0

SMLR 305 Wooden Proxy Mouse

Posted by Tom Lawrence on April 29, 2019 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 305

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

Intro:

Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix

Sound bites by Mike Tanner

Phils GitHub

https://github.com/pgporada

The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge

Jay’s Site

https://www.learnlinux.tv/

Jay’s Bash Prompt https://pastebin.com/kzPjE8y4

 

Show Notes

GNOME Devs Mull Making Dedicated System Info Tool

https://www.omgubuntu.co.uk/2019/04/does-gnome-need-a-dedicated-system-info-tool

 

Docker Hub Security Breach details, signs/hints

https://forums.docker.com/t/docker-hub-security-breach-details-signs-hints/73850

 

Some tips for checking your Docker for issues related to the breach

https://blog.madhuakula.com/some-tips-to-review-docker-hub-hack-of-190k-accounts-addcd602aade

 

New Netdata

https://my-netdata.io/

https://www.reddit.com/r/linuxadmin/comments/bhdmyy/netdata_the_opensource_realtime_performance_and/

 

Fanless mini-tower runs Linux Mint on up to 5GHz octa-core i9-9900K

http://linuxgizmos.com/fanless-mini-tower-runs-linux-mint-on-up-to-5ghz-octa-core-i9-9900k/

 

NVIDIA GeForce GTX 1650 Linux Gaming Performance & Benchmarks

https://www.phoronix.com/scan.php?page=article&item=nvidia-gtx1650-linux&num=1

 

Periodic reminder that you DRM means you don’t really own eBooks, movies, or other content (Microsoft’s eBook store is shutting down)

https://liliputing.com/2019/04/periodic-reminder-that-you-drm-means-you-dont-really-own-ebooks-movies-or-other-content-microsofts-ebook-store-is-shutting-down.html

 

THE LINUX DESKTOP IS IN TROUBLE!

Linus Torvalds looks to Chromebooks and Android for the future of the Linux desktop, while Linux Mint developers aren’t happy with each other.

https://www.zdnet.com/article/the-linux-desktop-is-in-trouble/

 

Top 15 Open source Video conference and Team communication solutions for Windows, Linux, Mac OSX and Phones

https://medevel.com/10-os-video-conferencing/

 

HealthyPi is the first fully open-source, full-featured vital sign monitor. Using the Raspberry Pi as its computing and display platform, the HealthyPi add-on HAT turns the Raspberry Pi into a vital sign monitoring system.

http://healthypi.protocentral.com/

 

Phil

https://www.zdnet.com/article/docker-hub-hack-exposed-data-of-190000-users/

 

Matrix.org Data Breach and Remediation Round Up

https://securityaffairs.co/wordpress/83751/data-breach/matrix-org-hack.html

According to Matrix.org, the attacker has exploited a known vulnerability in the Jenkins open source automation server to hijack credentials and gain access to the systems of the organization. Homeservers, source code and packages, identity servers, and Modular.im servers were not impacted.

“An attacker gained access to the servers hosting Matrix.org. The intruder had access to the production databases, potentially giving them access to unencrypted message data, password hashes and access tokens. As a precaution, if you’re a matrix.org user you should change your password now.” reads the data breach notification published by Matrix.org.

 

The attacker used a cloudflare API key to repoint DNS for matrix.org to a defacement website (https://github.com/matrixnotorg/matrixnotorg.github.io). The API key was known compromised in the original attack, and during the rebuild the key was theoretically replaced. However, unfortunately only personal keys were rotated, enabling the defacement.

 

https://web.archive.org/web/20190412080323/https://github.com/matrix-org/matrix.org/issues/created_by/matrixnotorg

 

Block List Project

https://blocklist.site/app/

The Block List Project is an independent project with growing support. Their mission is to help create a safer browsing experience by blocking malicious websites.

 

Open Sprinkler

https://opensprinkler.com/

Keeping your lawn and flowers beautiful doesn’t have to be stressful. OpenSprinkler unchains you from your sprinkler or irrigation control box, enabling you to program, run, or stop zones at any time from anywhere.

 

OpenSprinkler Pi is an extension board for Raspberry Pi and allows the operator to directly access and control sprinkler valves.

 

Jay

Ubuntu 14.04 Reaches End of Life on April 30

https://www.omgubuntu.co.uk/2019/04/ubuntu-14-04-end-of-life

 

The End of Scientific Linux

https://lwn.net/Articles/786422/

 

Cross Generation Gaming, new episodes every Sunday

http://crossgengaming.tv

 

————————————-

 

Tony

 

Penguicon

https://2019.penguicon.org/

Penguicon Schedule

https://penguicon2019.sched.com

Search Sunday Morning, Tony Bemus, Jay LaCroix, or Tom Lawrence

 

X2Go vs Nomachine vs Remote desktop softwares:

https://en.wikipedia.org/wiki/Comparison_of_remote_desktop_software

GNU Stow: simlink your dot files:

https://www.gnu.org/software/stow/stow.html

Managing dotfiles with GNU stow

https://alexpearce.me/2016/02/managing-dotfiles-with-stow/

 

0

SMLR 304 The resource has !NOT been modified

Posted by Tom Lawrence on March 31, 2019 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 304

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

Intro:

Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix

Sound bites by Mike Tanner

Phils GitHub

https://github.com/pgporada

The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge

Jay’s Site

https://www.learnlinux.tv/

Jay’s Bash Prompt https://pastebin.com/kzPjE8y4

 

Show Notes

https://httpstatuses.com/304

A conditional GET or HEAD request has been received and would have resulted in a 200 OK response if it were not for the fact that the condition evaluated to false.

 

Write in and echo hi to show@smlr.us.

 

Tom

Kdenlive Code Sprint & Developer Interview

https://kdenlive.org/en/2019/03/sprint-2019-in-lyon/

 

OpenShot Updated release (including an updated Windows installer)

https://www.openshot.org/blog/2019/03/20/openshot-244-released-keyframe-scaling-docking-and-more/

 

Ubuntu 19.04 Beta Available

https://www.omgubuntu.co.uk/2019/03/download-ubuntu-19-04-beta-iso

 

OpenSSH 8.0 Quantum Resistant Keys

https://codesmithdev.com/openssh-8-0-releasing-with-quantum-computing-resistant-keys/

 

Jetson Nano Brings AI Computing to Everyone! It delivers 472 GFLOPS of compute performance with a quad-core 64-bit ARM CPU and a 128-core integrated NVIDIA GPU. It also includes 4GB LPDDR4 memory in an efficient, low-power package with 5W/10W

https://devblogs.nvidia.com/jetson-nano-ai-computing/

On Being a Free Software Maintainer

“How dare you not (use your free time to) fix this ultra high priority bug that is affecting me?” or “This is an absolutely basic feature! How is it not implemented yet (by you on your free time)?!” or even “You made me move to Software Y, and you need to win me back” are going to be realities you will have to face.”

https://feaneron.com/2019/03/28/on-being-a-free-software-maintainer/

 

New York Times Open Source Workflow data management tool The means for creating (and maintaining) a documentation site — or a style guide, or a knowledge base, or any other set of information frequently used as a reference — have shifted back and forth over time. Blogging software! Wikis! Flat files! Database-driven! Google Docs! GitHub Pages! Dropbox Paper! Notion! The number of options — and the degree to which their selection sometimes come down to one person’s aesthetic choice or workflow preference — has left the job of keeping updated documentation a bit of a mess.

http://www.niemanlab.org/2019/03/the-new-york-times-has-released-an-open-source-tool-to-let-you-manage-all-your-internal-knowledge-more-easily/

Cisco RV320 “mitigated” security flaw by blocking user agent

https://www.redteam-pentesting.de/en/advisories/rt-sa-2019-003/-cisco-rv320-unauthenticated-configuration-export

 

Unleash The ASUS HASH!

https://skylightcyber.com/2019/03/28/unleash-the-hash-shadowhammer-mac-list/

 

$50 million CTF Writeup

https://github.com/manoelt/50M_CTF_Writeup/blob/master/README.md

 

Defending The Defenders Of The Cyber Universe: How To Mitigate Stress In Cybersecurity

https://www.forbes.com/sites/forbestechcouncil/2019/03/28/defending-the-defenders-of-the-cyber-universe-how-to-mitigate-stress-in-cybersecurity/#74d62cb4b8ca

Phil

Hashicorp Vault and Kubernetes

https://github.com/pgporada/vault-k8s-secrets-OHMY

 

How I generate my ssh keys

ssh-keygen -t ed25519 -b 521

 

The Linux Vendor Firmware Service (LVFS) is now a Linux Foundation project

https://www.linuxfoundation.org/blog/2019/03/lvfs-project-announcement/

LVFS is a secure website that allows hardware vendors to upload firmware updates. It’s used by all major Linux distributions to provide metadata for clients, such as fwupdmgr, GNOME Software and KDE Discover.

 

Richard Hughes, upstream maintainer of LVFS and Principal Software Engineer at Red Hat states, “My long-term goal is for the LVFS to be seen like a boring, critical part of infrastructure in Linux, much like you’d consider a NTP server for accurate time, or a PGP keyserver for trust.”

 

With the recent Spectre and Meltdown issues hitting the industry, firmware updates are no longer seen as something that just adds support for new hardware or fixes the occasional hardware issue. Now the EFI BIOS is a fully fledged operating system with networking capabilities, companies and government agencies are realizing that firmware updates are as important as kernel updates, and many are now writing in “must support LVFS” as part of any purchasing policy.

 

What the heck is Citrix doing?

https://xenserver.org/blog/entry/what-is-citrix-doing-with-xenserver-org.html

As many of you know, XenServer.org was created many years ago to provide developers and users of the Free edition a venue through which to share insights and suggestions regarding product features, enhancements, and technical support. The upcoming rebranding of “XenServer” to “Citrix Hypervisor” offers an opportunity to consolidate access to product resources to a single website – citrix.com.

https://web.archive.org/web/20190325130530/https://xenserver.org/blog/entry/what-is-citrix-doing-with-xenserver-org.html

 

Open Morrowind

https://openmw.org/en/

OpenMW is a free, open source, and modern engine which re-implements and extends the 2002 Gamebryo engine for the open-world role-playing game The Elder Scrolls III: Morrowind.

 

Jay

Mozilla Improves Web Browser Security in Firefox 66 Update

https://www.eweek.com/enterprise-apps/mozilla-improves-web-browser-security-in-firefox-66-update

 

Ubuntu 19.04 Is Offering Some Performance Improvements Over Ubuntu 18.10, Comparison To Clear Linux

https://www.phoronix.com/scan.php?page=article&item=ubuntu-1904-first&num=1

 

CodeWeavers on how Proton (Steam Play) helped improve Wine 4.2

https://www.gamingonlinux.com/articles/codeweavers-on-how-proton-steam-play-helped-improve-wine-42.13845

Google announce ‘Stadia’, their new cloud gaming service built on Linux and Vulkan

https://www.gamingonlinux.com/articles/google-announce-stadia-their-new-cloud-gaming-service-built-on-linux-and-vulkan.13792

An Automated Way To Install Essential Applications On Ubuntu

https://www.ostechnix.com/an-automated-way-to-install-essential-applications-on-ubuntu/

Firefox 66 Release Notes

https://www.mozilla.org/en-US/firefox/66.0/releasenotes/

Tony

————————–

New Work: Arbor Networks , the security division of NetScout

  Here is a history video of Arbor Networks: https://www.youtube.com/watch?v=cAsdpvAuv9I&index=12&list=PLu8eXm-IEjEAoLW4hssuIOqVKD2TB3HJp

 

Secure Your Linux Server With Fail2Ban [Beginner’s Guide]

0

SMLR Episode 303 See Other Green

Posted by Tom Lawrence on March 17, 2019 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 303

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

Intro:

Tony Bemus, Tom Lawrence, Phil Porada and Jay LaCroix

Sound bites by Mike Tanner

Phils GitHub

https://github.com/pgporada

The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge

Jay’s Site

https://www.learnlinux.tv/

Jay’s Bash Prompt https://pastebin.com/kzPjE8y4

Tech News:

Simple Private 1GB Free or 2.5gb Logged in File Sharing
ffsend upload ${FILE_NAME}

https://send.firefox.com/

 

Darpa Open Source Voting

https://motherboard.vice.com/en_us/article/yw84q7/darpa-is-building-a-dollar10-million-open-source-secure-voting-system

 

CDC Beto O’Rourke’

https://www.reuters.com/investigates/special-report/usa-politics-beto-orourke/

 

WireGuard is now in Gnome Network Manager

https://blogs.gnome.org/thaller/2019/03/15/wireguard-in-networkmanager/

 

Linux Kernel 5.0

https://lkml.org/lkml/2019/3/3/236

“But I’d like to point out (yet again) that we don’t do feature-based releases,

and that “5.0” doesn’t mean anything more than that the 4.x numbers

started getting big enough that I ran out of fingers and toes”

AMD FreeSync display support

Raspberry Pi Touchscreen support in mainline kernel

Btrfs swap file support & Adiantum data encryption

 

Stephen Wolfram Blog Post “Seeking the Productive Life: Some Details of My Personal Infrastructure”

https://blog.stephenwolfram.com/2019/02/seeking-the-productive-life-some-details-of-my-personal-infrastructure/

 

Ubuntu 16.04.6 LTS Released, Fixes Major APT Security Issue

https://www.omgubuntu.co.uk/2019/02/ubuntu-16-04-6-lts-released-fixes-major-apt-security-issue

 

Open source Free Self-hosted Web Analytics

https://medevel.com/best-20-open-source-free-self-hosted-web-analytics/

 

Web Analytics. Open Source.

http://www.openwebanalytics.com/

 

Firefox maker fears DarkMatter ‘misuse’ of browser for hacking

https://www.reuters.com/article/us-usa-spying-darkmatter/firefox-maker-fears-darkmatter-misuse-of-browser-for-hacking-idUSKCN1QL28T

 

Citrix today warned its customers that foreign hackers romped through its internal company network and stole corporate secrets.

https://www.theregister.co.uk/2019/03/08/citrix_hacked_data_stolen/

 

Q&A: Crypto-guru Bruce Schneier on teaching tech to lawmakers, plus privacy failures – and a call to techies to act

‘Politicians are reluctant to disrupt the enormous wealth creation machine technology has turned out to be’

https://www.theregister.co.uk/2019/03/15/qa_bruce_schneier/

 

Jay:

GNOME 3.32 Released, This is What’s New

https://www.omgubuntu.co.uk/2019/03/best-gnome-3-32-features

 

Google Hardware makes cuts to laptop and tablet development, cancels products

https://arstechnica.com/gadgets/2019/03/google-hardware-makes-cuts-to-laptop-and-tablet-development-cancels-products/

 

Debian Sticking With Merged /usr Plan

https://www.phoronix.com/scan.php?page=news_item&px=Debian-Go-Ahead-Merged-Usr

 

KDE Plasma 5.16 Will Let You Reboot Into The UEFI Setup Screen

https://www.phoronix.com/scan.php?page=news_item&px=KDE-Plasma-5.16-Reboot-To-UEFI

 

Phil – Ep 303

 

303 See Other

The server is redirecting the user agent to a different resource, as indicated by a URI in the Location header field, which is intended to provide an indirect response to the original request.

 

L0phtCrack is a password auditing and recovery application originally produced by Mudge from L0pht Heavy Industries. It is used to test password strength and sometimes to recover lost Microsoft Windows passwords, by using dictionary, brute-force, hybrid attacks, and rainbow tables.

 

List of open source tools for AWS security: defensive, offensive, auditing, etc.

https://github.com/toniblyx/my-arsenal-of-aws-security-tools

 

Automatic Certificate Management Environment (ACME) has been standardized by the IETF as RFC 8555.

https://tools.ietf.org/html/rfc8555

 

Having a standardized protocol for certificate issuance and management is important for two reasons. First, it improves the quality of the software ecosystem because developers can focus on developing great software for a single protocol, instead of having many pieces of less well maintained software for bespoke APIs. Second, a standardized protocol makes switching from one CA to another easier by minimizing technical dependency lock-in.

 

CAs & PKIs that offer ACME certificates

 

https://vas3k.com/blog/dumbass_home/?ref=sn

Internet of Things. How to Automate Your Rented Box Today

 

So, you want to bring a little more cyberpunk to your life. The light should lead your way when you’re sneakin’ to the bathroom at night; a coffee machine should start automagically with the morning alarm. Smart Нome, Internet of Things or whatever they call teapots with microcontrollers this year. I call it “Dumbass Home” because it simply fits better.

 

His solution uses a raspberry pi with a zigbee and z-wave USB adapters and the python project HomeAssistant

 

Discusses different vendor products and their pros and cons

 

Secretary of the Navy – Cyber Security Review

https://www.navy.mil/strategic/CyberSecurityReview.pdf

The report highlights the value of data and the need to modify the Navy’s business and data hygiene processes in order to protect data as a resource.  This review also provides an assessment of the culture, people, governance, processes, and resources as they pertain to cybersecurity in the Department of the Navy.  Recommendations in the review specifically address policy, processes, and resources needed to enhance cyber defense and increase resiliency.

 

In fact, with an expectation that the nation will require an increase of as many as 1.5 million additional trained professionals needed by 2020

 

Boats Can’t Divide by Zero

https://medium.com/@bishr_tabbaa/when-smart-ships-divide-by-zer0-uss-yorktown-4e53837f75b2

0

SMLR Episode 302 Unicorn Bash Prompts

Posted by Tom Lawrence on February 26, 2019 in Show-mp3 |
Play

http://smlr.us

Downloads:

Show 302

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

 

Read more…

0

SMLR Episode 301 Fresh Looks:Endless OS

Posted by Tom Lawrence on February 17, 2019 in Show-mp3, Show-ogg |
Play

Freshlooks Endless OS

Endless OS

http://smlr.us

Downloads:

Show 301

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

 

Read more…

0

SMLR Episode 300 “Linux is Obsolete” ?

Posted by Tom Lawrence on February 10, 2019 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 300

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

 

Read more…

0

SMLR Episode 299 APT Security Update

Posted by Tom Lawrence on January 27, 2019 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 299

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

 

Read more…

0

SMLR Episode 298 Twenty Five Years of GNU

Posted by Tom Lawrence on January 13, 2019 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 298

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

 

Read more…

0

SMLR Episode 297 Kernel 420 Compile It

Posted by Tom Lawrence on December 30, 2018 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 297

Contact Us:

show (at) smlr.us or the Contact us page

On the Lawrence Systems Forums

https://forums.lawrencesystems.com/c/smlr-podcast

 

Read more…

0

SMLR Episode 296 Monoculture is a cancer

Posted by Tom Lawrence on December 16, 2018 in Show-mp3, Show-ogg |
Play

http://smlr.us

Downloads:

Show 296

Contact Us:

show (at) smlr.us or the Contact us page

Read more…

Copyright © 2011-2019 Sunday Morning Linux Review All rights reserved.
This site is using the Desk Mess Mirrored theme, v2.5, from BuyNowShop.com.