Support LINUX Unplugged

Links:

• 💥 Gets Sats Quick and Easy with Strike
• 📻 LINUX Unplugged on Fountain.FM
• Attacking UNIX Systems via CUPS — A remote unauthenticated attacker can silently replace existing printers’ (or install new ones) IPP urls with a malicious one, resulting in arbitrary command execution (on the computer) when a print job is started (from that computer).
• Marcus Hutchins Scan finds 107,287 servers responding to the UDP port 631 — Instead of relying on Shodan data, I performed my own internet-wide scan using a distributed network of servers. This resulted in discovering drastically more exposed cups-browsed instances, causing my total count to rise from 13,289 to 107,287.
• Shodan on X: 75,000 exposed CUPS daemons on the Internet
• Annual Membership — Put your support on automatic with our annual plan, and get one month of membership for free!
• nodeboard — Your Ultimate Digital Inventory Manager
• Lightning Pay
• activate-linux — The "Activate Windows" watermark ported to Linux
• Install Frog on Linux | Flathub — Extract text from images, websites, videos, and QR codes by taking a picture of the source.
• Clapgrep — Ever had a folder full of PDF files, where you knew, somewhere in there, is what you're looking for. But you did not know in which file. So you had to search each of them at a time...

Sponsored By:

• Tailscale: Tailscale is a programmable networking software that is private and secure by default - get it free on up to 100 devices!
• 1Password Extended Access Management: Secure every sign-in for every app on every device.
• Core Contributor Membership: Take $1 a month of your membership for a lifetime! Promo Code: summer

Support LINUX Unplugged

Links:

• 💥 Gets Sats Quick and Easy with Strike
• 📻 LINUX Unplugged on Fountain.FM
• Spokane Meetup - No-Li Brewhouse · JB Events (test deployment)
• Plasma/Krunner Docs — Brent's tip: 'https://search.nixos.org/options?query=\{@}' (the '\{@}' is the magic sauce)
• autossh — Automatically restart SSH sessions and tunnels
• autossh on GitHub
• Spokane Meetup — No-Li Brewhouse, Sat, Jul 13, 2024, 4:00 PM
• RegreSSHion — Remote Code Execution Vulnerability In OpenSSH Server
• regreSSHion — Remote Unauthenticated Code Execution Vulnerability in OpenSSH server.
• NixOS Security advisory: OpenSSH CVE-2024-6387 “regreSSHion” – update your servers ASAP
• Nasty regreSSHion bug affects around 700K Linux systems
• Qualys CVE-2024-6387 Write-up
• Letmein: Authenticating port knocker - Written in Rust — Letmein is a simple port knocker with a simple and secure authentication mechanism. It can be used to harden against pre-authentication attacks on services like SSH, VPN, IMAP and many more.
• fwknop: Single Packet Authorization > Port Knocking — fwknop stands for the "FireWall KNock OPerator", and implements an authorization scheme called Single Packet Authorization (SPA). This method of authorization is based around a default-drop packet filter
• Membership Summer Discount — Take $1 a month of your membership for a lifetime!
• Jeff links: How to run non-nix executables?
• pick: stu — TUI (Terminal/Text UI) application for AWS S3

Plus the big flops we're still sore about.

Special Guest: Kenji Berthold.

Sponsored By:

• Tailscale: Tailscale is a programmable networking software that is private and secure by default - get it free on up to 100 devices!
• Linode Cloud Hosting: A special offer for all Linux Unplugged Podcast listeners and new Linode customers, visit linode.com/unplugged, and receive $100 towards your new account.
• 1Password Extended Access Management: Secure every sign-in for every app on every device.

Support LINUX Unplugged

Links:

• 🎉 Alby — Boost into the show, first grab Alby, top it off, and then head over to the Podcast Index.
• ⚡️ LINUX Unplugged on the Podcastindex.org — You can boost from the web. Once Alby is topped off, visit our page on the Podcast Index.
• 💥 Gets Sats Quick and Easy with Strike
• 📻 LINUX Unplugged on Fountain.FM
• 32-Bit Challenge Details — Can you live and work for a week on a 32-bit system? That's the challenge. It might seem simple, but we think you'll be surprised. Let's find out if the world has moved on too far for 32-bit systems, or if they can still be saved from the landfill.
• First NixCon North America!
• Southern California Linux Expo 19
• Ubuntu’s New Installer Milestone
• Ubuntu 23.10 Restores ZFS File-System Support In Its Installer
• Ubuntu 23.04 Desktop’s New Installer Set To Ship Without OpenZFS Install Support
• HDR Beginning To Work For Linux Gaming
• The State Of HDR On The Steam Deck With Valve’s Gamescope Compositor
• KDE KWin Preparing Preliminary Support For Running HDR Games
• End of the 4.9 Kernel Series
• CVE-2023-0179: Linux kernel stack buffer overflow in nftables
• Wine 8.0 is out now with major compatibility improvements
• Wine 9.0-rc2 Released With 33 More Fixes - Including Wine Wayland Fixes
• Stadia Shuts Down Jan 28th
• Google Stadia: Leaked Documents Explain its Failure
• elementary OS 7 Available Now
• Xfce Going Wayland
• FOSDEM 2023: Fedora Asahi
• Fedora Asahi Aims To Provide The Fedora Workstation Experience For Apple Silicon Systems
• SIGs/Asahi - Fedora Project Wiki
• Ubuntu Gets Real
• Canonical Promotes Ubuntu’s Real-Time “RT” Kernel To General Availability
• Plasma 5.27
• KDE Plasma 5.27 Released
• Final Version of KDE Plasma 5 Released – This is What’s New
• FFmpeg 6.0 Released
• FFmpeg on X: “FFmpeg CLI multithreading is now merged!” / X
• Flathub in 2023
• Flathub in 2023 - Flathub Discourse
• Docker is deleting Open Source organisations - what you need to know
• Docker: We’re no longer sunsetting the Free Team plan
• GNOME 44 Released
• GNOME 44 Released With Many Desktop Enhancements
• GNOME 44 Getting New Background Apps UI
• Ubuntu Cinnamon Flavor Status Announcement
• Plasma 6 Early Builds
• Linux 6.4 Bringing Apple M2 Additions
• Btrfs Improvments in 6.4
• Announcing Fedora Linux 38
• What’s new in Fedora Workstation 38
• Red Hat Cutting “Hundreds Of Jobs”
• Message to Red Hat associates today
• Linux Kernel 6.3 Officially Released
• The new Flathub Website
• Flathub Website Gets a Brand New Look
• Ubuntu 23.04 Released
• Ubuntu 23.04 (Lunar Lobster)
• Ubuntu 23.04 with GNOME 44 and a stable Steam Snap
• HDR hackfest wrap-up
• CVE-2023-28410: i915 graphics driver improperly restricts operations within the bounds of a memory buffer
• New NetFilter flaw gives attackers root privileges
• bcachefs out for review
• Fedora Program Manager Laid Off
• Fedora Program Manager Laid Off As Part Of Red Hat Cuts
• Podman Desktop 1.0 Annouced
• Introducing Azure Linux
• CodeWeavers An Employee Ownership Trust
• CodeWeavers Now Controlled By An Employee Ownership Trust
• XFS Metadata Corruption On Linux 6.3 Tracked Down To One Missing One-Line Patch
• Linux 6.3.5 Released With XFS Metadata Corruption Fix
• Plasma 6 is Wayland only - No X11 for Plasma 6
• Xorg server is deprecated since RHEL 9.0
• Ubuntu Core as an immutable Linux Desktop base
• Red Hat To Stop Shipping LibreOffice In Future RHEL, Limiting Fedora LO Involvement
• LibreOffice to be cut out of RHEL installs
• Debian 12 “bookworm” released
• Linux 6.4 Released
• Linux 6.4 Released, focus on 6.5
• Btrfs In Linux 6.5 May Bring A Cumulative Performance Improvement
• Linux Kernel 6.4 Released with Interesting Mix of Changes
• Bcachefs File-System Pull Request Submitted For Linux 6.5
• Red Hat’s commitment to open source: A response to the git.centos.org changes
• Furthering the evolution of CentOS Stream
• A Comprehensive Analysis of the GPL Issues With the Red Hat Enterprise Linux (RHEL) Business Model
• Rocky Linux Shares How They May Continue To Obtain The RHEL Source Code
• The future of AlmaLinux | Hacker News
• Rocky Linux: Keeping Open Source Open
• LXD Moves to Canonical
• LXD has been re-licensed and is now under a CLA
• Fedora Asahi Remix
• Fedora Asahi Remix Coming For Fedora Linux On Apple Silicon Hardware
• Fedora Asahi Remix: bringing Fedora to Apple Silicon Macs (Flock To Fedora 2023)
• Our new flagship distro: Fedora Asahi Remix
• The first conformant M1 GPU driver
• Asahi Linux’s Apple M1/M2 Gallium3D Driver Now OpenGL ES 3.1 Conformant
• Linux 6.6 To Better Protect Against The Illicit Behavior Of NVIDIA’s Proprietary Driver
• Ubuntu Desktop: Charting a course for the future
• Ubuntu Desktop “Charting A Course For The Future” With Ubuntu 24.04 LTS Next Year
• Leap Replacement Discussion
• Linux’s Marketshare on Steam Still Higher Than Apple macOS
• Hub 6: Healthy meeting culture and the first local AI Assistant [YouTube]
• “Nextcloud Hub 6” launched🚀
• Introducing: Raspberry Pi 5!
• Raspberry Pi 5 Benchmarks
• Raspberry Pi 5 Graphics Continue With Open-Source Driver & Crazy Fast Compared To RPi 4
• Raspberry Pi 5 Review: A New Standard for Makers
• Raspberry Pi Approved Reseller – Raspberry Pi
• CPU decoding acording to Eben Upton in an interview
• Intel is killing off its NUC mini PCs
• Ubuntu 23.10 Released
• Ubuntu Desktop 23.10 ISOs Recalled Due To Malicious User Translations
• Linux Mint Starts working on Wayland Support
• Linux 6.6 Features Include The EEVDF Scheduler, Shadow Stack, Intel IVSC, AMD DBC & More
• Btrfs For Linux 6.6 Brings Fixes, Partially Recovers From Scrub Performance Regression
• XFS File-System Maintainer Stepping Down
• XFS Begins Landing Online Repair, New Release Manager Takes Over
• Element Going AGPL
• Synapse goes AGPL Discussion on Hacker News
• Fedora Linux 39 Released As A Wonderful Upgrade For Leading Workstations & Servers
• Fedora Change: Retire Modularity
• Fedora Web Installer Delayed
• What’s new in Fedora Workstation 39
• GNOME 45 Release Notes
• Amazon Making its Own Linux-Based OS to Replace Android
• 🎉 PipeWire 1.0 🎉
• PipeWire 1.0.0 (El Presidente)
• Quick OwnTracks-Recorder-in-Docker dummies guide
• Pick: trippy — Trippy combines the functionality of traceroute and ping and is designed to assist with the analysis of networking issues.

Plus we fall down the openSUSE rabbit hole when Ell updates us on her desktop challenge.

Special Guests: Alan Pope, Brent Gervais, Danielle Foré, Ell Marquez, Martin Wimpress, and Neal Gompa.

Support LINUX Unplugged

Links:

• KDE Plasma 5.15: Lightweight, Usable and Productive — Discover, Plasma's software and add-on installer, has received tonnes of improvements to help you stay up-to-date and find the tools you need to get your tasks done.
• CVE-2019-5736: runc container breakout (all versions) — However, it *is* blocked through correct use of user namespaces (where the host root is not mapped into the container's user namespace).
• Container Bug Allows Attackers to Gain Root Access on Host Machine — The container bug, CVE-2019-5736, affects runc, the underlying container runtime for Docker, containerd, Kubernetes, cri-o and other container software, which means that nearly everyone running containers is affected.
• Doomsday Docker security hole uncovered | ZDNet
• Linux Coin Miner Removes All Other Malware and Miners
• Fedora logo redesign — The current Fedora Logo has been used by Fedora and the Fedora Community since 2005. However, over the past few months, Máirín Duffy and the Fedora Design team, along with the wider Fedora community have been working on redesigning the Fedora logo.
• Fedora's FESCo Approves Of A "Sane" Approach For Counting Fedora Users Via DNF — Baked over the past month was a new privacy-minded plan for counting users via DNF that relies upon a "countme" bit that will be incremented weekly or so and not have any UUID as originally envisioned
• Fedora 30 Will Get Bash 5.0 But Yum's Death Sentence Postponed To F31
• Draft Fedora 31 schedule available – Fedora Community Blog — After some discussion before the end of the year, we decided not to go with an extended development cycle for Fedora 31.
• SCALE Saturday Dinner JB Meetup — Let's eat and be merry at P.F. Changes Saturday night of SCALE17x!
• Containers: What you need to know; so you know what you need to know - Ell Marquez at S
• Elementary Staging COPR Repo — This repository contains packages of official elementaryOS projects which are not (yet) ready for inclusion in fedora as official packages.
• Ellopunk/OSchallenge - openSUSE — Ell's openSUSE journey notes.
• Pantheon Desktop on Fedora — The Pantheon desktop environment is the DE that powers elementaryOS. It builds on GNOME technologies, but utilizes components that were written from scratch in vala, using the GTK+3 toolkit.
• UberWriter — It's a simple markdown editor that offers a lot of features.
• solVItaire — An implementation of the classic solitaire games Klondike and Spider which has some nice to use vi(1) like keybindings, but can also be played with standard cursor keys, the number pad/row or even the mouse.
• VIM Adventures — Learn VIM while playing a game!
• Solvitaire As a SNAP
• FireQOS Reference
• FireQOS New User Tutorial