next-20240403: linux-next
Posted: 2024-04-03 02:21:09 Source: http://www.kernel.org/
| Version: | next-20240403 (linux-next) |
|---|---|
| Released: | 2024-04-03 |
New XZ Backdoor Scanner Detects Implants In Any Linux Binary
Posted: 2024-04-02 21:30:00 Source: https://it.slashdot.org/story/24/04/02/212251/new-xz-backdoor-scanner-detects-implants-in-any-linux-binary?utm_source=atom1.0mainlinkanon&utm_medium=feed
Bill Toulas reports via BleepingComputer: Firmware security firm Binarly has released a free online scanner to detect Linux executables impacted by the XZ Utils supply chain attack, tracked as CVE-2024-3094. CVE-2024-3094 is a supply chain compromise in XZ Utils, a set of data compression tools and libraries used in many major Linux distributions. Late last month, Microsoft engineer Andres Freud discovered the backdoor in the latest version of the XZ Utils package while investigating unusually slow SSH logins on Debian Sid, a rolling release of the Linux distribution. The backdoor was introduced by a pseudonymous contributor to XZ version 5.6.0, which remained present in 5.6.1. However, only a few Linux distributions and versions following a "bleeding edge" upgrading approach were impacted, with most using an earlier, safe library version. Following the discovery of the backdoor, a detection and remediation effort was started, with CISA proposing downgrading the XZ Utils 5.4.6 Stable and hunting for and reporting any malicious activity. Binarly says the approach taken so far in the threat mitigation efforts relies on simple checks such as byte string matching, file hash blocklisting, and YARA rules, which could lead to false positives. This approach can trigger significant alert fatigue and doesn't help detect similar backdoors on other projects. To address this problem, Binarly developed a dedicated scanner that would work for the particular library and any file carrying the same backdoor. [...] Binarly's scanner increases detection as it scans for various supply chain points beyond just the XZ Utils project, and the results are of much higher confidence. Binarly has made a free API available to accomodate bulk scans, too.
Read more of this story at Slashdot.
Neptune 8.1 "Juna" overview | an elegant out of the box experience.
Posted: 2024-04-02 16:12:50 Source: https://www.youtube.com/watch?v=WZstfNA-kDY
Best Practices and Strategic Insights to Dockerizing Your Linux Applications
Posted: 2024-04-02 16:00:00 Source: https://www.linuxjournal.com/content/best-practices-and-strategic-insights-dockerizing-your-linux-applications
In the realm of software development and deployment, Docker has emerged as a revolutionary force, offering a streamlined approach to creating, deploying, and running applications by using containers. Containers allow developers to package up an application with all the parts it needs, such as libraries and other dependencies, and ship it all out as one package. This guide delves deep into the world of Dockerizing applications on Linux, covering best practices, deployment strategies, and much more to empower developers and DevOps professionals alike.
Understanding Docker and Containerization
Docker is a platform that utilizes OS-level virtualization to deliver software in packages called containers. Containers are isolated from one another and bundle their own software, libraries, and configuration files; they can communicate with each other through well-defined channels. Unlike traditional virtual machines, containers do not bundle a full operating system — just the application and its dependencies. This makes them incredibly lightweight and efficient.
The Benefits of Docker- Consistency across Environments: Docker containers ensure that applications work seamlessly in any environment, from a developer's personal laptop to the production server.
- Isolation: Applications in Docker containers run in isolated environments, reducing conflicts between applications and between applications and the host system.
- Resource Efficiency: Containers share the host system kernel and start much faster than VMs. They also require less compute and memory resources.
- Scalability and Modularity: Docker makes it easy to break down applications into microservices, making them easier to scale and update.
Setting Up Docker on Linux
The process to install Docker varies depending on the Linux distribution. For Ubuntu, for instance, Docker can be installed with just a few commands:
sudo apt update sudo apt install docker.io sudo systemctl start docker sudo systemctl enable docker
After installation, verify that Docker is running by executing sudo docker run hello-world. This command pulls a test image from Docker Hub and runs it in a container, which prints a message.
Dockerizing Applications: Best Practices
Creating Efficient DockerfilesA Dockerfile is a script containing a series of commands and instructions to build a Docker image. The key to an efficient Dockerfile is minimizing the build time and the size of the image.
Install Docker on Ubuntu 24.04
Posted: 2024-04-02 15:21:01 Source: https://linuxhint.com/install-docker-ubuntu-24-04/
This post guides you on steps to follow to get Docker installed on Ubuntu 24.04 quickly.
Distribution Release: ROSA 12.5
Posted: 2024-04-02 14:58:50 Source: https://distrowatch.com/12095
The DistroWatch news feed is brought to you by TUXEDO COMPUTERS. ROSA is a Russian Linux distribution which originally forked from the Mandriva family of distributions. The project's latest release, ROSA 12.5, provides two full features desktops (KDE Plasma and GNOME) along with two lightweight editions (LXQt and Xfce). "ROSA Fresh 12.5 offers a wide selection of installation images,....
next-20240402: linux-next
Posted: 2024-04-02 03:24:50 Source: http://www.kernel.org/
| Version: | next-20240402 (linux-next) |
|---|---|
| Released: | 2024-04-02 |
Vulnerability Discovered in xz Libraries
Posted: 2024-04-01 21:09:50 Source: http://www.linux-magazine.com/Online/News/Vulnerability-Discovered-in-xz-Libraries
An urgent alert for Fedora 40 has been posted and users should pay attention.
How to Mount a USB Thumb Drive, HDD, or SSD on Proxmox VE
Posted: 2024-04-01 17:48:32 Source: https://linuxhint.com/how-to-mount-a-usb-thumb-drive-hdd-or-ssd-on-proxmox-ve/
In this article, I am going to show you how to mount a USB thumb drive or a USB HDD/SSD on your Proxmox VE server. Table of Contents: Finding the USB Thumb Drive/HDD/SSD to Mount on Proxmox VE Creating a Mount Point for the USB Storage Device on Proxmox VE Mounting the USB Storage […]
Zorin OS 17.1 Core Quick Overview #shorts
Posted: 2024-04-01 16:46:41 Source: https://www.youtube.com/watch?v=4XQiCIdbrb0
DistroWatch Weekly, Issue 1064
Posted: 2024-04-01 00:20:34 Source: https://distrowatch.com/12094
The DistroWatch news feed is brought to you by TUXEDO COMPUTERS. This week in DistroWatch Weekly: Review: NixOS 23.11News: FreeBSD Foundation to focus on wireless networking improvements, Ubuntu Pro offers 12 years of support, Qubes OS 4.1 nearing its end of life, liblzma compromised upstreamQuestions and answers: The status of GNU's Hurd kernelReleased last week: RELIANOID 7.2, NetBSD 10.0Torrent....
How to Install Google Chrome on Ubuntu 24.04
Posted: 2024-03-31 21:51:46 Source: https://linuxhint.com/how-to-install-google-chrome-on-ubuntu-24-04/
Ubuntu 24.04, codename noble, is with us, and among the first things you must do is to ensure you have your favorite browser all set. Time has proven that Google Chrome is the best web browser, and as we all know, it isn’t installed in Ubuntu.Instead, Ubuntu uses Firefox, but you don’t have to get […]
6.9-rc2: mainline
Posted: 2024-03-31 21:32:39 Source: http://www.kernel.org/
| Version: | 6.9-rc2 (mainline) |
|---|---|
| Released: | 2024-03-31 |
| Source: | linux-6.9-rc2.tar.gz |
| Patch: | full (incremental) |
How to Add a Windows SMB/CIFS Share as Storage on Proxmox VE
Posted: 2024-03-31 20:57:12 Source: https://linuxhint.com/how-to-add-a-windows-smb-cifs-share-as-storage-on-proxmox-ve/
You can add/mount an SMB/CIFS share from your Windows OS or NAS device on Proxmox VE as storage for storing ISO images, container images, VM disk images, backups, etc. In this article, I am going to show you how to add a Windows SMB/CIFS share on Proxmox VE as storage. Table of Contents: Adding […]
goto Statement in C
Posted: 2024-03-31 19:57:24 Source: https://linuxhint.com/goto-statement-clang/
Practical guide on the fundamentals and workings of goto statements in C, the various instances it can come in handy, how it works, and how to use it.
Microsoft Engineer Sends Rust Linux Kernel Patches For In-Place Module Initialization
Posted: 2024-03-31 15:40:00 Source: https://linux.slashdot.org/story/24/03/30/222213/microsoft-engineer-sends-rust-linux-kernel-patches-for-in-place-module-initialization?utm_source=atom1.0mainlinkanon&utm_medium=feed
"What a time we live in," writes Phoronix, "where Microsoft not only continues contributing significantly to the Linux kernel but doing so to further flesh out the design of the Linux kernel's Rust programming language support..." Microsoft engineer Wedson Almeida Filho has sent out the latest patches working on Allocation APIs for the Rust Linux kernel code and also in leveraging those proposed APIs [as] a means of allowing in-place module initialization for Rust kernel modules. Wedson Almeida Filho has been a longtime Rust for Linux contributor going back to his Google engineering days and at Microsoft the past two years has shown no signs of slowing down on the Rust for Linux activities... The Rust for Linux kernel effort remains a very vibrant effort with a wide variety of organizations contributing, even Microsoft engineers.
Read more of this story at Slashdot.
How to Export VMware Workstation Pro Virtual Machines in OVF/OVA Format
Posted: 2024-03-31 13:53:57 Source: https://linuxhint.com/how-to-export-vmware-workstation-pro-virtual-machines-in-ovf-ova-format/
VMware Workstation Pro virtual machines can be exported and imported back into VMware Workstation Pro on other computers or other hypervisor programs such as Proxmox VE, KVM/QEMU/libvirt, XCP-ng, etc. VMware Workstation Pro virtual machines can be exported in OVF and OVA formats. OVF: The full form of OVF is Open Virtualization Format. The main goal […]
How to Install the Official NVIDIA GPU Drivers on Proxmox VE 8
Posted: 2024-03-31 13:53:32 Source: https://linuxhint.com/install-official-nvidia-gpu-drivers-proxmox-ve-8/
Guide on how to install the latest version of the official NVIDIA GPU drivers on Proxmox VE 8 to use it for VirIO-GL/VirGL 3D acceleration on Proxmox VE server.
How to Generate LetsEncrypt SSL Certificate using CloudFlare DNS-01 Challenge and Use it on Synology NAS
Posted: 2024-03-31 13:53:09 Source: https://linuxhint.com/generate-letsencrypt-synology-nas/
Practical guide on how to install and use the “acme.sh” ACME client to generate a Let’s Encrypt SSL certificate via the DNS-01 challenge on your Synology NAS.
How to Find the Chipset Driver/Firmware to Install to Get WiFi/Ethernet Devices to Work on Linux
Posted: 2024-03-31 13:52:46 Source: https://linuxhint.com/find-chipset-driver-firmware-install-get-wifi-ethernet-devices-work-linux/
Practical tutorial on how to find the chipset driver/firmware that you need to install to get your WiFi/Ethernet network device to work on Linux with “lshw”.