SMLR 328 – Home Automation projects
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
Our projects this week is about Home Automation with Home Assistant!
SMLR E327 – The Second Reboot
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
We took a break and we are back.
SMLR 326 SMLR The First Reboot
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
SMLR 325 SMLR Reboot
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
SMLR 324: Year of the Linux Laptop
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
Phils GitHub
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
Last year at Build 2019, we first announced the Windows Terminal. Since then, we have been working with the community to create a wonderful terminal experience while still being a preview product.
Ubuntu 20.10 Release Date & Planned Features
https://www.omgubuntu.co.uk/2020/05/ubuntu-20-10-release-features
The Raspberry Pi 4 is Now Available With 8GB RAM
https://www.omgubuntu.co.uk/2020/05/raspberry-pi-4-8gb-ram
Canonical Releases Important Ubuntu Kernel Security Updates, Patch Now
https://9to5linux.com/canonical-outs-important-ubuntu-kernel-security-updates-patch-now
System76 Launches Their First Ever AMD Powered Linux Laptop
https://9to5linux.com/system76-launches-their-first-ever-amd-powered-linux-laptop
Tony
Signal Downloads Are Way Up Since the Protests Began
https://www.nytimes.com/2020/06/11/style/signal-messaging-app-encryption-protests.html
CallStranger UPnP bug allows data theft, DDoS attacks, LAN scans
SELF 2020 – 6/12/2020
https://southeastlinuxfest.org/
Cloud Flare TV
https://cloudflare.tv/schedule
TueNAS CORE
https://www.ixsystems.com/blog/truenas-core-features/
Jay
Lenovo goes all in for Linux, certifying Red Hat and Ubuntu for all its workstations
It seems Coreboot and Open Firmware will come to System76’s NVIDIA laptops
SMLR 323:Put a Hat on a Thinkpad
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
Phils GitHub
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
Wireguard-go on FreeBSD https://www.freshports.org/net/wireguard-go
Android App for Proton Goes Open Source
https://protonmail.com/blog/android-open-source/
Netherlands commits to Free Software by default
https://fsfe.org/news/2020/news-20200424-01.html
[TOM]
Ubuntu 20.04 Supports Fingerprint Login, Improvements Planned
https://www.omgubuntu.co.uk/2020/04/ubuntu-fingerprint-scanner-login-desktop
The Fedora Project and Lenovo are partnering to offer customers the option to buy a ThinkPad laptop with the Fedora Linux distribution pre-installed.
https://9to5linux.com/fedora-linux-will-soon-be-available-on-select-lenovo-laptops
[TOM]
2020 Open Source Conferences That Have Moved Online
If you’re going to stare at a screen, you can binge-watch Netflix – or you could attend one of these online open source conferences, most of which are now free or at a significantly reduced price.
[Phil]
Cloudflare creates a tool to help the public shame their ISPs for not implementing BGP security
Border Gateway Protocol (BGP) is responsible for looking at all of the available paths that data could travel and picking the best route. Unfortunately, it isn’t secure by default, and there are constantly major internet routing issues due to hijacking etc. ISPs and other major Internet players (Comcast, Sprint, Verizon, and others) would need to implement a system called RPKI. This tool shows large providers who are and are not implementing this security system. Conveniently there’s a post to twitter button to help shame providers into compliance!
[Jay]
There’s now over 6,000 Linux games on Steam plus thousands more playable with Steam Play Proton
[Tony]
Supreme Court To Consider Limiting America’s ‘Anti-Hacking’ Law
[Phil]
Let’s Encrypt is hiring a Senior Software Engineer
https://www.abetterinternet.org/careers/le-sr-sw-eng/
[Phil]
OpenJardin is software for the management of a permaculture oriented garden. This software is written by a French developer. While a lot of the interface has been translated into English, some elements are still in French. You’re therefore at an advantage if you are fluent in French and English, particularly as the project’s manual is strictly a French only affair.
https://sourceforge.net/projects/openjardin/
SMLR 322: Stay 127.0.0.2
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
Phils GitHub
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
News
Projects:
Tom: XCP-NG, new servers and new labs videos
Tony:
MagicMirror + HTMLbox + Gcalcli script | gcal-to-html.sh in https://github.com/tbemus/bin
pFsense + script to turn on/off rule + Mozilla webthings | pfb.php in https://github.com/tbemus/bin
Listener Feedback
Jay: Home Lab
Tony: magic mirror
Tom: Tails
News:
Ubuntu 20.04 Features the Return of a VERY Familiar Face…
https://www.omgubuntu.co.uk/2020/04/focal-fossa-familiar-face-wallpaper
Jay: ‘Pop Shell’ Wants to Bring Proper Tiling Window Features to GNOME Shell
Tony: Git. The open source distributed version control system was first released on April 7th 2005, and thus today marks its 15th anniversary – 15 years aiding software developers to collaborate on projects large and small no matter where on the globe they may be.
https://www.itwire.com/the-linux-distillery/git-version-control-system-hits-15-year-milestone.html
TOM: New Kernel Features WireGuard
Linux 5.6 adds support a bunch of new SoCs and developer boards, including the Pine HardRock64, SolidRun’s HoneyComb LX2K workstation, and the Qualcomm sc7180
There are also thermal sensor updates for a range of Rockchip and Allwinner platforms, as well as the Broadcom BCM2711 used in the Raspberry Pi 4 (among others).
Logitech devices that use the HID++ protocol can now report battery voltage on Linux, and the Logitech MX Master 3 Mouse will now “just work” out of the box.
https://www.omgubuntu.co.uk/2020/02/linux-5-6-kernel-features
TOM: Foliate 2.0 is a MASSIVE update to this GTK-based .epub reader. It adds a crop of major new features, including a redesigned interface, new reading options, new navigation behaviour, more control, more choice, more everything.
https://github.com/johnfactotum/foliate
Order Pizza From The command Line
https://github.com/harrybrwn/apizza
Tony:
Interesting News site
Jitsi Meet features update, April 2020
https://jitsi.org/news/features-update-april-2020/
Smart-Doorbell
https://www.hackster.io/hackershack/smart-doorbell-video-intercom-system-e5aa61
https://github.com/HackerShackOfficial/Smart-Doorbell
SMLR 321: Stay 127.0.0.1
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
Phils GitHub
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
News
[Tom]
Use of proprietary software is ‘plummeting’, finds Red Hat report
https://www.redhat.com/en/enterprise-open-source-report/2020
[Phil] Protect our Speech and Security Online: Reject the Graham-Blumenthal Bill
https://act.eff.org/action/protect-our-speech-and-security-online-reject-the-graham-blumenthal-bill
Members of Congress have mounted a major threat to your freedom of speech and security online. Senators Lindsey Graham (R-SC) and Richard Blumenthal (D-CT) recently introduced a bill that would undermine key protections for Internet speech in U.S. law. It would also expose providers of the private messaging services we all rely on to serious legal risk, potentially forcing them to undermine their tools’ security.
- The Eliminating Abusive and Rampant Neglect of Interactive Technologies Act (EARN IT Act) would create incentives for companies to “earn” liability protection for violations of laws related to online child sexual abuse material.
- It’s basically FOSTA/SESTA from 2018
- The so-called EARN IT Act (Senate bill 3398) is anti-speech, anti-security, anti-innovation, and unnecessary.
[Tom] Cloud’s Full
https://www.theregister.co.uk/2020/03/24/azure_seems_to_be_full/
Customers of Microsoft’s Azure cloud are reporting capacity issues such as the inability to create resources and associated reliability issues.
Outage-tracking website Down Detector shows quite a few reports about UK Azure issues today, yet the official Azure Status page is all green ticks. The inability to provision resources does not count as an outage as such – though it is more than an annoyance since it is not always feasible to create the resource in an alternative Azure region. Some types of resource have to be same region in order to work correctly without a lot of reconfiguration.
[Tom]
GIMP 2.10.18 Released, Includes New 3D Transform Tool
[Jay] Ubuntu Data Collection Report is Out! Read the Interesting Facts
https://itsfoss.com/ubuntu-data-collection-stats/
- Average Ubuntu install takes 18 minutes: Take that Windows 10 Update
- Not many dual boots only 7.8%, even less encrypt the disk, only 3.8%
- USA has the most number of users followed by Brazil, India, China and Russia.
[Tony]
Diagram with anyone, anywhere.
diagrams.net is open source, online, desktop and container deployable diagramming software
[Tom]
Pet the cat, own the bathrobe: Linus Torvalds on working from home
Torvalds admits that when he started, “I worried about missing human interaction — not just talking to people in the office and hallways, but going out to lunch etc. It turns out I never really missed it.”
[Phil] Let’s Encrypt CAA Rechecking Bug aka the mass revocation event
https://letsencrypt.org/caaproblem/
- What is CAA?
- CAA is a type of DNS record that allows site owners to specify which Certificate Authorities (CAs) are allowed to issue certificates containing their domain names. It was standardized in 2013 by RFC 6844 to allow a CA “reduce the risk of unintended certificate mis-issue.” By default, every public CA is allowed to issue certificates for any domain name in the public DNS, provided they validate control of that domain name. That means that if there’s a bug in any one of the many public CAs’ validation processes, every domain name is potentially affected. CAA provides a way for domain holders to reduce that risk.
- BR §3.2.2.8
- As part of the issuance process, the CA MUST check for CAA records and follow the processing instructions found, for each dNSName in the subjectAltName extension of the certificate to be issued, as specified in RFC 6844. If the CA issues a certificate, they MUST do so within the TTL of the CAA record, or 8 hours, whichever is greater.
- The bug:
- When a certificate request contained N domain names that needed CAA rechecking, Boulder would pick one domain name and check it N times. What this means in practice is that if a subscriber validated a domain name at time X, and the CAA records for that domain at time X allowed Let’s Encrypt issuance, that subscriber would be able to issue a certificate containing that domain name until X+30 days, even if someone later installed CAA records on that domain name that prohibit issuance by Let’s Encrypt.
- Impact:
- 2.6% active certificates that were potentially affected by the bug, totalling approximately 3 million certificates
- What did we do and what was our decision:
- Notifications were sent out to subscribers as fast as possible at the time
- 1.7 million affected certificates were replaced in less than 48 hours
- We chose to not revoke the remaining 1+ million certificates there were not renewed. Those remaining 1+ million certificates are evaluated weekly, some are revoked, and some will naturally expire due to the 90 day life times.
- What does this mean? Should you trust Let’s Encrypt?
- That’s really up to you. It’s definitely worth reading the post-mortem and minute by minute playback on the community forum.
[Tony]
Penguicon 2020 Has been Canceled
https://2020.penguicon.org/2020/03/canceled/
[Tony]
Coronavirus Impact: Can We Run Out of the Internet Because of People Working From Home?
US Government Sites Give Bad Security Advice
https://krebsonsecurity.com/2020/03/us-government-sites-give-bad-security-advice/
Track Coronavirus Disease 2019 (COVID-19) Statistics From Commandline
https://www.ostechnix.com/track-coronavirus-disease-2019-covid-19-statistics-from-commandline/
https://www.ostechnix.com/track-coronavirus-disease-2019-covid-19-statistics-from-commandline/
SMLR 320: Rtcwake
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
Phils GitHub
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
(Tom) Wireguard is in the linux kernel 5.6 https://www.zdnet.com/article/at-long-last-wireguard-vpn-is-on-its-way-into-linux/
- It is a layer 3 secure VPN. Unlike its older rivals, which it’s meant to replace, its code is much cleaner and simple. The result is a fast, easy-to-deploy VPN.
- Linus Torvalds wrote, “I’m 1000% with Jason on this. The crypto/ model is hard to use, inefficient, and completely pointless when you know what your cipher or hash algorithm is, and your CPU just does it well directly.”
- WireGuard works by securely encapsulates IP packets over UDP. It’s authentication and interface design has more to do with Secure Shell (SSH) than other VPNs. You simply configure the WireGuard interface with your private key and your peers’ public keys, and you’re ready to securely talk.
(Tom) Lenovo is offering Linux servers
(Tony) Ubuntu Touch is Shaping Up Nicely on the PinePhone [Video]
https://www.omgubuntu.co.uk/2020/01/ubuntu-touch-on-the-pinephone-is-coming-along-nicely
(Phil) The Let’s Encrypt Oak CT log is now included in Google Chrome version 78 and Apple Safari!
https://groups.google.com/a/chromium.org/forum/#!topic/ct-policy/m4sHsUBq0i0
- Certificate Transparency is an Internet security standard and open source framework for monitoring and auditing digital certificates.
- Usable by all publicly-trusted certificate authorities.
- Let’s Encrypt owns their own uptime
(Tom) LibreOffice 6.4 Released, This is What’s New
https://www.omgubuntu.co.uk/2020/01/libreoffice-6-4-released-new-features
QR code generator
App icons in Start Center
Automatic redaction
Faster help system
Table panel added to the Writer sidebar
Comments can be marked as resolved
Combine multiple text boxes into one in Draw, Impress
Sifr icon theme now supports large sizing
Checkbox to enable/disable sending crash reports
(Tony) Systemd is changing how home directories are managed in systemd v245
https://systemd.io/HOME_DIRECTORY/
- Systemd-homed has been merged as the latest (optional) fundamental change to Linux distributions in how home directories are handled.
- Systemd-homed makes it easier to support migratable home directories, more self containment within home directories, better password and encryption handling, and other modern Linux home directory features.
- LUKS encrypted volumes, mounting home directories from a CIFS server, FSCRYPT encryption, Btrfs sub-volume handling, and making use of JSON-formatted user records.
(Phil) XCP-ng is officially joining the Xen Project, an open source hypervisor hosted at the Linux Foundation. https://xcp-ng.org/blog/2020/01/28/xcp-ng-join-the-linux-foundation/
- Xen Project is a recognition that XCP-ng is, de facto, the Open Source Xen hypervisor distribution.
- Joining the Xen Project won’t change the XCP-ng Project very much. They will continue to invest resources for innovation and are still recruiting 6 new developers in 2020.
- We can expect more involvement in the Xen Project itself to improve each layer of the XCP-ng Project.
(Tom) Linus Torvalds says “Don’t use ZFS”—but doesn’t seem to understand it
Linus should avoid authoritative statements about projects he’s unfamiliar with.
(Tony) Emotet Hacks Nearby Wi-Fi Networks to Spread to New Victims
- discover wireless networks around an already infected Wi-Fi-enabled computer and attempting to brute-force
(Phil) Shellcheck 8 year retrospective https://www.vidarholen.net/contents/blog/?p=859
- ShellCheck is a static analysis tool that points out common problems and pitfalls in shell scripts.
- ShellCheck is generally considered a shell script linter, but it actually started life in 2012 as an IRC bot (of all things!) on #bash@Freenode. It’s still there and as active as ever.
- Since ShellCheck was a hobby project that wasn’t intended to run on random people’s machines, the developer could completely ignore popularity, familiarity, and practicality, and pick the language that was the most fun and interesting. That language is Haskell.
- Lot’s of what I would have done differently. It’s worth a read.
(Tom) Troll Hunter – Mycroft’s Position on Patent Trolls
Patent trolls get paid because short-sighted companies make the decision to pay. Simply put, it is usually cheaper in the short run to pay a troll than it is to litigate. It is also cheaper to give a schoolyard bully your lunch money than it is to visit a doctor. The thing is, once you pay the bully, he’ll just come back again and again and again. Eventually, that lunch money adds up to a lot more than a doctor’s visit. In the long run the best way to deal with a bully is to punch him square in the face. You might take a beating, but if you do it every time? The bully will find easier prey.
https://mycroft.ai/blog/troll-hunter-mycrofts-position-on-patent-trolls/
(Tony) SATA HATs support up to four drives on Raspberry Pi 4 or Rock Pi 4
http://linuxgizmos.com/sata-hats-support-up-to-four-drives-on-raspberry-pi-4-or-rock-pi-4/
- RPI NAS vs Mini ITX NAS
SMLR 319: Happy GNU Year
Podcast: Play in new window
Subscribe: Apple Podcasts | RSS
Downloads:
Contact Us:
show (at) smlr.us or the Contact us page
On the Lawrence Systems Forums
https://forums.lawrencesystems.com/c/smlr-podcast
Intro:
Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix
Sound bites by Mike Tanner
Phils GitHub
The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge
Jay’s Site
Jay’s Bash Prompt https://pastebin.com/kzPjE8y4
Show Notes
WireGuard Sends Out Latest Patch Revision In Preparing For Linux 5.6
https://www.phoronix.com/scan.php?page=news_item&px=WireGuard-Net-Next-5.6-Prep
Krita Receives Epic MegaGrant
https://krita.org/en/item/krita-receives-epic-megagrant/
Below are 10 of Ubuntu’s most defining moments from the past decade.
https://www.omgubuntu.co.uk/2019/12/ubuntu-defining-moments-2010s
Canonical Sponsors WSLConf, Microsoft’s First Linux Conference
https://www.omgubuntu.co.uk/2019/12/canonical-sponsors-wslconf-microsofts-first-linux-conference
Purism Announce $1999 ‘Librem 5 USA’ — Same Librem 5, Just Made in America
New Linux Vulnerability Lets Attackers Hijack VPN Connections
DRM-Free Kindle Alternative
https://github.com/joeycastillo/The-Open-Book
VirtualBox 6.1 Debuts with Linux 5.4 Support, Accelerated Video Playback
https://www.omgubuntu.co.uk/2019/12/virtualbox-6-1-released-new-features
Kdenlive 19.12 is out
https://kdenlive.org/en/2019/12/kdenlive-19-12-0-is-out/
Unbound DNS Resolver undergoes code audit
https://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/
Home Automation projects
ReSpeaker RPi
https://www.seeedstudio.com/ReSpeaker-4-Mic-Array-for-Raspberry-Pi.html
https://www.amazon.com/seeed-Studio-ReSpeaker-4-Mic-Raspberry/dp/B076SSR1W1