An incredibly technically complex #backdoor in xz (potentially also in libarchive and elsewhere) was just discovered. This backdoor has been quietly implemented over years, with the assistance of a wide array of subtly interconnected accounts:
Fun and heart warming #Linux#kernel contrib from 4-year old about "s" letter feeling sad and lonely at the end of line, missing header hilight as the all other letters have. ❤️
🚨 ⚠️ Emergency PSA: A critical security exploit was discovered in the xz package recently, used for compression and decompression on nearly all Linux distributions.
Rawhide users ARE impacted and should immediately STOP using Rawhide until the package update is fully rolled back. (1/3)
Si quelqu'un a un job d'amin cybersecurité dans le sud de Paris avec télétravail (par pitié) n'hésitez pas à me faire signe. J'suis sympa, je m'intègre bien et je suis moins bête que je n'en ai l'air.
J'ai bossé sur #cyberark
Je suis très bonne en systèmes #windows et cherche à me former sur #linux
Je parle couramment l'anglais
J'ai travaillé sur le #SOC#checkpoint
Je fais du #powershell à mes heures perdues
Here is my new GNU/Linux distribution guide about Debian KDE 12, the right GNU/Linux distribution for professional digital painting in 2024! Also about three major problems with GNU/Linux distros that will drive away all professional artists, IMO, and how I got kicked out of the Fedora KDE ecosystem with F40, which imposed Plasma6 and Wayland. I hope it helps other artists here!
Okay, so let me tell you about my doorbell, from a #networking perspective.
When you push the button by the door, it sends a message over the #zigbee wireless mesh network in my house. It probably goes through a few hops, getting relayed along the way by the various Zigbee light switches and "smart outlets" I have.
Once it makes it to my utility closet, it's received by a Zigbee-to-USB dongle, through a USB hub (a simple tree network) plugged into an SFF PC. From there, it gets fed into zigbee2mqtt, which, as the name implies, publishes it to my local #mqtt broker.
The mqtt broker is in the small #kubernetes cluster of #raspberrypi nodes I run in my utility closet. To get in (via a couple of #ethernet switch hops), it goes through #metallb, which is basically a proxy-ARP type service that advertises the IP address for the mqtt endpoint to the rest of my network, then passes the traffic to the appropriate container via a #linux veth device.
I have #HomeAssistant, running in the same Kubernetes cluster, subscribed to these events. Within Kubernetes, the message goes through the CNI plugin that I use, #flannel. If the message has to pass between hosts, Flannel encapsulates it in VXLAN, so that it can be directed to the correct veth on the destination host.
Because I like #NodeRed for automation tasks more than HomeAssistant, your press of the doorbell takes another hop within the Kubernetes cluster (via a REST call) so that NodeRed can decide whether it's within the time of day I want the doorbell to ring, etc. If we're all good, NodeRed publishes an mqtt message (more VXLANs, veths, etc.)
(Oh and it also sends a notification to my phone, which means another trip through the HomeAssistant container, and leaving my home network involves another soup of acronyms including VLANs, PoE, QoS, PPPoE, NAT or IPv6, DoH, and GPON. And maybe it goes over 5G depending on where my phone is.)
Of course something's got to actually make the "ding dong" sound, and that's another Raspberry Pi that sits on top of my grandmother clock. So to get there the message hops through a couple Ethernet switches and my home WiFi, where it gets received by a little custom daemon I wrote that plays the sound via an attached #HiFiBerry board. Oh but wait! We're not quite done with networking, because the sound gets played through PulseAudio, which is done through a UNIX domain socket.
SO ANYWAY, that's why my doorbell rarely works and why you've been standing outside in the snow for five minutes.
Today we're celebrating the 26th anniversary of GNOME 🎉🎉
Thank you to all our outstanding contributors and community members for helping make the #GNOME project what it is today!
✍️ Firefox Isn't Just a Browser; It Is a Web Resistance, and It's Now at Version 119
I'm baffled as to why Google Chrome still dominates the browser market when Firefox, a faster and privacy-conscious open-source browser, is readily available!
In the previous update, Firefox introduced a long-awaited feature – an automatic and customizable built-in translation. With this addition, Firefox fills a significant gap that was once held against it.
Now, with the latest update, Firefox 119 not only surpasses Chrome (I'm confident it does) but also competes with PDF editors. With great excitement, let's explore what this latest version has in store.
Do you work on GNOME or adjacent stuff? Do you want to help improve the GNOME desktop around usability, reliability, safety, digital well-being?
GET PAID TO DO IT!
The @gnome Foundation is offering a one-year contract (with potential to extend) to work on the above on behalf of the Foundation. You’d probably interact with me, the GNOME design team, and core maintainers of GNOME components.