Hírolvasó

The OpenSSH project has announced the timeline for the removal of DSA support from OpenSSH:

[…] OpenSSH plans to remove support for DSA keys in the near future. This message describes our rationale, process and proposed timeline. Rationale --------- DSA, as specified in the SSHv2 protocol, is inherently weak - being limited to a 160 bit private key and use of the SHA1 digest. Its estimated security level is <=80 bits symmetric equivalent[1][2]. OpenSSH has disabled DSA keys by default since 2015 but has retained optional support for them. DSA is the only mandatory-to-implement algorithm in the SSHv2 RFCs[3], mostly because alternative algorithms were encumbered by patents when the SSHv2 protocol was designed and specified. […] In summary: 2024/01 - this announcement 2024/03 (estimated) - DSA compile-time optional, enabled by default 2024/06 (estimated) - DSA compile-time optional, *disabled* by default 2025/01 (estimated) - DSA is removed from OpenSSH

Please read the announcement message for full details.

Az Ericsson szerint ideje elkezdeni pingidő szerint differenciálni a csomagokat.

Az eszközön futó operációs rendszer megtanulja kezelni az interfészeket a felhasználó helyett.

Elkészült a Glassdoor éves listája.

The LWN.net Weekly Edition for January 11, 2024 is available.

As part of my quest to master Emacs, which is sort of a sub-quest on the way toward learning more about Lisp, I have spent a fair amount of time discovering various corners of the Emacs world. One of those is the famous "Org mode" that is used for a wide variety of organizational tasks within the editor—and not just Emacs, but for Vim and others too. Org mode can be used for to-do lists, notes with interconnections between them, literate programming, web sites, and more. Now my quests are growing quests of their own and digging into Org mode is one of those.

The 4.14.336 stable kernel update has been released with a small handful of fixes; this is the end of the line for the 4.14 stable series:

This is the LAST 4.14.y kernel to be released. It is now officially end-of-life. Do NOT use this kernel version anymore, please move to a newer one, as shown on the kernel.org releases page.

All users of the 4.14 kernel series must upgrade. But then, move to a newer release. If you are stuck at this version due to a vendor requiring it, go get support from that vendor for this obsolete kernel tree, as that is what you are paying them for :)

Update: 6.6.11 and 6.1.72 have also now been released.

Security updates have been issued by Fedora (libssh), Gentoo (FAAD2 and RedCloth), Red Hat (kpatch-patch and nss), SUSE (hawk2, LibreOffice, opera, and tar), and Ubuntu (glibc, golang-1.13, golang-1.16, linux-azure, linux-gkeop, monit, and postgresql-9.5).

Némi csavarral.

A TikTok az első olyan nem játék kategóriába tartozó mobilalkalmazás, amin belül már 10 milliárd dollárt költöttek el a fogyasztók.

Újabb intézkedésekkel próbálja bizonyítani a cég, hogy platformjai nem károsak a fiatalokra nézve.

A kérdés, hogy a redmondiak többmilliárd dolláros befektetése sértheti-e a vállalati összefonódást ellenőrző rendeletet.

A cég ezzel egy új területet szerzett magának a tradicionális szerverbiznisz mellé.

Illetve az Android Auto is kap néhány, elektromos autók esetében hasznos fejlesztést.

A new release for any project with a fix for a 12-year old CVE is going to stand out pretty obviously; a recent release has a fix of that nature, but the trail of CVE-2012-5639 is rather elusive. The Apache OpenOffice project made its 4.1.15 release with fixes for four CVEs, including one for CVE-2012-5639 ("Loading internal / external resources without warning"), on December 22. But nearly everything about that CVE seems rather murky, and it is difficult to get a clear picture of what, exactly, was done in OpenOffice to address the problem.

The Vcc compiler has been announced.

It’s exactly what the name implies: a clang-based compiler that outputs code that runs on Vulkan.

Vcc can be thought of as a GLSL and HLSL competitor, but the true intent of this project is to retire the concept of shading languages entirely. Unlike existing shading languages, Vcc makes a honest attempt to bring the entire C/C++ language family to Vulkan, which means implementing a number of previously unseen features in Vulkan shaders

OpenWrt developer John Crispin says: "In 2024 the OpenWrt project turns 20 years! Let's celebrate this anniversary by launching our own first and fully upstream supported hardware design." The rest of the message describes the proposed OpenWrt-native network-routing system, based on Banana Pi boards; the project is being organized through the Software Freedom Conservancy. (Thanks to Dave Täht).

Thorsten Leemhuis writes about his plans for improving the kernel's regression handling in the coming year.

Top-priority will be "make regzbot more useful for kernel subsystem maintainers" from now on. My tracking efforts of course will continue, but everything except regressions in the current and the previous mainline cycle might not see much attention from my side. This refocusing also means that I won't work much on resolving some ambiguities around "how regressions are supposed to be handled" which lead to tension quite a few times. But all that should be for the best in the long term.

Anthony Shaw describes the new copy-and-patch JIT that has been proposed for Python 3.13.

Copy-and-patch was selected because the compilation from bytecodes to machine code is done as a set of “templates” that are then stitched together and patched at runtime with the correct values. This means that your average Python user isn’t running this complex JIT compiler architecture inside their Python runtime. Python writing it’s own IL and JIT would also be unreasonable since so many are available off-the-shelf like LLVMs and ryuJIT. But a full-JIT would require those being bundled with Python and all the added overheads. A copy-and-patch JIT only requires the LLVM JIT tools be installed on the machine where CPython is compiled from source, and for most people that means the machines of the CI that builds and packages CPython for python.org.

Version 4.5 ("Resilience") of the Solus distribution has been released. "This release brings updated applications and kernels, refreshed software stacks, a new installer, and a new ISO edition featuring the XFCE desktop environment."