Slashdot Mirror

An anonymous reader writes: The Debian project is pleased to announce the third update of its stable distribution Debian 9 (codename stretch). This point release mainly adds corrections for security issues, along with a few adjustments for serious problems. Security advisories have already been published separately and are referenced where available. The Debian project also announces the tenth update of its oldstable distribution Debian 8 (codename jessie).

Please note that the point release does not constitute a new version of Debian 9 or 8 but only updates some of the packages included. There is no need to throw away old jessie or stretch DVD/CD media. After installation, packages can be upgraded to the current versions using an up-to-date Debian mirror. This stable update adds a few important corrections to packages. New installation images will be available soon at the mirrors. Those who frequently install updates from security.debian.org won't have to update many packages, and most such updates are included in the point release. One can use the apt command or apt-get command to apply updates. A step-by-step update guide is posted here.

An anonymous reader writes: Debian Linux "sid" is deprecating TLS 1.0 Encryption. A new version of OpenSSL has been uploaded to Debian Linux unstable. This version disables the TLS 1.0 and 1.1 protocol. This currently leaves TLS 1.2 as the only supported SSL/TLS protocol version. This will likely break certain things that for whatever reason still don't support TLS 1.2. I strongly suggest that if it's not supported that you add support for it, or get the other side to add support for it. OpenSSL made a release 5 years ago that supported TLS 1.2. The current support of the server side seems to be around 90%. I hope that by the time Buster releases the support for TLS 1.2 will be high enough that I don't need to enable them again. This move caused some concern among Debian users and sysadmins. If you are running Debian Unstable on server tons of stuff is going to broken cryptographically. Not to mention legacy hardware and firmware that still uses TLS 1.0. On the client side (i.e. your users), you need to use the latest version of a browser such as Chrome/Chromium and Firefox. The Older version of Android (e.g. Android v5.x and earlier) do not support TLS 1.2. You need to use minimum iOS 5 for TLS 1.2 support. Same goes with SMTP/mail servers, desktop email clients, FTP clients and more. All of them using old outdated crypto.

This move will also affect for Android 4.3 users or stock MS-Windows 7/IE users (which has TLS 1.2 switched off in Internet Options.) Not to mention all the mail servers out there running outdated crypto.

An anonymous reader writes: A new year, with old systems. It is time to break bad old habits and develop good new ones. This list talks about new years resolutions for Linux and Unix sysadmins. List includes turning on 2FA on all services, making peace with systemd, installing free SSL/TLS certificates, avoiding laptops with horrible screens or wireless whitelist in BIOS, building Linux gaming rig and more. What resolutions are on your list regarding sysadmin or IT work in 2016?

An anonymous reader writes with this announcement: "Ubuntu Linux version 14.04 LTS (code named "Trusty Tahr") has been released and available for download. This updated version includes the Linux kernel v3.13.0-24.46, Python 3.4, Xen 4.4, Libreoffice 4.2.3, MySQL 5.6/MariaDB 5.5, Apache 2.4, PHP 5.5, improvements to AppArmor allow more fine-grained control over application, and more. The latest release of Ubuntu Server is heavily focused on supporting cloud and scale-out computing platforms such as OpenStack, Docker, and more. As part of the wider Ubuntu 14.04 release efforts the Ubuntu Touch team is proud to make the latest and greatest touch experience available to our enthusiast users and developers. You can install Ubuntu on Nexus 4 Phone (mako), Nexus 7 (2013) Tablet (flo), and Nexus 10 Tablet (manta) by following these instructions. On a hardware front, ARM multiplatform support has been added, enabling you to build a single ARM kernel image that can boot across multiple hardware platforms. Additionally, the ARM64 and Power architectures are now fully supported. See detailed release notes for more information. A quick upgrade to a newer version of Ubuntu is possible over the network."

An anonymous reader writes with this announcement: "Ubuntu Linux version 14.04 LTS (code named "Trusty Tahr") has been released and available for download. This updated version includes the Linux kernel v3.13.0-24.46, Python 3.4, Xen 4.4, Libreoffice 4.2.3, MySQL 5.6/MariaDB 5.5, Apache 2.4, PHP 5.5, improvements to AppArmor allow more fine-grained control over application, and more. The latest release of Ubuntu Server is heavily focused on supporting cloud and scale-out computing platforms such as OpenStack, Docker, and more. As part of the wider Ubuntu 14.04 release efforts the Ubuntu Touch team is proud to make the latest and greatest touch experience available to our enthusiast users and developers. You can install Ubuntu on Nexus 4 Phone (mako), Nexus 7 (2013) Tablet (flo), and Nexus 10 Tablet (manta) by following these instructions. On a hardware front, ARM multiplatform support has been added, enabling you to build a single ARM kernel image that can boot across multiple hardware platforms. Additionally, the ARM64 and Power architectures are now fully supported. See detailed release notes for more information. A quick upgrade to a newer version of Ubuntu is possible over the network."

An anonymous reader writes "Gabe Newell wants to support Linux because he think Windows 8 is a catastrophe for everyone in PC space. He wants to move away from a closed ecosystem of Microsoft Windows 8. He recently made a rare appearance at Casual Connect, an annual videogame conference in Seattle. From the allthingsd article: 'The big problem that is holding back Linux is games. People don't realize how critical games are in driving consumer purchasing behavior. We want to make it as easy as possible for the 2,500 games on Steam to run on Linux as well. It's a hedging strategy. I think Windows 8 is a catastrophe for everyone in the PC space. I think we'll lose some of the top-tier PC/OEMs, who will exit the market. I think margins will be destroyed for a bunch of people. If that's true, then it will be good to have alternatives to hedge against that eventuality.' Some Linux users think that this is a win-win situation for Linux users as it will brings good game titles on the Linux system that haven't been there and it will protect steam business model from both Apple and Microsoft."

As reported here recently, millions of LinkedIn password hashes have been leaked online. An anonymous reader writes "Now, Poul-Henning Kamp a developer known for work on various projects and the author of the md5crypt password scrambler asks everybody to migrate to a stronger password scrambler without undue delay. From the blog post: 'New research has shown that it can be run at a rate close to 1 million checks per second on COTS GPU hardware, which means that it is as prone to brute-force attacks as the DES based UNIX crypt was back in 1995: Any 8 character password can be found in a couple of days. The default algorithm for storing password hashes in /etc/shadow is MD5. RHEL / CentOS / FreeBSD user can migrate to SHA-512 hashing algorithms.'" Reader Curseyoukhan was one of several to also point out that dating site eHarmony got the same treatment as LinkedIn. Update: 06/07 20:13 GMT by T : An anonymous reader adds a snippet from Help Net Security, too: "Last.fm has piped up to warn about a leak of their own users' passwords. Users who have logged in to the site were greeted today by a warning asking them to change their password while the site investigates a security problem. Following the offered link to learn more, they landed on another page with another warning."

An anonymous reader writes "Developing GUI script-based applications is time-consuming and expensive. Most Unix-based scripts run in a CLI mode or over a secure ssh session. The Unix shells are quite sophisticated programming languages in their own right: they are easy to design and quick to build, but they are not user-friendly in the same way the Unix commands aren't (see the Unix haters books). Both Unix and bash provide features for writing user friendly scripts using various tools to build powerful, interactive, user-friendly scripts that run under the bash shell on Linux or Unix. What tools do you use that spice up your scripts on the Linux or Unix platforms?"

An anonymous reader writes "The FreeBSD Release Engineering Team is pleased to announce the availability of FreeBSD 8 stable release. Some of the highlights: Xen DomU support, network stack virtualization, stack-smashing protection, TTY layer rewrite, much improved ZFS v13, a new USB stack, multicast updates including IGMPv3, vimage — a new virtualization container, Fedora 10 Linux binary compatibility to run Linux software such as Flash 10 and others, trusted BSD MAC (Mandatory Access Control), and rewritten NFS client/server introducing NFSv4. Inclusion of improved device mmap() extensions will allow the technical implementation of a 64-bit Nvidia display driver for the x86-64 platform. The GNOME desktop environment has been upgraded to 2.26.3, KDE to 4.3.1, and Firefox to 3.5.5. There is also an in-depth look at the new features and major architectural changes in FreeBSD 8.0, including a screenshot tour, upgrade instructions are posted here. You can grab the latest version from FreeBSD from the mirrors (main ftp server) or via BitTorrent. Please consider making a donation and help us to spread the word by tweeting and blogging about the drive and release."

An anonymous reader writes "The FreeBSD Release Engineering Team is pleased to announce the availability of FreeBSD 8 stable release. Some of the highlights: Xen DomU support, network stack virtualization, stack-smashing protection, TTY layer rewrite, much improved ZFS v13, a new USB stack, multicast updates including IGMPv3, vimage — a new virtualization container, Fedora 10 Linux binary compatibility to run Linux software such as Flash 10 and others, trusted BSD MAC (Mandatory Access Control), and rewritten NFS client/server introducing NFSv4. Inclusion of improved device mmap() extensions will allow the technical implementation of a 64-bit Nvidia display driver for the x86-64 platform. The GNOME desktop environment has been upgraded to 2.26.3, KDE to 4.3.1, and Firefox to 3.5.5. There is also an in-depth look at the new features and major architectural changes in FreeBSD 8.0, including a screenshot tour, upgrade instructions are posted here. You can grab the latest version from FreeBSD from the mirrors (main ftp server) or via BitTorrent. Please consider making a donation and help us to spread the word by tweeting and blogging about the drive and release."

An anonymous reader writes "The FreeBSD Release Engineering Team is pleased to announce the availability of FreeBSD 8 stable release. Some of the highlights: Xen DomU support, network stack virtualization, stack-smashing protection, TTY layer rewrite, much improved ZFS v13, a new USB stack, multicast updates including IGMPv3, vimage — a new virtualization container, Fedora 10 Linux binary compatibility to run Linux software such as Flash 10 and others, trusted BSD MAC (Mandatory Access Control), and rewritten NFS client/server introducing NFSv4. Inclusion of improved device mmap() extensions will allow the technical implementation of a 64-bit Nvidia display driver for the x86-64 platform. The GNOME desktop environment has been upgraded to 2.26.3, KDE to 4.3.1, and Firefox to 3.5.5. There is also an in-depth look at the new features and major architectural changes in FreeBSD 8.0, including a screenshot tour, upgrade instructions are posted here. You can grab the latest version from FreeBSD from the mirrors (main ftp server) or via BitTorrent. Please consider making a donation and help us to spread the word by tweeting and blogging about the drive and release."

An anonymous reader writes "The fourth update in the Red Hat Enterprise Linux 5 family is released. From the press release — this version includes kernel-based virtual machine (KVM) virtualization, alongside of Xen virtualization technology. The scalability of the Red Hat virtualization solution has been incremented to support 192 CPUs and 1GB hugepages. Other updates including GCC 4.4 and a new malloc(), clustered, high-availability filesystem to support Microsoft Windows storage needs on Red Hat Enterprise Linux. This article covers the upgrade procedure for RHEL 5.4 from the previous version."

An anonymous reader writes "The FreeBSD Release Engineering Team is pleased to announce the availability of FreeBSD 7.2-RELEASE. This is the third release from the 7-STABLE branch which improves on the functionality of FreeBSD 7.1 and introduces some new features. Some of the highlights: Support for fully transparent use of superpages for application memory; Support for multiple IPv4 and IPv6 addresses for jails; csup(1) now supports CVSMode to fetch a complete CVS repository; Gnome updated to 2.26, KDE updated to 4.2.2; Sparc64 now supports UltraSparc-III processors. For a complete list of new features and known problems, please see the online release notes and errata list." Adds another anonymous reader, "You can grab the latest version from FreeBSD from the mirrors or via BitTorrent. There is also a quick review of the new features and upgrade instructions."

An anonymous reader writes "The FreeBSD Release Engineering Team is pleased to announce the availability of FreeBSD 7.2-RELEASE. This is the third release from the 7-STABLE branch which improves on the functionality of FreeBSD 7.1 and introduces some new features. Some of the highlights: Support for fully transparent use of superpages for application memory; Support for multiple IPv4 and IPv6 addresses for jails; csup(1) now supports CVSMode to fetch a complete CVS repository; Gnome updated to 2.26, KDE updated to 4.2.2; Sparc64 now supports UltraSparc-III processors. For a complete list of new features and known problems, please see the online release notes and errata list." Adds another anonymous reader, "You can grab the latest version from FreeBSD from the mirrors or via BitTorrent. There is also a quick review of the new features and upgrade instructions."

CrustyFace writes "Cybernit reports that the Starter Edition version of Windows 7 will only allow the user to run 3 applications at once. Targeted at notebooks, this doesn't seem like such a bad limitation, however it is a bold move from Microsoft, and it will be interesting to see how the operating system sells."

ruphus13 writes "HP finally begins to actively push open source in its products. From the post, 'HP has been quirky over the years when it comes to open source. It has been, traditionally, a company that supports open source — especially in larger enterprises... Wednesday, it announced two new open source products, geared to small businesses and educational institutions. HP plans on including its 'Mozilla Firefox for HP Virtual Solution' on more of its business class desktop PCs (to a total of seven models between the HP Compaq dc/dx lines in the US, eight models worldwide). Come December 15th, HP will also offer Novell's SUSE Linux Enterprise Desktop on its HP Compaq dc5850 model. The base SLED-equipped model will cost $519, and features the usual open source suspects for the small business setting — OpenOffice, and mail clients such as Evolution.'"

Linux Blog writes "The Google-Yahoo advertising deal has been rejected by the Department of Justice, and Google has pulled the plug on a search-ad partnership with Yahoo that would have given Yahoo major new revenue, but that raised antitrust concerns. Now, Yahoo has said the 'For Sale' sign is still on its front lawn and that Microsoft should buy the company. The internet portal's co-founder and CEO Jerry Yang made this comment despite the fact Yahoo rejected a $33 a share offer from Microsoft back in May. What a huge loss for the share holders. Microsoft was quick to respond that their buyout efforts were a thing of the past, but left the door open to a search partnership."

Linux Blog recommends an interview up on the O'Reilly site with Greg Kroah-Hartman, long-time Linux kernel hacker and the current Linux kernel maintainer for the USB driver core. He updates the free Linux driver program announced almost two years ago, which has really caught traction now with more than 300 developers volunteering. The interviewer begins by asking about Kroah-Hartman's claim that the Linux kernel now supports more devices than any other operating system ever has. "[One factor is] the ease of writing drivers; Linux drivers are at normally one-third smaller than Windows drivers or other operating system drivers. We have all the examples there, so it's trivial to write a new one if you have new hardware, usually because you can copy the code and go. We maintain them... forever, so the old ones don't disappear and we run on every single processor out there. I mean Linux is 80% of the world's top 500 super computers right now and we're also the number one embedded operating system today. We've got both sides of the market because it's — yeah it's pretty amazing. I don't know why, but we're doing something right."

Linux blog writes "The new version of OpenBSD is available for download. There are lots of nifty new features to try out including OpenSSH 5.1 with chroot(2) support, Xenocara, Gnome 2.20.3, KDE 3.5.8, etc. Machines using the UltraSPARC IV/T1/T2 and Fujitsu SPARC64-V/VI/VII are now supported. It seems amazing to me that they keep delivering these new results on a six-month release cycle."

An anonymous reader submits news of Netgear's release of the "open source Wireless-G Router (model WGR614L), enabling Linux developers and enthusiasts to create firmware for specialized applications, and supported by a dedicated open source community. The router supports the most popular open source firmware; Tomato and DD-WRT are available on WGR614L, making it easier for users to develop a wide variety of applications. The router is targeted at people who want custom firmware on their router without worrying about issues, and enjoy the benefits of having an open source wireless router."

Joyce writes "Novell today announced the availability of SUSE Linux Enterprise 10 Service Pack 2 (SP2), containing enhancements in virtualization, management, hardware enablement and interoperability. Several improvements specific to SUSE Linux Enterprise Desktop 10 and SUSE Linux Enterprise Real Time 10 are also included. Delivering Xen version 3.2, SP2 includes several virtualization advances, including support for fully virtualized Windows Server 2008 and Windows Server 2003 and the live migration of those Windows Server guests across physical machines. Advances in high availability and storage management such as updates to Heartbeat 2 and OCFS2 are also included." And an anonymous reader points out today's release of Red Hat Enterprise Linux version 5.2, which brings "a broad refresh of hardware support and improved quality, combined with new features and enhancements in areas such as virtualization, desktop, networking, storage & clustering and security. Virtualization of very large systems, with up to 64 CPUs and 512 GB of memory, is now possible. Red Hat Enterprise Linux 5.2 Desktop includes enhanced support for laptop suspend/hibernate and resume, updated graphics drivers and a comprehensive update of desktop applications, including OpenOffice 2.3 and Firefox v3," and points out this guide for upgrading your RHEE system.

vivekg writes "BBC has published an article featuring the highlights of technological social change from around the world for this year. It is amazing to find out how technology is being used in very different ways for very different communities. Victims of the Tsunami disaster, Virtual Wallets in Japan, and the Indian government, bringing technology to rural areas, all have been touched by the positive use of technology. Hope to see more good community-based collaboration in 2006."

vivekg writes "Leonardo da Vinci probably never thought he had the proverbial Holy Grail to a revolution in heart surgery. Almost 500 years after da Vinci's death, intricate diagrams of the human heart made by him have inspired a British surgeon to pioneer a new way to repair damaged hearts."