All Jupiter Broadcasting Shows

Brent sits down with Jill Bryant Ryniker, long time linux aficionado, for a connective conversation exploring her deep involvement in linux and open source, from community to professional animation and more. Jill wears many complimentary hats, a few of which include: co-host of Linux Weekly Daily Wednesday, regular community guest on Linux Unplugged, LinuxChix LA co-organizer, professional animator and teacher, ...and more! Grab a seat and join us..Special Guest: Jill Bryant Ryniker.Links:Linux Spotlight: Linux Spotlight EP19 - Jill Bryant Ryniker LinuxGameCast Jupiter Extras: Brunch with Brent: A Chat with Ell Marquez Academy Software Foundation - focused on the sustainablity of the open source ecosystem for the animation and visual effects industry. Jupiter Broadcasting & Archives Jupiter Broadcasting Mumble Room GNOME files defense against patent troll SCALE 18x - Southern California Linux Expo March. 5-8, 2020 Jill Bryant Ryniker - @jilllinuxgirl on Twitter @Jilllinuxgirl@mast.linuxgamecast.com Brent Gervais - @brentgervais on Twitter

Google steps up support for older Chromebooks, Microsoft Edge is coming to Linux, and the App Defense Alliance teams up to fight Android malware. Plus Google Cardboard goes open source, and a neat machine-learning tool to pull songs apart.Special Guest: Wes Payne.Links:Google gives most Chromebooks an extra year of software support — Seven Chromebooks from Lenovo recently had their support lifespan extended, and now Google has updated the EOL date for 135 more models from several manufacturers. Most models received another year of support, others only got another six months, and some now have two more years. What’s new in Chrome OS: Virtual Desks, simpler printing and more — Think of Virtual Desks as separate workspaces within your Chromebook. Use this feature to create helpful boundaries between projects or activities. If you’re working on multiple projects, you can dedicate a desk to each one. Open Overview and tap New Desk in the top right-hand corner of your screen to try out Virtual Desks.Google Enlists Outside Help to Clean Up Android's Malware Mess — Today Google is announcing a partnership with three antivirus firms—ESET, Lookout, and Zimperium—to create an App Defense Alliance. Open sourcing Google Cardboard — Today, we’re releasing the Cardboard open source project to let the developer community continue to build Cardboard experiences and add support to their apps for an ever increasing diversity of smartphone screen resolutions and configurations.Access ESM, now free to the community, via the updated Ubuntu Advantage client — Canonical is happy to announce that all community users are entitled to a free Ubuntu Advantage for Infrastructure account for access to Extended Security Maintenance (ESM) and Kernel Livepatch* for Ubuntu 14.04 LTS (Trusty Tahr) for up to three machines, and up to 50 machines for all official Ubuntu Members. Releasing Spleeter: Deezer Research source separation engine — We are releasing Spleeter to help the research community in Music Information Retrieval (MIR) leverage the power of a state-of-the-art source separation algorithm. It comes in the form of a Python Library based on Tensorflow, with pretrained models for 2, 4 and 5 stems separation. Microsoft Will Release Their Edge Web Browser For Linux — Microsoft announced at their Ignite conference in Seattle that their Edge web-browser will see a Linux release

Paying attention to all the Linux users we never hear from, being less clever than we thought, and our biggest fears. Plus alternatives to copy paste, and whether Popey loves pink. 00:00:44 Would the Web/Internet be better or worse if the concept of copy and paste had never been invented? 00:07:29 What are you afraid of? 00:13:51 Is it time to stop ignoring the vast silent majority of Linux users? 00:27:37 What's your favourite colour and why? 00:34:54 Have you ever had a genius idea that turned out to be spectacularly unoriginal?

Getting your storage setup just right often takes making painful mistakes first. We share ours, our current storage setups, when ZFS is not the tool for the job, and what you should consider when protecting your data. Plus, we share a few recent project mishaps.Links:The Perfect Media Server - 2019 Edition — Reliable means you don't lose data. And that's exactly what the MergerFS + Snapraid combo I first wrote about in 2016 has provided. A solid, boring and reliable way of storing multiple TBs of data with little fuss.Getting started with ZFS on Linux — Here's a short article giving a ZFS 101 intro and list of commands in one place.New Hard Drive rituals — It is for these reasons that I now religiously do not commit any data to a drive until it has undergone at least one full cycleThe 'hidden' cost of using ZFS for your home NAS — With ZFS, you either have to buy all storage you expect to need upfront, or you will be wasting a few hard drives on redundancy you don't need.Mergerfs: a featureful union filesystemA Chat with mergerfs Developer — Alex, Drew from ChooseLinux and Brent (of the Brunch fame) sit down with Antonio Musumeci, the developer of mergerfs during the JB sprint.Alex's one line mergerfs fstab entryMy Photography Workflow

The earliest Unix code, how to replace fail2ban with blacklistd, OpenBSD crossed 400k commits, how to install Bolt CMS on FreeBSD, optimized hammer2, appeasing the OSI 7-layer burrito guys, and more. Headlines The Earliest Unix Code: An Anniversary Source Code Release What is it that runs the servers that hold our online world, be it the web or the cloud? What enables the mobile apps that are at the center of increasingly on-demand lives in the developed world and of mobile banking and messaging in the developing world? The answer is the operating system Unix and its many descendants: Linux, Android, BSD Unix, MacOS, iOS—the list goes on and on. Want to glimpse the Unix in your Mac? Open a Terminal window and enter “man roff” to view the Unix manual entry for an early text formatting program that lives within your operating system. 2019 marks the 50th anniversary of the start of Unix. In the summer of 1969, that same summer that saw humankind’s first steps on the surface of the Moon, computer scientists at the Bell Telephone Laboratories—most centrally Ken Thompson and Dennis Ritchie—began the construction of a new operating system, using a then-aging DEC PDP-7 computer at the labs. This man sent the first online message 50 years ago As many of you have heard in the past, the first online message ever sent between two computers was "lo", just over 50 years ago, on Oct. 29, 1969. It was supposed to say "log," but the computer sending the message — based at UCLA — crashed before the letter "g" was typed. A computer at Stanford 560 kilometres away was supposed to fill in the remaining characters "in," as in "log in." The CBC Radio show, “The Current” has a half-hour interview with the man who sent that message, Leonard Kleinrock, distinguished professor of computer science at UCLA "The idea of the network was you could sit at one computer, log on through the network to a remote computer and use its services there," 50 years later, the internet has become so ubiquitous that it has almost been rendered invisible. There's hardly an aspect in our daily lives that hasn't been touched and transformed by it. Q: Take us back to that day 50 years ago. Did you have the sense that this was going to be something you'd be talking about a half a century later? A: Well, yes and no. Four months before that message was sent, there was a press release that came out of UCLA in which it quotes me as describing what my vision for this network would become. Basically what it said is that this network would be always on, always available. Anybody with any device could get on at anytime from any location, and it would be invisible. Well, what I missed ... was that this is going to become a social network. People talking to people. Not computers talking to computers, but [the] human element. Q: Can you briefly explain what you were working on in that lab? Why were you trying to get computers to actually talk to one another? A: As an MIT graduate student, years before, I recognized I was surrounded by computers and I realized there was no effective [or efficient] way for them to communicate. I did my dissertation, my research, on establishing a mathematical theory of how these networks would work. But there was no such network existing. AT&T said it won't work and, even if it does, we want nothing to do with it. So I had to wait around for years until the Advanced Research Projects Agency within the Department of Defence decided they needed a network to connect together the computer scientists they were supervising and supporting. Q: For all the promise of the internet, it has also developed some dark sides that I'm guessing pioneers like yourselves never anticipated. A: We did not. I knew everybody on the internet at that time, and they were all well-behaved and they all believed in an open, shared free network. So we did not put in any security controls. When the first spam email occurred, we began to see the dark side emerge as this network reached nefarious people sitting in basements with a high-speed connection, reaching out to millions of people instantaneously, at no cost in time or money, anonymously until all sorts of unpleasant events occurred, which we called the dark side. But in those early days, I considered the network to be going through its teenage years. Hacking to spam, annoying kinds of effects. I thought that one day this network would mature and grow up. Well, in fact, it took a turn for the worse when nation states, organized crime and extremists came in and began to abuse the network in severe ways. Q: Is there any part of you that regrets giving birth to this? A: Absolutely not. The greater good is much more important. News Roundup How to use blacklistd(8) with NPF as a fail2ban replacement blacklistd(8) provides an API that can be used by network daemons to communicate with a packet filter via a daemon to enforce opening and closing ports dynamically based on policy. The interface to the packet filter is in /libexec/blacklistd-helper (this is currently designed for npf) and the configuration file (inspired from inetd.conf) is in etc/blacklistd.conf Now, blacklistd(8) will require bpfjit(4) (Just-In-Time compiler for Berkeley Packet Filter) in order to properly work, in addition to, naturally, npf(7) as frontend and syslogd(8), as a backend to print diagnostic messages. Also remember npf shall rely on the npflog* virtual network interface to provide logging for tcpdump() to use. Unfortunately (dont' ask me why ??) in 8.1 all the required kernel components are still not compiled by default in the GENERIC kernel (though they are in HEAD), and are rather provided as modules. Enabling NPF and blacklistd services would normally result in them being automatically loaded as root, but predictably on securelevel=1 this is not going to happen. FreeBSD’s handbook chapter on blacklistd OpenBSD crossed 400,000 commits Sometime in the last week OpenBSD crossed 400,000 commits (*) upon all our repositories since starting at 1995/10/18 08:37:01 Canada/Mountain. That's a lot of commits by a lot of amazing people. (*) by one measure. Since the repository is so large and old, there are a variety of quirks including ChangeLog missing entries and branches not convertible to other repo forms, so measuring is hard. If you think you've got a great way of measuring, don't be so sure of yourself -- you may have overcounted or undercounted. Subject to the notes Theo made about under and over counting, FreeBSD should hit 1 million commits (base + ports + docs) some time in 2020 NetBSD + pkgsrc are approaching 600,000, but of course pkgsrc covers other operating systems too How to Install Bolt CMS with Nginx and Let's Encrypt on FreeBSD 12 Bolt is a sophisticated, lightweight and simple CMS built with PHP. It is released under the open-source MIT-license and source code is hosted as a public repository on Github. A bolt is a tool for Content Management, which strives to be as simple and straightforward as possible. It is quick to set up, easy to configure, uses elegant templates. Bolt is created using modern open-source libraries and is best suited to build sites in HTML5 with modern markup. In this tutorial, we will go through the Bolt CMS installation on FreeBSD 12 system by using Nginx as a web server, MySQL as a database server, and optionally you can secure the transport layer by using acme.sh client and Let's Encrypt certificate authority to add SSL support. Requirements The system requirements for Bolt are modest, and it should run on any fairly modern web server: PHP version 5.5.9 or higher with the following common PHP extensions: pdo, mysqlnd, pgsql, openssl, curl, gd, intl, json, mbstring, opcache, posix, xml, fileinfo, exif, zip. Access to SQLite (which comes bundled with PHP), or MySQL or PostgreSQL. Apache with mod_rewrite enabled (.htaccess files) or Nginx (virtual host configuration covered below). A minimum of 32MB of memory allocated to PHP. hammer2 - Optimize hammer2 support threads and dispatch Refactor the XOP groups in order to be able to queue strategy calls, whenever possible, to the same CPU as the issuer. This optimizes several cases and reduces unnecessary IPI traffic between cores. The next best thing to do would be to not queue certain XOPs to an H2 support thread at all, but I would like to keep the threads intact for later clustering work. The best scaling case for this is when one has a large number of user threads doing I/O. One instance of a single-threaded program on an otherwise idle machine might see a slightly reduction in performance but at the same time we completely avoid unnecessarily spamming all cores in the system on the behalf of a single program, so overhead is also significantly lower. This will tend to increase the number of H2 support threads since we need a certain degree of multiplication for domain separation. This should significantly increase I/O performance for multi-threaded workloads. You know, we might as well just run every network service over HTTPS/2 and build another six layers on top of that to appease the OSI 7-layer burrito guys I've seen the writing on the wall, and while for now you can configure Firefox not to use DoH, I'm not confident enough to think it will remain that way. To that end, I've finally set up my own DoH server for use at Chez Boca. It only involved setting up my own CA to generate the appropriate certificates, install my CA certificate into Firefox, configure Apache to run over HTTP/2 (THANK YOU SO VERY XXXXX­XX MUCH GOOGLE FOR SHOVING THIS HTTP/2 XXXXX­XXX DOWN OUR THROATS!—no, I'm not bitter) and write a 150 line script that just queries my own local DNS, because, you know, it's more XXXXX­XX secure or some XXXXX­XXX reason like that. Sigh. Beastie Bits An Oral History of Unix NUMA Siloing in the FreeBSD Network Stack [pdf] EuroBSDCon 2019 videos available Barbie knows best For the #OpenBSD #e2k19 attendees. I did a pre visit today. Drawer Find Slides - Removing ROP Gadgets from OpenBSD - AsiaBSDCon 2019 Feedback/Questions Bostjan - Open source doesn't mean secure Malcolm - Allan is Correct. Michael - FreeNAS inside a Jail Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv Your browser does not support the HTML5 video tag.

Dell expands their linux hardware lineup, why elementary OS's Flatpak support sets the bar, and we chat with Christian Schaller of Red Hat about Fedora 31 and what's around the corner. Plus an update on Ubuntu on the Raspberry Pi 4 and a pick that's just for Wes.Special Guests: Alex Kretzschmar, Brent Gervais, Cassidy James Blaede, Christian F.K. Schaller, Daniel Fore, and Martin Wimpress.Links:Dell bets large on Ubuntu Linux laptops for builders - Mash Viral XPS 13 Inch 10th Gen 4K Laptop | Dell USA Roadmap for Ubuntu official support for the Raspberry Pi 4 | Ubuntu elementary Updates for October, 2019 Cassidy on Twitter: "elementary: spends a ton of time and energy going out of our way to make the sideloading experience for users clear, accurate, and easy. Implements Flatpak, making it easier for users to get apps from anywhere. Random YouTube commenters: LOL SO APPLE, HELLO WALLED GARDEN"JB Extras - Brunch with Brent w/Wimpy JB Extras - Threat hunting 101 1753295 – Pango no longer supports bitmap fonts Better Looking fonts For fedora : Fedora GitHub - tonsky/FiraCode: Monospaced font with programming ligatures The sad state of font rendering on Linux | Infosec scribbles Fedora 31 Performance Is Still Sliding In The Wrong Direction - Benchmarks Against Ubuntu 19.10 + Clear Linux - Phoronix Fedora Workstation 31 – Whats new Home · kexecboot/kexecboot Wiki · GitHub Kernel CVE · Slexy.org Pastebin

Ell and Wes sit down to talk with Kyle Hubert and Lou Stella about real world threat hunting. Special Guests: Kyle Hubert and Lou Stella.Links:Command Line Threat Hunting Study Group “The Who, What, Where, When, Why and How of Effective Threat Hunting” by Robert M. Lee & Rob Lee (Free Account required) “The Cyber Hunting Maturity Model” from Sqrrl (Now part of AWS) MITRE Attack Matrix David Bianco’s Pyramid of Pain The Definition of a Purple Team The Difference Between Red, Blue, and Purple Teams 2019 Texas Cyber Summit Presentation and Resources A Curated List of Awesome Threat Intelligence Resources

Brent sits down with Martin Wimpress, co-founder and project lead for Ubuntu MATE https://ubuntu-mate.org/, Director of Ubuntu Desktop at Canonical, and co-host of Ubuntu Podcast https://ubuntupodcast.org/. We dive into why innovative, creative people are attracted to open source, his journey through Linux and podcasting, his feelings on his new position in the Desktop Team at Canonical, and much more.Special Guest: Martin Wimpress.Links:Ubuntu MATE Linux Unplugged Chris Fisher @chrislas on Twitter Alan Pope - @popey on Twitter Ubuntu Podcast Bad Voltage User Error Canonical Has a New Director of Ubuntu Desktop - OMG! Ubuntu! Will Cooke - @8none1 on Twitter Wimpy’s World Ubuntu MATE 19.10 Release Notes EmojiTwo Indicator - Ubuntu MATE GitHub Wimpy’s Telegram Sticker Pack Martin Wimpress - @m_wimpress on Twitter Brent Gervais - @brentgervais on Twitter

Fedora arrives from the future, the big players line up behind KernelCI, and researchers claim significant vulnerabilities in Horde. Plus, Google's new dashboard for WordPress and ProtonMail's apps go open source.Links:Fedora 31 is officially here! — This release features GNOME 3.34, which brings significant performance enhancements which will be especially noticeable on lower-powered hardware. Fedora Server brings the latest in cutting-edge open source server software to systems administrators in an easy-to-deploy fashion.Fedora 31 Performance Is Still Sliding In The Wrong DirectionDistributed Linux Testing Platform KernelCI Secures Funding and Long-Term Sustainability — "Testing is traditionally done only on the most common hardware. But because Linux runs on more hardware than any other operating system, it's important to also test it on all that hardware. The Linux Foundation's support is enabling us to expand the great work we started five years ago and sets us up for a bright future with a growing community," Hackers can steal the contents of Horde webmail inboxes with one click — Horde is one of the most popular free and open-source web email systems available. It’s built and maintained by a core team of developers, with contributions from the wider open-source community. It’s used by universities, libraries and many web hosting providers as the default email client.Horde Webmail - XSS + CSRF to SQLi, RCE, Stealing Emails <= v5.2.22 — Horde Webmail - XSS + CSRF to SQLi, RCE, Stealing Emails <= v5.2.22ProtonMail iOS app is open source - ProtonMail Blog — As part of our commitment to security, we are putting all of our software through rigorous, independent third-party audits.Android App SoonSite Kit is now available for all WordPress sites — Site Kit is Google’s official WordPress plugin

We share our simple approach to disk benchmarking and explain why you should always test your pain points. Plus the basics of solid state disks and how to evaluate which model is right for you.Links:History of hard disk drives — WikipediaHow to Buy the Right SSD: A Guide for 2019 — Tom's HardwareThe Development and History of Solid State Drives (SSDs)Understanding IOPS, latency and storage performanceFIO cheat sheet — Jim's Blog