Podcasts about Debian

This week, we cover the Snapdragon laptop Linux performance, the latest on the Raspberry Pi, and changes coming to Debian. Then Gnome has a new Executive Director, who isn't a professional shaman this time, Ubuntu 25.10 is going all in on Rust tooling, and the kernel is finally dropping support for i486. For tips we cover special variables, loading and unloading Pipewire Modules, and pdfjam for remixing PDF files on the command line. Find the show notes at https://bit.ly/4m6D80d and enjoy the show! Host: Jonathan Bennett Co-Hosts: Rob Campbell and Ken McDonald Download or subscribe to Untitled Linux Show at https://twit.tv/shows/untitled-linux-show Want access to the ad-free video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Hoy ha venido a divertirse a las charlas de Salmorejo Geek, Eva, más conocida como Me llamo Eva y Eva Debian. Apasionada de la música, la informática y como no podía ser de otra forma, de Debian.Una charla amena y distendida en donde podemos conocerla de una manera bastante simpática.Podéis encontrarla en los siguientes sitios.- Canal de Youtube: https://www.youtube.com/@evadebian - Correo: evadebian@disroot.org- BlueSky: @mellamoeva.bsky.social

First up in the news: Mint Monthly News, Linux 6.16 To Add Asahi UAPI Header For Apple Silicon, Switzerland battles privacy intrusions, Firefox adds HEVC playback in Linux, Debian releases APT 3.0, Apple may add Mx GCC core support, Git turns 20, ProtonMail adds advanced features, ArcoLinux ends it all Then in our Wanderings: Bill is having trouble on the road and won't be here, Joe returns to us, Moss juggles tablets, Majid learns things, and Eric is AWOL In our Innards section: we talk travel computing In Bodhi Corner, Robert Wiley releases a script which can be used to install Moksha on any version of Debian, including Trixie

video: https://youtu.be/ua-RPOtdcF8 Comment on the TWIL Forum (https://thisweekinlinux.com/forum) This week in Linux, App 3.0 drops, bringing big changes under the hood. Amiga OS, yes, that Amiga OS, is still alive and getting updates, apparently. Open SSL 3.5 and Open SSH 10.0 both rolled out new features this week with also some future-proofing involved. And Sony, yes, that Sony, has released The Last of Us Part II on PC and it's Steam Deck verified. All that and much more on This Week in Linux, the weekly news show that keeps you plugged into everything happening in the Linux and Open Source world. Now let's jump right into Your Source for Linux GNews. Download as MP3 (https://aphid.fireside.fm/d/1437767933/2389be04-5c79-485e-b1ca-3a5b2cebb006/c5514bc1-148c-43d2-a6eb-4d0fcbfd6966.mp3) Support the Show Become a Patron = tuxdigital.com/membership (https://tuxdigital.com/membership) Store = tuxdigital.com/store (https://tuxdigital.com/store) Chapters: 00:00 Intro 00:39 APT 3.0 Released 02:48 Last of US Part 2 Verified for Steam Deck 05:47 MPV 0.40 Released 08:58 Sandfly Security [ad] 10:54 AmigaOS still exists and getting updates apparently 14:24 TUXEDO Provides Update On Their Snapdragon X Elite Linux Laptop 17:20 OpenSSL 3.5 Released 19:19 OpenSSH 10.0 Released 21:41 Support the show Links: APT 3.0 Released https://tracker.debian.org/news/1635519/accepted-apt-300-source-into-unstable/ (https://tracker.debian.org/news/1635519/accepted-apt-300-source-into-unstable/) https://9to5linux.com/apt-3-0-debian-package-manager-released-with-revamped-command-line-interface (https://9to5linux.com/apt-3-0-debian-package-manager-released-with-revamped-command-line-interface) https://www.phoronix.com/news/Debian-APT-3.0-Released (https://www.phoronix.com/news/Debian-APT-3.0-Released) Last of US Part 2 Verified for Steam Deck https://gameinformer.com/interview/2025/04/01/naughty-dog-and-nixxes-on-the-pc-port-of-the-last-of-us-part-ii-we-take-the (https://gameinformer.com/interview/2025/04/01/naughty-dog-and-nixxes-on-the-pc-port-of-the-last-of-us-part-ii-we-take-the) https://www.pcguide.com/news/steam-deck-support-is-so-important-says-the-last-of-us-part-2-pc-project-director/ (https://www.pcguide.com/news/steam-deck-support-is-so-important-says-the-last-of-us-part-2-pc-project-director/) MPV 0.40 Released https://mpv.io/ (https://mpv.io/) https://github.com/mpv-player/mpv/releases/tag/v0.40.0 (https://github.com/mpv-player/mpv/releases/tag/v0.40.0) https://www.phoronix.com/news/MPV-0.40-Released (https://www.phoronix.com/news/MPV-0.40-Released) https://9to5linux.com/mpv-0-40-open-source-video-player-released-with-native-hdr-support-on-linux (https://9to5linux.com/mpv-0-40-open-source-video-player-released-with-native-hdr-support-on-linux) Sandfly Security [ad] https://thisweekinlinux.com/sandfly (https://thisweekinlinux.com/sandfly) https://destinationlinux.net/409 (https://destinationlinux.net/409) discount code: destination50 (Home Edition) AmigaOS still exists and getting updates apparently https://www.hyperion-entertainment.com/index.php/news/1-latest-news/320-new-update-3-for-amigaos-32-available-for-download (https://www.hyperion-entertainment.com/index.php/news/1-latest-news/320-new-update-3-for-amigaos-32-available-for-download) https://www.theregister.com/2025/04/10/amigaos32_3/ (https://www.theregister.com/2025/04/10/amigaos_3_2_3/) TUXEDO Provides Update On Their Snapdragon X Elite Linux Laptop https://www.tuxedocomputers.com/en/How-is-TUXEDOCOes-ARM-Notebook-Coming-Along.tuxedo (https://www.tuxedocomputers.com/en/How-is-TUXEDOCOes-ARM-Notebook-Coming-Along.tuxedo) https://www.qualcomm.com/products/mobile/snapdragon/laptops-and-tablets/snapdragon-x-elite (https://www.qualcomm.com/products/mobile/snapdragon/laptops-and-tablets/snapdragon-x-elite) https://www.linaro.org/ (https://www.linaro.org/) https://www.phoronix.com/news/TUXEDO-Snapdragon-Laptop-Update (https://www.phoronix.com/news/TUXEDO-Snapdragon-Laptop-Update) OpenSSL 3.5 Released https://openssl-library.org/ (https://openssl-library.org/) https://github.com/openssl/openssl/releases/tag/openssl-3.5.0 (https://github.com/openssl/openssl/releases/tag/openssl-3.5.0) https://lwn.net/Articles/1016851/ (https://lwn.net/Articles/1016851/) https://9to5linux.com/openssl-3-5-released-with-support-for-pqc-algorithms-server-side-quic (https://9to5linux.com/openssl-3-5-released-with-support-for-pqc-algorithms-server-side-quic) https://www.phoronix.com/news/OpenSSL-3.5-Released (https://www.phoronix.com/news/OpenSSL-3.5-Released) OpenSSH 10.0 Released https://www.openssh.com/ (https://www.openssh.com/) https://www.openssh.com/releasenotes.html#10.0p1 (https://www.openssh.com/releasenotes.html#10.0p1) https://www.phoronix.com/news/OpenSSH-10.0-Released (https://www.phoronix.com/news/OpenSSH-10.0-Released) https://lwn.net/Articles/1016924/ (https://lwn.net/Articles/1016924/) Support the show https://tuxdigital.com/membership (https://tuxdigital.com/membership) https://store.tuxdigital.com/ (https://store.tuxdigital.com/)

First up in the news: New GIMP, Debian comes to a RISC-V tablet, Google explains why the are putting Terminal on Android, Asahi Linux loses another top dev, Plex goes for the gold – yours, meet EU OS, Kernel 6.14 is released, Gnome 48 released, new GRUB updates, AerynOS is released with GNOME 48 In security and privacy: “MyTerms” wants to let the user dictate privacy Then in our Wanderings: Moss plays Musical Tablets, Joe Moxes the Prox, Dale has a burpday, Majid is on holiday and Bill is off truckin' somewhere... In our Innards section: Dale takes us through Mobile Networks In Bodhi Corner, Moss covers new translations and work on the next version.

This show has been flagged as Clean by the host. A collection of tips and tricks that operat0r uses to make a standard Android phone more custom. The secret block extension is "11335506" - tell 'em Ken sent ya. Links UserLAnd - Linux on Andro UserLAnd is an open-source app which allows you to run several Linux distributions like Ubuntu, Debian, and Kali. Widgify - DIY Live Wallpaper Widgify is a well-designed beautification tool for phone, where you can experience a wide variety of screen widgets to easily match your super personalized phone home screen! Nova Launcher Prime Nova Launcher is a powerful, customizable, and versatile home screen replacement. Firefox Nightly for Developers Nightly is built for testers. Help us make Firefox the best browser it can be. Expanded extension support in Firefox for Android Nightly How to use collections on addons.mozilla.org SponsorBlock SponsorBlock is an open-source crowdsourced browser extension and open API for skipping sponsor segments in YouTube videos. WireGuard (VPN) The official app for managing WireGuard VPN tunnels. DNS66 This is a DNS-based host blocker for Android. (Requires root) Hacker's Keyboard Four- or five-row soft-keyboard TidyPanel Notification Cleaner Tidy up your notification panel with simple, minimal, beautiful and intuitive UI. Provide feedback on this episode.

Q&A219: How can you keep your password manager safe from infostealing malware? Do we prefer Debian-based or RedHat-based Linux distros? How do we harden or customize our distros? How can you recreate Qubes' Disposable VMs on a non-Qubes device? Join our next Q&A on Patreon: https://www.patreon.com/collection/415684?view=expanded or XMR Chat: https://xmrchat.com/surveillancepodWelcome to the Surveillance Report Q&A - featuring Techlore & The New Oil answering your questions about privacy and security.❤️ Support us on Patreon: https://www.patreon.com/surveillancepod

In our Innards section: Media Streaming In Bodhi Corner, Bodhi has added new themes and work has started on Bodhi 8, so far using Debian 12 base And finally, the feedback and a couple of suggestions.

Coming up in this episode * Oh GNOME! * Mozilla, Don't Watch * And a few high notes The Video Version! (https://youtu.be/FdHulOnBwEo) https://youtu.be/FdHulOnBwEo 0:00 Cold Open 1:07 Dash To Panel Needs Your Help! 27:21 Firefox's New Terms Of Use 51:33 Mark / Contact Button 1:00:34 Scott / Contact Button 1:03:22 Dan / Matrix 1:06:09 chraist / Matrix 1:08:07 bgt lover / Matrix 1:10:00 MarshMan / Discord 1:13:58 Next Time! 1:18:45 Stinger Dash to Panel Maintainer Quits Dash to panel maintainer quits (https://www.theregister.com/2025/03/14/dashtopanel_maintainer_quits/) The GitHub issue (https://github.com/home-sweet-gnome/dash-to-panel/issues/2259)

This week a community resource fell offline unexpectedly. Members from all over the internet banded together to restore a community resource! -- During The Show -- 01:00 Intro Noah brought the warm weather back We need your feedback Join Geeklab (https://matrix.to/#/#geeklab:linuxdelta.com) Tag Marlin 04:10 Smart Watches Original pebble inventor New pebble smartwatches available for preorder ArsTechnica (https://arstechnica.com/gadgets/2025/03/new-pebbleos-watches-with-more-battery-and-familiar-looks-are-up-for-preorder/) Steve's smartwatch use case Noah's watch Pine Time (https://pine64.com/product/pinetime-smartwatch-sealed/) Fitness Features Eric Migicovsky doesn't stick with companies AsteroidOS (https://asteroidos.org/) BangleJS (https://banglejs.com/) 28:32 News Wire GIMP 3.0 - gimp.org (https://www.gimp.org/news/2025/03/16/gimp-3-0-released/) Digikam 8.6 - digikam.org (https://www.digikam.org/news/2025-03-15-8.6.0_release_announcement/) Peertube 7.1 - joinpeertube.org (https://joinpeertube.org/news/release-7.1) Gstreamer 1.26 - freedesktop.org (https://gstreamer.freedesktop.org/releases/1.26/) KDE Frameworks 6.12 - kde.org (https://kde.org/announcements/frameworks/6/6.12.0/) End of Nouveau OpenGL Driver - itsfoss.com (https://news.itsfoss.com/mesa-zink-nvk-switch/) Debian Bookworm 12.10 - debian.org (https://www.debian.org/releases/bookworm/#:~:text=Debian%2012.10%20was%20released%20on,release%20and%20the%20Release%20Notes.) Ubuntu's Rust Coreutils - ubuntu.com (https://discourse.ubuntu.com/t/carefully-but-purposefully-oxidising-ubuntu/56995) GitHub Actions Hack - infoworld.com (https://www.infoworld.com/article/3847178/thousands-of-open-source-projects-at-risk-from-hack-of-github-actions-tool.html) Open Source OSV Scanner - gbhackers.com (https://gbhackers.com/google-launches-open-source-osv-scanner/) Linux Kernel Use-After-Free Vulnerability - gbhackers.com (https://gbhackers.com/poc-exploit-released-linux-kernel-vulnerability/) Kagent - thenewstack.io (https://thenewstack.io/meet-kagent-open-source-framework-for-ai-agents-in-kubernetes/) Tencent Open Source Model - bloomberg.com (https://www.bloomberg.com/news/articles/2025-03-18/tencent-touts-open-source-ai-models-to-turn-text-into-3d-visuals) Mistral Small 3.1 - techzine.eu (https://www.techzine.eu/news/applications/129697/mistral-ai-unveils-small-powerful-and-open-source-ai-model/) - venturebeat.com (https://venturebeat.com/ai/mistral-ai-drops-new-open-source-model-that-outperforms-gpt-4o-mini-with-fraction-of-parameters/) 29:50 Linuxrocks.online Outage Noah's travel story Awake for 30+ hours Wakes up to DMs, emails, online posts, etc Linux Rocks server is down Linux Rocks server grew organically Moved into Altispeed Egan MN data center SSH connected but then kicked you out Altispeed got pulled into it User wasn't in the libvertd group Organic way information spreads on the internet Glad to see people calm down after learning someone is in the hospital Linux Rocks is now monitored by LibreNMS Michael is donating a new server Thank you for polite and kind notification To those not so kind, please consider what you are getting for free Reddit post (https://www.reddit.com/r/Mastodon/comments/1jblofg/linuxrocksonline_been_down_for_nearly_48_hours/) Everything was documented 49:45 Continuity Plan Reach out to Nerd friends Interest Old laptops show up on Noah's desk Enabling people through technology -- The Extra Credit Section -- For links to the articles and material referenced in this week's episode check out this week's page from our podcast dashboard! This Episode's Podcast Dashboard (http://podcast.asknoahshow.com/433) Phone Systems for Ask Noah provided by Voxtelesys (http://www.voxtelesys.com/asknoah) Join us in our dedicated chatroom #GeekLab:linuxdelta.com on Matrix (https://element.linuxdelta.com/#/room/#geeklab:linuxdelta.com) -- Stay In Touch -- Find all the resources for this show on the Ask Noah Dashboard Ask Noah Dashboard (http://www.asknoahshow.com) Need more help than a radio show can offer? Altispeed provides commercial IT services and they're excited to offer you a great deal for listening to the Ask Noah Show. Call today and ask about the discount for listeners of the Ask Noah Show! Altispeed Technologies (http://www.altispeed.com/) Contact Noah live [at] asknoahshow.com -- Twitter -- Noah - Kernellinux (https://twitter.com/kernellinux) Ask Noah Show (https://twitter.com/asknoahshow) Altispeed Technologies (https://twitter.com/altispeed)

This show has been flagged as Clean by the host. Maintaining The Remote System I have renamed the project Libre Indie Archive because the name theindiearchive is already someone else's domain. I never would have renamed The Indie Archive but I do think that Libre Indie Archive is more descriptive, hence, better. I am getting close to a pre beta push up to codeberg. Anyone following along who wants to help test, you can do this with two or three old systems. Let me know. Email hairylarry@gmail.com or on Mastodon I am @hairylarry@gamerplus.org. I have decided to develop and document for Xubuntu first and here's the reasons why. I bought an older HP small form factor office system with 4 Gigabytes of ram. HP Compaq 4000 Pro Pentium Dual-Core E6600 3.06GHz 4GB RAM Thirty dollars on ebay with shipping and taxes. I was testing Libre Indie Archive on it. Because of the age of the system Ubuntu wouldn't install. I tested it with some BSD systems and installed Indie Archive without a GUI. Ghost BSD didn't install but Midnight BSD did install so I used the Midnight BSD GUI and installed Indie Archive. None of this was easy for me because I'm a BSD newb and unless you already use BSD I can't recommend it for Libre Indie Archive. Remember, not all indie producers are computer programmers, and I want Indie Archive to work for those producers as well as for the computer savvy. Then on a whim I thought I would try the Xubuntu 24.04 distro and it installed no problems. Thanks XFCE for keeping it light. The other reason I am developing and documenting for Xubuntu is that I can use the Xubuntu install document and install on Ubuntu or Debian with only minor differences. I know because I tried it. This is probably also true for other Debian and Ubuntu derived distributions. So, if you want to help, you could take the Xubuntu install document and see if it works on other distributions. Write down what you had to change and let me know. I plan on making an install checklist out of the install document and it would be great to have a checklist with the actual commands for several distributions. So, that was the intro. Now on to the topic. I am planning on installing remotenear and remotefar systems, remotenear being a short drive away (or maybe in your home if your studio is not in your home, like mine) and the remotefar further away to avoid losing data in the case of a regional catastrophe like flood, fire, tornado, or hurricane. Still even a short drive is not what I want to do any time there might be something I need to check on a remote system so I have devised a way to manage it from the secondary system. When a remote system is delivered to a new location it will be headless. No monitor, no keyboard, and no mouse. At the remote location it is plugged into a UPS and attached to the network with an ethernet cable and attached to the UPS with a usb cable. Then it is turned on. Even without a keyboard or a mouse there is still some local control of the system available. As part of the remote system install we go into the power management settings and next to "when power button is pressed" we select shutdown. So, a short press on the power button initiates a Xubuntu shutdown just like the shutdown that you get from the menu or Alt F4. If that doesn't work a long press of the power button will turn the system off. This is like unplugging the system or losing power and is not recommended but Xubuntu will rebuild the file structure when the system is restarted. And if you do lose power the UPS will send a signal to the computer shutting it down with a controlled shutdown, just like a short press of the power button or a shutdown from the menu. I would like to carry this one step further and enable automatic power up for the computer. A quick search shows cyberpower PowerPanel software for linux. Also you can set a power restore function in the BIOS to restart the system when the power is restored. I just checked and this worked on my little HP. So ... with just the power button and an attached UPS you can get both manual and automatic control of shutting the remote system down and restarting it. Pretty cool for a rather sparse interface. If you know more about how to set this up please let me know. There's a big jump between doing a search to see if something is possible and actually implementing it. Okay, that was the easy part. Now for the fun part. First off, the remote system is probably not going to be at your place but at the home or business of friends or family. And they probably don't have a static IP, and they may not be able to implement port forwarding in their router, and they may not be able to control their firewall. So we can't go, "I'll just ssh in when I need to fix a problem". And you don't really want to change their setup anyway because all of the above add to their security risk. Also their router undoubtedly gives dynamic IP addresses so we want the remote system to use that because when we are setting it up we might not even know what subnet their LAN uses. But, at the same time it doesn't make any sense at all to try to maintain a remote system that you can't log into. So, the tool for setting up a terminal session on the remote system is called a remote tunnel reverse shell. The remote system is already connecting to the secondary system with rsync ssh when the cron job fires off every day to update the files. So, the secondary system is running an ssh server and the remote system has the public key that allows access without entering a password. There are two parts to setting up a remote tunnel reverse shell. The secondary system has to be listening for the remote system on a port, I use port 7070. And then the remote system runs a bash command with the -i parameter that means reverse shell, and with the port, 7070. I'm using nc to set up the listener. nc -lvnp 7070 -l is --listen -v is --verbose -n means the port is restricted to numeric values. -p is --port 7070 is the port I chose the port number, 7070. You can use any available port but the listener has to use the same port as the remote system uses in the bash call. Which is this. bash -i >& /dev/tcp/your-static-ip-from-your-isp/7070 0>&1 This is the order of events. On the secondary system I start listening. nc -lvnp 7070 Then a script runs on the remote system. bash -i >& /dev/tcp/your-static-ip-from-your-isp/7070 0>&1 And then a command prompt opens up in the terminal on the secondary system that's listening. And you are logged into the remote system and you can look around and check things out and even move or delete files until you exit. Except it didn't work. Of course not, nothing ever works the first time. Two other things have to be changed that we're going to talk about now, the firewall and port forwarding. These things are already discussed in install.txt because we had to fix the firewall and port forwarding for the remote system to log into the secondary system to pick up the new files. To set up port forwarding, log into your router from a browser attached to the router. Like, for instance, a browser on your secondary system. You open the browser and type into the address bar, 192.168.1.1 Which is right most of the time. On my setup I type 192.168.2.1 because the isp's router uses the 192.168.1 subnet. How do I know which to use??? This also is covered in install.txt because to connect from the primary system to the secondary system I have to connect to the static ip that I assigned to the secondary system. So my primary system has the static ip 192.168.2.11 and my secondary system has the static ip 192.168.2.12 which allows me to ssh into the secondary system from the primary system. And this means my router is at 192.168.2.1 Your router is likely at 192.168.1.1 because that's the most common LAN subnet. Anyway, in the browser I open the router's control console and then I have to enter the password. If you don't know what it is you have to find out and write it down. Check what the defaults are for your router by searching on the internet. The defaults might work. If they do change your login and password and write them down! Do not leave your router defaults in place. That's a big security risk. After you're logged into the control console check around in the menus for Port Forwarding. I already had to do this to make ssh work from the remote system to the secondary system. In that case I had to forward port 22 (the ssh port) from the internet to the secondary system. Here's how that works. On the remote system I type. ssh indiearchive@your-static-ip-from-your-isp Since it's coming in as ssh that means the router sees port 22. The router checks the port forwarding table and sees that incoming traffic using port 22 should go to the secondary system, in my case 192.168.2.12 So the incoming ssh goes to the secondary system which is my ssh server. What a coincidence. So in order to use port 7070 to open a tunnel from the remote system to the secondary system I have to add a row to the port forwarding table with 7070 as the port and 192.168.2.12 as the ip. Except on your LAN the ip address may be different. Except it doesn't work. I bet you guessed why. It's the firewall. On the secondary system type. sudo ufw status It should show you that port 22 is allowed because otherwise you wouldn't be getting ssh traffic. It probably won't show you that port 7070 is allowed. So type. sudo ufw allow 7070 Then check the status again and see if it shows 7070. Here's a nice firewall link with instructions. https://www.digitalocean.com/community/tutorials/ufw-essentials-common-firewall-rules-and-commands It still might not work even though it should. Why? Operator error. You may have typed 7000 instead of 7070. (I did that.) Or any other little typo in any of the commands. When this works you are ready to test the reverse shell. The remote system can ssh into the secondary system and we have added port 7070 to the port forwarding table on the router and to the firewall on the secondary system. This is great! But how do I know when to listen and how do I get the remote system to issue the bash command that sets up the reverse shell? Remember, in the future the remote system is going to be sitting somewhere with no monitor, keyboard, or mouse. Only computer programmers are required to remember the future. After all that setup, here's the clever bit. I have a text file on the secondary system named letmein.txt and it's a flag with two values. The text file either reads yes or no. If it reads yes it means I'm here at the secondary system and I want to log into the remote system. If it reads no. Not so much. I'm not really trying to log in to the remote system at all. The remote system has ssh access to the secondary system since that's the way it picks up the new files, with rsync ssh. So the remote system can use rsync to copy the letmein.txt file over to it's hard drive. And it does this every five minutes, with a cron job. On the remote system type sudo -s to become root. crontab -e to edit the root crontab. Add this line */5 * * * * /home/indiearchive/check.sh Every 5 minutes the remote system runs check.sh which grabs the letmein.txt file and checks to see if it says yes or no. If it says yes it starts the reverse shell, assuming I remembered to start listening to port 7070 on the secondary system. After I'm done working on the remote system while sitting at the secondary system I type exit to close the remote terminal and come back to the terminal on the secondary system. If I forgot to do something I can start listening again but if I'm done I edit letmein.txt to say no and the remote system will quit trying to set up a reverse shell every 5 minutes. But wait! There's more. Email notifications. I set up email notifications with mailersend for file integrity reports using curl. To do that I wrote a script called send.sh that takes a file name as an argument and then sends me an email with the contents of the file in the body of the email. So when I run my file integrity program if the log files are larger than they should be, it means there is a discrepancy and that log file gets emailed to me so I can check things out. (Maybe with my remote tunnel reverse shell.) I also check diskspace with df and send a disk space report. Using send.sh when I run check.sh and detect a yes in letmein.txt I call send.sh with letmein.txt as the parameter and I get an email that says yes, meaning the remote system is trying to set up a reverse shell. So if I change letmein.txt to yes on the secondary system and I wait five or ten minutes without getting notified I may just have to make a call. Maybe the nice people who are hosting my remote system have lost power. Or internet. Or maybe they will have to push a button. If that doesn't work I may have to make a trip. I hope it's remotenear and not remotefar. So when I was testing the email notifications part of check.sh and fiddling around with the code all of a sudden I quit getting notifications at all. I learned a lot about bash scripting trying to figure out what I did wrong and it turned out it wasn't me. After I sent myself numerous emails saying yes from a weird email address gmail decided they were spam. So I went into my spam folder and marked the notification email as not spam. That fixed it for me but if you are setting up email notifications for Libre Indie Archive or for anything be sure you white list the email address so that the email powers that be don't suddenly decide that your notifications are spam and you quit getting important notifications. In gmail you set up a filter entry with the notifier's email address and set the action to be "Never send it to Spam". Because getting these emails is important. First they remind me to have the secondary system listen. Then they remind me to change letmein.txt from yes to no after I'm done with the remote terminal. And while you're changing letmein.txt to no make sure the listener is off. Leaving it listening for an extended period of time is a security risk. So there's a lot of little moving parts involved in this. Kind of complicated but still fascinating. Almost done. I didn't think this would be so long and now I'm exhausted. I am including slightly redacted and well commented copies of check.sh and send.sh in the show notes which will be on Hacker Public Radio and on my Delta Boogie Network-Gamer+ blog at home.gamerplus.org. As always, I appreciate your comments. Thanks Provide feedback on this episode.

In der Februar-Ausgabe von LinuxCoffeeTalk geht es um wichtige Neuerungen und Diskussionen in der Linux-Community. Themen sind das neue Release-Modell von Thunderbird, Fedora-Zukunftspläne und ein Kernel-Patch zur Reduzierung des Stromverbrauchs. Außerdem sprechen wir über Debian 13 mit GNOME Shell 48, KDE Plasma 6.3 und die Herausforderungen bei Ubuntu 24.04.2. Weitere Highlights sind die Streitigkeiten zwischen Fedora und dem OBS-Projekt, der Rückzug des Asahi-Linux-Gründers sowie Updates zu Pi-hole 6 und COSMIC Alpha 6. Jetzt reinhören!

This show has been flagged as Explicit by the host. mumble: Official website of the Mumble project wikipedia:) Mumble (software) from Wikipedia ncbi: Generalisable 3D printing error detection and correction via multi-head neural networks liqcreate: Resin 3D-printing: Ec, Dp, cure depth & more explained tomshardware: How to Fix 3D Prints Not Sticking to the Bed simplify3d: Not Sticking to the Bed tinkercad: Tinkercad is a free web app for 3D design, electronics, and coding. etherpad: Etherpad is a highly customizable open source online editor providing collaborative editing in really real-time. jitsi: More secure, more flexible, and completely free video conferencing openai: Whisper is an automatic speech recognition (ASR) system raspberrypi: We are Raspberry Pi. We make computers. wikipedia: ESP32 hamuniverse: Tools, test equipment and shack accessories for the new ham radio operator dxzone: Radio Tools and Utilities for amateur radio operators dxengineering: Amateur Radio Equipment & Tools morsecode: Morse Code Keyer wikipedia: Morse code inksystem: CISS - continuous ink supply system wikipedia: Continuous ink system wikipedia: Three-phase electric power archives: Housing in New Zealand teara: Early houses... of New Zealand freedesktop: PulseAudio Volume Control kde: Plasma is a Desktop f-droid: What is F-Droid? i3wm: i3 is a tiling window manager, completely written from scratch. samsung: Galaxy S23 android: Android Debug Bridge (adb) wikipedia: Android Debug Bridge (adb) dolby: Dolby On: Record Dolby Sound and Video slackware: The Slackware Linux Project fedoraproject: Fedora Linux | The Fedora Project qtractor: Qtractor An Audio/MIDI multi-track sequencer ardour: Recording - Ardour DAW snapcraft: Snapcraft - Snaps are universal Linux packages wikipedia:) Advanced Package Tool (APT) is a free-software user interface that works with core libraries... discord: Discord - Group Chat That's All Fun & Games telegram: Telegram Messenger mumla-app: Mumble app for Android kd4c: HamClock – A Shack's Best Friend wikipedia: New Jersey Pine Barrens wikipedia:) Piney (Pine Barrens resident) blackriflecoffee: Veteran Founded - Black Rifle Coffee Company gfs: Beverages - Gordon Food Service homegoods: Home Decor Store and More | HomeGoods deathwishcoffee: Death Wish Coffee creality: Ender-5 Pro is a cubic-constructure 3D printer kit oggcamp: OGGCAMP southeastlinuxfest: SouthEast LinuxFest | Linux in the GNU/South dev: BSD / OS conferences 2025 / 2026 olfconference: OLF (formerly known as Ohio LinuxFest) is a grassroots conference for the GNU/Linux... wikipedia: Security clearance state: Security Clearances - United States Department of State wikipedia: Underground soft-rock mining investopedia: Day Trading: The Basics and How To Get Started investor: Thinking of Day Trading? Know the Risks. wikipedia: Peter Zeihan youtube: Zeihan on Geopolitics britannica: F-4, two-seat, twin-engine jet fighter-bomber wikipedia: Lockheed C-130 Hercules monroeengineering: Ball Bearings: Inner vs Outer Races Explained ibm: Tape storage is used for data backup in case of... q4os: Q4OS - desktop operating system opensuse: openSUSE is a Linux distribution that offers... wikipedia: OS/2 is a proprietary computer operating system for... selinc: SEL-3351 System Computing Platform wikipedia: List of Microsoft Windows versions mxlinux: MX Linux is a Linux distribution based on Debian stable wikipedia: Squid Game - Wikipedia starlabs: Linux Laptops - Powered by Open Source – Star Labs® xubuntu: Xubuntu is a stable, light and configurable desktop... Provide feedback on this episode.

The joys and headaches of self-hosting, a new Zigbee routing trick, and the ongoing BcacheFS vs. Debian showdown. Plus, why we're liking Open WebUI.

The joys and headaches of self-hosting, a new Zigbee routing trick, and the ongoing BcacheFS vs. Debian showdown. Plus, why we're liking Open WebUI.

# Container Size Optimization in 2025 ## Core Motivation- Container size directly impacts cost efficiency- Python containers can reach 5GB- Sub-1MB containers enable: - Incredible performance - Microservice architecture at scale - Efficient resource utilization ## Container Types Comparison ### Scratch (0MB base)- Empty filesystem- Zero attack surface- Ideal for compiled languages- Advantages: - Fastest deployment - Maximum security - Explicit dependencies- Limitations: - Requires static linking - No debugging tools - Manual configuration required Example Zig implementation:```zigconst std = @import("std");pub fn main() !void {   // Statically linked, zero-allocation server   var server = std.net.StreamServer.init(.{});   defer server.deinit();   try server.listen(try std.net.Address.parseIp("0.0.0.0", 8080));}``` ### Alpine (5MB base)- Uses musl libc + busybox- Includes APK package manager- Advantages: - Minimal yet functional - Security-focused design - Basic debugging capability- Limitations: - musl compatibility issues - Smaller community than Debian ### Distroless (10MB base)- Google's minimal runtime images- Language-specific dependencies- No shell/package manager- Advantages: - Pre-configured runtimes - Reduced attack surface - Optimized per language- Limitations: - Limited debugging - Language-specific constraints ### Debian-slim (60MB base)- Stripped Debian with core utilities- Includes apt and bash- Advantages: - Familiar environment - Large community - Full toolchain- Limitations: - Larger size - Slower deployment - Increased attack surface ## Modern Language Benefits ### Zig Optimizations```zig// Minimal binary flags// -O ReleaseSmall// -fstrip// -fsingle-threadedconst std = @import("std");pub fn main() void {   // Zero runtime overhead   comptime {       @setCold(main);   }}``` ### Key Advantages- Static linking capability- Fine-grained optimization- Zero-allocation options- Binary size control ## Container Size Strategy1. Development: Debian-slim2. Testing: Alpine3. Production: Distroless/Scratch4. Target: Sub-1MB containers ## Emerging Trends- Energy efficiency focus- Compiled languages advantage- Python limitations exposed: - Runtime dependencies - No native compilation - OS requirements ## Implementation Targets- Raspberry Pi deployment- ARM systems- Embedded devices- Serverless (AWS Lambda)- Container orchestration (K8s, ECS) ## Future Outlook- Sub-1MB container norm- Zig/Rust optimization- Security through minimalism- Energy-efficient computing

Foundations of Amateur Radio Have you ever come across a solution to a problem that you sort of knew you had, but didn't really appreciate until that moment? I had one of those recently. To set the scene, fair warning, we're not going to solve this today, we're still very much shaving yaks, but there's plenty to take away. So, the scene. I'm hosting my weekly net. It's going well. All the internet links are up and running again, thanks to the hard work behind the scenes of several unsung heroes, I can name a few, Bob VK6ZGN, John VK6RX and Rob VK6LD, but there are plenty of others whom I don't know and who have yet to stick up their hand to say, I was there. Regardless, thank you. Anyway, I'm hosting my weekly net, F-troop. A curious thing is occurring. Two of the stations are emitting a tone during their transmission. I'm pretty hot on how things sound, so I ask. We talk about it for a bit when Allen VK6XL comes in and tells us that according to his spectrum analyser it's a 1 kHz tone with harmonics and it's on all transmissions, just audible on two. This starts a conversation about spectrum analysers when Allen mentions that he's using an audio spectrum analyser, a piece of software running on his computer. The software has a copyright from 1999 and based on the documentation I saw, has lots of excellent functionality. I might even be able to run it on a Linux machine using WINE, but that's an adventure for another day. Randall VK6WR points out that I could use the spectrum display on Audacity. This is a much more current piece of software, but it's not intended for real-time use, it's what I use to edit the audio after recording my podcast. Not even sure if the spectrum display can show during recording, I've never tried. In the past I've used SoX, the Swiss Army knife of sound processing to create sonograms, but that too isn't real-time. Then it hits me. I have a real-time tool. I've been playing with it for weeks. GNU Radio. Surely it has a spectrum display, and indeed it does, several. So, I already have a tool, purpose built for processing signals, that can do all the things I'm looking for and some I've not yet imagined. Before I proceed, I'll remind you that we're in the middle of the Bald Yak project, so named because by the time we're done there won't be much hair left, if any. In case you're unfamiliar, the Bald Yak project aims to create a modular, bidirectional and distributed signal processing and control system that leverages GNU Radio. So, boldly clicking about, I set on the notion of making a block called "fosphor" work. Depending on which description you use, it's an Open Source, GPU-accelerated FFT and Waterfall display tool. What that means is that it uses a graphics processor to do the heavy lifting and has the ability to show signal levels across frequencies and on a waterfall display. Apparently it's a block for RTSA-like spectrum visualisation. I'm fairly sure that doesn't mean Railway Technical Society of Australasia or has any relationship with Reverse Total Shoulder Arthroplasty or the Road Transport and Safety Agency of Zambia. I'll admit that I didn't see the GPU part of that description until several days later. Had I seen it at the time, I would likely have carefully backed away and shelved the idea, but that's all water under the bridge. To cut to the chase, I have yet to make this show a single pixel. I smelled trouble for the first time when I discovered a post asking if anyone had gotten this to work on a current release of Debian. I came across a lovely post by what appears to be the author helping some hapless user, and I'll confess that's the camp I'm currently in, to make it work. I have no doubt that I can make it work, but that's going to take some effort. Now, at this point you might ask me why I wasted your time with this tale of woe? Well, the answer is simple. This is what "Yak Shaving" looks like. You solve a thousand little problems, one at a time, and if you manage to keep track of what you're doing and why, you can get stuff done. This applies here, but it also applies in your life, in radio, in antenna building, in making a contact, in participating in a contest, in activating a park. Each activity reveals myriad issues that you'll each need to resolve. The more practice you have at this, the better you'll get. I will point out that for me it's not without stress. When I go though intractable problems I'm often as grumpy as a bear with a sore tooth whilst my brain is running like a hamster in a wheel generating kilowatts of power. This too shall pass. Oh, because I know it's bothering you. RTSA, Real Time Spectrum Analyser, obvious, right? I'm Onno VK6FLAB

This show has been flagged as Clean by the host. What Is The Indie Archive? I'm Hairy Larry and you're listening to the Plain Text Programs podcast. The Indie Archive is a archival solution for indie producers. Since most indie producers run on a shoestring budget it's important that the Indie Archive is inexpensive to install and run. It's especially important that monthly expenses are minimal because a reasonable expense most months will sometimes be more than an indie producer can afford during some months. The first major constraint is cost. So I'll be talking about prices a lot in this podcast and get more technical in future podcasts about The Indie Archive. Indie Archive is an archival system which is different than a backup system. If you don't have a backup system do that first. My backup system uses the same tools as Indie Archive, rsync and rsnapshot. My brother uses the online backup service Carbonite. There are many other options. A good backup system runs automatically to back up everything frequently and preserve version history. It's also good to have backups offsite. An archival system, like Indie Archive, keeps multiple redundant copies across several hard drives on several systems in multiple locations. An archival system also checks file integrity as protection against file corruption or user error. When you have a project you really never want to lose, like a finished novel, a music album, a video, or any other major effort that involves significant work, that's when you need an archival system. So The Indie Archive does not automatically backup your projects every day. That's what your backup system should do. The Indie Archive is an archival system where the producer of the content decides what needs to be archived and when it needs to be archived and then manually moves a directory containing the files onto the Indie Archive carefully preserving the file's metadata during the transfer. Then these files are propagated over at least 7 hard drives on 4 different systems in three locations. File integrity checks are run daily comparing the files and reporting discrepancies. Two of the systems are kept in the studio where the content is produced. I call them the primary and secondary systems. They have a boot drive and two data drives each. One of the systems is kept offsite at a nearby location. I call it the remote system. It also has a boot drive and two data drives. If you have a more distant location where you can put a second remotes system you can have remotenear and remotefar systems. Otherwise ... The final system is somewhere in the cloud provided by a professional data storage provider. It has a single copy of the data and usually some additional data retention. The provider makes the backups of this data. This is the part that might involve a monthly bill. So, depending on the size of your file set, it could be free or it could cost so much a month. There are a lot of options for cloud storage providers. But first I'm going to discuss the three systems, primary, secondary, and remote, and how they function. As far as the hardware goes the systems are the same. Now, I"m a Linix guy and I do all my production work on Linux so I'm using Linux. I want to test the system on several versions of Linux and with BSD. I'm not a Mac guy or a Windows guy so I won't be going there. The software is open source and the required programs run on all three platforms so I'll let a Mac or Windows programmer test The Indie Archive for their systems. My guess is that the Mac fork will be easier than the Windows fork because of the file metadata. It might even be possible to add Mac folders to The Indie Archive running Linux but I'll let someone who actually has a Mac figure that out. I don't think the same is true for Windows. Windows file metadata is different and so if you want to preserve the metadata you will probably have to install The Indie Archive on Windows systems. So, I'm developing and deploying on Linux and I will also test on BSD. So far I have tested Debian, Ununtu, FreeBSD, Midnight BSD, and Xubuntu and The Indie Archive works fine all of these operating systems. So, back to the hardware. Pretty much any older system that will support at least three sata drives will work. I'm using older business class desktops, Dell and HP. I pulled mine out of storage but they are very inexpensive to buy if you're not like me with a shed full of old computer stuff. I just bought a Small Form Factor HP Desktop on ebay for $30 including tax and shipping. To clarify, it's best if the primary system supports 4 sata drives. The secondary and remote systems do not need an optical drive so they should support three sata drives but they can be run on two sata drives if you boot from the primaryfile drive. I am currently testing a remote system with two sata drives running Midnight BSD. The Dell desktops made a big deal about being green. I am open to suggestions on what would be the best energy efficient systems for The Indie Archive, because of both the cost of electricity and the impact on the environment. There are three drives on each system, a boot drive and two data drives. The boot drives can be SSD or spinning hard drives and need to be big enough to hold the OS comfortably. The data drives need to be large enough to hold the files you want to archive and they should be high quality spinning drives, I use the multi terrabyte HGST drives and I am also looking at some Dell drives made by HGST. There will be a data drive and a snapshot drive on each system. If they are not the same size the snapshot drives should be larger. I am testing with 3 terrabyte data drives and 4 terrabyte snapshot drives. Besides the main data set that is being archived the snapshot drives also hold the version history of files that have been deleted or changed. So, that's why they should be the larger drive. So my primary system has a primaryfiles directory with a 3 terrabyte drive mounted to it and a primarysnapshots directory with a 4 terrabyte drive mounted to it. Same for the secondary and remote systems. Now, so far I only had to buy one drive but generally speaking the six data drives will be the major expense in assembling the systems. So a good bargain on six 4 terrabyte drives could be $120 used or $270 new. And this is the most expensive part. I install used HGST drives all the time and rarely have problems with them. I have worked for clients who won't buy used, only new. Since the file integrity checks should give early warning on a drive failure and since there is a seven drive redundancy on the data files, if I were buying drives for The Indie Archive I'd go with six used 4 terrabyte HGST drives for $120. There is no reason not to use drives all the same size as long as the snapshot drives are large enough. The size of data drives you need depends on the size of your projects and the time it takes to do a project. Look at your hard drives on your working systems. Think about what directories you would like to see in archival storage. What is the total size of these directories? Check how many gigabytes these projects have consumed in the last year. Think forward a few years. Assume you will use more disc space in the future than you are now. Do some quick arithmetic and make a decision. Like I said I only had to buy one drive so far because I'm weird and I had a bunch of 3 terrabyte drives available. If I had to buy drives I probably would have tried to start larger. I am sure that at some point in the not to distant future, when I am running The Indie Archive and not developing it, I will have to upgrade my drives. The primary system is the console for The Indie Archive. When you copy a project onto The Indie Archive the directory goes into the primaryfiles directory. From there it is propagated out to the primarysnapshots directory, the secondary system, the cloud storage (if you are using it), and eventually to the remote systems. All of the data propagation is done with rsync using the archive setting that is desigend to preserve the file metadata like owner, permissions, and date last modified. So I have been using rsync with the archive setting to move the files from the work system to a usb drive and from the usb drive to the primaryfiles folder. At first I thought I would use an optical disc to move the files but optical discs do not preserve file metadata. Also I had some weird results with a usb flash drive because it was formatted fat32. fat32 does not support Linux metadata so if you're going to move projects over on a flash drive or a usb external drive be sure to format to ext4. Another way to move projects over to the primaryfiles directory is with tar compression. This preserves metadata when the files are extracted so this might be easier and it works with optical drives. If your directory will fit on an optical drive this also gives you another backup on another media. If you have any suggestions on how to transfer projects while preserving the file metadata let me know. I know that there are network options available but I am hesitant to recommend them because if I can transfer files from a system to the primary sytem over the LAN than anyone can do the same. Or delete files. Or accidentally delete directories. I kind of want to keep tight control over access to the primary system. It kind of ruins the archival quality of The Indie Archive if anyone on the LAN can accidentally mess with it. So, I am open to dialogue on these issues. I'm kind of where I want it to be easy to add projects to The Indie Archive but not too easy, if you know what I mean. I feel like having to sit down at the primary system and enter a password should be the minimum amount of security required to access the primary system. The primary system also runs file integrity checks daily from a cron job. All of the propagation and file integrity scripts have to be run as root to preserve the metadata since only root can write a file that it doesn't own. The secondary system is the ssh server for The Indie Archive. The primary system logs onto the secondary system as root using ssh. Security is managed with public and private keys so entering a password is not required. After the keys are set up for both the primary and remote systems, password authentication is disabled for the ssh server so only those two systems can ssh into the secondary system. When the propagation script is run on the primary system rsnapshot is used to create a current version of the primaryfiles directory in the primarysnapshots directory. Then the primary system uses rsync over ssh to make a copy of the primaryfiles directory to the secondaryfiles directory. Then the primary system logs onto the secondary system as root and rsnapshot is used to create a current version of the secondaryfiles directory on the secondarysnapshots directory. Finally, if cloud storage is being used, the primary system uses gcloud rsync to make a copy of the primaryfiles directory to a google cloud storage bucket archive. I have this bucket set to 90 days soft delete. If you are using another type of cloud storage on Google, AWS, Mega, or other storage providers this command will have to be adjusted. The reason I chose the gcloud archive bucket is because of the storage cost per gigabyte. They have the cheapest cost per gigabyte that I found. This will keep the monthly bill low. Once a day the primary system runs the file integrity check from a cron job using rsync to compare the primaryfiles directory to the current version, alpha.0, in the primarysnapshots directory logging any discrepancies. It then does the same comparing primaryfiles to secondaryfiles and to the current version in the secondarysnapshots directory, logging discrepancies and notifying the maintainer of any discrepancies. Notification is done by email using curl and an SMTP provider. The remote system runs on it's own schedule, logging into the secondary system daily to copy data from secondaryfiles to remotefiles and then using rsnapshot to make a copy of remotefiles to the remotesnapshots directory. Since it's run on a daily schedule it uses rsnapshot with the standard daily, weekly, monthly, and yearly backups. The remote system also runs a daily file integrity check comparing remotefiles to the current version on remotesnapshots and comparing remotefiles to both data directories on the secondary system, again logging the results and notifying the maintainer of any discrepancies. If there is an outward facing static IP at the location with the primary and secondary systems then the remote system can use that static IP to ssh into the secondary system. If there is not a static IP then the remote system uses a DuckDNS subdomain to log onto the secondary system. Any system using the same router as the secondary system can run a cron job to update DuckDNS with the current IP address. Since a static IP is a monthly expense it's important that there's an alternative that does not require paying another bill. So the secondary system has the ssh server but it doesn't really do much. Both of the other systems connect to it and use it as the junction for data propagation and file integrity checks. So, as you can tell, there's a lot going on to make The Indie Archive work. Future podcasts will get down into the details and discuss some of the choices I had to make and why I made them. The funny thing about this project is that the actual code was the least amount of work. Figuring out exactly how rsync and rsnapshot work together was quite a bit of work. Configuration for both rsnapshot and ssh took a bit of head scratching. Then there were a few user id tricks I had to work through to make The Indie Archive usable. But, by far the most work was writing The Indie Archive installation document detailing each step of installing the software on three systems. It's been fun so far. If you have input I always appreciate the help. I get quite a bit of help on Mastodon. If you go to home.gamerplus.org you will find the script for this podcast with the Mastodon comment thread embedded in the post. This podcast is being read from a document that is a work in progress. Current versions of the What Is The Indie Archive document will be posted at codeberg when I'm ready to upload the project. Thanks for listening. https://www.theindiearchive.com/ Provide feedback on this episode.

This show has been flagged as Explicit by the host. table td.shrink { white-space:nowrap } hr.thin { border: 0; height: 0; border-top: 1px solid rgba(0, 0, 0, 0.1); border-bottom: 1px solid rgba(255, 255, 255, 0.3); } New hosts Welcome to our new host: iota. Last Month's Shows Id Day Date Title Host 4283 Wed 2025-01-01 Toley bone repair MrX 4284 Thu 2025-01-02 HPR Developer Information Ken Fallon 4285 Fri 2025-01-03 What is on My Podcast Player 2024, Part 5 Ahuka 4286 Mon 2025-01-06 HPR Community News for December 2024 HPR Volunteers 4287 Tue 2025-01-07 Schedule audio recordings on the command line Kevie 4288 Wed 2025-01-08 God's Pantry Food Bank SolusSpider 4289 Thu 2025-01-09 Welcome Nuudle Some Guy On The Internet 4290 Fri 2025-01-10 Playing Civilization IV, Part 5 Ahuka 4291 Mon 2025-01-13 AM on the Nyquist Prompt Lee 4292 Tue 2025-01-14 Firefox Add-ons Reto 4293 Wed 2025-01-15 HTTrack website copier software Henrik Hemrin 4294 Thu 2025-01-16 Schedule audio recordings on the command line - A bit of fine tuning Kevie 4295 Fri 2025-01-17 Three Holiday Hacks from 2023 Ken Fallon 4296 Mon 2025-01-20 Crafting Interpreters iota 4297 Tue 2025-01-21 Let me tell you a bit about FOSDEM Trollercoaster 4298 Wed 2025-01-22 Playing a Blu-ray disk directly from Linux. SolusSpider 4299 Thu 2025-01-23 Building your own Debian images for your Raspberry Pi dnt 4300 Fri 2025-01-24 Isaac Asimov: I, Robot Ahuka 4301 Mon 2025-01-27 Wide screen, synth, e-bike, led matrix clock and jewellery making Lee 4302 Tue 2025-01-28 New Campaign Trail Playthrough Lochyboy 4303 Wed 2025-01-29 TIL two things to do with firewalld dnt 4304 Thu 2025-01-30 Travel Pouch for Cables Ahuka 4305 Fri 2025-01-31 My weight and my biases Trollercoaster Comments this month These are comments which have been made during the past month, either to shows released during the month or to past shows. There are 43 comments in total. Past shows There are 7 comments on 4 previous shows: hpr4070 (2024-03-08) "Civilization III" by Ahuka. Comment 1: Red Orm on 2025-01-01: "hpr4070 :: Civilization III" Comment 2: Kevin O'Brien on 2025-01-02: "Thank you" hpr4260 (2024-11-29) "The Golden Age" by Ahuka. Comment 1: Moss Bliss on 2025-01-01: "Penguicon" Comment 2: Kevin O'Brien on 2025-01-01: "Sorry to hear it" hpr4274 (2024-12-19) "The Wreck - I'm alright!" by Archer72. Comment 3: Annebelle on 2025-01-15: "Mark's Niece" hpr4280 (2024-12-27) "Isaac Asimov: The Foundation" by Ahuka. Comment 1: Red Orm on 2025-01-01: "hpr4280 :: Isaac Asimov: The Foundation" Comment 2: Kevin O'Brien on 2025-01-02: "Thank you" This month's shows There are 36 comments on 20 of this month's shows: hpr4286 (2025-01-06) "HPR Community News for December 2024" by HPR Volunteers. Comment 1: Kevin O'Brien on 2025-01-09: "Yes I did have that many books" hpr4287 (2025-01-07) "Schedule audio recordings on the command line" by Kevie. Comment 1: Kevie on 2025-01-07: "example radio stream"Comment 2: Henrik Hemrin on 2025-01-08: "Inspiring episode" hpr4288 (2025-01-08) "God's Pantry Food Bank" by SolusSpider. Comment 1: Malink on 2025-01-08: "God's Food Pantry"Comment 2: archer72 on 2025-01-08: "Thank you for this show"Comment 3: ClaudioM on 2025-01-08: "Great Episode, SolusSpider!"Comment 4: Kevin O'Brien on 2025-01-09: "Great show!"Comment 5: Paulj on 2025-01-10: "Great Episode"Comment 6: SolusSpider - Peter Paterson on 2025-01-27: "Appreciation" hpr4289 (2025-01-09) "Welcome Nuudle" by Some Guy On The Internet. Comment 1: Trey on 2025-01-09: "Say Cheese..." hpr4291 (2025-01-13) "AM on the Nyquist Prompt" by Lee. Comment 1: Ken Fallon on 2025-01-11: "New Ham you say"Comment 2: paulj on 2025-01-13: "Thank you!" hpr4292 (2025-01-14) "Firefox Add-ons" by Reto. Comment 1: Ken Fallon on 2025-01-11: "Great Tips"Comment 2: Trey on 2025-01-14: "Hesitant about add-ons"Comment 3: Reto on 2025-01-17: "in reply to Ken" hpr4293 (2025-01-15) "HTTrack website copier software" by Henrik Hemrin. Comment 1: Ken Fallon on 2025-01-11: "Great tip" hpr4294 (2025-01-16) "Schedule audio recordings on the command line - A bit of fine tuning" by Kevie. Comment 1: Ken Fallon on 2025-01-14: "Nice to see the progression" hpr4295 (2025-01-17) "Three Holiday Hacks from 2023" by Ken Fallon. Comment 1: Ken Fallon on 2025-01-14: "Update after a year in the queue" hpr4296 (2025-01-20) "Crafting Interpreters" by iota. Comment 1: archer72 on 2025-01-19: "First show" hpr4297 (2025-01-21) "Let me tell you a bit about FOSDEM" by Trollercoaster. Comment 1: Trey on 2025-01-21: "Thank you for sharing."Comment 2: paulj on 2025-01-28: "See you there?!"Comment 3: Trollercoaster on 2025-01-31: "Thanks for the comments!" hpr4298 (2025-01-22) "Playing a Blu-ray disk directly from Linux." by SolusSpider. Comment 1: archer72 on 2025-01-19: "MakeMKV Beta key" hpr4299 (2025-01-23) "Building your own Debian images for your Raspberry Pi" by dnt. Comment 1: Reto on 2025-01-30: "Firmware blob"Comment 2: dnt on 2025-01-31: "Re: Firmware blob" hpr4300 (2025-01-24) "Isaac Asimov: I, Robot" by Ahuka. Comment 1: Ken Fallon on 2025-01-15: "iRobot"Comment 2: Stilvoid on 2025-01-27: "Great series"Comment 3: Kevin O'Brien on 2025-01-27: "More to come" hpr4301 (2025-01-27) "Wide screen, synth, e-bike, led matrix clock and jewellery making" by Lee. Comment 1: Ken Fallon on 2025-01-20: "Wasting shows - OWWW !!!"Comment 2: brian-in-ohio on 2025-01-27: "avrdude" hpr4302 (2025-01-28) "New Campaign Trail Playthrough" by Lochyboy. Comment 1: Ken Fallon on 2025-01-28: "Spam ?" hpr4304 (2025-01-30) "Travel Pouch for Cables" by Ahuka. Comment 1: Trey on 2025-01-30: "Perfect timing" hpr4310 (2025-02-07) "Playing Civilization IV, Part 6" by Ahuka. Comment 1: Ken Fallon on 2025-01-15: "Not a gamer"Comment 2: Kevin O'Brien on 2025-01-15: "Well, it is math, really" hpr4311 (2025-02-10) "LoRaWAN and the Things Stack" by Lee. Comment 1: Ken Fallon on 2025-01-15: "Great insignt into LoRaWAN" hpr4330 (2025-03-07) "GIMP: Fixing Photos" by Ahuka. Comment 1: Ken Fallon on 2025-01-15: "Great Tips" Mailing List discussions Policy decisions surrounding HPR are taken by the community as a whole. This discussion takes place on the Mailing List which is open to all HPR listeners and contributors. The discussions are open and available on the HPR server under Mailman. The threaded discussions this month can be found here: https://lists.hackerpublicradio.com/pipermail/hpr/2025-January/thread.html Events Calendar With the kind permission of LWN.net we are linking to The LWN.net Community Calendar. Quoting the site: This is the LWN.net community event calendar, where we track events of interest to people using and developing Linux and free software. Clicking on individual events will take you to the appropriate web page. Provide feedback on this episode.

On the eve of episode 600, we introduce our next challenge and explore the new wave of Linux phones.Sponsored By:Tailscale: Tailscale is a programmable networking software that is private and secure by default - get it free on up to 100 devices! 1Password Extended Access Management: 1Password Extended Access Management is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps. Support LINUX UnpluggedLinks:

This show has been flagged as Clean by the host. On https://raspi.debian.net/ one time the image was broken, so I had to built it myself. https://salsa.debian.org/raspi-team/image-specs The makefile can create you a yaml file for your pi model and your release of Debian. Then you can edit that file to do whatever you want to the system, before making it into an image. For example: - In the section apt/packages, add sudo. - Create a user, add it to the sudo group, with password "" and /bin/bash for shell - Create a .ssh for your user, and echo in your SSH public keyboard That way you can boot into your new Debian system without having to have a screen. As soon as you login, the first thing you should do is reset your own password. By doing -p "" we set the password to empty. If we had not done -p "" the password would have been empty but locked, so you wouldn't be able to sudo. Also go ahead and lock your root user password, which you could also do from the file. Build your image, and go. Provide feedback on this episode.

video: https://youtu.be/r3SbIXFfxwI This week we are going to actually, truly this time for reals..talk about Satellites buzzing above your head, and once you're paranoid enough, we're also going to actually, for reals, probably, almost guaranteed talk about an OS dedicated to shredding your data. Welcome to Destination Linux, where we discuss the latest news, hot topics, gaming, mobile, and all things Open Source & Linux. We will also be discussing Debian's latest release. Now let's get this show on the road toward Destination Linux! Forum Discussion Thread (https://destinationlinux.net/forum) Download as MP3 (https://aphid.fireside.fm/d/1437767933/32f28071-0b08-4ea1-afcc-37af75bd83d6/2de4e7e2-f2b9-41a3-8893-adecdc67c0cd.mp3) Support the show by becoming a patron at tuxdigital.com/membership (https://tuxdigital.com/membership) or get some swag at tuxdigital.com/store (https://tuxdigital.com/store) Hosted by: Ryan (DasGeek) = dasgeek.net (https://dasgeek.net) Jill Bryant = jilllinuxgirl.com (https://jilllinuxgirl.com) Michael Tunnell = michaeltunnell.com (https://michaeltunnell.com) Chapters: 00:00 Intro 02:59 Community Feedback 11:39 Sandfly Security 13:28 What's New in Debian 12.9 16:08 MX Linux 23.5 19:26 What about Ubuntu? 19:59 ShredOS: Destroy Data Like a Pro 28:56 Tinfoil Hats On: Conspiracy Corner 35:43 Satellites The New Mobile Connection 40:38 Starlink vs. Natural Disasters 46:19 Gaming: Healing Trauma One Tetris Block at a Time 52:58 Starlink: A Quick Follow-Up 53:42 Event Spotlight: Red Hat Summit 54:49 Software Spotlight: Kando's Killer Features 57:30 Tip: Using AI more effectively 59:58 Support the Show Links: Community Feedback https://destinationlinux.net/comments (https://destinationlinux.net/comments) https://destinationlinux.net/forum (https://destinationlinux.net/forum) Sandfly Security https://destinationlinux.net/sandfly (https://destinationlinux.net/sandfly) What's New in Debian 12.9 https://9to5linux.com/debian-12-9-bookworm-arrives-with-72-bug-fixes-and-38-security-updates (https://9to5linux.com/debian-12-9-bookworm-arrives-with-72-bug-fixes-and-38-security-updates) MX Linux 23.5 https://9to5linux.com/mx-linux-23-5-released-with-xfce-4-20-and-linux-kernel-6-12-lts-based-on-debian-12-9 (https://9to5linux.com/mx-linux-23-5-released-with-xfce-4-20-and-linux-kernel-6-12-lts-based-on-debian-12-9) ShredOS: Destroy Data Like a Pro https://www.msn.com/en-us/general/general/shredos-is-an-entire-os-just-for-destroying-data/ar-AA1wR6t9?ocid=BingNewsVerp (https://www.msn.com/en-us/general/general/shredos-is-an-entire-os-just-for-destroying-data/ar-AA1wR6t9?ocid=BingNewsVerp) Satellites The New Mobile Connection https://jasondeegan.com/elon-musk-has-done-it-iphones-and-android-smartphones-can-now-use-his-satellites-to-make-calls-anywhere-on-earth/ (https://jasondeegan.com/elon-musk-has-done-it-iphones-and-android-smartphones-can-now-use-his-satellites-to-make-calls-anywhere-on-earth/) Gaming: Healing Trauma One Tetris Block at a Time https://www.health.com/playing-tetris-cope-trauma-8721518 (https://www.health.com/playing-tetris-cope-trauma-8721518) Event Spotlight: Red Hat Summit https://www.redhat.com/en/summit (https://www.redhat.com/en/summit) Software Spotlight: Kando's Killer Features https://kando.menu (https://kando.menu) Support the Show https://tuxdigital.com/membership (https://tuxdigital.com/membership) https://store.tuxdigital.com/ (https://store.tuxdigital.com/)

This week we get an update from the Ovens Data Center. Steve migrates a box from Ubuntu to Red Hat, and of course we answer your questions! -- During The Show -- 00:50 Intro Deadly cold weather Oven's data center update Spending "cloud money" on local media 05:55 Custom RHEL ISO ISO build system Red Hatters building all kinds of custom ISOs Why a custom ISO Red Hat Doc (https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html-single/composing_a_customized_rhel_system_image/index) Why switch to RHEL Professional Linux support Mixed environment? 20:20 CES POE powered TV ArsTechnica Atricle (https://arstechnica.com/gadgets/2025/01/the-8-most-interesting-pc-monitors-from-ces-2025/) Basecase (https://getbasecase.com/) Crowd funding Questions about interfaces Powered over barrel connector Very expensive 29:58 News Wire Firefox 134 - mozilla.org (https://www.mozilla.org/en-US/firefox/134.0/releasenotes/) Flatpak 1.16 - github.com (https://github.com/flatpak/flatpak/releases/tag/1.16.0) KDE Frameworks 6.10 - kde.org (https://kde.org/announcements/frameworks/6/6.10.0/) Tails 6.11 - blog.torproject.org (https://blog.torproject.org/new-release-tails-611/) Debian 12.9 - debian.org (https://www.debian.org/News/2025/20250111) 16GB Raspberry PI 5 - raspberrypi.com (https://www.raspberrypi.com/news/16gb-raspberry-pi-5-on-sale-now-at-120/) Nvidia Desktop AI "Super Computer" - theverge.com (https://www.theverge.com/2025/1/8/24339195/nvidia-digits-ai-supercomputer-in-person-photos-small) Phi-4 Fully Open-Source - venturebeat.com (https://venturebeat.com/ai/microsoft-makes-powerful-phi-4-model-fully-open-source-on-hugging-face/) Sky-T1-32B-Preview - techcrunch.com (https://techcrunch.com/2025/01/11/researchers-open-source-sky-t1-a-reasoning-ai-model-that-can-be-trained-for-less-than-450/) zdnet.com (https://www.zdnet.com/article/450-and-19-hours-is-all-it-takes-to-rival-openais-o1-preview/) 30:55 Social Media/Decentralized Networks Mastodon shifting to being owned by a non-profit Creator wants users in control of Mastodon People are choosing to embrace the open source decentralized option Network effect is starting to weaken in favor of interoperability ArsTechnica (https://arstechnica.com/tech-policy/2025/01/mastodon-becomes-nonprofit-to-make-sure-its-never-ruined-by-billionaire-ceo/) 36:15 OpenZFS 2.3 Support for Linux 4.18, up to Linux 6.12 LTS Adding new devices to existing RaidZ pool 9 to 5 Linux (https://9to5linux.com/openzfs-2-3-is-out-with-linux-6-12-support-raidz-expansion-fast-dedup-and-more) 38:30 Red Hat In-Vehical OS Standardized domains ISO 26262 Automotive Safety Integrity Level B (ASIL-B) thefastmode.com (https://www.thefastmode.com/technology-solutions/38950-red-hat-achieves-functional-safety-certification-for-in-vehicle-operating-system) 41:10 ZFS/QCOW2 - Carey Double writes ZFS doesn't support trim Options Snapshots Copying a QCOW2 file can be tricky 47:54 Daughters Internet Access - Vlad Shut off Internet access entirely Take the device Internet is different than technology 49:20 Politics in Software - Max Does the project throw it in your face? Be the bigger person Don't tolerate treating people badly because they don't agree with you -- The Extra Credit Section -- For links to the articles and material referenced in this week's episode check out this week's page from our podcast dashboard! This Episode's Podcast Dashboard (http://podcast.asknoahshow.com/423) Phone Systems for Ask Noah provided by Voxtelesys (http://www.voxtelesys.com/asknoah) Join us in our dedicated chatroom #GeekLab:linuxdelta.com on Matrix (https://element.linuxdelta.com/#/room/#geeklab:linuxdelta.com) -- Stay In Touch -- Find all the resources for this show on the Ask Noah Dashboard Ask Noah Dashboard (http://www.asknoahshow.com) Need more help than a radio show can offer? Altispeed provides commercial IT services and they're excited to offer you a great deal for listening to the Ask Noah Show. Call today and ask about the discount for listeners of the Ask Noah Show! Altispeed Technologies (http://www.altispeed.com/) Contact Noah live [at] asknoahshow.com -- Twitter -- Noah - Kernellinux (https://twitter.com/kernellinux) Ask Noah Show (https://twitter.com/asknoahshow) Altispeed Technologies (https://twitter.com/altispeed)

We make our big Linux predictions for 2025, but first, we score how we did for 2024.Sponsored By:Tailscale: Tailscale is a programmable networking software that is private and secure by default - get it free on up to 100 devices! 1Password Extended Access Management: 1Password Extended Access Management is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps. Support LINUX UnpluggedLinks:

It's the year-in-review show, and the Steam survey, and the Linux Kernel commit review. There's also Proxmox news, news on Debian 13, and questions about x.org. Then the guys dove into their predictions from last year, and made new predictions for 2025. Check it out to see how they did! You can find the show notes at https://bit.ly/4fMbHnK and happy new year! Host: Jonathan Bennett Co-Hosts: Rob Campbell, Jeff Massie, and Ken McDonald Want access to the video version and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Foundations of Amateur Radio Life is messy. This is not a revelation. We attempt to organise this chaos by using all kinds of magic incantations, to-do lists, new year resolutions, plans, projects and anything else you might have in your arsenal. The same chaos reigns, in how we make progress. Some days are harder than others. I'm mentioning this because I've seen a couple of amateurs share all the things they didn't achieve last year. If we used that metric, I could point out that I didn't win the lotto, likely, neither did you, or your friends. I didn't get on HF to make a contact, I didn't put up a 6BTV antenna, the list is never ending. In other words, it's easy to say what you didn't do. What if you turned this upside down? I hosted my weekly radio net for its thirteenth year, I had my beacon heard more times than I have bandwidth available to check right now, I started a project that looks like it's going to keep me busy for some time to come. I've been working my way through a full system crash and I can see light out the end of the tunnel, six months later. So, don't beat yourself up about all the things you didn't do. Speaking of that, making plans is fine, but don't use the to-do list as a way to describe all the things you didn't do, instead, think of it as an inspiration for what to do when you're bored. Chaotic aspects of life aside, the same disorder reigns supreme in the software world. GNU Radio on which I'm basing the "Bald Yak" project is just as chaotic. New versions are released regularly. Right now it's at version 3.10.something. On my Mac, it's 3.10.11.0, on my Debian machine it's 3.10.5.1. Depending on which operating system you use it's different, there's a wiki table, but that's out of date, before you ask, yes, I've requested an account on the GNU Radio wiki so I can fix it. This only scratches the surface of things that are, for want of a better word, disharmonious. This might be perceived as chaos, but the reality is that this exists throughout the computing world. If you're not a software developer you might have only scratched the surface of this, trying to open a document written for a different version of your word processor, installing a new operating system and finding software that was working perfectly before, suddenly doesn't. GNU Radio is a complex beast. The latest release has 5,570 files, making nearly 80,000 lines of source and related code. The git repository shows 579 authors and I will point out that it's likely there are more, since the project was first released in 2001, but the git repository only goes back to 2006. Said differently this is a big project that nobody is likely to hold entirely inside their brain. It means that things change without everyone involved knowing about it. I'm raising this because we're diving into a complex environment that we're using to build ourselves a new thing. At this point you might want to run for the hills. I understand. One of the great things about society is our ability to abstract. It's why I'm typing on a keyboard with letters of the alphabet and not punching holes into cardboard. It's why I'm looking at a screen with graphics and controlling images with my finger, rather than looking at dozens of blinkenlights that provide a lifetime of memories. GNU Radio is the abstraction of radio. That's the whole point. It allows us to pick up a signal block, tell it to make a kilohertz tone, connect it to my loudspeaker so sound comes out. It looks simple on the outside, but underlying that is a level of complexity that you will only encounter when it comes to raise its chaotic head. This all to say that I did make some progress. When you play an audio tape at half speed, or play a single at 33 RPM instead of 45 RPM, the result is that the audio is slower, but it also means that the audio is lower in frequency. It led me to wonder if I can use that phenomenon to help me hear better. What if I could play audio slower and have my ears be able to hear better. Right now, anything above 2 kHz is hard to hear. I keep asking my partner, "Say again?", "Sorry, what?", "Sorry, I didn't hear that." Hearing aids seem to attempt to deal with the problem by amplifying the sounds you cannot hear. This results in squealing and all manner of other unpleasantness. It also doesn't seem to help me. Instead I wondered if I could halve a 4 kHz tone to 2 kHz, I could hear it. So, if I play audio at half speed, I can hear more. Unfortunately it would also mean that I would be running behind all the time. So, what if I could play at half speed and remove half the audio samples? I can confirm that with simple tones this works and I did this inside GNU Radio with pretty much one block, "Keep M in N samples", in this case, keep one in two. I halved the sample rate and all was well. Why is this significant? Well, aside from that it might help me hear better, it represents the first time I had an idea that I could try out in realtime and see what it did. For a bunch of reasons I haven't yet moved on to actually hearing it, by setting the source as the microphone and the sink as my headphones, but that's on the cards soon. Making progress is a series of chaotic steps that take you on a journey. If you're lucky, the journey will get you where you want to go. I'm Onno VK6FLAB

There's been a bit of a shakeup this week, with Torvalds criticizing Docker, Rustls dominating the TLS performance war, and Intel releasing a graphics card while "retiring" their CEO. Then, Flathub and KDE are working on their finances, OpenVPN has modernized its kernel driver, and Steam Machines may be back! Oh, and don't forget OBS 31 or the potential security issue with OpenWRT! For tips, we have eza as an ls replacement, pv for pipe progress viewing, IMSProg for EEPROM hacking, and HandlePowerKey for customizing what your machine does when you hit the power button. Grab the show notes at https://bit.ly/4gl1VtB and enjoy! Host: Jonathan Bennett Co-Hosts: Rob Campbell, David Ruggles, and Jeff Massie Want access to the video version and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

The boys return to battle and try to convince everyone that they've found the perfect distro! ==== Special Thanks to Our Patrons! ==== https://thelinuxcast.org/patrons/ ===== Follow us

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

In this detailed episode, Mikah Sargent tackles a diverse range of tech challenges, from bulk email deletion and password management to troubleshooting a freezing MacBook and exploring unconventional monitor setups. Listeners will gain practical solutions for common tech frustrations and even insights into Linux encryption! Vernon wants to know how to quickly delete over 83,000 emails in their Gmail account. Miroslav wants to know if there's a way to export passwords from Apple's Password Manager on iPhone or iPad without using a Mac or PC. Charlotte wants to know why her 2020 MacBook Air keeps freezing when using Zoom and Chrome, and how to alleviate the issue. Charles wonders how to properly set up full disk encryption on his Debian and Manjaro Linux installations. Mark wants to know if a 55-inch QLED TV can be a good replacement for his current ultrawide monitor for text-based work. Host: Mikah Sargent Download or subscribe to Hands-On Tech at https://twit.tv/shows/hands-on-tech Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit

This week we pontificate on Gnome OS and whether KDE and Gnome really need their own distros, the much-delayed progress in Wayland development that's finally happening, and whether here's really a trend from Ubuntu back to Debian. We discuss the Pi CM5 announcement, the new UEFI bootkit announcement, and the leaked steam controller designs. For tips we have dstat for system monitoring, and SSH agent forwarding to forward your SSH keys on remote systems. The show notes are at https://bit.ly/4idT1Qb and until next week! Host: Jonathan Bennett Co-Host: Rob Campbell Want access to the video version and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Tim Flink, a Senior Quality Engineer from Red Hat joins us to talk about AI on Fedora. This week Noah and Steve talk about their struggles with the Linux Desktop. -- During The Show -- 02:30 Helping a Non-techy friend - Sleuth The plan Locked down second hand Android device Ting Flex plan Tracar (https://www.traccar.org/) JMP.Chat Sim Plan Mint Mobile Steer people away from sms/calls Matrix Telegram etc 08:47 News Wire Calibre 7.21 - calibre-ebook.com (https://download.calibre-ebook.com/7.21.0/) Cmake 3.31 - cmake.org (https://cmake.org/cmake/help/latest/release/3.31.html) Curl 8.11 - curl.se (https://curl.se/ch/) Scraperr 1.0 - github.com (https://github.com/jaypyles/Scraperr) LXQT 2.1 - lxqt-project.org (https://lxqt-project.org/release/2024/11/05/release-lxqt-2-1-0/) Ubuntu Touch OTA-6 - ubports.com (https://ubports.com/en/blog/ubports-news-1/post/ubuntu-touch-ota-6-focal-release-3942) Debian 12.8 - debian.org (https://www.debian.org/News/2024/20241109) Torvalds 2.6% Performance Patch - theregister.com (https://www.theregister.com/2024/11/06/torvalds_patch_linux_performance/) 3800% Performance Improvement - phoronix.com (https://www.phoronix.com/news/Intel-Linux-3888.9-Performance) CRON#TRAP Malware - thehackernews.com (https://thehackernews.com/2024/11/new-crontrap-malware-infects-windows-by.html) AMD OLMo LLM - computerworld.com (https://www.computerworld.com/article/3600762/amd-rolls-out-open-source-olmo-llm-to-compete-with-ai-giants.html) 09:58 Tim Flink - Senior Quality Engineer - Red Hat Where should you start with AI? PyTorch (https://pytorch.org/) Orders of magnitude faster on a GPU VRAM is the biggest factor How is Fedora using AI? OpenQA (https://fedoraproject.org/wiki/OpenQA) RocM and PyTorch Efforts around packaging Why are you focusing on RocM? Where is a good place to help out? AI/ML SIG (https://fedoraproject.org/wiki/SIGs/AI-ML) Containers coming What does open source mean to you? 22:28 Kubuntu and Docker Broken - Michael Fisher Docker Compose Pastebin (https://pastebin.com/EHa4sHGQ) Docker Logs Pastebin (https://pastebin.com/UWE7Ss1a) Docker internal DNS having issues 24:36 What's the deal with Linux Desktop Environments? Steve's workflow Static vs Dynamic approach How close can I get to immutable with flatpaks Software KVM Synergy (proprietary) Barrior (abandoned) Input Leap (https://github.com/input-leap/input-leap) 3 Monitors, 2 horizontal and 1 vertical KDE hates Steve NVIDIA drivers Why is it so hard to put software in hardware? Ubuntu won't say its up to date because of Ubuntu Pro Can't install LibreOffice on Ubuntu because of Snap All operating systems have issues 45:20 MacOS vs EndlessOS vs Windows 10 Mac Book No working battery Disposable 3+ Hours just to install the OS ThinkPad with EndlessOS Flatpak for Office 365 Windows Can't upgrade to windows 11 Windows 11 requires online account Windows 11 requires TPM chip 2 People both chose the EndlessOS Endless OS No forced updates All the icons right there Open source Allows you to fix things Unix philosophy The answers are there -- The Extra Credit Section -- For links to the articles and material referenced in this week's episode check out this week's page from our podcast dashboard! This Episode's Podcast Dashboard (http://podcast.asknoahshow.com/415) Phone Systems for Ask Noah provided by Voxtelesys (http://www.voxtelesys.com/asknoah) Join us in our dedicated chatroom #GeekLab:linuxdelta.com on Matrix (https://element.linuxdelta.com/#/room/#geeklab:linuxdelta.com) -- Stay In Touch -- Find all the resources for this show on the Ask Noah Dashboard Ask Noah Dashboard (http://www.asknoahshow.com) Need more help than a radio show can offer? Altispeed provides commercial IT services and they're excited to offer you a great deal for listening to the Ask Noah Show. Call today and ask about the discount for listeners of the Ask Noah Show! Altispeed Technologies (http://www.altispeed.com/) Contact Noah live [at] asknoahshow.com -- Twitter -- Noah - Kernellinux (https://twitter.com/kernellinux) Ask Noah Show (https://twitter.com/asknoahshow) Altispeed Technologies (https://twitter.com/altispeed) YouTube Show Notes & Podcast Download available at http://podcast.asknoahshow.com Support us on Patreon ------------- https://www.patreon.com/linuxdelta --- Connect with us! --- On Twitter ------------------------ https://twitter.com/asknoahshow On Facebook ----------------------- https://www.facebook.com/asknoahshow Email The Show -------------------- live@asknoahshow.com • Ask Noah Show © CC-BY-ND 2021 •

This show has been flagged as Clean by the host. Synopsis In this episode Rho`n records his further adventures in installing GuixSD onto a Mac Mini computer. Guix has a graphical text based installer. It is reminiscent of the mid to late 90s Debian installers. Even with its old school feel, the installer is very nice. It is well laid out, has good onscreen description for each step of the installation process, and provides ample configuration selections from language, to to key board layout, to desktop and software selection. References Guix website Instructions for installing Guix as the main OS Rii 2.4G Mini Wireless Keyboard with Touchpad Mouse,Lightweight Portable Wireless Keyboard Controller with USB Receiver Remote Control for Windows/ Mac/ Android/ PC/Tablets/ TV/Xbox/ PS3. X1-Black - EBay item Attribution The transition sound used between audio clips is found on freesound.org: Name: Harp Transition Music Cue Author: DanJFilms License: Creative Commons Zero Provide feedback on this episode.

Forking: Ein Grundpfeiler von Open Source mit eigenen HerausforderungenDas tolle an Open Source? Man hat das Recht, die Software zu modifizieren und auch in ihrer modifizierten Form zu verbreiten. Wenn man plant, das Open Source Projekt zu modifizieren und unabhängig von seiner Ursprungsform weiterzuentwickeln, nennt man dies Fork bzw. Forking. Das klingt erstmal super und nach viel Freiheit. Doch Forking hat ganz eigene Herausforderungen.In dieser Episode klären wir, was Forks sind, welche populären Forks es in der Geschichte von Open Source gegeben hat und was die Motivation dieser Forks war, welche Projekt-Forks es nicht zur Popularität geschafft haben, warum Forking auch als Druckmittel genutzt werden kann und warum es eine Art Grundrecht auf GitHub ist, welche (oft unsichtbaren) Herausforderungen Forking mit sich bringt und klären, was das Urheberrecht und der Digital Millennium Copyright Act (DMCA) aus den USA damit auf sich hat..Bonus: Bei Debian hieß der Firefox Browser mal Iceweasel.Unsere aktuellen Werbepartner findest du auf https://engineeringkiosk.dev/partners Das schnelle Feedback zur Episode:

We start with Quantum Computing and RSA, Chat about Nvidia and the AI craze, and end with the the Wordpress drama. In between we cover updates to Ardour, Calibre, KDE Plasma, and Clonezilla. And finally there's some kernel news, like proxy execution for better performance, and OpenZFS coverage. For tips we have pathchk for filesystem portability checks, how-to for freezing a package version in Ubuntu, and an intro to the network tool netcat. The show notes are at https://bit.ly/40awxsQ and enjoy! Host: Jonathan Bennett Co-Hosts: Ken McDonald and Jeff Massie Want access to the video version and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

In this podcast Jon Westfall and I discuss: GNU APL J901 for iPad: Inspired by APL. APL & J both created by Ken Iverson Google is developing tools to let you run Debian in a VM on android Finger mouse vs. vertical mouse vs. conventional mouse Apple Watch Vitals is detecting illnesses before they appear. Oura ring has done this for a number of years now. Is it useful to know that you're about to get sick? Heart rate monitor Blood Pressure needs to be taken properly:  Finger mouse vs. vertical mouse vs. conventional mouse Android OS 15 Mac mini M4, iPad mini 7?

This week the guys are chatting about Snap improvements, the new Ryzen 9 9000 chips, and Debian 11 hitting LTS. Then they chat about Tails, Proton VPN, and ClamAV 1.4 all for security. Then Ubuntu prepares for 24.10 with some Easter eggs, and HandBrake fixes some irritating problems. For tips we have Cosmic community projects, Reflector for Arch Mirrors, wl-clipboard, and a one-liner to apply patches from a URL. You can find the show notes at https://bit.ly/3M836zB and see you next week! Host: Jonathan Bennett Co-Hosts: Ken McDonald, Jeff Massie, and Rob Campbell Want access to the video version and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

This week, we discuss the CrowdStrike outage, FinOps data exports, and the state of open-source forks. Plus, Matt shares some exciting exclusive news about his future! Watch the YouTube Live Recording of Episode (https://www.youtube.com/watch?v=hYoFk0K_XpI) 477 (https://www.youtube.com/watch?v=hYoFk0K_XpI) Runner-up Titles Matt Ray Explains Channel File 291 Documenting CYA An intern did it Default lifestyle strikes again All the Nelson GIFs Rundown CrowdStrike Huge Microsoft Outage Linked to CrowdStrike Takes Down Computers Around the World (https://www.wired.com/story/microsoft-windows-outage-crowdstrike-global-it-probems/) 12-hour timelapse of airline traffic after what was likely the biggest IT outage in history (https://x.com/US_Stormwatch/status/1814268813879206397) Flights grounded and offices hit as internet users face disruptions (https://apnews.com/live/internet-global-outage-crowdstrike-microsoft-downtime) TODAY (@TODAYshow) on X (https://x.com/TODAYshow/status/1814266372882391523?ref_src=twsrc%5Egoogle%7Ctwcamp%5Eserp%7Ctwgr%5Etweet) George Kurtz (@George_Kurtz) on X (https://x.com/George_Kurtz/status/1814316045185822981) CrowdStrike's Global Outage Doesn't Have to Be a Recurring Nightmare (https://www.bloomberg.com/opinion/articles/2024-07-19/crowdstrike-s-nightmare-it-microsoft-outage-shouldn-t-be-normal?srnd=homepage-americas) Heard on the Street: CrowdStrike May Get More Than a Slap (https://www.wsj.com/livecoverage/stock-market-today-dow-sp500-nasdaq-live-07-19-2024/card/heard-on-the-street-crowdstrike-may-get-more-than-a-slap-CbyAd5zi7ELT4miAZHNV) What Happened to Digital Resilience? (https://www.nytimes.com/2024/07/19/us/politics/crowdstrike-outage.html?unlocked_article_code=1.8k0._ZDj.e5unf_bqIJNo&smid=url-share) SolarWinds Defeats Part of SEC's Fraud Case Over Hack (https://www.wsj.com/articles/solarwinds-defeats-part-of-secs-fraud-case-over-hack-ec69169a) Technical Details: Falcon Update for Windows Hosts (https://www.crowdstrike.com/blog/falcon-update-for-windows-hosts-technical-details/) Microsoft tried to get AV vendors to use APIs (https://www.threads.net/@sbisson/post/C9pIIYmo19q?xmt=AQGzVYTNKy9-De3zRXlIsl7QNqarqWsTWlmD_4Wc-7MM2A) House committee calls on CrowdStrike CEO to testify on global outage (https://www.washingtonpost.com/technology/2024/07/22/house-committee-calls-crowdstrike-ceo-testify-global-outage/) Crashes and Competition (https://stratechery.com/2024/crashes-and-competition/) The CrowdStrike Failure Was a Warning (https://www.theatlantic.com/ideas/archive/2024/07/crowdstrike-failure-warning-solutions/679174/) Defective McAfee update causes worldwide meltdown of XP PCs (https://www.zdnet.com/article/defective-mcafee-update-causes-worldwide-meltdown-of-xp-pcs/?utm_source=newsletter&utm_medium=email&utm_campaign=newsletter_axioscodebook&stream=top) CrowdStrike broke Debian and Rocky Linux months ago, but no one noticed (https://www.neowin.net/news/crowdstrike-broke-debian-and-rocky-linux-months-ago-but-no-one-noticed/#google_vignette) CrowdStrike Update: Latest News, Lessons Learned from a Retired Microsoft Engineer (https://youtu.be/ZHrayP-Y71Q?si=AmavOuoU_IjGMTFi) CrowdStrike offers a $10 apology gift card to say sorry for outage (https://techcrunch.com/2024/07/24/crowdstrike-offers-a-10-apology-gift-card-to-say-sorry-for-outage/) Announcing Data Exports for FOCUS 1.0 (Preview) in AWS Billing and Cost Management (https://aws.amazon.com/blogs/aws-cloud-financial-management/announcing-data-exports-for-focus-1-0-preview-in-aws-billing-and-cost-management/) Wiz walks away from $23 billion deal with Google, will pursue IPO (https://www.cnbc.com/2024/07/23/google-wiz-deal-dead.html) Import and export Markdown in Google Docs (http://workspaceupdates.googleblog.com/2024/07/import-and-export-markdown-in-google-docs.html) Google URL Shortener links will no longer be available (https://developers.googleblog.com/en/google-url-shortener-links-will-no-longer-be-available/) The Post-Valkey World (https://redmonk.com/sogrady/2024/07/16/post-valkey-world/) A tale of two forks - comparing Valkey/Redis and OpenTofu/Terraform! (https://www.linkedin.com/posts/danlorenc_oss-opensource-community-activity-7221488717704609792-U2SR/?utm_source=share&utm_medium=member_desktop) Datadog rumoured to be sniffing round GitLab as tech M&A market heats up (https://www.thestack.technology/datadog-rumoured-to-be-sniffing-round-gitlab-as-tech-m-a-market-heats-up/) Google-Backed Software Developer GitLab Eyes Sale, Reuters Says (https://www.bloomberg.com/news/articles/2024-07-17/google-backed-software-developer-gitlab-eyes-sale-reuters-says) Relevant to your Interests Google Open Sources 27B Parameter Gemma 2 Language Model (https://www.infoq.com/news/2024/07/google-gemma-2/) What It Really Takes to Build an AI Datacenter (https://www.bloomberg.com/news/articles/2024-06-21/what-it-really-takes-to-build-an-ai-datacenter) State of Developer Experience 2024 (https://newsletter.getdx.com/p/state-of-developer-experience-2024?r=2d4o&utm_campaign=post&utm_medium=web) The Return-to-Office Productivity Argument Is Over (https://www.inc.com/joe-procopio/the-return-to-office-productivity-argument-is-over.html) A new path for Privacy Sandbox on the web (https://privacysandbox.com/news/privacy-sandbox-update) The search for the random numbers that run our lives (https://www.bbc.com/future/article/20240704-the-search-for-the-random-numbers-that-run-our-lives) OpenAI is releasing a cheaper, smarter model (https://www.theverge.com/2024/7/18/24200714/openai-new-cheaper-smarter-model-gpt-4o-mini) Microsoft unveils a large language model that excels at encoding spreadsheets (https://www.thestack.technology/microsoft-llm-spreadsheet-llm/) Maestro: Netflix's Workflow Orchestrator (https://netflixtechblog.com/maestro-netflixs-workflow-orchestrator-ee13a06f9c78) IBM shares jump on earnings and revenue beat (https://www.cnbc.com/2024/07/24/ibm-q2-earnings-report-2024.html) US banks to begin reporting Russian assets for eventual forfeiture under new law (https://apnews.com/article/repo-act-banks-russia-ukraine-russian-assets-9ecda7e3e799cdbfb564844ae89a144b) Nonsense Darden Restaurants (NYSE: DRI) agreed to buy Tex-Mex chain Chuy's (https://www.axios.com/newsletters/axios-pro-rata-0bb0be2c-41d0-4181-bf39-ba3e827303da.html?chunk=1&utm_term=emshare#story1) Leadership within a costco warehouse (https://www.tiktok.com/t/ZTNaLxKJg/) If The Office took place at a car dealership (https://x.com/milkkarten/status/1813968113526067449?s=46&t=zgzybiDdIcGuQ_7WuoOX0A) Type in Morse code by repeatedly slamming your laptop shut (https://github.com/veggiedefender/open-and-shut) Sponsor SysAid – Next-Gen IT Service Management: (https://www.sysaid.com/lp/sysaid-copilot-l?utm_source=podcast&utm_medium=cpc&utm_campaign=software%20define) Experience the only platform with generative AI embedded in every aspect of IT management, enabling you to deliver exceptional service effortlessly and automagically. Listener Feedback (#asksdt) Foundation Models - IBM watsonx.ai (https://www.ibm.com/products/watsonx-ai/foundation-models) Conferences DevOpsDays Birmingham (https://devopsdays.org/events/2024-birmingham-al/welcome/), Aug 19-21, 2024 SpringOne (https://springone.io/?utm_source=cote&utm_campaign=devrel&utm_medium=newsletter&utm_content=newsletterUpcoming)/VMware Explore US (https://blogs.vmware.com/explore/2024/04/23/want-to-attend-vmware-explore-convince-your-manager-with-these/?utm_source=cote&utm_campaign=devrel&utm_medium=newsletter&utm_content=newsletterUpcoming), Aug 26-29, 2024 DevOpsDays Antwerp (https://devopsdays.org/events/2024-antwerp/welcome/), Sept 4–5, 2024, 15th anniversary SREday London 2024 (https://sreday.com/2024-london/), Sept 19–20, 2024 Coté speaking, 20% off with the code SRE20DAY (https://sreday.com/2024-london/#tickets) SDT News & Community Join our Slack community (https://softwaredefinedtalk.slack.com/join/shared_invite/zt-1hn55iv5d-UTfN7mVX1D9D5ExRt3ZJYQ#/shared-invite/email), post questions in #asksdt (https://softwaredefinedtalk.slack.com/archives/C07CSP19GAH) Email the show: questions@softwaredefinedtalk.com (mailto:questions@softwaredefinedtalk.com) Free stickers: Email your address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) Follow us on social media: Twitter (https://twitter.com/softwaredeftalk), Threads (https://www.threads.net/@softwaredefinedtalk), Mastodon (https://hachyderm.io/@softwaredefinedtalk), LinkedIn (https://www.linkedin.com/company/software-defined-talk/), BlueSky (https://bsky.app/profile/softwaredefinedtalk.com) Watch us on: Twitch (https://www.twitch.tv/sdtpodcast), YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured), Instagram (https://www.instagram.com/softwaredefinedtalk/), TikTok (https://www.tiktok.com/@softwaredefinedtalk) Book offer: Use code SDT for $20 off "Digital WTF" by Coté (https://leanpub.com/digitalwtf/c/sdt) Sponsor (https://www.softwaredefinedtalk.com/ads) the show (https://www.softwaredefinedtalk.com/ads) Recommendations Brandon: Austin FC (https://www.austinfc.com/competitions/mls-regular-season/2024/matches/atxvssea-07-13-2024/) Presumed Innocent (https://www.google.com/url?sa=t&source=web&rct=j&opi=89978449&url=https://tv.apple.com/us/show/presumed-innocent/umc.cmc.5hnqrhwtzt3esr7rb1wq2ppvn&ved=2ahUKEwiClKPk28CHAxWXLUQIHd59CCoQFnoECEcQAQ&usg=AOvVaw20AOPkQVtwWO77Jomxeua0) The Contrarian (https://www.penguinrandomhouse.com/books/609711/the-contrarian-by-max-chafkin/) Matt: Crying Out Cloud (https://www.wiz.io/crying-out-cloud) podcast Photo Credits Artwork (https://unsplash.com/photos/a-computer-screen-with-a-blue-screen-on-it-t_IkF_CNvSY)

Brought to you by TogetherLetters & Edgewise!In this episode: CrowdStrike Explains What Went Wrong Days After Global Tech OutageCrowdStrike global outage to cost US Fortune 500 companies $5.4bnCrowdStrike broke Debian and Rocky Linux months ago, but no one noticedCrowdStrike offers a $10 apology gift card to say sorry for outageAfter years of uncertainty, Google says it won't be ‘deprecating third-party cookies' in ChromeGoogle Chrome is no longer ‘deprecating third-party cookies'Elon Musk sets new date for Tesla robotaxi reveal, calls everything beyond autonomy ‘noise'Switzerland now requires all government software to be open sourceNetflix has 80 games in development, will release one per monthReport: Apple beginning serious work on a foldable iPhoneFerrari extends cryptocurrency payment system to Europe after US launchWiz walks away from $23 billion deal with Google, will pursue IPOPolice Drone Nabs Vehicle Burglary Suspect in Santa Monica as ‘Futuristic' Surveillance Becomes RealityJupiter's Great Red Spot Could Disappear Within 20 YearsWeird and Wacky: Robot Dog Cleans Up Beaches With Foot-Mounted VacuumsTech Rec:Sanjay - TRMNL: The e-ink display for your favorite apps and news Adam - Casely Phone...

We're excited for Linux laptops, the Rocket Accelerator for Rokchips, and a new programming language for Bash scripts. Then there's the extensible scheduler coming to 6.11 because Torvalds says so, NVIDIA making a move on the upstream kernel, and a bit of a change for ChromeOS. For tips, we have the quake terminal, a tmux environment variable, and an automount command to pick up your missing mounts. See the show notes at https://bit.ly/4esmR1N and enjoy! Host: Jonathan Bennett Co-Hosts: Rob Campbell and David Ruggles Want access to the video version and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

The facepalm moments that make us question our sanity—and swear off sudo for a week.Sponsored By:Core Contributor Membership: Take $1 a month of your membership for a lifetime!Tailscale: Tailscale is a programmable networking software that is private and secure by default - get it free on up to 100 devices!Kolide: Kolide is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps.Support LINUX UnpluggedLinks:

This week we talk about Linux, backdoors, and the Open Source community.We also discuss CPU usage, state-backed hackers, and SSH.Recommended Book: The Underworld by Susan CaseyTranscriptIn the world of computers, a "backdoor" is a means of accessing a device or piece of software via an alternative entry point that allows one to bypass typical security measures and often, though not always, to do so in a subtle, undetected and maybe even undetectable manner.While backdoors can be built into hardware and software systems by the companies that make those devices and apps and bits of internet architecture, and while some governments and agencies, including the Chinese government, and allegedly folks at the NSA, have at times installed backdoors in relevant hardware and software for surveillance purposes, backdoors are generally the domain of tech-oriented criminals of various stripes, most of whom make use of vulnerabilities that are baked into their targets in order to gain access, and then while inside the administration components of a system, they write some code or find some kind of management lever meant to give the company or other entity behind the target access for non-criminal, repair and security purposes, and that then allows them to continue to gain access in the future; like using a rock to prop open a door.Concerns over a backdoor being installed in vital systems is fundamental to why the US and European governments have been so hesitant to allow Chinese-made 5G hardware into their wireless communication systems: there's a chance that, with the aid, or perhaps just at the prodding of the Chinese government, such hardware, or the software it utilizes, could contain a Trojan or other packet of code, hidden from view and hardcoded into the devices in some covert manner; these devices could also harbor even smaller devices, indistinguishable from hardware that's meat to be there, that would allow them to do the same via more tangible means.Though there were almost certainly other economic and technology-dominance reasons for the clampdown on products made by Chinese tech company Huawei beginning in earnest in 2012, and escalating rapidly during the US Trump administration, that process was at least ostensibly tied to worries that a Chinese company, prone to spying and stealing foreign tech, already, might incorporate itself into fundamental global communication infrastructure.It was underpricing everybody else, offering whizbang new high-end 5G technology at a discount, and supposedly, if the accusations are true, at least, doing so as part of a bigger plan to tap into all sorts of vital aspects of these systems, giving them unparalleled access to all communications, basically, but also giving them the ability, supposedly, to shut down those systems with the press of a button in the event that China wants or needs to do so at some point, if they ever decide to invade Taiwan, for instance, and want to distract the Western world until that invasion is complete, or just make rallying a defense a lot more difficult.Other, confirmed and successfully deployed backdoors have been found in all sorts of products, ranging from counterfeit Cisco network products, like routers and modems, some of which were installed in military and government facilities back in 2008 before they were recognized for what they were, to Microsoft software, Wordpress plugins, and a brand of terminals that manage the data sent along fiber-optic cables, mostly for high-speed internet purposes.Again, in some cases, the entities making these products sometimes do install what are literally or essentially backdoors in their hardware and software because it allows them to, for instance, help their customers retrieve lost passwords, fix issues, install security updates, and so on.But backdoors of any shape or size are considered to be major security vulnerabilities, as stealing a password or getting access to a vital terminal could then grant someone with bad intentions access to absolutely everything, giving them god-like control over all aspects of a customer's information and operations, or maybe all of the company's customer's information and operations, and that creates a single point of failure that most companies want to avoid, because at a certain point there's no real way to prevent a truly determined and well-funded foe if they know the payout for investing in accessing that terminal or getting that password would be that substantial.What I'd like to talk about today is a long-term effort to do exactly that, the target, in this case, being small, but the potential payoff of backdooring it being pretty much as big as you can imagine.—XZ Utils is the name of an Open Source data compression utility, which means that it squishes data in such a way that no information is lost, but so that big files and other packets of information become smaller, and that makes it faster and easier and cheaper to send that data from place to place.XZ is popular in part because it's effective, in many cases outperforming other free alternatives, like gzip and bzip2, but it also supports an older compression model called LZMA, and it exists in the public domain, which means it's incredibly inexpensive to use, free, for most purposes.It's especially popular in Linux and other Unix-like systems, and in practice that means it's used across these systems so that when data is moved from place to place, it's compressed and decompressed, putting less pressure on the systems themselves, almost like reducing the weight of everything you have to carry throughout the day, without any reduction in quality or the nature of those books and bags and laptops and other things you're hauling around all the time; even small reductions in that weight could make a big difference in the strain on your body, over time, and this utility accomplishes the same for the systems that incorporate it.So this software utility is super useful, is free to anyone who wants to use it, and it's better than a lot of other options, and it's thus been baked into a bunch of fundamental computer infrastructure, like most Unix-like systems. And that's important for a lot of reasons, but the most immediately concerning issue is that the vast majority of servers that run the tech world—basically all the major tech companies, and all the companies they work with—manage their services with Linux.XZ isn't just important for folks who have laptops running on Linux, then, it's also vital to the functionality of huge chunks of the internet; stats from the past few years show that about 96.3% of the top million web sites run on Linux servers, and a substantial amount of non-web-serving servers do, as well.All of which sets the stage for the hubbub that arose on March 29, 2024, when a Microsoft employee named Andres Freund announced that, after looking into a decrease in performance in a version of Linux called Debian—a distinction between how fast it should have been going and how fast it was going of about 500 milliseconds, and that minor slowdown bugged him enough to look into what newer, experimental versions of XZ Utils were doing to the Debian operating system he was working with—after looking into that issue, he announced that he had discovered a backdoor in XZ that was causing errors in a memory debugging tool built into the software, and using more CPU power than Debian otherwise would have used.So he announced this discovery, reported it to an open source security mailing list, to make it known amongst the right people, and that alerted the folks who were experimentally incorporating this new build of XZ into their software.As it turns out, this backdoor, had it been implemented in all this software and spread across the servers that manage the web, would have granted whomever had access to it the ability to alter the behavior of the local instance of the Secure Shell Protocol, or SSH, which is what protects servers while they operate on open networks like the internet.The degree to which this would have damaged the web, as it exists today, cannot be overstated. This problem was given a Common Vulnerability Scoring System ranking, which rates the alarmingness of software issues based on how much damage they could potentially cause, which helps computer security professionals figure out which problems to address first, a score of 10, which is the highest possible score.In theory, this would have granted the person or other entity with backdoor access the ability to get into essentially any server touching the internet with full administrator privileges, making all that information transparent to them, providing them all information about users, passwords, banking information, everything everyone has ever posted to social media, private communications, research and technology secrets—it's really just boggling thinking about how much damage could have been caused by the right person or people, as such a backdoor would basically do away with most of the security measures they might encounter while attempting to infiltrate and even take over pretty much anyone.Because it was discovered by Freund, though, and because he got word out to the right people as quickly as he did, the cybersecurity world was able to pivot pretty quickly, advising everyone who had implemented these test versions to roll back to earlier versions of the relevant software, and the folks behind XZ quickly released updated versions of the utility that removed the backdoor problem.This also triggered a response in the wider software world as many developers have started to reduce the damage future, similar backdoors would be able to cause by reducing the connections and dependencies it took advantage of to function.So this was a big enough deal that even something as arcane as compression utilities and SSH became front-page news around the world, but arguably one of the most interesting aspects of this story is what we know about the person or people who seem to have installed this backdoor.Someone, or group of someones, going by the name Jia Tan, alongside an array of sock puppet accounts—fake accounts with different names that they also managed—started to contribute to the maintenance and development of this project, which is common in the open source world; that's part of what makes open source software and systems so powerful and desirable, despite often not having much in the way of funding or official support from big-name companies; they're often passion projects maintained by maybe just one or a few or a handful of dedicated developers.In 2021, this entity that became known as Jia Tan started contributing to open source projects, and then contributed a patch to XZ via its mailing list.Around that same time, several people who hadn't been seen in this project's community, previously, started to complain that it wasn't being updated fast enough, and arguing that another maintainer should be brought on board, to help it move along faster.This Jia Tan character then started making a lot more contributions to the project, all of them seemingly innocuous and helpful, though in retrospect at least one of them changed a function that would have detected the more malicious changes they ultimately submitted, later.In February of 2024, Tan submitted changes for the new version of XZ Utils that incorporated a backdoor, and groups of people in this larger open source community, possibly sock puppet accounts, started telling the developers who run Debian, Ubuntu, and Red Hat, all popular versions of Linux, they should incorporate this new version with those backdoor-incorporating changes into their operating systems.There are strong suspicions, but little evidence, at this point at least, that Jia Tan and those other sock puppet accounts were run by a well-funded and skilled, probably government-backed hacking group, like one of the entities that often work as proxies for Russia's SVR—their intelligence agency that tends to support local hacking groups to do this sort of dirty work; though again, we can't say that with any certainty, as a lot of government-backed hacking groups could pull off something like this, with enough patience, years worth of patience, and it's still possible that this was a single hacker seeing a soft-target and the potential for a huge payoff if it all worked out.That said, because of the approach this threat actor, whomever they actually are, took to target this utility, and because of how close they got to doing what they intended to do, which would have been devastating, probably even world-changing in some ways, the relationship that big tech and governance has with the open source world is being reassessed, because often the folks running these projects are just individual people doing all this important work in their free time. But because of how the tech world has evolved, huge swathes of the internet and other vital infrastructure are reliant on these single-person, passion-projects that are potential targets for cooption or, as seems to have been the case here, using what's called social engineering to manipulate the folks behind these projects, which can then gives more access to all the stuff they manage, and thus, the things that rely on the stuff they manage, to entities that want to cause harm.Again, and this cannot be emphasized enough, we just barely dodged a bullet here, and the only thing that prevented a huge amount of potential destruction was the effort of another single person who was, almost on a whim, hacking away on a little problem they wanted to look into, and who thus stumbled upon this issue right before it reached a scale that would have been truly problematic.And all of these issues were arguably the result of someone who found themself in the position of maintaining, more or less solo, a utility that became vital to global cybersecurity, and which thus made them the target of a sophisticated social engineering campaign.Show Noteshttps://en.wikipedia.org/wiki/Backdoor_(computing)https://en.wikipedia.org/wiki/Hardware_backdoorhttps://en.wikipedia.org/wiki/Social_engineering_(security)https://www.zdnet.com/article/linux-has-over-3-of-the-desktop-market-its-more-complicated-than-that/https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/https://research.swtch.com/xz-timelinehttps://research.swtch.com/xz-scripthttps://news.ycombinator.com/item?id=39895344https://www.runtime.news/sabotage-in-the-software-supply-chain/https://news.ycombinator.com/item?id=39903685https://www.theverge.com/2024/4/2/24119342/xz-utils-linux-backdoor-attempthttps://www.wired.com/story/jia-tan-xz-backdoor/https://www.404media.co/xz-backdoor-bullying-in-open-source-software-is-a-massive-security-vulnerability/https://www.nytimes.com/2024/04/03/technology/prevent-cyberattack-linux.htmlhttps://www.economist.com/science-and-technology/2024/04/02/a-stealth-attack-came-close-to-compromising-the-worlds-computers This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit letsknowthings.substack.com/subscribe

A near-Universal (Local) Linux Elevation of Privilege vulnerability TechCrunch informed AT&T of a 5 year old data breach Signal to get very useful cloud backups Telegram to allow restricted incoming HP exits Russia ahead of schedule Advertisers are heavier users of Ad Blockers than average Americans! The Google Incognito Mode Lawsuit Canonical fights malicious Ubuntu store apps Spinrite update A Cautionary Tale Show Notes - https://www.grc.com/sn/SN-968-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: 1bigthink.com kolide.com/securitynow Melissa.com/twit vanta.com/SECURITYNOW