Open-source News

Open source has made its way into almost every server farm, consumer device and service we use, and it’s done so without most people even realizing it. Almost no one knows what is in their phones, apps or business data centers. This is wreaking havoc on the global supply chain, so much so that the U.S. House of Representatives Energy and Commerce Committee sent a letter to the Linux Foundation inquiring about it. The Linux Foundation did its best to summarize a very complex situation in its response.

So with the help of Harvard researchers and companies like Snyk and Synopsys, we set out to produce our second Census of open source software but this time, with a focus on what open source software projects show up in production applications. At the heart of this is a desire to understand how we take a preventative care approach to security, rather than a reactionary one.

VULNERABILITIES IN THE CORE: A Preliminary Report & Census II of Open Source Software shares the earliest results of a multi-year, data-intensive research project that identifies the most used open source software packages in production applications across the world. This is the first phase of research in our partnership with Harvard, after which we will begin to look into who wrote these popular packages and what are the software security practices for dealing with vulnerabilities.

Open source is the underpinning of the world’s technical infrastructure and has undoubtedly resulted in massive innovation and disruption. It demands a better understanding, from its creation to distribution. Organizations need to start thinking about their software supply chain and open source can be a guide. Cybersecurity concerns often focus on a zero-sum game or good vs. evil, but what is increasingly more important is how we can increase transparency and trust in software by improving the systems by which it is created, distributed and consumed. We must start there. Learn how you can contribute to this massive, industry-wide transformation:

 

The post New Linux Foundation | Harvard Study Reveals Hard Truths, Actionable Steps for Open Source Security appeared first on The Linux Foundation.

FreeBSD vs. Linux Scaling Up To 128 Threads With The AMD Ryzen Threadripper 3990X  Phoronix

Last week I looked at the Windows vs. Linux scaling performance on the Threadripper 3990X at varying core/thread counts followed by looking at the Windows 10 performance against eight Linux distributions for this $3990 USD processor running within the System76 Thelio Major workstation. Now the tables have turned for our first look at this 64-core / 128-thread processor running on the BSDs, FreeBSD 12.1 in particular. With this article is looking at the FreeBSD 12.1 performance and seeing how the performance scales compared to Ubuntu 20.04 Linux and the Red Hat Enterprise Linux 8 based CentOS Stream.

1. Microsoft Defender ATP for Linux Now In Public Preview  BleepingComputer
2. Microsoft rolls out new security products - including one for Linux and later iOS and Android  SiliconANGLE News
3. Microsoft Defender ATP now in public preview for Linux  Windows Central
4. Microsoft Defender ATP anti-virus on iOS and Android soon, Linux preview now  SlashGear
5. Microsoft Defender ATP preview arrives for Linux distros — iOS and Android versions to follow  BetaNews
6. View Full Coverage on Google News

Cybersecurity startup Polyverse raises $8M to protect Linux open-source code from hackers  GeekWire

Microsoft Defender ATP for Linux Now In Public Preview  BleepingComputer

Cybersecurity startup Polyverse raises $8M to protect Linux open-source code from hackers  GeekWire

Alluxio Joins Linux Foundation's Presto Foundation to Help Scale and Accelerate Presto Query Engine  EIN News

Alluxio Joins Linux Foundation's Presto Foundation to Help Scale and Accelerate Presto Query Engine  StreetInsider.com

Alluxio Joins Linux Foundation’s Presto Foundation to Help Scale and Accelerate Presto Query Engine  Yahoo Finance

GNOME Shell and Mutter saw a set of patches land today for GNOME 3.36 that have been around for a few months and deal with the tracking of software rendering and VNC usage where GNOME Shell should in turn disable animations to ease the rendering workload...

While web-based GUIs for system management on server platforms with BMCs is far from anything new, Raptor Computing Systems with their libre POWER9 systems does now have a full-functioning web-based solution for their OpenBMC-powered systems and still being fully open-source...

We are learning more about the media engine capabilities with the forthcoming Intel "Gen12" (Xe) Tiger Lake graphics...

Linux and malware: Should you worry?  We Live Security

Linux Community: Stop Doing This To Windows 10 And MacOS Users  Forbes

Linux Computer Market – Leading key players Dell Minifree Slimbook System76 Ubuntushop.be Purism Juno Computers Vikings TUXEDO Computers Entroware Pine64 HUAWEI Lenovo  Nyse Nasdaq Live

Data science is a domain of knowledge that spans programming languages. Some are well-known for solving problems in this space, while others are lesser-known. This article will help you become familiar with doing data science with some popular languages.

read more

I use SSH constantly. Every day I find myself logged in to multiple servers and Pis (both in the same room as me and over the internet). I have many devices I need access to, and different requirements for gaining access, so in addition to using various SSH/SCP command options, I have to maintain a config file with all the connection details.

Over time I’ve come up with a few time-saving tips and tools that you might find useful, too.

read more

Linux Foundation and LISH publish latest open-source census with suggestions to boost security  Developer Tech

Microsoft rolls out new security products - including one for Linux and later iOS and Android  SiliconANGLE