Search results for tag #linux
"Nginx Location Blocks: Match Rules and Priority"
"How Nginx picks a location block: prefix, exact, and regex matches, the priority order, named locations, and common configuration patterns."
Fedora approved the AI Developer Desktop initiative to create AI-focused Atomic Desktop images with local-first tooling and no default cloud AI connections. 🤖
Planned Fedora 45 releases include open-source AI images plus CUDA-based remixes for Intel, AMD, NVIDIA, and ARM hardware support. 🐧
🔗 https://itsfoss.com/news/fedora-ai-developer-desktops/
#TechNews #Fedora #Ubuntu #Linux #AI #ArtificialIntelligence #OpenSource #Atomic #CUDA #Cloud #CloudAI #LocalAI #FOSS #NVIDIA #AMD #Intel #ARM #MachineLearning #Developers
Website installer incident (May 2026)
In early May 2026, attackers compromised the official JDownloader website by manipulating specific installer download links through the content management system. Between May 6-7, 2026 (UTC), users who downloaded Windows installers via "Download Alternative Installer" links or the Linux shell installer were redirected to malicious third-party files instead of genuine installers. The attackers gained CMS-level access only, not server or filesystem control. The incident was detected on May 7 via Reddit alerts, and the server was immediately taken offline. Malicious links were removed, legitimate links restored, and security hardened before the site resumed normal operations on May 8-9. In-app updates and other download paths remained unaffected. Users who executed downloaded installers during the risk window are advised to perform clean OS reinstalls and change passwords from trusted devices.
Pulse ID: 6a01c237ee7d6056fbe6a77f
Pulse Link: https://otx.alienvault.com/pulse/6a01c237ee7d6056fbe6a77f
Pulse Author: AlienVault
Created: 2026-05-11 11:49:11
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #InfoSec #Linux #OTX #OpenThreatExchange #Password #Passwords #RAT #Rust #Windows #Word #bot #AlienVault
So I'm thinking of upgrading my T630 to #proxmox 9 from 8. But since I don't have much there anyways, this could be a chance to switch to something more interesting, penses-tu pas??
Could go the #BSD way and use #bhyve stuff? Orrr try something really interesting, #SmartOS which gives you bhyve AND #KVM AND #zones ??? Oh I do love a good set of choices that just paralyzes me sometimes :D
Anyone use any of these? Are there terraform / pulumi compatible modules for this stuff?
The Register: Linux kernel maintainers pitch emergency killswitch after CopyFail and Dirty Frag chaos https://www.theregister.com/oses/2026/05/11/linux-kernel-maintainers-pitch-emergency-killswitch-after-copyfail-and-dirty-frag-chaos/5237801 @theregister @carlypage #Linux #infosec #Copyfail
Emblematic is the attack on '#Open #source' (#linux)
Until it was 'niche' no one considered it
now that it is adopted by many
the 'Corporations' (#Microsoft, #Apple, etc...) are pushing to 'control' it, 'legislatively' (Corporations are behind these attacks)
for fear of losing 'dividends'...
Even in the #EU not only in the #US, the attack on Open source is Worldwide.
This makes me love Linux even more, and it must be DEFENDED
as the principle of freedom is must be defended.
RE: https://mastodon.social/@muylinux/116557142241027053
Muy buena guía para quienes se hayan pasado como yo al #Gaming en #Linux #LinuxGaming .
Yo por lo menos llevo casi un año en #Bazzite y estoy contentisimo
The Record: Dirty Frag: Linux kernel hit by second major security flaw in two weeks https://therecord.media/dirty-frag-linux-kernel-hit-by-second-major-bug @therecord_media #infosec #vulnerability #Linux
#Debian 14 “Forky” to Ship with Reproducible Packages, LoongArch64 Support https://9to5linux.com/debian-14-forky-to-ship-with-reproducible-packages-loongarch64-support
Alt...
Debian logo
🍥 Debian Now Blocks Non-Reproducible Packages from Testing
「 The main benefits include package integrity, build transparency, and stronger supply-chain verification. This way, Debian can more effectively confirm that distributed binaries match their source, detect unexpected build changes, reduce the risk of compromised infrastructure producing altered packages, and prevent reproducibility regressions from entering testing 」
https://linuxiac.com/debian-now-blocks-non-reproducible-packages-from-testing/
Infosecurity-Magazine: Rushed Patches Follow Broken Embargo on New Linux Kernel Vulnerabilities https://www.infosecurity-magazine.com/news/dirty-frag-linux-kernel/ #Linux #infosec #vulnerability #copyfail
[$] Providing 64KB base pages with 4KB kernels, two different ways https://lwn.net/Articles/1071484/ #tech #linux
Mysterious hacker organization operating secretly for 6 years is exploiting critical cPanel vulnerability to deploy backdoor trojans
A previously unknown threat group designated Mr_Rot13 has been exploiting CVE-2026-41940, a critical authentication bypass vulnerability in cPanel & WHM, to compromise Linux servers globally. Active since at least 2020, the group deploys a Go-based payload installer that plants SSH keys, PHP webshells, malicious JavaScript for credential harvesting, and a cross-platform remote access tool called Filemanager. Stolen data is exfiltrated to attacker-controlled Telegram channels and command servers. The group has maintained operational security for six years with extremely low detection rates. Attack infrastructure includes domains registered as early as 2020, with over 2,000 attacking IP addresses observed worldwide. The campaign primarily targets cPanel installations and WordPress systems, with confirmed compromise of Southeast Asian government and military entities resulting in 4.37GB of sensitive data theft.
Pulse ID: 6a01847e13b4074a8d4b6381
Pulse Link: https://otx.alienvault.com/pulse/6a01847e13b4074a8d4b6381
Pulse Author: AlienVault
Created: 2026-05-11 07:25:50
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Asia #BackDoor #CredentialHarvesting #CyberSecurity #DataTheft #Government #InfoSec #Java #JavaScript #Linux #Military #OTX #OpenThreatExchange #PHP #RAT #RDP #SSH #Telegram #Trojan #Troll #Vulnerability #Word #Wordpress #bot #AlienVault
Honeypot reveals botnet exploiting scriptText to launch DDoS attacks on game servers
Analysts observed attackers exploiting a Jenkins honeypot to deploy a new DDoS botnet targeting video game servers. Leveraging Jenkins scriptText abuse, the threat actors achieved remote code execution by sending malicious Groovy scripts to intentionally misconfigured instances with weak passwords. The multi-platform payload targets both Windows and Linux systems, deploying malware that evades detection through process renaming and daemonization. The botnet supports multiple attack vectors including UDP floods, TCP attacks, HTTP requests, and game-specific techniques targeting Valve Source Engine servers. Infrastructure hosted in Vietnam serves dual purposes for payload distribution and command-and-control communications. The campaign demonstrates continued opportunistic exploitation of internet-facing services, with gaming industry servers being primary targets for distributed denial-of-service attacks.
Pulse ID: 6a0199674dd4cf450633dd32
Pulse Link: https://otx.alienvault.com/pulse/6a0199674dd4cf450633dd32
Pulse Author: AlienVault
Created: 2026-05-11 08:55:03
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #DDoS #DoS #HTTP #HoneyPot #InfoSec #Linux #Malware #OTX #OpenThreatExchange #Password #Passwords #RAT #RCE #RemoteCodeExecution #TCP #UDP #Vietnam #Windows #Word #bot #botnet #AlienVault
Fedora plant AI Developer Desktop
https://linuxnews.de/fedora-plant-ai-developer-desktop/ #fedora #ki #ai #linux #linuxnews
"Linux is Getting a Kill Switch!"
"This AI-assisted patch would let admins disable vulnerable kernel functions until a proper fix ships."
https://feed.itsfoss.com/link/24361/17338173/linux-killswitch-proposal
So, tell me honestly:
Do you feel this split too? Is it possible to have conveniences without surveillance? Or do we eventually have to choose between total freedom and total convenience?
I'd love to read your stories. Where do you stand? 👇
#FOSS #Privacy #DigitalFreedom #Linux #TechLife #OpenSource #life
(3/3)
Who's gonna tell #SwitchAndClick that #Framework was literally started by disgruntled #Lenovo engineers that didn't want to continue #enshittify the #ThinkPad|s?
https://www.youtube.com/watch?v=kiGibwaOitQ
#Laptops #ThinkPads #Enshittification #RepairableDesign #RightToRepair #Repair #Reuse #Refurbish #Refurbished #Laptops #Notebooks #Laptop #Notebook #Linux #Desktop
figure out i'd reach out to #Mastodon, the best #opensource #Linux community i've found
i'm about to buy a #Murena #FairPhone 6 with their e/OS
i was leaning towards #Ubuntu Touch, but having trouble finding a phone that comes w/ it that meets my wants
anyone advise against it or recommend a different linux phone before i pull the trigger?
https://murena.com/america/shop/smartphones/brand-new/murena-fairphone-6/
PH4NTXM Docs Update!
Added screenshots to the application and interface documentation so users can see how the system looks and operates in each module.
The goal is to provide visual guidance for PH4NTXM apps and PH4NTXM OpSec Suite helping the community understand.
Documentation will continue to expand with new images and examples as the project evolves, offering practical insight into system operation for all users.
Feel free to dive in the docs, and read the markdown files we've prepared for you!
#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology
Releasing a universal #Linux #kernel #exploit with very little or even no previous time to distribute a patch through distributions is not cool. Doing it on the day before a weekend - on two weekends in a row - is just being an asshole. Looking at you, #CopyFail and #DirtyFrag.
You may think it helps your PR, that people will queue to use your cool new AI/agentic/whatever tool because you found the bug. You may think that releasing the full exploit because somebody else was even quicker with "leaking" your cool find makes it right. You're wrong. This is neither responsible nor coordinated disclosure. In security, we've tried to learn the hard lessons on keeping in-production, live systems on a global scale safer.
Yes, those bugs have existed for a long time in the kernel source. Yes, other bad actors may already have found them. But you're shining a light on it *and* giving every script kiddie in the world a working exploit to point their mass scans at. That's dangerous. There's a reason why the normal process is to reach out at least to the most widely installed distributions before releasing the bug details publicly. There's a reason why 90 days is a good default - it allows downstream percolation of patches. You can still get the credit. This way, you only create stress for admins.
[For a little relief, refer to https://www.tomshardware.com/tech-industry/cyber-security/dirty-frag-exploit-gets-root-on-most-linux-machines-since-2017-no-patches-available-no-warning-given-copy-fail-like-vulnerability-had-its-embargo-broken for a quick mitigation, because updating kernels and rebooting a fleet of hosts just takes time, weekend or not. #HugOps]
"dd Command in Linux: Copy Disks, Partitions, and Files"
"This guide explains how to use the dd command in Linux to write ISO images, clone disks, back up partitions, wipe drives, and test disk speed."
Seriously considering moving to a BSD as I watch Linux fall more and more to corporate influence.
#ageverification #systemd #redhat #ibm #linux #bsd #linuxfoundation
Next crap movie, Dune Drifter (2020) that totally doesn't rip off a known scifi epic in its posters.
But at least the space fighters in it run a familiar os.
Alt...
Snapshot of a Dune drifter movie. It shows a future space fighter ship's cockpit displays, where one display has a radar, middle one has a Linux booting and the right display shows someone editing a shell script.
Forget #bazzite
I can load up any other gaming Linux. This won’t run. I picked the appropriate hardware config. And it won’t run. Two different usb sticks, it won’t even be read. #ubuntu #linuxmint #pop_os #NobaraLinux just work. But not Bazzite. Not on a recycled computer. Not on a brand new gaming laptop.
Lesson learned. Which gaming Linux distro should I put on a warp drive gaming lappy?
Our goal with PH4NTXM is to contribute a small but meaningful piece to a safer, more private digital future for everyone in the community.
We’re not competing with anyone — we’re simply evolving through open source and sharing our work so everyone can benefit.
In an era of pervasive surveillance and tracking, even incremental tools and techniques can help improve privacy and reduce correlation surfaces across the system.
This project is our way of supporting the community and exploring system-wide identity consistency — beyond just browser-level anonymity.
A big thank you to everyone who supports us and shows interest, your feedback and engagement mean a lot!
#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology
Got Overwatch running smoothly on Linux, hitting 300 FPS now. Pretty happy with that. Too bad RAM is so pricey these days - 16 GB feels a bit low when you have systemd running and do some multitasking.
#GamingOnLinux #Gaming #Overwatch #VideoGames #OW #OW2 #Linux #LinuxGaming
I haven't been active here for a while, due to being very busy, but I'm starting a Linux Users Group in Montgomery County, MD. If you're in the general area, check out https://mocolug.org #linux #maryland #dmv
I #vibecoded a thing.. Its a kde 6 widget which you point to docker-compose.yaml files and it shows if the containers are running and you can stop, start and down the containers..
https://github.com/mightywomble/kde-widget-dockercompose
It works for me, might work for you, took a lot of inspiration from dockio however its not quite the same ..
#daveknowstech #selfhosted #kdeplasma6 #linux
Most people still think privacy works like this:
“I use a VPN, so I’m anonymous.”
But modern tracking no longer relies only on IP addresses.
Today, systems can fingerprint users through:
* browser behavior
* hardware characteristics
* TCP/IP stack patterns
* DNS behavior
* GPU/rendering fingerprints
* timing signatures
* viewport & display metrics
* runtime inconsistencies across layers
Changing your IP alone often isn’t enough.
That idea led us to build PH4NTXM.
Instead of randomizing things independently, PH4NTXM tries to create a coherent runtime identity where:
* hardware
* networking
* browser environment
* timing behavior
* GPU exposure
all align consistently within the same session.
The project is:
* live-only
* stateless
* non-persistent across boots
* fully open source
Current focus areas include:
* fingerprint surface reduction
* browser hardening
* network personality shaping
* Tor-isolated operation modes
* fail-secure session termination
We’re not claiming “perfect anonymity” — the goal is simply to reduce static identity behavior and avoid contradictory signals as much as possible.
#ph4ntxm #linux #debian #os #live #privacy #security #opsec #infosec #research #tech #technology
I am so in love with that effect of the content going behind the header 😍
Ofc you can still disable client side decorations.
More info at: sinty.dev
Discord: https://discord.com/invite/HTn7Zxx67P
#Linux #Windows #Development #Design #Opensource
Do you hate yourself and despise convenience?
Then why not try Linux?
Linux: An operating system that allows YOU the freedom to ask "What the fuck does that error message even MEAN?" and "But Steam was *just* running!"
Ask your IT Department / Therapist about Linux TODAY!
📺 https://peer.adalta.social/w/dGi3S64Hs8bTWxTPRwQk8v
🔗 [🇩🇪🇺🇸🇫🇷](https://adalta.info/articles/prstn_linux_116550291736125855_fr)
🔗 [ℹ️](https://kerezovic.de/de/feed/")
Identification d'une Anomalie Potentiellement Critique dans la Diffusion d'Informations
📺 https://peer.adalta.social/w/7GCmdMtga6SGdqKuZkCYt6
🔗 [🇩🇪🇺🇸🇫🇷](https://adalta.info/articles/prstn_linux_116550291736125855_en)
🔗 [ℹ️](https://kerezovic.de/de/feed/")
This seemingly benign data stream reveals a sophisticated, targeted exploitation strategy.
📺 https://peer.adalta.social/w/aSJT78o2eBPSSwkGEY1t8o
🔗 [🇩🇪🇺🇸🇫🇷](https://adalta.info/articles/prstn_linux_116550291736125855_de)
🔗 [ℹ️](https://kerezovic.de/de/feed/")
Eine Untersuchung der potenziellen Bedrohung durch versteckte `RCE`s in scheinbar harmlosen `RSS`-Feeds.
Гарно, що в домашній директорії користувача Linux нещодавно з'явилася нова типова директорія Projects. Але українською мовою вона перекладена як "ПроЕкти". Проте вже доволі давно, з 2019 року, правописом встановлено єдине правильне написання — "ПроЄкти". Можливо, хтось штурхне причетних до локалізації... Linux.org.ua — це релевантний ресурс?
#linux #LinuxUA #KDE #kdeplasma #GNOME
(more Linux news in original post)
VKD3D-Proton 3.0.1 brings many Linux gaming enhancements for Direct3D 12 via Vulkan:
https://www.gamingonlinux.com/2026/05/vkd3d-proton-3-0-1-brings-many-linux-gaming-enhancements-for-direct3d-12-via-vulkan/
D7VK 1.9 brings 2D upgrades for classic Direct3D games on Linux:
https://www.gamingonlinux.com/2026/05/d7vk-1-9-brings-2d-upgrades-for-classic-direct3d-games-on-linux/
Proton Experimental gets fixes for Rocket League, Crimson Desert, Helldivers 2 and more:
https://www.gamingonlinux.com/2026/05/proton-experimental-gets-fixes-for-rocket-league-crimson-desert-helldivers-2-and-more/
Goverlay 1.8.1 Update Fixes Missing Icons and Adds a Clear Configuration Button:
https://www.linuxcompatible.org/story/goverlay-181-released/
TUXEDO BM 15 Is an Upgradable Business Linux Laptop with Smartcard and 4G LTE:
https://9to5linux.com/tuxedo-bm-15-is-an-upgradable-business-linux-laptop-with-smartcard-and-4g-lte
Fish shell 4.7 refines interactivity, shell history, UI consistency, completions, and more:
https://alternativeto.net/news/2026/5/fish-shell-4-7-refines-interactivity-shell-history-ui-consistency-completions-and-more/
Mesa 26.1 Open-Source Graphics Stack Officially Released, Here’s What’s New:
https://9to5linux.com/mesa-26-1-open-source-graphics-stack-officially-released-heres-whats-new
Dirty Frag Linux Kernel Flaw Allows Local Privilege Escalation, Patch Now:
https://9to5linux.com/dirty-frag-linux-kernel-flaw-allows-local-privilege-escalation-patch-now
Linux Liquorix Kernel 7.0-5 Brings Faster Responsiveness to Linux Desktops and Gaming Rigs:
https://www.linuxcompatible.org/story/liquorix-linux-kernel-705-released/
Linux Kernel Update Fixes Networking Bug in Versions 5.15.206 and 6.1.172:
https://www.linuxcompatible.org/story/linux-kernel-515206-and-61172-released/
Flatpak 1.17.7 released:
https://github.com/flatpak/flatpak/releases/tag/1.17.7
(FOSS news in comments)
#WeeklyNews #News #Linux #LinuxNews #VKD3D #D7VK #ProtonExperimental #Goverlay #TUXEDO #LinuxLaptop #FishShell #Mesa #DirtyFrag #LinuxKernel #Security #LiquorixKernel #Flatpak #LinuxGaming #FosseryTech
This week's Linux and FOSS news:
LINUX NEWS
Rocky Linux rejects age attestation/verification:
https://rockylinux.org/news/rocky-linux-and-age-verification
(One month late to include this but better later than never I guess)
Arch-Based Omarchy 3.7 Released with Steam, RetroArch, Lutris, and Heroic Launcher:
https://linuxiac.com/arch-based-omarchy-3-7-released-with-steam-retroarch-lutris-and-heroic-launcher/
Ubuntu’s app permission prompting has got a lot better:
https://www.omgubuntu.co.uk/2026/05/ubuntu-snap-prompting-client-improved
Manjaro 26.1 preview brings new parental controls and GNOME 50 upgrades:
https://alternativeto.net/news/2026/5/manjaro-26-1-preview-brings-new-parental-controls-and-gnome-50-upgrades/
OpenSUSE Tumbleweed brings Linux kernel 7.0, GNOME 50, and critical security fixes:
https://alternativeto.net/news/2026/5/opensuse-tumbleweed-brings-linux-kernel-7-0-gnome-50-and-critical-security-fixes/
AlmaLinux 10.2 Beta "Lavender Lion" Now Available with Python 3.14, New DBs, and Legacy 32-bit Support:
https://www.linuxcompatible.org/story/almalinux-102-beta-released/
Parrot 7.2 Is Now Officially Available for Download with “Copy Fail” Patch:
https://9to5linux.com/parrot-7-2-is-now-officially-available-for-download-with-copy-fail-patch
KDE's New CSS-Based Style Engine Union Is Coming to KDE Plasma 6.7:
https://9to5linux.com/kdes-new-css-based-style-engine-union-is-coming-to-kde-plasma-6-7
KDE Plasma 6.7 Development Update: HDR Profiles, AMD Backlight Fix, and GPU Tweaks:
https://www.linuxcompatible.org/story/kde-plasma-67-development-update-hdr-profiles-amd-backlight-fix-and-gpu-tweaks/
KDE Frameworks 6.26 Improves Support for Kirigami and QtQuick-Based Apps:
https://9to5linux.com/kde-frameworks-6-26-improves-support-for-kirigami-and-qtquick-based-apps
KDE Gear 26.04.1 Is Out with More Improvements for Your Favorite KDE Apps:
https://9to5linux.com/kde-gear-26-04-1-is-out-with-more-improvements-for-your-favorite-kde-apps
Ubuntu’s old Unity desktop remade in Wayfire and Libadwaita:
https://www.omgubuntu.co.uk/2026/05/ubuntu-unity-desktop-wayfire-recreation
COSMIC 1.0.12 Desktop Brings Improvements to Files, Terminal, and More:
https://9to5linux.com/cosmic-1-0-12-desktop-brings-improvements-to-files-terminal-and-more
Hyprland 0.55 is here and you don't want to miss it!:
https://hypr.land/news/update55/
Ubuntu Touch OTA 1.3 Improves Handling of Desktop Apps on Lomiri and Fixes Bugs:
https://9to5linux.com/ubuntu-touch-ota-1-3-improves-handling-of-desktop-apps-on-lomiri-and-fixes-bugs
gThumb is barely recognisable in its GTK4/libadwaita port:
https://www.omgubuntu.co.uk/2026/05/gthumb-gtk4-port-redesign
Shelly 2.2.4 Arch Linux GUI Package Manager Brings Smarter Fuzzy Search:
https://9to5linux.com/shelly-2-2-4-arch-linux-gui-package-manager-brings-smarter-fuzzy-search
Nocturne Is The Latest Music Player For GNOME To Hit v1.0:
https://www.phoronix.com/news/Nocturne-1.0-GNOME-Music
(more Linux and FOSS news in comments)
#WeeklyNews #News #Linux #LinuxNews #RockyLinux #Omarchy #Ubuntu #Manjaro #OpenSUSE #AlmaLinux #ParrotOS #KDE #COSMIC #HyprLand #FosseryTech
Anyone else here so worried about #DirtyFrag that they feel they can't use their Linux computers until it's fixed?
Is that rational do you think or am I just being paranoid?
When #CopyFail came out I made sure to update the kernel immediately.
The following content may be offensive to Archlinux users. [SENSITIVE CONTENT]
Just installed Alpine Linux on a low end machine. I feel like Alpine Linux is a bit like Arch, but easier and lighter.
@alpinelinux
#linux
The open source Linux kernel is dominated by major corporations.
Authors of some Linux kernel updates, that make #CopyFail and #DirtyFrag exploits possible, were paid employees of:
Red Hat - bought by IBM for $34 billion
Google - world’s largest search engine and digital advertising business
secunet - Germany’s largest cybersecurity company
atsec - global company that tests whether high‑security computer systems are actually secure
RustDesk is a free, open-source remote desktop tool you can self-host.
It supports remote control, file transfer, TCP tunneling, and cross-platform access, without depending entirely on proprietary remote desktop services.
With self-hosted relay servers, you keep more control over your connections and data.
More details: https://digitalescapetools.com/tools/tool.html?id=rustdesk
#OpenSource #Privacy #SelfHosted #RemoteDesktop #Linux #RustDesk
Alt...
A remote session viewing a macOS login screen with a scenic mountain wallpaper. A floating toolbar at the top provides quick access to settings like pinning, display options, and recording.
Alt...
The RustDesk desktop client dashboard. It shows "Your Desktop" ID on the left and a grid of saved remote connections on the right, labeled with OS icons (Linux, Mac, Android) and custom tags like "Build Server" and "Home."
Alt...
The RustDesk Console web interface showing an address book. A table lists managed devices with their IDs, aliases (e.g., "HappyValley," "Canberra"), passwords, and color-coded tags.
Alt...
The configuration screen for creating custom RustDesk clients. It shows options for Windows, macOS, Linux, and Android, with settings for custom server hosts, API keys, and visual branding.