Hírolvasó

The OpenBSD 7.6 release cycle is entering its final phases…

With the following commit, Theo de Raadt (deraadt@) moved -current to version 7.6:

CVSROOT: /cvs Module name: src Changes by: deraadt@cvs.openbsd.org 2024/09/17 07:39:17 Modified files: sys/conf : newvers.sh Log message: head into release

For those unfamiliar with the process: this is not the 7.6 release, but is part of the standard build-up to the release.

Remember: It's time to start using "-D snap" with pkg_add(1) (and pkg_info(1)).

(Regular readers will know what comes next…)
This serves as an excellent reminder to upgrade snapshots frequently, test both base and ports, and report problems [plus, of course, donate!].

Kangrejos 2024 started off with a talk from Benno Lossin about his recent work to establish a standard for safety documentation in Rust kernel code. Lossin began his talk by giving a brief review of what safety documentation is, and why it's needed, before moving on to the current status of his work. Safety documentation is easier to read and write when there's a shared vocabulary for discussing common requirements; Lossin wants to establish that shared vocabulary for Rust code in the Linux kernel.

Vanilla OS, an immutable desktop Linux distribution designed for developers and advanced users, has recently published its 2.0 "Orchid" release. Previously based on Ubuntu, Vanilla OS has now shifted to Debian unstable ("sid"). The release has made it easier to install software from other distributions' package repositories, and it is now theoretically possible to install and run Android applications as well.

Four researchers have published a formal proof that Linux's new deterministic random bit generator (DRBG) is secure in a particular sense — specifically, that the number of queries that would need to be made to it to uncover its internal state depends on the quality of the entropy it can collect from different sources. As long as it can gather enough entropy, it produces secure random numbers.

Since the significant structural changes in Linux 4 and Linux 5.17, there has been no research on the provable security of Linux-DRBG. For the first time (to the best of our knowledge), we formally model the Linux-DRBG in Linux 6.4.8 and prove its security in the seedless robustness model

Thanks to Jason Donenfeld for bringing the paper to our attention.

The generation of binary code for the kernel's BPF virtual machine has been limited to the Clang compiler since the beginning; even developers who use GCC to build kernels must use Clang to compile to BPF. Work has been underway for some years on adding a BPF backend to GCC as well; the developers involved ran a session at the 2024 GNU Tools Cauldron to provide an update on that project. It would seem that the BPF backend is close to being ready for production use.

Az Apple már engedélyezi a harmadik féltől származó alkalmazásboltok elérhetőségét iPaden is, itt az iPadOS 18.

Security updates have been issued by Debian (php-twig and pymongo), Fedora (linux-firmware, microcode_ctl, and python3.13), Mageia (clamav, microcode, postgresql13 and postgresql15, python3-webob, suricata, tcpreplay, tgt, and wireshark), Oracle (httpd, kernel, and linux-kernel), Red Hat (firefox, kernel, kernel-rt, pcs, and thunderbird), SUSE (389-ds, chromium, golang-github-prometheus-prometheus, htmldoc, kernel, SUSE Manager Client Tools, and wireshark), and Ubuntu (clamav, curl, dcmtk, dovecot, nginx, openssh, and python3.10, python3.12, python3.8).

Az utolsó Nokia okostelefon éppen egy éve került piacra, azóta semmi jele, hogy jönne új típus.

Az NMHH most a 13-16 év közti korosztály közösségimédia-használatát vizsgálta meg.

Elavultnak nyilvánította a Microsoft a legacy DRM-szolgáltatásokat, változik a médiafájlok lejátszása a már egyébként is régi Windows verziók alatt.

Idén újra lesz iPhone launch party, bár sorban állás nélkül.

Nagyobb függetlenséget kap a foundry üzletág, leáll a német és a lengyel beruházás, besegít az Amazon, megy az Altera.

The Linux Foundation has announced the creation of the OpenSearch Software Foundation as a vendor‑neutral home for the OpenSearch search and observability software:

Established in 2021 and previously hosted by Amazon Web Services (AWS), OpenSearch has recorded more than 700 million software downloads and participation from thousands of contributors and more than 200 project maintainers.

AWS created the OpenSearch project as an open-source fork of ElasticSearch and Kibana in 2021 after Elastic moved those projects to non-free licenses. Elastic announced in August that it would relicense the projects under the Affero GPL (AGPL).

The Fedora Engineering Steering Committee (FESCo) has voted to immediately remove the WolfSSL package from all of Fedora's repositories due to its maintainer failing to gain approval to package a new cryptography library for Fedora. Its brief travels through Fedora's package system highlights gaps in documentation, as well as in the package‑review process. The good news is that this may stir Fedora to improve its documentation and revive a formal security team.

Version 8.0.0 of the Valkey open-source in-memory data store is now available. This is the first major release of Valkey since the project forked from Redis in March of this year:

While this is a major version, Valkey takes command set compatibility seriously: Valkey 8.0.0 makes no backwards incompatible changes to the existing command syntax or their responses. Your existing tools and custom software will be able to immediately take advantage of Valkey 8.0.0. Since Valkey 8.0.0 does make some small changes to previously undefined behaviors, it's wise to read the release notes. Additionally, because this version makes changes in how the software uses threading, you may want to re-evaluate your cluster's infrastructure to achieve the highest performance.

The 6.11 kernel was released on September 15 after a typical nine-week development cycle. This release integrates 13,890 non-merge changesets, so it was a moderately busy cycle, slightly more so that 6.10 was. With a new release comes a new round of development statistics; read on for the details.

De még mindig csak angolul lehet vele beszélgetni.

Kisebb érdeklődés övezheti a fogyasztók oldaláról a nemrég bemutatott iPhone 16 Pro és az iPhone 16 Pro Max modelleket.

Jön az iOS18, jönnek az új AI-funkciók.

Az iOS18-cal az Activation Lock funkció az eredeti tulajdonoshoz köti a készülék alkatrészeit is.