Open-source News

June Windows Server 2022 update adds support for WSL2  BleepingComputer

Microsoft: KB5014678 Windows Server 2022 update adds WSL2 support  BleepingComputer

Software Engineer (Linux Networking)  IT-Online

In recent years, DevOps, which aligns incentives and the flow of work across the organization, has become the standard way of building software. By focusing on improving the flow of value, the software development lifecycle has become much more efficient and effective, leading to positive outcomes for everyone involved. However software development and IT operations aren’t the only teams involved in the software delivery process. With increasing cybersecurity threats, it has never been more important to unify cybersecurity and other stakeholders into an effective and united value stream aligned towards continuous delivery.

At the most basic level, there is nothing separating DevSecOps from the DevOps model. However, security, and a culture designed to put security at the forefront has often been an afterthought for many organizations. But in a modern world, as costs and concerns mount from increased security attacks, it must become more prominent. It is possible to provide continuous delivery, in a secure fashion. In fact, CD enhances the security profile. Getting there takes a dedication to people, culture, process, and lastly technology, breaking down silos and unifying multi-disciplinary skill sets. Organizations can optimize and align their value streams towards continuous improvement across the entire organization. 

To help educate and inform program managers and software leaders on secure and continuous software delivery, the Linux Foundation is releasing a new, free online training course, Introduction to DevSecOps for Managers (LFS180x) on the edX platform. Pre-enrollment is now open, though the course material will not be available to learners until July 20. The course focuses on providing managers and leaders with an introduction to the foundational knowledge required to lead digital organizations through their DevSecOps journey and transformation.

LFS180x starts off by discussing what DevSecOps is and why it is important. It then provides an overview of DevSecOps technologies and principles using a simple-to-follow “Tech like I’m 10” approach. Next, the course covers topics such as value stream management, platform as product, and engineering organization improvement, all driving towards defining Continuous Delivery and explaining why it is so foundational for any organization. The course also focuses on culture, metrics, cybersecurity, and agile contracting. Upon completion, participants will understand the fundamentals required in order to successfully transform any software development organization into a digital leader.

The course was developed by Dr. Rob Slaughter and Bryan Finster. Rob is an Air Force veteran and the CEO of Defense Unicorns, a company focused on secure air gap software delivery, he is the  former co-founder and Director of the Department of Defense’s DevSecOps platform team, Platform One, co-founder of the United States Space Force Space CAMP software factory, and current member of the Navy software factory Project Blue. Bryan is a software engineer and value stream architect with over 25 years experience as a software engineer  and leading development teams delivering highly available systems for large enterprises. He founded and led the Walmart DevOps Dojo which focused on a hands-on, immersive learning approach to helping teams solve the problem of “why can’t we safely deliver today’s changes to production today?” He is the co-author of “Modern Cybersecurity: Tales from the Near-Distant Future”, the author of the “5 Minute DevOps” blog, and one of the maintainers of MinimumCD.org. He is currently a value stream architect at Defense Unicorns at Platform One. 

Enroll today to start your journey to mastering DevSecOps practices on July 20!

The post Learn the Principles of DevSecOps in New, Free Training Course appeared first on Linux Foundation.

Many software projects are not prepared to build securely by default, which is why the Linux Foundation and Open Source Security Foundation (OpenSSF) partnered with technology industry leaders to create Sigstore, a set of tools and a standard for signing, verifying and protecting software. Sigstore is one of several innovative technologies that have emerged to improve the integrity of the software supply chain, reducing the friction developers face in implementing security within their daily work.

To make it easier to use Sigstore’s toolkit to its full potential, OpenSSF and Linux Foundation Training & Certification are releasing a free online training course, Securing Your Software Supply Chain with Sigstore (LFS182x). This course is designed with end users of Sigstore tooling in mind: software developers, DevOps engineers, security engineers, software maintainers, and related roles. To make the best use of this course, you will need to be familiar with Linux terminals and using command line tools. You will also need to have intermediate knowledge of cloud computing and DevOps concepts, such as using and building containers and CI/CD systems like GitHub Actions, many of which can be learned through other free Linux Foundation Training & Certification courses.

Upon completing this course, participants will be able to inform their organization’s security strategy and build software more securely by default. The hope is this will help you address attacks and vulnerabilities that can emerge at any step of the software supply chain, from writing to packaging and distributing software to end users.

Enroll today and improve your organization’s software development cybersecurity best practices.

The post Free Training Course Teaches How to Secure a Software Supply Chain with Sigstore appeared first on Linux Foundation.

Cardano and Linux Creator Linus Torvalds Meet in Fireside Chat  U.Today

Debian-Based Clonezilla Live 3.0.1 Disk Imaging/Cloning Tool Released with Linux 5.18  9to5Linux

Arm Linux IoT gateway ships with up to 8GB RAM, offers dual GbE, 4G LTE, WiFi 6, BLE 5.3, GNSS connectivity  CNX Software

Rewritten NIR Code For Old Radeon "R600" Linux Driver Improves Performance In 2022  Phoronix

The open-source Mesa "R600" Gallium3D driver for supporting AMD graphics processors prior to the Radeon HD 7000 series, a rewritten NIR back-end has been published that enables better performance and proper FP64 usage...

With the AMD Radeon "HIP" acceleration in Blender 3.2 with the Cycles back-end, an unfortunate early limitation is that this is limited to just AMD RDNA2 (Radeon RX 6000 series) graphics processors while prior generation RDNA1 GPUs have issues with some textures like those used in the benchmarks. This week though AMD did post a new patch for Blender enabling HIP support on Windows and Linux for Vega/GFX9 graphics...

One of the multi-year efforts in the GNOME Wayland camp has been on deep color support and it's been of interest to Ubuntu developers among other parties. After not hearing about any progress on GNOME Wayland deep color support in a while, some progress is now being made...

Merged yesterday into Linux 5.19 as a post merge window change is making the kernel's signature verification code FIPS compliant...

Leading Arch Linux derivative Manjaro puts out version 21.3  The Register

AMD today released a new update to AMDVLK, their official open-source Radeon Vulkan driver for Linux systems that is derived from their internal Vulkan driver sources while plumbed to use the open-source LLVM AMDGPU shader compiler back-end. For Linux gamers this driver doesn't remain as popular as Mesa's RADV but the update today does deliver on some game performance optimizations...

Privilege Escalation Attacks: Types, Examples and Defence  Security Boulevard

FoundriesFactory® Supports Arm's Project Cassini for Secure Production Edge Deployments  PR Newswire

The post 8 Best MySQL/MariaDB GUI Tools for Linux Administrators first appeared on Tecmint: Linux Howtos, Tutorials & Guides .

MySQL is one of the most widely-used open-source relational database management systems (RDBMS), that has been around for a long time. It is an advanced, fast, reliable, scalable, and easy-to-use RDBMS intended for mission-critical,

The post 8 Best MySQL/MariaDB GUI Tools for Linux Administrators first appeared on Tecmint: Linux Howtos, Tutorials & Guides.

Open-Source Technologies, Issues on Display at Linux Foundation Summit  LinuxInsider.com

30 years later, Linus Torvalds is still delighted by Linux  TechRadar