbers, putting it on track to cross 1m new users each day.
• Element team waiting hours — Update: we’re still waiting for a response from Google to our explanatory mail sent ~8 hours ago. Thanks all for your patience while we get this sorted...
• New Linux SUDO flaw lets local users gain root privileges — The issue is a heap-based buffer overflow exploitable by any local user (normal users and system users, listed in the sudoers file or not), with attackers not being required to know the user's password to successfully exploit the flaw. The vulnerability was introduced in the Sudo program almost 9 years ago, in July 2011.
• 10-year-old Sudo bug lets Linux users gain root-level access
• Buffer overflow in command line unescaping
• Sudo vulnerability allows attackers to gain root privileges on Linux systems (CVE-2021-3156) - Help Net Security — "This vulnerability is perhaps the most significant sudo vulnerability in recent memory (both in terms of scope and impact) and has been hiding in plain sight for nearly 10 years."
• New Linux Kernel Vulnerabilities Patched in All Supported Ubuntu Releases
• Mitre - CVE-2020-28374
• Red Hat Customer Portal: CVE-2020-28374
• Debian: CVE-2020-28374
• Ubuntu: CVE-2020-28374
• The killing of CentOS Linux: ‘The CentOS board doesn’t get to decide what Red Hat engineering teams do’ — Brian Exelbierd, responsible for Red Hat liaison with the CentOS project and a board member of that project, has told The Register that CentOS Linux is ending because Red Hat simply refused to invest in it.
• Rocky Linux gets a new sponsor—Gregory Kurtzer’s startup, Ctrl IQ — Rocky Linux is to be a beneficiary of Ctrl IQ's revenue, not its source—the company describes itself in its announcement as the suppliers of a "full technology stack integrating key capabilities of enterprise, hyper-scale, cloud and high-performance computing."
• Linux maintainer says long-term support for 5.10 will stay at two years unless biz world steps up and actually uses it — Linux kernel maintainer Greg Kroah-Hartman has responded to complaints that the current promise of two years for 5.10 is not enough, explaining that support is not automatic but requires commercial help.
• Rust Game Server One-Click App Linode — A free-for-all battle in a harsh open-world environment.