All Jupiter Broadcasting Shows

A quick update on the new XPS 13 details and Dell's Linux hardware plan for 2019. Dell's got a new Developer Edition Links:Details on Dell's new Consumer PC Portfolio

We spend our weekend with Wayland, discover new apps to try, tricks to share, and dig into the state of the project. Plus System76's new software release, and Fedora's big decision.Special Guests: Brent Gervais and Drew DeVore.Links:System76 Blog — The New Firmware Manager — we’re excited to announce that you can now check and update firmware through Settings on Pop!_OS, and through the firmware manager GTK application on System76 hardware running other Debian-based distributions.pop-os/firmware-manager — Generic framework and GTK UI for firmware updates from system76-firmware and fwupd, written in Rust. Richard Brown on Twitter — Today I’m stepping down as openSUSE Chairman, leaving the Project in the fine hands of the openSUSE board and it’s new Chair, @GeraldPfeifer.Approved: Fedora 31 To Drop i686 Everything/Modular Repositories - Phoronix — The FESCo group gave their formal approval today for permitting these i686 repositories to be removed beginning with Fedora 31Jupiter Extras: Chris and Wes React to LINUX Unplugged — Nothing is worse than your past self. So we play old clips of LINUX Unplugged and react. Scan for network vulnerabilities w/ Nmap - Linux Academy YouTube — With data breaches becoming so common, it's vital to be proactive in finding and patching severe vulnerabilities on our system. One of the free/open-source ways you can scan for these vulnerabilities is by using Nmap. How to copy directories with SCP recursively tutorial - Linux AcademyYouTube — When working with servers you will often find yourself in a situation where you need to copy files from one machine to another. You can package them into a tarball and then copy a tarball over to a remote machine and then unpack it there. This is not a bad option but you can also use SCP to copy the files as they are and preserve the directory structure, without the need for packaging. Linux Archives – Linux AcademyWhat’s Taking Wayland So Long? » Linux Magazine — Over the years, the project’s goals have evolved, but more or less remained: the development of a simpler, more efficient, and more secure display server.pp3345/gnome-with-patches Copr — This repo contains gnome-shell and mutter builds based on the official Fedora ones with some additional patches (mainly to improve performance). rafaelmardojai/firefox-gnome-theme — A GNOME👣 theme for Firefox🔥 Tilix: A tiling terminal emulator — Tilix is an advanced GTK3 tiling terminal emulator that follows the Gnome Human Interface Guidelines. GNOME 3.34 Works Out Refined XWayland Support For X11 Apps Run Under Sudo - Phoronix — This allows the X11 clients to now work from a different VT without any extra environment variables set besides the DISPLAY. In other words, the same user on the same system can now more easily run clients with XWayland thanks to this commit coming late in the 3.34 cycle. The MATE Desktop Is Becoming Quite Usable On Wayland Via Mir - Phoronix — The MATE desktop is seeing Wayland support thanks to Mir doing the heavy lifting. This is also becoming one of the leading examples of Mir's use-case following Canonical engineers re-tooling their display server with Wayland support after pulling back from their original design goals around Ubuntu Touch and mobile/convergence.Plasma/Wayland Showstoppers - KDE Community Wiki — This page tracks the Wayland showstoppers through out the stack . Wayland misconceptions debunked | Drew DeVault’s Blog — This article has been on my backburner for a while, but it seems Wayland FUD is making the news again recently, so I’ve bumped up the priority a bit. For those new to my blog, I am the maintainer of wlroots, a library which implements much of the functionality required of a Wayland compositor and is arguably the single most influential project in Wayland right now; and sway, a popular Wayland compositor which is nearing version 1.0.Flameshot — Powerful yet simple to use screenshot software. Auto Move Windows - GNOME Shell Extensions — Move applications to specific workspaces when they create windows. Ed Therriault on Twitter — @ChrisLAS I’ve been out of the loop for a bit as I’ve been focusing on work and family but I need to know what’s a good incremental backup solution that will use very little storage. I’ll be uploading them to google drive. Ubuntu server 19. Thank you for your time.seemoo-lab/opendrop — An open Apple AirDrop implementation written in Pythonanirudhajith/process-wallpaper — Shell and python scripts that set the desktop wallpaper to a word cloud of the most resource-hungry processes.Huge Survey of Firmware Finds No Security Gains in 15 Years – The Security Ledger — A survey of more than 6,000 firmware images spanning more than a decade finds no improvement in firmware security and lax security standards for the software running connected devices by Linksys, Netgear and other major vendors.

Nothing is worse than your past self. So we play old clips of LINUX Unplugged and react.

It’s a Coder Radio special all about abstraction. What it is, why we need it, and what to do when it leaks. Plus your feedback, Mike’s next language challenge, and a functional ruby pick.Links:Feedback: Clojure, Racket, and Extempore — Thinking about the problem could take the form of leveraging the REPL to work out code to solve a problem or you could spend some time away from your computer screen (or in “Hammock Time”) working out problems.  If I have learned anything from Clojure’s creator, “Rich Hickey” its “Programming is not about not about typing, it’s about thinking”.Knuth's Sensitivity Conjecture One-PagerLaw Of Leaky Abstractions — All non-trivial abstractions, to some degree, are leaky.The Law of Leaky Abstractions – Joel on Software — This is what I call a leaky abstraction. TCP attempts to provide a complete abstraction of an underlying unreliable network, but sometimes, the network leaks through the abstraction and you feel the things that the abstraction can’t quite protect you from.Forget about Leaky Abstractions — Even if an abstraction is leaky it can still be useful. Sometimes you cannot escape it (uniform memory) and sometimes the workaround is costly to implement (TCP, SQL). So you accept the technical debt for now. Hope the debt does not kill the project. Maybe there will come a time where it is worthwhile to pay off the debt.All Abstractions Are Failed Abstractions — It's our job as modern programmers not to abandon abstractions due to these deficiencies, but to embrace the useful elements of them, to adapt the working parts and construct ever so slightly less leaky and broken abstractions over time.Appropriate Levels of Abstraction — Instead of aspiring to higher levels of abstraction, we should instead seek to work at the appropriate level of abstraction for the problem at hand. The appropriate level is sometimes very high and sometimes very low. It varies for different situations even in the same software project. Just as other engineering disciplines require different tools for different situations, software development also requires tools and languages that support our work at multiple levels of abstraction. Choosing The Proper Level of Abstraction — In software development, choosing the right abstraction can be tricky. If you make it too simple, it won’t let you create a model to satisfy even the immediate requirements. If you make it restricted to the urgent needs, you might have to change it almost immediately to implement the next iteration of the model. However, if you make your abstraction too generic and all-encompassing, modeling solutions might get so complicated that you’ll go out of business before you are finished. The Crystal Programming Language — Crystal is statically type checked, so any type errors will be caught early by the compiler rather than fail on runtime. Moreover, and to keep the language clean, Crystal has built-in type inference, so most type annotations are unneeded. affect: Algebraic effects for Ruby — Affect is a tiny Ruby gem providing a way to isolate and handle side-effects in functional programs. Affect implements algebraic effects in Ruby, but can also be used to implement patterns that are orthogonal to object-oriented programming, such as inversion of control and dependency injection. Algebraic Effects for the Rest of Us — Imagine that you’re writing code with goto, and somebody shows you if and for statements. Or maybe you’re deep in the callback hell, and somebody shows you async / await. Pretty cool, huh? If you’re the kind of person who likes to learn about programming ideas several years before they hit the mainstream, it might be a good time to get curious about algebraic effects. Don’t feel like you have to though. It is a bit like thinking about async / await in 1999.MinIO — The 100% Open Source, Enterprise-Grade, Amazon S3 Compatible Object Storage

It's the final Friday, and the crew shares some great stories from a recent team summer camp. Plus some super-secret projects in the works, and another famous flash mob.Special Guests: Brent Gervais and Hadea Fisher.Links:Alex Kretzschmar on Instagram — “Diablo Lake in Washington at night!”Four Peaks Ice Caves in Washington StateAlex Kretzschmar on Instagram — “4 peaks timelapse”Big Four Ice CavesJupiter Extras — New content inspired by the Friday Stream

We go hands-on with the big Xfce release that took four years and five months to develop. Kubernetes gets an audit that might just set a precedent, and Google has a new feature for AMP that has us all worked up.Links:Xfce 4.14 released — After 4 years and 5 months of work, we are pleased to announce the release of the Xfce desktop 4.14, a new stable version that supersedes Xfce 4.12.Xubuntu DailyOpen Sourcing the Kubernetes Security Audit — The group created an open request for proposals, taking responsibility for evaluating the submitted proposals and recommending the vendor best suited to complete a security assessment against Kubernetes, bearing in mind the high complexity and wide scope of the project. wg-security-audit at master · kubernetes/community · GitHubSomeone audited the Kubernetes sourceServer-side rendering for AMP — AMP now officially supports a technique called server-side rendering (SSR) which you can apply to your AMP pages to make them load even faster. Our tests show increases of up to a whopping 50% on the popular FCP metric.OSdisc.com Has Closed — In just the past couple days, a very popular Linux OS supply site has closed.

The whole Choose Linux crew talk about Ell's recent trip to Black Hat, B-sides, DEF CON, and more at Hacker Summer Camp.Links:Black Hat — Security research in real timeBSides Las Vegas — BSides is more than just talksDEF CON — DEF CON has been a part of the hacker community for over two decades.Diana Initiative — Believe and Achieve - TogetherQueercon

Dealing with users who hate change, dumb phones, and different approaches to social media consumption. Plus infidelity, the state of the world, and consequences of small decisions. 00:00:16 #AskError: Do you read everything or follow all the people? 00:04:53 Changing software and user backlash 00:10:12 #AskError: Hypothetically speaking, do you think it was easier to be unfaithful in a relationship 20 years ago or now? 00:18:07 Dumb phone trope 00:24:54 #AskError: Do you have a 'Sliding Doors' moment in your past? 00:30:31 Will polarised politics last forever?

NetBSD 9.0 release process has started, xargs, a tale of two spellcheckers, Adapting TriforceAFL for NetBSD, Exploiting a no-name freebsd kernel vulnerability, and more. Headlines NetBSD 9.0 release process has started If you have been following source-changes, you may have noticed the creation of the netbsd-9 branch! It has some really exciting items that we worked on: New AArch64 architecture support: Symmetric and asymmetrical multiprocessing support (aka big.LITTLE) Support for running 32-bit binaries UEFI and ACPI support Support for SBSA/SBBR (server-class) hardware. The FDT-ization of many ARM boards: the 32-bit GENERIC kernel lists 129 different DTS configurations the 64-bit GENERIC64 kernel lists 74 different DTS configurations All supported by a single kernel, without requiring per-board configuration. Graphics driver update, matching Linux 4.4, adding support for up to Kaby Lake based Intel graphics devices. ZFS has been updated to a modern version and seen many bugfixes. New hardware-accelerated virtualization via NVMM. NPF performance improvements and bug fixes. A new lookup algorithm, thmap, is now the default. NVMe performance improvements Optional kernel ASLR support, and partial kernel ASLR for the default configuration. Kernel sanitizers: KLEAK, detecting memory leaks KASAN, detecting memory overruns KUBSAN, detecting undefined behaviour These have been used together with continuous fuzzing via the syzkaller project to find many bugs that were fixed. The removal of outdated networking components such as ISDN and all of its drivers The installer is now capable of performing GPT UEFI installations. Dramatically improved support for userland sanitizers, as well as the option to build all of NetBSD's userland using them for bug-finding. Update to graphics userland: Mesa was updated to 18.3.4, and llvmpipe is now available for several architectures, providing 3D graphics even in the absence of a supported GPU. We try to test NetBSD as best as we can, but your testing can help NetBSD 9.0 a great release. Please test it and let us know of any bugs you find. Binaries are available at https://nycdn.netbsd.org/pub/NetBSD-daily/netbsd-9/latest/ xargs wtf xargs is probably one of the more difficult to understand of the unix command arsenal and of course that just means it’s one of the most useful too. I discovered a handy trick that I thought was worth a share. Please note there are probably other (better) ways to do this but I did my stackoverflow research and found nothing better. xargs — at least how I’ve most utilized it — is handy for taking some number of lines as input and doing some work per line. It’s hard to be more specific than that as it does so much else. It literally took me an hour of piecing together random man pages + tips from 11 year olds on stack overflow, but eventually I produced this gem: This is an example of how to find files matching a certain pattern and rename each of them. It sounds so trivial (and it is) but it demonstrates some cool tricks in an easy concept. News Roundup PkgSrc: A Tale of Two Spellcheckers This is a transcript of the talk I gave at pkgsrcCon 2019 in Cambridge, UK. It is about spellcheckers, but there are much more general software engineering lessons that we can learn from this case study. The reason I got into this subject at all was my paternal leave last year, when I finally had some more time to spend working on pkgsrc. It was a tiny item in the enormous TODO file at the top of the source tree (“update enchant to version 2.2”) that made me go into this rabbit hole. Adapting TriforceAFL for NetBSD, Part 2 I have been working on adapting TriforceAFL for NetBSD kernel syscall fuzzing. This blog post summarizes the work done until the second evaluation. For work done during the first coding period, check out this post. Summary > So far, the TriforceNetBSDSyscallFuzzer has been made available in the form of a pkgsrc package with the ability to fuzz most of NetBSD syscalls. In the final coding period of GSoC. I plan to analyse the crashes that were found until now. Integrate sanitizers, try and find more bugs and finally wrap up neatly with detailed documentation. > Last but not least, I would like to thank my mentor, Kamil Rytarowski for helping me through the process and guiding me. It has been a wonderful learning experience so far! Exploiting a no-name freebsd kernel vulnerability A new patch has been recently shipped in FreeBSD kernels to fix a vulnerability (cve-2019-5602) present in the cdrom device. In this post, we will introduce the bug and discuss its exploitation on pre/post-SMEP FreeBSD revisions. > A closer look at the commit 6bcf6e3 shows that when invoking the CDIOCREADSUBCHANNEL_SYSSPACE ioctl, data are copied with bcopy instead of the copyout primitive. This endows a local attacker belonging to the operator group with an arbitrary write primitive in the kernel memory. [Allan and Benedicts Conference Gear Breakdown] Benedict’s Gear: GlocalMe G3 Mobile Travel HotSpot and Powerbank Mogics Power Bagel Charby Sense Power Cable Allan’s Gear: Huawei E5770s-320 4G LTE 150 Mbps Mobile WiFi Pro AOW Global Data SIM Card for On-Demand 4G LTE Mobile Data in Over 90 Countries All my devices charge from USB-C, so that is great More USB thumb drives than strictly necessary My Lenovo X270 laptop running FreeBSD 13-current My 2016 Macbook Pro (a prize from the raffle at vBSDCon 2017) that I use for email and video conferencing to preserve battery on my FreeBSD machine for work Beastie Bits Replacing the Unix tradition (Warning may be rage inducing) Installing OpenBSD over remote serial on the AtomicPI Zen 2 and DragonFly Improve Docking on FreeBSD Register for vBSDCon 2019, Sept 5-7 in Reston VA. Early bird ends August 15th. Register for EuroBSDCon 2019, Sept 19-22 in Lillehammer, Norway Feedback/Questions JT - Congrats Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv Your browser does not support the HTML5 video tag.

It's huge, and it's getting bigger every month. How do you test the Linux Kernel? Major Hayden from Red Hat joins us to discuss their efforts to automate Kernel bug hunting. Plus our honest conversation about which Linux works best for us.Special Guests: Alan Pope, Alex Kretzschmar, Brent Gervais, Drew DeVore, Ell Marquez, Major Hayden, and Neal Gompa.Links:Unpatched KDE vulnerability disclosed on Twitter — When a user opens the KDE file viewer to access the directory where these files are stored, the malicious code contained within the .desktop or .directory files executes without user interaction.KDE rips out ability for KConfig to run shell code — KDE responded on Wednesday by removing the feature to have shell commands as values in the KConfig files, which was described as an intentional feature that allowed for flexibility. First modern coreboot server platform — This platform is the first modern upstream coreboot server platform on the market with an Intel Xeon E3-1200 v6 processor also known as Kabylake-DT.Open-source firmware is the future - Blog | Mullvad VPN — This is the first time a modern off-the-shelf server platform gains coreboot support, and it is an integral part of realizing our vision of transparent and independently auditable VPN servers. Adder WS - System76System76 Preparing To Roll Out Their First Coreboot-Enabled Laptop - Phoronix — Ahead of this year's Open-Source Firmware Conference (OSFC) being held from 3 to 6 September at the Google and Facebook offices in Mountain View, System76 announced the Darter Pro OSFC Edition that ships with Coreboot.System76 Granted A Thunderbolt License To Integrate Into Their Open Firmware - Phoronix — System76 has been granted a Thunderbolt license, meaning that we can now integrate Thunderbolt compatibility into our open firmware.Jupiter Extras — New ideas, great interviews, events, and other content you will love. We bring you the Extras. Free Courses at Linux Academy — August 2019 – Linux Academymajor.io — words of wisdom from a systems engineerContinuous integration testing for the Linux kernel | Opensource.com — The call for continuous integration (CI) grows for more and more projects, the Continuous Kernel Integration (CKI) team forges ahead with a single mission: prevent bugs from being merged into the kernel.Major's Continuous Kernel Integration Talk at Texas Linuxfe 2019CKI Project — Continuous Kernel IntegrationContinuous Kernel Integration project on GitHubCKI hackfest agenda for Plumbers0-Day Continuous Integration (CI) Test Service from Intel — With so much code contributed to each release, it’s impossible to avoid potential regressions. To eliminate them, you must first find the bugs that cause them, which can be like finding a needle in the proverbial haystack. This is what makes the 0-Day Continuous Integration (CI) Test Service so important. 0-Day delivers comprehensive, automated and continuous integration testing that monitors the Linux mainline and 800+ developer trees for regressions, helping find bugs before they reach the Linux kernel so problems can be fixed before they impact users. Simply put, 0-Day helps ensure Linux kernel quality in a highly complex development environment.Snowpatch: continuous-integration testing for the kernel — The Linux kernel project lags many others in its use of CI testing for a number of reasons, including a fundamental mismatch with how kernel developers tend to manage their workflows. At linux.conf.au 2019, Russell Currey described a CI system called Snowpatch that, he hopes, will bridge the gap and bring better testing to the kernel development process.Kernel CI Dashboard — FAQLinux Test Project — Linux Test Project is a joint project started by SGI, OSDL and Bull developed and maintained by IBM, Cisco, Fujitsu, SUSE, Red Hat, Oracle and others. The project goal is to deliver tests to the open source community that validate the reliability, robustness, and stability of Linux. patchwork — Patchwork is a web-based patch tracking system designed to facilitate the contribution and management of contributions to an open-source project. Kernel Patch-Evaluated Testing — KPET is a framework which will execute targeted testing based on changes introduced in the patch, e.g. a network driver or similar would trigger network related testing to be invoked, or a filesystem change would invoke filesystem testing. Beaker lab automation project — Beaker is open-source software for managing and automating labs of test computers. google/syzkaller — syzkaller is an unsupervised, coverage-guided kernel fuzzer openQA | Introduction to the heart of openSUSE's automated testing — OpenSUSE is way too versatile for humans to test even the most common configurations. Therefore openQA was introduced and became an indispensable part of the openSUSE development and release processes. openQA is an automated test tool for operating systems. It allows to test the whole installation process of an operating system in a wide range of software and hardware configurations by leveraging qemu. This talk gives an introduction to openQA and explains how openQA works to help understand what it's output means.OpenQA - Fedora Project Wiki — Fedora uses the openQA automated testing system as a significant part of the release validation testing process, and for testing updates. On this page you can find more information about openQA, how Fedora uses it, and how to install your own instance of openQA so you can try it out and contribute to test development. AppImage by probonopd · Pull Request #72 · JupiterBroadcasting/CasterSoundboard — This PR, when merged, will compile this application on Travis CI upon each git push, and upload an AppImage to your GitHub Releases page. TeleCast with popey — An experiment in lean audio delivery via Telegram. TeleCast with popey is an informal short-form audio podcast-like showLINUX Unplugged 202: Halls of Endless Linux — Michael Hall from Endless joins us to discuss his new role, Endless’ involvement with Gnome & the unique approach they are taking with EndlessOS. End of life - Fedora Project Wiki — Fedora Project maintains each release of Fedora according to the Fedora Release Life Cycle. The following releases have reached End of Life, and are no longer maintained and do not receive any updates. quicktile — Adds window-tiling keybindings to any X11-based desktop.