Copy Fail, Dirty Frag and now Fragnesia...

Upside: if you have already ripped out esp4, esp6 and rxrpc for Dirty Frag, you already have the mitigation in place for Fragnesia.

#Linux #Security #Vulnerabilities

Is there anyone out there running an AMD 5650GE based system running Linux or BSD?

Can you tell us your CPU and GPU idle power numbers as displayed in btop?

Maybe this is an "easy button" of sorts to reduce power on an existing AMD AM4 system without going through the machinations of new mobo, ram, etc., etc. Get most of the way there?

#Linux #RunBSD #AMD #5650GE #PowerConsumption #Power #HomeLab #SelfHosting #SelfHosted #SOHO

RE: https://bonn.social/@FrOSCon/116560295928133582

Die @FrOSCon ist eine der ältesten und größten #FOSS-Konferenzen in Deutschland und droht dieses Jahr nicht stattfinden zu können. Daher werden dringend Konferenzpartner:innen und Spenden benötigt.

Firmen können die Veranstaltung unterstützen - aber auch private Spenden sind möglich: https://www.betterplace.org/de/projects/175478

Wir durften letztes Jahr einige Mitglieder des Teams und Teilnehmende zum Event befragen. Hier hört ihr, was die Konferenz so besonders macht: https://user.space/e007-froscon-2025-und-ein-jubilaeum/

#Linux #OpenSource

Markus Decke boosted

FrOSCon » 🌐 2026-05-12
@FrOSCon@bonn.social

Liebe FOSS-Community, die angespannte Lage in der IT-Wirtschaft führt dazu, dass viele unserer Partner dieses Jahr keinen Stand buchen. In Folge fehlt uns Budget für die Konferenz, u.a. für Veranstaltungstechnik, Messewände, Vortragsstreaming, Kinder- und Jugendprogramm, Helfer:innen-Verpflegung, Transportkosten, Versicherungen

Wir suchen insbesondere Konferenzpartner und auch noch einen Kaffeepartner 😭

Hilf uns die FrOSCon am Leben zu erhalten: https://froscon.org/en/cfp/cfpartners/

Inflation?
2015 kostete die von uns verwendete Barcode-Software einmalig 168 €. Seitdem läuft die ohne Probleme, macht also 16,80 € pro Jahr.
Heute möchte die Firma, dafür im Abo 249 € pro Jahr.

In meinem "ich stelle alles auf Linux um" Projekt fehlt leider noch eine brauchbare Barcode Software. Hat irgendwer einen Tipp? Wir brauchen EAN/GS1 Barcodes die wir dann als Grafik oder PDF in Label übernehmen können.

#barcode #ean #linux #software

Sovereign Tech Fund invests over €1 million in KDE software development https://kde.org/announcements/sovereign-tech-fund-invests-kde/

#opensource #linux #unix

"There are now many vi clones and derivatives to choose from, and I couldn’t find a good comprehensive list of all of them with links, so here’s mine."

https://lpar.ath0.com/posts/2026/05/the-vi-family/

#unix #linux #editing

(and I hold my breath for @ed1conf to release a good comprehensive list of all ed(1) releases with links 😜)

These TUXEDOs are tailored to your needs, if you frequently carry your notebook over long distances, looking for fast/high graphics & many more.

▶️TUXEDO InfinityBook Max 15
▶️TUXEDO InfinityBook Max 16

Take a look:
https://tuxedocomputers.com/index.php?modu
le=search&keywords=10900243+10900247+10900249+10900250

#tuxedo #linux #maximally #augsburg

What is your favourite code editor that is:
1) light (feature-wise)
2) pretty (in a customizable way)
3) running on Linux 👀

#Linux #Programming #OpenSource

#Linux and #BSD users: do you remap CapsLock to Ctrl?

Alt...

CapsLock key on ThinkPad up close CCBY Linux Renaissance

#OpenZFS 2.4.2 and 2.3.7 are here. Includes support for #Linux 7.0 and a big pile of fixes. Available now from all good software retailers!

https://github.com/openzfs/zfs/releases/tag/zfs-2.4.2

https://github.com/openzfs/zfs/releases/tag/zfs-2.3.7

So, it looks like Alpine Linux doesn't have anything like Debian's Backports concept? I don't want to switch my repos to edge, I just want to install a version of a package that's newer in edge than in stable, that's it. But it seems like the only way would be to download the apk and install it, which feels like a hacky solution to me, there should be a clean way to do this from the terminal like in Debian ​​

#Linux #AlpineLinux

Is there anyone out there running an AMD 5825U based system running Linux or BSD?

Can you tell us your CPU and GPU idle power numbers as displayed in btop?

#Linux #RunBSD #AMD #5825U #PowerConsumption #Power #HomeLab #SelfHosting #SelfHosted #SOHO

#Lenovo and #Dell are now funding #LVFS, the service that ships #firmware to millions of #Linux devices.

https://itsfoss.com/news/lvfs-finally-has-premier-sponsors/

New #blog #post: Package Manager Tier List

https://rldane.space/package-manager-tier-list.html

1521 words

Note: this is a very off-the-cuff tier list, using speed as the main qualifier, but the article explains exceptions to that as it goes on.

cc: my wonderful #chorus: @joel @dm @sotolf @thedoctor @pixx @orbitalmartian @adamsdesk @krafter @roguefoam @clayton @giantspacesquid @Twizzay @stfn

(I will happily add/remove you from the chorus upon request! :)

#rlDaneWriting #blost #DeadLikeMe #Linux #BSD #RunBSD #FreeBSD #OpenBSD #NetBSD #Debian #Arch #pacman #AUR #Fedora #homebrew #flatpak #snap #OpenSuSE #RPM

Interesting. It seems like there are way more Linux users here than I expected.

So, let’s do a little roll call:

What are you using?

Linux?
Windows?
macOS?
BSD?
Something beautifully weird?

I’m curious 👀

#Linux #LinuxUser #Fediverse #Mastodon #OpenSource #Tech #OldschoolInternet

Some moments from yesterday’s installation.
The clients are Debian Linux, and the server is FreeBSD.

#IT #Debian #Linux #FreeBSD

Alt...

Four Lenovo ThinkCentre boxes stacked on the floor in a small office room, with a desk, laptop, backpack, shelves, and blue chairs in the background.

Alt...

Two Lenovo ThinkCentre desktop computers set up on long white desks with monitors, keyboards, mice, and visible cables in a small office room.

Beneath the Linux surface: the UNIX legacy, a lively ecology
https://club.unix.rocks/commentary/under-linux/

An open invitation to Linux users across the board, offering a closer look at the penguin and its iceberg, a walk across the ecosystems that make it possible, an exploration beyond one’s biome.

#linux #bsd #solaris #unix #openbsd #freebsd #netbsd #illumos #plan9

#Linux users who haven't tried #NetBSD yet will be haunted by these tonight:

Seriously considering moving to a BSD as I watch Linux fall more and more to corporate influence.

#ageverification #systemd #redhat #ibm #linux #bsd #linuxfoundation

Gotta say I was a weeency bit disappointed when I booted Fedora 43 into Linux kernel 7.0.4 and wasn't greeted with THIS... 😁

cc: @dm

#Linux #Kernel7 #System7 #ClassicMac

Alt...

A screenshot of Macintosh System 7 (1991) courtesy of infinitemac.org

@ParadeGrotesque I would be surprised if there were no bugs like the ones recently found in #Linux in #OpenBSD ... it's just that nobody's paid for the LLMs to examine the OpenBSD kernel source like they have with Linux.

Releasing a universal #Linux #kernel #exploit with very little or even no previous time to distribute a patch through distributions is not cool. Doing it on the day before a weekend - on two weekends in a row - is just being an asshole. Looking at you, #CopyFail and #DirtyFrag.

You may think it helps your PR, that people will queue to use your cool new AI/agentic/whatever tool because you found the bug. You may think that releasing the full exploit because somebody else was even quicker with "leaking" your cool find makes it right. You're wrong. This is neither responsible nor coordinated disclosure. In security, we've tried to learn the hard lessons on keeping in-production, live systems on a global scale safer.

Yes, those bugs have existed for a long time in the kernel source. Yes, other bad actors may already have found them. But you're shining a light on it *and* giving every script kiddie in the world a working exploit to point their mass scans at. That's dangerous. There's a reason why the normal process is to reach out at least to the most widely installed distributions before releasing the bug details publicly. There's a reason why 90 days is a good default - it allows downstream percolation of patches. You can still get the credit. This way, you only create stress for admins.

[For a little relief, refer to https://www.tomshardware.com/tech-industry/cyber-security/dirty-frag-exploit-gets-root-on-most-linux-machines-since-2017-no-patches-available-no-warning-given-copy-fail-like-vulnerability-had-its-embargo-broken for a quick mitigation, because updating kernels and rebooting a fleet of hosts just takes time, weekend or not. #HugOps]

Beneath the Linux surface: the UNIX legacy, a lively ecology https://lobste.rs/s/ct9mlh #freebsd #illumos #linux #netbsd #openbsd
https://club.unix.rocks/commentary/under-linux/

Okay. I realized if I'm going to do the #bsd challenge, do it properly. Not with ghostbsd but with #freebsd directly.

I downloaded the handbook on my #kobo and going to build my system brick by brick. Just like when I installed #arch #linux

Let's goooo

Alt...

Free bsd tty neofetch

Here we go again: #dirtyfrag
https://github.com/V4bel/dirtyfrag

Mitigation:
sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; echo 3 > /proc/sys/vm/drop_caches; true"

#linux #security

Happy Friday patch! #sysadmin

If anyone wants to recruit a senior R&D code monkey with multiple degrees for a job that will involve neither "AI" bullshit nor "blockchain" bullshit nor "HFT" bullshit nor killing people nor destroying the planet just for the heck of it...

I get cheaper and cheaper by the minute as things descend deeper and deeper into nutty "More cloud and more AI will fix it!!" chaos around me.

Located in Germany. Will only work remote as we're tied to this place due to aging parental units. Strong preference for something related to actual green technology such as solar.

#FediHire #FediHired #Systems #Storage #ProgrammingLanguages #Compilers #GreenTech #Solar #Linux #BSD #Academia #Teaching #noAI #BoostsWelcome

@jaypatelani I note that firefox recently fixed 272 bugs which were found by AI. (or maybe found again). Does that mean #ai assisted contribution? #fedora #suse #linux #opensuse it is always useful to define terms. Support for AI doesn't necessarily mean AI in your face (but maybe so with #google )

Latest 𝗩𝗮𝗹𝘂𝗮𝗯𝗹𝗲 𝗡𝗲𝘄𝘀 - 𝟮𝟬𝟮𝟲/𝟬𝟱/𝟭𝟭 (Valuable News - 2026/05/11) available.

https://vermaden.wordpress.com/2026/05/11/valuable-news-2026-05-11/

Past releases: https://vermaden.wordpress.com/news/

#verblog #vernews #news #bsd #freebsd #openbsd #netbsd #linux #unix #zfs #opnsense #ghostbsd #solaris #vermadenday

Latest 𝗩𝗮𝗹𝘂𝗮𝗯𝗹𝗲 𝗡𝗲𝘄𝘀 - 𝟮𝟬𝟮𝟲/𝟬𝟱/𝟭𝟭 (Valuable News - 2026/05/11) available.

https://vermaden.wordpress.com/2026/05/11/valuable-news-2026-05-11/

Past releases: https://vermaden.wordpress.com/news/

#verblog #vernews #news #bsd #freebsd #openbsd #netbsd #linux #unix #zfs #opnsense #ghostbsd #solaris #vermadenday

Another Universal Local Privilege Escalation lets any user on most GNU/Linux distros gain root access in seconds! This time its called Dirty Frag.

More info here: https://github.com/V4bel/dirtyfrag

and I made a video explaining the concept here: https://www.youtube.com/watch?v=Ve6qE-i2hhc

#Linux #video #security

I need some help with my linux system. I'm trying to upgrade my openSuse Tumbleweed, but I run into this file conflict, and I don't know what to do about it. Yast only gives me the option to continue or abort, but if I abort, then nothing gets upgraded. But I'm worried that if I continue, it will break something important. Here's what it says:
"File /usr/bin/dbus-launch
from install of
dbus-1-daemon-1.14.10-5.4.x86_64 (Main Repository (OSS))
conflicts with file from package
dbus-1-x11-1.14.10-4.3.x86_64 (@System)"

#linux #opensuse

#Fedora #Suse #Linux refugees are welcome to the #NetBSD world :)

https://www.theregister.com/oses/2026/05/10/both-fedora-and-ubuntu-will-get-ai-support-soon/5237409

I just discovered today that there are Pac-Man clones for the Unix terminal.

People truly will think of everything. Just a little ./configure; make; make install and you're good to go.

MyMan is the best:
https://termplay.github.io/posts/myman-terminal-pacman.html

#linux #freebsd #opensource

Alt...

A still from MyMan, a Unix terminal clone of Pac-Man featuring ASCII graphics for the characters

Ca y est avec l'IA, les projets pour remplacer les gros trucs qui n'avancent pas : #proton #drive #linux pour ne pas le citer, pullulent, et ça fait du bien !

Episode 16 of Dark Blue Weekly released

https://darkblueproject.com/sites/news/dbw-e16.php

#darkblueweekly #darkblueproject #omnios #illumos #parrotsec #hyprland #shellyalpm #linux #opensource #freesoftware

Until now I've never bothered to look into the internals of keyboard software support and whatnot, but for a long time I somehow put up with #Alpine #Linux (or maybe it was a #KDE / #Wayland issue?) not enabling by default key repeat - or however you call holding a button and have it register as continuous holding instead of a single press.

Lo and behold, on #OpenBSD that just works (I just passed by the conf where key repeat is explicitly defined, so you know real people put real effort into this system). On the other hand, changing the language on my keyboard when using cwm instead of something like KDE?...

setxkbmap -layout ro does not output an error, but still doesn't mean it actually switched me to Romanian (however, something like French actually just works). wsconsctl keyboard.encoding=ro outputs the error that ro is not a valid encoding. According to the documentation, encodings are apparently listed in /usr/include/dev/wscons/wsksymdef.h - and indeed, there seems to be no "ro" in there. Changing locale didn't seem to help either.

Then I took a deep dive into the man page of wsconsctl(8). There it says: "The current mapping can be printed with wsconsctl keyboard.map. The value for each keycode specifies the keysym that is output when each of Key, Shift + Key, AltGr + Key, or Shift + AltGr + Key is pressed" A magic thing then happens... I test wsconsctl keyboard.map+="keycode 15 = l L at" - afterwards, I see in the keyboard mapping "l L at at"; the output is a Polish l=L with slash. I decide to test AltGr with every other key on my keyboard...

I burst into laughter when I realized that I do have now Romanian characters: they were hidden in plain sight, usable with AltGr as modifier. I can't seem to spot them in keyboard.map, where according to the documentation all keysyms should be specified. Maybe setxbkmap did the magic on top? At least I am grateful I can type ăâșîț and not have to copy paste the characters.

Mal eine kleine Frage in die Runde: Was nutzt ihr unter Linux, um im lokalen Netzwerk Benachrichtigungen/Statusmeldungen zu verschicken?

#umfrage #linux

Currently attempting the #bsd challenge on #linux unplugged podcast.

Seems ghostbsd is the way to go for beginners? Any advice on getting into bsd coming from Linux?

Certainly seems hardware is pickier.

Alt...

Chromebook with coreboot failing to boot up ghostbsd installer

Quick reminder in light of the recent #LinuxKernel vulnerabilities:

In case you want to protect yourself against vulnerabilities in #Linux #Kernel modules you don't need, disable module loading completely by running:

echo 1 | sudo tee /proc/sys/kernel/modules_disabled

Of course you want to load all modules you need before running that command, as otherwise you will have to reboot to load them. 😄

More details on this:

* https://dfir.ch/posts/today_i_learned_lkm_kernel.modules_disabled/
* https://linux-audit.com/kernel/increase-kernel-integrity-with-disabled-linux-kernel-modules-loading/
* https://www.heise.de/select/ct/2020/1/1577462303523965 [German]

Alt...

Terminal-Screenshot of a failed module loading attempt after running the mentioned command

@rl_dane @sashin The problem is that #fuckFedora HAS taken a stand, a principled stand. They want to force #systemd, #gnome, #wayland down your throat. They have become the #microsoft of the #linux world. #dumpFedora and #goBSD.

[quote] "The legal instrument protecting your rights as a user of Linux is less important than the commercial ecosystem built on top of it. And that commercial ecosystem as we have established is controlled by the same corporations paying a half a million dollars a year for board seats at the Linux Foundation. ... The message ... enforce the GPL, lose your friends ... violate it openly ... get a seat on the board ... The GPL is not dead but its enforcement mechanism has been systematically dismantled by the very organization that claims to steward it."

Linux Foundation has squelched the voice of the lay contributors and now corporations control the decision-making process.

Now that your contributions to GPL'd free software have created mega-millionaires and billionaires ... those same rich fat cats that profited from your free code now want to keep you from sharing your own free code or profiting from it while they violate the software license to cash in. They promote ideology campaigns employing useful idiots and ideological parrots to insulate themselves from criticism and hold themselves above reproach from the people they are exploiting to build their tech empire. The Linux Foundation has joined the empire.

I have said before that a new alternative operating system is required if software freedom and privacy are to survive. Linux is not the resistance against the system. Linux is the system.

[/synopsis]

Full video for your earbuds: https://youtu.be/efDXFsUWk8U

[copypasta]

Our latest discussion builds on previous conversations, exploring the alleged corruption within the Linux Foundation and Linus Torvalds's potential awareness. We'll examine the intricate relationship between user space and the linux kernel developer, diving into how these components interact and influence the broader linux internals. This video aims to provide a comprehensive understanding of the situation, explaining the nuances of these operating systems and the impact on open source software.

[/copypasta]

#LinusTorvalds #Linux #LinuxFoundation #OperatingSystem #Corruption #BigTech #GPL #FreeSoftware #FOSS #Tech #Desktop

Let's Encrypt just stopped the issuance of certificates after an (so far not publicly disclosed) incident:

https://letsencrypt.status.io/pages/incident/55957a99e800baa4470002da/69fe2d6698ca07050eb4b1b3

If anyone encounters issues today with failed certificate renewals: It's probably not your setup.

#letsencrypt #itsec #devops #linux #security #tls

vi depended heavily on terminal capability databases to remain
portable across different hardware terminals. Bill Joy originally
wired vi only for Lear Siegler ADM-3A terminals, and termcap was
born from the flood of requests for support on other hardware.

"Termcap Unveiled" by Douglas R. Merritt, pages 42-48.
https://archive.org/details/Unix_Review_1984_Sep.pdf/page/n43/mode/2up

Also updated my nvi notes with a small historical section about
termcap/curses and terminal portability.
https://repo.or.cz/code-notes.git/blob_plain/HEAD:/notes/NVI_Editor_Guide.txt

#vi #unix #termcap #nvi #linux

Various #FOSS OS communities' reactions to joining them:

#Linux: "Hey, welcome to the fam! Here's a stack of CDs I burned, see which one boots for you."
#FreeBSD: "Hey, we're glad you're here! Here's an amazing handbook to get you started, holler if you need a hand!"
#NetBSD: "Of course it runs NetBSD! Welcome! :D"
#OpenBSD: "Don't expect a lot of hand-holding, but we're all having fun with it, and hopefully you will enjoy the process, too."
#9front: "Are... you... sure you want to do this?"

😆

(For the record, I love them all. I only regret I haven't had much of a chance to play with #Haiku, or interact with that community, yet!)

We are able to follow up last year's success of financing important audio improvements in postmarketOS and the wider Linux Mobile ecosystem with another project this year, this time tackling q6voice(d).

Thanks to everybody who has been donating to postmarketOS, you made this possible!

https://postmarketos.org/blog/2026/05/08/q6voice-project/

#linuxmobile #postmarketos #linux

EDIT: it's not the virtio driver. This VM has 1G ram. If increased to 2G, it will boot. It seems it's the intramfs unable to decompress. And it's strange.

I've just upgraded my Proxmox Backup Server, running inside a bhyve VM on FreeBSD 15.0-RELEASE, and it now kernel panics as soon as it boots.

Setup:
- Host: FreeBSD 15.0-RELEASE
- Guest Kernel: Linux 7.0
- NIC: virtio-net

Workarounds tested:
- Removing the network device: boots successfully
- Changing the NIC to e1000: boots successfully

This seems to point to a virtio-net issue with this kernel under bhyve.

Has anyone else noticed this?

#FreeBSD #bhyve #Linux #KernelPanic

I tried a bit more Linux distro investigation, and I think I just should have listened to @hipsterelectron in the first place.

TL;DR: If you want to run Linux without systemd, with something other than GNOME as a desktop (which is implied if you don't want systemd), and if you're comfortable with using the command line for installation, Alpine Linux is a great choice. The default install has zero systemd.

Yes, it's a command-line install, but it's far easier to install than Gentoo. The core OS install was so fast that I thought it had failed. Once I had that sorted and had installed a few support items, the setup-desktop script installed the whole of KDE and Wayland in a couple of minutes. I rebooted and everything worked. It even got the high DPI screen's resolution right for both KDE and sddm, which literally no other distro I've tried has managed.

A lack of bloat doesn't just make Alpine good for containers, it's also really responsive in general use. (Which is how computers ought to be with modern hardware.)

The package manager is nice. Think APT, but much faster. It automatically keeps a separate record of what you've actually asked to install versus dependencies that were dragged in, for easy automatic bloat removal.

Downsides:

- No proprietary Nvidia driver available, you need to use nouveau, so no CUDA or high performance gaming.
- Documentation (including installation) is scattered in pieces on a wiki.
- A lot less stuff prepackaged for you than Debian. Check https://pkgs.alpinelinux.org/ to see if things you need are available.
- You'll need to get used to some things being different thanks to use of busybox, no sudo, no bash by default, and so on.

My conclusion: Command line user? Try Alpine. Everyone else? Use Debian, and hope they move away from systemd.

I might revise this opinion if things break a lot during regular updates (hello Fedora), time will tell. #AlpineLinux #Linux

Another day, another #Linux security vulnerability!

Dirty Frag: https://github.com/V4bel/dirtyfrag

For my fellow #NixOS users, here is the mitigation I applied to my systems: https://github.com/stapelberg/nix/commit/05e40d77799a8d68dc019b316cb824904a53361c

#Linux kernel exploit mitigation:

rm -rf /boot /lib/modules && reboot

Will mitigate all exploits, not just #DirtyFrag 🧐☝️

Something I've complained about when people deploy Linux kernel based OS's is so few people ever tune or customizes their kernels or their base distro's.

This used to be something old school sysadmins would do, as part of the basic security hygiene practice - "If you don't need it, don't include it", which applies to daemons , services and packages.

Kernel compilation is something that rarely seems to happen too..

Do you have hardware encryption capabilities you want things like wolfssl to use? Then sure use #AF_ALG . Anything else? Highly unlikely.

Are you running OpenSwan, or some other VPN or tunneling software that uses encapsulating tunnel options? No? Probably don't need ESP4/ESP6 modules.

Easy for me to call out sure, and i'm taking myself to task as well, since really at work, they don't want people deep diving and compiling kernels in many places. "Trust the vendor" where many mgmt types don't get it or care. "Apt/DNF update and carry on".

Funny because this the antithesis of their "resist patches, and updates" attitude towards software.

The number of mongodb 3.x db's out there because the dev hasn't updated the driver, or the number of npm warnings "this is vulnerable, don't use this" that are ignored are high.

#infosec #linux #copyfail #dirtyFrag #opinion