(Jun 17) Multiple vulnerabilities were discovered in the Lua subsystem of Redis, a persistent key-value database, which could result in denial of service. For the stable distribution (stretch), these problems have been fixed in
(Jun 17) It was discovered that Libgcrypt is prone to a local side-channel attack allowing recovery of ECDSA private keys. For the stable distribution (stretch), this problem has been fixed in
A new version of the Deepin Linux distribution is available to download. Deepin 15.6 improves on last year’s Deepin 15.5 release in a number of ways, chucks in a new-look app launcher, and includes a crop of core app updates for good measure. “The new release – deepin 15.6, offers the delicated interfaces and easy-to-understand logics […]
This post, Deepin 15.6 Released, Features New App Menu, Dark Mode, & More, was written by Joey Sneddon and first appeared on OMG! Ubuntu!.
It’s another cartoon in need of a caption! You submit your caption, we choose three finalists, and readers vote for their favorite. The winning caption for this cartoon will appear in the August issue of Linux Journal.
To enter, simply type in your caption in the comments below or email us, email@example.com.
(Jun 15) GnuPG 2 could be made to present validity information incorrectly.
(Jun 15) Several security issues were fixed in the Linux kernel.
A popular PC racing game has sped its way on to the Ubuntu Snap store — and I think you’re gonna dig it. It’s called ‘TrackMania Nations Forever’ (TMNF) and, for some of you, it will need zero introduction. First released back in 2008 — a decade ago — TrackMania Nations Forever built a solid reputation […]
This post, You Can Now Play ‘TrackMania Nations Forever’ on Ubuntu, was written by Joey Sneddon and first appeared on OMG! Ubuntu!.
Remember that tiny 7-inch laptop we collectively cooed over last year? Well, an updated model with slimmer bezels and a faster CPU is on the way. The GPD Pocket 2 builds on the things the first-gen model got right, like it high-res screen, high-end build quality, and highly-portable form factor. But there are also a […]
This post, GPD Pocket 2 Launches This Summer with a Faster Processor, was written by Joey Sneddon and first appeared on OMG! Ubuntu!.
A script a day will allow you some freedom to play and build other useful
and more complicated scripts. Every day, I attempt to make my life
this I mean, trying to stop doing the repetitive tasks. If a process is repeatable; it
can be scripted and automated. The idea to automate everything is not new, but
try automating a command on a remote host.
SSH is very flexible, and it comes with many options. My absolute favorite is
its ability to let you run a command on a remote server by passing the
flag. An example:
ssh -t firstname.lastname@example.org 'cat /etc/hosts'
ssh to webserver1.test.com, then run
cat in your shell
and return the output.
For efficiency, you could create an ssh-key pair.
It’s a simple process of creating a passwordless public and a private
keypair. To set this up, use
ssh-keygen, and accept the defaults ensuring you
leave the password blank:
ssh-keygen Generating public/private rsa key pair. Enter file in which to save the key (/home/adam/.ssh/id_rsa): y Enter passphrase (empty for no passphrase): LEAVE BLANK Enter same passphrase again: Your identification has been saved in y. Your public key has been saved in y.pub. The key fingerprint is: SHA256:jUxrQRObADE8ardXMT9UaoAcOcQPBEKGU622646P8ho ↪email@example.com The key's randomart image is: +---[RSA 2048]----+ |B*++*Bo.=o | |.+. | |=*= | +----[SHA256]-----+
Once completed, copy the public key to the target server. To do this, use
ssh-copy-id firstname.lastname@example.org /usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/home/adam/.ssh/id_rsa.pub" /usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), ↪to filter out any that are already installed /usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if ↪you are prompted now it is to install the new keys email@example.com's password: ******** Number of key(s) added: 1
You will be asked for the password of the target server.
If you have set this up correctly, you won’t be asked for your password
next time you
ssh to your target.
Execute the original example. It should be quicker now that you don’t need to
enter your password.
If you have a handful of servers and want to report
the running kernel versions, you can run
uname -r from the command line, but
to do this on multiple devices, you’ll need a script.
Start with a file
with a list of your servers, called server.txt, and then run your script to
iterate over each server and return the required information:
News briefs for June 15, 2018.
Purism detailed some of its future plans for PureOS in a blog post this morning. The team is
looking into Librem 5 specific-image builds, and besides the ARM64 architecture, they also are “researching usage of OSTree, Flatpak, and a couple of other new technologies
to use by default in PureOS on the desktop and/or the phone”. In addition, “PureOS is planning to host its own Flathub instance
(dedicated to Freedom, of course) so upstream developers can just package their app and submit it to PureOS’s flathub if they
don’t want to trouble themselves with system-wide dependencies.” Also, part of Purism’s plans for handling apps includes developing
“an ethical app store that will provide users with an option to donate, ‘pay what you want’, or ‘subscribe’
(support as a patron) the apps you use”.
Technica reported this week that “a single person or group may have made as much as $90,000 over 10 months by spreading 17
malicious images that were downloaded more than 5 million times from Docker Hub.” A user first complained of the backdoor in
September, but nothing was done, and 14 more malicious images were submitted. See Kromtech’s
report for more details on the cryptojacking. And note that “despite the images being pulled from Docker Hub, many servers that
installed the images may still be infected.”
Samsung yesterday announced its new
Chromebook Plus 2-in-1 convertible laptop, running the Linux-based ChromeOS. The Chromebook Plus “is equipped with a built-in pen and
offers a light, thin and stylish design that delivers versatility, portability and a premium experience at a competitive price
point”. It will be available starting June 24 from Best Buy for $499.99.
Fedora 29 will fully support the FreeDesktop.org Boot Loader Specification, Phoronix reports. With this change Fedora
hopes to “simplify the kernel installation process significantly and make it more consistent across the different architectures.
This will also make it easier for automation tools to manage the bootloader menu options since it will just be a matter of adding,
removing or editing individual BLS entry files in a directory.”