ls -1TörténelemNépszerű témákNépszerű fórum témákHardverAjánlott böngésző FreeBSD Project NewsOpenBSD JournalNetBSD News |
Linux Weekly News
LWN.net is a comprehensive source of news and opinions from
and about the Linux community. This is the main LWN.net feed,
listing all articles which are posted to the site front page.
Webcím: http://lwn.net
Frissült: 19 perc 27 másodperc Creative Commons 4.0 licenses releasedThe Creative Commons has announced the
availability of version 4.0 of its license suite. "We had ambitious
goals in mind when we embarked on the versioning process coming out of the
2011 CC Global Summit in Warsaw. The new licenses achieve all of these
goals, and more. The 4.0 licenses are extremely well-suited for use by
governments and publishers of public sector information and other data,
especially for those in the European Union. This is due to the expansion in
license scope, which now covers sui generis database rights that exist
there and in a handful of other countries."
Kategóriák: Linux
Docker 0.7 releasedDocker is a system for the creation and
deployment of applications within containers; it was covered here in October. The 0.7
release is now available, with a long list of new features, including
the ability to run on standard Linux kernels, a fancy storage driver
subsystem, better control over networking and communications between
containers, and more. "It took us a while to find our bearings and
adapt to the new, crazy pace of Docker’s development. But we are finally
figuring it out. Starting with 0.7, we are placing Quality in all its forms
– user interface, test coverage, robustness, ease of deployment,
documentation, consistency of APIs – at the center our development
process."
Kategóriák: Linux
Seigo: Introducing ImprovOn his blog, KDE hacker Aaron Seigo introduces Improv, the first hardware product from the Make•Play•Live community. Improv is a $75 development board, with some fairly beefy specs and running Mer OS, that will be shipping in January. It consists of two separate boards, the CPU card and the feature board, with the latter being an open hardware device. "The hardware of Improv is extremely capable: a dual-core ARM® Cortex™-A7 System on Chip (SoC) running at 1Ghz, 1 GB of RAM, 4 GB of on-board NAND flash and a powerful OpenGL ES GPU. To access all of this hardware goodness there are a variety of ports: 2 USB2 ports (one fullsize host, one micro OTG), SD card reader, HDMI, ethernet (10/100, though the feature card has a Gigabit connector; more on that below), SATA, i2c, VGA/TTL and 8 GPIO pins. The entire device weighs less than 100 grams, is passively cooled and fits in your hand."
Kategóriák: Linux
Security updates for MondayCentOS has updated libvirt (Xen4CentOS: denial of service) and xen (Xen4CentOS: multiple vulnerabilities). Fedora has updated drupal6-context (F18; F19: multiple vulnerabilities), kernel (F19: denial of service), mantis (F19; F18: cross-site scripting), monitorix (F19: unspecified vulnerability), moodle (F18; F19: multiple vulnerabilities), and samba (F18: restriction bypass). Mageia has updated bip (denial of service), glibc (multiple vulnerabilities), graphicsmagick (denial of service), kernel (multiple vulnerabilities), kernel-linus (multiple vulnerabilities), kernel-rt (multiple vulnerabilities), kernel-tmb (multiple vulnerabilities), kernel-vserver (multiple vulnerabilities), memcached (denial of service), nginx (security restriction bypass), perl-HTTP-Body (code execution), qemu (privilege escalation), samba (restriction bypass), and wireshark (multiple vulnerabilities). Mandriva has updated memcached (denial of service), nginx (security restriction bypass), perl-HTTP-Body (code execution), and wireshark (multiple vulnerabilities). openSUSE has updated krb5 (11.4: denial of service). Kategóriák: Linux
Checkpoint/restore tool v1.0After years of work, version 1.0 of the
checkpoint/restore tool is available. This is a mostly
user-space-based tool that is able to capture the state of a set of
processes to persistent storage and restore it at some future time,
possibly on a different system. See this 2013
Kernel Summit article for details on the current state of this
functionality.
Kategóriák: Linux
The 3.13 merge window is closedLinus has released 3.13-rc1 and closed the
merge window for this development cycle. In the end, 10,518 non-merge
changesets were pulled into the mainline during this merge window. Now the
stabilization period starts, with the final 3.13 release due around the end
of the year.
Kategóriák: Linux
Friday's security updatesDebian has updated libhttp-body-perl (code execution) and nginx (security restriction bypass). Gentoo has updated qtcore (two vulnerabilities, one from 2011). Mandriva has updated samba (BS1: file restriction bypass). openSUSE has updated nginx (12.3, 13.1: security restriction bypass) and samba (13.1: two vulnerabilities). SUSE has updated IBM Java 7 (multiple vulnerabilities), kernel (SLE11SP3; SLE11SP2: denial of service), and Real Time Linux Kernel (SLE11SP3; SLE11SP2: denial of service). Ubuntu has updated openjdk-6 (10.04, 12.04: multiple vulnerabilities). Kategóriák: Linux
[$] ACPI for ARM?The "Advanced Configuration and Power Interface" (ACPI) was not an obvious
win when support for it was first merged into the mainline kernel. The
standard was new, actual implementations were unreliable, and supporting it
involved bringing a large virtual machine into the kernel. For years,
booting with ACPI disabled was the first response to a wide range of
problems; one can still find web sites advising readers to do that. But,
for the most part, ACPI has settled in as a mandatory part of the PC
platform standard. Now, however, it appears that a similar story may be
about to play out in the ARM world.
Kategóriák: Linux
A Summer Spent on the LLVM Clang Static Analyzer for the Linux Kernel (Linux.com)Linux.com profiles Eduard Bachmakov, a Google Summer of Code student that worked on static analysis for the Linux kernel. "Much work toward creating a static analyzer for the Linux kernel had already been done as part of the LLVM project. One of the goals of Bachmakov's internship was to demonstrate how the analzyer works through a tool that traces where errors come from and creates a report. (See an example of his checker tool, here.) He also set out to make a selection of checkers that make sense within the kernel.
“A lot (of checks) while technically correct, don’t apply. Many checks are just omitted because it’s understood that this would never happen,” Bachmakov said. “These are issues that can’t be read from the code. These are things you have to know, so there were a lot of false positives.”"
Kategóriák: Linux
Red Hat Enterprise Linux 6.5 releasedRed Hat has announced the release of Enterprise Linux 6.5 (RHEL 6.5). The release has new features in multiple areas, including security, networking, virtualization, and more. "As application deployment options grow, portability becomes increasingly important. Red Hat Enterprise Linux 6.5 enables customers to deploy application images in containers created using Docker in their environment of choice: physical, virtual, or cloud. Docker is an open source project to package and run lightweight, self-sufficient containers; containers save developers time by eliminating integration and infrastructure design tasks."
Kategóriák: Linux
Security updates for ThursdayDebian has updated curl (regression in previous security fix). Fedora has updated bip (F19; F18: denial of service), drupal7-context (F19; F18: ), openstack-glance (F19: information leak), samba (F19: access restriction bypass), and xen (F19; F18: denial of service). Mageia has updated curl (unchecked certificate host name), firefox, rootcerts, nspr & nss (multiple vulnerabilities), iceape (multiple vulnerabilities), krb5 (M3; M2: denial of service), libjpeg (two vulnerabilities), lighttpd (three vulnerabilities), pmake (insecure tmp file usage), poppler (two vulnerabilities), and python-scipy (insecure tmp directory). Mandriva has updated curl (unchecked certificate host name), firefox (ES5: multiple vulnerabilities), java-1.6.0-openjdk (ES5: multiple vulnerabilities), java-1.7.0-openjdk (BS1: multiple vulnerabilities), krb5 (denial of service), libjpeg (ES5; BS1: multiple vulnerabilities), lighttpd (BS1: three vulnerabilities), nss (BS1: multiple vulnerabilities), pmake (BS1: insecure tmp file usage), poppler (BS1: two vulnerabilities), and torque (BS1: code execution). openSUSE has updated flash-player (?:) and krb5 (12.2, 12.3: denial of service). Red Hat has updated 389-ds-base (RHEL6: denial of service), augeas (RHEL6: file overwrite and information leak), busybox (RHEL6: privilege escalation), coreutils (RHEL6: three vulnerabilities), dracut (RHEL6: information disclosure from 2012), evolution (RHEL6: encrypt email to unintended recipient), glibc (RHEL6: three vulnerabilities), kernel (RHEL6: multiple vulnerabilities), libguestfs (RHEL6: insecure tmp directory), luci (RHEL6: two vulnerabilities), openssh (RHEL6: denial of service from 2010), pacemaker (RHEL6: denial of service), php (RHEL6: three vulnerabilities, one from 2006), python (RHEL6: certificate checking botch), qemu-kvm (RHEL6: privilege escalation), RDMA stack (RHEL6: two vulnerabilities, one from 2012), samba (RHEL6: three vulnerabilities), samba4 (RHEL6: denial of service), sudo (RHEL6: three privilege escalation flaws), wireshark (RHEL6: a ton of vulnerabilities, some going back to 2012), and xorg-x11-server (RHEL6: information leak). Ubuntu has updated thunderbird (multiple vulnerabilities). Kategóriák: Linux
LWN.net Weekly Edition for November 21, 2013The LWN.net Weekly Edition for November 21, 2013 is available.
Kategóriák: Linux
Stable kernel updatesGreg KH has released stable kernels 3.12.1,
3.11.9, 3.10.20, and 3.4.70. All contain important fixes.
Kategóriák: Linux
Stability first: Ubuntu’s Mir won’t replace X in 14.04 desktop (ars technica)Ars technica reports
that Mir won't be the default display server in Ubuntu 14.04.
"[Jono] Bacon expanded upon Shuttleworth's remarks in an e-mail to Ars. The goal from the start was to "deliver Mir + XMir + Unity 7 in Ubuntu 14.04 Desktop, and Mir + Unity 8 on the phone and tablet," he wrote.
However, "for the 14.04 Desktop, we are very conscious that this is an LTS release," Bacon continued. "This means that our already fairly conservative assessment of when to land significant new foundational pieces is even more conservative from a quality, technology, and support perspective. We feel that while Mir is on-track (hence its current delivery on the phone and scheduled for tablet too), we have more reservations about quality in terms of the XMir, and we didn't want to risk the LTS experience for our users.""
Kategóriák: Linux
Security advisories for WednesdayGentoo has updated ctorrent (code execution), opendchub (code execution), and openvpn (multiple vulnerabilities). Ubuntu has updated firefox (multiple vulnerabilities). Kategóriák: Linux
[$] GNU virtual private EthernetVirtual private networks (VPNs) are designed to overlay a second,
secure network on top of the existing (insecure) Internet, but that
network overlay can take a number of different forms depending on the
precise security needs in question, how static or dynamic the network
is, and other factors. GNU Virtual Private Ethernet (GVPE) is a free software VPN suite
that takes a different approach to the problem than that
of popular projects like OpenVPN. In particular, GVPE creates an
actual network where all participating nodes can talk directly to one
another, rather than setting up a point-to-point tunnel, and it tries to
simplify VPN deployment by making encryption and other settings into
compile-time options.
Click below (subscribers only) for the full article. Kategóriák: Linux
Tuesday's security updatesFedora has updated ibus-pinyin (F19: password disclosure). Gentoo has updated graphicsmagick (multiple vulnerabilities). openSUSE has updated chromium (12.2: multiple vulnerabilities) and mozilla-nss (11.4; 13.1, 12.3, 12.2: multiple vulnerabilities). Red Hat has updated nagios (symbolic link attack), openstack-glance (information leak), and openstack-keystone (incorrect token revocation). Slackware has updated mozilla (multiple vulnerabilities), openssh (restriction bypass), samba (multiple vulnerabilities), and seamonkey (multiple vulnerabilities). SUSE has updated Java 6 (multiple vulnerabilities). Ubuntu has updated nss (multiple vulnerabilities). Kategóriák: Linux
Exploring LXC Networking (containerops.org)The initial
posting on containerops.org reads: "One of the (many) things
which are not yet entirely clear to me and to the people I speak with about
this topic almost on daily basis is how the networking can be done and
configured when using LXC. Hopefully the first blog post on this topic is
going to shed some more light on this matter and hopefully it will inspire
further posts on various other topics related to the containers."
What follows is a detailed and extensive tutorial on how to manage
networking within and around LXC containers.
Kategóriák: Linux
The "Jailhouse" hypervisorThe Jailhouse project has announced its
existence. Jailhouse is a Linux-native hypervisor like KVM, but with a
focus on minimalism and isolation of virtual machines on dedicated CPUs.
"Jailhouse is a partitioning hypervisor that can create asymmetric
multiprocessing (AMP) setups on Linux-based systems. That means it runs
bare-metal applications or non-Linux OSes aside a standard Linux kernel on
one multicore hardware platform. Jailhouse ensures isolation between these
'cells', as we call them, via hardware-assisted virtualization. The
typical workloads we expect to see in non-Linux cells are applications with
highly demanding real-time, safety or security requirements." The
project is in an early stage and looking for interested developers.
Kategóriák: Linux
openSUSE 13.1 releasedThe openSUSE
13.1 release is available. "Much effort was put in testing
openSUSE 13.1, with improvements to our automated openQA testing tool, a
global bug fixing hackathon and more. The btrfs file system has received a
serious workout and while not default, is considered stable for everyday
usage. This release has been selected for Evergreen maintenance extending
its life cycle to 3 years." See the announcement for a long list of
new features in this release.
Kategóriák: Linux
|
KeresésNavigációBelépésHupWikiÁllásajánlatokHWSWFriss blogbejegyzésekHUP napi hírlevélLegfrissebb HUP videókLegfrissebb Linux játékvideókLegfrissebb HUP képekLegfrissebb HUP dokumentumokSzavazásKarácsonyi ajándékként ... örülök a legjobban. számítógép alkatrésznek (CPU, memória, VGA kártya stb.) 2% szórakoztató elektronikai eszköznek (iPod, Xbox, PlayStation, TV, e-book olvasó, okostelefon stb.) 6% számítógépnek (szerver, desktop, tablet, laptop, Raspberry Pi, NAS stb.) 5% könyvnek, magazinnak (papír) 12% könyvnek, magazinnak (elektronikus) 1% szoftvernek, elektronikus tartalomnak (pl. számítógépes játék, felhasználói szoftver, mobil app, zene stb.) 1% szerszámnak (pl. egy jó csavarhúzó, multiméter, kés, szerszám stb.) 9% ruhának (pl. téli bakancs, okostelefon-képes kesztyű stb.) 3% old school játéknak (Rubik kocka, sakk, asztali szerepjáték stb.) 2% jó kajának, italnak 11% nem érdekel az ajándékozás 27% nem érdekel a karácsony 12% egyéb, leírom 9% Összes szavazat: 468
InformációKövess minket!Partnerünk |
Friss hozzászólások
20 perc 23 másodperc
1 óra 17 perc
1 óra 28 perc
1 óra 51 perc
1 óra 53 perc
2 óra 46 másodperc
2 óra 13 perc
2 óra 16 perc
2 óra 19 perc
2 óra 22 perc