1_r/devopsish

An investigative report reveals that new spyware can slip in unseen through online ads—and there is currently no defense against it

About a year ago, the U.S. security firm Palo Alto Networks began to hear from a flurry of companies that had been hacked in ways that weren't the norm for cybercriminals.

Brazilian engineer Luiz André Barroso, who ripped up the rulebook at Google, has died. His radical ideas for data centers laid the foundations for cloud computing.

ngrok is the fastest way to host and secure your applications and services on the internet. Learn how by following our getting started guide, or dive straigh...

The "Common Vulnerabilities and Exposures" (CVE) system was launched late in the previous century (September 1999) to track vulnerabilities in software. Over the years since, it has had a somewhat checkered reputation, along with some some attempts to replace it, but CVE numbers are still the only effective way to track vulnerabilities. While that can certainly be useful, the CVE-assignment (and severity scoring) process is not without its problems. The prominence of CVE numbers, and the consequent increase in "reputation" for a reporter, have combined to create a system that can be—and is—actively gamed. Meanwhile, the organizations that oversee the system are ultimately not doing a particularly stellar job.

🚨 Attention users! Apple issues patches for 3 new critical zero-day flaws impacting iOS, iPadOS, macOS, watchOS, and Safari.

This shouldn't come as any surprise to any longtime Phoronix readers and dedicated open-source/Linux enthusiasts, but Valve with their work on the Steam Deck and SteamOS have been lifting the open-source ecosystem as a whole

OpenSource.net launched as a new home for Open Source writers and editors formerly contributing to opensource.com.

Investors are unenthusiastic about the IPOs from Arm, Instacart and Klaviyo, even after a 21-month drought in tech offerings

Allow me to be more helpful to @SlackHQ customers than their entire support apparatus:If you’re using the native Mac app, here’s how you disable their dogshit user-hostile redesign: pic.twitter.com/oRdpBXgiiW— Corey Quinn (@QuinnyPig) September 20, 2023

1. Open #Slack2. Cmd/Ctrl + Shift + R3. Cmd/Ctrl + Shift + S4. ????5. PROFIT!Thanks @mikefiedler for saving multi-workspace users!— Seth Michael Larson (@sethmlarson) September 20, 2023

New report from industry researchers finds that 95 percent of the once-hyped crypto assets have hit rock-bottom valuation

The United Auto Workers union said workers would walk out of more plants on Friday if it didn’t make progress in talks with General Motors, Ford and Stellantis.

Update prepares for the inevitable fall of today's cryptographic protocols.

Gabriel Weinberg of the search engine DuckDuckGo was the first competitor to testify in the Justice Department’s antitrust trial against Google.

Passkeys are the future of online security. Learn how 1Password is introducing passkey support on the web and iOS so you can sign in faster and more securely.

How to get started with networking.

FineWoven isn’t so fine after all.

Listen to the 30th Anniversary Edition + Limited Edition T-Shirt!

Developer News

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our Trademark Usage page. Linux is a registered trademark of Linus Torvalds.

Backed by industry leaders and hundreds of developers, OpenTofu is set to become the go-to infrastructure as code solution.

The Open Source Summit provides an update on what's new in the Linux kernel​ and where it's going from here.

XetHub has developed a cross-platform, user-mode filesystem implementation using the NFSv3 protocol instead of FUSE, allowing for better performance and resiliency. They have open-sourced their Rust implementation for the NFS server, which is currently used in their xet mount implementation and supports Linux, Mac, and Windows Pro.

Hours after posting a large patch series for enabling the Nouveau kernel driver to use NVIDIA's GSP for improving the support for RTX 20/30 series hardware and finally enabling accelerated graphics support on RTX 40 'Ada Lovelace' GPUs, the Red Hat maintainer has resigned from his duties.

By Maciej Domanski, Travis Peters, and David Pokora We identified 10 security vulnerabilities within the caddy-security plugin for the Caddy web server that could enable a variety of high-severity …