Get best of the week

FOSS News No. 5 - review of free and open source news for February 24 - March 1, 2020



Hello everyone!

We continue to review the news of free and open source software (and a bit of hardware). All the most important thing about penguins and not only in Russia and the world.

In the issue No. 5 of February 24 - March 1, 2020:

  1. “FreeBSD: Much Better than GNU / Linux” - A slightly provocative and detailed comparison from an experienced author
  2. Open Society Foundation plans to launch a new platform for joint development and hosting of code
  3. FOSS licenses: which one to choose and why
  4. The European Commission chose the free Signal messenger for security reasons
  5. Manjaro Linux 19.0
  6. 2.8
  7. 5 Open Source Slack
  9. Monado,
  10. Arch Linux
  11. SUSE
  12. Open Source
  13. Mirantis Open Source
  14. Salient OS – Arch Linux
  15. Open Source
  16. Open Cybersecurity Alliance
  17. Brave archive.org
  18. ArmorPaint Epic MegaGrant
  19. 7 ,
  20. -

«FreeBSD: GNU/Linux» –




An interesting, albeit controversial, study from the author has been published on Habré, who for the last 20 years has been exclusively engaged in UNIX systems, approximately equally with FreeBSD and GNU / Linux. The author compares these two systems for a number of parameters, from a look at the OS device as a whole to analysis of particular points, such as support for individual file systems and network technologies, and summarizes that FreeBSD is “high quality, reliability, usability and ease of use”, and GNU / Linux is "a zoo, a garbage dump of loosely coupled code, little that can be completed to the end, lack of documentation, chaos, a bazaar."

We stock up on beer with chips and read a comparison with comments.

An alternative look at the topic and explanation of the prevalence of GNU / Linux




The Free Software Foundation has announced plans to create a new code hosting with support for collaborative development tools and meeting the ethical criteria for free software hosting developed before. The new platform will be created in addition to the existing Savannah hosting, the support of which will continue. The goal of creating a new platform is to solve the problem with the infrastructure for developing open source software. Now many free projects depend on platforms that do not publish their code and force the use of proprietary software. The platform is planned to be commissioned in 2020, building it on the basis of already created free solutions for working on code developed by independent communities that are not tied to the interests of individual companies. The most likely bidder is considered the Pagure platform,Developed by Fedora Linux Developers.

Details

FOSS licenses: which one to choose and why




Ars Technica publishes a detailed analysis of the issue of choosing a FOSS license for its project, explaining which licenses exist, how they differ, and why the choice of license for their project is so important. If you don’t understand how a free license differs from an open one, you confuse “save money” and “copyright”, get mixed up in “all these” GPLs of different versions and prefixes, MPL, CDDL, BSD, Apache License, MIT, CC0, WTFPL - then this The article will definitely help you.

Details

The European Commission chose the free Signal messenger for security reasons




The Verge reports that the European Commission (the highest executive branch of the European Union) recommended that its employees switch to the free Signal encrypted messenger to improve communication security. Politico adds that earlier this month a message appeared on the internal site of the commission, "Signal was selected as the recommended application for external contacts." However, Signal will not be used for all communication. Encrypted emails will continue to be used for unclassified but important information, and special tools will still be used to transfer documents with a privacy class.

Details: [1] , [2]

Manjaro Linux 19.0 distribution release




According to OpenNET, the GNU / Linux release of the Manjaro Linux 19.0 distribution, built on the basis of Arch Linux, but aimed at beginners, has been released. Manjaro has a simpler graphical installer, support for automatic hardware detection and driver installation. The distribution comes in the form of live assemblies with graphical environments KDE, GNOME and Xfce. Manjaro uses its own BoxIt toolkit, designed in the image of Git, to manage repositories. In addition to its own repository, there is support for using the AUR repository (Arch User Repository). In version 19.0, the Linux 5.4 kernel is introduced, updated versions of Xfce 4.14 (with a new theme for Matcha), GNOME 3.34, KDE Plasma 5.17, KDE Apps 19.12.2. GNOME offers a desktop mode switch with different themes. Up to version 9.3 the Pamac package manager has been updated and by default support for self-contained packages in snap and flatpak formats is included, which can be installed via the new Bauh application management interface.



2.8




It does not apply to software, but the topic is related. OpenNET writes that the Smithsonian Institution (the former National Museum of the United States) has made publicly available for free use a collection of 2.8 million images and 3D models. Images are published as public domain, i.e. distribution and use in any form is permitted by all without restriction. A special online service and API for accessing the collection have also been launched. The archive includes photographs of collections of 19 museums included in the institute, 9 research centers, 21 libraries, archives and the national zoo. In the future, it is planned to expand the collection and share new images as 155 million exhibits are digitized. Including, during 2020, about 200 thousand additional images will be published.

Source

Top 5 Team Slack Open Source Alternatives




It's FOSS picks up gives a small overview of the Slack counterparts, one of the most popular services for working communication. Basic functionality is available free of charge, additional options are available in paid tariff plans. Although Slack can be installed on GNU / Linux thanks to the Electron application, it is not open, neither the client nor the server. The following FOSS alternatives are briefly discussed:

  1. Riot
  2. Zulip
  3. Rocket.chat
  4. Mattermost
  5. Wire

All of them are naturally available for download and deployment at home, but there are also paid tariff plans if you want to use the infrastructure of developers.

Details

Full home automation in a new building




On Habré a very interesting example is published of how a person using FOSS tools himself built a “smart house” from scratch in his one-room apartment. The author writes about the choice of technologies, gives wiring diagrams, photographs, configurations, gives a link to the source configuration of the apartment in openHAB (open source home automation software written in Java). True, a year later the author switched to Home Assistant, which he is going to write about in the second part.

Details

The first release of Monado, a platform for virtual reality devices




OpenNET announces the first release of the Monado project, aimed at creating an open implementation of the OpenXR standard. OpenXR is an open, licensing-free standard for access to platforms and devices for virtual reality and augmented reality. The project code is written in C and distributed under the free Boost Software License 1.0, compatible with the GPL. Monado provides a runtime environment that fully complies with OpenXR requirements, which can be used to work with virtual and augmented reality on smartphones, tablets, PCs and other devices. Within the framework of Monado, several basic subsystems are developed:

  1. spatial vision engine;
  2. character tracking engine;
  3. composite server;
  4. interaction engine;
  5. tools.

Details

Arch Linux Project Leader Changes in Arch Linux




According to OpenNET, Aaron Griffin resigned as Arch Linux project manager. Griffin has been a leader since 2007, but recently he was not so active and decided to give his place to a new person. During the developers ’vote, Levente Poliak was chosen as the new project leader. He was born in 1986, is part of the Arch Security Team and accompanies 125 packages. For reference: Arch Linux, according to Wikipedia, is an independent general purpose GNU / Linux distribution optimized for the x86-64 architecture, which aims to provide the latest stable versions of programs following the rolling release model.

Source

Melissa Di Donato is about to revise the development of SUSE




Linux.com announces news on SUSE's development plans. SUSE is one of the oldest Open Source companies and the first to enter the corporate market. SUSE also ranks second in terms of contributions to the Linux kernel among distributions (source - 3dnews.ru/1002488 ). In July 2019, the company changed to CEO, Melissa Di Donato became the new director and, like the new Red Hat CEO, Jim Whitehurst did not come from the Open Source world, but was a SUSE client for the past 25 years of his career. Donato has a very clear view of the future of the company and states:

We are going to build this company based on innovative and flexible thinking. We are not going to give up the stability and quality of our core. What we are going to do is surround the core with truly innovative and advanced technologies that will distinguish us from our competitors ... You will experience completely new feelings, because we will declare ourselves much louder than ever before.

Details

Security Approaches Using Open Source Applications




SdxCentral with examples examines approaches to ensuring the security of Open Source applications and solutions based on them, which will allow organizations to secure their applications and networks, avoiding expensive proprietary solutions, and draws the following main conclusions:

  1. Open Source -, ..
  2. – .
  3. Let’s Encrypt .
  4. .
  5. Open Source TUF, ..
  6. Open Source .
  7. Open Source .



Mirantis Open Source




Linux.com writes about Mirantis. The company, which gained popularity with its OpenStack-based solutions, is now moving very aggressively towards Kubernetes. Last year, the company acquired the Docker Enterprise business. This week they announced the hiring of Kubernetes experts from Finnish company Kontena and set up an office in Finland. Mirantis already has a significant presence in Europe thanks to customers such as Bosch and Volkswagen. The Kontena team mainly worked with two technologies: 1) Kubernetes Pharos distribution, which differed from others in its specialization in solving application lifecycle management tasks; 2) Lens, Kubernetes Dashboard on Steroids”, According to Dave Van Everen, SVP Marketing at Mirantis. All Kontena did was open source. Mirantis plans to integrate much of Kontena’s experience with its engineers and incorporate the best of their offerings into its Docker Enterprise and Kubernetes technologies.

We are experts in the field of open source and continue to provide the greatest flexibility and choice in our industry, but we do it in such a way that protective fences are installed so that companies do not have something too complicated and unmanaged or misconfigured, ” - concluded Van Everen.

Details

Salient OS - Noteworthy developers and players distribution based on Arch Linux




Forbes writes about another Arch Linux-based distribution, GNU / Linux rolling release builds with frequent updates and fresh software - Salient OS for players, content creators and multimedia enthusiasts. The distribution is distinguished by a simple installation, a large number of useful pre-installed software and "polished to the ideal" Xfce environment. If you are interested in games, 99% of the programs you may need are already installed here. Although the longevity of a distribution supported by a lone enthusiast can be troubling, the fact that Salient OS is based on Arch means that there is excellent documentation and you will always find the answer if you need help.

Details

Another look at the same distribution

Open Source and Electric Bike




If someone does not know, Open Source takes its place in the world of electric bicycles. Hackaday writes that there are two ways in this world. The first is a makeshift bike with motors and controllers from China. The second is a finished motorcycle from a manufacturer like Giant, with motors and controllers from China, which will be twice as slow and cost three times as much. According to the publication, the choice is obvious, and there are other advantages when choosing the first path, such as the use of such equipment, which now has open source firmware. As an example, Hackaday cites the Tong Sheng TSDZ2 engine with a new open-source firmware that improves driving, improves engine sensitivity and battery efficiency, opens up the possibility of using any of several color displays.

Details

Open Cybersecurity Alliance




ZDNet announces the advent of OpenDXL Ontology, a framework designed for exchanging data and commands between cybersecurity related programs. The new framework, designed to bridge the fragmentation between cybersecurity tools, was introduced to the Open Source community. OpenDXL Ontology is developed by the Open Cybersecurity Alliance (OCA), a consortium of cybersecurity providers including IBM, Crowdstrike, and McAfee. OCA said OpenDXL Ontology is "the first open source language for connecting cybersecurity tools through a common messaging system." The OpenDXL ontology is aimed at creating a common language between tools and cybersecurity systems, eliminating the need for custom integrations between products that can be most effective when interacting with each other,between end systems, firewalls and more, but suffer from fragmentation and vendor-specific architecture.



Brave archive.org




According to OpenNET, the Archive.org (Internet Archive Wayback Machine) project, which has kept an archive of many sites since 1996, spoke about a joint initiative with the developers of the Brave web browser, which can increase Internet access if there are any problems with the availability of sites. If you try to open a non-existent or inaccessible page in Brave, the browser will check for the existence of the page in archive.org and, if it is found, display a proposal to open the archive copy. This feature is implemented in the release of Brave Browser 1.4.95. There are add-ons with similar functionality for Safari, Chrome, and Firefox. The development of the Brave browser is led by Brendan Ike, the creator of the JavaScript language and former Mozilla executive. The browser is based on the Chromium engine,It focuses on ensuring the privacy and security of users and is distributed under the free MPLv2 license.

Details

ArmorPaint receives Epic MegaGrant grant




Following grants from Blender ($ 1.2 million) in July 2019 and Godot ($ 250 thousand) in February 2020, Epic Games continued to support the development of open source software. This time, the grant received ArmorPaint - a program for texturing 3D models, an analogue of Substance Painter. The reward was $ 25 thousand. The author of the program said on his Twitter that this amount was enough for him to develop during 2020. ArmorPaint is developed by one person.

Sources: [1] , [2] , [3]

7 open source cloud security monitoring tools worth knowing




One more material on safety, this time in the RUVDS blog on Habré. “The widespread use of cloud computing helps companies scale their businesses, but the use of new platforms also means the emergence of new threats,” the author writes and offers the following must-have tools:

  1. Osquery
  2. Goaudit
  3. Grapl
  4. OSSEC
  5. Suricata
  6. Zeek
  7. Panther

Details

Short scholarship programs for software students




A new round of programs is approaching aimed at involving students in open-source development. Here are some of them:

  1. summerofcode.withgoogle.com is a program from Google that gives students the opportunity to participate in the development of open-source projects led by mentors.
  2. socis.esa.int is a program similar to the previous one, but the emphasis is on the space direction.
  3. www.outreachy.org is a program for women and minorities in IT that allows them to join the open-source community of developers.

Details

As an example of the application of their forces within the framework of GSoC, see kde.ru/gsoc

Rostelecom began substituting its advertising in the traffic of subscribers




It does not directly relate to free and open source software, but could not pass by such a egregious case of a corporation's relationship with its customers. OpenNET writes that Rostelecom, the largest broadband operator in the Russian Federation and serving about 13 million subscribers, without much publicity has launched a system of substituting advertising banners in unencrypted HTTP traffic of clients. After sending the claim, representatives of the corporation indicated that the substitution of advertisements was carried out as part of the service for displaying banner advertising to subscribers operating since February 10. Use HTTPS, citizens, and trust no one.

Details

The programmer and musician algorithmically generated all possible melodies and made them into the public domain




Let's finish with Habr. The truth also does not apply directly to free and open source software, but copyright and copyleft are the same, only in art. Two enthusiasts, software lawyer Damien Riel and musician Noah Rubin tried to radically solve the problem of lawsuits for copyright infringement due to allegations of plagiarized music. Using the software algorithm they developed (available on GitHub under the Creative Commons Attribution 4.0 license) called make all the music, they “generated all possible melodies contained in one octave, saved them, protected this archive with copyright and made it into the public domain, so that in the future these melodies do not fall under intellectual property rights. ” All generated tunes are published in the Internet Archive, 1.2 TB in MIDI format.Damien Riel also spoke about this initiative at TED.

Details

Critical Look



That's it, until next Sunday!

Subscribe to our Telegram channel or RSS in order not to miss the new issues of FOSS News.

Previous issue

More articles:


All Articles