Plus we debate if OpenWrt is still the best router solution, and chew on Microsoft's new SELinux competitor.

Special Guests: Alex Kretzschmar and Neal Gompa.

Support LINUX Unplugged

Links:

• Window Maker Version 0.95.9 Released
• Microsoft announces IPE, a new code integrity feature for Linux — Microsoft says that IPE is not intended for general-purpose computing. The IPE LSM was designed for very specific use cases where security is paramount, and administrators need to be in full control of what runs on their systems. Examples include embedded systems, such as network firewall devices running in a data center, or Linux servers running strict and immutable configurations and applications.
• OpenWrt - Opkg susceptible to MITM
• Brent sits down with Daniel Foré, founder of elementary OS
• Know when we're going to be live. Check out the calendar!
• Keep the conversation going join us on Telegram
• Fedora nightly compose finder
• Fedora 32 Looking At Using EarlyOOM By Default To Better Deal With Low Memory Situations — The oom-killer generally has a bad reputation among Linux users. This may be part of the reason Linux invokes it only when it has absolutely no other choice. It will swap out the desktop environment, drop the whole page cache and empty every buffer before it will ultimately kill a process. At least that's what I think that it will do. I have yet to be patient enough to wait for it, sitting in front of an unresponsive system.
• earlyoom - Early OOM Daemon for Linux — The oom-killer generally has a bad reputation among Linux users. This may be part of the reason Linux invokes it only when it has absolutely no other choice. It will swap out the desktop environment, drop the whole page cache and empty every buffer before it will ultimately kill a process. At least that's what I think that it will do. I have yet to be patient enough to wait for it, sitting in front of an unresponsive system.
• rfjakob/systembus-notify: systembus-notify - system bus notification daemon
• oomd — Out of memory killing has historically happened inside kernel space. On a memory overcommitted linux system, malloc(2) and friends usually never fail. However, if an application dereferences the returned pointer and the system has run out of physical memory, the linux kernel is forced to take extreme measures, up to and including killing processes. This is sometimes a slow and painful process because the kernel can spend an unbounded amount of time swapping in and out pages and evicting the page cache. Furthermore, configuring policy is not very flexible while being somewhat complicated.
• low-memory-monitor on GitLab
• low-memory-monitor — low-memory-monitor, as its name implies, monitors the amount of free physical memory on the system and will shoot off signals to interested user-space applications, usually session managers, or sandboxing helpers, when that memory runs low, making it possible for applications to shrink their memory footprints before it's too late either to recover a usable system, or avoid taking a performance hit.
• Nohang — Nohang is a highly configurable daemon for Linux which is able to correctly prevent out of memory (OOM) and keep system responsiveness in low memory conditions.
• Better interactivity in low-memory situations - devel - Fedora Mailing-Lists
• EnableEarlyoom - Fedora Project Wiki
• Nushell - The Unix philosophy of shells, where pipes connect simple commands together, and bring it to the modern style of development.
• Timekpr - simple and easy to use time managing software that helps optimizing time spent at computer.

We also have a batch of big community news, and the case for the cloud killing Open Source.

Special Guests: Alessandro Castellani and Brent Gervais.

Support LINUX Unplugged

Links:

• OggCamp 19 — OggCamp is an unconference celebrating Free Culture, Free and Open Source Software, hardware hacking, digital rights, and all manner of collaborative cultural activities.
• OggCamp on Twitter
• Remote Code Execution in apt-get — A vulnerability in apt allows a network man-in-the-middle (or a malicious package mirror) to execute arbitrary code as root on a machine installing any package. The bug has been fixed in the latest versions of apt.
• Why does APT not use HTTPS?
• Turkish ISP Swapped Downloads of Popular Software with Spyware-Infected Apps
• Which block I/O scheduler is the best? We asked eBPF. — I set out expecting to see differing distributions of latencies for each block scheduler, but ultimately found that I didn’t understand low-level systems behavior to the degree I thought I did.
• Want to spin up Ubuntu VMs from Windows 10's command line, eh? We'll need to see a Multipass. — Windows 10 developers have been gifted yet another way of running Linux on their desktop in the form of Canonical's Multipass.
• Microsoft Employee Hints at Windows Core OS Open Source Components
• TechSNAP Episode 395: The ACME Era
• LinuxFest Northwest 20th Anniversary
• LFNW Telegram Group
• LinuxFest Northwest Parking Lot BBQ Meetup
• SCALE 17x
• SCALE Telegram Group
• Texas Linux Fest 2019
• Public Speaking: A repository of resources about public speaking, specifically in the context of software development and IT conferences.
• Linux Operating System Fundamentals — Have you heard of Linux, but don't really know anything about it? Are you a non-technical person just wanting to know what this 'Linux' thing is? Then this course is for you.
• Akira: Native Linux App for UI and UX Design
• Akira on Kickstarter
• Exponent episode 159 — Inverted Pyramids
• Late Night Linux – Episode 55 — Are you better off with the elasticity of public clouds like AWS, or should you avoid lock-in by running servers on premises?
• AWS, MongoDB, and the Economic Realities of Open Source
• Open source confronts its midlife crisis